| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 9 Oct 2023 11:13:02 +0200 From: Christian Gmeiner <christian.gmeiner@...il.com> To: Kees Cook <keescook@...omium.org> Cc: Justin Stitt <justinstitt@...gle.com>, Lucas Stach <l.stach@...gutronix.de>, Russell King <linux+etnaviv@...linux.org.uk>, David Airlie <airlied@...il.com>, Daniel Vetter <daniel@...ll.ch>, etnaviv@...ts.freedesktop.org, dri-devel@...ts.freedesktop.org, linux-kernel@...r.kernel.org, linux-hardening@...r.kernel.org, Bo YU <tsu.yubo@...il.com> Subject: Re: [PATCH v2] drm/etnaviv: refactor deprecated strncpy Am Fr., 6. Okt. 2023 um 22:23 Uhr schrieb Kees Cook <keescook@...omium.org>: > > On Mon, Sep 18, 2023 at 01:34:08PM +0000, Justin Stitt wrote: > > `strncpy` is deprecated for use on NUL-terminated destination strings [1]. > > > > We should prefer more robust and less ambiguous string interfaces. > > > > A suitable replacement is `strscpy_pad` due to the fact that it > > guarantees NUL-termination on the destination buffer whilst maintaining > > the NUL-padding behavior that strncpy provides. > > Friend ping. Who can pick this change up? > Lucas is the one who is responsible for this job. > > Thanks! > > -Kees > > > > > Link: https://www.kernel.org/doc/html/latest/process/deprecated.html#strncpy-on-nul-terminated-strings [1] > > Link: https://github.com/KSPP/linux/issues/90 > > Cc: linux-hardening@...r.kernel.org > > Cc: Bo YU <tsu.yubo@...il.com> > > Signed-off-by: Justin Stitt <justinstitt@...gle.com> Reviewed-by: Christian Gmeiner <cgmeiner@...lia.com> -- greets -- Christian Gmeiner, MSc https://christian-gmeiner.info/privacypolicy
Powered by blists - more mailing lists