.c_str()

[core][mqtt] Add str_sanitize_to(), soft-deprecate str_sanitize()
2026-01-15 06:27:41 -07:00 · 2026-01-14 17:46:05 -10:00 · 2026-01-14 17:46:04 -10:00 · 2026-01-14 17:43:03 -10:00
5 changed files with 40 additions and 7 deletions
--- a/esphome/components/mqtt/mqtt_client.cpp
+++ b/esphome/components/mqtt/mqtt_client.cpp
@@ -635,7 +635,8 @@ void MQTTClientComponent::set_log_message_template(MQTTMessage &&message) { this
 const MQTTDiscoveryInfo &MQTTClientComponent::get_discovery_info() const { return this->discovery_info_; }
 void MQTTClientComponent::set_topic_prefix(const std::string &topic_prefix, const std::string &check_topic_prefix) {
  if (App.is_name_add_mac_suffix_enabled() && (topic_prefix == check_topic_prefix)) {
-    this->topic_prefix_ = str_sanitize(App.get_name());
+    char buf[ESPHOME_DEVICE_NAME_MAX_LEN + 1];
+    this->topic_prefix_ = str_sanitize_to(buf, App.get_name().c_str());
  } else {
    this->topic_prefix_ = topic_prefix;
  }
--- a/esphome/components/mqtt/mqtt_component.cpp
+++ b/esphome/components/mqtt/mqtt_component.cpp
@@ -48,7 +48,8 @@ void MQTTComponent::set_subscribe_qos(uint8_t qos) { this->subscribe_qos_ = qos;
 void MQTTComponent::set_retain(bool retain) { this->retain_ = retain; }

 std::string MQTTComponent::get_discovery_topic_(const MQTTDiscoveryInfo &discovery_info) const {
-  std::string sanitized_name = str_sanitize(App.get_name());
+  char sanitized_name[ESPHOME_DEVICE_NAME_MAX_LEN + 1];
+  str_sanitize_to(sanitized_name, App.get_name().c_str());
  const char *comp_type = this->component_type();
  char object_id_buf[OBJECT_ID_MAX_LEN];
  StringRef object_id = this->get_default_object_id_to_(object_id_buf);
@@ -60,7 +61,7 @@ std::string MQTTComponent::get_discovery_topic_(const MQTTDiscoveryInfo &discove
  p = append_char(p, '/');
  p = append_str(p, comp_type, strlen(comp_type));
  p = append_char(p, '/');
-  p = append_str(p, sanitized_name.data(), sanitized_name.size());
+  p = append_str(p, sanitized_name, strlen(sanitized_name));
  p = append_char(p, '/');
  p = append_str(p, object_id.c_str(), object_id.size());
  p = append_str(p, "/config", 7);
--- a/esphome/core/helpers.cpp
+++ b/esphome/core/helpers.cpp
@@ -199,11 +199,22 @@ std::string str_snake_case(const std::string &str) {
  }
  return result;
 }
-std::string str_sanitize(const std::string &str) {
-  std::string result = str;
-  for (char &c : result) {
-    c = to_sanitized_char(c);
+char *str_sanitize_to(char *buffer, size_t buffer_size, const char *str) {
+  if (buffer_size == 0) {
+    return buffer;
  }
+  size_t i = 0;
+  while (*str && i < buffer_size - 1) {
+    buffer[i++] = to_sanitized_char(*str++);
+  }
+  buffer[i] = '\0';
+  return buffer;
+}
+
+std::string str_sanitize(const std::string &str) {
+  std::string result;
+  result.resize(str.size());
+  str_sanitize_to(&result[0], str.size() + 1, str.c_str());
  return result;
 }
 std::string str_snprintf(const char *fmt, size_t len, ...) {
--- a/esphome/core/helpers.h
+++ b/esphome/core/helpers.h
@@ -545,7 +545,25 @@ std::string str_snake_case(const std::string &str);
 constexpr char to_sanitized_char(char c) {
  return (c == '-' || c == '_' || (c >= '0' && c <= '9') || (c >= 'a' && c <= 'z') || (c >= 'A' && c <= 'Z')) ? c : '_';
 }
+
+/** Sanitize a string to buffer, keeping only alphanumerics, dashes, and underscores.
+ *
+ * @param buffer Output buffer to write to.
+ * @param buffer_size Size of the output buffer.
+ * @param str Input string to sanitize.
+ * @return Pointer to buffer.
+ *
+ * Buffer size needed: strlen(str) + 1.
+ */
+char *str_sanitize_to(char *buffer, size_t buffer_size, const char *str);
+
+/// Sanitize a string to buffer. Automatically deduces buffer size.
+template<size_t N> inline char *str_sanitize_to(char (&buffer)[N], const char *str) {
+  return str_sanitize_to(buffer, N, str);
+}
+
 /// Sanitizes the input string by removing all characters but alphanumerics, dashes and underscores.
+/// @warning Allocates heap memory. Use str_sanitize_to() with a stack buffer instead.
 std::string str_sanitize(const std::string &str);

 /// Calculate FNV-1 hash of a string while applying snake_case + sanitize transformations.
--- a/script/ci-custom.py
+++ b/script/ci-custom.py
@@ -687,6 +687,7 @@ HEAP_ALLOCATING_HELPERS = {
    "format_mac_address_pretty": "format_mac_addr_upper() with a stack buffer",
    "get_mac_address": "get_mac_address_into_buffer() with a stack buffer",
    "get_mac_address_pretty": "get_mac_address_pretty_into_buffer() with a stack buffer",
+    "str_sanitize": "str_sanitize_to() with a stack buffer",
    "str_truncate": "removal (function is unused)",
    "str_upper_case": "removal (function is unused)",
    "str_snake_case": "removal (function is unused)",
@@ -704,6 +705,7 @@ HEAP_ALLOCATING_HELPERS = {
    r"format_mac_address_pretty|"
    r"get_mac_address_pretty(?!_)|"
    r"get_mac_address(?!_)|"
+    r"str_sanitize(?!_)|"
    r"str_truncate|"
    r"str_upper_case|"
    r"str_snake_case"
Author	SHA1	Message	Date
J. Nick Koston	bbd8d90cbe	.c_str()	2026-01-14 17:46:05 -10:00
J. Nick Koston	3b90a8f210	.c_str()	2026-01-14 17:46:04 -10:00
J. Nick Koston	76082b3eb9	[core][mqtt] Add str_sanitize_to(), soft-deprecate str_sanitize()	2026-01-14 17:43:03 -10:00