| From 93f38b6fae0ea8987e22d9e6c38f8dfdccd867ee Mon Sep 17 00:00:00 2001 |
| From: Amir Goldstein <amir73il@gmail.com> |
| Date: Fri, 28 Sep 2018 20:41:48 +0300 |
| Subject: lockd: fix access beyond unterminated strings in prints |
| |
| From: Amir Goldstein <amir73il@gmail.com> |
| |
| commit 93f38b6fae0ea8987e22d9e6c38f8dfdccd867ee upstream. |
| |
| printk format used %*s instead of %.*s, so hostname_len does not limit |
| the number of bytes accessed from hostname. |
| |
| Signed-off-by: Amir Goldstein <amir73il@gmail.com> |
| Cc: stable@vger.kernel.org |
| Signed-off-by: J. Bruce Fields <bfields@redhat.com> |
| Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> |
| |
| --- |
| fs/lockd/host.c | 2 +- |
| 1 file changed, 1 insertion(+), 1 deletion(-) |
| |
| --- a/fs/lockd/host.c |
| +++ b/fs/lockd/host.c |
| @@ -340,7 +340,7 @@ struct nlm_host *nlmsvc_lookup_host(cons |
| }; |
| struct lockd_net *ln = net_generic(net, lockd_net_id); |
| |
| - dprintk("lockd: %s(host='%*s', vers=%u, proto=%s)\n", __func__, |
| + dprintk("lockd: %s(host='%.*s', vers=%u, proto=%s)\n", __func__, |
| (int)hostname_len, hostname, rqstp->rq_vers, |
| (rqstp->rq_prot == IPPROTO_UDP ? "udp" : "tcp")); |
| |
