Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / python / cpython3 / b45f351832b00c80bf9881e92b12c330324e3116^! / . / Modules / unicodedata.c
commitb45f351832b00c80bf9881e92b12c330324e3116[log] [tgz]
authorNeal Norwitz <nnorwitz@gmail.com>Sat Aug 12 01:57:47 2006 +0000
committerNeal Norwitz <nnorwitz@gmail.com>Sat Aug 12 01:57:47 2006 +0000
tree76f0d4900b48dfc93dd2c6a40f0aa9e531038005
parentef0de023db9bc520312e5f0f59bbc9a47f0f204e [diff] [blame]
I'm not sure why this code allocates this string for the error message.
I think it would be better to always use snprintf and have the format
limit the size of the name appropriately (like %.200s).

Klocwork #340

diff --git a/Modules/unicodedata.c b/Modules/unicodedata.c
index 7f8592f..a11a0b7 100644
--- a/Modules/unicodedata.c
+++ b/Modules/unicodedata.c

@@ -1078,6 +1078,7 @@
 {
     Py_UCS4 code;
     Py_UNICODE str[1];
+    char errbuf[256];
 
     char* name;
     int namelen;
@@ -1085,11 +1086,19 @@
         return NULL;
 
     if (!_getcode(self, name, namelen, &code)) {
+	/* XXX(nnorwitz): why are we allocating for the error msg?
+		Why not always use snprintf? */
         char fmt[] = "undefined character name '%s'";
         char *buf = PyMem_MALLOC(sizeof(fmt) + namelen);
-        sprintf(buf, fmt, name);
+        if (buf)
+            sprintf(buf, fmt, name);
+        else {
+            buf = errbuf;
+            PyOS_snprintf(buf, sizeof(errbuf), fmt, name);
+        }
         PyErr_SetString(PyExc_KeyError, buf);
-        PyMem_FREE(buf);
+        if (buf != errbuf)
+        	PyMem_FREE(buf);
         return NULL;
     }