Re: [PATCH linux-next] parisc: use strscpy() to instead of strncpy()

From: yang.yang29
Date: Tue Dec 27 2022 - 20:26:26 EST

Next message: SeongJae Park: "[PATCH v2] mm/page_reporting: replace rcu_access_pointer() with rcu_dereference_protected()"
Previous message: Prashant Malani: "[PATCH 10/10] platform/chrome: cros_typec_vdm: Add VDM send support"
In reply to: James Bottomley: "Re: [PATCH linux-next] parisc: use strscpy() to instead of strncpy()"
Next in thread: Helge Deller: "Re: [PATCH linux-next] parisc: use strscpy() to instead of strncpy()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> the array buf[] is actually buf[count], so if count < 64 then
> sizeof(buf) < sizeof(in) and you're copying whatever is after buf on
> the stack or wherever it comes from. The amount you copy into in[]
> truly has to be the smaller of count and sizeof(in). These are file
> operations, so you shouldn't rely on buf[] being null terminated
> (kernfs ensures it is, but it's a dangerous thing to rely on in the
> face of someone trying to exploit a stack smashing attack).

Should we send patchv3 which is back to v1, or we directly use
patchv1 to continue the reviewing?

Thanks!

Next message: SeongJae Park: "[PATCH v2] mm/page_reporting: replace rcu_access_pointer() with rcu_dereference_protected()"
Previous message: Prashant Malani: "[PATCH 10/10] platform/chrome: cros_typec_vdm: Add VDM send support"
In reply to: James Bottomley: "Re: [PATCH linux-next] parisc: use strscpy() to instead of strncpy()"
Next in thread: Helge Deller: "Re: [PATCH linux-next] parisc: use strscpy() to instead of strncpy()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]