user/sven/linux.git/include/linux/fortify-string.h, branch v5.15.44Linux Kernel
https://git.stealer.net/cgit.cgi/user/sven/linux.git/atom?h=v5.15.442021-11-18T18:16:25Zfortify: Fix dropped strcpy() compile-time write overflow check2021-11-18T18:16:25ZKees Cookkeescook@chromium.org2021-08-02T17:25:01Zurn:sha1:80adbd8c450235c6618311103ab578190a80bfd0
[ Upstream commit 072af0c638dc8a5c7db2edc4dddbd6d44bee3bdb ]
The implementation for intra-object overflow in str*-family functions
accidentally dropped compile-time write overflow checking in strcpy(),
leaving it entirely to run-time. Add back the intended check.
Fixes: 6a39e62abbaf ("lib: string.h: detect intra-object overflow in fortified string functions")
Cc: Daniel Axtens <dja@axtens.net>
Cc: Francis Laniel <laniel_francis@privacyrequired.com>
Signed-off-by: Kees Cook <keescook@chromium.org>
Reviewed-by: Nick Desaulniers <ndesaulniers@google.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>
string.h: move fortified functions definitions in a dedicated header.2021-02-26T17:41:04ZFrancis Laniellaniel_francis@privacyrequired.com2021-02-26T01:21:20Zurn:sha1:a28a6e860c6cf231cf3c5171c75c342adcd00406
This patch adds fortify-string.h to contain fortified functions
definitions. Thus, the code is more separated and compile time is
approximately 1% faster for people who do not set CONFIG_FORTIFY_SOURCE.
Link: https://lkml.kernel.org/r/20210111092141.22946-1-laniel_francis@privacyrequired.com
Link: https://lkml.kernel.org/r/20210111092141.22946-2-laniel_francis@privacyrequired.com
Signed-off-by: Francis Laniel <laniel_francis@privacyrequired.com>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>