Re: [PATCH next 2/3] fortify: Optimise strnlen()

Next message: Thorsten Leemhuis: "Re: [PATCH] HID: gpd: fix report descriptor on GPD Win handheld (2f24:0137)"
Previous message: Alistair Popple: "[PATCH 2/3] selftests/mm: hmm-tests: don't hardcode THP size to 2MB"
In reply to: Kees Cook: "Re: [PATCH next 2/3] fortify: Optimise strnlen()"
Next in thread: David Laight: "Re: [PATCH next 2/3] fortify: Optimise strnlen()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Kees Cook

Date: Tue Mar 31 2026 - 02:37:01 EST

On Mon, Mar 30, 2026 at 02:20:02PM +0100, david.laight.linux@xxxxxxxxx wrote:
> From: David Laight <david.laight.linux@xxxxxxxxx>
>
> If the string is constant there is no need to call __real_strlen()
> even when maxlen is a variable - just return the smaller value.
>
> If the size of the string variable is unknown fortify_panic() can't be
> called, change the condition so that the compiler can optimise it away.
>
> Change __compiletime_strlen(p) to return a 'non-constant' value
> for non-constant strings (the same as __builtin_strlen()).
> Simplify since it is only necessary to check that the size is constant
> and that the last character is '\0'.
> Explain why it is different from __builtin_strlen().
> Update the kunit tests to match.

See also
commit d07c0acb4f41 ("fortify: Fix __compiletime_strlen() under UBSAN_BOUNDS_LOCAL")

-Kees

--
Kees Cook