3.6. Using Environment Variables Securely
Problem
You need to obtain the value of, alter the value of, or delete an environment variable.
Solution
A process inherits its environment variables from its parent process. While the parent process most often will not do anything to tarnish the environment passed on to its children, your program’s environment variables are still external inputs, and you must therefore treat them as such.
The process that parents your own process could be a malicious process that has manipulated the environment in an attempt to confuse your program and exploit that confusion to nefarious ends. As much as possible, it is best to avoid depending on the environment, but we recognize that is not always possible.
Discussion
In the following subsections, we’ll look at obtaining the value of an environment variable as well as changing and deleting environment variables.
Obtaining the value of an environment variable
The
normal means by which you obtain the value of an environment variable
is by calling getenv( )
with the name of the environment variable
whose value is to be retrieved. The problem with getenv(
)
is that it simply returns a pointer into the environment,
rather than returning a copy of the environment
variable’s value.
If you do not immediately make a copy of the value returned by
getenv( )
, but instead store the pointer somewhere for later use, you could end up with a dangling pointer or a different value altogether, if the environment is modified between ...
Get Secure Programming Cookbook for C and C++ now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.