Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/libkcapi-1.2.1/apps/kcapi-enc.c
Examining data/libkcapi-1.2.1/apps/kcapi-dgst.c
Examining data/libkcapi-1.2.1/apps/app-internal.c
Examining data/libkcapi-1.2.1/apps/kcapi-hasher.c
Examining data/libkcapi-1.2.1/apps/kcapi-rng.c
Examining data/libkcapi-1.2.1/apps/app-internal.h
Examining data/libkcapi-1.2.1/lib/internal.h
Examining data/libkcapi-1.2.1/lib/kcapi-kernel-if.c
Examining data/libkcapi-1.2.1/lib/atomic.h
Examining data/libkcapi-1.2.1/lib/kcapi.h
Examining data/libkcapi-1.2.1/lib/kcapi-aead.c
Examining data/libkcapi-1.2.1/lib/kcapi-kdf.c
Examining data/libkcapi-1.2.1/lib/kcapi-sym.c
Examining data/libkcapi-1.2.1/lib/kcapi-kpp.c
Examining data/libkcapi-1.2.1/lib/kcapi-rng.c
Examining data/libkcapi-1.2.1/lib/cryptouser.h
Examining data/libkcapi-1.2.1/lib/kcapi-utils.c
Examining data/libkcapi-1.2.1/lib/kcapi-md.c
Examining data/libkcapi-1.2.1/lib/kcapi-asym.c
Examining data/libkcapi-1.2.1/lib/doc/bin/docproc.c
Examining data/libkcapi-1.2.1/speed-test/cryptoperf-rng.c
Examining data/libkcapi-1.2.1/speed-test/cryptoperf-main.c
Examining data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c
Examining data/libkcapi-1.2.1/speed-test/cryptoperf-skcipher.c
Examining data/libkcapi-1.2.1/speed-test/cryptoperf.h
Examining data/libkcapi-1.2.1/speed-test/cryptoperf-base.c
Examining data/libkcapi-1.2.1/speed-test/cryptoperf-hash.c
Examining data/libkcapi-1.2.1/test/kcapi-main.c
Examining data/libkcapi-1.2.1/test/kcapi-enc-test-large.c
Examining data/libkcapi-1.2.1/test/kcapi-convenience.c
FINAL RESULTS:
data/libkcapi-1.2.1/apps/kcapi-hasher.c:746:18: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
selfnamesize = readlink("/proc/self/exe", selfname, BUFSIZE);
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:122:4: [5] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is high; the length parameter
appears to be a constant, instead of computing the number of characters
left.
strncat(real_filename, kernsrctree, PATH_MAX);
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:207:3: [5] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is high; the length parameter
appears to be a constant, instead of computing the number of characters
left.
strncat(real_filename, srctree, PATH_MAX);
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:387:4: [5] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is high; the length parameter
appears to be a constant, instead of computing the number of characters
left.
strncat(real_filename, kernsrctree, PATH_MAX);
data/libkcapi-1.2.1/apps/app-internal.c:110:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(msg, sizeof(msg) - 1, fmt, args);
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:125:4: [4] (shell) execvp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execvp(real_filename, svec);
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:390:4: [4] (shell) execvp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execvp(real_filename, vec);
data/libkcapi-1.2.1/lib/internal.h:293:12: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
int access, int enc);
data/libkcapi-1.2.1/lib/internal.h:297:11: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
int access, int enc);
data/libkcapi-1.2.1/lib/internal.h:300:26: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access, int enc);
data/libkcapi-1.2.1/lib/internal.h:302:25: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access, int enc);
data/libkcapi-1.2.1/lib/kcapi-aead.c:189:42: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *out, uint32_t outlen, int access)
data/libkcapi-1.2.1/lib/kcapi-aead.c:194:60: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
ret = _kcapi_cipher_crypt(handle, in, inlen, out, outlen, access,
data/libkcapi-1.2.1/lib/kcapi-aead.c:241:34: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
const uint8_t *iv, int access)
data/libkcapi-1.2.1/lib/kcapi-aead.c:248:11: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
access, ALG_OP_ENCRYPT);
data/libkcapi-1.2.1/lib/kcapi-aead.c:260:42: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *out, uint32_t outlen, int access)
data/libkcapi-1.2.1/lib/kcapi-aead.c:263:61: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return _kcapi_cipher_crypt(handle, in, inlen, out, outlen, access,
data/libkcapi-1.2.1/lib/kcapi-aead.c:304:34: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
const uint8_t *iv, int access)
data/libkcapi-1.2.1/lib/kcapi-aead.c:311:11: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
access, ALG_OP_DECRYPT);
data/libkcapi-1.2.1/lib/kcapi-asym.c:58:46: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *out, uint32_t outlen, int access)
data/libkcapi-1.2.1/lib/kcapi-asym.c:60:61: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return _kcapi_cipher_crypt(handle, in, inlen, out, outlen, access,
data/libkcapi-1.2.1/lib/kcapi-asym.c:67:46: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *out, uint32_t outlen, int access)
data/libkcapi-1.2.1/lib/kcapi-asym.c:69:61: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return _kcapi_cipher_crypt(handle, in, inlen, out, outlen, access,
data/libkcapi-1.2.1/lib/kcapi-asym.c:76:43: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *out, uint32_t outlen, int access)
