Re: Security in general (was Re: Proposal "LUID")

From: David A. Wagner (
Date: Wed Apr 26 2000 - 17:46:54 EST

In article <>,
Horst von Brand <> wrote:
> If strcpy(3) can check bounds, why on earth doesn't the libc one do so?

It can't. There's no easy way for strcpy(3) to know how many bytes have
been allocated for the destination buffer it is writing into. It's not
clear how to check bounds when you don't know what the bounds should be.

To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to
Please read the FAQ at

This archive was generated by hypermail 2b29 : Sun Apr 30 2000 - 21:00:12 EST