prefer memcpy to strcpy

When we already know the length of a string (e.g., because we just malloc'd to fit it), it's nicer to use memcpy than strcpy, as it makes it more obvious that we are not going to overflow the buffer (because the size we pass matches the size in the allocation). This also eliminates calls to strcpy, which make auditing the code base harder. Signed-off-by: Jeff King <peff@peff.net> Signed-off-by: Junio C Hamano <gitster@pobox.com>
author: Jeff King <peff@peff.net> 2015-09-24 21:08:19 (GMT)
committer: Junio C Hamano <gitster@pobox.com> 2015-10-05 18:08:05 (GMT)
commit: 34fa79a6cde56d6d428ab0d3160cb094ebad3305 (patch)
tree: d75524981f407be8af783b743df86f4a0e757d0e /compat/nedmalloc
parent: 4c9ac3bfaad9e32a7a98178d1f01779a3698144f (diff)
download: git-34fa79a6cde56d6d428ab0d3160cb094ebad3305.zip
git-34fa79a6cde56d6d428ab0d3160cb094ebad3305.tar.gz
git-34fa79a6cde56d6d428ab0d3160cb094ebad3305.tar.bz2
1 files changed, 3 insertions, 2 deletions
diff --git a/compat/nedmalloc/nedmalloc.c b/compat/nedmalloc/nedmalloc.c
index 609ebba..a0a16eb 100644
--- a/compat/nedmalloc/nedmalloc.c
+++ b/compat/nedmalloc/nedmalloc.c
@@ -957,8 +957,9 @@ char *strdup(const char *s1)
 {
 	char *s2 = 0;
 	if (s1) {
-		s2 = malloc(strlen(s1) + 1);
-		strcpy(s2, s1);
+		size_t len = strlen(s1) + 1;
+		s2 = malloc(len);
+		memcpy(s2, s1, len);
 	}
 	return s2;
 }
author	Jeff King <peff@peff.net>	2015-09-24 21:08:19 (GMT)
committer	Junio C Hamano <gitster@pobox.com>	2015-10-05 18:08:05 (GMT)
commit	34fa79a6cde56d6d428ab0d3160cb094ebad3305 (patch)
tree	d75524981f407be8af783b743df86f4a0e757d0e /compat/nedmalloc
parent	4c9ac3bfaad9e32a7a98178d1f01779a3698144f (diff)
download	git-34fa79a6cde56d6d428ab0d3160cb094ebad3305.zip git-34fa79a6cde56d6d428ab0d3160cb094ebad3305.tar.gz git-34fa79a6cde56d6d428ab0d3160cb094ebad3305.tar.bz2