data/libkcapi-1.2.1/lib/kcapi-asym.c:78:61: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return _kcapi_cipher_crypt(handle, in, inlen, out, outlen, access,
data/libkcapi-1.2.1/lib/kcapi-asym.c:85:45: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *out, uint32_t outlen, int access)
data/libkcapi-1.2.1/lib/kcapi-asym.c:87:61: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return _kcapi_cipher_crypt(handle, in, inlen, out, outlen, access,
data/libkcapi-1.2.1/lib/kcapi-asym.c:158:49: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
struct iovec *outiov, uint32_t iovlen, int access,
data/libkcapi-1.2.1/lib/kcapi-asym.c:167:12: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
access, enc);
data/libkcapi-1.2.1/lib/kcapi-asym.c:217:29: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access)
data/libkcapi-1.2.1/lib/kcapi-asym.c:222:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
access, ALG_OP_ENCRYPT);
data/libkcapi-1.2.1/lib/kcapi-asym.c:266:29: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access)
data/libkcapi-1.2.1/lib/kcapi-asym.c:271:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
access, ALG_OP_DECRYPT);
data/libkcapi-1.2.1/lib/kcapi-asym.c:315:26: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access)
data/libkcapi-1.2.1/lib/kcapi-asym.c:320:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
access, ALG_OP_SIGN);
data/libkcapi-1.2.1/lib/kcapi-asym.c:363:28: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access)
data/libkcapi-1.2.1/lib/kcapi-asym.c:368:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
access, ALG_OP_VERIFY);
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:67:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(msg, sizeof(msg) - 1, fmt, args);
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:427:25: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access, int enc)
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:1228:12: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
int access, int enc)
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:1262:11: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
int access, int enc)
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:1286:20: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
outprocess, access, enc);
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:1302:26: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access, int enc)
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:1318:53: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
ret = _kcapi_aio_send_iov(handle, iniov, process, access, enc);
data/libkcapi-1.2.1/lib/kcapi-kpp.c:77:46: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *pubkey, uint32_t pubkeylen, int access)
data/libkcapi-1.2.1/lib/kcapi-kpp.c:79:65: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return _kcapi_cipher_crypt(handle, NULL, 0, pubkey, pubkeylen, access,
data/libkcapi-1.2.1/lib/kcapi-kpp.c:86:37: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *ss, uint32_t sslen, int access)
data/libkcapi-1.2.1/lib/kcapi-kpp.c:88:67: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return _kcapi_cipher_crypt(handle, pubkey, pubkeylen, ss, sslen, access,
data/libkcapi-1.2.1/lib/kcapi-kpp.c:94:51: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
struct iovec *outiov, uint32_t iovlen, int access, int enc)
data/libkcapi-1.2.1/lib/kcapi-kpp.c:103:23: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
outiov, 1, access, enc);
data/libkcapi-1.2.1/lib/kcapi-kpp.c:119:30: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access)
data/libkcapi-1.2.1/lib/kcapi-kpp.c:121:60: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return _kcapi_kpp_crypt_aio(handle, NULL, outiov, iovlen, access,
data/libkcapi-1.2.1/lib/kcapi-kpp.c:128:29: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access)
data/libkcapi-1.2.1/lib/kcapi-kpp.c:130:61: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return _kcapi_kpp_crypt_aio(handle, iniov, outiov, iovlen, access,
data/libkcapi-1.2.1/lib/kcapi-sym.c:48:44: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *out, uint32_t outlen, int access)
data/libkcapi-1.2.1/lib/kcapi-sym.c:60:67: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return _kcapi_cipher_crypt_chunk(handle, in, inlen, out, outlen, access,
data/libkcapi-1.2.1/lib/kcapi-sym.c:83:46: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, const uint8_t *iv, int access)
data/libkcapi-1.2.1/lib/kcapi-sym.c:90:11: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
access, ALG_OP_ENCRYPT);
data/libkcapi-1.2.1/lib/kcapi-sym.c:102:44: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *out, uint32_t outlen, int access)
data/libkcapi-1.2.1/lib/kcapi-sym.c:118:67: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return _kcapi_cipher_crypt_chunk(handle, in, inlen, out, outlen, access,
data/libkcapi-1.2.1/lib/kcapi-sym.c:141:46: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, const uint8_t *iv, int access)
data/libkcapi-1.2.1/lib/kcapi-sym.c:148:11: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
access, ALG_OP_DECRYPT);
data/libkcapi-1.2.1/lib/kcapi.h:186:44: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *out, uint32_t outlen, int access);
data/libkcapi-1.2.1/lib/kcapi.h:216:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
