Hi,
I think there is a bug in the source code.
umount02.c ( line 173 ).
umount03.c ( line 152 ).
In both the cases the string variable "Type" is not null- terminated. This
variable ("Type") indicates the filesystem type, which is used later in the
code.
In the above said lines of code, I can observe that 'strlen(fstype)' is used
within strncpy. Now, strlen returns the length of string excluding the null
character. Man page of strncpy states that the 'dest' string is null
terminated only if it is present in first 'n' bytes of the 'src'. In our
case, since strlen returns lenght excluding the null character the string
"Type" is not null terminated.
Kindly confirm the same.
Regards,
Rohit.
------------------------------------------------------------------------------
Register Now & Save for Velocity, the Web Performance & Operations
Conference from O'Reilly Media. Velocity features a full day of
expert-led, hands-on workshops and two days of sessions from industry
leaders in dedicated Performance & Operations tracks. Use code vel09scf
and Save an extra 15% before 5/3. http://p.sf.net/sfu/velocityconf
_______________________________________________
Ltp-list mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/ltp-list
