Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 2eacea74cc465edc23ce5a4dd5c2213008ac3a05
commit2eacea74cc465edc23ce5a4dd5c2213008ac3a05[log] [tgz]
authorMartin Brandenburg <martin@omnibond.com>Fri Apr 08 13:33:21 2016 -0400
committerMike Marshall <hubcap@omnibond.com>Fri Apr 08 14:10:34 2016 -0400
tree6c937fb77a9ccae02a99c9c3fb80db83040d577a
parentf83140c1467e22ba9ee9389bc4e6c3e117f2296e [diff]
orangefs: strncpy -> strscpy

It would have been possible for a rogue client-core to send in a symlink
target which is not NUL terminated. This returns EIO if the client-core
gives us corrupt data.

Leave debugfs and superblock code as is for now.

Other dcache.c and namei.c strncpy instances are safe because
ORANGEFS_NAME_MAX = NAME_MAX + 1; there is always enough space for a
name plus a NUL byte.

Signed-off-by: Martin Brandenburg <martin@omnibond.com>
Signed-off-by: Mike Marshall <hubcap@omnibond.com>
1 file changed
tree: 6c937fb77a9ccae02a99c9c3fb80db83040d577a
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .get_maintainer.ignore
  24. .gitignore
  25. .mailmap
  26. COPYING
  27. CREDITS
  28. Kbuild
  29. Kconfig
  30. MAINTAINERS
  31. Makefile
  32. README
  33. REPORTING-BUGS