Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/ntl-11.4.3/include/NTL/ALL_FEATURES.h
Examining data/ntl-11.4.3/include/NTL/BasicThreadPool.h
Examining data/ntl-11.4.3/include/NTL/config.h
Examining data/ntl-11.4.3/include/NTL/ctools.h
Examining data/ntl-11.4.3/include/NTL/FacVec.h
Examining data/ntl-11.4.3/include/NTL/FFT.h
Examining data/ntl-11.4.3/include/NTL/FFT_impl.h
Examining data/ntl-11.4.3/include/NTL/fileio.h
Examining data/ntl-11.4.3/include/NTL/GF2.h
Examining data/ntl-11.4.3/include/NTL/GF2E.h
Examining data/ntl-11.4.3/include/NTL/GF2EX.h
Examining data/ntl-11.4.3/include/NTL/GF2EXFactoring.h
Examining data/ntl-11.4.3/include/NTL/GF2X.h
Examining data/ntl-11.4.3/include/NTL/GF2XFactoring.h
Examining data/ntl-11.4.3/include/NTL/GF2XVec.h
Examining data/ntl-11.4.3/include/NTL/HAVE_ALIGNED_ARRAY.h
Examining data/ntl-11.4.3/include/NTL/HAVE_AVX.h
Examining data/ntl-11.4.3/include/NTL/HAVE_AVX2.h
Examining data/ntl-11.4.3/include/NTL/HAVE_AVX512F.h
Examining data/ntl-11.4.3/include/NTL/HAVE_BUILTIN_CLZL.h
Examining data/ntl-11.4.3/include/NTL/HAVE_CHRONO_TIME.h
Examining data/ntl-11.4.3/include/NTL/HAVE_COPY_TRAITS1.h
Examining data/ntl-11.4.3/include/NTL/HAVE_COPY_TRAITS2.h
Examining data/ntl-11.4.3/include/NTL/HAVE_FMA.h
Examining data/ntl-11.4.3/include/NTL/HAVE_LL_TYPE.h
Examining data/ntl-11.4.3/include/NTL/HAVE_MACOS_TIME.h
Examining data/ntl-11.4.3/include/NTL/HAVE_PCLMUL.h
Examining data/ntl-11.4.3/include/NTL/HAVE_POSIX_TIME.h
Examining data/ntl-11.4.3/include/NTL/HAVE_SSSE3.h
Examining data/ntl-11.4.3/include/NTL/HNF.h
Examining data/ntl-11.4.3/include/NTL/Lazy.h
Examining data/ntl-11.4.3/include/NTL/LazyTable.h
Examining data/ntl-11.4.3/include/NTL/lip.h
Examining data/ntl-11.4.3/include/NTL/LLL.h
Examining data/ntl-11.4.3/include/NTL/lzz_p.h
Examining data/ntl-11.4.3/include/NTL/lzz_pE.h
Examining data/ntl-11.4.3/include/NTL/lzz_pEX.h
Examining data/ntl-11.4.3/include/NTL/lzz_pEXFactoring.h
Examining data/ntl-11.4.3/include/NTL/lzz_pX.h
Examining data/ntl-11.4.3/include/NTL/lzz_pXFactoring.h
Examining data/ntl-11.4.3/include/NTL/mat_GF2.h
Examining data/ntl-11.4.3/include/NTL/mat_GF2E.h
Examining data/ntl-11.4.3/include/NTL/mat_lzz_p.h
Examining data/ntl-11.4.3/include/NTL/mat_lzz_pE.h
Examining data/ntl-11.4.3/include/NTL/mat_poly_lzz_p.h
Examining data/ntl-11.4.3/include/NTL/mat_poly_ZZ.h
Examining data/ntl-11.4.3/include/NTL/mat_poly_ZZ_p.h
Examining data/ntl-11.4.3/include/NTL/mat_RR.h
Examining data/ntl-11.4.3/include/NTL/mat_ZZ.h
Examining data/ntl-11.4.3/include/NTL/mat_ZZ_p.h
Examining data/ntl-11.4.3/include/NTL/mat_ZZ_pE.h
Examining data/ntl-11.4.3/include/NTL/MatPrime.h
Examining data/ntl-11.4.3/include/NTL/matrix.h
Examining data/ntl-11.4.3/include/NTL/new.h
Examining data/ntl-11.4.3/include/NTL/PackageInfo.h
Examining data/ntl-11.4.3/include/NTL/pair.h
Examining data/ntl-11.4.3/include/NTL/pair_GF2EX_long.h
Examining data/ntl-11.4.3/include/NTL/pair_GF2X_long.h
Examining data/ntl-11.4.3/include/NTL/pair_lzz_pEX_long.h
Examining data/ntl-11.4.3/include/NTL/pair_lzz_pX_long.h
Examining data/ntl-11.4.3/include/NTL/pair_ZZ_pEX_long.h
Examining data/ntl-11.4.3/include/NTL/pair_ZZ_pX_long.h
Examining data/ntl-11.4.3/include/NTL/pair_ZZX_long.h
Examining data/ntl-11.4.3/include/NTL/PD.h
Examining data/ntl-11.4.3/include/NTL/pd_FFT.h
Examining data/ntl-11.4.3/include/NTL/quad_float.h
Examining data/ntl-11.4.3/include/NTL/REPORT_ALL_FEATURES.h
Examining data/ntl-11.4.3/include/NTL/RR.h
Examining data/ntl-11.4.3/include/NTL/SmartPtr.h
Examining data/ntl-11.4.3/include/NTL/sp_arith.h
Examining data/ntl-11.4.3/include/NTL/thread.h
Examining data/ntl-11.4.3/include/NTL/tools.h
Examining data/ntl-11.4.3/include/NTL/vec_double.h
Examining data/ntl-11.4.3/include/NTL/vec_GF2.h
Examining data/ntl-11.4.3/include/NTL/vec_GF2E.h
Examining data/ntl-11.4.3/include/NTL/vec_GF2XVec.h
Examining data/ntl-11.4.3/include/NTL/vec_long.h
Examining data/ntl-11.4.3/include/NTL/vec_lzz_p.h
Examining data/ntl-11.4.3/include/NTL/vec_lzz_pE.h
Examining data/ntl-11.4.3/include/NTL/vec_quad_float.h
Examining data/ntl-11.4.3/include/NTL/vec_RR.h
Examining data/ntl-11.4.3/include/NTL/vec_ulong.h
Examining data/ntl-11.4.3/include/NTL/vec_vec_GF2.h
Examining data/ntl-11.4.3/include/NTL/vec_vec_GF2E.h
Examining data/ntl-11.4.3/include/NTL/vec_vec_long.h
Examining data/ntl-11.4.3/include/NTL/vec_vec_lzz_p.h
Examining data/ntl-11.4.3/include/NTL/vec_vec_lzz_pE.h
Examining data/ntl-11.4.3/include/NTL/vec_vec_RR.h
Examining data/ntl-11.4.3/include/NTL/vec_vec_ulong.h
Examining data/ntl-11.4.3/include/NTL/vec_vec_ZZ.h
Examining data/ntl-11.4.3/include/NTL/vec_vec_ZZ_p.h
Examining data/ntl-11.4.3/include/NTL/vec_vec_ZZ_pE.h
Examining data/ntl-11.4.3/include/NTL/vec_xdouble.h
Examining data/ntl-11.4.3/include/NTL/vec_ZZ.h
Examining data/ntl-11.4.3/include/NTL/vec_ZZ_p.h
Examining data/ntl-11.4.3/include/NTL/vec_ZZ_pE.h
Examining data/ntl-11.4.3/include/NTL/vec_ZZVec.h
Examining data/ntl-11.4.3/include/NTL/vector.h
Examining data/ntl-11.4.3/include/NTL/version.h
Examining data/ntl-11.4.3/include/NTL/WordVector.h
Examining data/ntl-11.4.3/include/NTL/xdouble.h
Examining data/ntl-11.4.3/include/NTL/ZZ.h
Examining data/ntl-11.4.3/include/NTL/ZZ_limbs.h
Examining data/ntl-11.4.3/include/NTL/ZZ_p.h
Examining data/ntl-11.4.3/include/NTL/ZZ_pE.h
Examining data/ntl-11.4.3/include/NTL/ZZ_pEX.h
Examining data/ntl-11.4.3/include/NTL/ZZ_pEXFactoring.h
Examining data/ntl-11.4.3/include/NTL/ZZ_pX.h
Examining data/ntl-11.4.3/include/NTL/ZZ_pXFactoring.h
Examining data/ntl-11.4.3/include/NTL/ZZVec.h
Examining data/ntl-11.4.3/include/NTL/ZZX.h
Examining data/ntl-11.4.3/include/NTL/ZZXFactoring.h
Examining data/ntl-11.4.3/src/BasicThreadPool.cpp
Examining data/ntl-11.4.3/src/BerlekampTest.cpp
Examining data/ntl-11.4.3/src/BitMatTest.cpp
Examining data/ntl-11.4.3/src/CanZassTest.cpp
Examining data/ntl-11.4.3/src/CharPolyTest.cpp
Examining data/ntl-11.4.3/src/CheckALIGNED_ARRAY.cpp
Examining data/ntl-11.4.3/src/CheckAVX.cpp
Examining data/ntl-11.4.3/src/CheckAVX2.cpp
Examining data/ntl-11.4.3/src/CheckAVX512F.cpp
Examining data/ntl-11.4.3/src/CheckBUILTIN_CLZL.cpp
Examining data/ntl-11.4.3/src/CheckCHRONO_TIME.cpp
Examining data/ntl-11.4.3/src/CheckCompile.cpp
Examining data/ntl-11.4.3/src/CheckContract.cpp
Examining data/ntl-11.4.3/src/CheckContractAux.cpp
Examining data/ntl-11.4.3/src/CheckCOPY_TRAITS1.cpp
Examining data/ntl-11.4.3/src/CheckCOPY_TRAITS2.cpp
Examining data/ntl-11.4.3/src/CheckFMA.cpp
Examining data/ntl-11.4.3/src/CheckLL_TYPE.cpp
Examining data/ntl-11.4.3/src/CheckMACOS_TIME.cpp
Examining data/ntl-11.4.3/src/CheckPCLMUL.cpp
Examining data/ntl-11.4.3/src/CheckPOSIX_TIME.cpp