int access);
data/libkcapi-1.2.1/lib/kcapi.h:247:44: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *out, uint32_t outlen, int access);
data/libkcapi-1.2.1/lib/kcapi.h:277:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
int access);
data/libkcapi-1.2.1/lib/kcapi.h:739:11: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
int access);
data/libkcapi-1.2.1/lib/kcapi.h:779:34: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
const uint8_t *iv, int access);
data/libkcapi-1.2.1/lib/kcapi.h:885:42: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *out, uint32_t outlen, int access);
data/libkcapi-1.2.1/lib/kcapi.h:926:34: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
const uint8_t *iv, int access);
data/libkcapi-1.2.1/lib/kcapi.h:1862:46: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *out, uint32_t outlen, int access);
data/libkcapi-1.2.1/lib/kcapi.h:1888:29: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access);
data/libkcapi-1.2.1/lib/kcapi.h:1918:46: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *out, uint32_t outlen, int access);
data/libkcapi-1.2.1/lib/kcapi.h:1944:29: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access);
data/libkcapi-1.2.1/lib/kcapi.h:1974:43: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *out, uint32_t outlen, int access);
data/libkcapi-1.2.1/lib/kcapi.h:2000:26: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access);
data/libkcapi-1.2.1/lib/kcapi.h:2034:45: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *out, uint32_t outlen, int access);
data/libkcapi-1.2.1/lib/kcapi.h:2060:28: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access);
data/libkcapi-1.2.1/lib/kcapi.h:2406:46: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *pubkey, uint32_t pubkeylen, int access);
data/libkcapi-1.2.1/lib/kcapi.h:2426:37: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint8_t *ss, uint32_t sslen, int access);
data/libkcapi-1.2.1/lib/kcapi.h:2450:30: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access);
data/libkcapi-1.2.1/lib/kcapi.h:2477:29: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
uint32_t iovlen, int access);
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:42:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": unable to determine the page size\n");
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:48:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": missing test definition information for %s\n",
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:55:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not allocate aead handle for "
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:61:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": key length for cipher %s too large\n",
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:69:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": key could not be set\n");
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:86:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME ": Setting of authentication tag length failed\n");
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:109:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not allocate input buffer for "
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:116:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not allocate output buffer for "
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:138:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not create ciphertext for "
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:154:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not decrypt ciphertext for "
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:165:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not allocate iniov buffer\n");
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:171:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not allocate outiov buffer\n");
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:201:6: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not create ciphertext for "
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:216:6: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not decrypt ciphertext for "
data/libkcapi-1.2.1/speed-test/cryptoperf-base.c:45:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": initialization for %s failed\n",
data/libkcapi-1.2.1/speed-test/cryptoperf-hash.c:37:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": missing driver_name for %s\n",
data/libkcapi-1.2.1/speed-test/cryptoperf-hash.c:43:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not allocate shash handle for "
data/libkcapi-1.2.1/speed-test/cryptoperf-hash.c:51:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": key length for cipher %s too large %u\n",
data/libkcapi-1.2.1/speed-test/cryptoperf-hash.c:59:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": key could not be set\n");
data/libkcapi-1.2.1/speed-test/cryptoperf-hash.c:70:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not allocate scratchpad for "
data/libkcapi-1.2.1/speed-test/cryptoperf-rng.c:34:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": missing driver_name for %s\n",
data/libkcapi-1.2.1/speed-test/cryptoperf-rng.c:40:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not allocate rng handle for "
