[RFC PATCH 01/14] DFU: Do not copy the entity name over the buffer size
Masami Hiramatsu
masami.hiramatsu at linaro.org
Thu Jan 20 16:29:30 CET 2022
Use strlcpy() instead of strcpy() to prevent copying the
entity name over the name buffer size.
Signed-off-by: Masami Hiramatsu <masami.hiramatsu at linaro.org>
---
drivers/dfu/dfu.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/drivers/dfu/dfu.c b/drivers/dfu/dfu.c
index af3975925a..66c41b5e76 100644
--- a/drivers/dfu/dfu.c
+++ b/drivers/dfu/dfu.c
@@ -503,7 +503,7 @@ static int dfu_fill_entity(struct dfu_entity *dfu, char *s, int alt,
debug("%s: %s interface: %s dev: %s\n", __func__, s, interface, devstr);
st = strsep(&s, " ");
- strcpy(dfu->name, st);
+ strlcpy(dfu->name, st, DFU_NAME_SIZE);
dfu->alt = alt;
dfu->max_buf_size = 0;
More information about the U-Boot
mailing list