Received: by 2002:a05:7412:b130:b0:e2:908c:2ebd with SMTP id az48csp727504rdb; Fri, 17 Nov 2023 10:51:21 -0800 (PST) X-Google-Smtp-Source: AGHT+IFsaBtVn9ClsVA8J3MpELSvw9x8/3OjJOYVm+ssYiuiVqyWvPwnrU0ENet5s3Ci1Z3LtHGH X-Received: by 2002:a17:903:2306:b0:1cc:589d:e584 with SMTP id d6-20020a170903230600b001cc589de584mr657410plh.16.1700247080799; Fri, 17 Nov 2023 10:51:20 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1700247080; cv=none; d=google.com; s=arc-20160816; b=GQb/UO7Dycq24ojlD72j1R0HWOjw7ZUdXQ7pmPUTZWVJ7p8v6N8ljVDp4RjDHmbIig Gbv/bpQtSMyGMtaVeT2P+zBbc9k1fSjdPwgRcoCcISg+0hhyEp6OmboV0tEuypEzpp1Z FhHMK9P8wC9jttew7SXTIx6ztKvB6SZ8gRVuotn01fsYr3Z2+jlCcZDmQrqIr9vZSIru IOlIY4V1q95epOMJpTUoRBoEvDPuNIFLkxdw+L+REFHXpFWzfbI9+Mdi+dMOsZRZ6VJ2 YfPuHEuazqpz8N0LXGmun1Ad2tGyBfK0+kuugfzgBFVF81FA8ZAV8CUFsOqDczFHe0R4 9/Dw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version :dkim-signature; bh=DtpYAOIzka1JBZk8iAppwwSnkzFLFfJkyz+jdr3nWyE=; fh=Sg6jRNUYpfG3SsSS1O0qCKmM0phiY4SiBIiH2sqYFWg=; b=dySvTdV+tBg5yccr79DJYHhaRSebJLhN0cT0TCQRjYHDIL6PgQQsuJ8Ql/ehTtdgUF q3cDeSqE5KlFZGf58CaDA/f/QLJGz/1x3kQPB0VKBmG2REmGrOYWdfC62n6/fH6WfYln J6UlH7SO87FT3/RefcvI5IdXmcfbEjDlRjH29BE4StqHdPlvOhTPkiTf8R4OJFbPSMH1 1UP4CtoxMjzdqZ3vG2jmmPt9NKACiD5sguK9ocwbeGJXIpDrJA40lNyzsh3CWKfPvOP2 mgNiAsjeyiriQr/R38/2iYiO91mAvkJW79FIjoNHvrS+CPOftJMWoNw8oCyHxlQCyQuJ DeDQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20230601 header.b=Ox7GGa5l; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::3:8 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from fry.vger.email (fry.vger.email. [2620:137:e000::3:8]) by mx.google.com with ESMTPS id lm15-20020a170903298f00b001c3a05b0b58si2593868plb.500.2023.11.17.10.51.20 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 17 Nov 2023 10:51:20 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::3:8 as permitted sender) client-ip=2620:137:e000::3:8; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20230601 header.b=Ox7GGa5l; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::3:8 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: from out1.vger.email (depot.vger.email [IPv6:2620:137:e000::3:0]) by fry.vger.email (Postfix) with ESMTP id 096DF834A751; Fri, 17 Nov 2023 10:51:18 -0800 (PST) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.103.11 at fry.vger.email Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231809AbjKQSuj (ORCPT + 99 others); Fri, 17 Nov 2023 13:50:39 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:60716 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229535AbjKQSuh (ORCPT ); Fri, 17 Nov 2023 13:50:37 -0500 Received: from mail-yb1-xb33.google.com (mail-yb1-xb33.google.com [IPv6:2607:f8b0:4864:20::b33]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id B425CE6 for ; Fri, 17 Nov 2023 10:50:34 -0800 (PST) Received: by mail-yb1-xb33.google.com with SMTP id 3f1490d57ef6-d9ca471cf3aso2233202276.2 for ; Fri, 17 Nov 2023 10:50:34 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20230601; t=1700247034; x=1700851834; darn=vger.kernel.org; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=DtpYAOIzka1JBZk8iAppwwSnkzFLFfJkyz+jdr3nWyE=; b=Ox7GGa5lvbFsB6OFCm0JduYejFsWng/7QAbNYILaxQzOXw5ryZ3gGXcohJnUYwqWxI