Get rid of unsafe sprintf and strcpy. Update COM_FileBase from libpublic

Author: a1batross

BaseMenu.cpp

@@ -578,10 +578,10 @@ bool UI_StartBackGroundMap( void )
 	int bgmapid = EngFuncs::RandomLong( 0, uiStatic.bgmapcount - 1 );
 
 	char cmd[128];
-	sprintf( cmd, "maps/%s.bsp", uiStatic.bgmaps[bgmapid] );
+	snprintf( cmd, sizeof( cmd ), "maps/%s.bsp", uiStatic.bgmaps[bgmapid] );
 	if( !EngFuncs::FileExists( cmd, TRUE )) return FALSE;
 
-	sprintf( cmd, "map_background %s\n", uiStatic.bgmaps[bgmapid] );
+	snprintf( cmd, sizeof( cmd ), "map_background %s\n", uiStatic.bgmaps[bgmapid] );
 	EngFuncs::ClientCmd( FALSE, cmd );
 
 	return TRUE;

CFGScript.cpp

@@ -151,8 +151,7 @@ bool CSCR_ParseSingleCvar( parserstate_t *ps, scrvardef_t *result )
 
 			entry = new scrvarlistentry_t;
 			entry->next = NULL;
-			entry->szName = new char[strlen( szName ) + 1];
-			strcpy( entry->szName, szName );
+			entry->szName = StringCopy( szName );
 			entry->flValue = atof( szValue );
 
 			if( !result->list.pEntries )

MenuStrings.cpp

@@ -134,15 +134,15 @@ static void UI_InitAliasStrings( void )
 
 		char token[1024];
 		char token2[1024];
-		sprintf( token, "StringsList_%d", aliasStrings[i].idx );
+		snprintf( token, sizeof( token ), "StringsList_%d", aliasStrings[i].idx );
 
 		const char *fmt = L( token );
 		if( fmt == token )
 		{
 			fmt = aliasStrings[i].defAliasString;
 		}
 
-		sprintf( token2, fmt, gMenu.m_gameinfo.title );
+		snprintf( token2, sizeof( token2 ), fmt, gMenu.m_gameinfo.title );
 		MenuStrings[aliasStrings[i].idx] = StringCopy( token2 );
 
 		Dictionary_Insert( token, MenuStrings[aliasStrings[i].idx] );

Utils.cpp

@@ -218,42 +218,40 @@ int COM_CompareSaves( const void **a, const void **b )
 /*
 ============
 COM_FileBase
+
+Extracts the base name of a file (no path, no extension, assumes '/' as path separator)
+a1ba: adapted and simplified version from QuakeSpasm
 ============
 */
-// Extracts the base name of a file (no path, no extension, assumes '/' as path separator)
-void COM_FileBase ( const char *in, char *out )
+#define COM_CheckString( string ) ( ( !string || !*string ) ? 0 : 1 )
+void COM_FileBase( const char *in, char *out, size_t size )
 {
-	int len, start, end;
+	const char *dot, *slash, *s;
+	size_t len;
 
-	len = strlen( in );
-	
-	// scan backward for '.'
-	end = len - 1;
-	while ( end && in[end] != '.' && in[end] != '/' && in[end] != '\\' )
-		end--;
-	
-	if ( in[end] != '.' )		// no '.', copy to end
-		end = len-1;
-	else 
-		end--;			// Found ',', copy to left of '.'
+	if( unlikely( !COM_CheckString( in ) || size <= 1 ))
+	{
+		out[0] = 0;
+		return;
+	}
 
+	slash = in;
+	dot = NULL;
+	for( s = in; *s; s++ )
+	{
+		if( *s == '/' || *s == '\\' )
+			slash = s + 1;
 
-	// Scan backward for '/'
-	start = len-1;
-	while ( start >= 0 && in[start] != '/' && in[start] != '\\' )
-		start--;
+		if( *s == '.' )
+			dot = s;
+	}
 
-	if ( in[start] != '/' && in[start] != '\\' )
-		start = 0;
-	else 
-		start++;
+	if( dot == NULL || dot < slash )
+		dot = s;
 
-	// Length of new sting
-	len = end - start + 1;
+	len = Q_min( size - 1, dot - slash );
 
