Potential fix for code scanning alert no. 19: Potentially overflowing call to snprintf

rzr · github-advanced-security[bot] · rzr · commit 77e9b8ac7805 · 2025-05-26T17:29:10.000+02:00
Co-authored-by: Copilot Autofix powered by AI &lt;62310815+github-advanced-security[bot]@users.noreply.github.com&gt;
diff --git a/applications/zpc/components/zwave_api/src/zwapi_connection.c b/applications/zpc/components/zwave_api/src/zwapi_connection.c
@@ -50,14 +50,37 @@ static const char *zwapi_frame_to_string(const uint8_t *buffer,
       // Don't log the SOF byte.
       continue;
     } else if (i == 1) {
-      index += snprintf(message + index, sizeof(message) - index, "Length=");
+      {
+        int n = snprintf(message + index, sizeof(message) - index, "Length=");
+        if (n < 0 || n >= sizeof(message) - index) {
+          break;
+        }
+        index += n;
+      }
     } else if (i == 2) {
-      index += snprintf(message + index, sizeof(message) - index, "Type=");
+      {
+        int n = snprintf(message + index, sizeof(message) - index, "Type=");
+        if (n < 0 || n >= sizeof(message) - index) {
+          break;
+        }
+        index += n;
+      }
     } else if (i == 3) {
-      index += snprintf(message + index, sizeof(message) - index, "Cmd=");
+      {
+        int n = snprintf(message + index, sizeof(message) - index, "Cmd=");
+        if (n < 0 || n >= sizeof(message) - index) {
+          break;
+        }
+        index += n;
+      }
+    }
+    {
+      int n = snprintf(message + index, sizeof(message) - index, "%02X ", buffer[i]);
+      if (n < 0 || n >= sizeof(message) - index) {
+        break;
+      }
+      index += n;
     }
-    index
-      += snprintf(message + index, sizeof(message) - index, "%02X ", buffer[i]);
   }
   return message;
 }
