Comment 4 for bug 2056099

Security is not asking to review this for NN, but this might have odd code.

```
/* Should probably use strdup(), but we like our xmalloc() */
#define scopy(x) strcpy(xmalloc(strlen(x)+1),(x))
```