Improve code security posture by replacing sprintf with a safer function.

2013-08-30 17:05:43 -04:00 · 2013-08-30 17:05:43 -04:00 · f3ad05347e
commit f3ad05347e
parent 1a7e303f97
16 changed files with 75 additions and 69 deletions
--- a/node/Network.cpp
+++ b/node/Network.cpp
@ -140,7 +140,7 @@ SharedPtr<Network> Network::newInstance(const RuntimeEnvironment *renv,uint64_t
 	throw(std::runtime_error)
 {
 	char tag[32];
-	sprintf(tag,"%.16llx",(unsigned long long)id);
+	Utils::snprintf(tag,sizeof(tag),"%.16llx",(unsigned long long)id);

 	// We construct Network via a static method to ensure that it is immediately
 	// wrapped in a SharedPtr<>. Otherwise if there is traffic on the Ethernet