Examining data/ntl-11.4.3/src/CheckSSSE3.cpp
Examining data/ntl-11.4.3/src/CheckThreads.cpp
Examining data/ntl-11.4.3/src/ctools.cpp
Examining data/ntl-11.4.3/src/DispSettings.cpp
Examining data/ntl-11.4.3/src/ExceptionTest.cpp
Examining data/ntl-11.4.3/src/FacVec.cpp
Examining data/ntl-11.4.3/src/fileio.cpp
Examining data/ntl-11.4.3/src/G_LLL_FP.cpp
Examining data/ntl-11.4.3/src/G_LLL_QP.cpp
Examining data/ntl-11.4.3/src/G_LLL_RR.cpp
Examining data/ntl-11.4.3/src/G_LLL_XD.cpp
Examining data/ntl-11.4.3/src/gen_gmp_aux.cpp
Examining data/ntl-11.4.3/src/GenConfigInfo.cpp
Examining data/ntl-11.4.3/src/GetPID1.cpp
Examining data/ntl-11.4.3/src/GetPID2.cpp
Examining data/ntl-11.4.3/src/GetTime0.cpp
Examining data/ntl-11.4.3/src/GetTime1.cpp
Examining data/ntl-11.4.3/src/GetTime2.cpp
Examining data/ntl-11.4.3/src/GetTime3.cpp
Examining data/ntl-11.4.3/src/GetTime4.cpp
Examining data/ntl-11.4.3/src/GetTime5.cpp
Examining data/ntl-11.4.3/src/GF2.cpp
Examining data/ntl-11.4.3/src/GF2E.cpp
Examining data/ntl-11.4.3/src/GF2EX.cpp
Examining data/ntl-11.4.3/src/GF2EXDivCross.cpp
Examining data/ntl-11.4.3/src/GF2EXFactoring.cpp
Examining data/ntl-11.4.3/src/GF2EXGCDCross.cpp
Examining data/ntl-11.4.3/src/GF2EXGCDTest.cpp
Examining data/ntl-11.4.3/src/GF2EXKarCross.cpp
Examining data/ntl-11.4.3/src/GF2EXModCross.cpp
Examining data/ntl-11.4.3/src/GF2EXTest.cpp
Examining data/ntl-11.4.3/src/GF2X.cpp
Examining data/ntl-11.4.3/src/GF2X1.cpp
Examining data/ntl-11.4.3/src/gf2x_version_1_2_or_later_required.cpp
Examining data/ntl-11.4.3/src/GF2XFactoring.cpp
Examining data/ntl-11.4.3/src/GF2XTest.cpp
Examining data/ntl-11.4.3/src/GF2XTimeTest.cpp
Examining data/ntl-11.4.3/src/GF2XVec.cpp
Examining data/ntl-11.4.3/src/HNF.cpp
Examining data/ntl-11.4.3/src/InitSettings.cpp
Examining data/ntl-11.4.3/src/lip.cpp
Examining data/ntl-11.4.3/src/LLL.cpp
Examining data/ntl-11.4.3/src/LLL_FP.cpp
Examining data/ntl-11.4.3/src/LLL_QP.cpp
Examining data/ntl-11.4.3/src/LLL_RR.cpp
Examining data/ntl-11.4.3/src/LLL_XD.cpp
Examining data/ntl-11.4.3/src/LLLTest.cpp
Examining data/ntl-11.4.3/src/lzz_p.cpp
Examining data/ntl-11.4.3/src/lzz_pE.cpp
Examining data/ntl-11.4.3/src/lzz_pEX.cpp
Examining data/ntl-11.4.3/src/lzz_pEXFactoring.cpp
Examining data/ntl-11.4.3/src/lzz_pEXGCDTest.cpp
Examining data/ntl-11.4.3/src/lzz_pEXTest.cpp
Examining data/ntl-11.4.3/src/lzz_pX.cpp
Examining data/ntl-11.4.3/src/lzz_pX1.cpp
Examining data/ntl-11.4.3/src/lzz_pXCharPoly.cpp
Examining data/ntl-11.4.3/src/lzz_pXFactoring.cpp
Examining data/ntl-11.4.3/src/lzz_pXTest.cpp
Examining data/ntl-11.4.3/src/MakeDesc.cpp
Examining data/ntl-11.4.3/src/MakeDescAux.cpp
Examining data/ntl-11.4.3/src/mat_GF2.cpp
Examining data/ntl-11.4.3/src/mat_GF2E.cpp
Examining data/ntl-11.4.3/src/mat_lzz_p.cpp
Examining data/ntl-11.4.3/src/mat_lzz_pE.cpp
Examining data/ntl-11.4.3/src/mat_lzz_pTest.cpp
Examining data/ntl-11.4.3/src/mat_poly_lzz_p.cpp
Examining data/ntl-11.4.3/src/mat_poly_ZZ.cpp
Examining data/ntl-11.4.3/src/mat_poly_ZZ_p.cpp
Examining data/ntl-11.4.3/src/mat_RR.cpp
Examining data/ntl-11.4.3/src/mat_ZZ.cpp
Examining data/ntl-11.4.3/src/mat_ZZ_p.cpp
Examining data/ntl-11.4.3/src/mat_ZZ_pE.cpp
Examining data/ntl-11.4.3/src/MatPrime.cpp
Examining data/ntl-11.4.3/src/MatrixTest.cpp
Examining data/ntl-11.4.3/src/MoreFacTest.cpp
Examining data/ntl-11.4.3/src/newnames.cpp
Examining data/ntl-11.4.3/src/pd_FFT.cpp
Examining data/ntl-11.4.3/src/Poly1TimeTest.cpp
Examining data/ntl-11.4.3/src/Poly2TimeTest.cpp
Examining data/ntl-11.4.3/src/Poly3TimeTest.cpp
Examining data/ntl-11.4.3/src/quad_float.cpp
Examining data/ntl-11.4.3/src/quad_float1.cpp
Examining data/ntl-11.4.3/src/QuadTest.cpp
Examining data/ntl-11.4.3/src/QuickTest.cpp
Examining data/ntl-11.4.3/src/RR.cpp
Examining data/ntl-11.4.3/src/RRTest.cpp
Examining data/ntl-11.4.3/src/SSMulTest.cpp
Examining data/ntl-11.4.3/src/subset.cpp
Examining data/ntl-11.4.3/src/TestGetPID.cpp
Examining data/ntl-11.4.3/src/TestGetTime.cpp
Examining data/ntl-11.4.3/src/thread.cpp
Examining data/ntl-11.4.3/src/ThreadTest.cpp
Examining data/ntl-11.4.3/src/Timing.cpp
Examining data/ntl-11.4.3/src/tools.cpp
Examining data/ntl-11.4.3/src/vec_GF2.cpp
Examining data/ntl-11.4.3/src/vec_GF2E.cpp
Examining data/ntl-11.4.3/src/vec_lzz_p.cpp
Examining data/ntl-11.4.3/src/vec_lzz_pE.cpp
Examining data/ntl-11.4.3/src/vec_RR.cpp
Examining data/ntl-11.4.3/src/vec_ZZ.cpp
Examining data/ntl-11.4.3/src/vec_ZZ_p.cpp
Examining data/ntl-11.4.3/src/vec_ZZ_pE.cpp
Examining data/ntl-11.4.3/src/WordVector.cpp
Examining data/ntl-11.4.3/src/xdouble.cpp
Examining data/ntl-11.4.3/src/ZZ.cpp
Examining data/ntl-11.4.3/src/ZZ_p.cpp
Examining data/ntl-11.4.3/src/ZZ_pE.cpp
Examining data/ntl-11.4.3/src/ZZ_pEX.cpp
Examining data/ntl-11.4.3/src/ZZ_pEXFactoring.cpp
Examining data/ntl-11.4.3/src/ZZ_pEXGCDTest.cpp
Examining data/ntl-11.4.3/src/ZZ_pEXTest.cpp
Examining data/ntl-11.4.3/src/ZZ_pX1.cpp
Examining data/ntl-11.4.3/src/ZZ_pXCharPoly.cpp
Examining data/ntl-11.4.3/src/ZZ_pXFactoring.cpp
Examining data/ntl-11.4.3/src/ZZ_pXTest.cpp
Examining data/ntl-11.4.3/src/ZZTest.cpp
Examining data/ntl-11.4.3/src/ZZVec.cpp
Examining data/ntl-11.4.3/src/ZZX.cpp
Examining data/ntl-11.4.3/src/ZZX1.cpp
Examining data/ntl-11.4.3/src/ZZXCharPoly.cpp
Examining data/ntl-11.4.3/src/ZZXFacTest.cpp
Examining data/ntl-11.4.3/src/ZZXFactoring.cpp
Examining data/ntl-11.4.3/src/FFT.cpp
Examining data/ntl-11.4.3/src/ZZ_pX.cpp
FINAL RESULTS:
data/ntl-11.4.3/src/fileio.cpp:59:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(item.elts(), name);
data/ntl-11.4.3/include/NTL/GF2.h:366:13: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
inline void random(GF2& x)
data/ntl-11.4.3/include/NTL/GF2.h:473:13: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
inline void random(ref_GF2 x)
data/ntl-11.4.3/include/NTL/GF2E.h:454:13: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
inline void random(GF2E& x)
data/ntl-11.4.3/include/NTL/GF2E.h:457:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ random(x._GF2E__rep, GF2EInfo->p.n); }
data/ntl-11.4.3/include/NTL/GF2E.h:460:14: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ GF2E x; random(x); NTL_OPT_RETURN(GF2E, x); }
data/ntl-11.4.3/include/NTL/GF2EX.h:177:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(GF2EX& x, long n);
data/ntl-11.4.3/include/NTL/GF2EX.h:179:15: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ GF2EX x; random(x, n); NTL_OPT_RETURN(GF2EX, x); }
data/ntl-11.4.3/include/NTL/GF2X.h:210:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(GF2X& x, long n);
data/ntl-11.4.3/include/NTL/GF2X.h:212:14: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ GF2X x; random(x, n); NTL_OPT_RETURN(GF2X, x); }
data/ntl-11.4.3/include/NTL/RR.h:479:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(RR& z);
data/ntl-11.4.3/include/NTL/RR.h:481:12: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ RR z; random(z); NTL_OPT_RETURN(RR, z); }
data/ntl-11.4.3/include/NTL/ZZ_p.h:499:13: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
inline void random(ZZ_p& x)
data/ntl-11.4.3/include/NTL/ZZ_p.h:505:14: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ ZZ_p x; random(x); NTL_OPT_RETURN(ZZ_p, x); }
data/ntl-11.4.3/include/NTL/ZZ_pE.h:377:13: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
inline void random(ZZ_pE& x)
data/ntl-11.4.3/include/NTL/ZZ_pE.h:380:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ random(x._ZZ_pE__rep, ZZ_pE::degree()); }
data/ntl-11.4.3/include/NTL/ZZ_pE.h:383:15: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ ZZ_pE x; random(x); NTL_OPT_RETURN(ZZ_pE, x); }
data/ntl-11.4.3/include/NTL/ZZ_pEX.h:160:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(ZZ_pEX& x, long n);
data/ntl-11.4.3/include/NTL/ZZ_pEX.h:162:16: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ ZZ_pEX x; random(x, n); NTL_OPT_RETURN(ZZ_pEX, x); }
data/ntl-11.4.3/include/NTL/ZZ_pX.h:228:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(ZZ_pX& x, long n);
data/ntl-11.4.3/include/NTL/ZZ_pX.h:230:15: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ ZZ_pX x; random(x, n); NTL_OPT_RETURN(ZZ_pX, x); }
data/ntl-11.4.3/include/NTL/lzz_p.h:456:13: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
inline void random(zz_p& x)
data/ntl-11.4.3/include/NTL/lzz_p.h:462:14: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ zz_p x; random(x); return x; }
data/ntl-11.4.3/include/NTL/lzz_pE.h:366:13: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
inline void random(zz_pE& x)
data/ntl-11.4.3/include/NTL/lzz_pE.h:369:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ random(x._zz_pE__rep, zz_pE::degree()); }
data/ntl-11.4.3/include/NTL/lzz_pE.h:372:15: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ zz_pE x; random(x); NTL_OPT_RETURN(zz_pE, x); }
data/ntl-11.4.3/include/NTL/lzz_pEX.h:156:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(zz_pEX& x, long n);
data/ntl-11.4.3/include/NTL/lzz_pEX.h:158:16: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ zz_pEX x; random(x, n); NTL_OPT_RETURN(zz_pEX, x); }
data/ntl-11.4.3/include/NTL/lzz_pX.h:229:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(zz_pX& x, long n);
data/ntl-11.4.3/include/NTL/lzz_pX.h:231:15: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ zz_pX x; random(x, n); NTL_OPT_RETURN(zz_pX, x); }
data/ntl-11.4.3/include/NTL/mat_GF2.h:53:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(mat_GF2& x, long n, long m);
data/ntl-11.4.3/include/NTL/mat_GF2.h:55:17: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ mat_GF2 x; random(x, n, m); NTL_OPT_RETURN(mat_GF2, x); }
data/ntl-11.4.3/include/NTL/mat_GF2E.h:38:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(mat_GF2E& x, long n, long m);
data/ntl-11.4.3/include/NTL/mat_GF2E.h:40:18: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ mat_GF2E x; random(x, n, m); NTL_OPT_RETURN(mat_GF2E, x); }
data/ntl-11.4.3/include/NTL/mat_ZZ_p.h:98:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(mat_ZZ_p& x, long n, long m);
data/ntl-11.4.3/include/NTL/mat_ZZ_p.h:100:18: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ mat_ZZ_p x; random(x, n, m); NTL_OPT_RETURN(mat_ZZ_p, x); }
data/ntl-11.4.3/include/NTL/mat_ZZ_pE.h:38:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(mat_ZZ_pE& x, long n, long m);
data/ntl-11.4.3/include/NTL/mat_ZZ_pE.h:40:19: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ mat_ZZ_pE x; random(x, n, m); NTL_OPT_RETURN(mat_ZZ_pE, x); }
data/ntl-11.4.3/include/NTL/mat_lzz_p.h:34:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(mat_zz_p& x, long n, long m);
data/ntl-11.4.3/include/NTL/mat_lzz_p.h:36:18: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ mat_zz_p x; random(x, n, m); NTL_OPT_RETURN(mat_zz_p, x); }
data/ntl-11.4.3/include/NTL/mat_lzz_pE.h:37:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(mat_zz_pE& x, long n, long m);
data/ntl-11.4.3/include/NTL/mat_lzz_pE.h:39:19: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ mat_zz_pE x; random(x, n, m); NTL_OPT_RETURN(mat_zz_pE, x); }
data/ntl-11.4.3/include/NTL/quad_float.h:344:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(quad_float& x);
data/ntl-11.4.3/include/NTL/tools.h:120:9: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
s.setstate(NTL_SNS ios::failbit);\
data/ntl-11.4.3/include/NTL/tools.h:148:24: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!(stmt)) { s.setstate(NTL_SNS ios::failbit); return s; }\
data/ntl-11.4.3/include/NTL/vec_GF2.h:383:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(vec_GF2& x, long n);
data/ntl-11.4.3/include/NTL/vec_GF2.h:385:17: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ vec_GF2 x; random(x, n); NTL_OPT_RETURN(vec_GF2, x); }
data/ntl-11.4.3/include/NTL/vec_GF2E.h:108:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(vec_GF2E& x, long n);
data/ntl-11.4.3/include/NTL/vec_GF2E.h:110:18: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ vec_GF2E x; random(x, n); NTL_OPT_RETURN(vec_GF2E, x); }
data/ntl-11.4.3/include/NTL/vec_ZZ_p.h:94:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(vec_ZZ_p& x, long n);
data/ntl-11.4.3/include/NTL/vec_ZZ_p.h:96:18: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ vec_ZZ_p x; random(x, n); NTL_OPT_RETURN(vec_ZZ_p, x); }
data/ntl-11.4.3/include/NTL/vec_ZZ_pE.h:105:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(vec_ZZ_pE& x, long n);
data/ntl-11.4.3/include/NTL/vec_ZZ_pE.h:107:19: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ vec_ZZ_pE x; random(x, n); NTL_OPT_RETURN(vec_ZZ_pE, x); }
data/ntl-11.4.3/include/NTL/vec_lzz_p.h:105:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(vec_zz_p& x, long n);
data/ntl-11.4.3/include/NTL/vec_lzz_p.h:107:18: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ vec_zz_p x; random(x, n); NTL_OPT_RETURN(vec_zz_p, x); }
data/ntl-11.4.3/include/NTL/vec_lzz_pE.h:105:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(vec_zz_pE& x, long n);
data/ntl-11.4.3/include/NTL/vec_lzz_pE.h:107:19: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
{ vec_zz_pE x; random(x, n); NTL_OPT_RETURN(vec_zz_pE, x); }
data/ntl-11.4.3/src/BitMatTest.cpp:59:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n, m);
data/ntl-11.4.3/src/ExceptionTest.cpp:20:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, 20);
