More thinking securely...
Matthew Dillon
dillon at apollo.backplane.com
Tue Dec 9 11:16:38 PST 2003
:Would there be any value (right now) in moving away from unsafe/unbounded
:string functions like OpenBSD (ex. strcopy->strlcpy) and the like?
:
:Cheers,
:Ryan
Yes, there is definitely value in this sort of work, even for the
'safe' situations where old functions are used (like
sprintf(buf, "%d", v)), simply because then the audited and changed
functions will not show up in people's grep's for old functions
any more :-)
But the work must definitely be reviewed. For every 50 string functions
you replace you have a good chance at introducing 1 new bug :-)
-Matt
Matthew Dillon
<dillon at xxxxxxxxxxxxx>
More information about the Kernel
mailing list