samples: Replace strlcpy() with strscpy() - kernel/linux.git

diff options

author	Kees Cook <keescook@chromium.org>	2023-11-16 22:15:10 +0300
committer	Kees Cook <keescook@chromium.org>	2023-11-30 23:20:53 +0300
commit	40b2519d7566266d7eafd3c5232c73a497640bca (patch)
tree	9dfc5c39966ded80e08f4666cb516887b13da08e /drivers/hid/uhid.c
parent	cb6d2fd30dddd00499333e9475f8b11bbd84f37c (diff)
download	linux-40b2519d7566266d7eafd3c5232c73a497640bca.tar.xz

samples: Replace strlcpy() with strscpy()

strlcpy() reads the entire source buffer first. This read may exceed the destination size limit. This is both inefficient and can lead to linear read overflows if a source string is not NUL-terminated[1]. Additionally, it returns the size of the source string, not the resulting size of the destination string. In an effort to remove strlcpy() completely[2], replace strlcpy() here with strscpy(). Link: https://www.kernel.org/doc/html/latest/process/deprecated.html#strlcpy [1] Link: https://github.com/KSPP/linux/issues/89 [2] Cc: Masami Hiramatsu <mhiramat@kernel.org> Cc: Valentin Schneider <vschneid@redhat.com> Cc: "Steven Rostedt (Google)" <rostedt@goodmis.org> Cc: Chuck Lever <chuck.lever@oracle.com> Cc: Geliang Tang <geliang.tang@suse.com> Cc: Greg Kroah-Hartman <gregkh@linuxfoundation.org> Cc: Christophe JAILLET <christophe.jaillet@wanadoo.fr> Cc: Thomas Gleixner <tglx@linutronix.de> Cc: Arnd Bergmann <arnd@arndb.de> Acked-by: "Steven Rostedt (Google)" <rostedt@goodmis.org> Link: https://lore.kernel.org/r/20231116191510.work.550-kees@kernel.org Signed-off-by: Kees Cook <keescook@chromium.org>

Diffstat (limited to 'drivers/hid/uhid.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: