Fix varargs usage

Rob Sanders · David Parrish · commit 51f018c5bad3 · 2018-09-16T17:26:59.000+01:00
Coverity found a number of 'missing varargs init or cleanup' issues in
the _print() method.  While examing these I found another potential
issue in the vasprintf() code, which is used only for WIN32 platforms.
Our target is Linux, and so that change is not tested.

The fix for _print() is to call vasprintf() directly without using a
loop.  The contents of cli-&gt;buffer (if any) will be freed before
updating cli-&gt;buffer and cli-&gt;buf_size with the new string results,
otherwise they are unchanged.  The fix for WIN32 only vasprintf() is
to wrap the first call to vsnprintf() with a va_copy()/va_end() to
preserve the passed in va_list.
diff --git a/libcli.c b/libcli.c
@@ -47,8 +47,12 @@ int write(int fd, const void *buf, unsigned int count) {
 
 int vasprintf(char **strp, const char *fmt, va_list args) {
     int size;
-
-    size = vsnprintf(NULL, 0, fmt, args);
+    va_list argCopy; 
+    
+    // do initial vsnprintf on a copy of the va_list
+    va_copy(argCopy, args);
+    size = vsnprintf(NULL, 0, fmt, argCopy);
+    va_end(argCopy);
     if ((*strp = malloc(size + 1)) == NULL) {
         return -1;
     }
@@ -2006,37 +2010,16 @@ int cli_file(struct cli_def *cli, FILE *fh, int privilege, int mode)
 
 static void _print(struct cli_def *cli, int print_mode, const char *format, va_list ap)
 {
-    va_list aq;
     int n;
-    char *p;
+    char *p = NULL;
 
     if (!cli) return; // sanity check
 
-    while (1)
-    {
-        va_copy(aq, ap);
-        if ((n = vsnprintf(cli->buffer, cli->buf_size, format, ap)) == -1)
-            return;
-
-        if ((unsigned)n >= cli->buf_size)
-        {
-            char *newbuf;
-            cli->buf_size = n + 1;
-            newbuf = (char*)realloc(cli->buffer, cli->buf_size);
-            if (!newbuf)
-            {
-                free(cli->buffer);
-                cli->buffer = NULL;
-                return;
-            }
-            cli->buffer = newbuf;
-            va_end(ap);
-            va_copy(ap, aq);
-            continue;
-        }
-        break;
-    }
-
+    n = vasprintf(&p, format, ap);
+    if (n < 0) return;
+    if (cli->buffer) free(cli->buffer);
+    cli->buffer = p;
+    cli->buf_size = n;
 
     p = cli->buffer;
     do
