[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-Id: <170137700879.3640204.581331941374933494.b4-ty@chromium.org>
Date: Thu, 30 Nov 2023 12:43:31 -0800
From: Kees Cook <keescook@...omium.org>
To: Trond Myklebust <trond.myklebust@...merspace.com>,
Kees Cook <keescook@...omium.org>
Cc: Anna Schumaker <anna@...nel.org>,
Chuck Lever <chuck.lever@...cle.com>,
Jeff Layton <jlayton@...nel.org>,
Neil Brown <neilb@...e.de>,
Olga Kornievskaia <kolga@...app.com>,
Dai Ngo <Dai.Ngo@...cle.com>,
Tom Talpey <tom@...pey.com>,
"David S. Miller" <davem@...emloft.net>,
Eric Dumazet <edumazet@...gle.com>,
Jakub Kicinski <kuba@...nel.org>,
Paolo Abeni <pabeni@...hat.com>,
linux-nfs@...r.kernel.org,
netdev@...r.kernel.org,
Azeem Shaikh <azeemshaikh38@...il.com>,
linux-kernel@...r.kernel.org,
linux-hardening@...r.kernel.org
Subject: Re: [PATCH] SUNRPC: Replace strlcpy() with strscpy()
On Tue, 14 Nov 2023 09:54:18 -0800, Kees Cook wrote:
> strlcpy() reads the entire source buffer first. This read may exceed
> the destination size limit. This is both inefficient and can lead
> to linear read overflows if a source string is not NUL-terminated[1].
> Additionally, it returns the size of the source string, not the
> resulting size of the destination string. In an effort to remove strlcpy()
> completely[2], replace strlcpy() here with strscpy().
>
> [...]
Applied to for-next/hardening, thanks!
[1/1] SUNRPC: Replace strlcpy() with strscpy()
https://git.kernel.org/kees/c/cb6d2fd30ddd
Take care,
--
Kees Cook
Powered by blists - more mailing lists