CID 1452819: nul-terminated string handling, possibly spurious

Bug introduced by #21003 (moved), copying sponsors and tags.

/src/feature/nodelist/describe.c: 77 in format_node_description()
71       }
72       if (addr32h && has_addr) {
73         memcpy(cp, " and ", 5);
74         cp += 5;
75       }
76       if (has_addr) {
   CID 1452819:    (STRING_NULL)
   Passing unterminated string "cp" to "tor_addr_to_str", which expects a null-terminated string.
77         tor_addr_to_str(cp, addr, TOR_ADDR_BUF_LEN, 1);
78       }
79     
80       return buf;
81     }
82     
/src/feature/nodelist/describe.c: 70 in format_node_description()
64         cp += 4;
65       }
66       if (addr32h) {
67         struct in_addr in;
68         in.s_addr = htonl(addr32h);
69         tor_inet_ntoa(&in, cp, INET_NTOA_BUF_LEN);
   CID 1452819:    (STRING_NULL)
   Passing unterminated string "cp" to "strlen", which expects a null-terminated string.
70         cp += strlen(cp);
71       }
72       if (addr32h && has_addr) {
73         memcpy(cp, " and ", 5);
74         cp += 5;
75       }

I think the best fix for this issue is using strncpy() rather than memcpy().

changed milestone to %Tor: 0.4.2.x-final

added 042-must component::core tor/tor coverity easy fast-fix intro ipv6 logging memory-safety? milestone::Tor: 0.4.2.x-final owner::teor points::0.1 priority::medium resolution::implemented reviewer::asn severity::normal sponsor::27-must status::closed type::enhancement version::tor unspecified labels

I rewrote describe.c to use strlcpy() and strlcat(), and check their return values.

https://github.com/torproject/tor/pull/1270

Trac:
Status: assigned to needs_review
Type: defect to enhancement

Trac:
Keywords: N/A deleted, coverity added

Trac:
Reviewer: N/A to dgoulet

Trac:
Reviewer: dgoulet to asn

Looks well made to me!!!!

Trac:
Status: needs_review to merge_ready

Merging to master.

Trac:
Status: merge_ready to closed
Resolution: N/A to implemented

closed

changed time estimate to 48m

moved to tpo/core/tor#31545 (closed)