Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/BlobOnBlocks.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/BlobOnBlocks.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/BlobStoreOnBlocks.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/BlobStoreOnBlocks.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datanodestore/DataInnerNode.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datanodestore/DataInnerNode.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datanodestore/DataInnerNode_ChildEntry.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datanodestore/DataLeafNode.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datanodestore/DataLeafNode.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datanodestore/DataNode.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datanodestore/DataNode.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datanodestore/DataNodeStore.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datanodestore/DataNodeStore.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datanodestore/DataNodeView.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/DataTree.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/DataTree.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/DataTreeStore.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/DataTreeStore.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/LeafHandle.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/LeafHandle.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/impl/CachedValue.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/impl/CachedValue.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/impl/LeafTraverser.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/impl/LeafTraverser.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/impl/algorithms.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/impl/algorithms.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/parallelaccessdatatreestore/DataTreeRef.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/parallelaccessdatatreestore/DataTreeRef.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/parallelaccessdatatreestore/ParallelAccessDataTreeStore.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/parallelaccessdatatreestore/ParallelAccessDataTreeStore.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/parallelaccessdatatreestore/ParallelAccessDataTreeStoreAdapter.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/parallelaccessdatatreestore/ParallelAccessDataTreeStoreAdapter.h Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/utils/Math.cpp Examining data/cryfs-0.10.2/src/blobstore/implementations/onblocks/utils/Math.h Examining data/cryfs-0.10.2/src/blobstore/interface/Blob.h Examining data/cryfs-0.10.2/src/blobstore/interface/BlobStore.h Examining data/cryfs-0.10.2/src/blockstore/implementations/caching/CachingBlockStore2.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/caching/CachingBlockStore2.h Examining data/cryfs-0.10.2/src/blockstore/implementations/caching/cache/Cache.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/caching/cache/Cache.h Examining data/cryfs-0.10.2/src/blockstore/implementations/caching/cache/CacheEntry.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/caching/cache/CacheEntry.h Examining data/cryfs-0.10.2/src/blockstore/implementations/caching/cache/PeriodicTask.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/caching/cache/PeriodicTask.h Examining data/cryfs-0.10.2/src/blockstore/implementations/caching/cache/QueueMap.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/caching/cache/QueueMap.h Examining data/cryfs-0.10.2/src/blockstore/implementations/compressing/CompressedBlock.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/compressing/CompressedBlock.h Examining data/cryfs-0.10.2/src/blockstore/implementations/compressing/CompressingBlockStore.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/compressing/CompressingBlockStore.h Examining data/cryfs-0.10.2/src/blockstore/implementations/compressing/compressors/Gzip.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/compressing/compressors/Gzip.h Examining data/cryfs-0.10.2/src/blockstore/implementations/compressing/compressors/RunLengthEncoding.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/compressing/compressors/RunLengthEncoding.h Examining data/cryfs-0.10.2/src/blockstore/implementations/encrypted/EncryptedBlockStore2.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/encrypted/EncryptedBlockStore2.h Examining data/cryfs-0.10.2/src/blockstore/implementations/inmemory/InMemoryBlockStore2.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/inmemory/InMemoryBlockStore2.h Examining data/cryfs-0.10.2/src/blockstore/implementations/integrity/ClientIdAndBlockId.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/integrity/ClientIdAndBlockId.h Examining data/cryfs-0.10.2/src/blockstore/implementations/integrity/IntegrityBlockStore2.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/integrity/IntegrityBlockStore2.h Examining data/cryfs-0.10.2/src/blockstore/implementations/integrity/KnownBlockVersions.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/integrity/KnownBlockVersions.h Examining data/cryfs-0.10.2/src/blockstore/implementations/low2highlevel/LowToHighLevelBlock.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/low2highlevel/LowToHighLevelBlock.h Examining data/cryfs-0.10.2/src/blockstore/implementations/low2highlevel/LowToHighLevelBlockStore.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/low2highlevel/LowToHighLevelBlockStore.h Examining data/cryfs-0.10.2/src/blockstore/implementations/mock/MockBlock.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/mock/MockBlock.h Examining data/cryfs-0.10.2/src/blockstore/implementations/mock/MockBlockStore.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/mock/MockBlockStore.h Examining data/cryfs-0.10.2/src/blockstore/implementations/ondisk/OnDiskBlockStore2.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/ondisk/OnDiskBlockStore2.h Examining data/cryfs-0.10.2/src/blockstore/implementations/parallelaccess/BlockRef.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/parallelaccess/BlockRef.h Examining data/cryfs-0.10.2/src/blockstore/implementations/parallelaccess/ParallelAccessBlockStore.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/parallelaccess/ParallelAccessBlockStore.h Examining data/cryfs-0.10.2/src/blockstore/implementations/parallelaccess/ParallelAccessBlockStoreAdapter.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/parallelaccess/ParallelAccessBlockStoreAdapter.h Examining data/cryfs-0.10.2/src/blockstore/implementations/testfake/FakeBlock.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/testfake/FakeBlock.h Examining data/cryfs-0.10.2/src/blockstore/implementations/testfake/FakeBlockStore.cpp Examining data/cryfs-0.10.2/src/blockstore/implementations/testfake/FakeBlockStore.h Examining data/cryfs-0.10.2/src/blockstore/interface/Block.h Examining data/cryfs-0.10.2/src/blockstore/interface/BlockStore.h Examining data/cryfs-0.10.2/src/blockstore/interface/BlockStore2.h Examining data/cryfs-0.10.2/src/blockstore/utils/BlockId.cpp Examining data/cryfs-0.10.2/src/blockstore/utils/BlockId.h Examining data/cryfs-0.10.2/src/blockstore/utils/BlockStoreUtils.cpp Examining data/cryfs-0.10.2/src/blockstore/utils/BlockStoreUtils.h Examining data/cryfs-0.10.2/src/blockstore/utils/FileDoesntExistException.cpp Examining data/cryfs-0.10.2/src/blockstore/utils/FileDoesntExistException.h Examining data/cryfs-0.10.2/src/blockstore/utils/IdWrapper.cpp Examining data/cryfs-0.10.2/src/blockstore/utils/IdWrapper.h Examining data/cryfs-0.10.2/src/cpp-utils/assert/AssertFailed.cpp Examining data/cryfs-0.10.2/src/cpp-utils/assert/AssertFailed.h Examining data/cryfs-0.10.2/src/cpp-utils/assert/assert.cpp Examining data/cryfs-0.10.2/src/cpp-utils/assert/assert.h Examining data/cryfs-0.10.2/src/cpp-utils/assert/backtrace.h Examining data/cryfs-0.10.2/src/cpp-utils/assert/backtrace_nonwindows.cpp Examining data/cryfs-0.10.2/src/cpp-utils/assert/backtrace_windows.cpp Examining data/cryfs-0.10.2/src/cpp-utils/crypto/RandomPadding.cpp Examining data/cryfs-0.10.2/src/cpp-utils/crypto/RandomPadding.h Examining data/cryfs-0.10.2/src/cpp-utils/crypto/cryptopp_byte.h Examining data/cryfs-0.10.2/src/cpp-utils/crypto/hash/Hash.cpp Examining data/cryfs-0.10.2/src/cpp-utils/crypto/hash/Hash.h Examining data/cryfs-0.10.2/src/cpp-utils/crypto/kdf/PasswordBasedKDF.cpp Examining data/cryfs-0.10.2/src/cpp-utils/crypto/kdf/PasswordBasedKDF.h Examining data/cryfs-0.10.2/src/cpp-utils/crypto/kdf/SCryptParameters.cpp Examining data/cryfs-0.10.2/src/cpp-utils/crypto/kdf/SCryptParameters.h Examining data/cryfs-0.10.2/src/cpp-utils/crypto/kdf/Scrypt.cpp Examining data/cryfs-0.10.2/src/cpp-utils/crypto/kdf/Scrypt.h Examining data/cryfs-0.10.2/src/cpp-utils/crypto/symmetric/CFB_Cipher.h Examining data/cryfs-0.10.2/src/cpp-utils/crypto/symmetric/Cipher.h Examining data/cryfs-0.10.2/src/cpp-utils/crypto/symmetric/EncryptionKey.cpp Examining data/cryfs-0.10.2/src/cpp-utils/crypto/symmetric/EncryptionKey.h Examining data/cryfs-0.10.2/src/cpp-utils/crypto/symmetric/GCM_Cipher.h Examining data/cryfs-0.10.2/src/cpp-utils/crypto/symmetric/ciphers.cpp Examining data/cryfs-0.10.2/src/cpp-utils/crypto/symmetric/ciphers.h Examining data/cryfs-0.10.2/src/cpp-utils/crypto/symmetric/testutils/FakeAuthenticatedCipher.cpp Examining data/cryfs-0.10.2/src/cpp-utils/crypto/symmetric/testutils/FakeAuthenticatedCipher.h Examining data/cryfs-0.10.2/src/cpp-utils/data/Data.cpp Examining data/cryfs-0.10.2/src/cpp-utils/data/Data.h Examining data/cryfs-0.10.2/src/cpp-utils/data/DataFixture.cpp Examining data/cryfs-0.10.2/src/cpp-utils/data/DataFixture.h Examining data/cryfs-0.10.2/src/cpp-utils/data/DataUtils.cpp Examining data/cryfs-0.10.2/src/cpp-utils/data/DataUtils.h Examining data/cryfs-0.10.2/src/cpp-utils/data/Deserializer.cpp Examining data/cryfs-0.10.2/src/cpp-utils/data/Deserializer.h Examining data/cryfs-0.10.2/src/cpp-utils/data/FixedSizeData.h Examining data/cryfs-0.10.2/src/cpp-utils/data/SerializationHelper.cpp Examining data/cryfs-0.10.2/src/cpp-utils/data/SerializationHelper.h Examining data/cryfs-0.10.2/src/cpp-utils/data/Serializer.cpp Examining data/cryfs-0.10.2/src/cpp-utils/data/Serializer.h Examining data/cryfs-0.10.2/src/cpp-utils/io/Console.cpp Examining data/cryfs-0.10.2/src/cpp-utils/io/Console.h Examining data/cryfs-0.10.2/src/cpp-utils/io/DontEchoStdinToStdoutRAII.cpp Examining data/cryfs-0.10.2/src/cpp-utils/io/DontEchoStdinToStdoutRAII.h Examining data/cryfs-0.10.2/src/cpp-utils/io/IOStreamConsole.cpp Examining data/cryfs-0.10.2/src/cpp-utils/io/IOStreamConsole.h Examining data/cryfs-0.10.2/src/cpp-utils/io/NoninteractiveConsole.cpp Examining data/cryfs-0.10.2/src/cpp-utils/io/NoninteractiveConsole.h Examining data/cryfs-0.10.2/src/cpp-utils/io/ProgressBar.cpp Examining data/cryfs-0.10.2/src/cpp-utils/io/ProgressBar.h Examining data/cryfs-0.10.2/src/cpp-utils/io/pipestream.cpp Examining data/cryfs-0.10.2/src/cpp-utils/io/pipestream.h Examining data/cryfs-0.10.2/src/cpp-utils/lock/CombinedLock.h Examining data/cryfs-0.10.2/src/cpp-utils/lock/ConditionBarrier.h Examining data/cryfs-0.10.2/src/cpp-utils/lock/LockPool.cpp Examining data/cryfs-0.10.2/src/cpp-utils/lock/LockPool.h Examining data/cryfs-0.10.2/src/cpp-utils/lock/MutexPoolLock.h Examining data/cryfs-0.10.2/src/cpp-utils/logging/Logger.h Examining data/cryfs-0.10.2/src/cpp-utils/logging/logging.h Examining data/cryfs-0.10.2/src/cpp-utils/macros.h Examining data/cryfs-0.10.2/src/cpp-utils/network/CurlHttpClient.cpp Examining data/cryfs-0.10.2/src/cpp-utils/network/CurlHttpClient.h Examining data/cryfs-0.10.2/src/cpp-utils/network/FakeHttpClient.cpp Examining data/cryfs-0.10.2/src/cpp-utils/network/FakeHttpClient.h Examining data/cryfs-0.10.2/src/cpp-utils/network/HttpClient.cpp Examining data/cryfs-0.10.2/src/cpp-utils/network/HttpClient.h Examining data/cryfs-0.10.2/src/cpp-utils/network/WinHttpClient.cpp Examining data/cryfs-0.10.2/src/cpp-utils/network/WinHttpClient.h Examining data/cryfs-0.10.2/src/cpp-utils/pointer/cast.h Examining data/cryfs-0.10.2/src/cpp-utils/pointer/gcc_4_8_compatibility.h Examining data/cryfs-0.10.2/src/cpp-utils/pointer/optional_ownership_ptr.h Examining data/cryfs-0.10.2/src/cpp-utils/pointer/unique_ref.h Examining data/cryfs-0.10.2/src/cpp-utils/pointer/unique_ref_boost_optional_gtest_workaround.h Examining data/cryfs-0.10.2/src/cpp-utils/process/SignalCatcher.cpp Parsing failed to find end of parameter list; semicolon terminated it in ([] (auto& catchers) {return catchers.size();}), "Leftover signal catchers that weren't destroyed"); } details::SignalCatcherImpl* find(int signal) { // this is called in a signal handler and Parsing failed to find end of parameter list; semicolon terminated it in ([&](auto& catchers) { auto found = std::find_if(catchers.rbegin(), catchers.rend(), [signal](const auto& entry) {return entry.first == signal; }); ASSERT(found != catchers.rend(), "Signal handl Examining data/cryfs-0.10.2/src/cpp-utils/process/SignalCatcher.h Examining data/cryfs-0.10.2/src/cpp-utils/process/SignalHandler.cpp Examining data/cryfs-0.10.2/src/cpp-utils/process/SignalHandler.h Examining data/cryfs-0.10.2/src/cpp-utils/process/daemonize.cpp Examining data/cryfs-0.10.2/src/cpp-utils/process/daemonize.h Examining data/cryfs-0.10.2/src/cpp-utils/process/subprocess.cpp Examining data/cryfs-0.10.2/src/cpp-utils/process/subprocess.h Examining data/cryfs-0.10.2/src/cpp-utils/random/OSRandomGenerator.cpp Examining data/cryfs-0.10.2/src/cpp-utils/random/OSRandomGenerator.h Examining data/cryfs-0.10.2/src/cpp-utils/random/PseudoRandomPool.cpp Examining data/cryfs-0.10.2/src/cpp-utils/random/PseudoRandomPool.h Examining data/cryfs-0.10.2/src/cpp-utils/random/Random.cpp Examining data/cryfs-0.10.2/src/cpp-utils/random/Random.h Examining data/cryfs-0.10.2/src/cpp-utils/random/RandomDataBuffer.cpp Examining data/cryfs-0.10.2/src/cpp-utils/random/RandomDataBuffer.h Examining data/cryfs-0.10.2/src/cpp-utils/random/RandomGenerator.cpp Examining data/cryfs-0.10.2/src/cpp-utils/random/RandomGenerator.h Examining data/cryfs-0.10.2/src/cpp-utils/random/RandomGeneratorThread.cpp Examining data/cryfs-0.10.2/src/cpp-utils/random/RandomGeneratorThread.h Examining data/cryfs-0.10.2/src/cpp-utils/random/ThreadsafeRandomDataBuffer.h Examining data/cryfs-0.10.2/src/cpp-utils/system/diskspace.cpp Examining data/cryfs-0.10.2/src/cpp-utils/system/diskspace.h Examining data/cryfs-0.10.2/src/cpp-utils/system/env.cpp Examining data/cryfs-0.10.2/src/cpp-utils/system/env.h Examining data/cryfs-0.10.2/src/cpp-utils/system/filetime.h Examining data/cryfs-0.10.2/src/cpp-utils/system/filetime_nonwindows.cpp Examining data/cryfs-0.10.2/src/cpp-utils/system/filetime_windows.cpp Examining data/cryfs-0.10.2/src/cpp-utils/system/get_total_memory.cpp Examining data/cryfs-0.10.2/src/cpp-utils/system/get_total_memory.h Examining data/cryfs-0.10.2/src/cpp-utils/system/homedir.cpp Examining data/cryfs-0.10.2/src/cpp-utils/system/homedir.h Examining data/cryfs-0.10.2/src/cpp-utils/system/memory.h Examining data/cryfs-0.10.2/src/cpp-utils/system/memory_nonwindows.cpp Examining data/cryfs-0.10.2/src/cpp-utils/system/memory_windows.cpp Examining data/cryfs-0.10.2/src/cpp-utils/system/path.h Examining data/cryfs-0.10.2/src/cpp-utils/system/stat.h Examining data/cryfs-0.10.2/src/cpp-utils/system/time.cpp Examining data/cryfs-0.10.2/src/cpp-utils/system/time.h Examining data/cryfs-0.10.2/src/cpp-utils/tempfile/TempDir.cpp Examining data/cryfs-0.10.2/src/cpp-utils/tempfile/TempDir.h Examining data/cryfs-0.10.2/src/cpp-utils/tempfile/TempFile.cpp Examining data/cryfs-0.10.2/src/cpp-utils/tempfile/TempFile.h Examining data/cryfs-0.10.2/src/cpp-utils/testutils/CaptureStderrRAII.h Examining data/cryfs-0.10.2/src/cpp-utils/thread/LeftRight.cpp Examining data/cryfs-0.10.2/src/cpp-utils/thread/LeftRight.h Examining data/cryfs-0.10.2/src/cpp-utils/thread/LoopThread.cpp Examining data/cryfs-0.10.2/src/cpp-utils/thread/LoopThread.h Examining data/cryfs-0.10.2/src/cpp-utils/thread/ThreadSystem.cpp Examining data/cryfs-0.10.2/src/cpp-utils/thread/ThreadSystem.h Examining data/cryfs-0.10.2/src/cpp-utils/thread/debugging.h Examining data/cryfs-0.10.2/src/cpp-utils/thread/debugging_nonwindows.cpp Examining data/cryfs-0.10.2/src/cpp-utils/thread/debugging_windows.cpp Examining data/cryfs-0.10.2/src/cpp-utils/value_type/ValueType.cpp Examining data/cryfs-0.10.2/src/cpp-utils/value_type/ValueType.h Examining data/cryfs-0.10.2/src/cryfs-cli/CallAfterTimeout.cpp Examining data/cryfs-0.10.2/src/cryfs-cli/CallAfterTimeout.h Examining data/cryfs-0.10.2/src/cryfs-cli/Cli.cpp Examining data/cryfs-0.10.2/src/cryfs-cli/Cli.h Examining data/cryfs-0.10.2/src/cryfs-cli/Environment.cpp Examining data/cryfs-0.10.2/src/cryfs-cli/Environment.h Examining data/cryfs-0.10.2/src/cryfs-cli/VersionChecker.cpp Examining data/cryfs-0.10.2/src/cryfs-cli/VersionChecker.h Examining data/cryfs-0.10.2/src/cryfs-cli/main.cpp Examining data/cryfs-0.10.2/src/cryfs-cli/program_options/Parser.cpp Examining data/cryfs-0.10.2/src/cryfs-cli/program_options/Parser.h Examining data/cryfs-0.10.2/src/cryfs-cli/program_options/ProgramOptions.cpp Examining data/cryfs-0.10.2/src/cryfs-cli/program_options/ProgramOptions.h Examining data/cryfs-0.10.2/src/cryfs-cli/program_options/utils.cpp Examining data/cryfs-0.10.2/src/cryfs-cli/program_options/utils.h Examining data/cryfs-0.10.2/src/cryfs-unmount/Cli.cpp Examining data/cryfs-0.10.2/src/cryfs-unmount/Cli.h Examining data/cryfs-0.10.2/src/cryfs-unmount/main_unmount.cpp Examining data/cryfs-0.10.2/src/cryfs-unmount/program_options/Parser.cpp Examining data/cryfs-0.10.2/src/cryfs-unmount/program_options/Parser.h Examining data/cryfs-0.10.2/src/cryfs-unmount/program_options/ProgramOptions.cpp Examining data/cryfs-0.10.2/src/cryfs-unmount/program_options/ProgramOptions.h Examining data/cryfs-0.10.2/src/cryfs/CryfsException.cpp Examining data/cryfs-0.10.2/src/cryfs/CryfsException.h Examining data/cryfs-0.10.2/src/cryfs/ErrorCodes.h Examining data/cryfs-0.10.2/src/cryfs/config/CryCipher.cpp Examining data/cryfs-0.10.2/src/cryfs/config/CryCipher.h Examining data/cryfs-0.10.2/src/cryfs/config/CryConfig.cpp Examining data/cryfs-0.10.2/src/cryfs/config/CryConfig.h Examining data/cryfs-0.10.2/src/cryfs/config/CryConfigConsole.cpp Examining data/cryfs-0.10.2/src/cryfs/config/CryConfigConsole.h Examining data/cryfs-0.10.2/src/cryfs/config/CryConfigCreator.cpp Examining data/cryfs-0.10.2/src/cryfs/config/CryConfigCreator.h Examining data/cryfs-0.10.2/src/cryfs/config/CryConfigFile.cpp Examining data/cryfs-0.10.2/src/cryfs/config/CryConfigFile.h Examining data/cryfs-0.10.2/src/cryfs/config/CryConfigLoader.cpp Examining data/cryfs-0.10.2/src/cryfs/config/CryConfigLoader.h Examining data/cryfs-0.10.2/src/cryfs/config/CryKeyProvider.cpp Examining data/cryfs-0.10.2/src/cryfs/config/CryKeyProvider.h Examining data/cryfs-0.10.2/src/cryfs/config/CryPasswordBasedKeyProvider.cpp Examining data/cryfs-0.10.2/src/cryfs/config/CryPasswordBasedKeyProvider.h Examining data/cryfs-0.10.2/src/cryfs/config/CryPresetPasswordBasedKeyProvider.cpp Examining data/cryfs-0.10.2/src/cryfs/config/CryPresetPasswordBasedKeyProvider.h Examining data/cryfs-0.10.2/src/cryfs/config/crypto/CryConfigEncryptor.cpp Examining data/cryfs-0.10.2/src/cryfs/config/crypto/CryConfigEncryptor.h Examining data/cryfs-0.10.2/src/cryfs/config/crypto/CryConfigEncryptorFactory.cpp Examining data/cryfs-0.10.2/src/cryfs/config/crypto/CryConfigEncryptorFactory.h Examining data/cryfs-0.10.2/src/cryfs/config/crypto/inner/ConcreteInnerEncryptor.cpp Examining data/cryfs-0.10.2/src/cryfs/config/crypto/inner/ConcreteInnerEncryptor.h Examining data/cryfs-0.10.2/src/cryfs/config/crypto/inner/InnerConfig.cpp Examining data/cryfs-0.10.2/src/cryfs/config/crypto/inner/InnerConfig.h Examining data/cryfs-0.10.2/src/cryfs/config/crypto/inner/InnerEncryptor.cpp Examining data/cryfs-0.10.2/src/cryfs/config/crypto/inner/InnerEncryptor.h Examining data/cryfs-0.10.2/src/cryfs/config/crypto/outer/OuterConfig.cpp Examining data/cryfs-0.10.2/src/cryfs/config/crypto/outer/OuterConfig.h Examining data/cryfs-0.10.2/src/cryfs/config/crypto/outer/OuterEncryptor.cpp Examining data/cryfs-0.10.2/src/cryfs/config/crypto/outer/OuterEncryptor.h Examining data/cryfs-0.10.2/src/cryfs/cryfs.cpp Examining data/cryfs-0.10.2/src/cryfs/cryfs.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/CryDevice.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/CryDevice.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/CryDir.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/CryDir.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/CryFile.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/CryFile.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/CryNode.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/CryNode.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/CryOpenFile.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/CryOpenFile.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/CrySymlink.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/CrySymlink.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/cachingfsblobstore/CachingFsBlobStore.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/cachingfsblobstore/CachingFsBlobStore.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/cachingfsblobstore/DirBlobRef.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/cachingfsblobstore/DirBlobRef.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/cachingfsblobstore/FileBlobRef.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/cachingfsblobstore/FileBlobRef.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/cachingfsblobstore/FsBlobRef.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/cachingfsblobstore/FsBlobRef.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/cachingfsblobstore/SymlinkBlobRef.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/cachingfsblobstore/SymlinkBlobRef.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/DirBlob.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/DirBlob.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FileBlob.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FileBlob.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FsBlob.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FsBlob.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FsBlobStore.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FsBlobStore.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FsBlobView.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FsBlobView.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/SymlinkBlob.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/SymlinkBlob.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/utils/DirEntry.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/utils/DirEntry.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/utils/DirEntryList.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/utils/DirEntryList.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/utils/TimestampUpdateBehavior.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/parallelaccessfsblobstore/DirBlobRef.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/parallelaccessfsblobstore/DirBlobRef.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/parallelaccessfsblobstore/FileBlobRef.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/parallelaccessfsblobstore/FileBlobRef.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/parallelaccessfsblobstore/FsBlobRef.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/parallelaccessfsblobstore/FsBlobRef.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/parallelaccessfsblobstore/ParallelAccessFsBlobStore.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/parallelaccessfsblobstore/ParallelAccessFsBlobStore.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/parallelaccessfsblobstore/ParallelAccessFsBlobStoreAdapter.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/parallelaccessfsblobstore/ParallelAccessFsBlobStoreAdapter.h Examining data/cryfs-0.10.2/src/cryfs/filesystem/parallelaccessfsblobstore/SymlinkBlobRef.cpp Examining data/cryfs-0.10.2/src/cryfs/filesystem/parallelaccessfsblobstore/SymlinkBlobRef.h Examining data/cryfs-0.10.2/src/cryfs/localstate/BasedirMetadata.cpp Examining data/cryfs-0.10.2/src/cryfs/localstate/BasedirMetadata.h Examining data/cryfs-0.10.2/src/cryfs/localstate/LocalStateDir.cpp Examining data/cryfs-0.10.2/src/cryfs/localstate/LocalStateDir.h Examining data/cryfs-0.10.2/src/cryfs/localstate/LocalStateMetadata.cpp Examining data/cryfs-0.10.2/src/cryfs/localstate/LocalStateMetadata.h Examining data/cryfs-0.10.2/src/fspp/fs_interface/Device.cpp Examining data/cryfs-0.10.2/src/fspp/fs_interface/Device.h Examining data/cryfs-0.10.2/src/fspp/fs_interface/Dir.cpp Examining data/cryfs-0.10.2/src/fspp/fs_interface/Dir.h Examining data/cryfs-0.10.2/src/fspp/fs_interface/File.cpp Examining data/cryfs-0.10.2/src/fspp/fs_interface/File.h Examining data/cryfs-0.10.2/src/fspp/fs_interface/FuseErrnoException.cpp Examining data/cryfs-0.10.2/src/fspp/fs_interface/FuseErrnoException.h Examining data/cryfs-0.10.2/src/fspp/fs_interface/Node.cpp Examining data/cryfs-0.10.2/src/fspp/fs_interface/Node.h Examining data/cryfs-0.10.2/src/fspp/fs_interface/OpenFile.cpp Examining data/cryfs-0.10.2/src/fspp/fs_interface/OpenFile.h Examining data/cryfs-0.10.2/src/fspp/fs_interface/Symlink.cpp Examining data/cryfs-0.10.2/src/fspp/fs_interface/Symlink.h Examining data/cryfs-0.10.2/src/fspp/fs_interface/Types.cpp Examining data/cryfs-0.10.2/src/fspp/fs_interface/Types.h Examining data/cryfs-0.10.2/src/fspp/fstest/FsTest.h Examining data/cryfs-0.10.2/src/fspp/fstest/FsppDeviceTest.h Examining data/cryfs-0.10.2/src/fspp/fstest/FsppDeviceTest_Timestamps.h Examining data/cryfs-0.10.2/src/fspp/fstest/FsppDirTest.h Examining data/cryfs-0.10.2/src/fspp/fstest/FsppDirTest_Timestamps.h Examining data/cryfs-0.10.2/src/fspp/fstest/FsppFileTest.h Examining data/cryfs-0.10.2/src/fspp/fstest/FsppFileTest_Timestamps.h Examining data/cryfs-0.10.2/src/fspp/fstest/FsppNodeTest_Rename.h Examining data/cryfs-0.10.2/src/fspp/fstest/FsppNodeTest_Stat.h Examining data/cryfs-0.10.2/src/fspp/fstest/FsppNodeTest_Timestamps.h Examining data/cryfs-0.10.2/src/fspp/fstest/FsppOpenFileTest.h Examining data/cryfs-0.10.2/src/fspp/fstest/FsppOpenFileTest_Timestamps.h Examining data/cryfs-0.10.2/src/fspp/fstest/FsppSymlinkTest.h Examining data/cryfs-0.10.2/src/fspp/fstest/FsppSymlinkTest_Timestamps.h Examining data/cryfs-0.10.2/src/fspp/fstest/testutils/FileSystemTest.h Examining data/cryfs-0.10.2/src/fspp/fstest/testutils/FileTest.h Examining data/cryfs-0.10.2/src/fspp/fstest/testutils/FsppNodeTest.h Examining data/cryfs-0.10.2/src/fspp/fstest/testutils/TimestampTestUtils.h Examining data/cryfs-0.10.2/src/fspp/fuse/Filesystem.h Examining data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp Examining data/cryfs-0.10.2/src/fspp/fuse/Fuse.h Examining data/cryfs-0.10.2/src/fspp/fuse/InvalidFilesystem.h Examining data/cryfs-0.10.2/src/fspp/fuse/params.h Examining data/cryfs-0.10.2/src/fspp/fuse/stat_compatibility.h Examining data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.cpp Examining data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.h Examining data/cryfs-0.10.2/src/fspp/impl/FuseOpenFileList.h Examining data/cryfs-0.10.2/src/fspp/impl/IdList.h Examining data/cryfs-0.10.2/src/fspp/impl/Profiler.cpp Examining data/cryfs-0.10.2/src/fspp/impl/Profiler.h Examining data/cryfs-0.10.2/src/gitversion/VersionCompare.cpp Examining data/cryfs-0.10.2/src/gitversion/VersionCompare.h Examining data/cryfs-0.10.2/src/gitversion/gitversion.cpp Examining data/cryfs-0.10.2/src/gitversion/gitversion.h Examining data/cryfs-0.10.2/src/gitversion/parser.cpp Examining data/cryfs-0.10.2/src/gitversion/parser.h Examining data/cryfs-0.10.2/src/gitversion/versionstring.cpp Examining data/cryfs-0.10.2/src/gitversion/versionstring.h Examining data/cryfs-0.10.2/src/parallelaccessstore/ParallelAccessBaseStore.cpp Examining data/cryfs-0.10.2/src/parallelaccessstore/ParallelAccessBaseStore.h Examining data/cryfs-0.10.2/src/parallelaccessstore/ParallelAccessStore.cpp Examining data/cryfs-0.10.2/src/parallelaccessstore/ParallelAccessStore.h Examining data/cryfs-0.10.2/src/stats/main.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BigBlobsTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobSizeTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobStoreTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datanodestore/DataInnerNodeTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datanodestore/DataLeafNodeTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datanodestore/DataNodeStoreTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datanodestore/DataNodeViewTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datatreestore/DataTreeStoreTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datatreestore/DataTreeTest_NumStoredBytes.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datatreestore/DataTreeTest_Performance.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datatreestore/DataTreeTest_ResizeByTraversing.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datatreestore/DataTreeTest_ResizeNumBytes.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datatreestore/LeafTraverserTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datatreestore/impl/GetLowestInnerRightBorderNodeWithLessThanKChildrenOrNullTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datatreestore/impl/GetLowestRightBorderNodeWithMoreThanOneChildOrNullTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datatreestore/testutils/DataTreeTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datatreestore/testutils/DataTreeTest.h Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datatreestore/testutils/LeafDataFixture.h Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datatreestore/testutils/TwoLevelDataFixture.h Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/testutils/BlobStoreTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/testutils/BlobStoreTest.h Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/utils/CeilDivisionTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/utils/CeilLogTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/utils/IntPowTest.cpp Examining data/cryfs-0.10.2/test/blobstore/implementations/onblocks/utils/MaxZeroSubtractionTest.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/CachingBlockStore2Test_Generic.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/CachingBlockStore2Test_Specific.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/CacheTest_MoveConstructor.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/CacheTest_PushAndPop.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/CacheTest_RaceCondition.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/PeriodicTaskTest.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/QueueMapTest_MemoryLeak.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/QueueMapTest_MoveConstructor.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/QueueMapTest_Peek.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/QueueMapTest_Size.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/QueueMapTest_Values.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/testutils/CacheTest.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/testutils/CacheTest.h Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/testutils/CopyableMovableValueType.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/testutils/CopyableMovableValueType.h Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/testutils/MinimalKeyType.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/testutils/MinimalKeyType.h Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/testutils/MinimalValueType.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/testutils/MinimalValueType.h Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/testutils/QueueMapTest.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/caching/cache/testutils/QueueMapTest.h Examining data/cryfs-0.10.2/test/blockstore/implementations/compressing/CompressingBlockStoreTest.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/compressing/compressors/testutils/CompressorTest.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/encrypted/EncryptedBlockStoreTest_Generic.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/encrypted/EncryptedBlockStoreTest_Specific.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/inmemory/InMemoryBlockStoreTest.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/integrity/IntegrityBlockStoreTest_Generic.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/integrity/IntegrityBlockStoreTest_Specific.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/integrity/KnownBlockVersionsTest.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/low2highlevel/LowToHighLevelBlockStoreTest.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/mock/MockBlockStoreTest.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/ondisk/OnDiskBlockStoreTest_Generic.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/ondisk/OnDiskBlockStoreTest_Specific.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/ondisk/OnDiskBlockTest/OnDiskBlockCreateTest.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/ondisk/OnDiskBlockTest/OnDiskBlockFlushTest.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/ondisk/OnDiskBlockTest/OnDiskBlockLoadTest.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/parallelaccess/ParallelAccessBlockStoreTest_Generic.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/parallelaccess/ParallelAccessBlockStoreTest_Specific.cpp Examining data/cryfs-0.10.2/test/blockstore/implementations/testfake/TestFakeBlockStoreTest.cpp Examining data/cryfs-0.10.2/test/blockstore/interface/BlockStore2Test.cpp Examining data/cryfs-0.10.2/test/blockstore/interface/BlockStoreTest.cpp Examining data/cryfs-0.10.2/test/blockstore/interface/BlockTest.cpp Examining data/cryfs-0.10.2/test/blockstore/testutils/BlockStore2Test.h Examining data/cryfs-0.10.2/test/blockstore/testutils/BlockStoreTest.h Examining data/cryfs-0.10.2/test/blockstore/testutils/BlockStoreTest_Data.h Examining data/cryfs-0.10.2/test/blockstore/testutils/BlockStoreTest_Size.h Examining data/cryfs-0.10.2/test/blockstore/testutils/gtest_printers.h Examining data/cryfs-0.10.2/test/blockstore/utils/BlockStoreUtilsTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/MacrosIncludeTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/assert/assert_debug_test.cpp Examining data/cryfs-0.10.2/test/cpp-utils/assert/assert_release_test.cpp Examining data/cryfs-0.10.2/test/cpp-utils/assert/backtrace_test.cpp Examining data/cryfs-0.10.2/test/cpp-utils/assert/exit_signal.cpp Examining data/cryfs-0.10.2/test/cpp-utils/crypto/hash/HashTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/crypto/kdf/SCryptParametersTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/crypto/kdf/SCryptTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/crypto/symmetric/CipherTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/data/DataFixtureIncludeTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/data/DataFixtureTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/data/DataIncludeTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/data/DataTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/data/FixedSizeDataIncludeTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/data/FixedSizeDataTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/data/SerializationHelperTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/io/ConsoleIncludeTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/io/ConsoleTest.h Examining data/cryfs-0.10.2/test/cpp-utils/io/ConsoleTest_Ask.cpp Examining data/cryfs-0.10.2/test/cpp-utils/io/ConsoleTest_AskPassword.cpp Examining data/cryfs-0.10.2/test/cpp-utils/io/ConsoleTest_AskYesNo.cpp Examining data/cryfs-0.10.2/test/cpp-utils/io/ConsoleTest_Print.cpp Examining data/cryfs-0.10.2/test/cpp-utils/io/DontEchoStdinToStdoutRAIITest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/io/ProgressBarTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/lock/ConditionBarrierIncludeTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/lock/LockPoolIncludeTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/lock/MutexPoolLockIncludeTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/logging/LoggerIncludeTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/logging/LoggerTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/logging/LoggingIncludeTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/logging/LoggingLevelTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/logging/LoggingTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/logging/testutils/LoggingTest.h Examining data/cryfs-0.10.2/test/cpp-utils/network/CurlHttpClientTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/network/FakeHttpClientTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/pointer/cast_include_test.cpp Examining data/cryfs-0.10.2/test/cpp-utils/pointer/cast_test.cpp Examining data/cryfs-0.10.2/test/cpp-utils/pointer/optional_ownership_ptr_include_test.cpp Examining data/cryfs-0.10.2/test/cpp-utils/pointer/optional_ownership_ptr_test.cpp Examining data/cryfs-0.10.2/test/cpp-utils/pointer/unique_ref_boost_optional_gtest_workaround_include_test.cpp Examining data/cryfs-0.10.2/test/cpp-utils/pointer/unique_ref_include_test.cpp Examining data/cryfs-0.10.2/test/cpp-utils/pointer/unique_ref_test.cpp Examining data/cryfs-0.10.2/test/cpp-utils/process/SignalCatcherTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/process/SignalHandlerTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/process/SubprocessTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/process/daemonize_include_test.cpp Examining data/cryfs-0.10.2/test/cpp-utils/process/exit_status.cpp Examining data/cryfs-0.10.2/test/cpp-utils/process/subprocess_include_test.cpp Examining data/cryfs-0.10.2/test/cpp-utils/random/RandomIncludeTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/system/EnvTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/system/FiletimeTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/system/GetTotalMemoryTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/system/HomedirTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/system/MemoryTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/system/PathTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/system/TimeTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/tempfile/TempDirIncludeTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/tempfile/TempDirTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/tempfile/TempFileIncludeTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/tempfile/TempFileTest.cpp Examining data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp Parsing failed to find end of parameter list; semicolon terminated it in ([] (auto& obj) {return obj;}); EXPECT_EQ(5, read); // check changes are also present in background copy obj.write([] (auto&) {}); // this switches to the background copy read = obj.read([] ( Parsing failed to find end of parameter list; semicolon terminated it in ([] (auto& obj) {return obj;}); EXPECT_EQ(5, read); } TEST(LeftRightTest, givenVector_whenWritingAndReading_thenChangesArePresent) { LeftRight<vector<int>> obj; obj.write([] (auto& obj) {o Parsing failed to find end of parameter list; semicolon terminated it in ([] (auto& obj) {return obj;}); EXPECT_EQ((vector<int>{5}), read); obj.write([] (auto& obj) {obj.push_back(6);}); read = obj.read([] (auto& obj) {return obj;}); EXPECT_EQ((vector<int> Parsing failed to find end of parameter list; semicolon terminated it in ([] (auto& obj) {return obj;}); EXPECT_EQ((vector<int>{5, 6}), read); } TEST(LeftRightTest, givenVector_whenWritingReturnsValue_thenValueIsReturned) { LeftRight<vector<int>> obj; auto a Parsing failed to find end of parameter list; semicolon terminated it in ([&] (auto&) { ++num_running_readers; while(num_running_readers.load() < 2) {} }); }); std::thread reader2([&] () { obj.read([&] (auto&) { ++n Parsing failed to find end of parameter list; semicolon terminated it in ([&] (auto&) { ++num_running_readers; while(num_running_readers.load() < 2) {} }); }); // the threads only finish after both entered the read function. // Parsing failed to find end of parameter list; semicolon terminated it in ([&] (auto&) { reader_running = true; while(!writer_running.load()) {} }); }); std::thread writer([&] () { // run read first, write second whil Parsing failed to find end of parameter list; semicolon terminated it in ([&] (auto&) { writer_running = true; while(!reader_running.load()) {} }); }); std::thread reader([&] () { // run write first, read second whil Parsing failed to find end of parameter list; semicolon terminated it in ([&] (auto&) { reader_running = true; }); }); // the threads only finish after both entered the read function. // if LeftRight didn't allow concurrency, this would cau Parsing failed to find end of parameter list; semicolon terminated it in ([](auto&) {throw MyException();}), MyException ); } TEST(LeftRightTest, whenWriteThrowsException_thenThrowsThrough) { LeftRight<int> obj; EXPECT_THROW( obj.write([](auto Parsing failed to find end of parameter list; semicolon terminated it in ([] (auto& obj) {return obj;}); EXPECT_EQ(5, read); // check changes are also present in background copy obj.write([] (auto&) {}); // this switches to the background copy read = obj.r Parsing failed to find end of parameter list; semicolon terminated it in ([] (auto& obj) {return obj;}); EXPECT_EQ(5, read); } // note: each write is executed twice, on the foreground and background copy. // We need to test a thrown exception in either call is handled Parsing failed to find end of parameter list; semicolon terminated it in ([] (auto& obj) {return obj;}); EXPECT_EQ(6, read); // check changes are also present in background copy obj.write([] (auto&) {}); // this switches to the background copy read = obj.r Parsing failed to find end of parameter list; semicolon terminated it in ([] (auto& obj) {return obj;}); EXPECT_EQ(6, read); } TEST(LeftRightTest, givenVector_whenWriteThrowsException_thenResetsToOldState) { LeftRight<vector<int>> obj; obj.write([](auto& obj) Parsing failed to find end of parameter list; semicolon terminated it in ([] (auto& obj) {return obj;}); EXPECT_EQ((vector<int>{5}), read); // check changes are also present in background copy obj.write([] (auto&) {}); // this switches to the background copy Parsing failed to find end of parameter list; semicolon terminated it in ([] (auto& obj) {return obj;}); EXPECT_EQ((vector<int>{5}), read); } Examining data/cryfs-0.10.2/test/cpp-utils/thread/debugging_test.cpp Examining data/cryfs-0.10.2/test/cpp-utils/value_type/ValueTypeTest.cpp Examining data/cryfs-0.10.2/test/cryfs-cli/CallAfterTimeoutTest.cpp Examining data/cryfs-0.10.2/test/cryfs-cli/CliTest_IntegrityCheck.cpp Examining data/cryfs-0.10.2/test/cryfs-cli/CliTest_Setup.cpp Examining data/cryfs-0.10.2/test/cryfs-cli/CliTest_ShowingHelp.cpp Examining data/cryfs-0.10.2/test/cryfs-cli/CliTest_WrongEnvironment.cpp Examining data/cryfs-0.10.2/test/cryfs-cli/CryfsUnmountTest.cpp Examining data/cryfs-0.10.2/test/cryfs-cli/EnvironmentTest.cpp Examining data/cryfs-0.10.2/test/cryfs-cli/VersionCheckerTest.cpp Examining data/cryfs-0.10.2/test/cryfs-cli/program_options/ParserTest.cpp Examining data/cryfs-0.10.2/test/cryfs-cli/program_options/ProgramOptionsTest.cpp Examining data/cryfs-0.10.2/test/cryfs-cli/program_options/UtilsTest.cpp Examining data/cryfs-0.10.2/test/cryfs-cli/program_options/testutils/ProgramOptionsTestBase.h Examining data/cryfs-0.10.2/test/cryfs-cli/testutils/CliTest.cpp Examining data/cryfs-0.10.2/test/cryfs-cli/testutils/CliTest.h Examining data/cryfs-0.10.2/test/cryfs/config/CompatibilityTest.cpp Examining data/cryfs-0.10.2/test/cryfs/config/CryCipherTest.cpp Examining data/cryfs-0.10.2/test/cryfs/config/CryConfigConsoleTest.cpp Examining data/cryfs-0.10.2/test/cryfs/config/CryConfigCreatorTest.cpp Examining data/cryfs-0.10.2/test/cryfs/config/CryConfigFileTest.cpp Examining data/cryfs-0.10.2/test/cryfs/config/CryConfigLoaderTest.cpp Examining data/cryfs-0.10.2/test/cryfs/config/CryConfigTest.cpp Examining data/cryfs-0.10.2/test/cryfs/config/CryPasswordBasedKeyProviderTest.cpp Examining data/cryfs-0.10.2/test/cryfs/config/CryPresetPasswordBasedKeyProviderTest.cpp Examining data/cryfs-0.10.2/test/cryfs/config/crypto/CryConfigEncryptorFactoryTest.cpp Examining data/cryfs-0.10.2/test/cryfs/config/crypto/CryConfigEncryptorTest.cpp Examining data/cryfs-0.10.2/test/cryfs/config/crypto/inner/ConcreteInnerEncryptorTest.cpp Examining data/cryfs-0.10.2/test/cryfs/config/crypto/inner/InnerConfigTest.cpp Examining data/cryfs-0.10.2/test/cryfs/config/crypto/outer/OuterConfigTest.cpp Examining data/cryfs-0.10.2/test/cryfs/config/crypto/outer/OuterEncryptorTest.cpp Examining data/cryfs-0.10.2/test/cryfs/filesystem/CryFsTest.cpp Examining data/cryfs-0.10.2/test/cryfs/filesystem/CryNodeTest.cpp Examining data/cryfs-0.10.2/test/cryfs/filesystem/FileSystemTest.cpp Examining data/cryfs-0.10.2/test/cryfs/filesystem/testutils/CryTestBase.h Examining data/cryfs-0.10.2/test/cryfs/localstate/BasedirMetadataTest.cpp Examining data/cryfs-0.10.2/test/cryfs/localstate/LocalStateMetadataTest.cpp Examining data/cryfs-0.10.2/test/cryfs/testutils/FakeCryKeyProvider.h Examining data/cryfs-0.10.2/test/cryfs/testutils/MockConsole.h Examining data/cryfs-0.10.2/test/cryfs/testutils/MockCryKeyProvider.h Examining data/cryfs-0.10.2/test/cryfs/testutils/TestWithFakeHomeDirectory.h Examining data/cryfs-0.10.2/test/fspp/fs_interface/DeviceTest.cpp Examining data/cryfs-0.10.2/test/fspp/fs_interface/DirTest.cpp Examining data/cryfs-0.10.2/test/fspp/fs_interface/FileTest.cpp Examining data/cryfs-0.10.2/test/fspp/fs_interface/NodeTest.cpp Examining data/cryfs-0.10.2/test/fspp/fs_interface/OpenFileTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/BasicFuseTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/FilesystemTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/access/FuseAccessErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/access/FuseAccessFilenameTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/access/FuseAccessModeTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/access/testutils/FuseAccessTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/access/testutils/FuseAccessTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/closeFile/FuseCloseTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/createAndOpenFile/FuseCreateAndOpenErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/createAndOpenFile/FuseCreateAndOpenFileDescriptorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/createAndOpenFile/FuseCreateAndOpenFilenameTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/createAndOpenFile/FuseCreateAndOpenFlagsTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/createAndOpenFile/testutils/FuseCreateAndOpenTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/createAndOpenFile/testutils/FuseCreateAndOpenTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/fdatasync/FuseFdatasyncErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/fdatasync/FuseFdatasyncFileDescriptorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/fdatasync/testutils/FuseFdatasyncTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/fdatasync/testutils/FuseFdatasyncTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/flush/FuseFlushErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/flush/FuseFlushFileDescriptorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/flush/testutils/FuseFlushTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/flush/testutils/FuseFlushTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/fstat/FuseFstatErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/fstat/FuseFstatParameterTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/fstat/testutils/FuseFstatTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/fstat/testutils/FuseFstatTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/fsync/FuseFsyncErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/fsync/FuseFsyncFileDescriptorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/fsync/testutils/FuseFsyncTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/fsync/testutils/FuseFsyncTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/ftruncate/FuseFTruncateErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/ftruncate/FuseFTruncateFileDescriptorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/ftruncate/FuseFTruncateSizeTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/ftruncate/testutils/FuseFTruncateTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/ftruncate/testutils/FuseFTruncateTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/lstat/FuseLstatErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/lstat/FuseLstatPathParameterTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/lstat/FuseLstatReturnAtimeTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/lstat/FuseLstatReturnCtimeTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/lstat/FuseLstatReturnGidTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/lstat/FuseLstatReturnModeTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/lstat/FuseLstatReturnMtimeTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/lstat/FuseLstatReturnNlinkTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/lstat/FuseLstatReturnSizeTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/lstat/FuseLstatReturnUidTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/lstat/testutils/FuseLstatReturnTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/lstat/testutils/FuseLstatTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/lstat/testutils/FuseLstatTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/mkdir/FuseMkdirDirnameTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/mkdir/FuseMkdirErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/mkdir/FuseMkdirModeTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/mkdir/testutils/FuseMkdirTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/mkdir/testutils/FuseMkdirTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/openFile/FuseOpenErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/openFile/FuseOpenFileDescriptorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/openFile/FuseOpenFilenameTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/openFile/FuseOpenFlagsTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/openFile/testutils/FuseOpenTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/openFile/testutils/FuseOpenTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/read/FuseReadErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/read/FuseReadFileDescriptorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/read/FuseReadOverflowTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/read/FuseReadReturnedDataTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/read/testutils/FuseReadTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/read/testutils/FuseReadTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/readDir/FuseReadDirDirnameTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/readDir/FuseReadDirErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/readDir/FuseReadDirReturnTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/readDir/testutils/FuseReadDirTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/readDir/testutils/FuseReadDirTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/rename/FuseRenameErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/rename/FuseRenameFilenameTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/rename/testutils/FuseRenameTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/rename/testutils/FuseRenameTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/rmdir/FuseRmdirDirnameTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/rmdir/FuseRmdirErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/rmdir/testutils/FuseRmdirTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/rmdir/testutils/FuseRmdirTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/statfs/FuseStatfsErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/statfs/FuseStatfsReturnBavailTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/statfs/FuseStatfsReturnBfreeTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/statfs/FuseStatfsReturnBlocksTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/statfs/FuseStatfsReturnBsizeTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/statfs/FuseStatfsReturnFfreeTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/statfs/FuseStatfsReturnFilesTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/statfs/FuseStatfsReturnNamemaxTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/statfs/testutils/FuseStatfsReturnTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/statfs/testutils/FuseStatfsTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/statfs/testutils/FuseStatfsTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/truncate/FuseTruncateErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/truncate/FuseTruncateFilenameTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/truncate/FuseTruncateSizeTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/truncate/testutils/FuseTruncateTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/truncate/testutils/FuseTruncateTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/unlink/FuseUnlinkErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/unlink/FuseUnlinkFilenameTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/unlink/testutils/FuseUnlinkTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/unlink/testutils/FuseUnlinkTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/utimens/FuseUtimensErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/utimens/FuseUtimensFilenameTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/utimens/FuseUtimensTimeParameterTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/utimens/testutils/FuseUtimensTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/utimens/testutils/FuseUtimensTest.h Examining data/cryfs-0.10.2/test/fspp/fuse/write/FuseWriteDataTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/write/FuseWriteErrorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/write/FuseWriteFileDescriptorTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/write/FuseWriteOverflowTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/write/testutils/FuseWriteTest.cpp Examining data/cryfs-0.10.2/test/fspp/fuse/write/testutils/FuseWriteTest.h Examining data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp Examining data/cryfs-0.10.2/test/fspp/impl/IdListTest.cpp Examining data/cryfs-0.10.2/test/fspp/testutils/FuseTest.cpp Examining data/cryfs-0.10.2/test/fspp/testutils/FuseTest.h Examining data/cryfs-0.10.2/test/fspp/testutils/FuseThread.cpp Examining data/cryfs-0.10.2/test/fspp/testutils/FuseThread.h Examining data/cryfs-0.10.2/test/fspp/testutils/InMemoryFile.cpp Examining data/cryfs-0.10.2/test/fspp/testutils/InMemoryFile.h Examining data/cryfs-0.10.2/test/fspp/testutils/OpenFileHandle.cpp Examining data/cryfs-0.10.2/test/fspp/testutils/OpenFileHandle.h Examining data/cryfs-0.10.2/test/gitversion/ParserTest.cpp Examining data/cryfs-0.10.2/test/gitversion/VersionCompareTest.cpp Examining data/cryfs-0.10.2/test/my-gtest-main/my-gtest-main.cpp Examining data/cryfs-0.10.2/test/my-gtest-main/my-gtest-main.h Examining data/cryfs-0.10.2/test/parallelaccessstore/DummyTest.cpp Examining data/cryfs-0.10.2/test/parallelaccessstore/ParallelAccessBaseStoreTest.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/dummy.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/3way.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/3way.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_32bit.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_64bit.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_arm_acle.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_arm_aes.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_arm_asimd.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_arm_crc.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_arm_neon.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_arm_pmull.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_arm_sha.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_arm_sha3.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_arm_sha512.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_arm_sm3.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_arm_sm4.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_cxx.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_mixed_asm.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_newlib.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_ppc_aes.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_ppc_altivec.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_ppc_power7.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_ppc_power8.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_ppc_power9.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_ppc_sha.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_ppc_vmull.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_pthreads.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_x86_aes.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_x86_avx.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_x86_avx2.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_x86_avx512.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_x86_clmul.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_x86_cpuid.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_x86_sha.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_x86_sse2.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_x86_sse3.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_x86_sse41.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_x86_sse42.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_x86_ssse3.cxx Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestScripts/cryptest-coverity.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adler32.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adler32.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aes.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aes_armv4.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/algebra.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/algebra.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/algparam.