-	// Copy partial string
-	strncpy( out, &in[start], len );
-	// Terminate it
+	memcpy( out, slash, len );
 	out[len] = 0;
 }
 

Utils.h

@@ -148,19 +148,19 @@ inline float RemapVal( const float val, const float A, const float B, const floa
 	return C + (D - C) * (val - A) / (B - A);
 }
 
+extern const unsigned int g_iColorTable[8];
+
 int colorstricmp( const char *a, const char *b );
 int colorstrcmp( const char *a, const char *b );
-extern int ColorStrlen( const char *str );	// returns string length without color symbols
-extern int ColorPrexfixCount( const char *str );
-extern const unsigned int g_iColorTable[8];
-extern void COM_FileBase( const char *in, char *out );		// ripped out from hlsdk 2.3
-extern int UI_FadeAlpha( int starttime, int endtime );
-extern const char *Info_ValueForKey( const char *s, const char *key );
-extern int KEY_GetKey( const char *binding );			// ripped out from engine
-extern char *StringCopy( const char *input );			// copy string into new memory
-extern int COM_CompareSaves( const void **a, const void **b );
-extern void Com_EscapeCommand( char *newCommand, const char *oldCommand, int len );
-extern void UI_EnableTextInput( bool enable );
+int ColorStrlen( const char *str );	// returns string length without color symbols
+void COM_FileBase( const char *in, char *out, size_t size );
+int UI_FadeAlpha( int starttime, int endtime );
+const char *Info_ValueForKey( const char *s, const char *key );
+int KEY_GetKey( const char *binding );			// ripped out from engine
+char *StringCopy( const char *input );			// copy string into new memory
+int COM_CompareSaves( const void **a, const void **b );
+void Com_EscapeCommand( char *newCommand, const char *oldCommand, int len );
+void UI_EnableTextInput( bool enable );
 
 void UI_LoadCustomStrings( void );
 const char *L( const char *szStr ); // L means Localize!

controls/BaseItem.cpp

@@ -287,10 +287,7 @@ bool CMenuBaseItem::KeyValueData(const char *key, const char *data)
 
 		if( m_bAllocName )
 		{
-			char *name = new char[strlen( data ) + 1];
-			strcpy( name, data );
-
-			szName = name;
+			szName = StringCopy( data );
 		}
 	}
 	else if( !strcmp( key, "textAlignment" ) )

controls/Editable.cpp

@@ -54,31 +54,24 @@ void CMenuEditable::SetCvarValue( float value )
 	if( bUpdateImmediately ) WriteCvar();
 }
 
-void CMenuEditable::SetCvarString(const char *string)
+void CMenuEditable::SetCvarString( const char *string )
 {
 	if( string != m_szString )
-	{
-		Q_strncpy( m_szString, string, CS_SIZE );
-		m_szString[CS_SIZE-1] = 0;
-	}
+		Q_strncpy( m_szString, string, sizeof( m_szString ));
 
 	if( onCvarChange ) onCvarChange( this );
 	if( bUpdateImmediately ) WriteCvar();
 }
 
 void CMenuEditable::SetOriginalString( const char *psz )
 {
-	Q_strncpy( m_szString, psz, CS_SIZE );
-	Q_strncpy( m_szOriginalString, m_szString, CS_SIZE );
-	m_szOriginalString[CS_SIZE-1] = 0;
-
+	Q_strncpy( m_szOriginalString, psz, sizeof( m_szOriginalString ));
 	SetCvarString( m_szOriginalString );
 }
 
 void CMenuEditable::SetOriginalValue( float val )
 {
-	m_flValue =	m_flOriginalValue = val;
-
+	m_flOriginalValue = val;
 	SetCvarValue( m_flOriginalValue );
 }
 

controls/Field.h

@@ -50,7 +50,7 @@ class CMenuField : public CMenuEditable
 
 	void SetBuffer( const char *buffer )
 	{
-		Q_strncpy( szBuffer, buffer, UI_MAX_FIELD_LINE );
+		Q_strncpy( szBuffer, buffer, sizeof( szBuffer ));
 		iCursor = strlen( szBuffer );
 		iScroll = g_FontMgr->CutText( font, szBuffer, m_scChSize, iRealWidth, true );
 		SetCvarString( szBuffer );

controls/SpinControl.cpp

@@ -309,7 +309,7 @@ void CMenuSpinControl::SetCurrentValue( const char *stringValue )
 	m_flCurValue = -1;
 	SetCvarString( stringValue );
 
