diff options
author | aliguori <aliguori@c046a42c-6fe2-441c-8c8c-71466251a162> | 2008-09-22 15:04:31 +0000 |
---|---|---|
committer | aliguori <aliguori@c046a42c-6fe2-441c-8c8c-71466251a162> | 2008-09-22 15:04:31 +0000 |
commit | 4cdf4dbf3e5a33a10277bfce0d95b82212fd7d02 (patch) | |
tree | abd558cf024f65eebfdf681fa7529081cbf1da1d /usb-linux.c | |
parent | 29459ac0d0dce3015b503a6bdc337ab163800728 (diff) | |
download | qemu-4cdf4dbf3e5a33a10277bfce0d95b82212fd7d02.tar.gz qemu-4cdf4dbf3e5a33a10277bfce0d95b82212fd7d02.tar.bz2 qemu-4cdf4dbf3e5a33a10277bfce0d95b82212fd7d02.zip |
Don't use sprintf() or strcpy()
They are unsafe. The current code is correct, but to be safer, we should pass
an explicit size.
Signed-off-by: Anthony Liguori <aliguori@us.ibm.com>
git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@5290 c046a42c-6fe2-441c-8c8c-71466251a162
Diffstat (limited to 'usb-linux.c')
-rw-r--r-- | usb-linux.c | 20 |
1 files changed, 10 insertions, 10 deletions
diff --git a/usb-linux.c b/usb-linux.c index 91acccdd7e..c5da5b5130 100644 --- a/usb-linux.c +++ b/usb-linux.c @@ -1449,20 +1449,20 @@ static int usb_host_info_device(void *opaque, int bus_num, int addr, return 0; } -static void dec2str(int val, char *str) +static void dec2str(int val, char *str, size_t size) { if (val == -1) - strcpy(str, "*"); + snprintf(str, size, "*"); else - sprintf(str, "%d", val); + snprintf(str, size, "%d", val); } -static void hex2str(int val, char *str) +static void hex2str(int val, char *str, size_t size) { if (val == -1) - strcpy(str, "*"); + snprintf(str, size, "*"); else - sprintf(str, "%x", val); + snprintf(str, size, "%x", val); } void usb_host_info(void) @@ -1475,10 +1475,10 @@ void usb_host_info(void) term_printf(" Auto filters:\n"); for (f = usb_auto_filter; f; f = f->next) { char bus[10], addr[10], vid[10], pid[10]; - dec2str(f->bus_num, bus); - dec2str(f->addr, addr); - hex2str(f->vendor_id, vid); - hex2str(f->product_id, pid); + dec2str(f->bus_num, bus, sizeof(bus)); + dec2str(f->addr, addr, sizeof(addr)); + hex2str(f->vendor_id, vid, sizeof(vid)); + hex2str(f->product_id, pid, sizeof(pid)); term_printf(" Device %s.%s ID %s:%s\n", bus, addr, vid, pid); } } |