Caught pants down with strlcpy() vs strncpy() semantics

- rstrlcpy() calculates source string size regardless of length limit, but cpio fields are fixed length character arrays, not strings -> kaboom - wondering if zero-terminating strncpy() variant might be more fit to our purposes than strlcpy()-clone
author: Panu Matilainen <pmatilai@redhat.com> 2008-05-08 19:03:12 +0300
committer: Panu Matilainen <pmatilai@redhat.com> 2008-05-08 19:03:12 +0300
commit: 06a0d228d2c190a8bc59fe897ca980e5f98ef8bd (patch)
tree: d24fbd6f771c7878075c330de43c1eda7ba64c5a /lib/cpio.c
parent: 6a8ddd9bc22cd8bf7d5100da9915cdae91549a3b (diff)
download: rpm-06a0d228d2c190a8bc59fe897ca980e5f98ef8bd.tar.gz
rpm-06a0d228d2c190a8bc59fe897ca980e5f98ef8bd.tar.bz2
rpm-06a0d228d2c190a8bc59fe897ca980e5f98ef8bd.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/lib/cpio.c b/lib/cpio.c
index a4af575b9..92cdbc5f7 100644
--- a/lib/cpio.c
+++ b/lib/cpio.c
@@ -11,7 +11,6 @@
 
 #include <rpm/rpmio.h>
 #include <rpm/rpmlog.h>
-#include <rpm/rpmstring.h>
 
 #include "lib/cpio.h"
 #include "lib/fsm.h"
@@ -32,7 +31,8 @@ static int strntoul(const char *str,char **endptr, int base, size_t num)
     char buf[num+1], * end;
     unsigned long ret;
 
-    rstrlcpy(buf, str, num+1);
+    strncpy(buf, str, num);
+    buf[num] = '\0';
 
     ret = strtoul(buf, &end, base);
     if (*end != '\0')
author	Panu Matilainen <pmatilai@redhat.com>	2008-05-08 19:03:12 +0300
committer	Panu Matilainen <pmatilai@redhat.com>	2008-05-08 19:03:12 +0300
commit	06a0d228d2c190a8bc59fe897ca980e5f98ef8bd (patch)
tree	d24fbd6f771c7878075c330de43c1eda7ba64c5a /lib/cpio.c
parent	6a8ddd9bc22cd8bf7d5100da9915cdae91549a3b (diff)
download	rpm-06a0d228d2c190a8bc59fe897ca980e5f98ef8bd.tar.gz rpm-06a0d228d2c190a8bc59fe897ca980e5f98ef8bd.tar.bz2 rpm-06a0d228d2c190a8bc59fe897ca980e5f98ef8bd.zip