conf, tap: False "Buffer not null terminated" positives, CWE-170

Those strings are actually guaranteed to be NULL-terminated. Reported by Coverity. Signed-off-by: Stefano Brivio <sbrivio@redhat.com>
author: Stefano Brivio <sbrivio@redhat.com> 2022-04-05 12:33:31 +0200
committer: Stefano Brivio <sbrivio@redhat.com> 2022-04-07 11:44:35 +0200
commit: ceddcac74a6eafae8d959adcbfee17d4cae2c3a8 (patch)
tree: bd7c719bfc30063c3b8ee1f69e227e4176793ff4
parent: e46f67f15230e07ef35f4f54126a47ef5a60238b (diff)
download: passt-ceddcac74a6eafae8d959adcbfee17d4cae2c3a8.tar
passt-ceddcac74a6eafae8d959adcbfee17d4cae2c3a8.tar.gz
passt-ceddcac74a6eafae8d959adcbfee17d4cae2c3a8.tar.bz2
passt-ceddcac74a6eafae8d959adcbfee17d4cae2c3a8.tar.lz
passt-ceddcac74a6eafae8d959adcbfee17d4cae2c3a8.tar.xz
passt-ceddcac74a6eafae8d959adcbfee17d4cae2c3a8.tar.zst
passt-ceddcac74a6eafae8d959adcbfee17d4cae2c3a8.zip
2 files changed, 6 insertions, 6 deletions
diff --git a/conf.c b/conf.c
index 2412fc6..5c614cd 100644
--- a/conf.c
+++ b/conf.c
@@ -1035,7 +1035,7 @@ void conf(struct ctx *c, int argc, char **argv)
 				usage(argv[0]);
 			}
 
-			ret = snprintf(c->sock_path, sizeof(c->sock_path), "%s",
+			ret = snprintf(c->sock_path, UNIX_SOCK_MAX - 1, "%s",
 				       optarg);
 			if (ret <= 0 || ret >= (int)sizeof(c->pcap)) {
 				err("Invalid socket path: %s", optarg);
@@ -1048,9 +1048,9 @@ void conf(struct ctx *c, int argc, char **argv)
 				usage(argv[0]);
 			}
 
-			ret = snprintf(c->pasta_ifn, sizeof(c->pasta_ifn), "%s",
+			ret = snprintf(c->pasta_ifn, IFNAMSIZ - 1, "%s",
 				       optarg);
-			if (ret <= 0 || ret >= (int)sizeof(c->pasta_ifn)) {
+			if (ret <= 0 || ret >= IFNAMSIZ - 1) {
 				err("Invalid interface name: %s", optarg);
 				usage(argv[0]);
 			}
diff --git a/tap.c b/tap.c
index 8110577..04ceade 100644
--- a/tap.c
+++ b/tap.c
@@ -798,9 +798,9 @@ static void tap_sock_unix_init(struct ctx *c)
 		char *path = addr.sun_path;
 
 		if (*c->sock_path)
-			strncpy(path, c->sock_path, UNIX_PATH_MAX);
+			memcpy(path, c->sock_path, UNIX_PATH_MAX);
 		else
-			snprintf(path, UNIX_PATH_MAX, UNIX_SOCK_PATH, i);
+			snprintf(path, UNIX_PATH_MAX - 1, UNIX_SOCK_PATH, i);
 
 		ex = socket(AF_UNIX, SOCK_STREAM | SOCK_NONBLOCK, 0);
 		if (ex < 0) {
@@ -899,7 +899,7 @@ static int tap_ns_tun(void *arg)
 	int flags = O_RDWR | O_NONBLOCK | O_CLOEXEC;
 	struct ctx *c = (struct ctx *)arg;
 
-	strncpy(ifr.ifr_name, c->pasta_ifn, IFNAMSIZ);
+	memcpy(ifr.ifr_name, c->pasta_ifn, IFNAMSIZ);
 
 	if (ns_enter(c) ||
 	    (tun_ns_fd = open("/dev/net/tun", flags)) < 0 ||
author	Stefano Brivio <sbrivio@redhat.com>	2022-04-05 12:33:31 +0200
committer	Stefano Brivio <sbrivio@redhat.com>	2022-04-07 11:44:35 +0200
commit	ceddcac74a6eafae8d959adcbfee17d4cae2c3a8 (patch)
tree	bd7c719bfc30063c3b8ee1f69e227e4176793ff4
parent	e46f67f15230e07ef35f4f54126a47ef5a60238b (diff)
download	passt-ceddcac74a6eafae8d959adcbfee17d4cae2c3a8.tar passt-ceddcac74a6eafae8d959adcbfee17d4cae2c3a8.tar.gz passt-ceddcac74a6eafae8d959adcbfee17d4cae2c3a8.tar.bz2 passt-ceddcac74a6eafae8d959adcbfee17d4cae2c3a8.tar.lz passt-ceddcac74a6eafae8d959adcbfee17d4cae2c3a8.tar.xz passt-ceddcac74a6eafae8d959adcbfee17d4cae2c3a8.tar.zst passt-ceddcac74a6eafae8d959adcbfee17d4cae2c3a8.zip