Thread: How to use gets_s

Yes.
You never free stringBuilder.
And why not just use fgets?

Originally Posted by gwarf420

I just tried fgets(). Unfortunately, it has the same response to finding more input than specified. it just dies.

No, it doesn't. It reads up to a maximum of the specified characters - 1 and appends null to the end.
So how do we know if fgets read the entire line or not? Simple.
First, check the return of fgets. Does it return 1? If yes, then it means it read successfully (ie, not end of file). Then check the last character before the null in the buffer. Is it '\n'? If yes, then fgets read the entire line. If not, read some more.

I understand bounds checking is good, but allow to handle the error instead of exiting the program.

Usually, because it means it's a programmer error. C is very unfriendly when it comes to buffers. Sometimes it is mostly the programmer's fault for not providing big enough buffers. And it's better than nothing.

So, I would need to modify fgets() as well, to respect the size given in the parameter and return NULL if there is more input than expected instead of doing an assert.

No you don't, see above.

On an aside, I found this excellent ppt presentation that explains the dangers or arc-injection, code-injection, and various mitigation techniques for buffer overflows, I think it would be helpful for anyone trying to learn how to program in C securely.

Nice catch. Let's investigate this one and see if we can put it somewhere.

Originally Posted by Elysia

No, it doesn't. It reads up to a maximum of the specified characters - 1 and appends null to the end.
So how do we know if fgets read the entire line or not? Simple.
First, check the return of fgets. Does it return 1? If yes, then it means it read successfully (ie, not end of file). Then check the last character before the null in the buffer. Is it '\n'? If yes, then fgets read the entire line. If not, read some more.

Erm, fgets(), like gets(), returns a pointer to the buffer, or NULL if EOF was encountered. It will never ever return 1 [For the pedants: unless you have a system where memory address 1 is a valid address, and that's what you passed to fgets() - but that rules out most modern 32-bit OS's at least].

--
Mats

Originally Posted by matsp

Erm, fgets(), like gets(), returns a pointer to the buffer, or NULL if EOF was encountered. It will never ever return 1 [For the pedants: unless you have a system where memory address 1 is a valid address, and that's what you passed to fgets() - but that rules out most modern 32-bit OS's at least].

Originally Posted by citizen

>> First, check the return of fgets. Does it return 1? If yes, then it means it read successfully (ie, not
>> end of file).

fgets returns the buffer or NULL, not a number.

Oops, yes, I was thinking of fread.
Still, that presentation is pretty good. Just beware of the void main in there.
And not surprisingly, it does mention that Visual Studio catches some common errors such as some buffer overruns and stack smashing.

Originally Posted by robwhit

fixed.

If you like it better that way...

fread does not guarantee return of 1 on success.

No, it doesn't, it returns "count," but it was a simplification since I always use fread(whatever, size, 1, file).

[QUOTE]
I just tried fgets(). Unfortunately, it has the same response to finding more input than specified. it just dies.[/QOUTE]

My bad, I was using a function that tested gets_s() and then fgets() right after it. So, it was not fgets that was causing the assert. It was my useless friend gets_s().

fgets() works well, but seems to cause its own complications:
1. The '\n' is stored in the string (which is fine if I'm just dumping input to a file). In order to use input for variables, I would have to go through each input string and NULLify the '\n' characters.
2. If there is more input than the length of the buffer, I would need to flush the rest of the input line.

I believe the least complex way of accepting input is to implement this function that is similar in behavior to C++'s getline which is stack safe and dynamic (then I can validate the input length, format, etc):

Code:

char * getstring ()
{
	FILE *tempFile = tmpfile() ;
	int i, k = 0 ;
        char *s = NULL ;
    
    if (tempFile)
	{
		/* Read and store characters until reaching a newline or end-of-file */
		for (i = 0; k != EOF && k != '\n'; i++)
		{
			k = getchar() ;
		
		/* If a read error occurs, the resulting buffer is not usable. */
		if (k == EOF && !feof(stdin)) return NULL;
		
		if (k == '\n') fputc( '\0', tempFile ) ;  //substitute NULL termination for newline
		else fputc( k, tempFile ) ;
		
		}
		
		s = (char *) realloc( s, ++i * sizeof( char ) ) ;
		rewind( tempFile ) ;
		fgets( s, i, tempFile ) ;
		fclose( tempFile ) ;
		tempFile = NULL ;
		return s;
	}
	else return NULL ;
}

Anybody have any idea why if I pass a character pointer into this function and realloc the passed pointer, it does not retain the new info back in the main function?

If you want to modify a pointer, you need a pointer to pointer, because you can only modify something if you have a pointer to it (you need to know the original address of the thing you want to modify).

--
Mats