I'm not sure why this code allocates this string for the error message.

I think it would be better to always use snprintf and have the format limit the size of the name appropriately (like %.200s). Klocwork #340

I'm not sure why this code allocates this string for the error message.
I think it would be better to always use snprintf and have the format limit the size of the name appropriately (like %.200s). Klocwork #340
b45f3518 · Neal Norwitz · ef0de023 · b45f3518
Commit b45f3518 authored Aug 12, 2006 by Neal Norwitz
Hide whitespace changes
Inline Side-by-side

Showing with 11 additions and 2 deletions

Modules/unicodedata.c Modules/unicodedata.c +11 -2

No files found.
--- a/Modules/unicodedata.c
+++ b/Modules/unicodedata.c
@@ -1078,6 +1078,7 @@ unicodedata_lookup(PyObject* self, PyObject* args)
 {
    Py_UCS4 code;
    Py_UNICODE str[1];
+    char errbuf[256];

    char* name;
    int namelen;
@@ -1085,11 +1086,19 @@ unicodedata_lookup(PyObject* self, PyObject* args)
        return NULL;

    if (!_getcode(self, name, namelen, &code)) {
+	/* XXX(nnorwitz): why are we allocating for the error msg?
+		Why not always use snprintf? */
        char fmt[] = "undefined character name '%s'";
        char *buf = PyMem_MALLOC(sizeof(fmt) + namelen);
-        sprintf(buf, fmt, name);
+        if (buf)
+            sprintf(buf, fmt, name);
+        else {
+            buf = errbuf;
+            PyOS_snprintf(buf, sizeof(errbuf), fmt, name);
+        }
        PyErr_SetString(PyExc_KeyError, buf);
-        PyMem_FREE(buf);
+        if (buf != errbuf)
+        	PyMem_FREE(buf);
        return NULL;
    }