data/libkcapi-1.2.1/speed-test/cryptoperf-rng.c:48:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": seed could not be set\n");
data/libkcapi-1.2.1/speed-test/cryptoperf-rng.c:56:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not allocate scratchpad for "
data/libkcapi-1.2.1/speed-test/cryptoperf-skcipher.c:40:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": unable to determine the page size\n");
data/libkcapi-1.2.1/speed-test/cryptoperf-skcipher.c:46:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": missing test definition information for %s\n",
data/libkcapi-1.2.1/speed-test/cryptoperf-skcipher.c:53:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not allocate skcipher handle for "
data/libkcapi-1.2.1/speed-test/cryptoperf-skcipher.c:59:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": key length for cipher %s too large\n",
data/libkcapi-1.2.1/speed-test/cryptoperf-skcipher.c:67:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": key could not be set\n");
data/libkcapi-1.2.1/speed-test/cryptoperf-skcipher.c:77:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not allocate ivdata for "
data/libkcapi-1.2.1/speed-test/cryptoperf-skcipher.c:88:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not allocate scratchpad for "
data/libkcapi-1.2.1/speed-test/cryptoperf-skcipher.c:108:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(DRIVER_NAME": could not allocate iovec buffer\n");
data/libkcapi-1.2.1/speed-test/cryptoperf.h:41:23: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define dbg(fmt, ...) printf(DRIVER_NAME": " fmt, ##__VA_ARGS__)
data/libkcapi-1.2.1/apps/kcapi-dgst.c:411:7: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
c = getopt_long(argc, argv, "c:i:o:s:p:vqh",
data/libkcapi-1.2.1/apps/kcapi-enc.c:915:7: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
c = getopt_long(argc, argv, "c:edi:o:s:p:vqh",
data/libkcapi-1.2.1/apps/kcapi-hasher.c:712:6: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("KCAPI_HASHER_FORCE_FIPS") || mode != SELFCHECK_CHECK) {
data/libkcapi-1.2.1/apps/kcapi-hasher.c:907:6: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
if (getopt_long(argc, argv, opts_name_short, opts_name, &opt_index) == 'n')
data/libkcapi-1.2.1/apps/kcapi-hasher.c:969:11: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
int c = getopt_long(argc, argv, opts_short, opts, &opt_index);
data/libkcapi-1.2.1/apps/kcapi-rng.c:157:7: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
c = getopt_long(argc, argv, "vqhb:n:", opts, &opt_index);
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:523:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
srctree = getenv("SRCTREE");
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:526:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
kernsrctree = getenv("KBUILD_SRC");
data/libkcapi-1.2.1/speed-test/cryptoperf-main.c:193:7: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
c = getopt_long(argc, argv, "alc:t:b:rsvo:", opts, &opt_index);
data/libkcapi-1.2.1/test/kcapi-main.c:5172:7: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
c = getopt_long(argc, argv, "ec:p:q:i:mn:k:a:l:t:x:zsyd:vo:r:b:fghju", opts, &opt_index);
data/libkcapi-1.2.1/apps/app-internal.c:36:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char appname[16];
data/libkcapi-1.2.1/apps/app-internal.c:100:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/libkcapi-1.2.1/apps/app-internal.c:101:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sev[16];
data/libkcapi-1.2.1/apps/kcapi-dgst.c:68:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
infd = open(opts->infile, O_RDONLY | O_CLOEXEC);
data/libkcapi-1.2.1/apps/kcapi-dgst.c:82:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
outfd = open(opts->outfile, O_RDWR | O_CLOEXEC | O_CREAT,
data/libkcapi-1.2.1/apps/kcapi-dgst.c:348:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version[30];
data/libkcapi-1.2.1/apps/kcapi-dgst.c:383:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version[30];
data/libkcapi-1.2.1/apps/kcapi-enc.c:413:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[TMPBUFLEN] __aligned(KCAPI_APP_ALIGN);
data/libkcapi-1.2.1/apps/kcapi-enc.c:505:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
infd = open(opts->infile, O_RDONLY | O_CLOEXEC);
data/libkcapi-1.2.1/apps/kcapi-enc.c:520:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
outfd = open(opts->outfile, O_RDWR | O_CLOEXEC | O_CREAT,
data/libkcapi-1.2.1/apps/kcapi-enc.c:837:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version[30];
data/libkcapi-1.2.1/apps/kcapi-enc.c:880:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version[30];
data/libkcapi-1.2.1/apps/kcapi-hasher.c:164:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version[20];
data/libkcapi-1.2.1/apps/kcapi-hasher.c:179:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(filename, O_RDONLY | O_CLOEXEC);
data/libkcapi-1.2.1/apps/kcapi-hasher.c:224:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(filename, O_RDONLY | O_CLOEXEC);
data/libkcapi-1.2.1/apps/kcapi-hasher.c:495:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
out = fopen(outfile, "w");
data/libkcapi-1.2.1/apps/kcapi-hasher.c:538:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[(4096 + 128 + 2 + 1)];
