On Mon, Sep 10, 2018 at 5:19 AM, Mauro Carvalho Chehab <mchehab+samsung@xxxxxxxxxx> wrote: > The strncpy() function is being deprecated upstream. Replace > it by the safer strscpy(). This one I'm quite concerned about. This could lead to kernel memory exposures if any of the callers depend on strncpy()'s trailing NUL-padding to clear a buffer of prior contents. How did you validate that for these changes? -Kees -- Kees Cook Pixel Security
