Checking for excessive input when using fgets()

Hi,
After doing read you can call gets to clear stdin from having previously entered characters. see this code
[code=c]
#include <stdio.h>

struct cat
{
int age;
int height;
char name[20];
char father[20];
char mother[20];
};

void clear_stdin()
{
char read_rem[200];
gets(read_rem);
}
int main()
{

struct cat myCat[2];
int i = 0;

for(i = 0; i < 2 ; i++ )
{
printf("What is your cats name?\n");
fgets(myCat[i].name, 20, stdin);
clear_stdin();/i have added this.
}

for(i = 0; i < 2 ; i++ )
{
printf("%s", myCat[i].name);
}

return 0;
}
[/code]

I think this will solve the purpose
Thanks
Raghuram

The is no need to clear the array. What you should do is check to see if the last character returned is a newline ('\n' ASCII 0x0A).

The user will have had to press return and fgets returns this character, if you have read the '\n' then you have read the entire line. You have not read a '\n' then there is more data to read from the line. Additionally you should check the return value from fgets to catch any errors.

Additionally you have a bug waiting to happen in you fgets line and loop conditions.

You have [code=c] fgets(myCat[i].name, 20, stdin);[/code] the problem is the 20. You have hard coded the buffer length, if you change the size of cat::name this code will need changing as well, if you don't and the buffer size is reduced you run a real risk of a segmentation fault.

This is better [code=c] fgets(myCat[i].name, sizeof myCat[i].name, stdin);[/code]the sizeof operator instructs the compiler to automatically insert the size of the cat::name array. If the buffer size is changed then the size passed to fgets is automatically changed.

There are other ways of doing this (you could us a #define) but this is my prefered method.

You loop end condition has the same problem, hardcoded to 2. Again would be better to have it change automatically with a change in array size and again this can be achieved either using the sizeof operator or using a #define.

What you want to achieve is only defining any given number in 1 place in your code, then if you need to change it you only have to change a single place and the rest of the code is automatically recompiled to the new size. This makes you code much more robust.

I do not think this is a very good solution, it uses gets instead of fgets risking a buffer overrun error in read_rem and if it used fgets then it would run into the same problem the original code did. All be it that the user has to enter > 220 characters in order to run into problems.

Since this problem can be fixed absolutely so that it always works no matter how many charcters are input this "sort of works but not in every situation" approach is very poor design.

It is this sort of sloppy programming that leaves applications open to expoits using buffer overrun errors.

I have used this function to clear stdio, anybody have any thoughts on if this is a good or bad solution?

Hi Banfa,
Thanks for pointing it out.
Do u have a better solution for this as i think this is one of the common need in many programs.

Raghuram

I would do it like this.

The first thing to note is that it is nearly always necessary to encapsulate the input functions with your own functions. This is because verifying user input is actually a somewhat involved task and keeping the logic of doing this out of the main body of your code will make the rest of the code easier to maintain and therefore more robust.

Also if you do this you can unit test your input functions to provide a high level on confidence in them, where as if you write it into your code every time you end up with a mess that is hard to test properly.

So here is the function I would use to get a single string input (and this would then be the basis of functions to get integers and floats if the program required them)

[code=c]
int GetString(char *string, size_t size)
{
char *fgr;
int result = 1; /* Assume OK */
char tmp[10];

fgr = fgets(string, size, stdin);

if (fgr != NULL)
{
if (string[strlen(string)-1] != '\n')
{
do
{
fgr = fgets(tmp, sizeof tmp, stdin);
}
while (fgr != NULL && tmp[strlen(tmp)-1] != '\n');

if (fgr == NULL)
{
result = 0;
}
}
}
else
{
result = 0; /* fgets returned error of some sort (could be eof) */
}

return result;
}
[/code]

This solution seems fine however you have to be sure that stdin needs flushing before calling it, if you call it when there is no data on stding getchar waits for input.

There is still a case for encapsulating the input command as I did but using your flush_input combined with my original function gives

[code=c]
int GetString(char *string, size_t size)
{
char *fgr;
int result = 1; /* Assume OK */

fgr = fgets(string, size, stdin);

if (fgr != NULL)
{
if (string[strlen(string)-1] != '\n')
{
flush_input();
}
}
else
{
result = 0; /* fgets returned error of some sort (could be eof) */
}

return result;
}
[/code]
Which is better because it requires less stack data (although an extra stack frame).