-	Q_strncpy( m_szDisplay, stringValue, CS_SIZE );
+	Q_strncpy( m_szDisplay, stringValue, sizeof( m_szDisplay ));
 }
 
 void CMenuSpinControl::SetDisplayPrecision( short precision )
@@ -323,7 +323,7 @@ void CMenuSpinControl::Display()
 	{
 		SetCvarValue( m_flCurValue );
 
-		snprintf( m_szDisplay, CS_SIZE, "%.*f", m_iFloatPrecision, m_flCurValue );
+		snprintf( m_szDisplay, sizeof( m_szDisplay ), "%.*f", m_iFloatPrecision, m_flCurValue );
 	}
 	else
 	{
@@ -336,11 +336,11 @@ void CMenuSpinControl::Display()
 		case CVAR_VALUE: SetCvarValue( m_flCurValue ); break;
 		}
 
-		Q_strncpy( m_szDisplay, stringValue, CS_SIZE );
+		Q_strncpy( m_szDisplay, stringValue, sizeof( m_szDisplay ));
 	}
 }
 
-void CMenuSpinControl::ForceDisplayString(const char *display)
+void CMenuSpinControl::ForceDisplayString( const char *display )
 {
-	Q_strncpy( m_szDisplay, display, CS_SIZE );
+	Q_strncpy( m_szDisplay, display, sizeof( m_szDisplay ));
 }

controls/YesNoMessageBox.cpp

@@ -228,7 +228,7 @@ void UI_ShowMessageBox( const char *text )
 	static char msg[1024];
 	static CMenuYesNoMessageBox msgBox( true );
 
-	Q_strncpy( msg, text, sizeof( msg ) );
+	Q_strncpy( msg, text, sizeof( msg ));
 
 	if( !UI_IsVisible() )
 	{

menus/Credits.cpp

@@ -168,7 +168,7 @@ void CMenuCredits::_Init( void )
 				memcpy( tmp, buffer, count );
 				EngFuncs::COM_FreeFile( buffer );
 				buffer = tmp;
-				strncpy( buffer + count, "\r", 1 ); // add terminator
+				Q_strncpy( buffer + count, "\r", 1 ); // add terminator
 				count += 2; // added "\r\0"
 			}
 			p = buffer;

menus/CustomGame.cpp

@@ -64,7 +64,7 @@ struct mod_t
 	}\
 	static int method ## Descend( const void *a, const void *b ) \
 	{\
-		return (( const mod_t *)b)->method( *(( const mod_t *)a) );;\
+		return (( const mod_t *)b)->method( *(( const mod_t *)a) );\
 	}\
 
 	GENERATE_COMPAR_FN( TypeCmp )
@@ -129,7 +129,7 @@ class CMenuCustomGame: public CMenuFramework
 void CMenuCustomGame::ChangeGame( void *pExtra )
 {
 	char cmd[128];
-	sprintf( cmd, "game %s\n", (const char*)pExtra );
+	snprintf( cmd, sizeof( cmd ), "game %s\n", (const char*)pExtra );
 	EngFuncs::ClientCmd( FALSE, cmd );
 }
 
@@ -169,28 +169,26 @@ void CMenuModListModel::Update( void )
 	{
 		Q_strncpy( mods[i].dir, games[i]->gamefolder, sizeof( mods[i].dir ));
 		Q_strncpy( mods[i].webSite, games[i]->game_url, sizeof( mods[i].webSite ));
+		Q_strncpy( mods[i].type, games[i]->type, sizeof( mods[i].type ));
+		Q_strncpy( mods[i].ver, games[i]->version, sizeof( mods[i].ver ));
 
