RE: [PATCH] aout: incorrct use of strncpy fixed.

From: David Laight
Date: Thu Feb 07 2019 - 12:02:20 EST

Next message: Sylwester Nawrocki: "[PATCH 21/22] ARM: dts: exynos5422-odroidxu3: Add support for secondary DAI"
Previous message: Thomas Garnier: "Re: [PATCH v6 01/27] x86/crypto: Adapt assembly for PIE support"
In reply to: Borislav Petkov: "Re: [PATCH] aout: incorrct use of strncpy fixed."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Derek Robson
> Sent: 02 February 2019 00:55
>
> Found a bug with the source / dest length
> updated to have size limit as the size of dest not size or source.
>
> Signed-off-by: Derek Robson <robsonde@xxxxxxxxx>
> ---
> arch/x86/ia32/ia32_aout.c | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
>
> diff --git a/arch/x86/ia32/ia32_aout.c b/arch/x86/ia32/ia32_aout.c
> index f65b78d32f5e..1e7f71723ee0 100644
> --- a/arch/x86/ia32/ia32_aout.c
> +++ b/arch/x86/ia32/ia32_aout.c
> @@ -157,7 +157,7 @@ static int aout_core_dump(struct coredump_params *cprm)
> fs = get_fs();
> set_fs(KERNEL_DS);
> has_dumped = 1;
> - strncpy(dump.u_comm, current->comm, sizeof(current->comm));
> + strncpy(dump.u_comm, current->comm, sizeof(dump.u_comm));

That can be right if the destination is guaranteed to be longer than
the source and the source might not be '\0' terminated
(and the target has been zeroed).

David

-
Registered Address Lakeside, Bramley Road, Mount Farm, Milton Keynes, MK1 1PT, UK
Registration No: 1397386 (Wales)

Next message: Sylwester Nawrocki: "[PATCH 21/22] ARM: dts: exynos5422-odroidxu3: Add support for secondary DAI"
Previous message: Thomas Garnier: "Re: [PATCH v6 01/27] x86/crypto: Adapt assembly for PIE support"
In reply to: Borislav Petkov: "Re: [PATCH] aout: incorrct use of strncpy fixed."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]