From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-wm0-f66.google.com ([74.125.82.66]:36757 "EHLO mail-wm0-f66.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751788AbdLFRti (ORCPT ); Wed, 6 Dec 2017 12:49:38 -0500 Date: Wed, 6 Dec 2017 18:49:34 +0100 From: Ingo Molnar To: Arnd Bergmann Cc: Alexander Viro , Ingo Molnar , Peter Zijlstra , Kees Cook , Serge Hallyn , James Morris , Andrew Morton , Aleksa Sarai , "Eric W. Biederman" , Frederic Weisbecker , Thomas Gleixner , linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org Subject: Re: [PATCH v2] exec: avoid gcc-8 warning for get_task_comm Message-ID: <20171206174934.e5s6c5dh5lscwkyp@gmail.com> References: <20171205151724.1764896-1-arnd@arndb.de> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20171205151724.1764896-1-arnd@arndb.de> Sender: linux-fsdevel-owner@vger.kernel.org List-ID: * Arnd Bergmann wrote: > gcc-8 warns about using strncpy() with the source size as the limit: > > fs/exec.c:1223:32: error: argument to 'sizeof' in 'strncpy' call is the same expression as the source; did you mean to use the size of the destination? [-Werror=sizeof-pointer-memaccess] > > This is indeed slightly suspicious, as it protects us from source > arguments without NUL-termination, but does not guarantee that the > destination is terminated. > > This keeps the strncpy() to ensure we have properly padded target buffer, > but ensures that we use the correct length, by passing the actual length > of the destination buffer as well as adding a build-time check to ensure > it is exactly TASK_COMM_LEN. There are only 23 callsights which I all > reviewed to ensure this is currently the case. We could get away with > doing only the check or passing the right length, but it doesn't hurt > to do both. > > Suggested-by: Kees Cook > Signed-off-by: Arnd Bergmann Looks useful. Acked-by: Ingo Molnar Thanks, Ingo