crypto: lrw,xts - Replace strlcpy with strscpy (babb80b3) · Commits · Mirrors / git.yoctoproject.org / linux-yocto · GitLab

Commit babb80b3 authored Jun 20, 2023 by

Azeem Shaikh Committed by Herbert Xu Jul 14, 2023

crypto: lrw,xts - Replace strlcpy with strscpy

strlcpy() reads the entire source buffer first.
This read may exceed the destination size limit.
This is both inefficient and can lead to linear read
overflows if a source string is not NUL-terminated [1].
In an effort to remove strlcpy() completely [2], replace
strlcpy() here with strscpy().

Direct replacement is safe here since return value of -errno
is used to check for truncation instead of sizeof(dest).

[1] https://www.kernel.org/doc/html/latest/process/deprecated.html#strlcpy
[2] https://github.com/KSPP/linux/issues/89



Signed-off-by: Azeem Shaikh <azeemshaikh38@gmail.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>

parent 31ba6dd2

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit 8c19ddc2
· Sep 28, 2023

mentioned in commit 8c19ddc2

mentioned in commit 8c19ddc215664c33e0364a0e9faea8ac9dcf812c

Toggle commit list
mirror @mirror
mentioned in commit 6b0adfaf
· Sep 28, 2023

mentioned in commit 6b0adfaf

mentioned in commit 6b0adfafb07396f1a176d3a6d10a551a56f0401d

Toggle commit list

Please register or to comment