data/ntl-11.4.3/src/ExceptionTest.cpp:23:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(h, 20);
data/ntl-11.4.3/src/ExceptionTest.cpp:37:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/GF2EX.cpp:1795:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(GF2EX& x, long n)
data/ntl-11.4.3/src/GF2EX.cpp:1802:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(x.rep[i]);
data/ntl-11.4.3/src/GF2EX.cpp:3247:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(R, n);
data/ntl-11.4.3/src/GF2EX.cpp:3279:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(R, n);
data/ntl-11.4.3/src/GF2EX.cpp:3838:28: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (i = 0; i < n; i++) random(R[i]);
data/ntl-11.4.3/src/GF2EX.cpp:3855:28: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (i = 0; i < n; i++) random(R[i]);
data/ntl-11.4.3/src/GF2EX.cpp:3891:31: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (i = 0; i < n; i++) random(R[i]);
data/ntl-11.4.3/src/GF2EXDivCross.cpp:37:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, 2*n);
data/ntl-11.4.3/src/GF2EXDivCross.cpp:38:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, n);
data/ntl-11.4.3/src/GF2EXFactoring.cpp:372:10: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(r);
data/ntl-11.4.3/src/GF2EXFactoring.cpp:413:10: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(v[j]);
data/ntl-11.4.3/src/GF2EXFactoring.cpp:829:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(r, n);
data/ntl-11.4.3/src/GF2EXFactoring.cpp:952:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/GF2EXFactoring.cpp:1303:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(r);
data/ntl-11.4.3/src/GF2EXFactoring.cpp:1546:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/GF2EXFactoring.cpp:1604:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(g, n);
data/ntl-11.4.3/src/GF2EXFactoring.cpp:1622:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(h, deg(g));
data/ntl-11.4.3/src/GF2EXGCDCross.cpp:56:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/GF2EXGCDCross.cpp:58:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, n);
data/ntl-11.4.3/src/GF2EXGCDTest.cpp:74:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(h, deg_h);
data/ntl-11.4.3/src/GF2EXGCDTest.cpp:83:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, deg_f);
data/ntl-11.4.3/src/GF2EXGCDTest.cpp:92:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(g, deg_g);
data/ntl-11.4.3/src/GF2EXKarCross.cpp:38:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/GF2EXKarCross.cpp:39:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, n);
data/ntl-11.4.3/src/GF2EXModCross.cpp:37:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, 2*n-1);
data/ntl-11.4.3/src/GF2EXModCross.cpp:38:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/GF2EXTest.cpp:76:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(A, 512);
data/ntl-11.4.3/src/GF2EXTest.cpp:77:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(B, 512);
data/ntl-11.4.3/src/GF2EXTest.cpp:109:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(A, 512);
data/ntl-11.4.3/src/GF2EXTest.cpp:110:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(B, 512);
data/ntl-11.4.3/src/GF2X.cpp:447:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(GF2X& x, long n)
data/ntl-11.4.3/src/GF2X1.cpp:3057:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(R, n);
data/ntl-11.4.3/src/GF2X1.cpp:3089:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(R, n);
data/ntl-11.4.3/src/GF2XFactoring.cpp:288:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/GF2XFactoring.cpp:511:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(h, deg(g));
data/ntl-11.4.3/src/GF2XTest.cpp:35:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/GF2XTest.cpp:36:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, n);
data/ntl-11.4.3/src/GF2XTimeTest.cpp:75:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da); random(b, db); random(c, dc); random(d, dd);
data/ntl-11.4.3/src/GF2XTimeTest.cpp:75:23: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da); random(b, db); random(c, dc); random(d, dd);
data/ntl-11.4.3/src/GF2XTimeTest.cpp:75:39: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da); random(b, db); random(c, dc); random(d, dd);
data/ntl-11.4.3/src/GF2XTimeTest.cpp:75:55: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da); random(b, db); random(c, dc); random(d, dd);
data/ntl-11.4.3/src/GF2XTimeTest.cpp:94:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a[k], (n + (k % 7))*NTL_BITS_PER_LONG);
data/ntl-11.4.3/src/GF2XTimeTest.cpp:95:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b[k], (n + (k % 8))*NTL_BITS_PER_LONG);
data/ntl-11.4.3/src/Poly1TimeTest.cpp:85:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(g, n); // g = random polynomial of degree < n
data/ntl-11.4.3/src/Poly1TimeTest.cpp:86:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(h, n); // h = " "
data/ntl-11.4.3/src/Poly1TimeTest.cpp:87:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n); // f = " "
data/ntl-11.4.3/src/Poly2TimeTest.cpp:73:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(g, n); // g = random polynomial of degree < n
data/ntl-11.4.3/src/Poly2TimeTest.cpp:74:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(h, n); // h = " "
data/ntl-11.4.3/src/Poly2TimeTest.cpp:75:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n); // f = " "
data/ntl-11.4.3/src/Poly2TimeTest.cpp:117:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/Poly3TimeTest.cpp:74:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(g, n); // g = random polynomial of degree < n
data/ntl-11.4.3/src/Poly3TimeTest.cpp:75:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(h, n); // h = " "
data/ntl-11.4.3/src/Poly3TimeTest.cpp:76:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n); // f = " "
data/ntl-11.4.3/src/Poly3TimeTest.cpp:111:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/Poly3TimeTest.cpp:112:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, n);
data/ntl-11.4.3/src/QuickTest.cpp:26:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/QuickTest.cpp:27:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, n);
data/ntl-11.4.3/src/QuickTest.cpp:48:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/QuickTest.cpp:49:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, n);
data/ntl-11.4.3/src/QuickTest.cpp:70:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/QuickTest.cpp:71:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, n);
data/ntl-11.4.3/src/QuickTest.cpp:352:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/QuickTest.cpp:353:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, n);
