pty(4): Use strlcpy to guarantee destination buffer isn't overrun

The devtoname() name is strcpyed into a small stack buffer. Sure, we always expect the name to be ttyXX (or ptyXX). If that's the case, strlcpy() doesn't hurt. Reported by: Coverity CID: 1006768 Sponsored by: EMC / Isilon Storage Division
2016-04-20 04:50:33 +00:00 · 2016-04-20 04:50:33 +00:00 · b51230b720
commit b51230b720
parent e3081f7e3e
1 changed files with 1 additions and 1 deletions
--- a/sys/dev/pty/pty.c
+++ b/sys/dev/pty/pty.c
@ -67,7 +67,7 @@ ptydev_fdopen(struct cdev *dev, int fflags, struct thread *td, struct file *fp)
 		return (EBUSY);

 	/* Generate device name and create PTY. */
-	strcpy(name, devtoname(dev));
+	strlcpy(name, devtoname(dev), sizeof(name));
 	name[0] = 't';

 	error = pts_alloc_external(fflags & (FREAD|FWRITE), td, fp, dev, name);