RE: [PATCH 04/22] scsi: fusion: fix string overflow warning

From: David Laight
Date: Mon Jul 17 2017 - 05:17:59 EST

Next message: Maxime Ripard: "Re: [PATCH 05/11] mmc: sunxi: Support controllers that can use both old and new timings"
Previous message: Alexandre Belloni: "Re: [PATCH 3/3] ARM: dts: at91: sama5d2: use sama5d2 compatible string for SMC"
Next in thread: Arnd Bergmann: "Re: [PATCH 04/22] scsi: fusion: fix string overflow warning"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Arnd Bergmann
> Sent: 14 July 2017 13:07
> gcc points out a theorerical string overflow:
>
> drivers/message/fusion/mptbase.c: In function 'mpt_detach':
> drivers/message/fusion/mptbase.c:2103:17: error: '%s' directive writing up to 31 bytes into a region
> of size 28 [-Werror=format-overflow=]
> sprintf(pname, MPT_PROCFS_MPTBASEDIR "/%s/summary", ioc->name);
> ^~~~~
> drivers/message/fusion/mptbase.c:2103:2: note: 'sprintf' output between 13 and 44 bytes into a
> destination of size 32
>
> We can simply double the size of the local buffer here to be on the
> safe side.

I think I'd change it to snprintf() as well.
Saves any worries if ioc->name isn't '\0' terminated.

David

Next message: Maxime Ripard: "Re: [PATCH 05/11] mmc: sunxi: Support controllers that can use both old and new timings"
Previous message: Alexandre Belloni: "Re: [PATCH 3/3] ARM: dts: at91: sama5d2: use sama5d2 compatible string for SMC"
Next in thread: Arnd Bergmann: "Re: [PATCH 04/22] scsi: fusion: fix string overflow warning"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]