mirror of
https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git
synced 2024-12-29 17:22:07 +00:00
cd91250306
strlcpy() reads the entire source buffer first. This read may exceed the destination size limit. This is both inefficient and can lead to linear read overflows if a source string is not NUL-terminated [1]. In an effort to remove strlcpy() completely [2], replace strlcpy() here with strscpy(). Direct replacement is safe here since the return values from the helper macros are ignored by the callers. [1] https://www.kernel.org/doc/html/latest/process/deprecated.html#strlcpy [2] https://github.com/KSPP/linux/issues/89 Signed-off-by: Azeem Shaikh <azeemshaikh38@gmail.com> Reviewed-by: Kees Cook <keescook@chromium.org> Reviewed-by: Simon Horman <simon.horman@corigine.com> Link: https://lore.kernel.org/r/20230613003326.3538391-1-azeemshaikh38@gmail.com Signed-off-by: Stefan Schmidt <stefan@datenfreihafen.org> |
||
---|---|---|
.. | ||
cfg.c | ||
cfg.h | ||
driver-ops.h | ||
ieee802154_i.h | ||
iface.c | ||
Kconfig | ||
llsec.c | ||
llsec.h | ||
mac_cmd.c | ||
main.c | ||
Makefile | ||
mib.c | ||
rx.c | ||
scan.c | ||
trace.c | ||
trace.h | ||
tx.c | ||
util.c |