9 May
2023
9 May
'23
12:24 a.m.
On Mon May 8 2023 16:47:56 deloptes via tde-devels wrote:
I did some debugging and pinpointed sscanf. It is not
reading strings
properly.
Do you have any idea what could be the reason for this?
see attached for an example where the format and the string are from the
code and configuration respectively
%as is looking for a float so let's ignore that.
If we switch back to %s it's looking for a string which would be
great except no memory has been allocated for the strings.
The attached works with both gcc and clang but the important thing
to remember is NEVER NEVER NEVER use scanf or any variant thereof.
https://dwheeler.com/secure-programs/Secure-Programs-HOWTO/dangers-c.html
--Mike