* io.c (rb_io_inspect): replace sprintf() with "%s" format all

over the place by snprintf() to avoid integer overflow. * sample/svr.rb: service can be stopped by ill-behaved client; use tsvr.rb instead. git-svn-id: http://svn.ruby-lang.org/repos/ruby/branches/ruby_1_8@8799 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
author: matz <matz@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> 2005-07-19 08:25:39 +0000
committer: matz <matz@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> 2005-07-19 08:25:39 +0000
commit: 5db2d745164db6c375edd86a5bb28eeb6041d7c0 (patch)
tree: e91a96aa41166abd1bd8c531fb548999fde63869 /struct.c
parent: b693f0f55c7e67f6ef907492fb89d5788af1fe81 (diff)
download: ruby-5db2d745164db6c375edd86a5bb28eeb6041d7c0.tar.gz
ruby-5db2d745164db6c375edd86a5bb28eeb6041d7c0.tar.xz
ruby-5db2d745164db6c375edd86a5bb28eeb6041d7c0.zip
1 files changed, 3 insertions, 2 deletions
diff --git a/struct.c b/struct.c
index 59de2ea61..ed3f9f28e 100644
--- a/struct.c
+++ b/struct.c
@@ -518,9 +518,10 @@ rb_struct_inspect(s)
 {
     if (rb_inspecting_p(s)) {
 	char *cname = rb_class2name(rb_obj_class(s));
-	VALUE str = rb_str_new(0, strlen(cname) + 15);
+	size_t len = strlen(cname) + 15;
+	VALUE str = rb_str_new(0, len);
 
-	sprintf(RSTRING(str)->ptr, "#<struct %s:...>", cname);
+	snprintf(RSTRING(str)->ptr, len, "#<struct %s:...>", cname);
 	RSTRING(str)->len = strlen(RSTRING(str)->ptr);
 	return str;
     }
author	matz <matz@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>	2005-07-19 08:25:39 +0000
committer	matz <matz@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>	2005-07-19 08:25:39 +0000
commit	5db2d745164db6c375edd86a5bb28eeb6041d7c0 (patch)
tree	e91a96aa41166abd1bd8c531fb548999fde63869 /struct.c
parent	b693f0f55c7e67f6ef907492fb89d5788af1fe81 (diff)
download	ruby-5db2d745164db6c375edd86a5bb28eeb6041d7c0.tar.gz ruby-5db2d745164db6c375edd86a5bb28eeb6041d7c0.tar.xz ruby-5db2d745164db6c375edd86a5bb28eeb6041d7c0.zip