Menu
I have a function like:
// string is a null-terminated char array. Replace all a in the string with b
void ReplaceCharInString(char *string, char a, char b)
{
// loop over the string char by char, to find all "a"s and replace them with "b"
}
I'm doing the defensive programming. The problem is the implementation replies on the client to really pass in an array of chars. If an address of a single char is passed in, the program definitely runs into a bad state(probably crashes). How do I check and avoid this? (I know if I pass in the std::string object, the problem goes away of course)
386
No, you cannot check this and have to trust the user of the function to pass an actual correctly null-terminated string.
This is also the way all the C standard library functions like strcpy(), strlen(), ... work.
55
No you can't check if you're running out of the allocated memory if the string is not null terminated.
As sth said C standard library functions like strcpy(), strlen(), also rely on the fact that the string is valid (null terminated).
... however, one solution could be Mudflap. It is costly (in term of performance) and is only valid with GCC.
Mudflap is a library that instruments all pointer/array operations. With this you will be able to check if a specific location is valid memory or not.
In fact the only reason I see for using Mudflap is if security is a very big issue for your application. But even in this case GCC provides a better alternative against buffer overflow (see -fstack-protector[-all]).
42
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
