Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 0da0e51729959e047e2e6f4a8e3554826b8cc607
commit0da0e51729959e047e2e6f4a8e3554826b8cc607[log] [tgz]
authorDan Carpenter <dan.carpenter@oracle.com>Mon May 22 15:08:31 2017 +0300
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>Sat Nov 10 07:42:46 2018 -0800
tree2d9715add7a7bb123bd19c80654dec87af91c445
parent01acd933d6184a7626f5e0dac1ad0cb794aa74a5 [diff]
orangefs: off by ones in xattr size checks

[ Upstream commit 5f13e58767a53ebb54265e03c0c4a67650286263 ]

A previous patch which claimed to remove off by ones actually introduced
them.

strlen() returns the length of the string not including the NUL
character.  We are using strcpy() to copy "name" into a buffer which is
ORANGEFS_MAX_XATTR_NAMELEN characters long.  We should make sure to
leave space for the NUL, otherwise we're writing one character beyond
the end of the buffer.

Fixes: e675c5ec51fe ("orangefs: clean up oversize xattr validation")
Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: Mike Marshall <hubcap@omnibond.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>
1 file changed
tree: 2d9715add7a7bb123bd19c80654dec87af91c445
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .cocciconfig
  24. .get_maintainer.ignore
  25. .gitattributes
  26. .gitignore
  27. .mailmap
  28. COPYING
  29. CREDITS
  30. Kbuild
  31. Kconfig
  32. MAINTAINERS
  33. Makefile
  34. README
  35. REPORTING-BUGS