Re: SECURITY - data leakage due to incorrect strncpy implementation

Linus Torvalds (torvalds@osdl.org)
Fri, 11 Jul 2003 15:44:58 -0700 (PDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Francois Romieu: "[PATCH] Re: PATCH: Merge AD1889 driver from 2.4"
Previous message: Neil Brown: "Re: do_div vs sector_t"
In reply to: Alan Cox: "SECURITY - data leakage due to incorrect strncpy implementation"
Next in thread: Paul Mackerras: "Re: SECURITY - data leakage due to incorrect strncpy implementation"

On 11 Jul 2003, Alan Cox wrote:
>
> Lots of kernel drivers rely on the libc definition of strncpy.

But that's ok. We _do_ do the padding. I hated it when I wrote it, but as
far as I know, the kernel strncpy() has done padding pretty much since day
one.

Yes, strlcpy() conversion users need to be careful, but I think we mostly
_were_ careful. Knock wood.

Linus

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Francois Romieu: "[PATCH] Re: PATCH: Merge AD1889 driver from 2.4"
Previous message: Neil Brown: "Re: do_div vs sector_t"
In reply to: Alan Cox: "SECURITY - data leakage due to incorrect strncpy implementation"
Next in thread: Paul Mackerras: "Re: SECURITY - data leakage due to incorrect strncpy implementation"