Re: [PATCH] scsi: libfc: Fix potential buffer overflow in fc_ct_ms_fill()

Next message: Herbert Xu: "Re: [PATCH v2] crypto: af_alg - Fix incorrect boolean values in af_alg_ctx"
Previous message: viswanath: "Re: [PATCH net v3] net: usb: Remove disruptive netif_wake_queue in rtl8150_set_multicast"
Next in thread: Martin K. Petersen: "Re: [PATCH] scsi: libfc: Fix potential buffer overflow in fc_ct_ms_fill()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Martin K. Petersen

Date: Wed Sep 24 2025 - 21:58:19 EST

Alok,

> The fc_ct_ms_fill() helper currently formats the OS name and version
> into entry->value using "%s v%s". Since init_utsname()->sysname and
> ->release are unbounded strings, snprintf() may attempt to write more
> than FC_FDMI_HBA_ATTR_OSNAMEVERSION_LEN bytes, triggering a
> -Wformat-truncation warning with W=1.

Applied to 6.18/scsi-staging, thanks!

--
Martin K. Petersen