WebsiteLogo

Strings

Working with strings in C. String manipulation functions from the `string.h` library.

⬅ Previous Next ➡

String Concatenation in C

String Concatenation: An Overview

In C programming, strings are arrays of characters terminated by a null character ('\0'). String concatenation refers to the process of joining two or more strings together to form a single, longer string. This is a fundamental operation when working with text data.

String Concatenation and the `strcat` Function

The `strcat` function, part of the C standard library (string.h), provides a way to concatenate strings. It appends a copy of the source string to the end of the destination string. Let's break down its functionality:

 #include <stdio.h>
#include <string.h>

int main() {
  char dest[20] = "Hello, "; // Destination buffer (must be large enough)
  char src[] = "world!";      // Source string

  strcat(dest, src);  // Append src to dest

  printf("%s\n", dest); // Output: Hello, world!

  return 0;
}
  • Include Header: We include string.h to use the `strcat` function.
  • Destination Buffer: `dest` is the buffer where the concatenated string will be stored. Crucially, the destination buffer must have enough allocated memory to hold the original content of the destination string plus the content of the source string plus the null terminator ('\0'). If the buffer is too small, a buffer overflow will occur, leading to undefined behavior and potential security vulnerabilities.
  • Source String: `src` is the string to be appended.
  • `strcat(dest, src)`: This is the core of the concatenation. `strcat` appends a copy of the `src` string to the end of the `dest` string. It overwrites the null terminator of the `dest` string, and adds a new null terminator at the end of the newly concatenated string.

Appending with `strcat` and `strncat` and Buffer Overflow Risks

While `strcat` is convenient, it is inherently unsafe because it doesn't provide any mechanism to prevent writing beyond the bounds of the destination buffer. This makes it vulnerable to buffer overflow attacks.

A safer alternative is `strncat`. The `strncat` function takes an additional argument that specifies the maximum number of characters to append from the source string. This provides some protection against buffer overflows.

 #include <stdio.h>
#include <string.h>

int main() {
  char dest[20] = "Hello, ";
  char src[] = "This is a very long string!";
  size_t dest_len = strlen(dest);
  size_t available_space = sizeof(dest) - dest_len - 1; // -1 for null terminator

  if (available_space > 0) {
    strncat(dest, src, available_space); // Append at most available_space chars
    dest[sizeof(dest) - 1] = '\0';       // Ensure null termination
    printf("%s\n", dest);
  } else {
    printf("Destination buffer is too small.\n");
  }

  return 0;
}
  • `strncat(dest, src, n)`: Appends at most `n` characters from `src` to `dest`. If `src` is longer than `n`, only the first `n` characters are appended.
  • Calculating Available Space: We calculate the available space in the `dest` buffer to prevent overflows. It's crucial to subtract 1 for the null terminator.
  • Null Termination: `strncat` always null-terminates the destination string, even if it doesn't copy the null terminator from the source string because `n` was reached first. However, it's good practice to explicitly ensure null termination at the very end, specifically in case the `available_space` was 0, or the `src` string was very long.
  • Error Handling: We check if there's enough space before calling `strncat`. If not, we print an error message. A more robust application might handle this condition differently (e.g., allocate a larger buffer dynamically).

Best Practices:

  • Always use `strncat` instead of `strcat`.
  • Carefully calculate the available space in the destination buffer.
  • Always ensure that the destination string is properly null-terminated.
  • Consider dynamic memory allocation (using `malloc` and `realloc`) if the size of the final string is unpredictable. This avoids fixed-size buffers and reduces the risk of overflows.
  • Use a linting tool or static analyzer to catch potential buffer overflow vulnerabilities.

String Concatenation Alternatives

For more complex string manipulation, especially in modern C++, using `std::string` from the C++ Standard Template Library (STL) is generally preferred. `std::string` handles memory management automatically and avoids the buffer overflow issues inherent in C-style strings.

Another alternative for C programming is to use a safe string library (e.g., the Safe C String Functions) which provide versions of `strcat` and related functions with built-in buffer overflow protection.

⬅ Previous Next ➡