Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/nordugrid-arc-6.8.1/include/arc/job/error.h Examining data/nordugrid-arc-6.8.1/include/arc/job/runtimeenvironment.h Examining data/nordugrid-arc-6.8.1/include/arc/ArcLocation.h Examining data/nordugrid-arc-6.8.1/include/arc/ArcConfigIni.h Examining data/nordugrid-arc-6.8.1/include/arc/data/DataPointDelegate.h Examining data/nordugrid-arc-6.8.1/include/arc/data/DataExternalHelper.h Examining data/nordugrid-arc-6.8.1/include/arc/data/MkDirRecursive.h Examining data/nordugrid-arc-6.8.1/include/arc/data/DataSpeed.h Examining data/nordugrid-arc-6.8.1/include/arc/data/DataBuffer.h Examining data/nordugrid-arc-6.8.1/include/arc/data/DataMover.h Examining data/nordugrid-arc-6.8.1/include/arc/data/FileCacheHash.h Examining data/nordugrid-arc-6.8.1/include/arc/data/URLMap.h Examining data/nordugrid-arc-6.8.1/include/arc/data/DataHandle.h Examining data/nordugrid-arc-6.8.1/include/arc/data/DataPointDirect.h Examining data/nordugrid-arc-6.8.1/include/arc/data/DataPointIndex.h Examining data/nordugrid-arc-6.8.1/include/arc/data/FileCache.h Examining data/nordugrid-arc-6.8.1/include/arc/data/DataExternalComm.h Examining data/nordugrid-arc-6.8.1/include/arc/data/DataCallback.h Examining data/nordugrid-arc-6.8.1/include/arc/data/DataStatus.h Examining data/nordugrid-arc-6.8.1/include/arc/data/DataPoint.h Examining data/nordugrid-arc-6.8.1/include/arc/data/FileInfo.h Examining data/nordugrid-arc-6.8.1/include/arc/JobPerfLog.h Examining data/nordugrid-arc-6.8.1/include/arc/loader/ModuleManager.h Examining data/nordugrid-arc-6.8.1/include/arc/loader/FinderLoader.h Examining data/nordugrid-arc-6.8.1/include/arc/loader/Loader.h Examining data/nordugrid-arc-6.8.1/include/arc/loader/Plugin.h Examining data/nordugrid-arc-6.8.1/include/arc/DateTime.h Examining data/nordugrid-arc-6.8.1/include/arc/data-staging/DTRList.h Examining data/nordugrid-arc-6.8.1/include/arc/data-staging/Processor.h Examining data/nordugrid-arc-6.8.1/include/arc/data-staging/Generator.h Examining data/nordugrid-arc-6.8.1/include/arc/data-staging/DataDeliveryComm.h Examining data/nordugrid-arc-6.8.1/include/arc/data-staging/DataDelivery.h Examining data/nordugrid-arc-6.8.1/include/arc/data-staging/TransferShares.h Examining data/nordugrid-arc-6.8.1/include/arc/data-staging/DTRStatus.h Examining data/nordugrid-arc-6.8.1/include/arc/data-staging/DTR.h Examining data/nordugrid-arc-6.8.1/include/arc/data-staging/Scheduler.h Examining data/nordugrid-arc-6.8.1/include/arc/XMLNode.h Examining data/nordugrid-arc-6.8.1/include/arc/MysqlWrapper.h Examining data/nordugrid-arc-6.8.1/include/arc/User.h Examining data/nordugrid-arc-6.8.1/include/arc/communication/ClientInterface.h Examining data/nordugrid-arc-6.8.1/include/arc/communication/ClientSAML2SSO.h Examining data/nordugrid-arc-6.8.1/include/arc/communication/ClientX509Delegation.h Examining data/nordugrid-arc-6.8.1/include/arc/credential/Proxycertinfo.h Examining data/nordugrid-arc-6.8.1/include/arc/credential/VOMSAttribute.h Examining data/nordugrid-arc-6.8.1/include/arc/credential/PasswordSource.h Examining data/nordugrid-arc-6.8.1/include/arc/credential/NSSUtil.h Examining data/nordugrid-arc-6.8.1/include/arc/credential/VOMSConfig.h Examining data/nordugrid-arc-6.8.1/include/arc/credential/Credential.h Examining data/nordugrid-arc-6.8.1/include/arc/credential/VOMSUtil.h Examining data/nordugrid-arc-6.8.1/include/arc/credential/CertUtil.h Examining data/nordugrid-arc-6.8.1/include/arc/ws-security/SAMLToken.h Examining data/nordugrid-arc-6.8.1/include/arc/ws-security/X509Token.h Examining data/nordugrid-arc-6.8.1/include/arc/ws-security/UsernameToken.h Examining data/nordugrid-arc-6.8.1/include/arc/ArcConfigFile.h Examining data/nordugrid-arc-6.8.1/include/arc/xmlsec/XmlSecUtils.h Examining data/nordugrid-arc-6.8.1/include/arc/xmlsec/XMLSecNode.h Examining data/nordugrid-arc-6.8.1/include/arc/xmlsec/saml_util.h Examining data/nordugrid-arc-6.8.1/include/arc/ArcConfig.h Examining data/nordugrid-arc-6.8.1/include/arc/Profile.h Examining data/nordugrid-arc-6.8.1/include/arc/IniConfig.h Examining data/nordugrid-arc-6.8.1/include/arc/external/cJSON/cJSON.h Examining data/nordugrid-arc-6.8.1/include/arc/JSON.h Examining data/nordugrid-arc-6.8.1/include/arc/UserConfig.h Examining data/nordugrid-arc-6.8.1/include/arc/IString.h Examining data/nordugrid-arc-6.8.1/include/arc/Watchdog.h Examining data/nordugrid-arc-6.8.1/include/arc/wsrf/WSResourceProperties.h Examining data/nordugrid-arc-6.8.1/include/arc/wsrf/WSRFBaseFault.h Examining data/nordugrid-arc-6.8.1/include/arc/wsrf/WSRF.h Examining data/nordugrid-arc-6.8.1/include/arc/infosys/InformationInterface.h Examining data/nordugrid-arc-6.8.1/include/arc/infosys/InfoCache.h Examining data/nordugrid-arc-6.8.1/include/arc/infosys/InfoRegister.h Examining data/nordugrid-arc-6.8.1/include/arc/infosys/InfoFilter.h Examining data/nordugrid-arc-6.8.1/include/arc/infosys/RegisteredService.h Examining data/nordugrid-arc-6.8.1/include/arc/Thread.h Examining data/nordugrid-arc-6.8.1/include/arc/Logger.h Examining data/nordugrid-arc-6.8.1/include/arc/credentialstore/ClientVOMS.h Examining data/nordugrid-arc-6.8.1/include/arc/credentialstore/CredentialStore.h Examining data/nordugrid-arc-6.8.1/include/arc/credentialstore/ClientVOMSRESTful.h Examining data/nordugrid-arc-6.8.1/include/arc/security/PDP.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/alg/AlgFactory.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/alg/PermitOverridesAlg.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/alg/DenyOverridesAlg.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/alg/OrderedAlg.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/alg/CombiningAlg.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/EvaluationCtx.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/RequestItem.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/EvaluatorLoader.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/Evaluator.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/Source.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/fn/FnFactory.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/fn/EqualFunction.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/fn/MatchFunction.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/fn/Function.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/fn/InRangeFunction.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/Request.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/Result.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/Response.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/policy/Policy.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/PolicyParser.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/PolicyStore.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/attr/AttributeFactory.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/attr/AnyURIAttribute.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/attr/RequestAttribute.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/attr/DateTimeAttribute.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/attr/StringAttribute.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/attr/GenericAttribute.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/attr/AttributeProxy.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/attr/X500NameAttribute.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/attr/AttributeValue.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ArcPDP/attr/BooleanAttribute.h Examining data/nordugrid-arc-6.8.1/include/arc/security/ClassLoader.h Examining data/nordugrid-arc-6.8.1/include/arc/security/Security.h Examining data/nordugrid-arc-6.8.1/include/arc/GUID.h Examining data/nordugrid-arc-6.8.1/include/arc/FileLock.h Examining data/nordugrid-arc-6.8.1/include/arc/DBInterface.h Examining data/nordugrid-arc-6.8.1/include/arc/Run.h Examining data/nordugrid-arc-6.8.1/include/arc/Base64.h Examining data/nordugrid-arc-6.8.1/include/arc/OptionParser.h Examining data/nordugrid-arc-6.8.1/include/arc/ArcRegex.h Examining data/nordugrid-arc-6.8.1/include/arc/FileUtils.h Examining data/nordugrid-arc-6.8.1/include/arc/crypto/OpenSSL.h Examining data/nordugrid-arc-6.8.1/include/arc/HostnameResolver.h Examining data/nordugrid-arc-6.8.1/include/arc/IntraProcessCounter.h Examining data/nordugrid-arc-6.8.1/include/arc/FileAccess.h Examining data/nordugrid-arc-6.8.1/include/arc/CheckSum.h Examining data/nordugrid-arc-6.8.1/include/arc/Utils.h Examining data/nordugrid-arc-6.8.1/include/arc/globusutils/GSSCredential.h Examining data/nordugrid-arc-6.8.1/include/arc/globusutils/GlobusErrorUtils.h Examining data/nordugrid-arc-6.8.1/include/arc/globusutils/GlobusWorkarounds.h Examining data/nordugrid-arc-6.8.1/include/arc/message/MCC_Status.h Examining data/nordugrid-arc-6.8.1/include/arc/message/PayloadStream.h Examining data/nordugrid-arc-6.8.1/include/arc/message/PayloadSOAP.h Examining data/nordugrid-arc-6.8.1/include/arc/message/SecHandler.h Examining data/nordugrid-arc-6.8.1/include/arc/message/Plexer.h Examining data/nordugrid-arc-6.8.1/include/arc/message/MessageAuth.h Examining data/nordugrid-arc-6.8.1/include/arc/message/SecAttr.h Examining data/nordugrid-arc-6.8.1/include/arc/message/Message.h Examining data/nordugrid-arc-6.8.1/include/arc/message/MCCLoader.h Examining data/nordugrid-arc-6.8.1/include/arc/message/SOAPMessage.h Examining data/nordugrid-arc-6.8.1/include/arc/message/MessageAttributes.h Examining data/nordugrid-arc-6.8.1/include/arc/message/MCC.h Examining data/nordugrid-arc-6.8.1/include/arc/message/PayloadRaw.h Examining data/nordugrid-arc-6.8.1/include/arc/message/SOAPEnvelope.h Examining data/nordugrid-arc-6.8.1/include/arc/message/Service.h Examining data/nordugrid-arc-6.8.1/include/arc/delegation/DelegationInterface.h Examining data/nordugrid-arc-6.8.1/include/arc/ws-addressing/WSA.h Examining data/nordugrid-arc-6.8.1/include/arc/URL.h Examining data/nordugrid-arc-6.8.1/include/arc/otokens/otokens.h Examining data/nordugrid-arc-6.8.1/include/arc/otokens/openid_metadata.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/SubmissionStatus.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/JobControllerPlugin.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/RSLParser.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/GLUE2.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/JobDescriptionParserPlugin.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/JobInformationStorage.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/GLUE2Entity.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/JobDescription.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/ComputingServiceRetriever.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/EndpointQueryingStatus.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/Broker.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/SubmitterPlugin.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/JobInformationStorageXML.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/ExecutionTarget.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/JobInformationStorageBDB.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/Job.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/JobSupervisor.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/JobInformationStorageSQLite.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/Submitter.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/EntityRetriever.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/JobState.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/WSCommonPlugin.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/Endpoint.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/BrokerPlugin.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/Software.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/TestACCControl.h Examining data/nordugrid-arc-6.8.1/include/arc/compute/EntityRetrieverPlugin.h Examining data/nordugrid-arc-6.8.1/include/arc/Counter.h Examining data/nordugrid-arc-6.8.1/include/arc/StringConv.h Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/DTRList.h Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/Processor.h Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDeliveryLocalComm.h Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/DTRStatus.cpp Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDeliveryComm.h Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDelivery.h Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/test/DeliveryTest.cpp Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/test/ProcessorTest.cpp Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/test/DTRTest.cpp Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/DTR.cpp Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/DTRList.cpp Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/TransferShares.h Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/Processor.cpp Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/DTRStatus.h Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDeliveryComm.cpp Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDeliveryRemoteComm.h Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/DataStagingDelivery.cpp Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDeliveryLocalComm.cpp Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/examples/Generator.h Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/examples/Generator.cpp Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/examples/generator-main.cpp Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDeliveryRemoteComm.cpp Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/DTR.h Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDelivery.cpp Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/Scheduler.h Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/TransferShares.cpp Examining data/nordugrid-arc-6.8.1/src/libs/data-staging/Scheduler.cpp Examining data/nordugrid-arc-6.8.1/src/services/data-staging/DataDeliveryService.h Examining data/nordugrid-arc-6.8.1/src/services/data-staging/DataDeliveryService.cpp Examining data/nordugrid-arc-6.8.1/src/services/candypond/CandyPond.h Examining data/nordugrid-arc-6.8.1/src/services/candypond/CandyPond.cpp Examining data/nordugrid-arc-6.8.1/src/services/candypond/CandyPondGenerator.h Examining data/nordugrid-arc-6.8.1/src/services/candypond/CandyPondGenerator.cpp Examining data/nordugrid-arc-6.8.1/src/services/wrappers/python/pythonwrapper.cpp Examining data/nordugrid-arc-6.8.1/src/services/wrappers/python/pythonwrapper.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/PayloadFile.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/tools.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/arex.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/tools.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/get.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/information_collector.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/internaljobplugin/JobControllerPluginINTERNAL.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/internaljobplugin/INTERNALClient.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/internaljobplugin/JobStateINTERNAL.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/internaljobplugin/TargetInformationRetrieverPluginINTERNAL.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/internaljobplugin/SubmitterPluginINTERNAL.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/internaljobplugin/SubmitterPluginINTERNAL.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/internaljobplugin/JobStateINTERNAL.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/internaljobplugin/DescriptorsINTERNAL.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/internaljobplugin/TargetInformationRetrieverPluginINTERNAL.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/internaljobplugin/INTERNALClient.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/internaljobplugin/JobControllerPluginINTERNAL.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/internaljobplugin/JobListRetrieverPluginINTERNAL.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/internaljobplugin/JobListRetrieverPluginINTERNAL.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/cachecheck.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/put.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/test_cache_check.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/arex.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/job.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/FileChunks.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/FileChunks.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/change_activity_status.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/update_credentials.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/gm_jobs.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/StagingConfig.