Check return values of sscanf()

Failing to check that a call to 'sscanf' actually writes to an output variable can lead to unexpected behavior at reading time.
2026-05-01 14:57:59 +02:00 · 2024-03-23 22:26:43 -04:00 · 2024-03-23 22:26:43 -04:00 · 6720da3b88
commit 6720da3b88
parent ed4ac0c797
2 changed files with 10 additions and 2 deletions
--- a/src/options.c
+++ b/src/options.c
@ -163,7 +163,11 @@ void line_pulse_duration_option_parse(const char *arg)
        {
            char keyname[11];
            unsigned int value;
-            sscanf(token, "%10[^=]=%d", keyname, &value);
+
+            if (sscanf(token, "%10[^=]=%d", keyname, &value) != 2)
+            {
+                token_found = false;
+            }

            if (!strcmp(keyname, "DTR"))
            {
--- a/src/rs485.c
+++ b/src/rs485.c
@ -57,7 +57,11 @@ void rs485_parse_config(const char *arg)
        {
            char keyname[31];
            unsigned int value;
-            sscanf(token, "%30[^=]=%d", keyname, &value);
+
+            if (sscanf(token, "%30[^=]=%d", keyname, &value) != 2)
+            {
+                token_found = false;
+            }

            if (!strcmp(keyname, "RTS_ON_SEND"))
            {