Re: Security in general (was Re: Proposal "LUID")

From: David A. Wagner (daw@cs.berkeley.edu)
Date: Wed Apr 26 2000 - 17:46:54 EST

Next message: Juan J. Quintela: "New Memory Test Suite v0.0.1"
Previous message: Rik van Riel: "Re: competing or complementary patches for VM/kswapd problems ?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

In article <200004191658.e3JGwNL02270@pincoya.inf.utfsm.cl>,
Horst von Brand <vonbrand@inf.utfsm.cl> wrote:
> If strcpy(3) can check bounds, why on earth doesn't the libc one do so?

It can't. There's no easy way for strcpy(3) to know how many bytes have
been allocated for the destination buffer it is writing into. It's not
clear how to check bounds when you don't know what the bounds should be.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Juan J. Quintela: "New Memory Test Suite v0.0.1"
Previous message: Rik van Riel: "Re: competing or complementary patches for VM/kswapd problems ?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sun Apr 30 2000 - 21:00:12 EST