summaryrefslogtreecommitdiffstats
path: root/lib/Makefile
diff options
context:
space:
mode:
authorDaniel Micay <danielmicay@gmail.com>2017-07-14 23:28:12 +0200
committerLinus Torvalds <torvalds@linux-foundation.org>2017-07-15 06:56:31 +0200
commit077d2ba519b2e8bf1abd80cbade699b1de42cafe (patch)
tree775557160909897bc6b43de02e5df039cebd9904 /lib/Makefile
parentMerge git://git.kernel.org/pub/scm/linux/kernel/git/cmetcalf/linux-tile (diff)
downloadlinux-077d2ba519b2e8bf1abd80cbade699b1de42cafe.tar.xz
linux-077d2ba519b2e8bf1abd80cbade699b1de42cafe.zip
replace incorrect strscpy use in FORTIFY_SOURCE
Using strscpy was wrong because FORTIFY_SOURCE is passing the maximum possible size of the outermost object, but strscpy defines the count parameter as the exact buffer size, so this could copy past the end of the source. This would still be wrong with the planned usage of __builtin_object_size(p, 1) for intra-object overflow checks since it's the maximum possible size of the specified object with no guarantee of it being that large. Reuse of the fortified functions like this currently makes the runtime error reporting less precise but that can be improved later on. Noticed by Dave Jones and KASAN. Signed-off-by: Daniel Micay <danielmicay@gmail.com> Acked-by: Kees Cook <keescook@chromium.org> Reported-by: Dave Jones <davej@codemonkey.org.uk> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
Diffstat (limited to 'lib/Makefile')
0 files changed, 0 insertions, 0 deletions