From patchwork Thu May 23 11:50:46 2013
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Chen Gang <gang.chen@asianux.com>
X-Patchwork-Id: 245924
Return-Path: <netfilter-devel-owner@vger.kernel.org>
X-Original-To: incoming@patchwork.ozlabs.org
Delivered-To: patchwork-incoming@bilbo.ozlabs.org
Received: from vger.kernel.org (vger.kernel.org [209.132.180.67])
	by ozlabs.org (Postfix) with ESMTP id E8D4B2C0099
	for <incoming@patchwork.ozlabs.org>;
	Thu, 23 May 2013 21:51:41 +1000 (EST)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
	id S1757988Ab3EWLvj (ORCPT <rfc822;incoming@patchwork.ozlabs.org>);
	Thu, 23 May 2013 07:51:39 -0400
Received: from intranet.asianux.com ([58.214.24.6]:61024 "EHLO
	intranet.asianux.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S1758006Ab3EWLvi (ORCPT
	<rfc822;netfilter-devel@vger.kernel.org>);
	Thu, 23 May 2013 07:51:38 -0400
Received: by intranet.asianux.com (Postfix, from userid 103)
	id 90D8618402E2; Thu, 23 May 2013 19:51:36 +0800 (CST)
X-Spam-Score: -100.8
X-Spam-Checker-Version: SpamAssassin 3.1.9 (2007-02-13) on
	intranet.asianux.com
X-Spam-Level: 
X-Spam-Status: No, score=-100.8 required=5.0 tests=AWL,BAYES_00,
	RATWARE_GECKO_BUILD,USER_IN_WHITELIST autolearn=no version=3.1.9
Received: from [10.1.0.143] (unknown [219.143.36.82])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by intranet.asianux.com (Postfix) with ESMTP id 103661840251;
	Thu, 23 May 2013 19:51:36 +0800 (CST)
Message-ID: <519E0296.6010601@asianux.com>
Date: Thu, 23 May 2013 19:50:46 +0800
From: Chen Gang <gang.chen@asianux.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64;
	rv:17.0) Gecko/20130110 Thunderbird/17.0.2
MIME-Version: 1.0
To: Pablo Neira Ayuso <pablo@netfilter.org>
CC: kaber@trash.net, kuznet@ms2.inr.ac.ru, jmorris@namei.org,
	yoshfuji@linux-ipv6.org, David Miller <davem@davemloft.net>,
	netfilter-devel@vger.kernel.org, netfilter@vger.kernel.org,
	coreteam@netfilter.org, netdev <netdev@vger.kernel.org>
Subject: [PATCH v2] ipv4: netfilter: always let NUL terminated string ended
	by '\0'
References: <5195ECB3.5000006@asianux.com> <20130523110832.GB22553@localhost>
In-Reply-To: <20130523110832.GB22553@localhost>
Sender: netfilter-devel-owner@vger.kernel.org
Precedence: bulk
List-ID: <netfilter-devel.vger.kernel.org>
X-Mailing-List: netfilter-devel@vger.kernel.org

For NUL terminated string, need always be sure of ended by '\0'.

'prefix' max length is 128 (NF_LOG_PREFIXLEN), and 'pm->prefix' max
length is 32 (ULOG_PREFIX_LEN), so really need notice it.

'pm' is 'struct ulog_packet_msg_t' which may be copied to user mode
(defined in "include/uapi/..."), so can not use strlcpy() instead of.


Signed-off-by: Chen Gang <gang.chen@asianux.com>
---
 net/ipv4/netfilter/ipt_ULOG.c |    6 ++++--
 1 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/net/ipv4/netfilter/ipt_ULOG.c b/net/ipv4/netfilter/ipt_ULOG.c
index cf08218..ff4b781 100644
--- a/net/ipv4/netfilter/ipt_ULOG.c
+++ b/net/ipv4/netfilter/ipt_ULOG.c
@@ -231,8 +231,10 @@ static void ipt_ulog_packet(struct net *net,
 	put_unaligned(tv.tv_usec, &pm->timestamp_usec);
 	put_unaligned(skb->mark, &pm->mark);
 	pm->hook = hooknum;
-	if (prefix != NULL)
-		strncpy(pm->prefix, prefix, sizeof(pm->prefix));
+	if (prefix != NULL) {
+		strncpy(pm->prefix, prefix, sizeof(pm->prefix) - 1);
+		pm->prefix[sizeof(pm->prefix) - 1] = '\0';
+	}
 	else if (loginfo->prefix[0] != '\0')
 		strncpy(pm->prefix, loginfo->prefix, sizeof(pm->prefix));
 	else