[Git][NTPsec/ntpsec][master] Replace some strlen() calls to pacify linters.

Richard Laager (@rlaager) gitlab at mg.gitlab.com
Thu Jun 26 09:45:10 UTC 2025 


Richard Laager pushed to branch master at NTPsec / ntpsec


Commits:
054a8049 by James Browning at 2025-06-25T18:44:14-07:00
Replace some strlen() calls to pacify linters.

Codacy does not like the lack of maximum length in strlen()

- - - - -


8 changed files:

- attic/sign-timing.c
- libntp/decodenetnum.c
- libntp/getopt.c
- libntp/isc_interfaceiter.c
- libntp/msyslog.c
- libntp/numtoa.c
- libntp/statestr.c
- ntpd/keyword-gen.c


Changes:

=====================================
attic/sign-timing.c
=====================================
@@ -143,14 +143,13 @@ static void DoSign(
   char stupid_api1[20];
   char stupid_api2[50];
 
-  const char* context = "RoughTime v1 delegation signature-";
-  int contextlen = strlen(context)+1;
+  const char context[] = "RoughTime v1 delegation signature-";
   OSSL_PARAM params[3];
 
   strncpy(stupid_api1, "Ed25519ctx", sizeof(stupid_api1));
   params[0] = OSSL_PARAM_construct_utf8_string("instance", stupid_api1, 0);
   strncpy(stupid_api2, context, sizeof(stupid_api2));
-  params[1] = OSSL_PARAM_construct_octet_string("context-string", stupid_api2, contextlen);
+  params[1] = OSSL_PARAM_construct_octet_string("context-string", stupid_api2, sizeof(context));
   params[2] = OSSL_PARAM_construct_end();
   err = EVP_DigestSignInit_ex(ctx, NULL, NULL, NULL, NULL, key, params);
   if (1 != err ) {


=====================================
libntp/decodenetnum.c
=====================================
@@ -55,7 +55,7 @@ decodenetnum(
 	if ( NULL == num) {
                 return -4001;
         }
-	numlen = strlen(num);
+	numlen = strnlen(num, INET6_ADDRSTRLEN + NI_MAXSERV + 2); // 80
 	/* Quickly reject empty or impossibly long inputs. */
 	if(numlen == 0 ||
 	   numlen > ((sizeof(ip) - 1) + (NI_MAXSERV - 1) + (3 /* "[]:" */))) {


=====================================
libntp/getopt.c
=====================================
@@ -161,7 +161,7 @@ int ntp_getopt_long(int argc, char *const argv[], const char *optstring,
 		return -1;
 	}
 
-	if (strlen(argv[ntp_optind]) < 3 || strncmp(argv[ntp_optind], "--", 2) != 0) {
+	if (strnlen(argv[ntp_optind], 3) < 3 || strncmp(argv[ntp_optind], "--", 2) != 0) {
 		return ntp_getopt(argc, argv, optstring);
 	}
 


=====================================
libntp/isc_interfaceiter.c
=====================================
@@ -364,7 +364,7 @@ internal_current(isc_interfaceiter_t *iter) {
 
         memset(&iter->current, 0, sizeof(iter->current));
 
-        namelen = (unsigned int)strlen(ifa->ifa_name);
+        namelen = (unsigned int)strnlen(ifa->ifa_name, sizeof(iter->current.name));
         if (namelen > sizeof(iter->current.name) - 1)
                 namelen = sizeof(iter->current.name) - 1;
 
@@ -1571,7 +1571,7 @@ linux_if_inet6_current(isc_interfaceiter_t *iter) {
 */
                 return (ISC_R_FAILURE);
         }
-        if (strlen(address) != 32) {
+        if (strnlen(address, 33) != 32) {
 /*              isc_log_write(isc_lctx, ISC_LOGCATEGORY_GENERAL,
                               ISC_LOGMODULE_INTERFACE, ISC_LOG_ERROR,
                               "/proc/net/if_inet6:strlen(%s) != 32", address);


=====================================
libntp/msyslog.c
=====================================
@@ -381,7 +381,7 @@ change_logfile(
 		    0 != strcmp(log_fname, "stderr") &&
 		    0 != strcmp(log_fname, "stdout") &&
 		    NULL != getcwd(curdir, sizeof(curdir))) {
-			cd_octets = strlen(curdir);
+			cd_octets = strnlen(curdir, sizeof(curdir));
 			/* trim any trailing '/' */
 			if (cd_octets > 1 &&
 			    DIR_SEP == curdir[cd_octets - 1])


=====================================
libntp/numtoa.c
=====================================
@@ -22,7 +22,6 @@ refid_str(
 	)
 {
 	char *	text;
-	size_t	tlen;
 
 	if (stratum > 1) {
 		struct in_addr in4;
@@ -38,8 +37,7 @@ refid_str(
 	  if (text[i] != ' ') break;
 	  text[i] = '\0';
 	}
-	tlen = strlen(text);
-	if (0 == tlen) {
+	if ('\0' == *text) {
 	  strlcat(text, "?", LIB_BUFLENGTH);
 	}
 


=====================================
libntp/statestr.c
=====================================
@@ -413,9 +413,9 @@ statustoa(
 			 getcode((st) & 0xf, clock_codes));
 		break;
 
-        default:
-                /* huh? */
-                break;
+	default:
+		/* huh? */
+		break;
 	}
 
 	return cb;


=====================================
ntpd/keyword-gen.c
=====================================
@@ -702,7 +702,7 @@ populate_symb(
 		    && token < (int)COUNTOF(symb)) {
 
 			symb[token] = strdup(name);
-			if (strlen(name) > MAX_TOK_LEN) {
+			if (strnlen(name, MAX_TOK_LEN + 1) > MAX_TOK_LEN) {
 				fprintf(stderr,
 					"MAX_TOK_LEN %d too small for '%s'\n"
 					"Edit keyword-gen.c to raise.\n",



View it on GitLab: https://gitlab.com/NTPsec/ntpsec/-/commit/054a80492c40effe2eb97cd8e06b03df331bde0f

-- 
View it on GitLab: https://gitlab.com/NTPsec/ntpsec/-/commit/054a80492c40effe2eb97cd8e06b03df331bde0f
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ntpsec.org/pipermail/vc/attachments/20250626/a09a12fb/attachment-0001.htm>

More information about the vc mailing list