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/CacheConfig.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/GMConfig.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/CacheConfig.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/StagingConfig.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/UrlMapConfig.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/CoreConfig.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/UrlMapConfig.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/GMConfig.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/CoreConfig.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/GridManager.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/send_mail.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/send_mail.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/smtp-send.c Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/gm_delegations_converter.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/misc/proxy.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/misc/proxy.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/GridManager.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/gm_kick.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/JobsList.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/JobDescriptionHandler.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/GMJob.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/GMJob.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/JobDescriptionHandler.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/DTRGenerator.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/JobsList.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/CommFIFO.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/ContinuationPlugins.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/DTRGenerator.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/ContinuationPlugins.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/CommFIFO.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin_acl.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/init.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/accounting/AccountingDB.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/accounting/test_adb.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/accounting/AccountingDBSQLite.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/accounting/AAR.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/accounting/AAR.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/accounting/AccountingDBSQLite.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/run/RunRedirected.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/run/RunParallel.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/run/RunRedirected.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/run/RunPlugin.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/run/RunPlugin.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/run/RunParallel.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileContent.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileContent.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileHandling.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileHandling.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/log/SpaceMetrics.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/log/HeartBeatMetrics.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/log/JobsMetrics.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/log/HeartBeatMetrics.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/log/JobsMetrics.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/log/JobLog.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/log/JobLog.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/log/SpaceMetrics.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/arc_blahp_logger.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/test_write_grami_file.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/inputcheck.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/get_activity_statuses.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/create_activity.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/SQLhelpers.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/job.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/faults.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordBDB.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecord.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/uid.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordSQLite.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/DelegationStores.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/DelegationStores.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/DelegationStore.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/uid.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecord.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/DelegationStore.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordSQLite.cpp Examining data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordBDB.h Examining data/nordugrid-arc-6.8.1/src/services/a-rex/PayloadFile.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/dataread.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/simplemap.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/identity_dn.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/object_access.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/identity_voms.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/auth.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/unixmap.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/auth.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/auth_subject.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/auth_voms.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/identity_voms.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/permission.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/auth_plugin.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/identity.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/unixmap_lcmaps.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/identity.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/permission.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/simplemap.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/identity_dn.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/object_access.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/auth_file.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/unixmap.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/conf/conf_vo.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/conf/daemon.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/conf/conf_vo.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/conf/daemon.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/names.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/init.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/misc.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/listener.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/datawrite.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/names.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/misc/ldapquery.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/misc/proxy.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/misc/ldapquery.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/misc/proxy.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/userspec.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/config.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/misc.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/datalist.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot_config.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/conf.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/run/run_plugin.cpp Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/run/run_plugin.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.h Examining data/nordugrid-arc-6.8.1/src/services/gridftpd/userspec.h Examining data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c Examining data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.h Examining data/nordugrid-arc-6.8.1/src/clients/data/arcmkdir.cpp Examining data/nordugrid-arc-6.8.1/src/clients/data/arcrename.cpp Examining data/nordugrid-arc-6.8.1/src/clients/data/arcls.cpp Examining data/nordugrid-arc-6.8.1/src/clients/data/arccp.cpp Examining data/nordugrid-arc-6.8.1/src/clients/data/arcrm.cpp Examining data/nordugrid-arc-6.8.1/src/clients/credentials/arcproxy_proxy.cpp Examining data/nordugrid-arc-6.8.1/src/clients/credentials/arcproxy.h Examining data/nordugrid-arc-6.8.1/src/clients/credentials/arcproxy.cpp Examining data/nordugrid-arc-6.8.1/src/clients/credentials/arcproxy_myproxy.cpp Examining data/nordugrid-arc-6.8.1/src/clients/credentials/arcproxy_voms.cpp Examining data/nordugrid-arc-6.8.1/src/clients/compute/arcresub.cpp Examining data/nordugrid-arc-6.8.1/src/clients/compute/arcsub.cpp Examining data/nordugrid-arc-6.8.1/src/clients/compute/arccat.cpp Examining data/nordugrid-arc-6.8.1/src/clients/compute/arcresume.cpp Examining data/nordugrid-arc-6.8.1/src/clients/compute/arcstat.cpp Examining data/nordugrid-arc-6.8.1/src/clients/compute/arcget.cpp Examining data/nordugrid-arc-6.8.1/src/clients/compute/submit.cpp Examining data/nordugrid-arc-6.8.1/src/clients/compute/arctest.cpp Examining data/nordugrid-arc-6.8.1/src/clients/compute/arckill.cpp Examining data/nordugrid-arc-6.8.1/src/clients/compute/arcsync.cpp Examining data/nordugrid-arc-6.8.1/src/clients/compute/arcrenew.cpp Examining data/nordugrid-arc-6.8.1/src/clients/compute/utils.cpp Examining data/nordugrid-arc-6.8.1/src/clients/compute/utils.h Examining data/nordugrid-arc-6.8.1/src/clients/compute/submit.h Examining data/nordugrid-arc-6.8.1/src/clients/compute/arcinfo.cpp Examining data/nordugrid-arc-6.8.1/src/clients/compute/arcclean.cpp Examining data/nordugrid-arc-6.8.1/src/utils/hed/wsdl2hed.cpp Examining data/nordugrid-arc-6.8.1/src/utils/hed/complextype.cpp Examining data/nordugrid-arc-6.8.1/src/utils/hed/arcplugin.cpp Examining data/nordugrid-arc-6.8.1/src/utils/hed/common.cpp Examining data/nordugrid-arc-6.8.1/src/utils/hed/schemaconv.h Examining data/nordugrid-arc-6.8.1/src/utils/hed/schemaconv.cpp Examining data/nordugrid-arc-6.8.1/src/utils/hed/simpletype.cpp Examining data/nordugrid-arc-6.8.1/src/Test.cpp Examining data/nordugrid-arc-6.8.1/src/tests/translator/translator.cpp Examining data/nordugrid-arc-6.8.1/src/tests/perf/perftest_slcs.cpp Examining data/nordugrid-arc-6.8.1/src/tests/perf/perftest_deleg_bydelegclient.cpp Examining data/nordugrid-arc-6.8.1/src/tests/perf/perftest_cmd_duration.cpp Examining data/nordugrid-arc-6.8.1/src/tests/perf/perftest.cpp Examining data/nordugrid-arc-6.8.1/src/tests/perf/perftest_deleg_bysechandler.cpp Examining data/nordugrid-arc-6.8.1/src/tests/perf/perftest_samlaa.cpp Examining data/nordugrid-arc-6.8.1/src/tests/perf/perftest_saml2sso.cpp Examining data/nordugrid-arc-6.8.1/src/tests/perf/perftest_cmd_times.cpp Examining data/nordugrid-arc-6.8.1/src/tests/perf/perftest_msgsize.cpp Examining data/nordugrid-arc-6.8.1/src/tests/arcpolicy/arcpolicy.cpp Examining data/nordugrid-arc-6.8.1/src/tests/policy-delegation/test.cpp Examining data/nordugrid-arc-6.8.1/src/tests/client/test_ClientSAML2SSO.cpp Examining data/nordugrid-arc-6.8.1/src/tests/client/test_ClientX509Delegation_GridSite.cpp Examining data/nordugrid-arc-6.8.1/src/tests/client/test_ClientInterface.cpp Examining data/nordugrid-arc-6.8.1/src/tests/client/test_ClientX509Delegation_ARC.cpp Examining data/nordugrid-arc-6.8.1/src/tests/echo/test_clientinterface.cpp Examining data/nordugrid-arc-6.8.1/src/tests/echo/test_client.cpp Examining data/nordugrid-arc-6.8.1/src/tests/echo/perftest.cpp Examining data/nordugrid-arc-6.8.1/src/tests/echo/test.cpp Examining data/nordugrid-arc-6.8.1/src/tests/echo/test_service.cpp Examining data/nordugrid-arc-6.8.1/src/tests/echo/echo.h Examining data/nordugrid-arc-6.8.1/src/tests/echo/echo.cpp Examining data/nordugrid-arc-6.8.1/src/tests/xpath/query.cpp Examining data/nordugrid-arc-6.8.1/src/tests/delegation/test_delegation_client.cpp Examining data/nordugrid-arc-6.8.1/src/tests/delegation/test_client_with_delegation_sechandler.cpp Examining data/nordugrid-arc-6.8.1/src/hed/identitymap/ArgusXACMLConstant.h Examining data/nordugrid-arc-6.8.1/src/hed/identitymap/SimpleMap.h Examining data/nordugrid-arc-6.8.1/src/hed/identitymap/IdentityMap.cpp Examining data/nordugrid-arc-6.8.1/src/hed/identitymap/ArgusPDPClient.cpp Examining data/nordugrid-arc-6.8.1/src/hed/identitymap/ArgusPDPClient.h Examining data/nordugrid-arc-6.8.1/src/hed/identitymap/SimpleMap.cpp Examining data/nordugrid-arc-6.8.1/src/hed/identitymap/ArgusPEPClient.cpp Examining data/nordugrid-arc-6.8.1/src/hed/identitymap/ArgusPEPClient.h Examining data/nordugrid-arc-6.8.1/src/hed/identitymap/IdentityMap.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataPoint.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataPointDelegate.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataExternalHelper.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataMover.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataSpeed.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataPointIndex.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/test/FileCacheTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataBuffer.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataMover.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/FileCacheHash.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/URLMap.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/URLMap.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataHandle.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataPointDirect.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataPointIndex.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/FileCache.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataExternalComm.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataStatus.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/examples/partial_copy.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/examples/DataPointMyProtocol.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/examples/simple_copy.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataSpeed.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/FileCache.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataExternalHelper.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataBuffer.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataCallback.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataPointDelegate.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataPointDirect.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataExternalComm.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/FileCacheHash.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataStatus.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/DataPoint.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/data/FileInfo.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/loader/ModuleManager.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/loader/test/PluginTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/loader/test/TestPlugin.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/loader/Plugin.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/loader/Loader.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/loader/FinderLoader.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/loader/ModuleManager.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/loader/FinderLoader.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/loader/Loader.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/loader/Plugin.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/communication/ClientInterface.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/communication/ClientInterface.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/communication/ClientX509Delegation.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/communication/ClientSAML2SSO.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/communication/ClientX509Delegation.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/communication/ClientSAML2SSO.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/Proxycertinfo.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/Proxycertinfo.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/NSSUtil.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/CertUtil.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/test/listfuncTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/test/VOMSUtilTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/test/CredentialTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/VOMSAttribute.