I have a class that contains a a string. Currently, it’s an std::wstring but

Question

0

Asked: June 11, 20262026-06-11T00:55:40+00:00 2026-06-11T00:55:40+00:00

I have a class that contains a a string. Currently, it’s an std::wstring but

0

I have a class that contains a a string. Currently, it’s an std::wstring but does not have to be. I had read here that std::string should not be used but I am wondering if something like this would work:

if (aString.length() == aString.capacity() )
{
    std::wstring oldString = aString;
    aString = wstring(aString);
    aString.reserve(PREALLOCATION_AMOUNT);
    SecureZeroMemory((PVOID)oldString.c_str(),oldString.size());
    oldString.clear();
}

would this basically equate to a secure realloc of the string buffer? If not is there a better solution?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-11T00:55:41+00:00

Editorial Team

2026-06-11T00:55:41+00:00Added an answer on June 11, 2026 at 12:55 am

It’s not guaranteed that c_str() will point to the original buffer and not make a copy. That’s probably the way it works, but there’s no way to be sure without looking at your specific implementation of basic_string.

There are enough potential problems with making std::wstring secure that I’d avoid it entirely and find a secure string class or write my own.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I have a class that contains a a string. Currently, it’s an std::wstring but

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply