From 8ed1529c58db7df5687b8f57fb0248f2874ad77a Mon Sep 17 00:00:00 2001
From: "joonbum.ko" <joonbum.ko@samsung.com>
Date: Mon, 29 Jan 2018 14:07:09 +0900
Subject: [PATCH] samples: Changed to use snprintf() instead of sprintf().

 - PROC_USE.VULNERABLE
  WGID: 305103, 305104

Change-Id: Ibe7521bab6b8568a0e6039bff3c41b0e914db71f
Signed-off-by: joonbum.ko <joonbum.ko@samsung.com>
---
 samples/tri.c        |  8 ++++----
 samples/vulkaninfo.c | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/samples/tri.c b/samples/tri.c
index b523502..396b7c3 100644
--- a/samples/tri.c
+++ b/samples/tri.c
@@ -128,11 +128,11 @@ dbgFunc(VkFlags msgFlags, VkDebugReportObjectTypeEXT objType,
     validation_error = 1;
 
     if (msgFlags & VK_DEBUG_REPORT_ERROR_BIT_EXT) {
-        sprintf(message, "ERROR: [%s] Code %d : %s", pLayerPrefix, msgCode,
-                pMsg);
+        snprintf(message, sizeof(message), "ERROR: [%s] Code %d : %s",
+                 pLayerPrefix, msgCode, pMsg);
     } else if (msgFlags & VK_DEBUG_REPORT_WARNING_BIT_EXT) {
-        sprintf(message, "WARNING: [%s] Code %d : %s", pLayerPrefix, msgCode,
-                pMsg);
+        snprintf(message, sizeof(message), "WARNING: [%s] Code %d : %s",
+                 pLayerPrefix, msgCode, pMsg);
     } else {
         return false;
     }
diff --git a/samples/vulkaninfo.c b/samples/vulkaninfo.c
index 2d6b857..4e4b719 100644
--- a/samples/vulkaninfo.c
+++ b/samples/vulkaninfo.c
@@ -143,17 +143,17 @@ dbg_callback(VkFlags msgFlags, VkDebugReportObjectTypeEXT objType,
     assert(message);
 
     if (msgFlags & VK_DEBUG_REPORT_ERROR_BIT_EXT) {
-        sprintf(message, "ERROR: [%s] Code %d : %s", pLayerPrefix, msgCode,
-                pMsg);
+        snprintf(message, sizeof(message), "ERROR: [%s] Code %d : %s",
+                 pLayerPrefix, msgCode, pMsg);
     } else if (msgFlags & VK_DEBUG_REPORT_WARNING_BIT_EXT) {
-        sprintf(message, "WARNING: [%s] Code %d : %s", pLayerPrefix, msgCode,
-                pMsg);
+        snprintf(message, sizeof(message), "WARNING: [%s] Code %d : %s",
+                 pLayerPrefix, msgCode, pMsg);
     } else if (msgFlags & VK_DEBUG_REPORT_INFORMATION_BIT_EXT) {
-        sprintf(message, "INFO: [%s] Code %d : %s", pLayerPrefix, msgCode,
-                pMsg);
+        snprintf(message, sizeof(message), "INFO: [%s] Code %d : %s",
+                 pLayerPrefix, msgCode, pMsg);
     } else if (msgFlags & VK_DEBUG_REPORT_DEBUG_BIT_EXT) {
-        sprintf(message, "DEBUG: [%s] Code %d : %s", pLayerPrefix, msgCode,
-                pMsg);
+        snprintf(message, sizeof(message), "DEBUG: [%s] Code %d : %s",
+                 pLayerPrefix, msgCode, pMsg);
     }
 
     printf("%s\n", message);
-- 
2.7.4