Re: [PATCH] tomoyo: reject short exec.envp[] names before suffix checks

Next message: syzbot: "[syzbot] [mm?] KCSAN: data-race in mas_wr_store_entry / mtree_range_walk (2)"
Previous message: syzbot: "Forwarded: [PATCH] jfs: validate l2nbperiext in diMount() to prevent shift-out-of-bounds"
In reply to: Pengpeng Hou: "[PATCH] tomoyo: reject short exec.envp[] names before suffix checks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Tetsuo Handa

Date: Fri Apr 17 2026 - 05:12:23 EST

Thank you for a patch, but I don't think we need to apply this patch.

The caller is

if (!strncmp(left_word, "exec.envp[\"", 11)) {
(...snipped...)
if (!tomoyo_parse_envp(left_word + 11, right_word, envp++)) goto out;
(...snipped...)
}

where the left-hand string is guaranteed to be safely dereferenced.