refactor: replace sprintf with snprintf for safer string handling in dump functions (ggml-org#16913)

chraac · web-flow · commit a5c07dcd7b49 · 2025-11-04T12:25:39.000-08:00
diff --git a/ggml/src/ggml-hexagon/htp/ops-utils.h b/ggml/src/ggml-hexagon/htp/ops-utils.h
@@ -43,46 +43,46 @@ static inline int32_t htp_is_one_chunk(void * addr, uint32_t n, uint32_t chunk_s
 }
 
 static inline void htp_dump_int8_line(char * pref, const int8_t * x, int n) {
-    char str[1024], *p = str;
-    p += sprintf(p, "%s: ", pref);
-    for (int i = 0; i < 16; i++) {
-        p += sprintf(p, "%d, ", x[i]);
+    char str[1024], *p = str, *p_end = str + sizeof(str);
+    p += snprintf(p, p_end - p, "%s: ", pref);
+    for (int i = 0; i < n && p < p_end; i++) {
+        p += snprintf(p, p_end - p, "%d, ", x[i]);
     }
     FARF(HIGH, "%s\n", str);
 }
 
 static inline void htp_dump_uint8_line(char * pref, const uint8_t * x, uint32_t n) {
-    char str[1024], *p = str;
-    p += sprintf(p, "%s: ", pref);
-    for (int i = 0; i < n; i++) {
-        p += sprintf(p, "%d, ", x[i]);
+    char str[1024], *p = str, *p_end = str + sizeof(str);
+    p += snprintf(p, p_end - p, "%s: ", pref);
+    for (int i = 0; i < n && p < p_end; i++) {
+        p += snprintf(p, p_end - p, "%d, ", x[i]);
     }
     FARF(HIGH, "%s\n", str);
 }
 
 static inline void htp_dump_int32_line(char * pref, const int32_t * x, uint32_t n) {
-    char str[1024], *p = str;
-    p += sprintf(p, "%s: ", pref);
+    char str[1024], *p = str, *p_end = str + sizeof(str);
+    p += snprintf(p, p_end - p, "%s: ", pref);
     for (int i = 0; i < n; i++) {
-        p += sprintf(p, "%d, ", (int) x[i]);
+        p += snprintf(p, p_end - p, "%d, ", (int) x[i]);
     }
     FARF(HIGH, "%s\n", str);
 }
 
 static inline void htp_dump_fp16_line(char * pref, const __fp16 * x, uint32_t n) {
-    char str[1024], *p = str;
-    p += sprintf(p, "%s: ", pref);
+    char str[1024], *p = str, *p_end = str + sizeof(str);
+    p += snprintf(p, p_end - p, "%s: ", pref);
     for (int i = 0; i < n; i++) {
-        p += sprintf(p, "%.6f, ", (float) x[i]);
+        p += snprintf(p, p_end - p, "%.6f, ", (float) x[i]);
     }
     FARF(HIGH, "%s\n", str);
 }
 
 static inline void htp_dump_fp32_line(char * pref, const float * x, uint32_t n) {
-    char str[1024], *p = str;
-    p += sprintf(p, "%s: ", pref);
+    char str[1024], *p = str, *p_end = str + sizeof(str);
+    p += snprintf(p, p_end - p, "%s: ", pref);
     for (int i = 0; i < n; i++) {
-        p += sprintf(p, "%.6f, ", x[i]);
+        p += snprintf(p, p_end - p, "%.6f, ", x[i]);
     }
     FARF(HIGH, "%s\n", str);
 }

