Replace deprecated sprintf with snprintf

jserv · jserv · commit 5d9599e5f554 · 2025-09-22T01:46:40.000+08:00
This replaces unsafe sprintf with snprintf to address security concerns
and compiler deprecation warning on macOS.

The change explicitly specifies buffer size to prevent potential buffer
overflows while maintaining the same functionality.
diff --git a/src/main.c b/src/main.c
@@ -184,8 +184,10 @@ static bool parse_args(int argc, char **args)
                                strlen(prog_basename) + 5 + 1);
         assert(prof_out_file);
 
-        sprintf(prof_out_file, "%s/%s%s.prof", cwd_path, rel_path,
-                prog_basename);
+        snprintf(prof_out_file,
+                 strlen(cwd_path) + 1 + strlen(rel_path) +
+                     strlen(prog_basename) + 5 + 1,
+                 "%s/%s%s.prof", cwd_path, rel_path, prog_basename);
     }
     return true;
 }

Original file line number	Diff line number	Diff line change
`@@ -184,8 +184,10 @@ static bool parse_args(int argc, char **args)`
`184`	`184`	`strlen(prog_basename) + 5 + 1);`
`185`	`185`	`assert(prof_out_file);`
`186`	`186`
`187`		`- sprintf(prof_out_file, "%s/%s%s.prof", cwd_path, rel_path,`
`188`		`- prog_basename);`
	`187`	`+ snprintf(prof_out_file,`
	`188`	`+ strlen(cwd_path) + 1 + strlen(rel_path) +`
	`189`	`+ strlen(prog_basename) + 5 + 1,`
	`190`	`+ "%s/%s%s.prof", cwd_path, rel_path, prog_basename);`
`189`	`191`	`}`
`190`	`192`	`return true;`
`191`	`193`	`}`