M387O6Kg/0IfGXTIMDiHLv6FBYWoTfXXnYSLLxKIjBekczh0xAy9qzedb6iR70xIvWeJ pAjtmwMPBczU6mxPBXsiJKDby1FcPFTsMXWhiknnuUAzJ+FNNewzkdCPHhjlKJcramvU ek3c6QlXCPixHT6ke5QJ0DH1z9wLHRZ+A5dPVml1VeLhvxD+rzU5h48lTanmF4TWUP0+ /Lfhe7st7tHvqGK2BHdOc3wZR4oigDrnGHJUUykNsNTokUmWl8eahgsj7Dhwm4MldZfx gXaA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1700247034; x=1700851834; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=DtpYAOIzka1JBZk8iAppwwSnkzFLFfJkyz+jdr3nWyE=; b=hIxwhYMRO0vxWA4BFnh3WSCtriB/9yXGwvU7uNcdHJqpn2n0jUPb48Qdf+OA5lt5/Y n0WRKNKMiMDRe/vh6rRpNKx6JwkkMPJ4UbBnFF8QNvFjBSlwvEETp8ThkE8qSWtIQ+3b 1tavi7T8ZVOM31Fr6fxATqtXrwFUTdVzYLXS+8JgReHHmaaXnox26i7ru+sCzMJMlVGA cLzHyad2mcJ7Rln9Lw8TYUP4WnkCqOXMyhb2zyB/dC2sFhYHUmZ8K83Kcm7UL8thI2Rk lpdalk5LQqzh/fnvBWcPnGkP88meJ8tDSWblrlwOWL7ngNbXYlPO6oarSLsTKo81VoOc iyJA== X-Gm-Message-State: AOJu0Yybfq1O+jG8Dp6m6+m+uAZ34NSD7C8gsiIsR1KfffuH84oANeUu fvSlXigr2scPfZfMS90m5gFAs39pLn9SMp6QQ7rKcDY7nh00Ii6FTVqpNg== X-Received: by 2002:a05:6902:1508:b0:d91:c3fe:6144 with SMTP id q8-20020a056902150800b00d91c3fe6144mr286813ybu.3.1700247033764; Fri, 17 Nov 2023 10:50:33 -0800 (PST) MIME-Version: 1.0 References: <20231116191409.work.634-kees@kernel.org> In-Reply-To: <20231116191409.work.634-kees@kernel.org> From: "T.J. Mercier" Date: Fri, 17 Nov 2023 10:50:21 -0800 Message-ID: Subject: Re: [PATCH] dma-buf: Replace strlcpy() with strscpy() To: Kees Cook Cc: Sumit Semwal , linux-kernel@vger.kernel.org, dri-devel@lists.freedesktop.org, Azeem Shaikh , linaro-mm-sig@lists.linaro.org, linux-hardening@vger.kernel.org, =?UTF-8?Q?Christian_K=C3=B6nig?= , linux-media@vger.kernel.org Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Spam-Status: No, score=-8.4 required=5.0 tests=DKIMWL_WL_MED,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS, MAILING_LIST_MULTI,SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE, USER_IN_DEF_DKIM_WL autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on fry.vger.email Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.6.4 (fry.vger.email [0.0.0.0]); Fri, 17 Nov 2023 10:51:18 -0800 (PST) On Thu, Nov 16, 2023 at 11:14=E2=80=AFAM Kees Cook = wrote: > > strlcpy() reads the entire source buffer first. This read may exceed > the destination size limit. This is both inefficient and can lead > to linear read overflows if a source string is not NUL-terminated[1]. > Additionally, it returns the size of the source string, not the > resulting size of the destination string. In an effort to remove strlcpy(= ) > completely[2], replace strlcpy() here with strscpy(). > > Link: https://www.kernel.org/doc/html/latest/process/deprecated.html#strl= cpy [1] > Link: https://github.com/KSPP/linux/issues/89 [2] > Cc: Sumit Semwal > Cc: "Christian K=C3=B6nig" > Cc: Azeem Shaikh > Cc: linux-media@vger.kernel.org > Cc: dri-devel@lists.freedesktop.org > Cc: linaro-mm-sig@lists.linaro.org > Signed-off-by: Kees Cook Reviewed-by: T.J. Mercier strscpy returns -E2BIG when it truncates / force null-terminates which would provide the wrong argument for dynamic_dname, but dma_buf_set_name{_user} makes sure we have a null-terminated string of the appropriate maximum size in dmabuf->name.