data/ntl-11.4.3/src/QuickTest.cpp:450:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(j1, n);
data/ntl-11.4.3/src/QuickTest.cpp:451:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(j2, n);
data/ntl-11.4.3/src/RR.cpp:108:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(RR& z)
data/ntl-11.4.3/src/Timing.cpp:71:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/Timing.cpp:74:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, n);
data/ntl-11.4.3/src/Timing.cpp:84:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/Timing.cpp:90:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(A, 2*(deg(f)-1));
data/ntl-11.4.3/src/Timing.cpp:130:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(x, deg(p));
data/ntl-11.4.3/src/Timing.cpp:134:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(y, deg(p));
data/ntl-11.4.3/src/Timing.cpp:148:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(fff, k);
data/ntl-11.4.3/src/Timing.cpp:162:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/Timing.cpp:165:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, n);
data/ntl-11.4.3/src/Timing.cpp:176:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/Timing.cpp:182:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(A, 2*(deg(f)-1));
data/ntl-11.4.3/src/ZZ_pEX.cpp:866:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(ZZ_pEX& x, long n)
data/ntl-11.4.3/src/ZZ_pEX.cpp:873:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(x.rep[i]);
data/ntl-11.4.3/src/ZZ_pEX.cpp:2869:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(R, n);
data/ntl-11.4.3/src/ZZ_pEX.cpp:2900:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(R, n);
data/ntl-11.4.3/src/ZZ_pEX.cpp:3679:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(R[i]);
data/ntl-11.4.3/src/ZZ_pEX.cpp:3699:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(R[i]);
data/ntl-11.4.3/src/ZZ_pEX.cpp:3735:31: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (i = 0; i < n; i++) random(R[i]);
data/ntl-11.4.3/src/ZZ_pEXFactoring.cpp:133:10: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(r, deg(F));
data/ntl-11.4.3/src/ZZ_pEXFactoring.cpp:345:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(r, n);
data/ntl-11.4.3/src/ZZ_pEXFactoring.cpp:391:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/ZZ_pEXFactoring.cpp:735:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(r, deg(F));
data/ntl-11.4.3/src/ZZ_pEXFactoring.cpp:982:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/ZZ_pEXFactoring.cpp:1036:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(g, n);
data/ntl-11.4.3/src/ZZ_pEXFactoring.cpp:1054:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(h, deg(g));
data/ntl-11.4.3/src/ZZ_pEXGCDTest.cpp:78:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(h, deg_h);
data/ntl-11.4.3/src/ZZ_pEXGCDTest.cpp:87:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, deg_f);
data/ntl-11.4.3/src/ZZ_pEXGCDTest.cpp:96:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(g, deg_g);
data/ntl-11.4.3/src/ZZ_pEXTest.cpp:18:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, 20);
data/ntl-11.4.3/src/ZZ_pEXTest.cpp:21:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(h, 20);
data/ntl-11.4.3/src/ZZ_pEXTest.cpp:38:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/ZZ_pX.cpp:1319:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(ZZ_pX& x, long n)
data/ntl-11.4.3/src/ZZ_pX.cpp:1326:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(x.rep[i]);
data/ntl-11.4.3/src/ZZ_pX1.cpp:1586:28: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (i = 0; i < n; i++) random(R[i]);
data/ntl-11.4.3/src/ZZ_pX1.cpp:1613:31: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (i = 0; i < n; i++) random(R[i]);
data/ntl-11.4.3/src/ZZ_pXFactoring.cpp:209:10: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(r);
data/ntl-11.4.3/src/ZZ_pXFactoring.cpp:249:10: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(v[j]);
data/ntl-11.4.3/src/ZZ_pXFactoring.cpp:667:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(r, n);
data/ntl-11.4.3/src/ZZ_pXFactoring.cpp:792:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/ZZ_pXFactoring.cpp:1132:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(P1, n);
data/ntl-11.4.3/src/ZZ_pXFactoring.cpp:1169:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(r);
data/ntl-11.4.3/src/ZZ_pXFactoring.cpp:1412:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/ZZ_pXFactoring.cpp:1459:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(h, deg(g));
data/ntl-11.4.3/src/ZZ_pXTest.cpp:30:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:31:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, db);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:62:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:101:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:106:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:107:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, db);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:141:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:146:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:147:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, db);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:182:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:187:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:188:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, db);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:320:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:325:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:326:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, db);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:360:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/ZZ_pXTest.cpp:366:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, 2*n-1);
data/ntl-11.4.3/src/lzz_pEX.cpp:871:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(zz_pEX& x, long n)
data/ntl-11.4.3/src/lzz_pEX.cpp:878:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(x.rep[i]);
data/ntl-11.4.3/src/lzz_pEX.cpp:2873:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(R, n);
data/ntl-11.4.3/src/lzz_pEX.cpp:2904:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(R, n);
data/ntl-11.4.3/src/lzz_pEX.cpp:3680:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(R[i]);
data/ntl-11.4.3/src/lzz_pEX.cpp:3699:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(R[i]);
data/ntl-11.4.3/src/lzz_pEX.cpp:3735:31: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (i = 0; i < n; i++) random(R[i]);