data/libkcapi-1.2.1/apps/kcapi-hasher.c:557:34: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file = strcmp(checkfile, "-") ? fopen(checkfile, "r") : stdin;
data/libkcapi-1.2.1/apps/kcapi-hasher.c:701:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fipsflag[1];
data/libkcapi-1.2.1/apps/kcapi-hasher.c:703:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char selfname[BUFSIZE];
data/libkcapi-1.2.1/apps/kcapi-hasher.c:718:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fipsfile = fopen("/proc/sys/crypto/fips_enabled", "r");
data/libkcapi-1.2.1/apps/kcapi-rng.c:57:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
random_fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC);
data/libkcapi-1.2.1/apps/kcapi-rng.c:115:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version[30];
data/libkcapi-1.2.1/apps/kcapi-rng.c:142:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version[30];
data/libkcapi-1.2.1/apps/kcapi-rng.c:312:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hexbuf[2 * KCAPI_RNG_BUFSIZE];
data/libkcapi-1.2.1/lib/cryptouser.h:61:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cru_name[CRYPTO_MAX_ALG_NAME];
data/libkcapi-1.2.1/lib/cryptouser.h:62:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cru_driver_name[CRYPTO_MAX_ALG_NAME];
data/libkcapi-1.2.1/lib/cryptouser.h:63:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cru_module_name[CRYPTO_MAX_ALG_NAME];
data/libkcapi-1.2.1/lib/cryptouser.h:71:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type[CRYPTO_MAX_NAME];
data/libkcapi-1.2.1/lib/cryptouser.h:75:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type[CRYPTO_MAX_NAME];
data/libkcapi-1.2.1/lib/cryptouser.h:81:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type[CRYPTO_MAX_ALG_NAME];
data/libkcapi-1.2.1/lib/cryptouser.h:88:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type[CRYPTO_MAX_NAME];
data/libkcapi-1.2.1/lib/cryptouser.h:89:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char geniv[CRYPTO_MAX_NAME];
data/libkcapi-1.2.1/lib/cryptouser.h:97:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type[CRYPTO_MAX_NAME];
data/libkcapi-1.2.1/lib/cryptouser.h:98:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char geniv[CRYPTO_MAX_NAME];
data/libkcapi-1.2.1/lib/cryptouser.h:105:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type[CRYPTO_MAX_NAME];
data/libkcapi-1.2.1/lib/cryptouser.h:109:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type[CRYPTO_MAX_NAME];
data/libkcapi-1.2.1/lib/cryptouser.h:114:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type[CRYPTO_MAX_NAME];
data/libkcapi-1.2.1/lib/cryptouser.h:118:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type[CRYPTO_MAX_NAME];
data/libkcapi-1.2.1/lib/cryptouser.h:122:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type[CRYPTO_MAX_NAME];
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:113:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char real_filename[PATH_MAX + 1];
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:203:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[MAXLINESZ];
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:205:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char real_filename[PATH_MAX + 1];
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:212:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(real_filename, "r");
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:297:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *vec[200]; /* Enough for specific functions */
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:335:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *vec[7];
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:361:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *vec[4]; /* kerneldoc -list file NULL */
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:364:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char real_filename[PATH_MAX + 1];
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:462:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[MAXLINESZ];
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:534:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
infile = fopen(argv[2], "r");
data/libkcapi-1.2.1/lib/kcapi-aead.c:470:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newiv + 1, nonce, noncelen);
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:57:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[128];
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:58:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sev[16];
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:122:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer_static[80] = { 0 };
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:193:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(alg_iv->iv, handle->cipher.iv, tfm->info.ivsize);
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:610:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4096];
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:1103:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char versionbuffer[50];
data/libkcapi-1.2.1/lib/kcapi-kpp.c:59:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char curve_id_str[sizeof(unsigned long)];