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/algparam.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/arc4.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/arc4.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/argnames.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aria.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aria.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aria_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ariatab.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/arm_simd.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/asn.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/asn.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/authenc.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/authenc.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/base32.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/base32.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/base64.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/base64.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/basecode.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/basecode.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/bench.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/bench1.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/bench2.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/bench3.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/bfinit.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blake2.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blake2.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blake2b_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blake2s_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blowfish.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blowfish.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blumshub.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blumshub.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/camellia.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/camellia.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cast.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cast.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/casts.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cbcmac.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cbcmac.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ccm.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ccm.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/chacha.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/chacha.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/chacha_avx.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/chacha_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/chachapoly.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/chachapoly.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cham.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cham.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cham_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/channels.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/channels.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cmac.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cmac.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/config.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cpu.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cpu.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/crc.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/crc.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/crc_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cryptlib.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cryptlib.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/darn.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/darn.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/datatest.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/default.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/default.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/des.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/des.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/dessp.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/dh.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/dh.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/dh2.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/dh2.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/dll.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/dll.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/dlltest.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/dmac.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_32.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_32.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_64.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_64.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_sse.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_sse.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/drbg.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/dsa.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/dsa.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/eax.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/eax.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ec2n.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ec2n.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/eccrypto.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/eccrypto.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ecp.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ecp.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ecpoint.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/elgamal.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/elgamal.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/emsa2.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/emsa2.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/eprecomp.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/eprecomp.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/esign.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/esign.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/factory.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fhmqv.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/files.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/files.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/filters.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/filters.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fips140.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fips140.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipstest.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fltrimpl.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gcm.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gcm.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gcm_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gf256.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gf256.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gf2_32.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gf2_32.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gf2n.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gf2n.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gf2n_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gfpcrypt.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gfpcrypt.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gost.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gost.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gzip.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gzip.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hashfwd.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hc128.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hc128.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hc256.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hc256.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hex.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hex.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hight.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hight.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hkdf.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hmac.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hmac.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hmqv.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hrtimer.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hrtimer.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ida.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ida.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/idea.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/idea.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/integer.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/integer.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/iterhash.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/iterhash.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/kalyna.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/kalyna.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/kalynatab.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/keccak.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/keccak.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/keccak_core.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/keccak_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/lea.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/lea.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/lea_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/lubyrack.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/luc.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/luc.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mars.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mars.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/marss.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/md2.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/md2.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/md4.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/md4.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/md5.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/md5.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mdc.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mersenne.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/misc.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/misc.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modarith.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modes.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modes.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modexppc.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mqueue.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mqueue.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mqv.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mqv.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/naclite.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/nbtheory.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/nbtheory.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/neon_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/nr.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/oaep.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/oaep.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/oids.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/osrng.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/osrng.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ossig.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/padlkrng.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/padlkrng.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/panama.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/panama.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pch.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pch.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pkcspad.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pkcspad.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/poly1305.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/poly1305.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/polynomi.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/polynomi.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ppc_power7.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ppc_power8.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ppc_power9.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ppc_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ppc_simd.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pssr.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pssr.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pubkey.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pubkey.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pwdbased.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/queue.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/queue.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rabbit.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rabbit.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rabin.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rabin.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/randpool.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/randpool.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rc2.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rc2.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rc5.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rc5.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rc6.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rc6.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rdrand.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rdrand.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rdtables.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/regtest1.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/regtest2.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/regtest3.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/regtest4.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/resource.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rijndael.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rijndael.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rijndael_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ripemd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ripemd.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rng.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rng.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rsa.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rsa.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rw.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rw.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/safer.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/safer.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/salsa.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/salsa.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/scrypt.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/scrypt.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/seal.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/seal.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/secblock.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/seckey.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/seed.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/seed.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/serpent.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/serpent.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/serpentp.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sha.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sha.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sha3.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sha3.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sha_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/shacal2.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/shacal2.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/shacal2_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/shake.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/shake.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/shark.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/shark.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sharkbox.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/simeck.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/simeck.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/simeck_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/simon.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/simon.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/simon128_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/simon64_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/simple.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/simple.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/siphash.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/skipjack.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/skipjack.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sm3.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sm3.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sm4.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sm4.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sm4_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/smartptr.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sosemanuk.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sosemanuk.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/speck.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/speck.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/speck128_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/speck64_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/square.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/square.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/squaretb.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sse_simd.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/stdcpp.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/strciphr.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/strciphr.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/tea.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/tea.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/tftables.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/threefish.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/threefish.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/tiger.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/tiger.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/tigertab.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/trap.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/trunhash.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ttmac.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ttmac.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/tweetnacl.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/tweetnacl.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/twofish.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/twofish.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat0.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat1.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat10.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat2.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat3.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat4.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat5.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat6.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat7.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat8.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validate.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/vmac.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/vmac.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/wake.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/wake.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/whrlpool.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/whrlpool.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/words.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xtr.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xtr.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xtrcrypt.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xtrcrypt.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/zdeflate.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/zdeflate.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/zinflate.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/zinflate.h Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/zlib.cpp Examining data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/zlib.h Examining data/cryfs-0.10.2/vendor/googletest/dummy.cpp Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/gmock-actions.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/gmock-cardinalities.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/gmock-generated-actions.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/gmock-generated-function-mockers.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/gmock-generated-matchers.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/gmock-generated-nice-strict.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/gmock-matchers.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/gmock-more-actions.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/gmock-more-matchers.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/gmock-spec-builders.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/gmock.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/internal/custom/gmock-generated-actions.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/internal/custom/gmock-matchers.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/internal/custom/gmock-port.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/internal/gmock-generated-internal-utils.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/internal/gmock-internal-utils.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/include/gmock/internal/gmock-port.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/src/gmock-all.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/src/gmock-cardinalities.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/src/gmock-internal-utils.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/src/gmock-matchers.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/src/gmock-spec-builders.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/src/gmock.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/src/gmock_main.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-actions_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-cardinalities_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-generated-actions_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-generated-function-mockers_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-generated-internal-utils_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-generated-matchers_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-internal-utils_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-matchers_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-more-actions_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-nice-strict_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-port_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-spec-builders_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock_all_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock_ex_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock_leak_test_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock_link2_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock_link_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock_link_test.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock_output_test_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock_stress_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/codegear/gtest_all.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/codegear/gtest_link.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/gtest-death-test.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/gtest-message.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/gtest-param-test.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/gtest-printers.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/gtest-spi.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/gtest-test-part.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/gtest-typed-test.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/gtest.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/gtest_pred_impl.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/gtest_prod.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/custom/gtest-port.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/custom/gtest-printers.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/custom/gtest.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-death-test-internal.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-filepath.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-internal.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-linked_ptr.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-param-util-generated.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-param-util.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-port-arch.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-port.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-string.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-tuple.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-type-util.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/prime_tables.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample1.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample1.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample10_unittest.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample1_unittest.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample2.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample2.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample2_unittest.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample3-inl.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample3_unittest.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample4.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample4.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample4_unittest.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample5_unittest.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample6_unittest.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample7_unittest.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample8_unittest.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample9_unittest.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-all.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-death-test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-filepath.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-internal-inl.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-port.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-printers.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-test-part.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-typed-test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest_main.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-death-test_ex_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-death-test_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-filepath_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-linked_ptr_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-listener_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-message_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-options_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-param-test2_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-param-test_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-param-test_test.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-port_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-printers_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-test-part_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-tuple_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-typed-test2_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-typed-test_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-typed-test_test.