image: Protect against overflow in unknown_msg()

Coverity complains that this can overflow. If we later increase the size of one of the strings in the table, it could happen. Adjust the code to protect against this. Signed-off-by: Simon Glass <sjg@chromium.org> Reported-by: Coverity (CID: 150964)

image: Protect against overflow in unknown_msg()
ae3de0d8 · Simon Glass · Tom Rini · eb9e699f · ae3de0d8
Commit ae3de0d8 authored 8 years ago by Simon Glass Committed by Tom Rini 8 years ago
--- a/common/image.c
+++ b/common/image.c
@@ -587,10 +587,12 @@ const table_entry_t *get_table_entry(const table_entry_t *table, int id)
 static const char *unknown_msg(enum ih_category category)
 {
+	static const char unknown_str[] = "Unknown ";
 	static char msg[30];
-	strcpy(msg, "Unknown ");
+	strcpy(msg, unknown_str);
-	strcat(msg, table_info[category].desc);
+	strncat(msg, table_info[category].desc,
+		sizeof(msg) - sizeof(unknown_str));
 	return msg;
 }