SEI CERT C Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 65

changes.mady.by.user David Svoboda

Saved on

compared with

New Version 66

changes.mady.by.user David Svoboda

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Reverted from v. 63

...

Code Block
bgColor#FFCCCC
langc
#include <stdio.h>
#include <string.h>
 
#define BUFFER_SIZE 128
void func(void) {
  char buf[BUFFER_SIZEBUFSIZ];

  if (fgets(buf, sizeof(buf), stdin) == NULL) {
    /* Handle error */
  }
  buf[strlen(buf) - 1] = '\0'; /* discard newline */
}

The strlen() function computes the length of a string by determining the number of characters that precede the terminating null character. A problem occurs if the first character read from the input by fgets() happens to be a null character. This may occur, for example, if a binary data file is read by the fgets() call [Lai 2006]. If the first character in buf is a null character, strlen(buf) returns 0 and a write-outside-array-bounds error occurs.

...

Code Block
bgColor#ccccff
langc
#include <stdio.h>
#include <string.h>
 
#define BUFFER_SIZE 128

void func(void) {
  char buf[BUFFER_SIZEBUFSIZ];
  char *p;

  if (fgets(buf, sizeof(buf), stdin)) {
    buf[BUFFER_SIZE - 1] = '\0';
    p = strchr(buf, '\n');
    if (p) {
      *p = '\0';  /* discard newline */
    }
  } else {
    /* Handle error */
  }
}

...