From: Daniel Axtens <dja@axtens.net>
To: Michael Ellerman <mpe@ellerman.id.au>, linuxppc-dev@lists.ozlabs.org
Subject: Re: [PATCH 1/2] powerpc/prom_init: Convert prom_strcpy() into prom_strscpy_pad()
Date: Mon, 21 Jun 2021 22:57:29 +1000 [thread overview]
Message-ID: <87lf73iddy.fsf@dja-thinkpad.axtens.net> (raw)
In-Reply-To: <20210621064938.2021419-1-mpe@ellerman.id.au>
Hi
> -static char __init *prom_strcpy(char *dest, const char *src)
> +static ssize_t __init prom_strscpy_pad(char *dest, const char *src, size_t n)
> {
> - char *tmp = dest;
> + ssize_t rc;
> + size_t i;
>
> - while ((*dest++ = *src++) != '\0')
> - /* nothing */;
> - return tmp;
> + if (n == 0 || n > INT_MAX)
> + return -E2BIG;
> +
> + // Copy up to n bytes
> + for (i = 0; i < n && src[i] != '\0'; i++)
> + dest[i] = src[i];
> +
> + rc = i;
> +
> + // If we copied all n then we have run out of space for the nul
> + if (rc == n) {
> + // Rewind by one character to ensure nul termination
> + i--;
> + rc = -E2BIG;
> + }
> +
> + for (; i < n; i++)
> + dest[i] = '\0';
> +
> + return rc;
> }
>
This implementation seems good to me.
I copied it into a new C file and added the following:
int main() {
char longstr[255]="abcdefghijklmnopqrstuvwxyz";
char shortstr[5];
assert(prom_strscpy_pad(longstr, "", 0) == -E2BIG);
assert(prom_strscpy_pad(longstr, "hello", 255) == 5);
assert(prom_strscpy_pad(shortstr, "hello", 5) == -E2BIG);
assert(memcmp(shortstr, "hell", 5) == 0);
assert(memcmp(longstr, "hello\0\0\0\0\0\0\0\0\0", 6) == 0);
return 0;
}
All the assertions pass. I believe this covers all the conditions from
the strscpy_pad docstring.
Reviewed-by: Daniel Axtens <dja@axtens.net>
Kind regards,
Daniel
> static int __init prom_strncmp(const char *cs, const char *ct, size_t count)
> @@ -2701,7 +2719,7 @@ static void __init flatten_device_tree(void)
>
> /* Add "phandle" in there, we'll need it */
> namep = make_room(&mem_start, &mem_end, 16, 1);
> - prom_strcpy(namep, "phandle");
> + prom_strscpy_pad(namep, "phandle", sizeof("phandle"));
> mem_start = (unsigned long)namep + prom_strlen(namep) + 1;
>
> /* Build string array */
> --
> 2.25.1
next prev parent reply other threads:[~2021-06-21 12:58 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-06-21 6:49 [PATCH 1/2] powerpc/prom_init: Convert prom_strcpy() into prom_strscpy_pad() Michael Ellerman
2021-06-21 6:49 ` [PATCH 2/2] powerpc/prom_init: Pass linux_banner to firmware via option vector 7 Michael Ellerman
2021-06-22 18:11 ` Tyrel Datwyler
2021-06-23 0:38 ` Michael Ellerman
2021-06-21 12:57 ` Daniel Axtens [this message]
2021-06-22 4:11 ` [PATCH 1/2] powerpc/prom_init: Convert prom_strcpy() into prom_strscpy_pad() Michael Ellerman
2021-06-22 18:12 ` Tyrel Datwyler
2021-06-25 6:21 ` Michael Ellerman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=87lf73iddy.fsf@dja-thinkpad.axtens.net \
--to=dja@axtens.net \
--cc=linuxppc-dev@lists.ozlabs.org \
--cc=mpe@ellerman.id.au \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.