data/ntl-11.4.3/src/lzz_pEXFactoring.cpp:132:10: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(r, deg(F));
data/ntl-11.4.3/src/lzz_pEXFactoring.cpp:344:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(r, n);
data/ntl-11.4.3/src/lzz_pEXFactoring.cpp:390:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/lzz_pEXFactoring.cpp:734:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(r, deg(F));
data/ntl-11.4.3/src/lzz_pEXFactoring.cpp:981:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/lzz_pEXFactoring.cpp:1035:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(g, n);
data/ntl-11.4.3/src/lzz_pEXFactoring.cpp:1053:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(h, deg(g));
data/ntl-11.4.3/src/lzz_pEXGCDTest.cpp:78:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(h, deg_h);
data/ntl-11.4.3/src/lzz_pEXGCDTest.cpp:87:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, deg_f);
data/ntl-11.4.3/src/lzz_pEXGCDTest.cpp:96:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(g, deg_g);
data/ntl-11.4.3/src/lzz_pEXTest.cpp:18:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, 20);
data/ntl-11.4.3/src/lzz_pEXTest.cpp:21:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(h, 20);
data/ntl-11.4.3/src/lzz_pEXTest.cpp:38:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/lzz_pX.cpp:1340:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(zz_pX& x, long n)
data/ntl-11.4.3/src/lzz_pX1.cpp:1502:28: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (i = 0; i < n; i++) random(R[i]);
data/ntl-11.4.3/src/lzz_pX1.cpp:1529:31: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (i = 0; i < n; i++) random(R[i]);
data/ntl-11.4.3/src/lzz_pXFactoring.cpp:195:10: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(r);
data/ntl-11.4.3/src/lzz_pXFactoring.cpp:225:33: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (long i = 0; i < r; i++) random(v[i]);
data/ntl-11.4.3/src/lzz_pXFactoring.cpp:630:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(r, n);
data/ntl-11.4.3/src/lzz_pXFactoring.cpp:751:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, n);
data/ntl-11.4.3/src/lzz_pXFactoring.cpp:1152:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(P1, n);
data/ntl-11.4.3/src/lzz_pXFactoring.cpp:1190:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(r);
data/ntl-11.4.3/src/lzz_pXFactoring.cpp:1443:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/lzz_pXFactoring.cpp:1490:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(h, deg(g));
data/ntl-11.4.3/src/lzz_pXTest.cpp:18:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da);
data/ntl-11.4.3/src/lzz_pXTest.cpp:19:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, db);
data/ntl-11.4.3/src/lzz_pXTest.cpp:50:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da);
data/ntl-11.4.3/src/lzz_pXTest.cpp:85:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/lzz_pXTest.cpp:90:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da);
data/ntl-11.4.3/src/lzz_pXTest.cpp:91:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, db);
data/ntl-11.4.3/src/lzz_pXTest.cpp:120:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/lzz_pXTest.cpp:125:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da);
data/ntl-11.4.3/src/lzz_pXTest.cpp:126:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, db);
data/ntl-11.4.3/src/lzz_pXTest.cpp:157:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/lzz_pXTest.cpp:162:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da);
data/ntl-11.4.3/src/lzz_pXTest.cpp:163:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, db);
data/ntl-11.4.3/src/lzz_pXTest.cpp:291:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/lzz_pXTest.cpp:296:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, da);
data/ntl-11.4.3/src/lzz_pXTest.cpp:297:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(b, db);
data/ntl-11.4.3/src/lzz_pXTest.cpp:331:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(f, n);
data/ntl-11.4.3/src/lzz_pXTest.cpp:337:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(a, 2*n-1);
data/ntl-11.4.3/src/mat_GF2.cpp:754:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(mat_GF2& x, long n, long m)
data/ntl-11.4.3/src/mat_GF2.cpp:757:33: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (long i = 0; i < n; i++) random(x[i], m);
data/ntl-11.4.3/src/mat_GF2E.cpp:987:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(mat_GF2E& x, long n, long m)
data/ntl-11.4.3/src/mat_GF2E.cpp:990:33: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (long i = 0; i < n; i++) random(x[i], m);
data/ntl-11.4.3/src/mat_ZZ_p.cpp:1495:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(mat_ZZ_p& x, long n, long m)
data/ntl-11.4.3/src/mat_ZZ_p.cpp:1498:33: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (long i = 0; i < n; i++) random(x[i], m);
data/ntl-11.4.3/src/mat_ZZ_pE.cpp:1034:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(mat_ZZ_pE& x, long n, long m)
data/ntl-11.4.3/src/mat_ZZ_pE.cpp:1037:33: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (long i = 0; i < n; i++) random(x[i], m);
data/ntl-11.4.3/src/mat_lzz_p.cpp:8208:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(mat_zz_p& x, long n, long m)
data/ntl-11.4.3/src/mat_lzz_p.cpp:8211:33: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (long i = 0; i < n; i++) random(x[i], m);
data/ntl-11.4.3/src/mat_lzz_pE.cpp:1046:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(mat_zz_pE& x, long n, long m)
data/ntl-11.4.3/src/mat_lzz_pE.cpp:1049:33: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (long i = 0; i < n; i++) random(x[i], m);
data/ntl-11.4.3/src/mat_lzz_pTest.cpp:14:10: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(A[i][j]);
data/ntl-11.4.3/src/mat_lzz_pTest.cpp:43:10: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(C[i][j]);
data/ntl-11.4.3/src/mat_lzz_pTest.cpp:52:7: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(A[i]);
data/ntl-11.4.3/src/mat_lzz_pTest.cpp:172:36: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (long i = 0; i < m; i++) random(R[i]);
data/ntl-11.4.3/src/mat_lzz_pTest.cpp:204:36: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (long i = 0; i < n; i++) random(R[i]);
data/ntl-11.4.3/src/quad_float1.cpp:216:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(quad_float& x)
data/ntl-11.4.3/src/quad_float1.cpp:222:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(t);
data/ntl-11.4.3/src/quad_float1.cpp:229:4: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
random(x);
data/ntl-11.4.3/src/vec_GF2.cpp:550:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(vec_GF2& x, long n)
