Kees Cook b8f2688258 inotify: Use strscpy() for event->name copies ...

Since we have already allocated "len + 1" space for event->name, make sure
that name->name cannot ever accidentally cause a copy overflow by calling
strscpy() instead of the unbounded strcpy() routine. This assists in
the ongoing efforts to remove the unsafe strcpy() API[1] from the kernel.

Link: https://github.com/KSPP/linux/issues/88 [1]
Signed-off-by: Kees Cook <kees@kernel.org>
Signed-off-by: Jan Kara <jack@suse.cz>
Link: https://patch.msgid.link/20241216224507.work.859-kees@kernel.org

2024-12-18 11:33:40 +01:00

..

dnotify

get rid of ...lookup...fdget_rcu() family

2024-10-07 13:34:41 -04:00

fanotify

Merge tag 'fsnotify_for_v6.13-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/jack/linux-fs

2024-11-21 09:55:45 -08:00

inotify

inotify: Use strscpy() for event->name copies

2024-12-18 11:33:40 +01:00

fdinfo.c

fsnotify: Avoid -Wflex-array-member-not-at-end warning

2024-03-26 10:53:32 +01:00

fdinfo.h

License cleanup: add SPDX GPL-2.0 license identifier to files with no license

2017-11-02 11:10:55 +01:00

fsnotify.c

fsnotify: fix sending inotify event with unexpected filename

2024-11-13 18:18:59 +01:00

fsnotify.h

fsnotify: clear PARENT_WATCHED flags lazily

2024-06-05 09:52:38 +02:00

group.c

inotify: Fix possible deadlock in fsnotify_destroy_mark

2024-10-02 15:14:29 +02:00

Kconfig

fs/notify: Remove "select SRCU"

2023-02-02 16:26:06 -08:00

Makefile

License cleanup: add SPDX GPL-2.0 license identifier to files with no license

2017-11-02 11:10:55 +01:00

mark.c

fsnotify: Fix ordering of iput() and watched_objects decrement

2024-11-18 17:33:13 +01:00

notification.c

fsnotify: Pass group argument to free_event

2021-10-27 12:34:18 +02:00