LibC: Prevent slowness and overrun in strdup/strndup

strdup: Because the length is already known at the time of copying, there is no need to use strcpy (which has to check every single byte, and thus tends to be slower than memcpy). strndup: If 'str' is not NUL-terminated, strndup used to run off into the adjacent memory region. This can be fixed by using the proper strlen variant: strnlen.
Author: https://github.com/BenWiederhake Commit: 9795c61464 Pull-request: https://github.com/SerenityOS/serenity/pull/3275 Reviewed-by: https://github.com/awesomekling
2025-09-13 13:02:28 +00:00 · 2020-08-23 12:34:08 +02:00 · 2020-08-23 12:34:08 +02:00 · 9795c61464 · 2024-07-19 03:14:48 +09:00
commit 9795c61464
parent 2adc3c61a2
1 changed files with 3 additions and 2 deletions
--- a/Libraries/LibC/string.cpp
+++ b/Libraries/LibC/string.cpp
@ -94,13 +94,14 @@ char* strdup(const char* str)
 {
    size_t len = strlen(str);
    char* new_str = (char*)malloc(len + 1);
-    strcpy(new_str, str);
+    memcpy(new_str, str, len);
+    new_str[len] = '\0';
    return new_str;
 }

 char* strndup(const char* str, size_t maxlen)
 {
-    size_t len = min(strlen(str), maxlen);
+    size_t len = strnlen(str, maxlen);
    char* new_str = (char*)malloc(len + 1);
    memcpy(new_str, str, len);
    new_str[len] = 0;