sscanf isn't safe with strings that aren't null-terminated. In such case, create a local copy that is null-terminated first.

TESTED=GYP_DEFINES=build_for_tool=memcheck gclient runhooks
ninja -C out/Debug/ libjingle_unittest
tools/valgrind-webrtc/webrtc_tests.sh --tool memcheck --test out/Debug/libjingle_unittest  --gtest_filter=Http*

R=noahric@google.com

Review URL: https://webrtc-codereview.appspot.com/1941004

git-svn-id: http://webrtc.googlecode.com/svn/trunk@4469 4adac7df-926f-26a2-2b94-8c16560cd09d

talk/base/httpbase.cc

@@ -166,8 +166,12 @@ HttpParser::ProcessLine(const char* line, size_t len, HttpError* error) {
       } while ((value < eol) && isspace(static_cast<unsigned char>(*value)));
       size_t vlen = eol - value;
       if (MatchHeader(line, nlen, HH_CONTENT_LENGTH)) {
+        // sscanf isn't safe with strings that aren't null-terminated, and there
+        // is no guarantee that |value| is.
+        // Create a local copy that is null-terminated.
+        std::string value_str(value, vlen);
         unsigned int temp_size;
-        if (sscanf(value, "%u", &temp_size) != 1) {
+        if (sscanf(value_str.c_str(), "%u", &temp_size) != 1) {
           *error = HE_PROTOCOL;
           return PR_COMPLETE;
         }

tools/valgrind-webrtc/memcheck/suppressions.txt

@@ -917,27 +917,6 @@
    fun:BIO_new_mem_buf
    fun:_ZN9talk_base15OpenSSLIdentity14FromPEMStringsERKSsS2_
 }
-# For sscanf
-{
-   sscanf_1
-   Memcheck:Uninitialized
-   fun:__GI___rawmemchr
-   fun:_IO_str_init_static_internal
-   fun:vsscanf
-   fun:sscanf
-   fun:_ZN9talk_base16HttpResponseData11parseLeaderEPKcm
-   ...
-}
-{
-   sscanf_2
-   Memcheck:Uninitialized
-   fun:__GI___rawmemchr
-   fun:_IO_str_init_static_internal
-   fun:vsscanf
-   fun:sscanf
-   fun:_ZN9talk_base15HttpRequestData11parseLeaderEPKcm
-   ...
-}
 # For HttpServer.SignalsCloseAfterForcedCloseAll
 {
    SignalsCloseAfterForcedCloseAll