-		Q_strncpy( mods[i].type, games[i]->type, 32 );
-
-		if( ColorStrlen( games[i]->title ) > 31 ) // NAME_LENGTH
+		if( ColorStrlen( games[i]->title ) > sizeof( mods[i].name ) - 1 ) // NAME_LENGTH
 		{
-			Q_strncpy( mods[i].name, games[i]->title, 32 - 4 );
+			Q_strncpy( mods[i].name, games[i]->title, sizeof( mods[i].name ) - 4 );
 			// I am lazy to put strncat here :(
 			mods[i].name[28] = mods[i].name[29] = mods[i].name[30] = '.';
 			mods[i].name[31] = 0;
 		}
-		else Q_strncpy( mods[i].name, games[i]->title, 32 );
-
-		Q_strncpy( mods[i].ver, games[i]->version, 32 );
+		else Q_strncpy( mods[i].name, games[i]->title, sizeof( mods[i].name ));
 
 		if( games[i]->size[0] && atoi( games[i]->size ) != 0 )
-			Q_strncpy( mods[i].size, games[i]->size, 32 );
-		else Q_strncpy( mods[i].size, "0.0 Mb", 32 );
+			Q_strncpy( mods[i].size, games[i]->size, sizeof( mods[i].size ));
+		else Q_strncpy( mods[i].size, "0.0 Mb", sizeof( mods[i].size ));
 	}
 
 	m_iNumItems = numGames;
 
-	if(numGames)
+	if( numGames )
 	{
 		if( m_iSortingColumn != -1 )
 			Sort( m_iSortingColumn, m_bAscend );
@@ -269,4 +267,4 @@ void CMenuCustomGame::_Init( void )
 	}
 }
 
-ADD_MENU( menu_customgame, CMenuCustomGame, UI_CustomGame_Menu );
+ADD_MENU( menu_customgame, CMenuCustomGame, UI_CustomGame_Menu )

menus/LoadGame.cpp

@@ -193,15 +193,15 @@ void CMenuSavesListModel::Update( void )
 				Q_strncpy( date[i], comment, sizeof( date[i] ));
 				save_comment[i][0] = 0;
 				elapsed_time[i][0] = 0;
-				COM_FileBase( filenames[j], saveName[i] );
-				COM_FileBase( filenames[j], delName[i] );
+				COM_FileBase( filenames[j], saveName[i], sizeof( saveName[i] ));
+				COM_FileBase( filenames[j], delName[i], sizeof( delName[i] ));
 			}
 			continue;
 		}
 
 		// strip path, leave only filename (empty slots doesn't have savename)
-		COM_FileBase( filenames[j], saveName[i] );
-		COM_FileBase( filenames[j], delName[i] );
+		COM_FileBase( filenames[j], saveName[i], sizeof( saveName[i] ));
+		COM_FileBase( filenames[j], delName[i], sizeof( delName[i] ));
 
 		// they are defined by comment string format
 		// time and date
@@ -341,7 +341,7 @@ void CMenuLoadGame::LoadGame()
 	if( saveName[0] )
 	{
 		char	cmd[128];
-		sprintf( cmd, "load \"%s\"\n", saveName );
+		snprintf( cmd, sizeof( cmd ), "load \"%s\"\n", saveName );
 
 		EngFuncs::StopBackgroundTrack( );
 
@@ -358,10 +358,10 @@ void CMenuLoadGame::SaveGame()
 	{
 		char	cmd[128];
 
-		sprintf( cmd, "save/%s.bmp", saveName );
+		snprintf( cmd, sizeof( cmd ), "save/%s.bmp", saveName );
 		EngFuncs::PIC_Free( cmd );
 
-		sprintf( cmd, "save \"%s\"\n", saveName );
+		snprintf( cmd, sizeof( cmd ), "save \"%s\"\n", saveName );
 		EngFuncs::ClientCmd( FALSE, cmd );
 
 		UI_CloseMenu();
@@ -390,11 +390,11 @@ void CMenuLoadGame::DeleteGame()
 	if( delName[0] )
 	{
 		char	cmd[128];
-		sprintf( cmd, "killsave \"%s\"\n", delName );
+		snprintf( cmd, sizeof( cmd ), "killsave \"%s\"\n", delName );
 
 		EngFuncs::ClientCmd( TRUE, cmd );
 
-		sprintf( cmd, "save/%s.bmp", delName );
+		snprintf( cmd, sizeof( cmd ), "save/%s.bmp", delName );
 		EngFuncs::PIC_Free( cmd );
 
 		savesListModel.Update();