Hello Joey,

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=205736 [[ This example contains the following line: if ((p = realloc (p, size)) == NULL) return NULL; This is a very ill written code, since realloc returning NULL do not deallocate the original memory block. Such a statement has a potential to become significant memory hole. I suggest to correct this example since: 1. It may trick naive programmers to write bad code 2. It may lead skeptic observers to the believe the whole Linux is written in a similar style. Regards Jan Kuznik ]] This guy is right on the money! I've changed that example, so that the above code has been replaced by: char *np; ... if ((np = realloc (p, size)) == NULL) { free(p); return NULL; } else { p = np; } Cheers, Michael
2004-12-14 18:25:46 +00:00 · 2004-12-14 18:25:46 +00:00 · 898e9a87df
parent 2d5e8aeb73
commit 898e9a87df
1 changed files with 9 additions and 2 deletions
--- a/man3/printf.3
+++ b/man3/printf.3
@ -756,14 +756,17 @@ To allocate a sufficiently large string and print into it
 #include <stdio.h>
 #include <stdlib.h>
 #include <stdarg.h>
+
 char *
 make_message(const char *fmt, ...) {
   /* Guess we need no more than 100 bytes. */
   int n, size = 100;
-   char *p;
+   char *p, *np;
   va_list ap;
+
   if ((p = malloc (size)) == NULL)
      return NULL;
+   
   while (1) {
      /* Try to print in the allocated space. */
      va_start(ap, fmt);
@ -777,8 +780,12 @@ make_message(const char *fmt, ...) {
         size = n+1; /* precisely what is needed */
      else           /* glibc 2.0 */
         size *= 2;  /* twice the old size */
-      if ((p = realloc (p, size)) == NULL)
+      if ((np = realloc (p, size)) == NULL) {
+         free(p);
         return NULL;
+      } else {
+         p = np;
+      }
   }
 }
 .fi