Improve code security posture by replacing sprintf with a safer function.

2013-08-30 17:05:43 -04:00 · 2013-08-30 17:05:43 -04:00 · f3ad05347e
commit f3ad05347e
parent 1a7e303f97
16 changed files with 75 additions and 69 deletions
--- a/node/Utils.hpp
+++ b/node/Utils.hpp
@ -536,6 +536,18 @@ public:
 	static void stdsprintf(std::string &s,const char *fmt,...)
 		throw(std::bad_alloc,std::length_error);

+	/**
+	 * Variant of snprintf that is portable and throws an exception
+	 *
+	 * @param buf Buffer to write to
+	 * @param len Length of buffer in bytes
+	 * @param fmt Format string
+	 * @param ... Format arguments
+	 * @throws std::length_error buf[] too short (buf[] will still be left null-terminated)
+	 */
+	static unsigned int snprintf(char *buf,unsigned int len,const char *fmt,...)
+		throw(std::length_error);
+
 	/**
 	 * Count the number of bits set in an integer
 	 *