Because sprintf assumes an arbitrarily long string,
callers must be careful not to overflow the actual space of the destination.
Change-Id: I4a3e641459d1da0f54db7eeb109447868906e394
Signed-off-by: Jihoon Kim <jihoon48.kim@samsung.com>
scanner_warn(s, "right-hand side string is too long; skipping line");
goto skip;
}
- strcpy(production.string, val.string.str);
+ strncpy(production.string, val.string.str, sizeof(production.string)-1);
production.has_string = true;
goto rhs;
case TOK_IDENT: