[nasal] remediate segfault in lib.c

state of vaCopy is altered during each usage, so it needs to be discarded and not reused by multiple calls.
2019-06-15 11:54:35 -05:00 · 2019-06-15 11:54:35 -05:00 · 3b3093c72e
commit 3b3093c72e
parent 3d841a214c
1 changed files with 14 additions and 9 deletions
--- a/simgear/nasal/lib.c
+++ b/simgear/nasal/lib.c
@ -302,23 +302,28 @@ static naRef f_die(naContext c, naRef me, int argc, naRef* args)
 static char* dosprintf(char* f, ...)
 {
    char* buf;
+
    va_list va;
-    int len = 0;
    va_start(va, f);
-    va_list vaCopy;
-    va_copy(vaCopy, va);
-    len = vsnprintf(0, 0, f, vaCopy);
+   
+    int len = vsnprintf(0, 0, f, va);
+    va_end(va);
+
    if (len <= 0) {
-        buf = naAlloc(2);
+        buf = (char *) naAlloc(2);
        *buf = 0;
    }
    else {
        len++;// allow for terminating null
-        buf = naAlloc(len);
-        len = vsnprintf(buf, len, f, vaCopy);
-    }
+        buf = (char *) naAlloc(len);
+
+        va_list va;
+        va_start(va, f);
+
+        len = vsnprintf(buf, len, f, va);
        va_end(va);
-    va_end(vaCopy);
+    }
+
    return buf;
 }