ioemu: save file name is snprintf()ed into a plenty big enough buffer.

author kfraser@localhost.localdomain <kfraser@localhost.localdomain>

Fri, 8 Jun 2007 18:22:08 +0000 (19:22 +0100)

committer kfraser@localhost.localdomain <kfraser@localhost.localdomain>

Fri, 8 Jun 2007 18:22:08 +0000 (19:22 +0100)
author kfraser@localhost.localdomain <kfraser@localhost.localdomain>
Fri, 8 Jun 2007 18:22:08 +0000 (19:22 +0100)
committer kfraser@localhost.localdomain <kfraser@localhost.localdomain>
Fri, 8 Jun 2007 18:22:08 +0000 (19:22 +0100)
diff --git a/tools/ioemu/target-i386-dm/helper2.c b/tools/ioemu/target-i386-dm/helper2.c

index 4a6c865a75fe3d41037cb95795e37e3208c0023f..5f106b5a3a50f13721f5af82eaf41947497a4c50 100644 (file)
--- a/tools/ioemu/target-i386-dm/helper2.c
+++ b/tools/ioemu/target-i386-dm/helper2.c
@@ -616,7 +616,7 @@ int main_loop(void)
      extern int suspend_requested;
      CPUState *env = cpu_single_env;
      int evtchn_fd = xc_evtchn_fd(xce_handle);
-    char qemu_file[32];
+    char qemu_file[PATH_MAX];
  
      buffered_io_timer = qemu_new_timer(rt_clock, handle_buffered_io,
                                        cpu_single_env);
@@ -635,7 +635,7 @@ int main_loop(void)
      main_loop_wait(1); /* For the select() on events */
  
      /* Save the device state */
-    sprintf(qemu_file, "/var/lib/xen/qemu-save.%d", domid);
+    snprintf(qemu_file, sizeof(qemu_file), "/var/lib/xen/qemu-save.%d", domid);
      do_savevm(qemu_file);
  
      return 0;
author	kfraser@localhost.localdomain <kfraser@localhost.localdomain>
	Fri, 8 Jun 2007 18:22:08 +0000 (19:22 +0100)
committer	kfraser@localhost.localdomain <kfraser@localhost.localdomain>
	Fri, 8 Jun 2007 18:22:08 +0000 (19:22 +0100)