data/libkcapi-1.2.1/lib/kcapi-rng.c:89:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
random_fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC);
data/libkcapi-1.2.1/lib/kcapi-utils.c:65:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(niv, iv, copylen);
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:35:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[MAX_KEYLEN];
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:36:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char ivrand[MAX_KEYLEN];
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:143:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(test->u.aead.input, test->u.aead.output,
data/libkcapi-1.2.1/speed-test/cryptoperf-aead.c:206:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(input, output, test->u.aead.assoclen);
data/libkcapi-1.2.1/speed-test/cryptoperf-base.c:158:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char byteseconds[VALLEN + 1];
data/libkcapi-1.2.1/speed-test/cryptoperf-base.c:181:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open("/dev/urandom", O_RDONLY|O_CLOEXEC);
data/libkcapi-1.2.1/speed-test/cryptoperf-hash.c:33:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[MAX_KEYLEN];
data/libkcapi-1.2.1/speed-test/cryptoperf-main.c:139:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version[20];
data/libkcapi-1.2.1/speed-test/cryptoperf-main.c:210:42: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
test_params.exectime = (unsigned int)atoi(optarg);
data/libkcapi-1.2.1/speed-test/cryptoperf-main.c:213:37: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
test_params.len = (unsigned int)atoi(optarg);
data/libkcapi-1.2.1/speed-test/cryptoperf-main.c:225:37: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
test_params.aio = (unsigned int)atoi(optarg);
data/libkcapi-1.2.1/speed-test/cryptoperf-rng.c:30:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char seed[SEEDSIZE];
data/libkcapi-1.2.1/speed-test/cryptoperf-skcipher.c:33:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[MAX_KEYLEN];
data/libkcapi-1.2.1/test/kcapi-enc-test-large.c:25:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8192];
data/libkcapi-1.2.1/test/kcapi-main.c:67:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cipher[CIPHERMAXNAME];
data/libkcapi-1.2.1/test/kcapi-main.c:605:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hex[RNGOUTBUF * 2 + 1];
data/libkcapi-1.2.1/test/kcapi-main.c:643:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *f = fopen("/proc/sys/crypto/fips_enabled", "r");
data/libkcapi-1.2.1/test/kcapi-main.c:746:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version[30];
data/libkcapi-1.2.1/test/kcapi-main.c:1103:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(outbuf + (i * cavs_test->ptlen), cavs_test->pt,
data/libkcapi-1.2.1/test/kcapi-main.c:1108:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(outbuf + (i * cavs_test->ctlen), cavs_test->ct,
data/libkcapi-1.2.1/test/kcapi-main.c:1299:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(i_assoc, cavs_test->assoc, i_assoclen);
data/libkcapi-1.2.1/test/kcapi-main.c:1301:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(i_data, cavs_test->pt, i_datalen);
data/libkcapi-1.2.1/test/kcapi-main.c:1310:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(i_data, cavs_test->ct, i_datalen);
data/libkcapi-1.2.1/test/kcapi-main.c:1311:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(i_tag, cavs_test->tag, i_taglen);
data/libkcapi-1.2.1/test/kcapi-main.c:1472:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(i_assoc + (i * maxbuflen), cavs_test->assoc, i_assoclen);
data/libkcapi-1.2.1/test/kcapi-main.c:1474:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(i_data + (i * maxbuflen), cavs_test->pt,
data/libkcapi-1.2.1/test/kcapi-main.c:1477:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(i_data + (i * maxbuflen), cavs_test->ct,
data/libkcapi-1.2.1/test/kcapi-main.c:1479:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(i_tag + (i * maxbuflen), cavs_test->tag,
data/libkcapi-1.2.1/test/kcapi-main.c:3965:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mdhex[MAXMDHEX];
data/libkcapi-1.2.1/test/kcapi-main.c:4012:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mdhex[MAXMDHEX];
data/libkcapi-1.2.1/test/kcapi-main.c:4247:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(inbuf + (i * cavs_test->ptlen), cavs_test->pt,
data/libkcapi-1.2.1/test/kcapi-main.c:4408:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(inbuf_working, cavs_test->pt + index, size);
data/libkcapi-1.2.1/test/kcapi-main.c:5251:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
len = atoi(optarg);
data/libkcapi-1.2.1/test/kcapi-main.c:5273:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cavs_test.type = atoi(optarg);
data/libkcapi-1.2.1/test/kcapi-main.c:5276:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cavs_test.enc = atoi(optarg);
data/libkcapi-1.2.1/test/kcapi-main.c:5302:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cavs_test.outlen = atoi(optarg);
data/libkcapi-1.2.1/apps/app-internal.c:148:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(appname, name, sizeof(appname) - 1);
data/libkcapi-1.2.1/apps/app-internal.c:237:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(fd, buf, buflen);