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-unittest-api_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_all_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_assert_by_exception_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_break_on_failure_unittest_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_catch_exceptions_test_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_color_test_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_env_var_test_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_environment_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_filter_unittest_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_help_test_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_list_tests_unittest_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_main_unittest.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_no_test_unittest.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_output_test_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_pred_impl_unittest.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_premature_exit_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_prod_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_repeat_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_shuffle_test_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_sole_header_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_stress_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_throw_on_failure_ex_test.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_throw_on_failure_test_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_uninitialized_test_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_xml_outfile1_test_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_xml_outfile2_test_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_xml_output_unittest_.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/production.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/production.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/xcode/Samples/FrameworkSample/widget.cc Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/xcode/Samples/FrameworkSample/widget.h Examining data/cryfs-0.10.2/vendor/googletest/gtest/googletest/xcode/Samples/FrameworkSample/widget_test.cc Examining data/cryfs-0.10.2/vendor/spdlog/dummy.cpp Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/async_logger.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/common.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/details/async_log_helper.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/details/async_logger_impl.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/details/file_helper.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/details/log_msg.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/details/logger_impl.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/details/mpmc_bounded_q.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/details/null_mutex.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/details/os.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/details/pattern_formatter_impl.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/details/registry.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/details/spdlog_impl.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/format.cc Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/format.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/ostream.cc Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/ostream.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/posix.cc Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/posix.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.cc Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/time.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/fmt.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/ostr.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/formatter.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/logger.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/android_sink.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/ansicolor_sink.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/base_sink.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/dist_sink.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/file_sinks.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/msvc_sink.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/null_sink.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/ostream_sink.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/sink.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/stdout_sinks.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/syslog_sink.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/wincolor_sink.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/windebug_sink.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/spdlog.h Examining data/cryfs-0.10.2/vendor/spdlog/spdlog/tweakme.h FINAL RESULTS: data/cryfs-0.10.2/src/cryfs/filesystem/CryNode.cpp:188:15: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. void CryNode::chmod(fspp::mode_t mode) { data/cryfs-0.10.2/src/cryfs/filesystem/CryNode.cpp:198:15: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. void CryNode::chown(fspp::uid_t uid, fspp::gid_t gid) { data/cryfs-0.10.2/src/cryfs/filesystem/CryNode.h:21:8: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. void chmod(fspp::mode_t mode) override; data/cryfs-0.10.2/src/cryfs/filesystem/CryNode.h:22:8: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. void chown(fspp::uid_t uid, fspp::gid_t gid) override; data/cryfs-0.10.2/src/fspp/fs_interface/Node.h:17:16: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. virtual void chmod(fspp::mode_t mode) = 0; data/cryfs-0.10.2/src/fspp/fs_interface/Node.h:18:16: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. virtual void chown(fspp::uid_t uid, fspp::gid_t gid) = 0; data/cryfs-0.10.2/src/fspp/fstest/FsppFileTest.h:60:11: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. node->chown(fspp::uid_t(100), fspp::gid_t(200)); data/cryfs-0.10.2/src/fspp/fstest/FsppFileTest.h:67:11: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. node->chown(fspp::uid_t(100), fspp::gid_t(200)); data/cryfs-0.10.2/src/fspp/fstest/FsppFileTest.h:75:11: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. node->chmod(mode); data/cryfs-0.10.2/src/fspp/fstest/FsppNodeTest_Timestamps.h:40:19: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. node->chmod(mode); data/cryfs-0.10.2/src/fspp/fstest/FsppNodeTest_Timestamps.h:54:19: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. node->chown(uid, gid); data/cryfs-0.10.2/src/fspp/fuse/Filesystem.h:30:16: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. virtual void chmod(const boost::filesystem::path &path, ::mode_t mode) = 0; data/cryfs-0.10.2/src/fspp/fuse/Filesystem.h:32:16: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. virtual void chown(const boost::filesystem::path &path, ::uid_t uid, ::gid_t gid) = 0; data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:69:20: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. return FUSE_OBJ->readlink(bf::path(path), buf, size); data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:101:20: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. return FUSE_OBJ->chmod(bf::path(path), mode); data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:105:20: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. return FUSE_OBJ->chown(bf::path(path), uid, gid); data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:433:11: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. int Fuse::readlink(const bf::path &path, char *buf, size_t size) { data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:638:11: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. int Fuse::chmod(const bf::path &path, ::mode_t mode) { data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:645:7: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. _fs->chmod(path, mode); data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:667:11: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. int Fuse::chown(const bf::path &path, ::uid_t uid, ::gid_t gid) { data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:674:7: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. _fs->chown(path, uid, gid); data/cryfs-0.10.2/src/fspp/fuse/Fuse.h:35:7: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. int readlink(const boost::filesystem::path &path, char *buf, size_t size); data/cryfs-0.10.2/src/fspp/fuse/Fuse.h:43:7: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. int chmod(const boost::filesystem::path &path, ::mode_t mode); data/cryfs-0.10.2/src/fspp/fuse/Fuse.h:44:7: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. int chown(const boost::filesystem::path &path, ::uid_t uid, ::gid_t gid); data/cryfs-0.10.2/src/fspp/fuse/InvalidFilesystem.h:34:18: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. void chmod(const boost::filesystem::path &, ::mode_t ) override { data/cryfs-0.10.2/src/fspp/fuse/InvalidFilesystem.h:38:18: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. void chown(const boost::filesystem::path &, ::uid_t , ::gid_t ) override { data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.cpp:176:22: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. void FilesystemImpl::chmod(const boost::filesystem::path &path, ::mode_t mode) { data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.cpp:182:14: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. (*node)->chmod(fspp::mode_t(mode)); data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.cpp:186:22: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. void FilesystemImpl::chown(const boost::filesystem::path &path, ::uid_t uid, ::gid_t gid) { data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.cpp:192:14: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. (*node)->chown(fspp::uid_t(uid), fspp::gid_t(gid)); data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.h:32:7: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. void chmod(const boost::filesystem::path &path, ::mode_t mode) override; data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.h:33:7: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. void chown(const boost::filesystem::path &path, ::uid_t uid, ::gid_t gid) override; data/cryfs-0.10.2/test/fspp/testutils/FuseTest.cpp:45:20: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. ON_CALL(*fsimpl, chmod(_,_)).WillByDefault(defaultAction); data/cryfs-0.10.2/test/fspp/testutils/FuseTest.cpp:46:20: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. ON_CALL(*fsimpl, chown(_,_,_)).WillByDefault(defaultAction); data/cryfs-0.10.2/test/fspp/testutils/FuseTest.h:79:21: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. MOCK_PATH_METHOD2(chmod, void, mode_t); data/cryfs-0.10.2/test/fspp/testutils/FuseTest.h:80:21: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. MOCK_PATH_METHOD3(chown, void, uid_t, gid_t); data/cryfs-0.10.2/src/blockstore/implementations/inmemory/InMemoryBlockStore2.cpp:71:20: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. return cpputils::system::get_total_memory(); data/cryfs-0.10.2/src/blockstore/implementations/testfake/FakeBlockStore.cpp:96:20: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. return cpputils::system::get_total_memory(); data/cryfs-0.10.2/src/cpp-utils/process/subprocess.cpp:19:9: [4] (shell) popen: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define popen _popen data/cryfs-0.10.2/src/cpp-utils/process/subprocess.cpp:34:17: [4] (shell) popen: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. : _subprocess(popen(command.c_str(), openmode)) { data/cryfs-0.10.2/src/cpp-utils/system/filetime_windows.cpp:43:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. OpenFileRAII(const char* filepath, DWORD access) data/cryfs-0.10.2/src/cpp-utils/system/filetime_windows.cpp:44:34: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. :handle(CreateFileA(filepath, access, 0, nullptr, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, nullptr)) { data/cryfs-0.10.2/src/cpp-utils/system/get_total_memory.cpp:11:12: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. namespace system { data/cryfs-0.10.2/src/cpp-utils/system/get_total_memory.cpp:29:12: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. namespace system { data/cryfs-0.10.2/src/cpp-utils/system/get_total_memory.cpp:43:12: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. namespace system { data/cryfs-0.10.2/src/cpp-utils/system/get_total_memory.h:8:15: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. namespace system { data/cryfs-0.10.2/src/cpp-utils/system/homedir.cpp:73:15: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. namespace system { data/cryfs-0.10.2/src/cpp-utils/system/homedir.h:11:15: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. namespace system { data/cryfs-0.10.2/src/cpp-utils/thread/ThreadSystem.cpp:12:29: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. static ThreadSystem system; data/cryfs-0.10.2/src/cpp-utils/thread/ThreadSystem.cpp:13:16: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. return system; data/cryfs-0.10.2/src/cryfs-cli/Environment.cpp:25:49: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. static const bf::path value = cpputils::system::HomeDirectory::getXDGDataDir() / "cryfs"; data/cryfs-0.10.2/src/cryfs/filesystem/CryNode.cpp:45:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. void CryNode::access(int mask) const { data/cryfs-0.10.2/src/cryfs/filesystem/CryNode.h:19:8: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. void access(int mask) const override; data/cryfs-0.10.2/src/fspp/fs_interface/Node.h:19:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. virtual void access(int mask) const = 0; data/cryfs-0.10.2/src/fspp/fstest/FsppNodeTest_Timestamps.h:66:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. node->access(0); data/cryfs-0.10.2/src/fspp/fuse/Filesystem.h:39:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. virtual void access(const boost::filesystem::path &path, int mask) = 0; data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:183:20: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. return FUSE_OBJ->access(bf::path(path), mask); data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:1095:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. int Fuse::access(const bf::path &path, int mask) { data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:1102:10: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. _fs->access(path, mask); data/cryfs-0.10.2/src/fspp/fuse/Fuse.h:61:7: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. int access(const boost::filesystem::path &path, int mask); data/cryfs-0.10.2/src/fspp/fuse/InvalidFilesystem.h:66:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. void access(const boost::filesystem::path &, int ) override { data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.cpp:236:22: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. void FilesystemImpl::access(const bf::path &path, int mask) { data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.cpp:242:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. (*node)->access(mask); data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.h:40:7: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. void access(const boost::filesystem::path &path, int mask) override; data/cryfs-0.10.2/src/stats/main.cpp:158:43: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. LocalStateDir localStateDir(cpputils::system::HomeDirectory::getXDGDataDir() / "cryfs"); data/cryfs-0.10.2/test/cpp-utils/system/GetTotalMemoryTest.cpp:4:17: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. using cpputils::system::get_total_memory; data/cryfs-0.10.2/test/cpp-utils/system/HomedirTest.cpp:5:17: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. using cpputils::system::HomeDirectory; data/cryfs-0.10.2/test/cpp-utils/system/HomedirTest.cpp:6:17: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. using cpputils::system::FakeHomeDirectoryRAII; data/cryfs-0.10.2/test/cpp-utils/system/HomedirTest.cpp:7:17: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. using cpputils::system::FakeTempHomeDirectoryRAII; data/cryfs-0.10.2/test/cryfs/testutils/TestWithFakeHomeDirectory.h:10:15: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. cpputils::system::FakeTempHomeDirectoryRAII fakeHomeDirRAII; data/cryfs-0.10.2/test/fspp/fuse/access/FuseAccessErrorTest.cpp:20:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. EXPECT_CALL(*fsimpl, access(StrEq(FILENAME), _)) data/cryfs-0.10.2/test/fspp/fuse/access/FuseAccessFilenameTest.cpp:12:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. EXPECT_CALL(*fsimpl, access(StrEq("/myfile"), _)) data/cryfs-0.10.2/test/fspp/fuse/access/FuseAccessFilenameTest.cpp:21:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. EXPECT_CALL(*fsimpl, access(StrEq("/mydir/myfile"), _)) data/cryfs-0.10.2/test/fspp/fuse/access/FuseAccessFilenameTest.cpp:31:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. EXPECT_CALL(*fsimpl, access(StrEq("/mydir/mydir2/myfile"), _)) data/cryfs-0.10.2/test/fspp/fuse/access/FuseAccessModeTest.cpp:15:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. EXPECT_CALL(*fsimpl, access(StrEq(FILENAME), GetParam())) data/cryfs-0.10.2/test/fspp/fuse/access/testutils/FuseAccessTest.cpp:12:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. int retval = ::access(realpath.string().c_str(), mode); data/cryfs-0.10.2/test/fspp/testutils/FuseTest.cpp:34:20: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ON_CALL(*fsimpl, access(_,_)).WillByDefault(defaultAction); data/cryfs-0.10.2/test/fspp/testutils/FuseTest.cpp:50:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. EXPECT_CALL(*fsimpl, access(_,_)).WillRepeatedly(Return()); data/cryfs-0.10.2/test/fspp/testutils/FuseTest.h:58:21: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. MOCK_PATH_METHOD2(access, void, int); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-death-test-internal.h:164:5: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(\ data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-port.h:2488:20: [4] (buffer) StrNCpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). inline const char* StrNCpy(char* dest, const char* src, size_t n) { data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-port.h:2559:26: [4] (format) _snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. # define GTEST_SNPRINTF_ _snprintf data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-port.h:2561:26: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. # define GTEST_SNPRINTF_ snprintf data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:139:10: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. # define vsnprintf _vsnprintf data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:3013:5: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf(fmt, args); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:3034:3: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf(fmt, args); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:3041:3: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf(fmt, args); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-death-test_test.cc:1307:5: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, InDeathTestChild() ? "Inside" : "Outside"); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-death-test_test.cc:1317:5: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, InDeathTestChild() ? "Inside" : "Outside"); data/cryfs-0.10.2/vendor/spdlog/spdlog/details/logger_impl.h:70:14: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fmt::printf(log_msg.raw, fmt, args...); data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/format.cc:91:23: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. # define FMT_SNPRINTF snprintf data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/format.cc:106:23: [4] (buffer) swprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. # define FMT_SWPRINTF swprintf data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.cc:16:6: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. void printf(BasicWriter<Char> &w, BasicCStringRef<Char> format, ArgList args); data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.cc:18:14: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. FMT_FUNC int fprintf(std::FILE *f, CStringRef format, ArgList args) { data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.cc:20:3: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf(w, format, args); data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:625:13: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. inline void printf(Writer &w, CStringRef format, ArgList args) data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:629:20: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. FMT_VARIADIC(void, printf, Writer &, CStringRef) data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:631:13: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. inline void printf(WWriter &w, WCStringRef format, ArgList args) data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:635:20: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. FMT_VARIADIC(void, printf, WWriter &, WCStringRef) data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:646:20: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. inline std::string sprintf(CStringRef format, ArgList args) data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:649:5: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf(w, format, args); data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:652:27: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. FMT_VARIADIC(std::string, sprintf, CStringRef) data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:654:21: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. inline std::wstring sprintf(WCStringRef format, ArgList args) data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:657:5: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf(w, format, args); data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:660:30: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. FMT_VARIADIC_W(std::wstring, sprintf, WCStringRef) data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:671:13: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. FMT_API int fprintf(std::FILE *f, CStringRef format, ArgList args); data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:672:19: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. FMT_VARIADIC(int, fprintf, std::FILE *, CStringRef) data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:683:12: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. inline int printf(CStringRef format, ArgList args) data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:685:12: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. return fprintf(stdout, format, args); data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:687:19: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. FMT_VARIADIC(int, printf, CStringRef) data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:698:12: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. inline int fprintf(std::ostream &os, CStringRef format_str, ArgList args) data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:701:5: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf(w, format_str, args); data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/printf.h:705:19: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. FMT_VARIADIC(int, fprintf, std::ostream &, CStringRef) data/cryfs-0.10.2/src/cpp-utils/random/Random.h:16:37: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. static PseudoRandomPool random; data/cryfs-0.10.2/src/cpp-utils/random/Random.h:17:20: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. return random; data/cryfs-0.10.2/src/cpp-utils/random/Random.h:22:38: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. static OSRandomGenerator random; data/cryfs-0.10.2/src/cpp-utils/random/Random.h:23:20: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. return random; data/cryfs-0.10.2/src/cpp-utils/system/homedir.cpp:18:14: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. homedir = getenv("HOME"); data/cryfs-0.10.2/src/cpp-utils/system/homedir.cpp:27:35: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char* xdg_data_dir = std::getenv("XDG_DATA_HOME"); data/cryfs-0.10.2/src/cryfs-cli/Environment.cpp:16:31: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char *frontend = std::getenv(FRONTEND_KEY.c_str()); data/cryfs-0.10.2/src/cryfs-cli/Environment.cpp:21:32: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. return nullptr != std::getenv(NOUPDATECHECK_KEY.c_str()); data/cryfs-0.10.2/src/cryfs-cli/Environment.cpp:30:42: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char* localStateDir = std::getenv(LOCALSTATEDIR_KEY.c_str()); data/cryfs-0.10.2/test/cpp-utils/system/EnvTest.cpp:9:44: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. EXPECT_EQ(string("my_value"), string(std::getenv("my_key"))); data/cryfs-0.10.2/test/cpp-utils/system/EnvTest.cpp:14:56: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. EXPECT_EQ(string("my value with spaces"), string(std::getenv("my_key"))); data/cryfs-0.10.2/test/cpp-utils/system/EnvTest.cpp:20:26: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. EXPECT_EQ(nullptr, std::getenv("my_key")); data/cryfs-0.10.2/test/cryfs-cli/EnvironmentTest.cpp:27:35: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char *oldValue = std::getenv(key.c_str()); data/cryfs-0.10.2/test/fspp/fuse/access/testutils/FuseAccessTest.cpp:12:25: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. int retval = ::access(realpath.string().c_str(), mode); data/cryfs-0.10.2/test/fspp/fuse/createAndOpenFile/FuseCreateAndOpenFileDescriptorTest.cpp:23:47: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. auto fd = make_unique_ref<OpenFileHandle>(realpath.string().c_str(), O_RDONLY | O_CREAT, S_IRUSR | S_IRGRP | S_IROTH); data/cryfs-0.10.2/test/fspp/fuse/fdatasync/testutils/FuseFdatasyncTest.cpp:31:45: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. auto fd = make_unique_ref<OpenFileHandle>(realpath.string().c_str(), O_RDWR); data/cryfs-0.10.2/test/fspp/fuse/fsync/testutils/FuseFsyncTest.cpp:25:45: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. auto fd = make_unique_ref<OpenFileHandle>(realpath.string().c_str(), O_RDWR); data/cryfs-0.10.2/test/fspp/fuse/ftruncate/testutils/FuseFTruncateTest.cpp:25:45: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. auto fd = make_unique_ref<OpenFileHandle>(realpath.string().c_str(), O_RDWR); data/cryfs-0.10.2/test/fspp/fuse/lstat/testutils/FuseLstatTest.cpp:27:24: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. int retval = ::lstat(realpath.string().c_str(), result); data/cryfs-0.10.2/test/fspp/fuse/mkdir/testutils/FuseMkdirTest.cpp:15:24: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. int retval = ::mkdir(realpath.string().c_str(), mode); data/cryfs-0.10.2/test/fspp/fuse/openFile/FuseOpenFileDescriptorTest.cpp:23:47: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. auto fd = make_unique_ref<OpenFileHandle>(realpath.string().c_str(), O_RDONLY); data/cryfs-0.10.2/test/fspp/fuse/openFile/testutils/FuseOpenTest.cpp:20:42: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. return make_unique_ref<OpenFileHandle>(realpath.string().c_str(), flags); data/cryfs-0.10.2/test/fspp/fuse/read/testutils/FuseReadTest.cpp:26:45: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. auto fd = make_unique_ref<OpenFileHandle>(realpath.string().c_str(), O_RDONLY); data/cryfs-0.10.2/test/fspp/fuse/readDir/testutils/FuseReadDirTest.cpp:46:20: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. return ::opendir(realpath.string().c_str()); data/cryfs-0.10.2/test/fspp/fuse/rmdir/testutils/FuseRmdirTest.cpp:15:24: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. int retval = ::rmdir(realpath.string().c_str()); data/cryfs-0.10.2/test/fspp/fuse/statfs/testutils/FuseStatfsTest.cpp:26:26: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. int retval = ::statvfs(realpath.string().c_str(), result); data/cryfs-0.10.2/test/fspp/fuse/truncate/testutils/FuseTruncateTest.cpp:12:27: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. int retval = ::truncate(realpath.string().c_str(), size.value()); data/cryfs-0.10.2/test/fspp/fuse/unlink/testutils/FuseUnlinkTest.cpp:15:25: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. int retval = ::unlink(realpath.string().c_str()); data/cryfs-0.10.2/test/fspp/fuse/utimens/testutils/FuseUtimensTest.cpp:14:33: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. return cpputils::set_filetime(realpath.string().c_str(), lastAccessTime, lastModificationTime); data/cryfs-0.10.2/test/fspp/fuse/write/testutils/FuseWriteTest.cpp:26:45: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. auto fd = make_unique_ref<OpenFileHandle>(realpath.string().c_str(), O_WRONLY); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:495:19: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. char* resolved = realpath (pathHint.c_str(), NULLPTR); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:503:12: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. char* r = realpath (pathHint.c_str(), &resolved[0]); data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-matchers_test.cc:6130:5: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srand(static_cast<int>(seed)); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/gtest.h:954:39: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. void ShuffleTests(internal::Random* random); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-port.h:2527:27: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char* const