organicmaps/libexpat
13
Fork 0
mirror of https://github.com/libexpat/libexpat.git synced 2025-04-04 21:04:57 +00:00
Code Issues 1 Projects Releases Wiki Activity Actions 19

portable_strndup() must not read source string beyond NUL byte.

Browse source 
POSIX strndup() does not read memory beyond NUL byte of the source
string.  Preserve this behavior in libexpat implementation to prevent
access violations and keep portability.
This commit is contained in:
Sebastian Pipping 2025-03-30 17:06:01 +02:00 committed by Alexander Bluhm
parent 03ff328b5c
commit 5b9e8dc70c
No known key found for this signature in database
GPG key ID: C5F483ADDEE86380
1 changed files with 10 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
expat/tests/common.c
View file

@ -303,7 +303,14 @@ duff_reallocator(void *ptr, size_t size) {
return realloc(ptr, size);
}
// Portable remake of strndup(3) for C99; does not care about space efficiency
// Portable remake of strnlen(3) for C99
static size_t
portable_strnlen(const char *s, size_t maxlen) {
const char *const end = (const char *)memchr(s, '\0', maxlen);
return (end == NULL) ? maxlen : (size_t)(end - s);
}
// Portable remake of strndup(3) for C99
char *
portable_strndup(const char *s, size_t n) {
if ((s == NULL) || (n == SIZE_MAX)) {
@ -311,6 +318,8 @@ portable_strndup(const char *s, size_t n) {
return NULL;
}
n = portable_strnlen(s, n);
char *const buffer = (char *)malloc(n + 1);
if (buffer == NULL) {
errno = ENOMEM;