On Mon, Sep 05, 2016 at 07:07:18PM -0500, Derek Martin wrote: > The abort on failure is annoying, but better than a potential security > hole caused by silently truncating sensitive data, and the abort > mostly shouldn't ever happen.
I need to think about this. I'm nervous about this approach, because I'm not convinced all the possible string truncations are of sufficient severity to warrant an abort. (e.g. some things may just be displayed on the screen and are perfectly fine in truncated form). I would prefer a more measured approach. If there are places where we lose data, then perhaps we should be allocating the string instead. -- Kevin J. McCarthy GPG Fingerprint: 8975 A9B3 3AA3 7910 385C 5308 ADEF 7684 8031 6BDA
signature.asc
Description: PGP signature