env = getenv(name); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-port.h:2530:10: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. return getenv(name); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-internal-inl.h:308:37: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. void ShuffleRange(internal::Random* random, int begin, int end, data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-internal-inl.h:329:39: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. inline void Shuffle(internal::Random* random, std::vector<E>* v) { data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-internal-inl.h:330:16: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. ShuffleRange(random, 0, static_cast<int>(v->size()), v); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-internal-inl.h:786:21: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. internal::Random* random() { return &random_; } data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-port.cc:259:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. ::InitializeCriticalSection(critical_section_); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-port.cc:277:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. ::EnterCriticalSection(critical_section_); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-port.cc:309:11: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. ::InitializeCriticalSection(critical_section_); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:189:44: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char* const testbridge_test_only = getenv(GTEST_TEST_FILTER_ENV_VAR_); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:2804:47: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. void TestCase::ShuffleTests(internal::Random* random) { data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:2805:11: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. Shuffle(random, &test_indices_); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:5025:7: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. random()->Reseed(random_seed_); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:5358:16: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. ShuffleRange(random(), 0, last_death_test_case_ + 1, &test_case_indices_); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:5361:16: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. ShuffleRange(random(), last_death_test_case_ + 1, data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:5366:34: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. test_cases_[i]->ShuffleTests(random()); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:448:9: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (getenv("TZ")) data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:449:26: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. saved_tz_ = strdup(getenv("TZ")); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:736:29: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. testing::internal::Random random(42); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:738:7: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. random.Generate(0), data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:741:7: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. random.Generate(testing::internal::Random::kMaxRange + 1), data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:748:29: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. testing::internal::Random random(12345); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:750:15: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. EXPECT_LT(random.Generate(kRange), kRange) << " for iteration " << i; data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:765:29: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. testing::internal::Random random(kSeed); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:767:17: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. values[i] = random.Generate(kRange); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:770:3: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. random.Reseed(kSeed); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:772:26: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. EXPECT_EQ(values[i], random.Generate(kRange)) << " for iteration " << i; data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:837:29: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. testing::internal::Random random(1); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:840:21: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. ShuffleRange(&random, -1, 1, &a), data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:843:21: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. ShuffleRange(&random, 4, 4, &a), data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:846:21: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. ShuffleRange(&random, 3, 2, &a), data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:849:21: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. ShuffleRange(&random, 3, 4, &a), data/cryfs-0.10.2/vendor/spdlog/spdlog/details/os.h:461:30: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *env_p = std::getenv("TERM"); data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datanodestore/DataLeafNode.cpp:41:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(target, static_cast<const uint8_t*>(node().data()) + offset, size); data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datanodestore/DataNodeView.h:151:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(result.dataOffset(layout.HEADERSIZE_BYTES), data.data(), data.size()); data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/DataTree.cpp:176:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(actualData.dataOffset(dataBegin), data.data(), data.size()); data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/DataTree.cpp:304:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(leafData.data(), static_cast<const uint8_t*>(source) + indexOfFirstLeafByte - offset, leafDataSize); data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/DataTree.cpp:316:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(result.data(), static_cast<const uint8_t*>(source) + beginByte - offset, numBytes); data/cryfs-0.10.2/src/blockstore/implementations/compressing/CompressedBlock.h:96:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(_decompressedData.dataOffset(offset), source, size); data/cryfs-0.10.2/src/blockstore/implementations/compressing/compressors/RunLengthEncoding.cpp:89:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(data.data(), str.c_str(), str.size()); data/cryfs-0.10.2/src/blockstore/implementations/encrypted/EncryptedBlockStore2.h:169:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(dataWithHeader.dataOffset(sizeof(FORMAT_VERSION_HEADER)), data.data(), data.size()); data/cryfs-0.10.2/src/blockstore/implementations/integrity/IntegrityBlockStore2.cpp:38:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(result.dataOffset(HEADER_LENGTH), data.data(), data.size()); data/cryfs-0.10.2/src/blockstore/implementations/integrity/IntegrityBlockStore2.cpp:152:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(migrated.dataOffset(ID_HEADER_OFFSET + BlockId::BINARY_LENGTH), data.dataOffset(sizeof(FORMAT_VERSION_HEADER)), data.size() - sizeof(FORMAT_VERSION_HEADER)); data/cryfs-0.10.2/src/blockstore/implementations/low2highlevel/LowToHighLevelBlock.cpp:56:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(_data.dataOffset(offset), source, count); data/cryfs-0.10.2/src/blockstore/implementations/ondisk/OnDiskBlockStore2.cpp:35:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(result.data(), data.dataOffset(formatVersionHeaderSize()), result.size()); data/cryfs-0.10.2/src/blockstore/implementations/ondisk/OnDiskBlockStore2.cpp:90:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(fileContent.data(), FORMAT_VERSION_HEADER.c_str(), formatVersionHeaderSize()); data/cryfs-0.10.2/src/blockstore/implementations/ondisk/OnDiskBlockStore2.cpp:91:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(fileContent.dataOffset(formatVersionHeaderSize()), data.data(), data.size()); data/cryfs-0.10.2/src/blockstore/implementations/testfake/FakeBlock.cpp:33:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(_data->dataOffset(offset), source, size); data/cryfs-0.10.2/src/blockstore/utils/BlockStoreUtils.cpp:15:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(data.data(), block.data(), block.size()); data/cryfs-0.10.2/src/cpp-utils/crypto/RandomPadding.cpp:19:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(result.dataOffset(sizeof(size)), data.data(), size); data/cryfs-0.10.2/src/cpp-utils/crypto/RandomPadding.cpp:20:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(result.dataOffset(sizeof(size)+size), randomData.data(), randomData.size()); data/cryfs-0.10.2/src/cpp-utils/crypto/RandomPadding.cpp:31:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(result.data(), data.dataOffset(sizeof(size)), size); data/cryfs-0.10.2/src/cpp-utils/crypto/symmetric/EncryptionKey.h:89:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(result->data(), _keyData->data(), numTaken); data/cryfs-0.10.2/src/cpp-utils/crypto/symmetric/EncryptionKey.h:97:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(result->data(), _keyData->dataOffset(numDropped), resultSize); data/cryfs-0.10.2/src/cpp-utils/data/Data.h:135:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(copy._data, _data, _size); data/cryfs-0.10.2/src/cpp-utils/data/Data.h:142:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(copy.data(), dataOffset(prefixSize), copy.size()); data/cryfs-0.10.2/src/cpp-utils/data/DataFixture.h:21:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(result.data(), data.data(), SIZE); data/cryfs-0.10.2/src/cpp-utils/data/DataUtils.cpp:8:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(newData.data(), data.data(), std::min(newData.size(), data.size())); data/cryfs-0.10.2/src/cpp-utils/data/Deserializer.h:120:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(static_cast<char*>(target), static_cast<const char*>(_source->dataOffset(_pos)), size); data/cryfs-0.10.2/src/cpp-utils/data/FixedSizeData.h:96:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(target, _data.data(), BINARY_LENGTH); data/cryfs-0.10.2/src/cpp-utils/data/FixedSizeData.h:102:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(result._data.data(), source, BINARY_LENGTH); data/cryfs-0.10.2/src/cpp-utils/data/FixedSizeData.h:110:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(result._data.data(), _data.data(), size); data/cryfs-0.10.2/src/cpp-utils/data/FixedSizeData.h:118:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(result._data.data(), _data.data()+size, SIZE-size); data/cryfs-0.10.2/src/cpp-utils/data/SerializationHelper.h:33:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(dst, &obj, sizeof(DataType)); data/cryfs-0.10.2/src/cpp-utils/data/SerializationHelper.h:54:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(&result, src, sizeof(DataType)); data/cryfs-0.10.2/src/cpp-utils/data/Serializer.h:127:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(static_cast<char*>(_result.dataOffset(_pos)), static_cast<const char*>(data), count); data/cryfs-0.10.2/src/cpp-utils/random/RandomDataBuffer.h:36:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(target, _data.dataOffset(_usedUntil), numBytes); data/cryfs-0.10.2/src/cpp-utils/random/RandomDataBuffer.h:45:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(combined.dataOffset(oldSize), newData.data(), newData.size()); data/cryfs-0.10.2/src/cpp-utils/thread/debugging_nonwindows.cpp:42:56: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). explicit OpenFileRAII(const char* filename) : fd(::open(filename, O_RDONLY | O_CLOEXEC)) {} data/cryfs-0.10.2/src/cryfs/filesystem/CryFile.cpp:35:37: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). unique_ref<fspp::OpenFile> CryFile::open(fspp::openflags_t flags) { data/cryfs-0.10.2/src/cryfs/filesystem/CryFile.h:17:40: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). cpputils::unique_ref<fspp::OpenFile> open(fspp::openflags_t flags) override; data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FsBlobView.h:68:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(dataWithoutHeader.data(), data.dataOffset(HEADER_SIZE), dataWithoutHeader.size()); data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/utils/DirEntry.cpp:46:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(dest, value.c_str(), value.size()+1); data/cryfs-0.10.2/src/fspp/fs_interface/File.h:16:42: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). virtual cpputils::unique_ref<OpenFile> open(fspp::openflags_t flags) = 0; data/cryfs-0.10.2/src/fspp/fstest/FsppFileTest.h:15:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file->open(fspp::openflags_t::RDONLY()); data/cryfs-0.10.2/src/fspp/fstest/FsppFileTest.h:19:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file->open(fspp::openflags_t::WRONLY()); data/cryfs-0.10.2/src/fspp/fstest/FsppFileTest.h:23:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file->open(fspp::openflags_t::RDONLY()); data/cryfs-0.10.2/src/fspp/fstest/FsppFileTest_Timestamps.h:22:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file->open(fspp::openflags_t(0)); data/cryfs-0.10.2/src/fspp/fstest/FsppFileTest_Timestamps.h:30:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file->open(fspp::openflags_t::RDONLY()); data/cryfs-0.10.2/src/fspp/fstest/FsppFileTest_Timestamps.h:38:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file->open(fspp::openflags_t::WRONLY()); data/cryfs-0.10.2/src/fspp/fstest/FsppFileTest_Timestamps.h:46:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file->open(fspp::openflags_t::RDWR()); data/cryfs-0.10.2/src/fspp/fstest/FsppOpenFileTest.h:36:48: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). auto openFile = this->LoadFile("/myfile")->open(fspp::openflags_t::RDONLY()); data/cryfs-0.10.2/src/fspp/fstest/FsppOpenFileTest.h:42:48: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). auto openFile = this->LoadFile("/myfile")->open(fspp::openflags_t::RDONLY()); data/cryfs-0.10.2/src/fspp/fstest/FsppOpenFileTest_Timestamps.h:11:40: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return this->CreateFile(path)->open(fspp::openflags_t::RDWR()); data/cryfs-0.10.2/src/fspp/fstest/FsppOpenFileTest_Timestamps.h:16:31: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). auto openFile = file->open(fspp::openflags_t::RDWR()); data/cryfs-0.10.2/src/fspp/fstest/testutils/FileTest.h:34:21: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). auto st2 = file->open(fspp::openflags_t::RDONLY())->stat(); data/cryfs-0.10.2/src/fspp/fstest/testutils/FileTest.h:47:24: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). auto openFile = file->open(fspp::openflags_t::RDONLY()); data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:116:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. int fusepp_utimens(const char *path, const timespec times[2]) { // NOLINT(cppcoreguidelines-avoid-c-arrays) data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:121:20: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return FUSE_OBJ->open(bf::path(path), fileinfo); data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:329:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(c_str, str.c_str(), str.size()+1); data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:783:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int Fuse::open(const bf::path &path, fuse_file_info *fileinfo) { data/cryfs-0.10.2/src/fspp/fuse/Fuse.h:48:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int open(const boost::filesystem::path &path, fuse_file_info *fileinfo); data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.cpp:128:22: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return _open_files.open(file->open(fspp::openflags_t(flags))); data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.cpp:128:33: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return _open_files.open(file->open(fspp::openflags_t(flags))); data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.cpp:251:22: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return _open_files.open(std::move(file)); data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.cpp:338:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(buf, target.c_str(), std::min(static_cast<int64_t>(target.size()+1), size.value())); data/cryfs-0.10.2/src/fspp/impl/FuseOpenFileList.h:34:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int open(cpputils::unique_ref<OpenFile> file); data/cryfs-0.10.2/src/fspp/impl/FuseOpenFileList.h:73:30: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). inline int FuseOpenFileList::open(cpputils::unique_ref<OpenFile> file) { data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:172:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(begin.data(), expected.data(), start); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:173:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(end.data(), expected.dataOffset(start+count), end.size()); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datanodestore/DataLeafNodeTest.cpp:54:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(randomData.data(), dataFixture.data(), randomData.size()); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datanodestore/DataLeafNodeTest.cpp:295:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(begin.data(), expected.data(), start); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datanodestore/DataLeafNodeTest.cpp:296:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(end.data(), expected.dataOffset(start+count), end.size()); data/cryfs-0.10.2/test/blockstore/implementations/compressing/compressors/testutils/CompressorTest.cpp:49:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(data.dataOffset(1024), DataFixture::generate(1024).data(), 1024); data/cryfs-0.10.2/test/blockstore/implementations/compressing/compressors/testutils/CompressorTest.cpp:75:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(data.dataOffset(RUN_SIZE), DataFixture::generate(RUN_SIZE).data(), RUN_SIZE); data/cryfs-0.10.2/test/blockstore/interface/BlockStore2Test.cpp:55:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(data.data(), fixture.data(), size); data/cryfs-0.10.2/test/blockstore/interface/BlockStoreTest.cpp:71:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(data.data(), fixture.data(), size); data/cryfs-0.10.2/test/blockstore/testutils/BlockStoreTest_Data.h:121:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(read.data(), static_cast<const uint8_t*>(block.data()) + offset, count); data/cryfs-0.10.2/test/blockstore/testutils/BlockStoreTest_Data.h:129:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(begin.data(), expected.data(), start); data/cryfs-0.10.2/test/blockstore/testutils/BlockStoreTest_Data.h:130:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(end.data(), expected.dataOffset(start+count), end.size()); data/cryfs-0.10.2/test/cryfs/config/CryConfigLoaderTest.cpp:56:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(target, _output.data(), bytes); data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:41:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int open(int fileid, int flags) { data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:42:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return list.open(make_unique_ref<MockOpenFile>(fileid, flags)); data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:44:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int open() { data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:45:12: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return open(FILEID1, FILEID2); data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:65:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int valid_id = open(); data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:71:12: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int id = open(FILEID1, FLAGS1); data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:76:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int id1 = open(FILEID1, FLAGS1); data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:77:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int id2 = open(FILEID2, FLAGS2); data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:84:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int id1 = open(FILEID1, FLAGS1); data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:85:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int id2 = open(FILEID2, FLAGS2); data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:86:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int id3 = open(FILEID3, FLAGS3); data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:105:12: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int id = open(); data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:113:12: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int id = open(); data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:114:3: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). open(); data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:130:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int valid_id = open(); data/cryfs-0.10.2/test/fspp/testutils/InMemoryFile.cpp:13:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(buf, _data.dataOffset(offset.value()), realCount.value()); data/cryfs-0.10.2/test/fspp/testutils/InMemoryFile.cpp:35:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(_data.dataOffset(offset.value()), buf, count.value()); data/cryfs-0.10.2/test/fspp/testutils/InMemoryFile.cpp:46:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(newfile.data(), _data.data(), _data.size()); data/cryfs-0.10.2/test/fspp/testutils/OpenFileHandle.h:18:56: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). OpenFileHandle(const char *path, int flags): fd_(::open(path, flags)), errno_(fd_ >= 0 ? 0 : errno) { data/cryfs-0.10.2/test/fspp/testutils/OpenFileHandle.h:21:68: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). OpenFileHandle(const char *path, int flags, int flags2): fd_(::open(path, flags, flags2)), errno_(fd_ >= 0 ? 0 : errno) { data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/TestPrograms/test_ppc_power7.cxx:23:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char res[16]; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:912:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp, inBlocks, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:921:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(const_cast<byte*>(inBlocks), temp, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:980:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp, inBlocks, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:985:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp, xorBlocks, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:996:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp, xorBlocks, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1001:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(outBlocks, temp, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1067:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp, inBlocks, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1080:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(const_cast<byte*>(inBlocks), temp, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1160:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp, inBlocks, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1169:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(const_cast<byte*>(inBlocks), temp, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1229:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp, inBlocks, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1234:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp, xorBlocks, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1246:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp, xorBlocks, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1252:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(outBlocks, temp, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1644:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp, inBlocks, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1655:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(const_cast<byte*>(inBlocks), temp, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1730:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp, inBlocks, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1735:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp, xorBlocks, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1746:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp, xorBlocks, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1751:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(outBlocks, temp, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1832:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp+LowOffset, inBlocks, 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1833:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp+HighOffset, inBlocks, 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1926:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp+LowOffset, inBlocks, 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:1927:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp+HighOffset, inBlocks, 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:2005:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp+LowOffset, inBlocks, 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:2006:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp+HighOffset, inBlocks, 8); // don't care data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:2011:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp+LowOffset, xorBlocks, 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:2012:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp+HighOffset, xorBlocks, 8); // don't care data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:2025:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp+LowOffset, xorBlocks, 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:2026:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(temp+HighOffset, xorBlocks, 8); // don't care data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/adv_simd.h:2032:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(outBlocks, temp+LowOffset, 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aes_armv4.h:23:33: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. void AES_encrypt(const unsigned char in[16], unsigned char out[16], const unsigned int *rkey); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aes_armv4.h:23:55: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. void AES_encrypt(const unsigned char in[16], unsigned char out[16], const unsigned int *rkey); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aes_armv4.h:24:33: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. void AES_decrypt(const unsigned char in[16], unsigned char out[16], const unsigned int *rkey); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aes_armv4.h:24:55: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. void AES_decrypt(const unsigned char in[16], unsigned char out[16], const unsigned int *rkey); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aria.cpp:162:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(t, w1, 16); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aria.cpp:170:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(w2, t, 16); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aria.cpp:222:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(t, a, 16); ::memcpy(a, z, 16); ::memcpy(z, t, 16); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aria.cpp:222:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(t, a, 16); ::memcpy(a, z, 16); ::memcpy(z, t, 16); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aria.cpp:222:45: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(t, a, 16); ::memcpy(a, z, 16); ::memcpy(z, t, 16); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aria.cpp:229:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(s, t, 16); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aria.cpp:233:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(a, t, 16); ::memcpy(z, s, 16); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aria.cpp:233:26: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(a, t, 16); ::memcpy(z, s, 16); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/aria.cpp:238:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(z, t, 16); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/authenc.cpp:25:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data+num, input, blockSize-num); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/authenc.cpp:34:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data+num, input, len); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/authenc.cpp:49:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, input, len); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blake2.cpp:403:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_key, key, length); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blake2.cpp:435:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_key, key, length); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blake2.cpp:491:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_block.data(), block.data(), m_block.size()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blake2.cpp:524:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_block.data(), block.data(), m_block.size()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blake2.cpp:550:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_state.m_buf+m_state.m_len, input, fill); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blake2.cpp:572:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_state.m_buf+m_state.m_len, input, length); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blake2.cpp:587:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_state.m_buf+m_state.m_len, input, fill); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blake2.cpp:610:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_state.m_buf + m_state.m_len, input, length); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blake2.cpp:635:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(hash, m_state.h(), size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blake2.cpp:660:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(hash, m_state.h(), size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blowfish.cpp:16:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pbox, p_init, sizeof(p_init)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/blowfish.cpp:17:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sbox, s_init, sizeof(s_init)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cbcmac.cpp:50:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mac, m_reg, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ccm.cpp:37:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_buffer+1, iv, len); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ccm.cpp:63:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cbcBuffer+1, m_buffer+1, REQUIRED_BLOCKSIZE-1-m_L); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/chacha.cpp:453:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_state+4, m_state+KEY, 8*sizeof(word32)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/chacha.cpp:545:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_state+4, m_state+KEY, 8*sizeof(word32)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cmac.cpp:69:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_reg+2*blockSize, m_reg+blockSize, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cmac.cpp:133:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mac, m_reg, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/cpu.cpp:96:18: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). version = std::atoi(machine.substr(pos).c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/darn.cpp:147:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(output, m_temp, i); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/darn.cpp:163:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(output, m_temp, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/darn.cpp:173:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(output, m_temp, i); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/darn.cpp:188:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(output, m_temp, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/datatest.cpp:161:15: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). repeat = ::atoi(s1.c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/datatest.cpp:266:39: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). *reinterpret_cast<int *>(pValue) = atoi(value.c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/default.cpp:51:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, outBuf, bufSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/default.cpp:62:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(out, outBuf, outLen); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/default.cpp:71:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(temp, passphrase, passphraseLength); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/default.cpp:73:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(temp+passphraseLength, salt, saltLength); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/default.cpp:78:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(key, keyIV, Info::KEYLENGTH); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/default.cpp:79:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(IV, keyIV+Info::KEYLENGTH, Info::BLOCKSIZE); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/des.cpp:453:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_x1, key + (IsForwardTransformation() ? 0 : 16), BLOCKSIZE); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/des.cpp:455:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_x3, key + (IsForwardTransformation() ? 16 : 0), BLOCKSIZE); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_32.cpp:1246:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(work, in, len); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_32.cpp:1330:33: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. contract256_window4_modm(signed char r[64], const bignum256modm in) { data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_32.cpp:1367:39: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. contract256_slidingwindow_modm(signed char r[256], const bignum256modm s, int windowsize) { data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_32.cpp:1645:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. signed char slide1[256], slide2[256]; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_32.cpp:1724:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. signed char b[64]; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_64.cpp:938:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(work, in, len); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_64.cpp:994:33: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. contract256_window4_modm(signed char r[64], const bignum256modm in) { data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_64.cpp:1021:39: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. contract256_slidingwindow_modm(signed char r[256], const bignum256modm s, int windowsize) { data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_64.cpp:1360:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. signed char slide1[256], slide2[256]; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_64.cpp:1439:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. signed char b[64]; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/drbg.h:641:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output, m_v, count); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/elgamal.h:66:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(block+modulusLen-2-plainTextLength, plainText, plainTextLength); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/esign.cpp:115:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(seed + 4, seedParam.begin(), seedParam.size()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fhmqv.h:112:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(publicKey, privateKey+StaticPrivateKeyLength(), EphemeralPublicKeyLength()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/files.cpp:49:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). m_file->open(fileNameWide, std::ios::in | binary); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/files.cpp:56:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). m_file->open(fileName, std::ios::in | binary); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/files.cpp:204:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). m_file->open(fileNameWide, std::ios::out | std::ios::trunc | binary); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/files.cpp:211:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). m_file->open(fileName, std::ios::out | std::ios::trunc | binary); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/filters.cpp:295:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(outString, ptr, numberOfBytes); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/filters.cpp:296:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(PtrAdd(outString, numberOfBytes), m_begin, m_size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/filters.cpp:310:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(end, inString, len); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/filters.cpp:312:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_buffer, PtrAdd(inString, len), length-len); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/filters.cpp:761:20: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (inString) {memcpy(space, inString, length);} data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/filters.cpp:794:19: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (inString) {memcpy(space, inString, length);} data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/filters.cpp:911:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (inString) {memcpy(m_expectedHash, inString, m_expectedHash.size());} data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/filters.cpp:1106:19: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (inString) {memcpy(m_signature, inString, m_signature.size());} data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:277:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(x + k, text[pos / blockSize] + pos % blockSize, blockSize - pos % blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:431:18: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int modLen = atol(m_bracketString.substr(6).c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:438:13: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int n = atol(m_data["N"].c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:453:13: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int n = atol(m_data["N"].c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:481:18: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int modLen = atol(m_bracketString.substr(6).c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:540:13: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int c = atol(m_data["c"].c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:589:30: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). EC_KeyPair<ECP>(output, atol(m_data["N"].c_str()), name2oid[m_bracketString]); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:591:31: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). EC_KeyPair<EC2N>(output, atol(m_data["N"].c_str()), name2oid[m_bracketString]); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:640:18: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int modLen = atol(m_bracketString.substr(6).c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:717:15: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int len = atol(m_data["Len"].c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:792:15: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int Tlen = atol(m_data["Tlen"].c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:921:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(IB[j+1], IB[j]+K/8, blockSize-K/8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:922:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(IB[j+1]+blockSize-K/8, CT[j], K/8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:931:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(IB[j+1], IB[j]+K/8, blockSize-K/8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:932:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(IB[j+1]+blockSize-K/8, CT[j], K/8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:1130:32: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). m_compactString.push_back(atol(tokens[i].c_str())); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:1238:23: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). mode = IntToString(atol(filename.substr(3, 3).c_str())); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipsalgt.cpp:1247:47: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). unsigned int feedbackSize = mode == "CFB" ? atoi(filename.substr(filename.find_first_of("0123456789")).c_str()) : 0; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipstest.cpp:299:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char moduleFilenameBuf[FIPS_MODULE_MAX_PATH] = ""; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipstest.cpp:303:3: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wideModuleFilename[FIPS_MODULE_MAX_PATH]; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipstest.cpp:306:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). moduleStream.open(wideModuleFilename, std::ios::in | std::ios::binary); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipstest.cpp:319:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). moduleStream.open(moduleFilename, std::ios::in | std::ios::binary); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gcm.cpp:327:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hashBuffer, iv, len); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gcm.cpp:344:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_buffer, iv, len); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gcm_simd.cpp:631:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(mulTable+i, temp+0, 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gcm_simd.cpp:635:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(mulTable+i+8, temp+0, 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gcm_simd.cpp:641:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(mulTable+i, temp+0, 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gcm_simd.cpp:645:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(mulTable+i+8, temp+0, 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gfpcrypt.h:355:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(t, block + offset, rlen); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/gfpcrypt.h:361:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(t + offset, block, rlen - offset); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hkdf.h:167:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(derived, buffer, segmentLen); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hmac.cpp:26:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(AccessIpad(), userKey, keylength); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/hmqv.h:111:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(publicKey, privateKey+StaticPrivateKeyLength(), EphemeralPublicKeyLength()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/integer.cpp:2557:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(R, X+N, N*WORD_SIZE); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/integer.cpp:2583:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(R, X+N, N*WORD_SIZE); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/integer.cpp:3542:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_counterAndSeed + 4, seed, ClampSize(seedSize)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/iterhash.cpp:36:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. {std::memcpy(data+num, input, blockSize-num);} data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/iterhash.cpp:47:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. {std::memcpy(data+num, input, length);} data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/iterhash.cpp:72:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. { std::memcpy(data, input, blockSize); } data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/iterhash.cpp:82:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(data, input, length); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/iterhash.cpp:114:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(dataBuf, input, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/iterhash.cpp:128:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(dataBuf, input, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/iterhash.cpp:186:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(digest, stateBuf, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/kalyna.cpp:82:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(odd, even + V, U - V); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/kalyna.cpp:83:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(odd + U - V, even, V); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/kalyna.cpp:435:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(k, key, 16); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/kalyna.cpp:501:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ka, key, 16); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/kalyna.cpp:502:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ko, key + 2, 16); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/kalyna.cpp:512:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(k, key, 256 / 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/kalyna.cpp:611:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(k, key, 32); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/kalyna.cpp:705:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ka, key, 32); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/kalyna.cpp:706:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ko, key+4, 32); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/kalyna.cpp:716:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(k, key, 512 / 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/kalyna.cpp:836:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(k, key, 512 / 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/keccak.cpp:63:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(hash, m_state, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/keccak_simd.cpp:67:20: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. double x; std::memcpy(&x, &a, 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/lubyrack.h:118:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(outBlock, this->buffer, 2*this->S); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/md2.cpp:64:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_buf+m_count, buf, L); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/md2.cpp:74:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_X+16, m_buf, 16); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/md2.cpp:114:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hash, m_X, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mersenne.h:76:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output, &temp, 4); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/misc.h:121:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char dummy[2*b-1]; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/misc.h:464:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest, src, count); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/misc.h:2391:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&temp, block, sizeof(T)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/misc.h:2434:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (xorBlock) {memcpy(&t2, xorBlock, sizeof(T)); t1 ^= t2;} data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/misc.h:2435:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(block, &t1, sizeof(T)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modes.cpp:47:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_register, PtrAdd(output,(iterationCount-1)*s), s); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modes.cpp:52:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_temp, PtrAdd(input,(iterationCount-1)*s), s); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modes.cpp:56:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_register, m_temp, s); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modes.cpp:111:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_register, PtrAdd(keystreamBuffer, (iterationCount-1)*s), s); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modes.cpp:207:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_register, PtrAdd(outString, length - blockSize), blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modes.cpp:222:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(outString, m_register, inLength); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modes.cpp:232:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(PtrAdd(outString, blockSize), m_register, inLength); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modes.cpp:238:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(outString, m_register, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modes.cpp:256:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_temp, PtrAdd(inString,length-blockSize), blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modes.cpp:284:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_temp, pn2, blockSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modes.cpp:290:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(outString, m_temp, inLength); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modes.cpp:294:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(PtrAdd(outString, blockSize), m_temp, inLength); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/modes.cpp:296:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_temp, pn1, inLength); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mqv.h:157:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(publicKey, privateKey+StaticPrivateKeyLength(), EphemeralPublicKeyLength()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/oaep.cpp:45:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(maskedDB+dbLen-inputLength, input, inputLength); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/oaep.cpp:92:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output, M, maskedDB+dbLen-M); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/osrng.cpp:134:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). m_fd = open("/dev/urandom",O_RDONLY); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/osrng.cpp:199:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). m_fd = open(CRYPTOPP_BLOCKING_RNG_FILENAME,O_RDONLY); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/padlkrng.cpp:63:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(output, m_buffer, rem); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/padlkrng.cpp:82:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(output, buffer, rem); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/panama.cpp:452:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hash, m_buf, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/panama.cpp:463:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_key, key, 32); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/panama.cpp:479:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_buf, iv, 32); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pkcspad.cpp:83:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pkcsBlock+pkcsBlockLen-inputLen, input, inputLen); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pkcspad.cpp:115:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (output, pkcsBlock+i, outputLen); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pkcspad.cpp:152:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pHashId, hashIdentifier.first, hashIdentifier.second); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/poly1305.cpp:159:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(mac, m, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/poly1305.cpp:253:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_acc, input, rem); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/poly1305.cpp:369:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_acc, input, rem); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pssr.cpp:87:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(representative + representativeByteLength - u, hashIdentifier.first, hashIdentifier.second); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pssr.cpp:137:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(recoverableMessage, M+1, recoverableMessageLength); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pwdbased.h:140:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(derived, buffer, derivedLen); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pwdbased.h:269:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(derived, buffer, segmentLen); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/pwdbased.h:450:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(derived, Ai, segmentLen); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/queue.cpp:49:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_buf+m_tail, begin, l); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/queue.cpp:66:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(target, m_buf+m_head, len); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/queue.cpp:396:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_head->m_buf + m_head->m_head, inString + length, len); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/randpool.cpp:60:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(&tt1, m_seed.data()+8, 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/randpool.cpp:61:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(m_seed.data()+8, &(tt2 += tt1), 8); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/randpool.cpp:116:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(key, pool, key.size()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rc2.cpp:18:24: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char PITABLE[256] = { data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rc2.cpp:37:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(L, key, keyLen); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rdrand.cpp:122:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(output, &val, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rdrand.cpp:136:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(output, &val, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rdrand.cpp:227:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(output, &val, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rdrand.cpp:241:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(output, &val, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rijndael.cpp:333:44: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern "C" void AES_encrypt(const unsigned char in[16], unsigned char out[16], const word32 *rkey); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rijndael.cpp:333:66: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern "C" void AES_encrypt(const unsigned char in[16], unsigned char out[16], const word32 *rkey); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rijndael.cpp:334:44: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern "C" void AES_decrypt(const unsigned char in[16], unsigned char out[16], const word32 *rkey); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rijndael.cpp:334:66: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern "C" void AES_decrypt(const unsigned char in[16], unsigned char out[16], const word32 *rkey); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rijndael_simd.cpp:456:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(rk, userKey, keyLen); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/rng.cpp:128:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_lastBlock, m_randseed, m_size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/salsa.cpp:704:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_key.begin()+4, m_key.begin(), 16); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/seal.cpp:41:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Z, H, 20); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sha.cpp:420:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(state, s, sizeof(s)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sha.cpp:428:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(state, s, sizeof(s)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sha.cpp:944:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(state, s, sizeof(s)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sha.cpp:954:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(state, s, sizeof(s)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sha3.cpp:67:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(hash, m_state, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/shake.cpp:76:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(hash, m_state, segmentLen); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/siphash.h:163:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_acc+m_idx, input, head); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/siphash.h:198:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_acc+m_idx, input, tail); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/sm3.cpp:237:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(state, s, sizeof(s)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/strciphr.cpp:39:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(outString, PtrSub(KeystreamBufferEnd(), m_leftOver), len); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/strciphr.cpp:63:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(outString, PtrSub(KeystreamBufferEnd(), bufferByteSize), length); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/strciphr.cpp:235:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(outString, inString, length); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/strciphr.cpp:265:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output, reg, length); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:197:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char thisSeed[1024], privFilename[128], pubFilename[128]; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:224:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char privFilename[128], pubFilename[128]; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:225:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char thisSeed[1024], message[1024]; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:347:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char passPhrase[MAX_PHRASE_LENGTH], plaintext[1024]; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:373:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char passPhrase[MAX_PHRASE_LENGTH]; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:383:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char thisSeed[1024]; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:735:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char extension[5] = ".000"; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:791:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char extension[5] = ".000"; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/tiger.cpp:49:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hash, m_state, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ttmac.cpp:47:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_key, userKey, KEYLENGTH); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/ttmac.cpp:108:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hash, m_digest, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat10.cpp:416:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(sk, data.sk, crypto_sign_SEEDBYTES); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat10.cpp:417:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(sk+crypto_sign_SEEDBYTES, data.pk, crypto_sign_PUBLICKEYBYTES); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat10.cpp:418:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(pk, data.pk, crypto_sign_PUBLICKEYBYTES); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat4.cpp:1461:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char stars[64]; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat4.cpp:1535:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char alphabet[64+1] = data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat5.cpp:90:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. oss << " \"" << (char *)testSet[i].input << '\"'; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat5.cpp:529:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *TestVals[7]={ data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat5.cpp:602:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *TestVals[7]={ data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat5.cpp:666:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *TestVals[8]={ data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat7.cpp:448:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(sk1, seed, 32); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat7.cpp:449:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(sk2, seed, 32); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat7.cpp:470:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(sk2, sk1, 32); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat7.cpp:471:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(pk2, pk1, 32); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat7.cpp:501:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(sk2, sk1, 32); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat7.cpp:502:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(pk2, pk1, 32); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat7.cpp:509:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(msg2, msg1, len); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat7.cpp:546:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(sk2, sk1, 32); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat7.cpp:547:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(pk2, pk1, 32); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat7.cpp:554:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(msg2, msg1, len); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validate.h:204:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char timeBuf[64]; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validate.h:288:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file.open(name.c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validate.h:295:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file.open(name.c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validate.h:302:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file.open(name.c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validate.h:317:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file.open(name.c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validate.h:323:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file.open(name.c_str()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/vmac.cpp:136:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(storedNonce+s-length, nonce, length); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/vmac.cpp:150:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(storedNonce+s-length, nonce, length-1); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/vmac.cpp:857:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mac, t, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/vmac.cpp:869:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mac, &t, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/whrlpool.cpp:121:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(hash, m_state, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/words.h:28:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(r, a, n*WORD_SIZE); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.cpp:76:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_pk, y, SECRET_KEYLENGTH); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.cpp:77:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_sk, x, PUBLIC_KEYLENGTH); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.cpp:85:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_sk, x, SECRET_KEYLENGTH); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.cpp:194:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_pk.begin(), subjectPublicKey, PUBLIC_KEYLENGTH); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.cpp:321:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_sk, val.begin(), SECRET_KEYLENGTH); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.cpp:326:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_pk, val.begin(), PUBLIC_KEYLENGTH); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.cpp:442:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_sk, val.begin(), SECRET_KEYLENGTH); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.cpp:447:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_pk, val.begin(), PUBLIC_KEYLENGTH); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.cpp:527:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_pk.begin(), subjectPublicKey, PUBLIC_KEYLENGTH); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.cpp:728:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_pk, ba.begin(), PUBLIC_KEYLENGTH); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.cpp:795:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_pk.begin(), subjectPublicKey, PUBLIC_KEYLENGTH); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.cpp:805:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_pk, y, PUBLIC_KEYLENGTH); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.cpp:815:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(m_pk, by, PUBLIC_KEYLENGTH); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/xed25519.h:769:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(accum.signature(), signature, STDMIN((size_t)SIGNATURE_LENGTH, signatureLength)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/zdeflate.cpp:349:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_byteBuffer, m_byteBuffer + DSIZE, DSIZE); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/zdeflate.cpp:374:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_byteBuffer + m_stringStart + m_lookahead, str, accepted); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/zdeflate.cpp:686:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(combinedLengths, literalCodeLengths, (hlit+257)*sizeof(unsigned int)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/zdeflate.cpp:687:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(combinedLengths+hlit+257, distanceCodeLengths, (hdist+1)*sizeof(unsigned int)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/zinflate.cpp:258:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_window + m_current, string, len); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/zinflate.cpp:296:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(m_window + m_current, m_window + start, length); data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-internal-utils_test.cc:479:20: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int skip_count = atoi(log.substr(expected_message.size()).c_str()); data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-more-actions_test.cc:630:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ch[4] = {}; data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-port.h:2500:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return fopen(path, mode); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample2.cc:44:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(clone, a_c_string, len + 1); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-death-test.cc:334:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-death-test.cc:756:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char executable_path[_MAX_PATH + 1]; // NOLINT data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-death-test.cc:1205:22: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). const int cwd_fd = open(".", O_RDONLY); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-filepath.cc:103:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cwd[GTEST_PATH_MAX_ + 1] = { '\0' }; data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-filepath.cc:106:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cwd[GTEST_PATH_MAX_ + 1] = { '\0' }; data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-port.cc:136:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). const int fd = open("/proc/self/as", O_RDONLY); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-port.cc:881:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, regex, len); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-port.cc:955:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_dir_path[MAX_PATH + 1] = { '\0' }; // NOLINT data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-port.cc:956:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_file_path[MAX_PATH + 1] = { '\0' }; // NOLINT data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-port.cc:993:29: [2] (tmpfile) mkstemp: Potential for temporary file vulnerability in some circumstances. Some older Unix-like systems create temp files with permission to write by all by default, so be sure to set the umask to override this. Also, some older Unix systems might fail to use O_EXCL when opening the file, so make sure that O_EXCL is used by the library (CWE-377). const int captured_fd = mkstemp(name_template); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-printers.cc:66:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char text[5] = ""; data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:875:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ansi, length, data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:878:3: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). MultiByteToWideChar(CP_ACP, 0, ansi, length, data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:1694:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error_text[kBufSize] = { '\0' }; data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:1778:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[5]; // Big enough for the largest valid code point. data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-filepath_test.cc:361:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char current_drive[_MAX_PATH]; // NOLINT data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-filepath_test.cc:378:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char non_drive[_MAX_PATH]; // NOLINT data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-printers_test.cc:131:32: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. UnprintableInFoo() : z_(0) { memcpy(xy_, "\xEF\x12\x0\x0\x34\xAB\x0\x0", 8); } data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-printers_test.cc:134:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char xy_[8]; data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-printers_test.cc:1136:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char array[257]; data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:7661:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char a[3] = "hi"; data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest_unittest.cc:7745:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char a[2][3] = { "hi", "lo" }; data/cryfs-0.10.2/vendor/googletest/gtest/googletest/xcode/Samples/FrameworkSample/widget_test.cc:58:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[max_size]; data/cryfs-0.10.2/vendor/spdlog/spdlog/details/file_helper.h:47:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). void open(const filename_t& fname, bool truncate = false) data/cryfs-0.10.2/vendor/spdlog/spdlog/details/file_helper.h:68:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). open(_filename, truncate); data/cryfs-0.10.2/vendor/spdlog/spdlog/details/logger_impl.h:350:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char date_buf[100]; data/cryfs-0.10.2/vendor/spdlog/spdlog/details/mpmc_bounded_q.h:160:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char cacheline_pad_t[cacheline_size]; data/cryfs-0.10.2/vendor/spdlog/spdlog/details/os.h:180:11: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). *fp = fopen((filename.c_str()), mode.c_str()); data/cryfs-0.10.2/vendor/spdlog/spdlog/details/os.h:398:36: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. inline std::string errno_to_string(char buf[256], int res) data/cryfs-0.10.2/vendor/spdlog/spdlog/details/os.h:413:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/format.cc:305:16: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). int length = MultiByteToWideChar( data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/format.cc:310:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). length = MultiByteToWideChar( data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/format.h:457:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[2]; // The buffer size must be >= 2 or _ecvt_s will fail. data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/format.h:1328:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char Yes[1]; data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/format.h:1329:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char No[2]; data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/format.h:3341:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prefix[4] = ""; data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/format.h:3881:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. mutable char buffer_[BUFFER_SIZE]; data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/posix.cc:76:35: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FMT_RETRY_VAL(file_, FMT_SYSTEM(fopen(filename.c_str(), mode.c_str())), 0); data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/posix.cc:106:33: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FMT_RETRY(fd_, FMT_POSIX_CALL(open(path.c_str(), oflag, mode))); data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/file_sinks.h:34:22: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). _file_helper.open(filename, truncate); data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/file_sinks.h:76:22: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). _file_helper.open(calc_filename(_base_filename, 0)); data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/file_sinks.h:207:22: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). _file_helper.open(FileNameCalc::calc_filename(_base_filename)); data/cryfs-0.10.2/vendor/spdlog/spdlog/sinks/file_sinks.h:216:26: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). _file_helper.open(FileNameCalc::calc_filename(_base_filename)); data/cryfs-0.10.2/src/blobstore/implementations/onblocks/BlobOnBlocks.cpp:39:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). void BlobOnBlocks::read(void *target, uint64_t offset, uint64_t count) const { data/cryfs-0.10.2/src/blobstore/implementations/onblocks/BlobOnBlocks.h:32:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). void read(void *target, uint64_t offset, uint64_t size) const override; data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datanodestore/DataLeafNode.cpp:39:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). void DataLeafNode::read(void *target, uint64_t offset, uint64_t size) const { data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datanodestore/DataLeafNode.h:23:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). void read(void *target, uint64_t offset, uint64_t size) const; data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/DataTree.cpp:254:7: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read != count) { data/cryfs-0.10.2/src/blobstore/implementations/onblocks/datatreestore/DataTree.cpp:288:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). leaf.node()->read(static_cast<uint8_t*>(target) + indexOfFirstLeafByte - offset + leafDataOffset, leafDataOffset, leafDataSize); data/cryfs-0.10.2/src/blobstore/interface/Blob.h:23:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). virtual void read(void *target, uint64_t offset, uint64_t size) const = 0; data/cryfs-0.10.2/src/blockstore/implementations/caching/CachingBlockStore2.cpp:34:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). const Data& CachingBlockStore2::CachedBlock::read() const { data/cryfs-0.10.2/src/blockstore/implementations/caching/CachingBlockStore2.cpp:107:38: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). optional<Data> result = (*loaded)->read().copy(); data/cryfs-0.10.2/src/blockstore/implementations/caching/CachingBlockStore2.h:35:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). const cpputils::Data& read() const; data/cryfs-0.10.2/src/blockstore/implementations/compressing/compressors/RunLengthEncoding.cpp:118:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). stream->read(reinterpret_cast<char*>(&size), sizeof(uint16_t)); data/cryfs-0.10.2/src/blockstore/implementations/compressing/compressors/RunLengthEncoding.cpp:121:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). stream->read(static_cast<char*>(run.data()), size); data/cryfs-0.10.2/src/blockstore/implementations/compressing/compressors/RunLengthEncoding.cpp:128:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). stream->read(reinterpret_cast<char*>(&size), sizeof(uint16_t)); data/cryfs-0.10.2/src/blockstore/implementations/compressing/compressors/RunLengthEncoding.cpp:131:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). stream->read(reinterpret_cast<char*>(&value), 1); data/cryfs-0.10.2/src/cpp-utils/data/Data.cpp:43:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). stream.read(static_cast<char*>(result.data()), result.size()); data/cryfs-0.10.2/src/cpp-utils/process/SignalCatcher.cpp:37:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ASSERT(0 == _catchers.read([] (auto& catchers) {return catchers.size();}), "Leftover signal catchers that weren't destroyed"); data/cryfs-0.10.2/src/cpp-utils/process/SignalCatcher.cpp:42:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return _catchers.read([&](auto& catchers) { data/cryfs-0.10.2/src/cpp-utils/process/daemonize.cpp:34:5: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). umask(0); data/cryfs-0.10.2/src/cpp-utils/thread/LeftRight.h:50:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). auto read(F&& readFunc) const { data/cryfs-0.10.2/src/cpp-utils/thread/debugging_nonwindows.cpp:61:7: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). n = read(file.fd, name, len); data/cryfs-0.10.2/src/cryfs/filesystem/CryOpenFile.cpp:44:32: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fspp::num_bytes_t CryOpenFile::read(void *buf, fspp::num_bytes_t count, fspp::num_bytes_t offset) const { data/cryfs-0.10.2/src/cryfs/filesystem/CryOpenFile.cpp:47:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return _fileBlob->read(buf, offset, count); data/cryfs-0.10.2/src/cryfs/filesystem/CryOpenFile.h:19:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fspp::num_bytes_t read(void *buf, fspp::num_bytes_t count, fspp::num_bytes_t offset) const override; data/cryfs-0.10.2/src/cryfs/filesystem/cachingfsblobstore/FileBlobRef.h:27:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fspp::num_bytes_t read(void *target, fspp::num_bytes_t offset, fspp::num_bytes_t count) const { data/cryfs-0.10.2/src/cryfs/filesystem/cachingfsblobstore/FileBlobRef.h:28:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return _base->read(target, offset, count); data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FileBlob.cpp:24:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fspp::num_bytes_t FileBlob::read(void *target, fspp::num_bytes_t offset, fspp::num_bytes_t count) const { data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FileBlob.h:16:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fspp::num_bytes_t read(void *target, fspp::num_bytes_t offset, fspp::num_bytes_t count) const; data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FsBlobView.h:72:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). void read(void *target, uint64_t offset, uint64_t size) const override { data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FsBlobView.h:73:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return _baseBlob->read(target, offset + HEADER_SIZE, size); data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FsBlobView.h:99:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob.read(&actualFormatVersion, 0, sizeof(FORMAT_VERSION_HEADER)); data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FsBlobView.h:120:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob.read(&result, sizeof(FORMAT_VERSION_HEADER), sizeof(uint8_t)); data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/FsBlobView.h:126:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). _baseBlob->read(idData.data(), sizeof(FORMAT_VERSION_HEADER) + sizeof(uint8_t), blockstore::BlockId::BINARY_LENGTH); data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/SymlinkBlob.cpp:33:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob.read(targetStr.get(), 0, blob.size()); data/cryfs-0.10.2/src/cryfs/filesystem/fsblobstore/utils/DirEntry.cpp:51:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t length = strlen(*pos); data/cryfs-0.10.2/src/cryfs/filesystem/parallelaccessfsblobstore/FileBlobRef.h:23:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fspp::num_bytes_t read(void *target, fspp::num_bytes_t offset, fspp::num_bytes_t count) const { data/cryfs-0.10.2/src/cryfs/filesystem/parallelaccessfsblobstore/FileBlobRef.h:24:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return _base->read(target, offset, count); data/cryfs-0.10.2/src/fspp/fs_interface/OpenFile.h:19:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). virtual fspp::num_bytes_t read(void *buf, fspp::num_bytes_t count, fspp::num_bytes_t offset) const = 0; data/cryfs-0.10.2/src/fspp/fstest/FsppOpenFileTest.h:26:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fspp::num_bytes_t readBytes = openFile->read(data.data(), expectedSize+fspp::num_bytes_t(1), fspp::num_bytes_t(0)); data/cryfs-0.10.2/src/fspp/fstest/FsppOpenFileTest_Timestamps.h:76:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). openFile->read(buffer.data(), fspp::num_bytes_t(5), fspp::num_bytes_t(0)); data/cryfs-0.10.2/src/fspp/fstest/FsppOpenFileTest_Timestamps.h:85:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). openFile->read(buffer.data(), fspp::num_bytes_t(5), fspp::num_bytes_t(2)); data/cryfs-0.10.2/src/fspp/fstest/testutils/FileTest.h:50:45: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fspp::num_bytes_t readBytes = openFile->read(data.data(), expectedSize+fspp::num_bytes_t(1), fspp::num_bytes_t(0)); data/cryfs-0.10.2/src/fspp/fuse/Filesystem.h:35:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). virtual fspp::num_bytes_t read(int descriptor, void *buf, fspp::num_bytes_t count, fspp::num_bytes_t offset) = 0; data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:129:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return FUSE_OBJ->read(bf::path(path), buf, size, offset, fileinfo); data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:841:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int Fuse::read(const bf::path &path, char *buf, size_t size, int64_t offset, fuse_file_info *fileinfo) { data/cryfs-0.10.2/src/fspp/fuse/Fuse.cpp:848:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int result = _fs->read(fileinfo->fh, buf, fspp::num_bytes_t(size), fspp::num_bytes_t(offset)).value(); data/cryfs-0.10.2/src/fspp/fuse/Fuse.h:50:7: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int read(const boost::filesystem::path &path, char *buf, size_t size, int64_t offset, fuse_file_info *fileinfo); data/cryfs-0.10.2/src/fspp/fuse/InvalidFilesystem.h:50:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fspp::num_bytes_t read(int , void *, fspp::num_bytes_t , fspp::num_bytes_t ) override { data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.cpp:208:35: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fspp::num_bytes_t FilesystemImpl::read(int descriptor, void *buf, fspp::num_bytes_t count, fspp::num_bytes_t offset) { data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.cpp:211:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return openFile->read(buf, count, offset); data/cryfs-0.10.2/src/fspp/impl/FilesystemImpl.h:36:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fspp::num_bytes_t read(int descriptor, void *buf, fspp::num_bytes_t count, fspp::num_bytes_t offset) override; data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BigBlobsTest.cpp:85:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob->read(loaded.data(), SMALL_BLOB_SIZE, loaded.size()); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BigBlobsTest.cpp:96:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob->read(loaded.data(), LARGE_BLOB_SIZE, loaded.size()); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BigBlobsTest.cpp:108:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob->read(loaded.data(), LARGE_BLOB_SIZE+1024, loaded.size()); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BigBlobsTest.cpp:120:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob->read(loaded.data(), SMALL_BLOB_SIZE, loaded.size()); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BigBlobsTest.cpp:132:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob->read(loaded.data(), LARGE_BLOB_SIZE, loaded.size()); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:28:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob.read(data.data(), 0, data.size()); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:34:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). Data read(size); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:35:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). actual.read(read.data(), offset, size); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:35:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). actual.read(read.data(), offset, size); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:36:47: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(0, std::memcmp(expected.data(), read.data(), size)); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:69:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(0, read); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:75:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(0, read); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:81:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob->read(data.data(), 3, 