Re: [PATCH] netfilter: conntrack: Use memset_startat() to zero struct nf_conn

From: Pablo Neira Ayuso
Date: Tue Nov 30 2021 - 16:50:50 EST

Next message: andrey . konovalov: "[PATCH 10/31] kasan, page_alloc: combine tag_clear_highpage calls in post_alloc_hook"
Previous message: Cédric Le Goater: "Re: [patch 05/22] genirq/msi: Fixup includes"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Nov 18, 2021 at 12:31:13PM -0800, Kees Cook wrote:
> In preparation for FORTIFY_SOURCE performing compile-time and run-time
> field bounds checking for memset(), avoid intentionally writing across
> neighboring fields.
>
> Use memset_startat() to avoid confusing memset() about writing beyond
> the target struct member.

Applied to nf-next, thanks

Next message: andrey . konovalov: "[PATCH 10/31] kasan, page_alloc: combine tag_clear_highpage calls in post_alloc_hook"
Previous message: Cédric Le Goater: "Re: [patch 05/22] genirq/msi: Fixup includes"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]