Skip to content

Commit

Permalink
dmaengine: ppc4xx: Use scnprintf() for avoiding potential buffer over…
Browse files Browse the repository at this point in the history 
…flow

Since snprintf() returns the would-be-output size instead of the
actual output size, the succeeding calls may go beyond the given
buffer limit.  Fix it by replacing with scnprintf().

Signed-off-by: Takashi Iwai <tiwai@suse.de>
Link: https://lore.kernel.org/r/20200311071606.4485-1-tiwai@suse.de
Signed-off-by: Vinod Koul <vkoul@kernel.org>
  • Loading branch information
Takashi Iwai authored and Vinod Koul committed Mar 11, 2020
1 parent 91124ac commit 3a5a8a2
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion drivers/dma/ppc4xx/adma.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4303,7 +4303,7 @@ static ssize_t devices_show(struct device_driver *dev, char *buf)
for (i = 0; i < PPC440SPE_ADMA_ENGINES_NUM; i++) {
if (ppc440spe_adma_devices[i] == -1)
continue;
size += snprintf(buf + size, PAGE_SIZE - size,
size += scnprintf(buf + size, PAGE_SIZE - size,
"PPC440SP(E)-ADMA.%d: %s\n", i,
ppc_adma_errors[ppc440spe_adma_devices[i]]);
}
Expand Down

0 comments on commit 3a5a8a2

Please sign in to comment.