From mboxrd@z Thu Jan 1 00:00:00 1970 From: Thomas Monjalon Subject: Re: [PATCH] examples/vhost_scsi: fix buffer not terminated Date: Mon, 14 May 2018 21:08:08 +0200 Message-ID: <1932528.5N0iXfLR29@xps> References: <20170922130959.13484-1-michalx.k.jastrzebski@intel.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7Bit Cc: dev@dpdk.org, yliu@fridaylinux.org, maxime.coquelin@redhat.com, deepak.k.jain@intel.com, changpeng.liu@intel.com, stable@dpdk.org, bruce.richardson@intel.com To: Michal Jastrzebski , Jacek Piasecki , reshma.pattan@intel.com Return-path: In-Reply-To: <20170922130959.13484-1-michalx.k.jastrzebski@intel.com> List-Id: DPDK patches and discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: dev-bounces@dpdk.org Sender: "dev" 22/09/2017 15:09, Michal Jastrzebski: > From: Jacek Piasecki > > Fix size of buffer in strcpy. There was possible to get > not terminated string after copy operation. > > Coverity issue: 158629 > Fixes: db75c7af19bb ("examples/vhost_scsi: introduce a new sample app") > Cc: changpeng.liu@intel.com > Cc: stable@dpdk.org > > Signed-off-by: Jacek Piasecki > --- > - strncpy(bdev->name, bdev_name, sizeof(bdev->name)); > - strncpy(bdev->product_name, bdev_serial, sizeof(bdev->product_name)); > + strncpy(bdev->name, bdev_name, sizeof(bdev->name) - 1); > + strncpy(bdev->product_name, bdev_serial, > + sizeof(bdev->product_name) - 1); Can it be fixed with strlcpy? I wonder why recent patch from Reshma is not touching these lines: http://dpdk.org/commit/21ce8e44b8d