From 10fb0bfab13b7cd6cd9b22c2edced0fd3a3b8b32 Mon Sep 17 00:00:00 2001
From: Andreas Schwab <schwab@redhat.com>
Date: Fri, 4 Nov 2011 10:21:15 +0100
Subject: [PATCH] Fix off-by-one when reading link name in sprof

---
 ChangeLog   | 4 ++++
 elf/sprof.c | 2 +-
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/ChangeLog b/ChangeLog
index a65182acf9..6622603d05 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,7 @@
+2011-11-04  Andreas Schwab  <schwab@redhat.com>
+
+	* elf/sprof.c (load_shobj): Fix off-by-one when reading link name.
+
 2011-11-03  Andreas Schwab  <schwab@redhat.com>
 
 	* nscd/nscd.c (main): Don't start AVC thread until credentials are
diff --git a/elf/sprof.c b/elf/sprof.c
index 61825999a7..c90c22c265 100644
--- a/elf/sprof.c
+++ b/elf/sprof.c
@@ -597,7 +597,7 @@ load_shobj (const char *name)
       char origprocname[sizeof (procpath) + sizeof (int) * 3];
       snprintf (origprocname, sizeof (origprocname), procpath, fd);
       char *origlink = (char *) alloca (PATH_MAX);
-      ssize_t n = readlink (origprocname, origlink, PATH_MAX);
+      ssize_t n = readlink (origprocname, origlink, PATH_MAX - 1);
       if (n == -1)
 	goto no_debuginfo;
       origlink[n] = '\0';