Original file line number	Diff line number	Diff line change
`@@ -43,46 +43,46 @@ static inline int32_t htp_is_one_chunk(void * addr, uint32_t n, uint32_t chunk_s`
`43`	`43`	`}`
`44`	`44`
`45`	`45`	`static inline void htp_dump_int8_line(char * pref, const int8_t * x, int n) {`
`46`		`- char str[1024], *p = str;`
`47`		`- p += sprintf(p, "%s: ", pref);`
`48`		`- for (int i = 0; i < 16; i++) {`
`49`		`- p += sprintf(p, "%d, ", x[i]);`
	`46`	`+ char str[1024], p = str, p_end = str + sizeof(str);`
	`47`	`+ p += snprintf(p, p_end - p, "%s: ", pref);`
	`48`	`+ for (int i = 0; i < n && p < p_end; i++) {`
	`49`	`+ p += snprintf(p, p_end - p, "%d, ", x[i]);`
`50`	`50`	`}`
`51`	`51`	`FARF(HIGH, "%s\n", str);`
`52`	`52`	`}`
`53`	`53`
`54`	`54`	`static inline void htp_dump_uint8_line(char * pref, const uint8_t * x, uint32_t n) {`
`55`		`- char str[1024], *p = str;`
`56`		`- p += sprintf(p, "%s: ", pref);`
`57`		`- for (int i = 0; i < n; i++) {`
`58`		`- p += sprintf(p, "%d, ", x[i]);`
	`55`	`+ char str[1024], p = str, p_end = str + sizeof(str);`
	`56`	`+ p += snprintf(p, p_end - p, "%s: ", pref);`
	`57`	`+ for (int i = 0; i < n && p < p_end; i++) {`
	`58`	`+ p += snprintf(p, p_end - p, "%d, ", x[i]);`
`59`	`59`	`}`
`60`	`60`	`FARF(HIGH, "%s\n", str);`
`61`	`61`	`}`
`62`	`62`
`63`	`63`	`static inline void htp_dump_int32_line(char * pref, const int32_t * x, uint32_t n) {`
`64`		`- char str[1024], *p = str;`
`65`		`- p += sprintf(p, "%s: ", pref);`
	`64`	`+ char str[1024], p = str, p_end = str + sizeof(str);`
	`65`	`+ p += snprintf(p, p_end - p, "%s: ", pref);`
`66`	`66`	`for (int i = 0; i < n; i++) {`
`67`		`- p += sprintf(p, "%d, ", (int) x[i]);`
	`67`	`+ p += snprintf(p, p_end - p, "%d, ", (int) x[i]);`
`68`	`68`	`}`
`69`	`69`	`FARF(HIGH, "%s\n", str);`
`70`	`70`	`}`
`71`	`71`
`72`	`72`	`static inline void htp_dump_fp16_line(char * pref, const __fp16 * x, uint32_t n) {`
`73`		`- char str[1024], *p = str;`
`74`		`- p += sprintf(p, "%s: ", pref);`
	`73`	`+ char str[1024], p = str, p_end = str + sizeof(str);`
	`74`	`+ p += snprintf(p, p_end - p, "%s: ", pref);`
`75`	`75`	`for (int i = 0; i < n; i++) {`
`76`		`- p += sprintf(p, "%.6f, ", (float) x[i]);`
	`76`	`+ p += snprintf(p, p_end - p, "%.6f, ", (float) x[i]);`
`77`	`77`	`}`
`78`	`78`	`FARF(HIGH, "%s\n", str);`
`79`	`79`	`}`
`80`	`80`
`81`	`81`	`static inline void htp_dump_fp32_line(char * pref, const float * x, uint32_t n) {`
`82`		`- char str[1024], *p = str;`
`83`		`- p += sprintf(p, "%s: ", pref);`
	`82`	`+ char str[1024], p = str, p_end = str + sizeof(str);`
	`83`	`+ p += snprintf(p, p_end - p, "%s: ", pref);`
`84`	`84`	`for (int i = 0; i < n; i++) {`
`85`		`- p += sprintf(p, "%.6f, ", x[i]);`
	`85`	`+ p += snprintf(p, p_end - p, "%.6f, ", x[i]);`
`86`	`86`	`}`
`87`	`87`	`FARF(HIGH, "%s\n", str);`
`88`	`88`	`}`