| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <jnuxxernxywnyrcotnm3peryeiw6adc3gd7qn4u35lpwz4ekds@nl6zd5fecdju>
Date: Tue, 5 Sep 2023 12:25:47 +0200
From: Daniel Wagner <dwagner@...e.de>
To: Christoph Hellwig <hch@....de>
Cc: linux-nvme@...ts.infradead.org, linux-kernel@...r.kernel.org,
Hannes Reinecke <hare@...e.de>,
Sagi Grimberg <sagi@...mberg.me>,
Jason Gunthorpe <jgg@...pe.ca>,
James Smart <james.smart@...adcom.com>,
Chaitanya Kulkarni <kch@...dia.com>
Subject: Re: [RFC v1 2/4] nvmet-trace: null terminate device name string
correctly
On Tue, Sep 05, 2023 at 08:49:21AM +0200, Christoph Hellwig wrote:
> On Tue, Aug 29, 2023 at 11:13:47AM +0200, Daniel Wagner wrote:
> > Signed-off-by: Daniel Wagner <dwagner@...e.de>
> > ---
> > drivers/nvme/target/trace.h | 4 ++--
> > 1 file changed, 2 insertions(+), 2 deletions(-)
> >
> > diff --git a/drivers/nvme/target/trace.h b/drivers/nvme/target/trace.h
> > index 6997bd7e45cf..9ba466b49613 100644
> > --- a/drivers/nvme/target/trace.h
> > +++ b/drivers/nvme/target/trace.h
> > @@ -55,8 +55,8 @@ static inline void __assign_req_name(char *name, struct nvmet_req *req)
> > return;
> > }
> >
> > - strncpy(name, req->ns->device_path,
> > - min_t(size_t, DISK_NAME_LEN, strlen(req->ns->device_path)));
> > + strscpy(name, req->ns->device_path,
> > + min_t(size_t, DISK_NAME_LEN, strlen(req->ns->device_path) + 1));
>
> I'd just switch to snprintf instead, that the best way to ensure
> termination..
Okay, but we still need the +1 as the string is cut short; 'loop0' gets
logged as 'loop' at least with the strscpy variant.
Powered by blists - more mailing lists