5) data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:88:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob->read(data.data(), 2*LAYOUT.maxBytesPerLeaf(), 5) data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:112:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(0, read); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:118:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(0, read); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:124:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob->read(data.data(), 3, 5) data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:131:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob->read(data.data(), 2*LAYOUT.maxBytesPerLeaf(), 5) data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:239:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). Data read(GetParam().count); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:240:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob->read(read.data(), GetParam().offset, GetParam().count); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:240:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob->read(read.data(), GetParam().offset, GetParam().count); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:241:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(0, std::memcmp(read.data(), this->backgroundData.dataOffset(GetParam().offset), GetParam().count)); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:249:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(0, std::memcmp(read.data(), this->backgroundData.data(), GetParam().offset)); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:250:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(0, std::memcmp(read.dataOffset(GetParam().offset), this->foregroundData.data(), GetParam().count)); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobReadWriteTest.cpp:251:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(0, std::memcmp(read.dataOffset(GetParam().offset+GetParam().count), this->backgroundData.dataOffset(GetParam().offset+GetParam().count), GetParam().blobsize-GetParam().count-GetParam().offset)); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/BlobSizeTest.cpp:130:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). blob.read(data.data(), 0, data.size()); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datanodestore/DataLeafNodeTest.cpp:59:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). leaf.read(data.data(), 0, leaf.numBytes()); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datanodestore/DataLeafNodeTest.cpp:286:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). Data read(count); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datanodestore/DataLeafNodeTest.cpp:287:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). leaf.read(read.data(), offset, count); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datanodestore/DataLeafNodeTest.cpp:287:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). leaf.read(read.data(), offset, count); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datanodestore/DataLeafNodeTest.cpp:288:25: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(expected, read); data/cryfs-0.10.2/test/blobstore/implementations/onblocks/datatreestore/testutils/LeafDataFixture.h:34:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). leaf.read(data.data(), 0, leaf.numBytes()); data/cryfs-0.10.2/test/blockstore/testutils/BlockStoreTest_Data.h:120:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). cpputils::Data read(count); data/cryfs-0.10.2/test/blockstore/testutils/BlockStoreTest_Data.h:121:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). std::memcpy(read.data(), static_cast<const uint8_t*>(block.data()) + offset, count); data/cryfs-0.10.2/test/blockstore/testutils/BlockStoreTest_Data.h:122:25: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(expected, read); data/cryfs-0.10.2/test/cpp-utils/data/DataTest.cpp:53:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). file.read(read_data, data.size()); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:12:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int read = obj.read([] (auto& obj) {return obj;}); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:13:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(5, read); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:17:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read = obj.read([] (auto& obj) {return obj;}); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:18:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(5, read); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:25:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). vector<int> read = obj.read([] (auto& obj) {return obj;}); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:26:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ((vector<int>{5}), read); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:29:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read = obj.read([] (auto& obj) {return obj;}); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:30:36: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ((vector<int>{5, 6}), read); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:46:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). obj.read([&] (auto&) { data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:53:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). obj.read([&] (auto&) { data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:71:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). obj.read([&] (auto&) { data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:98:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). obj.read([&] (auto&) { data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:108:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). obj.read([&] (auto&) { data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:154:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). obj.read([](auto&) {throw MyException();}), data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:182:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int read = obj.read([] (auto& obj) {return obj;}); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:183:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(5, read); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:187:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read = obj.read([] (auto& obj) {return obj;}); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:188:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(5, read); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:213:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int read = obj.read([] (auto& obj) {return obj;}); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:214:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(6, read); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:218:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read = obj.read([] (auto& obj) {return obj;}); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:219:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ(6, read); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:236:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). vector<int> read = obj.read([] (auto& obj) {return obj;}); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:237:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ((vector<int>{5}), read); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:241:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read = obj.read([] (auto& obj) {return obj;}); data/cryfs-0.10.2/test/cpp-utils/thread/LeftRightTest.cpp:242:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_EQ((vector<int>{5}), read); data/cryfs-0.10.2/test/fspp/fuse/createAndOpenFile/FuseCreateAndOpenFileDescriptorTest.cpp:29:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int retval = ::read(fd, &buf, 1); data/cryfs-0.10.2/test/fspp/fuse/createAndOpenFile/FuseCreateAndOpenFileDescriptorTest.cpp:39:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_CALL(*fsimpl, read(GetParam(), _, _, _)).Times(1).WillOnce(Return(fspp::num_bytes_t(1))); data/cryfs-0.10.2/test/fspp/fuse/openFile/FuseOpenFileDescriptorTest.cpp:29:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int retval = ::read(fd, &buf, 1); data/cryfs-0.10.2/test/fspp/fuse/openFile/FuseOpenFileDescriptorTest.cpp:39:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_CALL(*fsimpl, read(GetParam(), _, _, _)).Times(1).WillOnce(Return(fspp::num_bytes_t(1))); data/cryfs-0.10.2/test/fspp/fuse/read/FuseReadErrorTest.cpp:30:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_CALL(*fsimpl, read(0, _, _, _)) data/cryfs-0.10.2/test/fspp/fuse/read/FuseReadErrorTest.cpp:44:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_CALL(*fsimpl, read(0, _, _, Eq(fspp::num_bytes_t(0)))) data/cryfs-0.10.2/test/fspp/fuse/read/FuseReadErrorTest.cpp:51:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_CALL(*fsimpl, read(0, _, _, Ne(fspp::num_bytes_t(0)))) data/cryfs-0.10.2/test/fspp/fuse/read/FuseReadFileDescriptorTest.cpp:20:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_CALL(*fsimpl, read(Eq(GetParam()), _, _, _)) data/cryfs-0.10.2/test/fspp/fuse/read/FuseReadOverflowTest.cpp:19:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_CALL(*fsimpl, read(0, _, _, _)).WillRepeatedly(ReturnSuccessfulReadRegardingSize(FILESIZE)); data/cryfs-0.10.2/test/fspp/fuse/read/FuseReadReturnedDataTest.cpp:55:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EXPECT_CALL(*fsimpl, read(0, _, _, _)) data/cryfs-0.10.2/test/fspp/fuse/read/FuseReadReturnedDataTest.cpp:61:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return testFile->read(buf, count, offset); data/cryfs-0.10.2/test/fspp/impl/FuseOpenFileListTest.cpp:22:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). MOCK_CONST_METHOD3(read, fspp::num_bytes_t(void*, fspp::num_bytes_t, fspp::num_bytes_t)); data/cryfs-0.10.2/test/fspp/testutils/FuseTest.cpp:30:20: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ON_CALL(*fsimpl, read(_,_,_,_)).WillByDefault(defaultAction); data/cryfs-0.10.2/test/fspp/testutils/FuseTest.h:53:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). MOCK_METHOD4(read, fspp::num_bytes_t(int, void*, fspp::num_bytes_t, fspp::num_bytes_t)); data/cryfs-0.10.2/test/fspp/testutils/InMemoryFile.cpp:11:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fspp::num_bytes_t InMemoryFile::read(void *buf, fspp::num_bytes_t count, fspp::num_bytes_t offset) const { data/cryfs-0.10.2/test/fspp/testutils/InMemoryFile.h:13:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). fspp::num_bytes_t read(void *buf, fspp::num_bytes_t count, fspp::num_bytes_t offset) const; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/algparam.h:31:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). Assign(reinterpret_cast<const byte *>(data), data ? strlen(data) : 0, deepCopy); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/default.cpp:86:83: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). : ProxyFilter(NULLPTR, 0, 0, attachment), m_passphrase((const byte *)passphrase, strlen(passphrase)) data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/default.cpp:145:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). , m_passphrase((const byte *)p, strlen(p)) data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/default.cpp:234:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). , m_mac(NewDataEncryptorMAC<H,MAC>((const byte *)passphrase, strlen(passphrase))) data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/default.cpp:259:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). , m_mac(NewDataEncryptorMAC<H,MAC>((const byte *)passphrase, strlen(passphrase))) data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_32.cpp:1042:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (stream.read((char*)block.begin(), block.size())) data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/donna_64.cpp:790:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (stream.read((char*)block.begin(), block.size())) data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/files.cpp:94:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). m_stream->read((char *)m_space, (unsigned int)STDMIN(size, (lword)spaceSize)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/fipstest.cpp:85:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). RandomNumberStore(rng, strlen(output)/2).TransferAllTo(comparison, "0"); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/integer.cpp:3670:6: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). in.read(&c, 1); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/misc.cpp:152:8: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = wcslen(str)+1; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/misc.cpp:216:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = std::strlen(str)+1; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/misc.cpp:289:22: [1] (free) memalign: On some systems (though not Linux-based systems) an attempt to free() results from memalign() may fail. This may, on a few systems, be exploitable. Also note that memalign() may not check that the boundary parameter is correct (CWE-676). Use posix_memalign instead (defined in POSIX's 1003.1d). Don't switch to valloc(); it is marked as obsolete in BSD 4.3, as legacy in SUSv2, and is no longer defined in SUSv3. In some cases, malloc()'s alignment may be sufficient. while ((p = (byte *)memalign(16, size)) == NULLPTR) data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mqueue.cpp:100:9: [1] (buffer) mismatch: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. goto mismatch; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mqueue.cpp:108:10: [1] (buffer) mismatch: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. goto mismatch; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mqueue.cpp:119:10: [1] (buffer) mismatch: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. goto mismatch; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mqueue.cpp:123:10: [1] (buffer) mismatch: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. goto mismatch; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mqueue.cpp:130:1: [1] (buffer) mismatch: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. mismatch: data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mqueue.cpp:151:9: [1] (buffer) mismatch: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. goto mismatch; data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/mqueue.cpp:159:1: [1] (buffer) mismatch: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. mismatch: data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/osrng.cpp:167:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ssize_t len = read(m_fd, output, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/osrng.cpp:215:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ssize_t len = read(m_fd, output, size); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/polynomi.cpp:354:6: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). in.read(&c, 1); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:277:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). dllFile.read((char *)buf.begin(), fileSize); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:468:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const size_t argLen = std::strlen(argv0); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:506:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). resolved.resize(std::strlen(&resolved[0])); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:567:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). randPool.IncorporateEntropy((byte *)seed, strlen(seed)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:586:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). randPool.IncorporateEntropy((byte *)seed, strlen(seed)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:690:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). encryptor.Put((byte *)instr, strlen(instr)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:701:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). decryptor.Put((byte *)instr, strlen(instr)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/test.cpp:724:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). rng.IncorporateEntropy((byte *)seed, strlen(seed)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat0.cpp:1564:18: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. std::equal(str.begin(), str.end(), vec.begin()) && data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat0.cpp:1566:18: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. std::equal(vec.begin(), vec.end(), vec2.begin()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat4.cpp:1106:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ECB_Mode<Blowfish>::Encryption enc2((byte *)key[i], strlen(key[i])); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat4.cpp:1110:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ECB_Mode<Blowfish>::Decryption dec2((byte *)key[i], strlen(key[i])); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat4.cpp:1117:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (int j=0; j<(signed int)(30-strlen(key[i])); j++) data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat4.cpp:1381:78: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fail = !TestFilter(HexEncoder().Ref(), data, 255, (const byte *)hexEncoded, strlen(hexEncoded)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat4.cpp:1388:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fail = !TestFilter(HexDecoder().Ref(), (const byte *)hexEncoded, strlen(hexEncoded), data, 255); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat4.cpp:1395:84: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fail = !TestFilter(Base32Encoder().Ref(), data, 255, (const byte *)base32Encoded, strlen(base32Encoded)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat4.cpp:1402:73: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fail = !TestFilter(Base32Decoder().Ref(), (const byte *)base32Encoded, strlen(base32Encoded), data, 255); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat4.cpp:1409:104: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fail = !TestFilter(Base64Encoder(new HexEncoder).Ref(), data, 255, (const byte *)base64AndHexEncoded, strlen(base64AndHexEncoded)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat4.cpp:1416:93: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fail = !TestFilter(HexDecoder(new Base64Decoder).Ref(), (const byte *)base64AndHexEncoded, strlen(base64AndHexEncoded), data, 255); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat4.cpp:1423:110: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fail = !TestFilter(Base64URLEncoder(new HexEncoder).Ref(), data, 255, (const byte *)base64URLAndHexEncoded, strlen(base64URLAndHexEncoded)); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat4.cpp:1430:99: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fail = !TestFilter(HexDecoder(new Base64URLDecoder).Ref(), (const byte *)base64URLAndHexEncoded, strlen(base64URLAndHexEncoded), data, 255); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat5.cpp:61:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). : input((byte *)input), output((byte *)output), inputLen(strlen(input)), repeatTimes(repeatTimes) {} data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat5.cpp:569:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). mac.Update((byte *)TestVals[i], strlen(TestVals[i])); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat5.cpp:572:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). || !mac.VerifyDigest(output[k][i], (byte *)TestVals[i], strlen(TestVals[i])); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat5.cpp:644:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). mac.Update((byte *)TestVals[i], strlen(TestVals[i])); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat5.cpp:647:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). || !mac.VerifyDigest(output[k][i], (byte *)TestVals[i], strlen(TestVals[i])); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat5.cpp:695:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). mac.Update((byte *)TestVals[k], strlen(TestVals[k])); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat5.cpp:698:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). || !mac.VerifyDigest(output[k], (byte *)TestVals[k], strlen(TestVals[k])); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat5.cpp:830:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). std::cout << (tuple.hexSalt ? (strlen(tuple.hexSalt) ? tuple.hexSalt : "<0-LEN SALT>") : "<NO SALT>"); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat5.cpp:832:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). std::cout << (tuple.hexInfo ? (strlen(tuple.hexInfo) ? tuple.hexInfo : "<0-LEN INFO>") : "<NO INFO>"); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:74:76: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t signatureLength = rsaPriv.SignMessage(GlobalRNG(), (byte *)plain, strlen(plain), out); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:82:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fail = !rsaPub.VerifyMessage((byte *)plain, strlen(plain), out, signatureLength); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:89:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fail = rsaPub.VerifyMessage((byte *)plain, strlen(plain), out, signatureLength); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:117:76: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t signatureLength = rsaPriv.SignMessage(GlobalRNG(), (byte *)plain, strlen(plain), out); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:125:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fail = !rsaPub.VerifyMessage((byte *)plain, strlen(plain), out, signatureLength); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:132:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fail = rsaPub.VerifyMessage((byte *)plain, strlen(plain), out, signatureLength); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:357:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const size_t len = strlen((char*)msg); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:395:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const size_t len = strlen((char*)msg); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:433:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const size_t len = strlen((char*)msg); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:470:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const size_t len = strlen((char*)msg); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:507:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const size_t len = strlen((char*)msg); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:544:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const size_t len = strlen((char*)msg); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:581:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const size_t len = strlen((char*)msg); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:618:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const size_t len = strlen((char*)msg); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:659:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fail = !verifier.VerifyMessage((byte *)plain, strlen(plain), signature, verifier.SignatureLength()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/validat9.cpp:694:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fail = !verifier.VerifyMessage((byte *)plain, strlen(plain), signature, verifier.SignatureLength()); data/cryfs-0.10.2/vendor/cryptopp/vendor_cryptopp/zdeflate.cpp:413:10: [1] (buffer) mismatch: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. std::mismatch data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-generated-matchers_test.cc:476:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). nested.push_back(list<char>(strings[i], strings[i] + strlen(strings[i]))); data/cryfs-0.10.2/vendor/googletest/gtest/googlemock/test/gmock-matchers_test.cc:4578:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int operator()(const char* s) { return static_cast<int>(strlen(s)); } data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-port.h:2489:10: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). return strncpy(dest, src, n); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-port.h:2511:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return static_cast<int>(read(fd, buf, count)); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-type-util.h:66:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (s.compare(0, strlen(prefix), prefix) == 0) { data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-type-util.h:67:47: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). std::string::size_type end = s.find("::", strlen(prefix)); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-type-util.h:70:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). s.erase(strlen("std"), end - strlen("std")); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/include/gtest/internal/gtest-type-util.h:70:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). s.erase(strlen("std"), end - strlen("std")); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample2.cc:42:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const size_t len = strlen(a_c_string); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/samples/sample2.h:77:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return c_string_ == NULL ? 0 : strlen(c_string_); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-port.cc:615:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const size_t full_regex_len = strlen(regex) + 10; data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-port.cc:869:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const size_t len = strlen(regex); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-printers.cc:335:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PrintCharsAsStringTo(s, strlen(s), os); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest-printers.cc:352:34: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). PrintCharsAsStringTo(s, std::wcslen(s), os); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:873:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int length = strlen(ansi); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:1839:34: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). num_chars = static_cast<int>(wcslen(str)); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:3640:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). segment = next_segment + strlen("]]>"); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:4179:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). result.reserve(strlen(str) + 1); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:5419:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const size_t prefix_len = strlen(prefix); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/src/gtest.cc:5815:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else if (temp_dir[strlen(temp_dir) - 1] == '\\') data/cryfs-0.10.2/vendor/googletest/gtest/googletest/test/gtest-printers_test.cc:877:20: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. EXPECT_TRUE(std::equal(a, a + kSize, numbers.begin())); data/cryfs-0.10.2/vendor/googletest/gtest/googletest/xcode/Samples/FrameworkSample/widget.cc:60:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(buffer, name_.c_str(), max_size-1); data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/format.cc:144:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (message == buffer_ && strlen(buffer_) == buffer_size_ - 1) data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/format.cc:158:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return result == 0 && strlen(buffer_) == buffer_size_ - 1 ? data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/format.h:2317:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). Arg::StringValue<char> str = { str_value, std::strlen(str_value) }; data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/format.h:2323:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). Arg::StringValue<char> str = {value, value ? std::strlen(value) : 0}; data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/posix.cc:156:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). std::size_t fmt::File::read(void *buffer, std::size_t count) { data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/posix.cc:158:36: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). FMT_RETRY(result, FMT_POSIX_CALL(read(fd_, buffer, convert_rwcount(count)))); data/cryfs-0.10.2/vendor/spdlog/spdlog/fmt/bundled/posix.h:314:25: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). FMT_API std::size_t read(void *buffer, std::size_t count); ANALYSIS SUMMARY: Hits = 855 Lines analyzed = 300205 in approximately 7.73 seconds (38837 lines/second) Physical Source Lines of Code (SLOC) = 213014 Hits@level = [0] 157 [1] 227 [2] 448 [3] 67 [4] 77 [5] 36 Hits@level+ = [0+] 1012 [1+] 855 [2+] 628 [3+] 180 [4+] 113 [5+] 36 Hits/KSLOC@level+ = [0+] 4.75086 [1+] 4.01382 [2+] 2.94816 [3+] 0.845015 [4+] 0.530482 [5+] 0.169003 Dot directories skipped = 4 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.