diff options
| author |   Azeem Shaikh <azeemshaikh38@gmail.com> | 2023-08-31 19:38:27 +0000 |
|---|---|---|
| committer |   Andrew Morton <akpm@linux-foundation.org> | 2023-10-04 10:41:57 -0700 |
| commit | e22c3872e4d58191538a2c31d47bb6bcec0fdfa0 (patch) | |
| tree | 29e09d332d7efe764d97b52fffa5299df1a2abc7 /kernel/crash_core.c | |
| parent | minmax: fix header inclusions (diff) | |
| download | wireguard-linux-e22c3872e4d58191538a2c31d47bb6bcec0fdfa0.tar.xz wireguard-linux-e22c3872e4d58191538a2c31d47bb6bcec0fdfa0.zip | |
fs: ocfs2: replace strlcpy with sysfs_emit
strlcpy() reads the entire source buffer first. This read may exceed the
destination size limit. This is both inefficient and can lead to linear
read overflows if a source string is not NUL-terminated [1]. In an effort
to remove strlcpy() completely [2], replace strlcpy() here with
sysfs_emit().
Direct replacement is safe here since its ok for `kernel_param_ops.get()`
to return -errno [3].
[1] https://www.kernel.org/doc/html/latest/process/deprecated.html#strlcpy
[2] https://github.com/KSPP/linux/issues/89
[3] https://elixir.bootlin.com/linux/v6.5/source/include/linux/moduleparam.h#L52
Link: https://lkml.kernel.org/r/20230831193827.1528867-1-azeemshaikh38@gmail.com
Signed-off-by: Azeem Shaikh <azeemshaikh38@gmail.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
Reviewed-by: Joseph Qi <joseph.qi@linux.alibaba.com>
Cc: Christian Brauner <brauner@kernel.org>
Cc: Dave Chinner <dchinner@redhat.com>
Cc: Jan Kara <jack@suse.cz>
Cc: Jeff Layton <jlayton@kernel.org>
Cc: Joel Becker <jlbec@evilplan.org>
Cc: Mark Fasheh <mark@fasheh.com>
Cc: Junxiao Bi <junxiao.bi@oracle.com>
Cc: Changwei Ge <gechangwei@live.cn>
Cc: Gang He <ghe@suse.com>
Cc: Jun Piao <piaojun@huawei.com>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Diffstat (limited to 'kernel/crash_core.c')
0 files changed, 0 insertions, 0 deletions