Re: [PATCH] hwmon: Remove strlcpy occurences

From: Guenter Roeck
Date: Wed Jul 12 2023 - 11:39:58 EST

Next message: Andi Shyti: "Re: [PATCH v2 02/11] i2c: iproc: Convert to devm_platform_ioremap_resource()"
Previous message: Waqar Hameed: "Re: [PATCH 2/2] iio: Add driver for Murata IRS-D200"
In reply to: Azeem Shaikh: "Re: [PATCH] hwmon: Remove strlcpy occurences"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 7/12/23 07:44, Azeem Shaikh wrote:

strlcpy() reads the entire source buffer first.
This read may exceed the destination size limit.
This is both inefficient and can lead to linear read
overflows if a source string is not NUL-terminated [1].
In an effort to remove strlcpy() completely [2], replace
strlcpy() here with direct assignment.

strlcpy in this file is used to copy fixed-length strings which can be
completely avoided by direct assignment and is safe to do so. strlen()
is used to return the length of @tbuf.

[1] https://www.kernel.org/doc/html/latest/process/deprecated.html#strlcpy
[2] https://github.com/KSPP/linux/issues/89

Signed-off-by: Azeem Shaikh <azeemshaikh38@xxxxxxxxx>

Also, $subject should include the affected driver.

Guenter

Next message: Andi Shyti: "Re: [PATCH v2 02/11] i2c: iproc: Convert to devm_platform_ioremap_resource()"
Previous message: Waqar Hameed: "Re: [PATCH 2/2] iio: Add driver for Murata IRS-D200"
In reply to: Azeem Shaikh: "Re: [PATCH] hwmon: Remove strlcpy occurences"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]