[PATCH v7 7/9] coredump: validate socket name as it is written
Christian Brauner
brauner at kernel.org
Fri May 16 13:29:24 UTC 2025
> > The third strscpy() argument is semantically supposed to be the
> > destination buffer size, not the amount of data to copy. For trivial
> > invocations like here, strscpy() actually allows you to leave out the
> > third argument.
>
> Eeeeewww, that's really implicit behavior. I can use the destination
Ah, I see the argument is optional. I thought you could pass 0 or
something weird.
More information about the Linux-security-module-archive
mailing list