scripts: ensure the cocci script for miiphy_register does not leave NULL-unterminated strings
strncpy() simply bails out when copying a source string whose size exceeds the destination string size, potentially leaving the destination string unterminated. One possible way to address is to pass MDIO_NAME_LEN - 1 and a previously zero-initialized destination string, but this is more difficult to maintain. The chosen alternative is to use strlcpy(), which properly limits the copy len in the (srclen >= size) case to "size - 1", and which is also more efficient than the strncpy() byte-by-byte implementation by using memcpy. The destination string returned by strlcpy() is always NULL terminated. Signed-off-by: Vladimir Oltean <vladimir.oltean@nxp.com>
This commit is contained in:
Vladimir Oltean
committed by
Ramon Fried
Ramon Fried
parent
bf35c3121a
commit
81386ed405
@@ -16,7 +16,7 @@ identifier readfunc, writefunc;
|
||||
- miiphy_register(devname, readfunc, writefunc);
|
||||
+ struct mii_dev *mdiodev = mdio_alloc();
|
||||
+ if (!mdiodev) return -ENOMEM;
|
||||
+ strncpy(mdiodev->name, devname, MDIO_NAME_LEN);
|
||||
+ strlcpy(mdiodev->name, devname, MDIO_NAME_LEN);
|
||||
+ mdiodev->read = readfunc;
|
||||
+ mdiodev->write = writefunc;
|
||||
+
|
||||
|
||||
Reference in New Issue
Block a user