feat: Use snprintf instead of sprintf to avoid potential buffer overflow

srevinsaju · srevinsaju · commit c9b1a2682b2d · 2020-09-10T16:18:50.000+03:00
#1075 (comment)
diff --git a/src/appimagetool.c b/src/appimagetool.c
@@ -908,7 +908,6 @@ main (int argc, char *argv[])
                         printf("Will not guess update information since zsyncmake is missing\n");
                     }
                 }
-			sprintf(buf, "gh-releases-zsync|%s|%s|%s|%s*-%s.AppImage.zsync", parts[0], parts[1], channel, app_name_for_filename, arch);
             } else if (github_repository != NULL && github_ref != NULL) {
                 printf("Running on GitHub Actions\n");
                 gchar *zsyncmake_path = g_find_program_in_path ("zsyncmake");
@@ -925,6 +924,11 @@ main (int argc, char *argv[])
                         } else {
                             channel = "continuous";
                         }
+                        int is_zsync_write_success = snprintf(buf, 1024, "gh-releases-zsync|%s|%s|%s|%s*-%s.AppImage.zsync", parts[0], parts[1], channel, app_name_for_filename, arch);
+                        if (is_zsync_write_success < 0) {
+                            printf("Writing updateinformation failed. zsync information is too long. (> 1024)\n");
+                            exit(is_zsync_write_success);
+                        }
                         updateinformation = buf;
                         printf("%s\n", updateinformation);
                     }

Original file line number	Diff line number	Diff line change
`@@ -908,7 +908,6 @@ main (int argc, char *argv[])`
`908`	`908`	`printf("Will not guess update information since zsyncmake is missing\n");`
`909`	`909`	`}`
`910`	`910`	`}`
`911`		`- sprintf(buf, "gh-releases-zsync\|%s\|%s\|%s\|%s*-%s.AppImage.zsync", parts[0], parts[1], channel, app_name_for_filename, arch);`
`912`	`911`	`} else if (github_repository != NULL && github_ref != NULL) {`
`913`	`912`	`printf("Running on GitHub Actions\n");`
`914`	`913`	`gchar *zsyncmake_path = g_find_program_in_path ("zsyncmake");`
`@@ -925,6 +924,11 @@ main (int argc, char *argv[])`
`925`	`924`	`} else {`
`926`	`925`	`channel = "continuous";`
`927`	`926`	`}`
	`927`	`+ int is_zsync_write_success = snprintf(buf, 1024, "gh-releases-zsync\|%s\|%s\|%s\|%s*-%s.AppImage.zsync", parts[0], parts[1], channel, app_name_for_filename, arch);`
	`928`	`+ if (is_zsync_write_success < 0) {`
	`929`	`+ printf("Writing updateinformation failed. zsync information is too long. (> 1024)\n");`
	`930`	`+ exit(is_zsync_write_success);`
	`931`	`+ }`
`928`	`932`	`updateinformation = buf;`
`929`	`933`	`printf("%s\n", updateinformation);`
`930`	`934`	`}`