Fixed more potential overflow bugs.

author: Robert James Kaes <rjkaes@users.sourceforge.net> 2001-01-15 17:11:57 +0000
committer: Robert James Kaes <rjkaes@users.sourceforge.net> 2001-01-15 17:11:57 +0000
commit: 93b201d23be3167983826da750d7d1fe8c4c5d47 (patch)
tree: 6c8f8a9a72ff51fff6a13fdea623ad82ae813b99 /src/reqs.c
parent: 2f2d74e9f2629b2c396f21f9b591865fb59d159f (diff)
1 files changed, 4 insertions, 3 deletions
diff --git a/src/reqs.c b/src/reqs.c
index 01c8ab8..cea4249 100644
--- a/src/reqs.c
+++ b/src/reqs.c
@@ -1,4 +1,4 @@
-/* $Id: reqs.c,v 1.10 2000-11-23 04:46:25 rjkaes Exp $
+/* $Id: reqs.c,v 1.11 2001-01-15 17:11:57 rjkaes Exp $
  *
  * This is where all the work in tinyproxy is actually done. Incoming
  * connections have a new thread created for them. The thread then
@@ -170,12 +170,13 @@ static int process_method(struct conn_s *connptr)
 	if (!uri->scheme || strcasecmp(uri->scheme, "http") != 0) {
 		char *error_string;
 		if (uri->scheme) {
-			error_string = malloc(strlen(uri->scheme) + 64);
+			int error_string_len = strlen(uri->scheme) + 64;
+			error_string = malloc(error_string_len);
 			if (!error_string) {
 				log(LOG_CRIT, "Out of Memory!");
 				return -1;
 			}
-			sprintf(error_string,
+			snprintf(error_string, error_string_len,
 				"Invalid scheme (%s). Only HTTP is allowed.",
 				uri->scheme);
 		} else {
author	Robert James Kaes <rjkaes@users.sourceforge.net>	2001-01-15 17:11:57 +0000
committer	Robert James Kaes <rjkaes@users.sourceforge.net>	2001-01-15 17:11:57 +0000
commit	93b201d23be3167983826da750d7d1fe8c4c5d47 (patch)
tree	6c8f8a9a72ff51fff6a13fdea623ad82ae813b99 /src/reqs.c
parent	2f2d74e9f2629b2c396f21f9b591865fb59d159f (diff)