[PATCH] crypto/openssl: fix potential string overflow

Stephen Hemminger stephen at networkplumber.org
Thu Oct 17 18:07:53 CEST 2024

Previous message (by thread): [v1 2/3] meson: add a meson option to install examples source
Next message (by thread): [PATCH v3] bus/fslmc/dpaa2: replace system("echo ...") with file i/o
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The algorithm name is a string and should be copied with strlcpy()
rather than rte_memcpy(). This fixes a warning detected with
clang and ASAN.

Bugzilla ID: 1565
Fixes: 2b9c693f6ef5 ("crypto/openssl: support AES-CMAC operations")
Cc: asekhar at marvell.com

Signed-off-by: Stephen Hemminger <stephen at networkplumber.org>
---
 drivers/crypto/openssl/rte_openssl_pmd.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/drivers/crypto/openssl/rte_openssl_pmd.c b/drivers/crypto/openssl/rte_openssl_pmd.c
index 9657b70c7a..bb706dd3e8 100644
--- a/drivers/crypto/openssl/rte_openssl_pmd.c
+++ b/drivers/crypto/openssl/rte_openssl_pmd.c
@@ -692,7 +692,7 @@ openssl_set_session_auth_parameters(struct openssl_session *sess,
 		else
 			return -EINVAL;
 
-		rte_memcpy(algo_name, algo, strlen(algo) + 1);
+		strlcpy(algo_name, algo, sizeof(algo_name));
 		params[0] = OSSL_PARAM_construct_utf8_string(
 				OSSL_MAC_PARAM_CIPHER, algo_name, 0);
 		params[1] = OSSL_PARAM_construct_end();
-- 
2.45.2

Previous message (by thread): [v1 2/3] meson: add a meson option to install examples source
Next message (by thread): [PATCH v3] bus/fslmc/dpaa2: replace system("echo ...") with file i/o
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the dev mailing list