What is wrong with the function. How come nothing gets printed out?
char * CombineStr(char * str1, char * str2)
{
char strOut[256];
sprintf(strOut, “%s%s”, str1, str2);
return strOut;
}
Asked
Active
Viewed 6,406 times
-1
LogicStuff
- 19,397
- 6
- 54
- 74
Tai Wu
- 83
- 1
- 3
- 6
-
4UB? You are allocating strout in stack and returning a pointer to a location that is "deallocated" on function return. – Amadeus Jul 30 '16 at 20:05
-
@Amadeus locals are allocated in stack not in heap. – Sergio Jul 30 '16 at 20:07
-
@Serhio thanks right thought, wrong write – Amadeus Jul 30 '16 at 20:07
-
Actually, locals are allocated from static memory. The stack is merely a common implementation of static memory. – user4581301 Jul 30 '16 at 20:08
-
3Whatever. `strOut` is no longer in scope after the function returns. – Weather Vane Jul 30 '16 at 20:09
-
2Another bad thing is that you are using beautified quotes, a.k.a. smart quotes instead of plain quotes in your sprint statement. Try `sprintf(strOut, "%s%s", str1, str2);` – user3078414 Jul 30 '16 at 20:10
3 Answers
3
You should take care of scope (storage duration of your variable): either declare returned variable as static, or allocate it dynamically on the heap, using malloc, and freeing the allocated memory pointed to by strOut, once not needed anymore. You should use plain quotes in the format of your sprintf second argument. You should take care against overflow.
either:
char * CombineStr(char * str1, char * str2)
{
static char strOut[256]; //scope!
if((strlen(str1) + strlen(str2)) < 256)
sprintf(strOut, "%s%s", str1, str2); //plain quotes!
return strOut;
}
or:
char * CombineStr(char * str1, char * str2)
{
char strOut = malloc(strlen(str1) + strlen(str2) + 1);
if( strOut != NULL )
sprintf(strOut, "%s%s", str1, str2); //plain quotes!
return strOut;
}
For further reading, please take a look at following SO posts: 1, 2.
Community
- 1
- 1
user3078414
- 1,942
- 2
- 16
- 24
-
2Hack with `static` won't work well if user decides to call `CombineStr()` few times and use cached results later. And what about multithreading environment? – Sergio Jul 30 '16 at 20:22
-
2
Another common solution is to have the caller provide the output buffer
char * CombineStr(const char * str1,
const char * str2,
char * strOut,
size_t outlen)
{
size_t len = snprintf(strOut, outlen, "%s%s", str1, str2);
if (len < outlen)
{
return strOut;
}
return NULL;
}
Note the switch from sprintf to snprintf to prevent buffer overflow should the concatenated string exceed the length of the buffer. This allows us to catch the overflow and return an invalid result to let the caller know buffer cannot be trusted.
Typical usage would be
char buffer[256];
if (CombineStr("I's the b'y that builds the boat",
"And I's the b'y that sails her",
buffer,
sizeof(buffer)) != NULL)
{
// use buffer
}
It needs to be noted that snprintf has wonky support and cannot always be trusted to have been null terminated, but you can be sure that it didn't overflow the buffer.
user4581301
- 33,082
- 7
- 33
- 54
0
Change to static char strOut[256];. It is not very good solution but will work.
i486
- 6,491
- 4
- 24
- 41
-
1
-
@Serhio The drawback is that static buffer is only one and if someone is using `CombineStr` for example in `sprintf` as 2 or more parameters (2+ calls), the result will be wrong. For that reason my solution is simple and working but not for all cases. – i486 Jul 30 '16 at 23:07