Re: [PATCH linux-next] ecryptfs: crypto: use strscpy() to instead of strncpy()

From: Eric Biggers
Date: Thu Dec 29 2022 - 15:52:03 EST

Next message: Paolo Bonzini: "Re: [PATCH v2 00/50] KVM: Rework kvm_init() and hardware enabling"
Previous message: Stephan Gerhold: "Re: [PATCH v2 1/2] dt-bindings: phy: Add qcom,dp-manual-pullup description"
In reply to: yang.yang29: "[PATCH linux-next] ecryptfs: crypto: use strscpy() to instead of strncpy()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Dec 28, 2022 at 09:36:54AM +0800, yang.yang29@xxxxxxxxxx wrote:
> From: Xu Panda <xu.panda@xxxxxxxxxx>
>
> The implementation of strscpy() is more robust and safer.
> That's now the recommended way to copy NUL-terminated strings.

Unlike strncpy(), strscpy() does not initialize the full destination array, so
it is unsafe in some situations, such as initializing structures that are then
copied to userspace or to disk. Please include an actual explanation for why
this patch is correct.

- Eric

Next message: Paolo Bonzini: "Re: [PATCH v2 00/50] KVM: Rework kvm_init() and hardware enabling"
Previous message: Stephan Gerhold: "Re: [PATCH v2 1/2] dt-bindings: phy: Add qcom,dp-manual-pullup description"
In reply to: yang.yang29: "[PATCH linux-next] ecryptfs: crypto: use strscpy() to instead of strncpy()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]