[v2] test/distributor: fix sprintf with strlcpy
Checks
Commit Message
sprintf function is not secure as it doesn't check the length of string.
replaced sprintf with strlcpy.
Fixes: f74df2c57e ("test/distributor: test single and burst API")
Cc: stable@dpdk.org
Signed-off-by: Pallantla Poornima <pallantlax.poornima@intel.com>
---
v2: Addressed review comment to replace snprintf to strlcpy.
---
test/test/test_distributor.c | 7 +++++--
1 file changed, 5 insertions(+), 2 deletions(-)
Comments
Hi Poornima,
On 14/2/2019 9:45 AM, Pallantla Poornima wrote:
> sprintf function is not secure as it doesn't check the length of string.
> replaced sprintf with strlcpy.
>
> Fixes: f74df2c57e ("test/distributor: test single and burst API")
> Cc: stable@dpdk.org
>
> Signed-off-by: Pallantla Poornima <pallantlax.poornima@intel.com>
> ---
> v2: Addressed review comment to replace snprintf to strlcpy.
> ---
>
> test/test/test_distributor.c | 7 +++++--
> 1 file changed, 5 insertions(+), 2 deletions(-)
>
> diff --git a/test/test/test_distributor.c b/test/test/test_distributor.c
> index 98919ec0c..da3348fd1 100644
> --- a/test/test/test_distributor.c
> +++ b/test/test/test_distributor.c
> @@ -11,6 +11,7 @@
> #include <rte_mempool.h>
> #include <rte_mbuf.h>
> #include <rte_distributor.h>
> +#include <rte_string_fns.h>
>
> #define ITER_POWER 20 /* log 2 of how many iterations we do when timing. */
> #define BURST 32
> @@ -642,9 +643,11 @@ test_distributor(void)
>
> worker_params.dist = dist[i];
> if (i)
> - sprintf(worker_params.name, "burst");
> + strlcpy(worker_params.name, "burst",
> + sizeof(worker_params.name));
> else
> - sprintf(worker_params.name, "single");
> + strlcpy(worker_params.name, "single",
> + sizeof(worker_params.name));
>
> rte_eal_mp_remote_launch(handle_work,
> &worker_params, SKIP_MASTER);
Acked-by: David Hunt <david.hunt@intel.com>
25/03/2019 16:11, Hunt, David:
> On 14/2/2019 9:45 AM, Pallantla Poornima wrote:
> > sprintf function is not secure as it doesn't check the length of string.
> > replaced sprintf with strlcpy.
> >
> > Fixes: f74df2c57e ("test/distributor: test single and burst API")
> > Cc: stable@dpdk.org
> >
> > Signed-off-by: Pallantla Poornima <pallantlax.poornima@intel.com>
> > ---
> > v2: Addressed review comment to replace snprintf to strlcpy.
> > ---
>
> Acked-by: David Hunt <david.hunt@intel.com>
Applied, thanks
@@ -11,6 +11,7 @@
#include <rte_mempool.h>
#include <rte_mbuf.h>
#include <rte_distributor.h>
+#include <rte_string_fns.h>
#define ITER_POWER 20 /* log 2 of how many iterations we do when timing. */
#define BURST 32
@@ -642,9 +643,11 @@ test_distributor(void)
worker_params.dist = dist[i];
if (i)
- sprintf(worker_params.name, "burst");
+ strlcpy(worker_params.name, "burst",
+ sizeof(worker_params.name));
else
- sprintf(worker_params.name, "single");
+ strlcpy(worker_params.name, "single",
+ sizeof(worker_params.name));
rte_eal_mp_remote_launch(handle_work,
&worker_params, SKIP_MASTER);