dbe37c71d1
strlcpy() reads the entire source buffer first. This read may exceed the destination size limit. This is both inefficient and can lead to linear read overflows if a source string is not NUL-terminated [1]. In an effort to remove strlcpy() completely [2], replace strlcpy() here with strscpy(). No return values were used, so direct replacement is safe. [1] https://www.kernel.org/doc/html/latest/process/deprecated.html#strlcpy [2] https://github.com/KSPP/linux/issues/89 Signed-off-by: Azeem Shaikh <azeemshaikh38@gmail.com> Link: https://lore.kernel.org/r/20230530160248.411637-1-azeemshaikh38@gmail.com Reviewed-by: Kees Cook <keescook@chromium.org> Signed-off-by: Martin K. Petersen <martin.petersen@oracle.com> |
||
|---|---|---|
| .. | ||
| lsi | ||
| Kconfig | ||
| Makefile | ||
| mptbase.c | ||
| mptbase.h | ||
| mptctl.c | ||
| mptctl.h | ||
| mptdebug.h | ||
| mptfc.c | ||
| mptlan.c | ||
| mptlan.h | ||
| mptsas.c | ||
| mptsas.h | ||
| mptscsih.c | ||
| mptscsih.h | ||
| mptspi.c | ||