procfs: replace all non-returning strlcpy with strscpy

Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git

kernel os linux

strlcpy() reads the entire source buffer first. This read may exceed the
destination size limit. This is both inefficient and can lead to linear
read overflows if a source string is not NUL-terminated [1]. In an effort
to remove strlcpy() completely [2], replace strlcpy() here with strscpy().
No return values were used, so direct replacement is safe.

[1] https://www.kernel.org/doc/html/latest/process/deprecated.html#strlcpy
[2] https://github.com/KSPP/linux/issues/89

Link: https://lkml.kernel.org/r/20230510212457.3491385-1-azeemshaikh38@gmail.com
Signed-off-by: Azeem Shaikh <azeemshaikh38@gmail.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
Reviewed-by: Alexey Dobriyan <adobriyan@gmail.com>
Cc: Baoquan He <bhe@redhat.com>
Cc: David Hildenbrand <david@redhat.com>
Cc: Kefeng Wang <wangkefeng.wang@huawei.com>
Cc: Liu Shixin <liushixin2@huawei.com>
Cc: Lorenzo Stoakes <lstoakes@gmail.com>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>

authored by

Azeem Shaikh and committed by

Andrew Morton 2 years ago 9e627588 35a609a8

+1 -1

1 changed file

expand all

proc

kcore.c

+1 -1

fs/proc/kcore.c

··· 419 419 char *notes; 420 420 size_t i = 0; 421 421 422 - strlcpy(prpsinfo.pr_psargs, saved_command_line, 422 + strscpy(prpsinfo.pr_psargs, saved_command_line, 423 423 sizeof(prpsinfo.pr_psargs)); 424 424 425 425 notes = kzalloc(notes_len, GFP_KERNEL);