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/PasswordSource.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/PasswordSource.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/listfunc.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/NSSUtil.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/listfunc.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/nssprivkeyinfocodec.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/nssprivkeyinfocodec.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/VOMSAttribute.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/VOMSConfig.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/VOMSUtil.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/CertUtil.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/VOMSUtil.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credential/VOMSConfig.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/SAMLToken.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/X509Token.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/test_usernametoken.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/test/SAMLTokenTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/test/UsernameTokenTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/test/X509TokenTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/test_x509token.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/X509Token.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/test_samltoken.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/SAMLToken.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/UsernameToken.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/UsernameToken.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/cryptomod/crypto.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/IString.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcLocation.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcConfigIni.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcLocation.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/hostname_resolver.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/JobPerfLog.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/MysqlWrapper.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Counter.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/DateTime.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Watchdog.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/User.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/RunTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/ThreadTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/MysqlWrapperTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/FileAccessTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/ProfileTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/ArcRegexTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/StringConvTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/UserConfigTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/Base64Test.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/XMLNodeTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/UserTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/WatchdogTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/FileLockTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/FileUtilsTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/URLTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/EnvTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/CheckSumTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/test/LoggerTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/XMLNode.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/MysqlWrapper.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/User.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcConfigFile.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcConfig.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Profile.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/CheckSum.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/IniConfig.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/JSON.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcConfigIni.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Logger.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/UserConfig.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/IString.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Watchdog.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcVersion.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/hostname_resolver.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/UserConfig.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/IniConfig.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/XMLNode.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Run_unix.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/DateTime.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/FileLock.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Thread.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/file_access.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Logger.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Profile.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcConfigFile.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/GUID.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/IntraProcessCounter.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/HostnameResolver.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/URL.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/FileLock.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/GUID.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/DBInterface.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Thread.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Run.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcRegex.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/FileAccess.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/file_access.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/OptionParser.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcRegex.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/HostnameResolver.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/OptionParser.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Utils.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/StringConv.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/JSON.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/IntraProcessCounter.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/FileAccess.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/CheckSum.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Utils.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/JobPerfLog.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcConfig.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/URL.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/Counter.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/common/StringConv.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/xmlsec/XmlSecUtils.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/xmlsec/XMLSecNode.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/xmlsec/test_xmlsecnode.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/xmlsec/saml_util.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/xmlsec/XmlSecUtils.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/xmlsec/XMLSecNode.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/xmlsec/saml_util.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/infosys/InformationInterface.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/infosys/test/InformationInterfaceTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/infosys/InformationInterface.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credentialstore/CredentialStore.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credentialstore/ClientVOMSRESTful.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credentialstore/ClientVOMS.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/credentialstore/CredentialStore.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/credentialstore/ClientVOMS.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/credentialstore/ClientVOMSRESTful.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ClassLoader.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/PDP.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/PDP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/Security.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/alg/AlgFactory.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/alg/PermitOverridesAlg.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/alg/PermitOverridesAlg.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/alg/DenyOverridesAlg.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/alg/OrderedAlg.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/alg/OrderedAlg.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/alg/DenyOverridesAlg.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/alg/CombiningAlg.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/EvaluationCtx.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/PolicyParser.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/RequestItem.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/Source.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/Evaluator.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/EvaluatorLoader.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/Evaluator.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/Source.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/fn/FnFactory.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/fn/MatchFunction.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/fn/EqualFunction.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/fn/InRangeFunction.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/fn/EqualFunction.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/fn/MatchFunction.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/fn/Function.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/fn/InRangeFunction.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/PolicyStore.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/Request.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/Result.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/Response.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/policy/Policy.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/policy/Policy.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/PolicyParser.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/EvaluatorLoader.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/PolicyStore.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/StringAttribute.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/X500NameAttribute.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/GenericAttribute.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/AttributeFactory.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/BooleanAttribute.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/DateTimeAttribute.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/AnyURIAttribute.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/RequestAttribute.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/RequestAttribute.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/DateTimeAttribute.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/StringAttribute.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/GenericAttribute.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/AttributeProxy.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/X500NameAttribute.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/AttributeValue.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/BooleanAttribute.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/AnyURIAttribute.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/ClassLoader.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/security/Security.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/credentialmod/cred.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/crypto/OpenSSL.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/crypto/OpenSSL.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/globusutils/GSSCredential.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/globusutils/GlobusWorkarounds.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/globusutils/GlobusErrorUtils.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/globusutils/GSSCredential.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/globusutils/GlobusWorkarounds.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/globusutils/GlobusErrorUtils.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/SecHandler.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/MessageAuth.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/MCC_Status.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/PayloadStream.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/PayloadSOAP.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/SecHandler.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/Plexer.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/MessageAuth.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/test/ChainTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/test/TestMCC.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/test/TestService.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/SOAPMessage.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/SecAttr.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/Message.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/PayloadSOAP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/MCCLoader.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/PayloadStream.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/SOAPMessage.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/Service.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/SOAPEnvelope.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/MessageAttributes.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/Message.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/MCCLoader.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/MCC.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/PayloadRaw.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/SOAPEnvelope.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/Plexer.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/MCC.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/SecAttr.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/PayloadRaw.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/MessageAttributes.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/Service.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/message/MCC_Status.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/delegation/DelegationInterface.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/delegation/test/DelegationInterfaceTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/delegation/DelegationInterface.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/ws-addressing/test.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/ws-addressing/WSA.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/ws-addressing/WSA.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/otokens/jwse.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/otokens/jwse_rsassapss.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/otokens/jwse_private.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/otokens/jwse_hmac.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/otokens/openid_metadata.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/otokens/otokens.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/otokens/jwse_rsassapkcs1.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/otokens/openid_metadata.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/otokens/jwse_ecdsa.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/otokens/jwse_keys.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/SubmitterPlugin.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/Job.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/SubmissionStatus.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobSupervisor.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageDescriptor.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test_JobInformationStorage.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/Software.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobControllerPlugin.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/GLUE2.