Use StrNCpy not strncpy to fill hash key, to ensure the resulting key

is null-terminated.  I think this is not a real bug because the parser
would always have truncated the identifier to NAMEDATALEN-1 already,
but let's be safe.  Per report from Klocwork.

diff --git a/src/backend/commands/prepare.c b/src/backend/commands/prepare.c
index 831c92f0885160e77a6b4896229abaa28d16d5c5..4631d26b120aca4ecce4dbf61c73bd4d9542bdf9 100644 (file)
--- a/src/backend/commands/prepare.c
+++ b/src/backend/commands/prepare.c
@@ -296,8 +296,7 @@ StorePreparedStatement(const char *stmt_name,
 
        /* Check for pre-existing entry of same name */
        /* See notes in FetchPreparedStatement */
-       MemSet(key, 0, sizeof(key));
-       strncpy(key, stmt_name, sizeof(key));
+       StrNCpy(key, stmt_name, sizeof(key));
 
        hash_search(prepared_queries, key, HASH_FIND, &found);
 
@@ -370,8 +369,7 @@ FetchPreparedStatement(const char *stmt_name, bool throwError)
                 * the hash package is picky enough that it needs to be
                 * NULL-padded out to the appropriate length to work correctly.
                 */
-               MemSet(key, 0, sizeof(key));
-               strncpy(key, stmt_name, sizeof(key));
+               StrNCpy(key, stmt_name, sizeof(key));
 
                entry = (PreparedStatement *) hash_search(prepared_queries,
                                                                                                  key,