data/ntl-11.4.3/src/vec_GF2E.cpp:225:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(vec_GF2E& x, long n)
data/ntl-11.4.3/src/vec_GF2E.cpp:228:33: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (long i = 0; i < n; i++) random(x[i]);
data/ntl-11.4.3/src/vec_ZZ_p.cpp:257:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(vec_ZZ_p& x, long n)
data/ntl-11.4.3/src/vec_ZZ_p.cpp:260:33: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (long i = 0; i < n; i++) random(x[i]);
data/ntl-11.4.3/src/vec_ZZ_pE.cpp:177:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(vec_ZZ_pE& x, long n)
data/ntl-11.4.3/src/vec_ZZ_pE.cpp:180:33: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (long i = 0; i < n; i++) random(x[i]);
data/ntl-11.4.3/src/vec_lzz_p.cpp:317:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(vec_zz_p& x, long n)
data/ntl-11.4.3/src/vec_lzz_pE.cpp:177:6: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
void random(vec_zz_pE& x, long n)
data/ntl-11.4.3/src/vec_lzz_pE.cpp:180:33: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
for (long i = 0; i < n; i++) random(x[i]);
data/ntl-11.4.3/include/NTL/ZZ.h:1149:15: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(&res[0], &buf[pos], n);
data/ntl-11.4.3/include/NTL/ZZ.h:1190:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[64];
data/ntl-11.4.3/include/NTL/ZZ.h:1324:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[NTL_BITS_PER_LONG/8];
data/ntl-11.4.3/include/NTL/tools.h:1094:32: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
struct Relocate_aux_TwoChars { char d[2]; };
data/ntl-11.4.3/src/CheckAVX.cpp:44:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[0] = atoi("1");
data/ntl-11.4.3/src/CheckAVX.cpp:45:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[1] = atoi("2");
data/ntl-11.4.3/src/CheckAVX.cpp:46:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[2] = atoi("3");
data/ntl-11.4.3/src/CheckAVX.cpp:47:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[3] = atoi("4");
data/ntl-11.4.3/src/CheckAVX.cpp:49:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[0] = atoi("2");
data/ntl-11.4.3/src/CheckAVX.cpp:50:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[1] = atoi("3");
data/ntl-11.4.3/src/CheckAVX.cpp:51:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[2] = atoi("4");
data/ntl-11.4.3/src/CheckAVX.cpp:52:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[3] = atoi("5");
data/ntl-11.4.3/src/CheckAVX.cpp:54:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[0] = atoi("3");
data/ntl-11.4.3/src/CheckAVX.cpp:55:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[1] = atoi("4");
data/ntl-11.4.3/src/CheckAVX.cpp:56:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[2] = atoi("5");
data/ntl-11.4.3/src/CheckAVX.cpp:57:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[3] = atoi("6");
data/ntl-11.4.3/src/CheckAVX2.cpp:40:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[i] = atoi("0") + i;
data/ntl-11.4.3/src/CheckAVX512F.cpp:59:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[0] = atoi("1");
data/ntl-11.4.3/src/CheckAVX512F.cpp:60:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[1] = atoi("2");
data/ntl-11.4.3/src/CheckAVX512F.cpp:61:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[2] = atoi("3");
data/ntl-11.4.3/src/CheckAVX512F.cpp:62:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[3] = atoi("4");
data/ntl-11.4.3/src/CheckAVX512F.cpp:63:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[4] = atoi("5");
data/ntl-11.4.3/src/CheckAVX512F.cpp:64:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[5] = atoi("6");
data/ntl-11.4.3/src/CheckAVX512F.cpp:65:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[6] = atoi("7");
data/ntl-11.4.3/src/CheckAVX512F.cpp:66:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[7] = atoi("8");
data/ntl-11.4.3/src/CheckAVX512F.cpp:68:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[0] = atoi("2");
data/ntl-11.4.3/src/CheckAVX512F.cpp:69:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[1] = atoi("3");
data/ntl-11.4.3/src/CheckAVX512F.cpp:70:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[2] = atoi("4");
data/ntl-11.4.3/src/CheckAVX512F.cpp:71:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[3] = atoi("5");
data/ntl-11.4.3/src/CheckAVX512F.cpp:72:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[4] = atoi("6");
data/ntl-11.4.3/src/CheckAVX512F.cpp:73:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[5] = atoi("7");
data/ntl-11.4.3/src/CheckAVX512F.cpp:74:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[6] = atoi("8");
data/ntl-11.4.3/src/CheckAVX512F.cpp:75:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[7] = atoi("9");
data/ntl-11.4.3/src/CheckAVX512F.cpp:77:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[0] = atoi("3");
data/ntl-11.4.3/src/CheckAVX512F.cpp:78:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[1] = atoi("4");
data/ntl-11.4.3/src/CheckAVX512F.cpp:79:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[2] = atoi("5");
data/ntl-11.4.3/src/CheckAVX512F.cpp:80:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[3] = atoi("6");
data/ntl-11.4.3/src/CheckAVX512F.cpp:81:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[4] = atoi("7");
data/ntl-11.4.3/src/CheckAVX512F.cpp:82:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[5] = atoi("8");
data/ntl-11.4.3/src/CheckAVX512F.cpp:83:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[6] = atoi("9");
data/ntl-11.4.3/src/CheckAVX512F.cpp:84:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[7] = atoi("10");
data/ntl-11.4.3/src/CheckAVX512F.cpp:91:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
lp[0] = atoi("1");
data/ntl-11.4.3/src/CheckAVX512F.cpp:92:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
lp[1] = atoi("2");
data/ntl-11.4.3/src/CheckAVX512F.cpp:93:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
lp[2] = atoi("3");
data/ntl-11.4.3/src/CheckAVX512F.cpp:94:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
lp[3] = atoi("4");
data/ntl-11.4.3/src/CheckBUILTIN_CLZL.cpp:14:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unsigned long x = atoi("3");
data/ntl-11.4.3/src/CheckFMA.cpp:45:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[0] = atoi("1");
data/ntl-11.4.3/src/CheckFMA.cpp:46:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[1] = atoi("2");
data/ntl-11.4.3/src/CheckFMA.cpp:47:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[2] = atoi("3");
data/ntl-11.4.3/src/CheckFMA.cpp:48:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[3] = atoi("4");
data/ntl-11.4.3/src/CheckFMA.cpp:50:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[0] = atoi("2");