data/libkcapi-1.2.1/apps/kcapi-dgst.c:231:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
passwdlen = strlen(opts->passwd);
data/libkcapi-1.2.1/apps/kcapi-dgst.c:261:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = hex2bin_alloc(opts->salt, strlen(opts->salt),
data/libkcapi-1.2.1/apps/kcapi-enc.c:430:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = hex2bin_alloc(opts->iv, strlen(opts->iv),
data/libkcapi-1.2.1/apps/kcapi-enc.c:455:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = hex2bin_alloc(opts->ccmnonce, strlen(opts->ccmnonce),
data/libkcapi-1.2.1/apps/kcapi-enc.c:475:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = hex2bin_alloc(opts->aad, strlen(opts->aad),
data/libkcapi-1.2.1/apps/kcapi-enc.c:486:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = hex2bin_alloc(opts->tag, strlen(opts->tag),
data/libkcapi-1.2.1/apps/kcapi-enc.c:713:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
passwdlen = strlen(opts->passwd);
data/libkcapi-1.2.1/apps/kcapi-enc.c:746:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = hex2bin_alloc(opts->salt, strlen(opts->salt),
data/libkcapi-1.2.1/apps/kcapi-hasher.c:238:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((rdbytes = read(fd, buffer + offset, buffer_size - offset)) != 0) {
data/libkcapi-1.2.1/apps/kcapi-hasher.c:401:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(dst, src, size);
data/libkcapi-1.2.1/apps/kcapi-hasher.c:415:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t prefixlen = strlen(check_prefix);
data/libkcapi-1.2.1/apps/kcapi-hasher.c:416:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t suffixlen = strlen(CHECK_SUFFIX);
data/libkcapi-1.2.1/apps/kcapi-hasher.c:424:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
filelen = strlen(filename);
data/libkcapi-1.2.1/apps/kcapi-hasher.c:435:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pathlen = checkdir ? strlen(checkdir) + 1 : basenamestart;
data/libkcapi-1.2.1/apps/kcapi-hasher.c:444:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cursor = paste(cursor, checkdir, strlen(checkdir));
data/libkcapi-1.2.1/apps/kcapi-hasher.c:452:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(cursor, "\0", 1);
data/libkcapi-1.2.1/apps/kcapi-hasher.c:568:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
uint32_t linelen = (uint32_t)strlen(buf);
data/libkcapi-1.2.1/apps/kcapi-hasher.c:789:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(selfname, info.dli_fname, (sizeof(selfname) - 1));
data/libkcapi-1.2.1/apps/kcapi-hasher.c:1099:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
params.key.len = strlen(optarg);
data/libkcapi-1.2.1/apps/kcapi-rng.c:93:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(random_fd, buf, buflen);
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:123:4: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat(real_filename, "/" KERNELDOCPATH KERNELDOC,
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:124:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
PATH_MAX - strlen(real_filename));
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:208:3: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is low because the source is a
constant character.
strncat(real_filename, "/", PATH_MAX - strlen(real_filename));
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:208:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncat(real_filename, "/", PATH_MAX - strlen(real_filename));
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:209:3: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat(real_filename, filename,
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:210:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
PATH_MAX - strlen(real_filename));
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:388:4: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat(real_filename, "/" KERNELDOCPATH KERNELDOC,
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:389:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
PATH_MAX - strlen(real_filename));
data/libkcapi-1.2.1/lib/doc/bin/docproc.c:402:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((ret = read(pipefd[0],
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:570:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(*_kcapi_get_opfd(handle), out, outlen);
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:638:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(req.cru.cru_driver_name, ciphername,
data/libkcapi-1.2.1/lib/kcapi-kernel-if.c:641:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(req.cru.cru_name, ciphername, sizeof(req.cru.cru_name) - 1);
data/libkcapi-1.2.1/lib/kcapi-rng.c:127:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(random_fd, buf, buflen);
data/libkcapi-1.2.1/speed-test/cryptoperf-base.c:94:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
static void cp_bytes2string(uint64_t bytes, char *str, size_t strlen)
data/libkcapi-1.2.1/speed-test/cryptoperf-base.c:99:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
snprintf(str, strlen, "%lu.%lu GB", (unsigned long)abs,
data/libkcapi-1.2.1/speed-test/cryptoperf-base.c:106:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
snprintf(str, strlen, "%lu.%lu MB", (unsigned long)abs,