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/TargetInformationRetrieverTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/JobInformationStorageTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/SoftwareTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/JobControllerPluginTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/ComputingServiceUniqTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/JobSupervisorTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/JobListRetrieverTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/SubmissionStatusTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/SubmitterTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/ServiceEndpointRetrieverTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/JobStateTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/SubmitterPluginTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/JobDescriptionTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/JobDescriptionParserPluginTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/BrokerTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/JobTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/ExecutionTargetTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobDescriptionParserPlugin.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/EntityRetrieverPlugin.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorage.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/ExecutionTarget.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/GLUE2Entity.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobDescription.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/EntityRetriever.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/Submitter.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/ComputingServiceRetriever.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/EndpointQueryingStatus.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/Broker.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/BrokerPlugin.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobState.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/EndpointQueryingStatus.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/SubmitterPlugin.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageXML.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/Broker.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/ExecutionTarget.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageBDB.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/GLUE2.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobControllerPlugin.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/ComputingServiceRetriever.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageSQLite.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/test_jobdescription.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/Job.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/examples/job_selector.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/examples/basic_job_submission.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobSupervisor.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageSQLite.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/Submitter.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/Endpoint.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/TestACCControl.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobDescription.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/EntityRetriever.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageXML.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobState.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/WSCommonPlugin.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageBDB.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/Endpoint.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/BrokerPlugin.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobDescriptionParserPlugin.cpp Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/Software.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/TestACCControl.h Examining data/nordugrid-arc-6.8.1/src/hed/libs/compute/EntityRetrieverPlugin.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/TEST/BrokerPluginTestACC.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/TEST/TestACCPluginDescriptors.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/TEST/JobListRetrieverPluginTEST.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/TEST/JobControllerPluginTestACC.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/TEST/TargetInformationRetrieverPluginTEST.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/TEST/JobDescriptionParserPluginTestACC.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/TEST/ServiceEndpointRetrieverPluginTEST.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/TEST/ServiceEndpointRetrieverPluginTEST.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/TEST/SubmitterPluginTestACC.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/TEST/JobControllerPluginTestACC.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/TEST/JobListRetrieverPluginTEST.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/TEST/SubmitterPluginTestACC.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/TEST/JobDescriptionParserPluginTestACC.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/TEST/TargetInformationRetrieverPluginTEST.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/EMIES/TargetInformationRetrieverPluginEMIES.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/EMIES/JobControllerPluginEMIES.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/EMIES/EMIESClient.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/EMIES/EMIESClient.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/EMIES/JobControllerPluginEMIES.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/EMIES/TestEMIESClient.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/EMIES/TargetInformationRetrieverPluginEMIES.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/EMIES/SubmitterPluginEMIES.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/EMIES/JobListRetrieverPluginEMIES.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/EMIES/JobStateEMIES.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/EMIES/JobStateEMIES.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/EMIES/SubmitterPluginEMIES.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/EMIES/DescriptorsEMIES.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/EMIES/JobListRetrieverPluginEMIES.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/ARCHERY/DescriptorsARCHERY.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/ARCHERY/ServiceEndpointRetrieverPluginARCHERY.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/ARCHERY/ServiceEndpointRetrieverPluginARCHERY.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/PythonBroker/PythonBrokerPlugin.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/PythonBroker/PythonBrokerPlugin.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/LDAP/TargetInformationRetrieverPluginLDAPGLUE2.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/LDAP/JobListRetrieverPluginLDAPNG.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/LDAP/TargetInformationRetrieverPluginLDAPNG.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/LDAP/JobListRetrieverPluginLDAPNG.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/LDAP/JobListRetrieverPluginLDAPGLUE2.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/LDAP/ServiceEndpointRetrieverPluginEGIIS.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/LDAP/DescriptorsLDAP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/LDAP/TargetInformationRetrieverPluginLDAPGLUE2.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/LDAP/ServiceEndpointRetrieverPluginEGIIS.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/LDAP/JobListRetrieverPluginLDAPGLUE2.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/LDAP/Extractor.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/LDAP/TargetInformationRetrieverPluginLDAPNG.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/JobDescriptionParser/XRSLParser.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/JobDescriptionParser/XRSLParser.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/JobDescriptionParser/XMLNodeRecover.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/JobDescriptionParser/ADLParser.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/JobDescriptionParser/RSLParser.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/JobDescriptionParser/test/ADLParserTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/JobDescriptionParser/test/XRSLParserTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/JobDescriptionParser/DescriptorsJobDescriptionParser.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/JobDescriptionParser/XMLNodeRecover.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/JobDescriptionParser/RSLParser.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/JobDescriptionParser/ADLParser.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/Broker/RandomBrokerPlugin.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/Broker/test/BenchmarkBrokerTest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/Broker/BenchmarkBrokerPlugin.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/Broker/NullBrokerPlugin.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/Broker/BenchmarkBrokerPlugin.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/Broker/DataBrokerPlugin.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/Broker/DescriptorsBroker.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/Broker/FastestQueueBrokerPlugin.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/Broker/FastestQueueBrokerPlugin.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/Broker/DataBrokerPlugin.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/GRIDFTPJOB/DescriptorsGRIDFTPJOB.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/GRIDFTPJOB/SubmitterPluginGRIDFTPJOB.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/GRIDFTPJOB/JobControllerPluginGRIDFTPJOB.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/GRIDFTPJOB/JobStateGRIDFTPJOB.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/GRIDFTPJOB/JobControllerPluginGRIDFTPJOB.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/GRIDFTPJOB/SubmitterPluginGRIDFTPJOB.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/GRIDFTPJOB/JobStateGRIDFTPJOB.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/GRIDFTPJOB/FTPControl.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/GRIDFTPJOB/FTPControl.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/ARCREST/SubmitterPluginREST.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/ARCREST/TargetInformationRetrieverPluginREST.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/ARCREST/JobControllerPluginREST.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/ARCREST/SubmitterPluginREST.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/ARCREST/JobListRetrieverPluginREST.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/ARCREST/DescriptorsARCREST.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/ARCREST/JobControllerPluginREST.h Examining data/nordugrid-arc-6.8.1/src/hed/acc/ARCREST/TargetInformationRetrieverPluginREST.cpp Examining data/nordugrid-arc-6.8.1/src/hed/acc/ARCREST/JobListRetrieverPluginREST.h Examining data/nordugrid-arc-6.8.1/src/hed/daemon/options.h Examining data/nordugrid-arc-6.8.1/src/hed/daemon/options.cpp Examining data/nordugrid-arc-6.8.1/src/hed/daemon/unix/daemon.cpp Examining data/nordugrid-arc-6.8.1/src/hed/daemon/unix/daemon.h Examining data/nordugrid-arc-6.8.1/src/hed/daemon/unix/main_unix.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/acix/DataPointACIX.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/acix/DataPointACIX.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/mock/DataPointMock.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/mock/DataPointMock.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/http/DataPointHTTP.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/http/StreamBuffer.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/http/DataPointHTTP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/http/StreamBuffer.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/rucio/DataPointRucio.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/rucio/DataPointRucio.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/file/DataPointFile.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/file/DataPointFile.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/Lister.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/DataPointGridFTP.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/DataPointGridFTPHelper.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/DataPointGridFTPHelper.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/DataPointGridFTPDelegate.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/DataPointGridFTP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/Lister.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/DataPointGridFTPDelegate.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/s3/DataPointS3.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/s3/DataPointS3.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/srm/DataPointSRM.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/srm/DataPointSRM.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/srm/srmclient/SRMClient.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/srm/srmclient/SRMInfo.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/srm/srmclient/SRMClientRequest.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/srm/srmclient/SRMURL.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/srm/srmclient/SRM1Client.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/srm/srmclient/SRMClient.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/srm/srmclient/SRM1Client.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/srm/srmclient/SRM22Client.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/srm/srmclient/SRMInfo.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/srm/srmclient/SRMURL.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/srm/srmclient/SRM22Client.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gfal/DataPointGFALDelegate.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gfal/DataPointGFAL.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gfal/GFALTransfer3rdParty.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gfal/DataPointGFALDelegate.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gfal/GFALUtils.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gfal/GFALTransfer3rdParty.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gfal/DataPointGFAL.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/gfal/GFALUtils.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/ldap/DataPointLDAP.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/ldap/LDAPQuery.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/ldap/LDAPQuery.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/ldap/DataPointLDAP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/xrootd/DataPointXrootd.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/xrootd/DataPointXrootdDelegate.h Examining data/nordugrid-arc-6.8.1/src/hed/dmc/xrootd/DataPointXrootd.cpp Examining data/nordugrid-arc-6.8.1/src/hed/dmc/xrootd/DataPointXrootdDelegate.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/allowpdp/AllowPDP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/allowpdp/AllowPDP.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcauthzsh/ArcAuthZ.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcauthzsh/ArcAuthZ.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLEvaluator.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLRequest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLAttributeFactory.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/AttributeSelector.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLTarget.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLAlgFactory.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLPDP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLPolicy.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLTarget.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLCondition.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/AttributeSelector.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLRule.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/AttributeDesignator.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLAttributeProxy.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLApply.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLRule.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLFnFactory.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLApply.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLAttributeFactory.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLEvaluationCtx.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLFnFactory.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLCondition.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/AttributeDesignator.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLEvaluator.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLRequest.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLEvaluationCtx.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLAlgFactory.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLPolicy.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLPDP.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/delegationsh/DelegationSH.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/delegationsh/DelegationSH.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/LegacyPDP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/simplemap.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/LegacyPDP.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/LegacySecAttr.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/arc_lcmaps.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/LegacyMap.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/ConfigParser.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/ConfigParser.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/auth.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/LegacyMap.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/unixmap.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/auth.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/auth_subject.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/auth_voms.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/arc_lcas.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/LegacySecHandler.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/cert_util.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/auth_plugin.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/cert_util.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/LegacySecAttr.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/unixmap_lcmaps.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/simplemap.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/plugin.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/auth_otokens.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/auth_file.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/LegacySecHandler.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/legacy/unixmap.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/testinterface_xacml.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/x509tokensh/X509TokenSH.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/x509tokensh/X509TokenSH.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/gaclpdp/GACLPDP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/gaclpdp/GACLRequest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/gaclpdp/GACLPolicy.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/gaclpdp/GACLEvaluator.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/gaclpdp/GACLPDP.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/gaclpdp/GACLPolicy.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/gaclpdp/GACLEvaluator.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/gaclpdp/GACLRequest.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/pdpserviceinvoker/PDPServiceInvoker.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/pdpserviceinvoker/PDPServiceInvoker.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/test.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/denypdp/DenyPDP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/denypdp/DenyPDP.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/SecHandlerPlugin.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/usernametokensh/UsernameTokenSH.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/usernametokensh/UsernameTokenSH.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/simplelistpdp/SimpleListPDP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/simplelistpdp/SimpleListPDP.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/samltokensh/SAMLTokenSH.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/samltokensh/SAMLTokenSH.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcRule.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcAttributeProxy.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcEvaluator.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcEvaluationCtx.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcAlgFactory.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcRule.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcAttributeFactory.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcAlgFactory.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcPDP.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcPolicy.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcRequestItem.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcFnFactory.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcPolicy.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcRequestItem.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcEvaluationCtx.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcRequest.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcPDP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcFnFactory.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcRequest.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcAttributeFactory.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcEvaluator.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/saml2sso_assertionconsumersh/SAML2SSO_AssertionConsumerSH.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/saml2sso_assertionconsumersh/SAML2SSO_AssertionConsumerSH.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/testinterface_arc.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/otokens/OTokensSH.cpp Examining data/nordugrid-arc-6.8.1/src/hed/shc/otokens/OTokensSH.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/delegationpdp/DelegationPDP.h Examining data/nordugrid-arc-6.8.1/src/hed/shc/delegationpdp/DelegationPDP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/PayloadTLSStream.h Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/BIOMCC.h Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/PayloadTLSMCC.h Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/PayloadTLSStream.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/BIOGSIMCC.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/DelegationSecAttr.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/MCCTLS.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/DelegationCollector.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/PayloadTLSMCC.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/GlobusSigningPolicy.h Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/ConfigTLSMCC.h Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/ConfigTLSMCC.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/BIOGSIMCC.h Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/MCCTLS.h Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/BIOMCC.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/DelegationCollector.h Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/GlobusSigningPolicy.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tls/DelegationSecAttr.h Examining data/nordugrid-arc-6.8.1/src/hed/mcc/http/http_test_withtls.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/http/MCCHTTP.h Examining data/nordugrid-arc-6.8.1/src/hed/mcc/http/http_test.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/http/MCCHTTP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.h Examining data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/msgvalidator/MCCMsgValidator.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/msgvalidator/MCCMsgValidator.h Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tcp/MCCTCP.h Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tcp/PayloadTCPSocket.h Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tcp/PayloadTCPSocket.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/tcp/MCCTCP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/soap/MCCSOAP.cpp Examining data/nordugrid-arc-6.8.1/src/hed/mcc/soap/MCCSOAP.h Examining data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c Examining data/nordugrid-arc-6.8.1/python/arc_init.cpp Examining data/nordugrid-arc-6.8.1/python/swigmodulesinit_wrap.cpp FINAL RESULTS: data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcLocation.cpp:65:24: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. ssize_t linksize = readlink(path.c_str(), linkname.Ptr(), linkst.st_size); data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:222:6: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. if(chmod(tempfile.c_str(), mode) != 0) { unlink(tempfile.c_str()); return false; } data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:311:15: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. ssize_t l = readlink(path.c_str(),buf.str(),bufsize); data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:386:11: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. if (::chmod(path.c_str(), mode) == 0) return true; data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:400:50: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. if((::mkdir(path.c_str(),mode) == 0) && (chmod(path.c_str(), mode) == 0)) return true; data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:605:9: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. if (::chmod(filename.c_str(), mode) != 0) { data/nordugrid-arc-6.8.1/src/hed/libs/common/file_access.cpp:337:21: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. int res = ::chmod(path.c_str(),mode); data/nordugrid-arc-6.8.1/src/hed/libs/common/file_access.cpp:439:25: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. if(res != -1) ::chmod(path.c_str(),mode); data/nordugrid-arc-6.8.1/src/hed/libs/common/file_access.cpp:538:17: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. int l = readlink(path.c_str(), filebuf, sizeof(filebuf)); data/nordugrid-arc-6.8.1/src/hed/libs/common/test/FileAccessTest.cpp:55:30: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. CPPUNIT_ASSERT_EQUAL(0,::chmod(testroot.c_str(),0777)); data/nordugrid-arc-6.8.1/src/hed/libs/data/FileCache.cpp:200:28: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. if (errno != EEXIST && chmod(filename.substr(0, filename.rfind("/")).c_str(), S_IRWXU) != 0) { data/nordugrid-arc-6.8.1/src/hed/libs/data/FileCache.cpp:399:11: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. if (chmod(hard_link_path.c_str(), S_IRWXU) != 0) { data/nordugrid-arc-6.8.1/src/hed/libs/data/FileCache.cpp:403:11: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. if (chown(hard_link_path.c_str(), _uid, _gid) != 0) { data/nordugrid-arc-6.8.1/src/hed/libs/data/FileCache.cpp:442:9: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. if (chmod(hard_link_file.c_str(), S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH) != 0) { data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/GMConfig.cpp:197:26: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. if (getuid() == 0) if (chown(path.c_str(), uid, gid) != 0) return false; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/GMConfig.cpp:198:7: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. if (chmod(path.c_str(), mode) != 0) return false; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/GMConfig.cpp:236:54: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. if (Arc::DirCreate(dir, S_IRWXU, false)) return (chown(dir.c_str(), user.get_uid(), user.get_gid()) == 0); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/GMConfig.cpp:263:13: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. return (chown(dir.c_str(), user.get_uid(), user.get_gid()) == 0); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileHandling.cpp:60:11: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. return (chmod(fname.c_str(),mode) == 0); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileHandling.cpp:79:11: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. return (chmod(fname.c_str(),mode) == 0); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileHandling.cpp:92:11: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. return (chmod(fname.c_str(),mode) == 0); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/CommFIFO.cpp:193:9: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. (void)chmod(path.c_str(),S_IRUSR | S_IWUSR); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/misc/proxy.cpp:51:11: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. (void)chmod(proxy_file_tmp.c_str(),S_IRUSR | S_IWUSR); data/nordugrid-arc-6.8.1/src/services/data-staging/DataDeliveryService.cpp:259:13: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. if (chown(proxy_file.c_str(), uid, gid) != 0) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:259:9: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. chmod(fdname.c_str(), data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:266:12: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. if(chown(fdname.c_str(),u,g) != 0) {} data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:431:14: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. if(chown(fname.c_str(),u,g) != 0) {} data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:433:11: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. chmod(fname.c_str(), data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:482:8: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. if(chown(fname.c_str(),uid,gid) != 0) {} data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:483:5: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. chmod(fname.c_str(),S_IRUSR | S_IWUSR); data/nordugrid-arc-6.8.1/src/clients/compute/arctest.cpp:204:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(buffer, iter->second.c_str(), opt.runtime, opt.runtime+3); data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:396:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptr,entries[i]);ptr+=strlen(entries[i]); data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:495:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptr,names[i]);ptr+=strlen(names[i]); data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:497:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptr,entries[i]);ptr+=strlen(entries[i]); data/nordugrid-arc-6.8.1/src/hed/dmc/ldap/LDAPQuery.cpp:213:19: [4] (misc) getpass: This function is obsolete and not portable. It was in SUSv2 but removed by POSIX.2. What it does exactly varies considerably between systems, particularly in where its prompt is displayed and where it gets its data (e.g., /dev/tty, stdin, stderr, etc.). In addition, some implementations overflow buffers. (CWE-676, CWE-120, CWE-20). Make the specific calls to do exactly what you want. If you continue to use it, or write your own, be sure to zero the password as soon as possible to avoid leaving the cleartext password visible in the process' address space. input = getpass(prompt.c_str()); data/nordugrid-arc-6.8.1/src/hed/identitymap/ArgusPEPClient.cpp:89:5: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. vsnprintf(buf,sizeof(buf)-1,fmt,args); data/nordugrid-arc-6.8.1/src/hed/libs/common/IString.h:80:7: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. snprintf(buffer, 2048, Get(m), data/nordugrid-arc-6.8.1/src/hed/libs/common/IString.h:89:7: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. snprintf(buffer, 2048, Get(m), data/nordugrid-arc-6.8.1/src/hed/libs/common/IString.h:106:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(t, u); data/nordugrid-arc-6.8.1/src/hed/libs/common/XMLNode.cpp:1399:5: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. vsnprintf(buf, bufsize, msg, ap); data/nordugrid-arc-6.8.1/src/hed/libs/data/URLMap.cpp:43:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (i->access) { /* how it should be accessed on nodes */ data/nordugrid-arc-6.8.1/src/hed/libs/data/URLMap.cpp:44:66: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. tmp_url.replace(0, i->replacement.str().length(), i->access.str()); data/nordugrid-arc-6.8.1/src/hed/libs/data/URLMap.h:28:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. URL access; data/nordugrid-arc-6.8.1/src/hed/libs/data/URLMap.h:33:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access(accs) {} data/nordugrid-arc-6.8.1/src/services/a-rex/get.cpp:448:8: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access != config.GmConfig().CacheParams().getCacheAccess().end(); ++access) { data/nordugrid-arc-6.8.1/src/services/a-rex/get.cpp:448:76: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access != config.GmConfig().CacheParams().getCacheAccess().end(); ++access) { data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/UrlMapConfig.cpp:58:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access.length() == 0) access = replacement; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/UrlMapConfig.cpp:59:31: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. add(initial,replacement,access); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:568:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buf,str1); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:571:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(buf,str2); data/nordugrid-arc-6.8.1/src/services/gridftpd/datalist.cpp:80:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy((char*)buf,str.c_str()); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:168:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.push_back(DirectAccess(dir,laccess)); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:189:3: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.sort(DirectAccess::comp); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:233:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i==access.end()) return 1; /* no root ? - strange */ data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:243:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. bool allow_mkdir = i->access.mkdir; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:245:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i==access.end()) return 1; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:258:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. i->access.mkdir_perm_or & i->access.mkdir_perm_and) == 0) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:258:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. i->access.mkdir_perm_or & i->access.mkdir_perm_and) == 0) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:260:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. i->access.mkdir_perm_or & i->access.mkdir_perm_and); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:260:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. i->access.mkdir_perm_or & i->access.mkdir_perm_and); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:262:22: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. uid_t u = i->access.mkdir_uid; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:263:22: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. gid_t g = i->access.mkdir_gid; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:282:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i==access.end()) return 1; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:283:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(!(i->access.del)) return 1; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:307:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i==access.end()) return 1; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:308:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(!(i->access.del)) return 1; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:334:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i==access.end()) return 1; /* error ? */ data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:335:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i->access.read) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:358:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i==access.end()) return 1; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:362:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i->access.overwrite) { /* can overwrite */ data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:401:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i->access.creat) { /* allowed to create new file */ data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:423:21: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. i->access.creat_perm_or & i->access.creat_perm_and); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:423:47: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. i->access.creat_perm_or & i->access.creat_perm_and); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:426:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. uid_t u = i->access.creat_uid; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:427:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. gid_t g = i->access.creat_gid; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:434:20: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. i->access.creat_perm_or & i->access.creat_perm_and); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:434:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. i->access.creat_perm_or & i->access.creat_perm_and); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:543:6: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(access.access == local_none_access) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:551:6: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(access.access == local_unix_access) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:566:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. else if(access.access == local_user_access) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:571:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. else if(access.access == local_group_access) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:575:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. else if(access.access == local_other_access) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:584:6: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(access.access == local_none_access) return 0; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:602:6: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(access.access == local_none_access) return; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:613:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. for(i=access.begin();i!=access.end();++i) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:613:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. for(i=access.begin();i!=access.end();++i) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:657:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i->access.del && (ur & S_IWUSR)) dent.may_delete=true; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:658:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i->access.overwrite &&(fur & S_IWUSR)) dent.may_write=true; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:659:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i->access.append && (fur & S_IWUSR)) dent.may_append=true; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:660:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i->access.read && (fur & S_IRUSR)) dent.may_read=true; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:664:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i->access.del && (ur & S_IWUSR)) dent.may_delete=true; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:665:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i->access.creat && (fur & S_IWUSR)) dent.may_create=true; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:666:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i->access.mkdir && (fur & S_IWUSR)) dent.may_mkdir=true; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:667:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i->access.cd && (fur & S_IXUSR)) dent.may_chdir=true; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:668:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i->access.dirlist &&(fur & S_IRUSR)) dent.may_dirlist=true; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:669:19: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i->access.del && (fur & S_IWUSR)) dent.may_purge=true; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:681:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i==access.end()) return 1; /* error ? */ data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:683:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i->access.dirlist) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:729:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i==access.end()) return 0; /* error ? */ data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:732:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i->access.cd) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:748:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(i==access.end()) return 1; /* error ? */ data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:759:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if(!(i->access.dirlist)) { return 1; }; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:35:20: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. local_access_t access; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:39:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. diraccess_t access; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:43:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.read=true; access.dirlist=true; access.cd=true; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:43:23: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.read=true; access.dirlist=true; access.cd=true; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:43:44: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.read=true; access.dirlist=true; access.cd=true; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:44:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.creat=false; access.overwrite=false; access.append=false; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:44:25: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.creat=false; access.overwrite=false; access.append=false; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:44:49: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.creat=false; access.overwrite=false; access.append=false; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:45:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.del=false; access.mkdir=false; access.access=local_unix_access; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:45:23: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.del=false; access.mkdir=false; access.access=local_unix_access; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:45:43: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access.del=false; access.mkdir=false; access.access=local_unix_access; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:49:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access=dir.access; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:53:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access=dir.access; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:99:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. std::list<DirectAccess> access; data/nordugrid-arc-6.8.1/src/services/gridftpd/misc/ldapquery.cpp:195:19: [4] (misc) getpass: This function is obsolete and not portable. It was in SUSv2 but removed by POSIX.2. What it does exactly varies considerably between systems, particularly in where its prompt is displayed and where it gets its data (e.g., /dev/tty, stdin, stderr, etc.). In addition, some implementations overflow buffers. (CWE-676, CWE-120, CWE-20). Make the specific calls to do exactly what you want. If you continue to use it, or write your own, be sure to zero the password as soon as possible to avoid leaving the cleartext password visible in the process' address space. input = getpass (prompt.c_str()); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_cmd_duration.cpp:57:15: [4] (shell) execvp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. int e = execvp(cmd_str.c_str(), list); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_cmd_times.cpp:57:15: [4] (shell) execvp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. int e = execvp(cmd_str.c_str(), list); data/nordugrid-arc-6.8.1/src/utils/hed/common.cpp:20:3: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. snprintf(buf,sizeof(buf)-1,fmt,arg1.c_str(),arg2.c_str(),arg3.c_str(), data/nordugrid-arc-6.8.1/src/utils/hed/common.cpp:36:3: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. snprintf(buf,sizeof(buf)-1,fmt,arg1.c_str(),arg2.c_str(),arg3.c_str(), data/nordugrid-arc-6.8.1/src/hed/acc/Broker/RandomBrokerPlugin.h:15:80: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. RandomBrokerPlugin(BrokerPluginArgument* parg) : BrokerPlugin(parg) { std::srand(time(NULL)); } data/nordugrid-arc-6.8.1/src/hed/daemon/unix/main_unix.cpp:307:38: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char const * log_time_format = ::getenv("ARC_LOGGER_TIME_FORMAT"); data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/DataPointGridFTPHelper.cpp:1121:36: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char const * log_time_format = ::getenv("ARC_LOGGER_TIME_FORMAT"); data/nordugrid-arc-6.8.1/src/hed/dmc/srm/DataPointSRM.cpp:52:10: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. std::srand(time(NULL)); data/nordugrid-arc-6.8.1/src/hed/libs/common/GUID.cpp:82:5: [3] (random) srandom: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srandom(time(NULL)+random()); data/nordugrid-arc-6.8.1/src/hed/libs/common/GUID.cpp:82:24: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srandom(time(NULL)+random()); data/nordugrid-arc-6.8.1/src/hed/libs/common/GUID.cpp:103:25: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. guid_add_string(guid, random()); data/nordugrid-arc-6.8.1/src/hed/libs/common/GUID.cpp:118:5: [3] (random) srandom: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srandom(time(NULL)+random()); data/nordugrid-arc-6.8.1/src/hed/libs/common/GUID.cpp:118:24: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srandom(time(NULL)+random()); data/nordugrid-arc-6.8.1/src/hed/libs/common/GUID.cpp:127:16: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. rnd[i] = random() % 256; data/nordugrid-arc-6.8.1/src/hed/libs/common/OptionParser.cpp:416:13: [3] (buffer) getopt_long: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. opt = getopt_long(argc, argv, optstring.c_str(), longoptions, NULL); data/nordugrid-arc-6.8.1/src/hed/libs/common/Utils.cpp:97:20: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char* curval = getenv(name_.c_str()); data/nordugrid-arc-6.8.1/src/hed/libs/common/Utils.cpp:144:10: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if(getenv(name.c_str())) return false; data/nordugrid-arc-6.8.1/src/hed/libs/common/Utils.cpp:268:18: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. return Glib::getenv(var); data/nordugrid-arc-6.8.1/src/hed/libs/common/Utils.cpp:270:17: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char* val = getenv(var.c_str()); data/nordugrid-arc-6.8.1/src/hed/libs/common/Utils.cpp:278:18: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. return Glib::getenv(var, found); data/nordugrid-arc-6.8.1/src/hed/libs/common/Utils.cpp:280:17: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char* val = getenv(var.c_str()); data/nordugrid-arc-6.8.1/src/hed/libs/common/Utils.cpp:292:33: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. *env = *env + "=" + Glib::getenv(*env); data/nordugrid-arc-6.8.1/src/hed/libs/compute/test_JobInformationStorage.cpp:114:5: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srand(Arc::Time().GetTimeNanoseconds()); data/nordugrid-arc-6.8.1/src/hed/libs/credential/NSSUtil.cpp:2734:5: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srand(time(NULL)); data/nordugrid-arc-6.8.1/src/hed/libs/data/DataExternalHelper.cpp:298:36: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char const * log_time_format = ::getenv("ARC_LOGGER_TIME_FORMAT"); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/arc_blahp_logger.cpp:45:19: [3] (buffer) getopt: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. while ((opt = getopt(argc, argv, "iI:U:P:L:c:p:d:")) != -1) { data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:135:3: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srand(time(NULL) + rand()); data/nordugrid-arc-6.8.1/src/services/gridftpd/conf/daemon.cpp:184:15: [3] (buffer) getopt: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. int Daemon::getopt(int argc, char * const argv[],const char *optstring) { data/nordugrid-arc-6.8.1/src/services/gridftpd/conf/daemon.cpp:188:16: [3] (buffer) getopt: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. while((n=::getopt(argc,argv,opts.c_str())) != -1) { data/nordugrid-arc-6.8.1/src/services/gridftpd/conf/daemon.h:26:9: [3] (buffer) getopt: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. int getopt(int argc, char * const argv[],const char *optstring); data/nordugrid-arc-6.8.1/src/services/gridftpd/listener.cpp:48:3: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srand(getpid() + getppid() + time(NULL)); data/nordugrid-arc-6.8.1/src/services/gridftpd/listener.cpp:125:36: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char