StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

PO
primarykey
Id
283248
data
AcceptedAnswerId
0
AnswerCount
0
ClosedDate
CommentCount
4
CommunityOwnedDate
CreationDate
2008-11-12T07:31:29.903
FavoriteCount
0
LastActivityDate
2008-11-12T08:26:27.563
LastEditDate
2008-11-12T08:26:27.563
LastEditorUserId
28494
OwnerUserId
28494
ParentId
283205
PostTypeId
2
Score
12
ViewCount
0
LastEditorDisplayName
qrdl
text
Body
Few years ago I've got a call from my ex-colleague telling me about the problem he had to fix with my code, which was a router for credit card transactions. Card number prefix consists of 6-digit BIN (Bank Identification Number) and extra few digits that banks use at own discretion, e.g. bank has BIN for Visa Classic card 456789, and reserve 2 extra digits to indicate sub-product, like 01 for student's card, 02 for co-branded card with local department store and so on. In this case card prefix, which is basically product identifier, becomes 8 digits long. When I coded this part, I decided that 9 digits "ought to be enough for everyone". I was running ok for 2 years until one day bank make a new card products with 10-digit-long prefix (have no idea why they needed it). Not too hard to imagine what has happened - router segfaulted, the whole system halted because it cannot function without transaction router, all ATMs of that bank (one of biggest in the country) became non-operational for few hours, until problem was found and fixed. I cannot post the code here firstly because I don't have it and secondly it is copyrighted by the company, but it is not hard to imagine the <code>strcpy()</code> without checking size of target buffer. Just like <code>man strcpy</code> says: <blockquote> If the destination string of a strcpy() is not large enough (that is, if the programmer was stupid or lazy, and failed to check the size before copying) then anything might happen. Overflowing fixed length strings is a favorite cracker technique. </blockquote> I was very embarrassed. It was a good time to commit <a href="http://en.wikipedia.org/wiki/Sepukku" rel="nofollow noreferrer">seppuku</a> :) But I learned the lesson well and do not forget (usually :) ) to check size of target buffer. I wouldn't recommend you to learn it the hard way - just develop a habit to check target buffer before <code>strcpy()</code> and <code>strcat()</code>. Edit: good suggestion from Healthcarel - use <code>strncpy()</code> rather than <code>strcpy()</code>. It doesn't add trailing 0 but I usually use following macro to get around it: <code>#define STRNCPY(A,B,C) do {strncpy(A,B,C); A[C] = 0; } while (0)</code>
Tags
Title
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. POWhat was the most dangerous programming mistake you have made in C?
 singulars
 PostTypePostTypeId
 PTQuestion
PostTypePostTypeId
1. PTAnswer
UserLastEditorUserId
1. USqrdl
UserOwnerUserId
1. USqrdl
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. POWhat was the most dangerous programming mistake you have made in C?
 singulars
 PostTypePostTypeId
 PTQuestion
PostsParentIdCreationDate
1. This table or related slice is empty.
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
2. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
3. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
CommentsPostId
1. COThat's why i always use strncpy as suggested in my man strcpy.
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
2. CO@Heathcarel, a function that omits the null-termination, if the buffer is too small isn't much better. Better use strlcpy or snprintf().
 singulars
 PostPostId
 PO
 UserUserId
 USquinmars
3. COThe strlcpy/g_strlcpy-family from BSD and glib is useful here -- they always take a destination buffer size and won't write beyond it.
 singulars
 PostPostId
 PO
 UserUserId
 USBen Combee

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.