mirror of
https://github.com/Fishwaldo/Star64_linux.git
synced 2025-06-22 06:32:08 +00:00
Orangefs: Extra sanity insurance on buffer before using string functions on it.
Signed-off-by: Mike Marshall <hubcap@omnibond.com>
This commit is contained in:
Mike Marshall
parent
ab6652524a
commit
53f57fef43
1 changed files with 13 additions and 0 deletions
|
|
@ -678,6 +678,19 @@ static long dispatch_ioctl_command(unsigned int command, unsigned long arg)
|
||||||
ret = copy_from_user(&client_debug_array_string,
|
ret = copy_from_user(&client_debug_array_string,
|
||||||
(void __user *)arg,
|
(void __user *)arg,
|
||||||
ORANGEFS_MAX_DEBUG_STRING_LEN);
|
ORANGEFS_MAX_DEBUG_STRING_LEN);
|
||||||
|
/*
|
||||||
|
* The real client-core makes an effort to ensure
|
||||||
|
* that actual strings that aren't too long to fit in
|
||||||
|
* this buffer is what we get here. We're going to use
|
||||||
|
* string functions on the stuff we got, so we'll make
|
||||||
|
* this extra effort to try and keep from
|
||||||
|
* flowing out of this buffer when we use the string
|
||||||
|
* functions, even if somehow the stuff we end up
|
||||||
|
* with here is garbage.
|
||||||
|
*/
|
||||||
|
client_debug_array_string[ORANGEFS_MAX_DEBUG_STRING_LEN - 1] =
|
||||||
|
'\0';
|
||||||
|
|
||||||
if (ret != 0) {
|
if (ret != 0) {
|
||||||
pr_info("%s: CLIENT_STRING: copy_from_user failed\n",
|
pr_info("%s: CLIENT_STRING: copy_from_user failed\n",
|
||||||
__func__);
|
__func__);
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue