mirror of
git://git.suckless.org/sbase
synced 2025-01-12 18:30:51 +00:00
93fd817536
It has become a common idiom in sbase to check strlcat() and strlcpy() using if (strl{cat, cpy}(dst, src, siz) >= siz) eprintf("path too long\n"); However, this was not carried out consistently and to this very day, some tools employed unchecked calls to these functions, effectively allowing silent truncations to happen, which in turn may lead to security issues. To finally put an end to this, the e*-functions detect truncation automatically and the caller can lean back and enjoy coding without trouble. :)
70 lines
1.1 KiB
C
70 lines
1.1 KiB
C
/* See LICENSE file for copyright and license details. */
|
|
#include <libgen.h>
|
|
#include <stdio.h>
|
|
#include <stdlib.h>
|
|
#include <unistd.h>
|
|
|
|
#include "util.h"
|
|
|
|
static void
|
|
usage(void)
|
|
{
|
|
eprintf("usage: %s [-dq] [template]\n", argv0);
|
|
}
|
|
|
|
int
|
|
main(int argc, char *argv[])
|
|
{
|
|
int dflag = 0, qflag = 0, fd;
|
|
char *template = "tmp.XXXXXXXXXX",
|
|
*tmpdir = "/tmp", *p,
|
|
path[PATH_MAX], tmp[PATH_MAX];
|
|
|
|
ARGBEGIN {
|
|
case 'd':
|
|
dflag = 1;
|
|
break;
|
|
case 'q':
|
|
qflag = 1;
|
|
break;
|
|
default:
|
|
usage();
|
|
} ARGEND;
|
|
|
|
if (argc > 1)
|
|
usage();
|
|
else if (argc == 1)
|
|
template = argv[0];
|
|
|
|
if ((p = getenv("TMPDIR")))
|
|
tmpdir = p;
|
|
|
|
estrlcpy(tmp, template, sizeof(tmp));
|
|
p = dirname(tmp);
|
|
if (p[0] != '.') {
|
|
estrlcpy(path, template, sizeof(path));
|
|
} else {
|
|
estrlcpy(path, tmpdir, sizeof(path));
|
|
estrlcat(path, "/", sizeof(path));
|
|
estrlcat(path, template, sizeof(path));
|
|
}
|
|
|
|
if (dflag) {
|
|
if (!mkdtemp(path)) {
|
|
if (!qflag)
|
|
eprintf("mkdtemp %s:", path);
|
|
return 1;
|
|
}
|
|
} else {
|
|
if ((fd = mkstemp(path)) < 0) {
|
|
if (!qflag)
|
|
eprintf("mkstemp %s:", path);
|
|
return 1;
|
|
}
|
|
close(fd);
|
|
}
|
|
puts(path);
|
|
|
|
return 0;
|
|
}
|