[PATCH] procfs: Replace all non-returning strlcpy with strscpy

From: Azeem Shaikh
Date: Wed May 10 2023 - 17:25:34 EST

Next message: Luiz Augusto von Dentz: "Re: [PATCH v2 2/2] Bluetooth: hci_qca: Add qcomm devcoredump support"
Previous message: Bao D. Nguyen: "Re: [RFC PATCH v1] ufs: poll HCS.UCRDY before issuing a UIC command"
Next in thread: Kees Cook: "Re: [PATCH] procfs: Replace all non-returning strlcpy with strscpy"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

strlcpy() reads the entire source buffer first.
This read may exceed the destination size limit.
This is both inefficient and can lead to linear read
overflows if a source string is not NUL-terminated [1].
In an effort to remove strlcpy() completely [2], replace
strlcpy() here with strscpy().
No return values were used, so direct replacement is safe.

[1] https://www.kernel.org/doc/html/latest/process/deprecated.html#strlcpy
[2] https://github.com/KSPP/linux/issues/89

Signed-off-by: Azeem Shaikh <azeemshaikh38@xxxxxxxxx>
---
fs/proc/kcore.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/fs/proc/kcore.c b/fs/proc/kcore.c
index 25b44b303b35..5d0cf59c4926 100644
--- a/fs/proc/kcore.c
+++ b/fs/proc/kcore.c
@@ -419,7 +419,7 @@ static ssize_t read_kcore_iter(struct kiocb *iocb, struct iov_iter *iter)
char *notes;
size_t i = 0;

- strlcpy(prpsinfo.pr_psargs, saved_command_line,
+ strscpy(prpsinfo.pr_psargs, saved_command_line,
sizeof(prpsinfo.pr_psargs));

notes = kzalloc(notes_len, GFP_KERNEL);

Next message: Luiz Augusto von Dentz: "Re: [PATCH v2 2/2] Bluetooth: hci_qca: Add qcomm devcoredump support"
Previous message: Bao D. Nguyen: "Re: [RFC PATCH v1] ufs: poll HCS.UCRDY before issuing a UIC command"
Next in thread: Kees Cook: "Re: [PATCH] procfs: Replace all non-returning strlcpy with strscpy"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]