NFSD: Fix destination buffer size in nfsd4_ssc_setup_dul()

Commit 5304877936c0 ("NFSD: Fix strncpy() fortify warning") replaced strncpy(,, sizeof(..)) with strlcpy(,, sizeof(..) - 1), but strlcpy() already guaranteed NUL-termination of the destination buffer and subtracting one byte potentially truncated the source string. The incorrect size was then carried over in commit 72f78ae00a8e ("NFSD: move from strlcpy with unused retval to strscpy") when switching from strlcpy() to strscpy(). Fix this off-by-one error by using the full size of the destination buffer again. Cc: stable@vger.kernel.org Fixes: 5304877936c0 ("NFSD: Fix strncpy() fortify warning") Signed-off-by: Thorsten Blum <thorsten.blum@linux.dev> Signed-off-by: Chuck Lever <chuck.lever@oracle.com>
author: Thorsten Blum <thorsten.blum@linux.dev> 2025-08-06 03:10:01 +0200
committer: Chuck Lever <chuck.lever@oracle.com> 2025-09-21 19:24:50 -0400
commit: ab1c282c010c4f327bd7addc3c0035fd8e3c1721 (patch)
tree: cafbba7d3dfed1c92d723065eee6a4209d663b53
parent: 9ebcd022a34388bd3c37c6a11c1a9d49d5394eb2 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/fs/nfsd/nfs4proc.c b/fs/nfsd/nfs4proc.c
index bfebe6e25638..d7c58aa64f06 100644
--- a/fs/nfsd/nfs4proc.c
+++ b/fs/nfsd/nfs4proc.c
@@ -1519,7 +1519,7 @@ try_again:
 		return 0;
 	}
 	if (work) {
-		strscpy(work->nsui_ipaddr, ipaddr, sizeof(work->nsui_ipaddr) - 1);
+		strscpy(work->nsui_ipaddr, ipaddr, sizeof(work->nsui_ipaddr));
 		refcount_set(&work->nsui_refcnt, 2);
 		work->nsui_busy = true;
 		list_add_tail(&work->nsui_list, &nn->nfsd_ssc_mount_list);
author	Thorsten Blum <thorsten.blum@linux.dev>	2025-08-06 03:10:01 +0200
committer	Chuck Lever <chuck.lever@oracle.com>	2025-09-21 19:24:50 -0400
commit	ab1c282c010c4f327bd7addc3c0035fd8e3c1721 (patch)
tree	cafbba7d3dfed1c92d723065eee6a4209d663b53
parent	9ebcd022a34388bd3c37c6a11c1a9d49d5394eb2 (diff)