Fix: ini parser: truncation of value name
authorJérémie Galarneau <jeremie.galarneau@efficios.com>
Mon, 16 Jan 2023 19:19:20 +0000 (14:19 -0500)
committerJérémie Galarneau <jeremie.galarneau@efficios.com>
Tue, 17 Jan 2023 03:40:21 +0000 (22:40 -0500)
clang 14 reports the following:

  ini-config/ini.cpp:88:16: warning: 'char* strncpy(char*, const char*, size_t)' output may be truncated copying 49 bytes from a string of length 199 [-Wstringop-truncation]
     88 |         strncpy(dest, src, size - 1);
        |         ~~~~~~~^~~~~~~~~~~~~~~~~~~~~

Indeed, a silent truncation of `name` occurs whenever it is longer than
prev_name (49 characters, excluding the terminator).

Report an error when this condition occurs.

Signed-off-by: Jérémie Galarneau <jeremie.galarneau@efficios.com>
Change-Id: I973bd27185e0130d8e4a452525d9277de45ba200

src/common/ini-config/ini.cpp

index cca38f8ca7c9a693c65bfade4cbd0e60ee429dba..c17a8c0e8684b8d887b799abced290390775e989 100644 (file)
@@ -178,6 +178,10 @@ int ini_parse_file(FILE *file, ini_entry_handler handler, void *user)
                                 * Valid name[=:]value pair found, call
                                 * handler
                                 */
+                               if (strlen(name) >= sizeof(prev_name)) {
+                                       /* Truncation occurs, report an error. */
+                                       error = lineno;
+                               }
                                strncpy0(prev_name, name, sizeof(prev_name));
                                if (handler(user, section, name, value) < 0 && !error) {
                                        error = lineno;
This page took 0.0251169999999999 seconds and 4 git commands to generate.