ifconfig: Use strlcpy() instead of strncpy() for interface name copy
ClosedPublic
Actions

Authored by amy.vargas_netapp.com on Fri, Jan 16, 9:53 PM.

Details

Reviewers

pouria
delphij
imp

Group Reviewers

NetApp
network
Klara

Commits

rG2f900cbc5fdf: ifconfig: Use strlcpy(3) instead of strncpy(3) for interface name

Summary

Replace strncpy() with strlcpy() when copying the interface name into ifr.ifr_name in link_status(). This ensures proper NUL-termination and addresses a potential issue flagged by Coverity static analysis.

No functional change intended.

Test Plan

Build completed successfully

Diff Detail

Repository

rG FreeBSD src repository

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

amy.vargas_netapp.com created this revision.Fri, Jan 16, 9:53 PM

Herald added a subscriber: imp. · View Herald TranscriptFri, Jan 16, 9:53 PM

amy.vargas_netapp.com requested review of this revision.Fri, Jan 16, 9:53 PM

pouria accepted this revision.Sat, Jan 17, 9:54 AM

This revision is now accepted and ready to land.Sat, Jan 17, 9:54 AM

delphij accepted this revision.Sat, Jan 17, 9:06 PM

imp added inline comments.Sat, Jan 17, 10:39 PM

sbin/ifconfig/af_link.c
137	OK. This is a good change since ifr_name is an array of IF_NAMESIZE bytes (currently 16) that's documented to be null terminated: /* * Length of interface external name, including terminating '\0'. * Note: this is the same size as a generic device's external name. */ Though I'm not entirely sure what a 'generic device' might be, since newbus names can be longer than 16 characters... But I guess that part doesn't matter. 'including the terminating '\0'. While one could pass in a mal-formed ifa structure, pointing to a device that's longer than allowed and this would silently truncate it, the worst that could happen is that the kernel can't find the device for the SIOCGHWADDDR call and the error would be signalled there. tl;dr: Looks great!