Secure Coding mailing list archives
RE: New Microsoft Security Tool for developers
From: Örjan Petersson <nospam () logcode com>
Date: Tue, 16 Dec 2003 14:13:46 +0000
I cannot find supporting documentation for the claim "and nullify
the
rest of the buffer of dest". IIRC, strncpy will copy a null byte
from
src to dst, but it does not nullify the rest of dst.Hey Crispin, This would be dependant on the implimentation of strncpy. For most implementations on Unix it will indeed copy null chars in the rest of
the
buffer up the size requested.
The C standard requires this behaviour so implementations that do not pad the destination string with nul characters are not conformant. -- Ãrjan Petersson, Logcode SARL The email address in the From: header is valid
Current thread:
- RE: New Microsoft Security Tool for developers, (continued)
- RE: New Microsoft Security Tool for developers Lewis, Todd (Dec 12)
- RE: New Microsoft Security Tool for developers Chris Richards (Dec 12)
- Re: New Microsoft Security Tool for developers der Mouse (Dec 13)
- RE: New Microsoft Security Tool for developers Gene Spafford (Dec 13)
- Re: New Microsoft Security Tool for developers Mark Graff (Dec 13)
- RE: New Microsoft Security Tool for developers Jannie Hanekom (Dec 14)
- Re: New Microsoft Security Tool for developers der Mouse (Dec 15)
- Re: New Microsoft Security Tool for developers Dana Epp (Dec 15)
- Re: New Microsoft Security Tool for developers Crispin Cowan (Dec 15)
- Re: New Microsoft Security Tool for developers Dana Epp (Dec 15)
- RE: New Microsoft Security Tool for developers Örjan Petersson (Dec 16)
- strncpy (was: Re: New Microsoft Security Tool for developers) David A. Wheeler (Dec 16)
- Re: strncpy (was: Re: New Microsoft Security Tool for developers) Florian Weimer (Dec 17)
- Re: New Microsoft Security Tool for developers Dave Aronson (Dec 15)
- Re: New Microsoft Security Tool for developers Gene Spafford (Dec 17)
- Re: New Microsoft Security Tool for developers Mikey (Dec 17)