data/libkcapi-1.2.1/speed-test/cryptoperf-base.c:112:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
snprintf(str, strlen, "%lu.%lu kB", (unsigned long)abs,
data/libkcapi-1.2.1/speed-test/cryptoperf-base.c:116:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
snprintf(str, strlen, "%lu B", (unsigned long)bytes);
data/libkcapi-1.2.1/speed-test/cryptoperf-base.c:117:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
str[strlen] = '\0';
data/libkcapi-1.2.1/speed-test/cryptoperf-base.c:185:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(fd, (buf + len), (buflen - len));
data/libkcapi-1.2.1/speed-test/cryptoperf-main.c:95:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strncmp(tests->array[i].driver_name, name, strlen(name)) ||
data/libkcapi-1.2.1/speed-test/cryptoperf-main.c:96:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
!strncmp(tests->array[i].testname, name, strlen(name)) ||
data/libkcapi-1.2.1/speed-test/cryptoperf-main.c:97:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
!strncmp(tests->array[i].type, name, strlen(name))) {
data/libkcapi-1.2.1/test/kcapi-convenience.c:31:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = kcapi_md_sha1((uint8_t*)in, strlen(in), out, sizeof(out));
data/libkcapi-1.2.1/test/kcapi-convenience.c:37:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = kcapi_md_sha224((uint8_t*)in, strlen(in), out, sizeof(out));
data/libkcapi-1.2.1/test/kcapi-convenience.c:43:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = kcapi_md_sha256((uint8_t*)in, strlen(in), out, sizeof(out));
data/libkcapi-1.2.1/test/kcapi-convenience.c:49:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = kcapi_md_sha384((uint8_t*)in, strlen(in), out, sizeof(out));
data/libkcapi-1.2.1/test/kcapi-convenience.c:55:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = kcapi_md_sha512((uint8_t*)in, strlen(in), out, sizeof(out));
data/libkcapi-1.2.1/test/kcapi-convenience.c:70:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = kcapi_md_hmac_sha1((uint8_t*)in, strlen(in),
data/libkcapi-1.2.1/test/kcapi-convenience.c:71:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(uint8_t*)in, strlen(in), out, sizeof(out));
data/libkcapi-1.2.1/test/kcapi-convenience.c:77:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = kcapi_md_hmac_sha224((uint8_t*)in, strlen(in),
data/libkcapi-1.2.1/test/kcapi-convenience.c:78:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(uint8_t*)in, strlen(in), out, sizeof(out));
data/libkcapi-1.2.1/test/kcapi-convenience.c:84:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = kcapi_md_hmac_sha256((uint8_t*)in, strlen(in),
data/libkcapi-1.2.1/test/kcapi-convenience.c:85:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(uint8_t*)in, strlen(in), out, sizeof(out));
data/libkcapi-1.2.1/test/kcapi-convenience.c:91:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = kcapi_md_hmac_sha384((uint8_t*)in, strlen(in),
data/libkcapi-1.2.1/test/kcapi-convenience.c:92:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(uint8_t*)in, strlen(in), out, sizeof(out));
data/libkcapi-1.2.1/test/kcapi-convenience.c:98:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = kcapi_md_hmac_sha512((uint8_t*)in, strlen(in),
data/libkcapi-1.2.1/test/kcapi-convenience.c:99:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(uint8_t*)in, strlen(in), out, sizeof(out));
data/libkcapi-1.2.1/test/kcapi-main.c:3872:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(test.cipher, "ccm(aes)", CIPHERMAXNAME);
data/libkcapi-1.2.1/test/kcapi-main.c:3874:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(msg);
data/libkcapi-1.2.1/test/kcapi-main.c:3879:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(iv);
data/libkcapi-1.2.1/test/kcapi-main.c:3889:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(key);
data/libkcapi-1.2.1/test/kcapi-main.c:3894:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(aad);
data/libkcapi-1.2.1/test/kcapi-main.c:5184:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(cavs_test.cipher, optarg,
data/libkcapi-1.2.1/test/kcapi-main.c:5188:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(optarg);
data/libkcapi-1.2.1/test/kcapi-main.c:5196:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(optarg);
data/libkcapi-1.2.1/test/kcapi-main.c:5204:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(optarg);
data/libkcapi-1.2.1/test/kcapi-main.c:5214:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(optarg);
data/libkcapi-1.2.1/test/kcapi-main.c:5227:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(optarg);
data/libkcapi-1.2.1/test/kcapi-main.c:5235:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(optarg);
data/libkcapi-1.2.1/test/kcapi-main.c:5243:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(optarg);
data/libkcapi-1.2.1/test/kcapi-main.c:5260:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(optarg);
ANALYSIS SUMMARY:
Hits = 295
Lines analyzed = 18891 in approximately 0.76 seconds (24957 lines/second)
Physical Source Lines of Code (SLOC) = 12979
Hits@level = [0] 413 [1] 74 [2] 96 [3] 10 [4] 111 [5] 4
Hits@level+ = [0+] 708 [1+] 295 [2+] 221 [3+] 125 [4+] 115 [5+] 4
Hits/KSLOC@level+ = [0+] 54.5497 [1+] 22.729 [2+] 17.0275 [3+] 9.63094 [4+] 8.86047 [5+] 0.30819
Dot directories skipped = 6 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.