Fixing more CodeQL alerts.

Perry Werneck
1 parent c24fe1f7
Showing 3 changed files with 10 additions and 10 deletions Show diff stats
src/core/ft/ft.c
src/core/ft/ft_dft.c
src/core/see.c
@@ -474,7 +474,7 @@ LIB3270_EXPORT int lib3270_ft_start(H3270 *hSession) {
 	// Erase the line and enter the command.
 	flen = kybd_prime(ft->host);
 	if (!flen || flen < strlen(buffer) - 1) {
-		lib3270_write_log(ft->host, "Unable to send command \"%s\" (flen=%d szBuffer=%d)",buffer,flen,strlen(buffer));
+		lib3270_write_log(ft->host, "ft", "Unable to send command \"%s\" (flen=%d szBuffer=%ld)",buffer,flen,strlen(buffer));
 		ft_failed(ft,_( "Unable to send file-transfer request" ));
 		return errno = EINVAL;
 	}
@@ -383,7 +383,7 @@ static void dft_get_request(H3270 *hSession) {
 			/* Binary read. */
 			numread = fread(bufptr, 1, numbytes, ft->local_file);
 			if (numread <= 0) {
-				lib3270_write_log(hSession,"Error %s reading source file (rc=%d)",strerror(errno),errno);
+				lib3270_write_log(hSession,"ft","Error %s reading source file (rc=%d)",strerror(errno),errno);
 				break;
 			}
@@ -293,24 +293,24 @@ static const char * see_validation(unsigned char setting) {
 	(void) strcpy(buf, "");
 	if (setting & XAV_FILL) {
-		(void) strcat(buf, paren);
-		(void) strcat(buf, "fill");
+		(void) strncat(buf, paren, 63);
+		(void) strncat(buf, "fill");
 		paren = ",";
 	}
 	if (setting & XAV_ENTRY) {
-		(void) strcat(buf, paren);
-		(void) strcat(buf, "entry");
+		(void) strncat(buf, paren, 63);
+		(void) strncat(buf, "entry");
 		paren = ",";
 	}
 	if (setting & XAV_TRIGGER) {
-		(void) strcat(buf, paren);
-		(void) strcat(buf, "trigger");
+		(void) strncat(buf, paren, 63);
+		(void) strncat(buf, "trigger");
 		paren = ",";
 	}
 	if (strcmp(paren, "("))
-		(void) strcat(buf, ")");
+		(void) strncat(buf, ")", 63);
 	else
-		(void) strcpy(buf, "(none)");
+		(void) strncpy(buf, "(none)", 63);
 	return buf;
 }
	@@ -474,7 +474,7 @@ LIB3270_EXPORT int lib3270_ft_start(H3270 *hSession) {		@@ -474,7 +474,7 @@ LIB3270_EXPORT int lib3270_ft_start(H3270 *hSession) {
474	// Erase the line and enter the command.	474	// Erase the line and enter the command.
475	flen = kybd_prime(ft->host);	475	flen = kybd_prime(ft->host);
476	if (!flen \|\| flen < strlen(buffer) - 1) {	476	if (!flen \|\| flen < strlen(buffer) - 1) {
477	- lib3270_write_log(ft->host, "Unable to send command \"%s\" (flen=%d szBuffer=%d)",buffer,flen,strlen(buffer));	477	+ lib3270_write_log(ft->host, "ft", "Unable to send command \"%s\" (flen=%d szBuffer=%ld)",buffer,flen,strlen(buffer));
478	ft_failed(ft,_( "Unable to send file-transfer request" ));	478	ft_failed(ft,_( "Unable to send file-transfer request" ));
479	return errno = EINVAL;	479	return errno = EINVAL;
480	}	480	}
	@@ -383,7 +383,7 @@ static void dft_get_request(H3270 *hSession) {		@@ -383,7 +383,7 @@ static void dft_get_request(H3270 *hSession) {
383	/* Binary read. */	383	/* Binary read. */
384	numread = fread(bufptr, 1, numbytes, ft->local_file);	384	numread = fread(bufptr, 1, numbytes, ft->local_file);
385	if (numread <= 0) {	385	if (numread <= 0) {
386	- lib3270_write_log(hSession,"Error %s reading source file (rc=%d)",strerror(errno),errno);	386	+ lib3270_write_log(hSession,"ft","Error %s reading source file (rc=%d)",strerror(errno),errno);
387	break;	387	break;
388	}	388	}
389		389