| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <aHos-A3d0T6qcL0o@dread.disaster.area> Date: Fri, 18 Jul 2025 21:16:08 +1000 From: Dave Chinner <david@...morbit.com> To: Marcelo Moreira <marcelomoreira1905@...il.com> Cc: cem@...nel.org, linux-xfs@...r.kernel.org, linux-kernel@...r.kernel.org, skhan@...uxfoundation.org, linux-kernel-mentees@...ts.linuxfoundation.org Subject: Re: [PATCH] xfs: Replace strncpy with strscpy On Thu, Jul 17, 2025 at 02:34:25PM -0300, Marcelo Moreira wrote: > Given that the original `strncpy()` is safe and correctly implemented > for this context, and understanding that `memcpy()` would be the > correct replacement if a change were deemed necessary for > non-NUL-terminated raw data, I have a question: > > Do you still think a replacement is necessary here, or would you > prefer to keep the existing `strncpy()` given its correct and safe > usage in this context? If a replacement is preferred, I will resubmit > a V2 using `memcpy()` instead. IMO: if it isn't broken, don't try to fix it. Hence I -personally- wouldn't change it. However, modernisation and cleaning up of the code base to be consistent is a useful endeavour. So from this perspective replacing strncpy with memcpy() would be something I'd consider an acceptible change. Largely it is up to the maintainer to decide..... -Dave. -- Dave Chinner david@...morbit.com
Powered by blists - more mailing lists