From 601c64ec4f2b8a41fba59d31a987090feeb69e84 Mon Sep 17 00:00:00 2001
From: Garrett D'Amore <garrett@damore.org>
Date: Fri, 25 Aug 2017 11:11:35 -0700
Subject: Introduce utility safe string handling functions.

We have our versions of strdup, strlcat, and strlcpy.
This means we can avoid using snprintf() in many cases
(saving cycles), and we can get safer checks.  We use
the platform supplied versions of these if they exist
(wrapping with nni_xxx versions.)
---
 src/core/transport.c | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

(limited to 'src/core/transport.c')

diff --git a/src/core/transport.c b/src/core/transport.c
index 3130ae26..eead861b 100644
--- a/src/core/transport.c
+++ b/src/core/transport.c
@@ -34,6 +34,7 @@ nni_tran_register(const nni_tran *tran)
 {
 	nni_transport *t;
 	int            rv;
+	size_t         sz;
 
 	// Its entirely possible that we are called before any sockets
 	// are opened.  Make sure we are initialized.  This has to be
@@ -56,12 +57,18 @@ nni_tran_register(const nni_tran *tran)
 		}
 	}
 	if ((t = NNI_ALLOC_STRUCT(t)) == NULL) {
+		nni_mtx_unlock(&nni_tran_lk);
 		return (NNG_ENOMEM);
 	}
 
 	t->t_tran = *tran;
-	(void) snprintf(
-	    t->t_prefix, sizeof(t->t_prefix), "%s://", tran->tran_scheme);
+	sz        = sizeof(t->t_prefix);
+	if ((nni_strlcpy(t->t_prefix, tran->tran_scheme, sz) >= sz) ||
+	    (nni_strlcat(t->t_prefix, "://", sz) >= sz)) {
+		nni_mtx_unlock(&nni_tran_lk);
+		NNI_FREE_STRUCT(t);
+		return (NNG_EINVAL);
+	}
 	if ((rv = t->t_tran.tran_init()) != 0) {
 		nni_mtx_unlock(&nni_tran_lk);
 		NNI_FREE_STRUCT(t);
-- 
cgit v1.2.3-70-g09d2