data/ntl-11.4.3/src/CheckFMA.cpp:51:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[1] = atoi("3");
data/ntl-11.4.3/src/CheckFMA.cpp:52:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[2] = atoi("4");
data/ntl-11.4.3/src/CheckFMA.cpp:53:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
b[3] = atoi("5");
data/ntl-11.4.3/src/CheckFMA.cpp:55:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[0] = atoi("3");
data/ntl-11.4.3/src/CheckFMA.cpp:56:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[1] = atoi("4");
data/ntl-11.4.3/src/CheckFMA.cpp:57:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[2] = atoi("5");
data/ntl-11.4.3/src/CheckFMA.cpp:58:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x[3] = atoi("6");
data/ntl-11.4.3/src/CheckLL_TYPE.cpp:21:24: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unsigned long x1 = -atol("1");
data/ntl-11.4.3/src/CheckLL_TYPE.cpp:22:24: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unsigned long x2 = -atol("01");
data/ntl-11.4.3/src/CheckLL_TYPE.cpp:23:24: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unsigned long x3 = -atol("001");
data/ntl-11.4.3/src/CheckLL_TYPE.cpp:24:24: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unsigned long x4 = -atol("0001");
data/ntl-11.4.3/src/CheckPCLMUL.cpp:31:39: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unsigned long a = ((unsigned long) atoi("15")) << (NTL_BITS_PER_LONG-4);
data/ntl-11.4.3/src/CheckPCLMUL.cpp:32:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unsigned long b = atoi("4");
data/ntl-11.4.3/src/CheckPCLMUL.cpp:37:40: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unsigned long c0 = ((unsigned long) atoi("3")) << (NTL_BITS_PER_LONG-2);
data/ntl-11.4.3/src/CheckPCLMUL.cpp:38:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unsigned long c1 = atoi("3");
data/ntl-11.4.3/src/CheckSSSE3.cpp:42:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
a[i] = atoi("0") + i;
data/ntl-11.4.3/src/MakeDesc.cpp:772:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *yn_vec[2] = { "no", "yes" };
data/ntl-11.4.3/src/MakeDesc.cpp:1201:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen("mach_desc.h", "w");
data/ntl-11.4.3/src/TestGetTime.cpp:25:8: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
x = atol(argv[1]); /* = 1 */
data/ntl-11.4.3/src/TestGetTime.cpp:27:8: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
n = atol(argv[2]); /* = 1048576 = 2^20 */
data/ntl-11.4.3/src/TestGetTime.cpp:29:8: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
m = atol(argv[3]); /* = 1048575 = 2^20 - 1 */
data/ntl-11.4.3/src/ZZ.cpp:1603:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[64];
data/ntl-11.4.3/src/ZZ.cpp:1775:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char K[SHA256_BLOCKSIZE];
data/ntl-11.4.3/src/ZZ.cpp:1776:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tmp[SHA256_HASHSIZE];
data/ntl-11.4.3/src/ZZ.cpp:1824:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char K[SHA256_HASHSIZE];
data/ntl-11.4.3/src/ZZ.cpp:1828:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char counter[8];
data/ntl-11.4.3/src/ZZ.cpp:2222:12: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(state_store.elts(), other.state_store.elts(), RANSTREAM_STATESZ);
data/ntl-11.4.3/src/ZZ.cpp:2223:12: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(buf_store.elts(), other.buf_store.elts(), RANSTREAM_BUFSZ);
data/ntl-11.4.3/src/ZZ.cpp:2254:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(&res[0], &buf[pos], n);
data/ntl-11.4.3/src/ZZ.cpp:2269:12: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(&res[0], &buf[pos], RANSTREAM_BUFSZ-pos);
data/ntl-11.4.3/src/ZZ.cpp:2327:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(&res[i], &buf[0], n-i);
data/ntl-11.4.3/src/ZZ.cpp:2351:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[64];
data/ntl-11.4.3/src/ZZ.cpp:2579:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[NTL_BITS_PER_LONG/8];
data/ntl-11.4.3/src/ZZ.cpp:2589:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[NTL_BITS_PER_LONG/8];
data/ntl-11.4.3/src/ZZ.cpp:2604:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[NTL_BITS_PER_LONG/8];
data/ntl-11.4.3/src/ZZ.cpp:2618:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[NTL_BITS_PER_LONG/8];
data/ntl-11.4.3/src/ZZ.cpp:2635:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[NTL_BITS_PER_LONG/8];
data/ntl-11.4.3/src/ZZ.cpp:2649:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[NTL_BITS_PER_LONG/8];
data/ntl-11.4.3/src/ZZ.cpp:2765:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char lbuf[3];
data/ntl-11.4.3/src/ZZ.cpp:2795:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char hbuf[2];
data/ntl-11.4.3/src/ZZXFacTest.cpp:46:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ZZXFac_MaxPrune = atoi(argv[1]);
data/ntl-11.4.3/src/fileio.cpp:17:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
s.open(name, std::ios::out);
data/ntl-11.4.3/src/fileio.cpp:31:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
s.open(name, std::ios::out);
data/ntl-11.4.3/src/fileio.cpp:42:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
s.open(name, std::ios::in);
data/ntl-11.4.3/src/gen_gmp_aux.cpp:76:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/ntl-11.4.3/src/gen_gmp_aux.cpp:116:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buffer, "%d.%d.%d", __GNU_MP_VERSION, __GNU_MP_VERSION_MINOR,
data/ntl-11.4.3/src/gen_gmp_aux.cpp:123:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buffer, "%d.%d", __GNU_MP_VERSION, __GNU_MP_VERSION_MINOR);
data/ntl-11.4.3/src/newnames.cpp:21:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *names[NumNames][2] = {
data/ntl-11.4.3/src/newnames.cpp:125:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10000];
data/ntl-11.4.3/include/NTL/tools.h:1196:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
setg(s, s, s + std::strlen(s));
data/ntl-11.4.3/src/MakeDesc.cpp:1179:11: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = getchar();
data/ntl-11.4.3/src/fileio.cpp:58:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
item.SetLength(strlen(name)+1);
data/ntl-11.4.3/src/newnames.cpp:139:11: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = getchar();
ANALYSIS SUMMARY:
Hits = 369
Lines analyzed = 140882 in approximately 2.73 seconds (51525 lines/second)
Physical Source Lines of Code (SLOC) = 94318
Hits@level = [0] 302 [1] 4 [2] 100 [3] 264 [4] 1 [5] 0
Hits@level+ = [0+] 671 [1+] 369 [2+] 365 [3+] 265 [4+] 1 [5+] 0
Hits/KSLOC@level+ = [0+] 7.11423 [1+] 3.9123 [2+] 3.86989 [3+] 2.80964 [4+] 0.0106024 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.