Refrain from potentially insecure usage of strncat()

  o Minor bugfixes (security):

    - Refrain from potentially insecure usage of strncat() in

      configure_backtrace_handler(). Use snprintf() instead.

      Fixes bug 26522; bugfix on

      a969ce464dc23db39725a891d60537f3d3e51b50 (not in any tor

      release).

#include <errno.h>

#include <stdlib.h>

#include <string.h>

#include <stdio.h>

#ifdef HAVE_CYGWIN_SIGNAL_H

#include <cygwin/signal.h>

int

configure_backtrace_handler(const char *tor_version)

{

  char version[128];

  strncpy(version, "Tor", sizeof(version)-1);

  char version[128] = "Tor\0";

  if (tor_version) {

    strncat(version, " ", sizeof(version)-1);

    strncat(version, tor_version, sizeof(version)-1);

    snprintf(version, sizeof(version), "Tor %s", tor_version);

  }

  version[sizeof(version) - 1] = 0;

  return install_bt_handler(version);

}