const * log_time_format = ::getenv("ARC_LOGGER_TIME_FORMAT"); data/nordugrid-arc-6.8.1/src/services/gridftpd/listener.cpp:207:36: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char const * log_time_format = ::getenv("ARC_LOGGER_TIME_FORMAT"); data/nordugrid-arc-6.8.1/src/services/gridftpd/listener.cpp:247:3: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srand(getpid() + getppid() + time(NULL)); data/nordugrid-arc-6.8.1/src/services/gridftpd/listener.cpp:253:19: [3] (buffer) getopt: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. while((n=daemon.getopt(argc,argv,"hp:c:n:b:B:")) != -1) { data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:259:19: [3] (buffer) getopt: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. while ((opt = getopt(argc, argv, "dmcn:")) != -1) { data/nordugrid-arc-6.8.1/src/clients/compute/arccat.cpp:142:21: [2] (tmpfile) mkstemp: Potential for temporary file vulnerability in some circumstances. Some older Unix-like systems create temp files with permission to write by all by default, so be sure to set the umask to override this. Also, some older Unix systems might fail to use O_EXCL when opening the file, so make sure that O_EXCL is used by the library (CWE-377). int tmp_h = Glib::mkstemp(filename); data/nordugrid-arc-6.8.1/src/clients/compute/arctest.cpp:203:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer [iter->second.length()+255]; data/nordugrid-arc-6.8.1/src/clients/compute/arctest.cpp:380:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hash[32]; data/nordugrid-arc-6.8.1/src/clients/data/arccp.cpp:45:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char rs_[4] = { data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:56:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(copy,str,len); data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:125:12: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. if (str) sprintf(str,"%d",item->valueint); data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:132:56: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. if (fabs(floor(d)-d)<=DBL_EPSILON && fabs(d)<1.0e60)sprintf(str,"%.0f",d); data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:133:48: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. else if (fabs(d)<1.0e-6 || fabs(d)>1.0e9) sprintf(str,"%e",d); data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:134:20: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. else sprintf(str,"%f",d); data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:154:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char firstByteMark[7] = { 0x00, 0x00, 0xC0, 0xE0, 0xF0, 0xF8, 0xFC }; data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:242:14: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. default: sprintf(ptr2,"u%04x",token);ptr2+=5; break; /* escape and print */ data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:361:12: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. if (out) strcpy(out,"[]"); data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:517:93: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. static cJSON *create_reference(cJSON *item) {cJSON *ref=cJSON_New_Item();if (!ref) return 0;memcpy(ref,item,sizeof(cJSON));ref->string=0;ref->type|=cJSON_IsReference;ref->next=ref->prev=0;return ref;} data/nordugrid-arc-6.8.1/src/hed/acc/GRIDFTPJOB/FTPControl.cpp:382:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[8*5]; data/nordugrid-arc-6.8.1/src/hed/acc/GRIDFTPJOB/JobControllerPluginGRIDFTPJOB.cpp:571:71: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). std::string localfile = Glib::build_filename(Glib::get_tmp_dir(), tmpfile); data/nordugrid-arc-6.8.1/src/hed/acc/GRIDFTPJOB/SubmitterPluginGRIDFTPJOB.cpp:100:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hostname[1024]; data/nordugrid-arc-6.8.1/src/hed/acc/GRIDFTPJOB/SubmitterPluginGRIDFTPJOB.cpp:246:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hostname[1024]; data/nordugrid-arc-6.8.1/src/hed/acc/JobDescriptionParser/test/XRSLParserTest.cpp:366:5: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f.open("in2", std::ifstream::trunc); data/nordugrid-arc-6.8.1/src/hed/daemon/unix/main_unix.cpp:213:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). return (atoi(&(name.c_str()[1]))); data/nordugrid-arc-6.8.1/src/hed/daemon/unix/main_unix.cpp:236:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). return (atoi(&(name.c_str()[1]))); data/nordugrid-arc-6.8.1/src/hed/dmc/file/DataPointFile.cpp:557:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = ::open(url.Path().c_str(), flags); data/nordugrid-arc-6.8.1/src/hed/dmc/file/DataPointFile.cpp:639:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[65536]; data/nordugrid-arc-6.8.1/src/hed/dmc/file/DataPointFile.cpp:696:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = ::open(url.Path().c_str(), flags | O_CREAT | O_EXCL, S_IRUSR | S_IWUSR); data/nordugrid-arc-6.8.1/src/hed/dmc/gfal/DataPointGFAL.cpp:489:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char replicas[65536]; data/nordugrid-arc-6.8.1/src/hed/dmc/gfal/GFALUtils.cpp:22:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errbuf[2048]; data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/DataPointGridFTP.cpp:660:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/DataPointGridFTP.cpp:670:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cksum[256]; data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/DataPointGridFTP.cpp:905:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cksum[256]; data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/DataPointGridFTP.h:100:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ftp_buf[16]; data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/DataPointGridFTPHelper.cpp:705:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cksum[256]; data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/DataPointGridFTPHelper.h:107:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ftp_buf[16]; data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/Lister.cpp:465:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*sresp, (char*)(resp[resp_n - 1].response_buffer + 4), data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/Lister.cpp:495:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(*sresp, s_start, l); data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/Lister.cpp:770:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[8*5]; data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/Lister.cpp:1024:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(readbuf,nresp,nlength); data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/Lister.h:27:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char readbuf[4096]; data/nordugrid-arc-6.8.1/src/hed/dmc/http/StreamBuffer.cpp:45:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(buf,buffer_[buffer_handle_],bufsize); data/nordugrid-arc-6.8.1/src/hed/dmc/ldap/DataPointLDAP.cpp:159:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*point.buffer)[transfer_handle], &text[pos], transfer_size); data/nordugrid-arc-6.8.1/src/hed/dmc/s3/DataPointS3.cpp:176:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((*(buf))[h], buffer, bufferSize); data/nordugrid-arc-6.8.1/src/hed/dmc/s3/DataPointS3.cpp:203:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, (*(buf))[h], toCopy); data/nordugrid-arc-6.8.1/src/hed/dmc/s3/DataPointS3.h:73:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char error_details[4096]; data/nordugrid-arc-6.8.1/src/hed/dmc/srm/DataPointSRM.cpp:554:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/nordugrid-arc-6.8.1/src/hed/dmc/xrootd/DataPointXrootd.cpp:439:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/nordugrid-arc-6.8.1/src/hed/identitymap/ArgusPEPClient.cpp:88:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/nordugrid-arc-6.8.1/src/hed/identitymap/SimpleMap.cpp:60:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). pool_handle_=::open((dir_+"pool").c_str(),O_RDWR); data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcConfigFile.cpp:12:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). bool ConfigFile::open(const std::string &name) { data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcConfigFile.cpp:14:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). std::ifstream::open(name.c_str(),std::ifstream::in); data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcConfigFile.h:21:41: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). ConfigFile(const std::string &path) { open(path); }; data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcConfigFile.h:24:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). bool open(const std::string &path); data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcConfigIni.cpp:15:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(fin && open) { data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcConfigIni.cpp:21:47: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). ConfigIni::ConfigIni(ConfigFile& f):fin(NULL),open(false) { data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcConfigIni.cpp:29:54: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). ConfigIni::ConfigIni(const char* filename):fin(NULL),open(false) { data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcConfigIni.h:28:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). bool open; data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.cpp:47:42: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static int base64_quantum_encode(const char in[3], int size, char out[4], bool urlSafe) { data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.cpp:47:64: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static int base64_quantum_encode(const char in[3], int size, char out[4], bool urlSafe) { data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.cpp:75:42: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static int base64_quantum_decode(const char in[4], char out[3], bool urlSafe) { data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.cpp:75:54: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static int base64_quantum_decode(const char in[4], char out[3], bool urlSafe) { data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.cpp:105:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char quantum[3]; data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.cpp:106:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char encoded[4]; data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.cpp:157:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char quantum[3]; data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.cpp:158:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char encoded[4]; data/nordugrid-arc-6.8.1/src/hed/libs/common/CheckSum.cpp:548:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h = open(file_path.c_str(), O_RDONLY); data/nordugrid-arc-6.8.1/src/hed/libs/common/CheckSum.cpp:555:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/common/CheckSum.cpp:566:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char checksum[100]; data/nordugrid-arc-6.8.1/src/hed/libs/common/DateTime.cpp:187:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char day[4]; data/nordugrid-arc-6.8.1/src/hed/libs/common/DateTime.cpp:188:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char month[4]; data/nordugrid-arc-6.8.1/src/hed/libs/common/DateTime.cpp:240:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char day[4]; data/nordugrid-arc-6.8.1/src/hed/libs/common/DateTime.cpp:241:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char month[4]; data/nordugrid-arc-6.8.1/src/hed/libs/common/FileAccess.cpp:101:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dummy[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/common/FileLock.cpp:41:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char host[256]; data/nordugrid-arc-6.8.1/src/hed/libs/common/FileLock.cpp:103:26: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (!TmpFileCreate(tmpfile, lock_content)) { data/nordugrid-arc-6.8.1/src/hed/libs/common/FileLock.cpp:104:67: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). logger.msg(ERROR, "Error creating temporary file %s: %s", tmpfile, StrError(errno)); data/nordugrid-arc-6.8.1/src/hed/libs/common/FileLock.cpp:109:21: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (!FileLink(tmpfile.c_str(), lock_file.c_str(), false)) { data/nordugrid-arc-6.8.1/src/hed/libs/common/FileLock.cpp:110:16: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). remove(tmpfile.c_str()); data/nordugrid-arc-6.8.1/src/hed/libs/common/FileLock.cpp:120:21: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h = ::open(lock_file.c_str(),O_WRONLY|O_CREAT|O_EXCL,S_IRUSR|S_IWUSR); data/nordugrid-arc-6.8.1/src/hed/libs/common/FileLock.cpp:141:78: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). logger.msg(ERROR, "Error linking tmp file %s to lock file %s: %s", tmpfile, lock_file, StrError(errno)); data/nordugrid-arc-6.8.1/src/hed/libs/common/FileLock.cpp:146:16: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). remove(tmpfile.c_str()); data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:73:25: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int source_handle = ::open(source_path.c_str(),O_RDONLY,0); data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:79:30: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int destination_handle = ::open(destination_path.c_str(),O_WRONLY | O_CREAT | O_TRUNC,st.st_mode); data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:91:25: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int source_handle = ::open(source_path.c_str(),O_RDONLY,0); data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:103:30: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int destination_handle = ::open(destination_path.c_str(),O_WRONLY | O_CREAT | O_TRUNC,0600); data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:181:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:190:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h = ::open(filename.c_str(),O_RDONLY); data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:192:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:218:13: [2] (tmpfile) mkstemp: Potential for temporary file vulnerability in some circumstances. Some older Unix-like systems create temp files with permission to write by all by default, so be sure to set the umask to override this. Also, some older Unix systems might fail to use O_EXCL when opening the file, so make sure that O_EXCL is used by the library (CWE-377). int h = ::mkstemp(const_cast<char*>(tempfile.c_str())); data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:603:17: [2] (tmpfile) mkstemp: Potential for temporary file vulnerability in some circumstances. Some older Unix-like systems create temp files with permission to write by all by default, so be sure to set the umask to override this. Also, some older Unix systems might fail to use O_EXCL when opening the file, so make sure that O_EXCL is used by the library (CWE-377). int h = Glib::mkstemp(filename); data/nordugrid-arc-6.8.1/src/hed/libs/common/GUID.cpp:44:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hostname[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/common/GUID.cpp:111:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char uustr[37]; data/nordugrid-arc-6.8.1/src/hed/libs/common/GUID.cpp:123:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[20]; data/nordugrid-arc-6.8.1/src/hed/libs/common/HostnameResolver.cpp:115:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(addr,other.addr,length); data/nordugrid-arc-6.8.1/src/hed/libs/common/IString.h:79:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[2048]; data/nordugrid-arc-6.8.1/src/hed/libs/common/IString.h:88:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[2048]; data/nordugrid-arc-6.8.1/src/hed/libs/common/Logger.cpp:274:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). destination.open(path.c_str(), std::fstream::out | std::fstream::app); data/nordugrid-arc-6.8.1/src/hed/libs/common/Logger.cpp:310:21: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). destination.open(path.c_str(), std::fstream::out | std::fstream::app); data/nordugrid-arc-6.8.1/src/hed/libs/common/Logger.cpp:319:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). destination.open(path.c_str(), std::fstream::out | std::fstream::app); data/nordugrid-arc-6.8.1/src/hed/libs/common/Logger.cpp:337:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). destination.open(path.c_str(), std::fstream::out | std::fstream::app); data/nordugrid-arc-6.8.1/src/hed/libs/common/Logger.cpp:372:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). destination.open(path.c_str(), std::fstream::out | std::fstream::app); data/nordugrid-arc-6.8.1/src/hed/libs/common/Run_unix.cpp:634:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/nordugrid-arc-6.8.1/src/hed/libs/common/Run_unix.cpp:651:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/nordugrid-arc-6.8.1/src/hed/libs/common/User.cpp:57:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pwdbuf[2048]; data/nordugrid-arc-6.8.1/src/hed/libs/common/User.cpp:70:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pwdbuf[2048]; data/nordugrid-arc-6.8.1/src/hed/libs/common/User.cpp:87:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pwdbuf[2048]; data/nordugrid-arc-6.8.1/src/hed/libs/common/User.cpp:106:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((h = open(path.c_str(), flags)) == -1) data/nordugrid-arc-6.8.1/src/hed/libs/common/User.cpp:124:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char grbuf[2048]; data/nordugrid-arc-6.8.1/src/hed/libs/common/User.cpp:127:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pwdbuf[2048]; data/nordugrid-arc-6.8.1/src/hed/libs/common/UserConfig.cpp:1051:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/common/Utils.cpp:102:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ptr_,value.c_str(),value.length()); data/nordugrid-arc-6.8.1/src/hed/libs/common/Utils.cpp:121:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newrec,name_.c_str(),name_.length()); data/nordugrid-arc-6.8.1/src/hed/libs/common/Utils.cpp:123:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newrec+name_.length()+1,value.c_str(),value.length()); data/nordugrid-arc-6.8.1/src/hed/libs/common/Utils.cpp:385:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errbuf[BUFLEN]; data/nordugrid-arc-6.8.1/src/hed/libs/common/file_access.cpp:85:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dummy[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/common/file_access.cpp:157:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char filebuf[1024*1024*10]; data/nordugrid-arc-6.8.1/src/hed/libs/common/file_access.cpp:293:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h_src = ::open(oldpath.c_str(),O_RDONLY,0); data/nordugrid-arc-6.8.1/src/hed/libs/common/file_access.cpp:295:25: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h_dst = ::open(newpath.c_str(),O_WRONLY|O_CREAT|O_TRUNC,mode); data/nordugrid-arc-6.8.1/src/hed/libs/common/file_access.cpp:425:32: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int res = (curfile = ::open(path.c_str(),flags,mode)); data/nordugrid-arc-6.8.1/src/hed/libs/common/file_access.cpp:438:30: [2] (tmpfile) mkstemp: Potential for temporary file vulnerability in some circumstances. Some older Unix-like systems create temp files with permission to write by all by default, so be sure to set the umask to override this. Also, some older Unix systems might fail to use O_EXCL when opening the file, so make sure that O_EXCL is used by the library (CWE-377). int res = (curfile = mkstemp((char*)(path.c_str()))); data/nordugrid-arc-6.8.1/src/hed/libs/common/test/CheckSumTest.cpp:53:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/nordugrid-arc-6.8.1/src/hed/libs/common/test/CheckSumTest.cpp:63:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/nordugrid-arc-6.8.1/src/hed/libs/common/test/FileAccessTest.cpp:85:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/nordugrid-arc-6.8.1/src/hed/libs/common/test/FileAccessTest.cpp:114:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/nordugrid-arc-6.8.1/src/hed/libs/common/test/FileLockTest.cpp:71:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hostname[256]; data/nordugrid-arc-6.8.1/src/hed/libs/common/test/FileLockTest.cpp:182:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hostname[256]; data/nordugrid-arc-6.8.1/src/hed/libs/common/test/FileLockTest.cpp:240:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hostname[256]; data/nordugrid-arc-6.8.1/src/hed/libs/common/test/FileLockTest.cpp:278:11: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). pFile = fopen((char*)filename.c_str(), "w"); data/nordugrid-arc-6.8.1/src/hed/libs/common/test/FileLockTest.cpp:288:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mystring[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/common/test/FileLockTest.cpp:289:11: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). pFile = fopen((char*)filename.c_str(), "r"); data/nordugrid-arc-6.8.1/src/hed/libs/common/test/FileUtilsTest.cpp:80:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h = open(std::string(testroot+"/file2").c_str(), O_RDONLY , S_IRUSR | S_IWUSR); data/nordugrid-arc-6.8.1/src/hed/libs/common/test/FileUtilsTest.cpp:82:12: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h2 = open(std::string(testroot+"/file3").c_str(), O_WRONLY | O_CREAT, S_IRUSR | S_IWUSR); data/nordugrid-arc-6.8.1/src/hed/libs/common/test/FileUtilsTest.cpp:297:11: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). pFile = fopen((char*)filename.c_str(), "w"); data/nordugrid-arc-6.8.1/src/hed/libs/common/test/UserTest.cpp:30:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pwdbuf[2048]; data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageBDB.cpp:25:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(p,str.c_str(),str.length()); data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageBDB.cpp:334:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((ret = dbEnv->open(tmpdir.c_str(), DB_CREATE | DB_INIT_CDB | DB_INIT_MPOOL, 0)) != 0) { data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageBDB.cpp:358:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((ret = jobDB->open(NULL, absPathToDB.c_str(), "job_records", type, flags, 0)) != 0) { data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageBDB.cpp:362:36: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((ret = nameSecondaryKeyDB->open(NULL, absPathToDB.c_str(), "name_keys", type, flags, 0)) != 0) { data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageBDB.cpp:366:40: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((ret = endpointSecondaryKeyDB->open(NULL, absPathToDB.c_str(), "endpoint_keys", type, flags, 0)) != 0) { data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageBDB.cpp:370:43: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((ret = serviceInfoSecondaryKeyDB->open(NULL, absPathToDB.c_str(), "serviceinfo_keys", type, flags, 0)) != 0) { data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/JobInformationStorageTest.cpp:43:15: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). std::string tmpfile; data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/JobInformationStorageTest.cpp:125:69: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). jis = (Arc::JobInformationStorage::AVAILABLE_TYPES[i].instance)(tmpfile); data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/JobInformationStorageTest.cpp:279:12: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). remove(tmpfile.c_str()); data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/JobInformationStorageTest.cpp:289:69: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). jis = (Arc::JobInformationStorage::AVAILABLE_TYPES[i].instance)(tmpfile); data/nordugrid-arc-6.8.1/src/hed/libs/compute/test/JobInformationStorageTest.cpp:454:12: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). remove(tmpfile.c_str()); data/nordugrid-arc-6.8.1/src/hed/libs/compute/test_jobdescription.cpp:65:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). ifs.open((*it).c_str(), std::ios::in); data/nordugrid-arc-6.8.1/src/hed/libs/credential/CertUtil.cpp:283:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:194:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:466:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:577:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char password[100]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:619:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:870:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp.open(policy_.c_str()); data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:1133:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ext_oct->data, data.c_str(), data.size()); data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:1260:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:1476:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:1560:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:1594:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:1615:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:1642:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:2086:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char md[SHA_DIGEST_LENGTH]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:2308:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:2449:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:2483:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1][BSIZE]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:2942:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/NSSUtil.cpp:1393:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pwitem->data, p12pw.c_str(), pwitem->len); data/nordugrid-arc-6.8.1/src/hed/libs/credential/NSSUtil.cpp:1622:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/NSSUtil.cpp:1665:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/NSSUtil.cpp:1738:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Proxycertinfo.cpp:62:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(copy, proxypolicy->policy->data, *length); data/nordugrid-arc-6.8.1/src/hed/libs/credential/VOMSAttribute.cpp:213:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, encoded_acseq.c_str(), len); data/nordugrid-arc-6.8.1/src/hed/libs/credential/VOMSAttribute.cpp:429:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char digest[21]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/VOMSConfig.cpp:184:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[max_line_length]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/VOMSUtil.cpp:653:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pp, codedac.data(), l); data/nordugrid-arc-6.8.1/src/hed/libs/credential/VOMSUtil.cpp:1157:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hostname[256]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/VOMSUtil.cpp:1158:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char domainname[256]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/VOMSUtil.cpp:1322:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char hashed[20]; data/nordugrid-arc-6.8.1/src/hed/libs/credential/VOMSUtil.cpp:1749:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char trans2[128] = { 0, 0, 0, 0, 0, 0, 0, 0, data/nordugrid-arc-6.8.1/src/hed/libs/credential/listfunc.cpp:25:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newvect, vect, (size*(i-1))); data/nordugrid-arc-6.8.1/src/hed/libs/credential/test/CredentialTest.cpp:91:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). out_f.open(CAserial.c_str()); data/nordugrid-arc-6.8.1/src/hed/libs/credential/test/CredentialTest.cpp:144:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). out_f.open(host_key_file.c_str()); data/nordugrid-arc-6.8.1/src/hed/libs/credential/test/CredentialTest.cpp:193:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). out_f.open(user_key_file.c_str()); data/nordugrid-arc-6.8.1/src/hed/libs/credential/test/CredentialTest.cpp:274:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). out_f.open(user_proxy_file.c_str()); data/nordugrid-arc-6.8.1/src/hed/libs/credentialstore/ClientVOMS.cpp:194:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/credentialstore/ClientVOMSRESTful.cpp:100:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/credentialstore/CredentialStore.cpp:51:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/nordugrid-arc-6.8.1/src/hed/libs/data/DataExternalHelper.cpp:171:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(buffer[handle], chunk_data, length); data/nordugrid-arc-6.8.1/src/hed/libs/data/DataMover.cpp:1057:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/nordugrid-arc-6.8.1/src/hed/libs/data/DataMover.cpp:1061:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/nordugrid-arc-6.8.1/src/hed/libs/data/DataMover.cpp:1065:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/nordugrid-arc-6.8.1/src/hed/libs/data/DataPointDelegate.cpp:314:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/nordugrid-arc-6.8.1/src/hed/libs/data/FileCacheHash.cpp:51:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char md_value[EVP_MAX_MD_SIZE]; data/nordugrid-arc-6.8.1/src/hed/libs/data/FileCacheHash.cpp:58:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char result[3]; data/nordugrid-arc-6.8.1/src/hed/libs/data/URLMap.cpp:37:21: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h = ::open(newurl.Path().c_str(), O_RDONLY); data/nordugrid-arc-6.8.1/src/hed/libs/data/test/FileCacheTest.cpp:965:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mystring[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/data/test/FileCacheTest.cpp:966:11: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). pFile = fopen((char*)filename.c_str(), "r"); data/nordugrid-arc-6.8.1/src/hed/libs/delegation/DelegationInterface.cpp:67:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/delegation/DelegationInterface.cpp:99:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/delegation/DelegationInterface.cpp:413:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/delegation/DelegationInterface.cpp:494:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/libs/loader/ModuleManager.cpp:105:18: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *file = fopen(path.c_str(), "r"); data/nordugrid-arc-6.8.1/src/hed/libs/message/PayloadRaw.cpp:97:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf.data,bufref->data+bufpos,buf.size); data/nordugrid-arc-6.8.1/src/hed/libs/message/PayloadRaw.cpp:128:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(s_,s,size); data/nordugrid-arc-6.8.1/src/hed/libs/message/PayloadStream.cpp:110:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tbuf[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/message/PayloadStream.cpp:124:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tbuf[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/message/PayloadStream.cpp:141:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tbuf[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/UsernameToken.cpp:57:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pwd[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/UsernameToken.cpp:60:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prompt[128]; data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/UsernameToken.cpp:79:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/UsernameToken.cpp:99:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/UsernameToken.cpp:154:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[16]; data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/UsernameToken.cpp:167:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[16]; data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/UsernameToken.cpp:184:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char md_value[SHA_DIGEST_LENGTH]; data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/UsernameToken.cpp:212:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char md_value[SHA_DIGEST_LENGTH]; data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/X509Token.cpp:533:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[256]; data/nordugrid-arc-6.8.1/src/hed/libs/xmlsec/XmlSecUtils.cpp:43:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char prompt[128]; data/nordugrid-arc-6.8.1/src/hed/libs/xmlsec/XmlSecUtils.cpp:197:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp_str,v.c_str(),v.size()); data/nordugrid-arc-6.8.1/src/hed/libs/xmlsec/XmlSecUtils.cpp:224:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.cpp:128:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf,tbuf_,size); data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.cpp:132:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf,tbuf_,tbuflen_); data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.cpp:280:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf,multipart_buf_.c_str(),multipart_buf_.length()); data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.cpp:284:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf,multipart_buf_.c_str(),bufsize); data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.cpp:671:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(buf,body_+stream_offset_,l); data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.cpp:749:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.cpp:1268:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(buf+l,p,bs); data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.cpp:1339:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(buf+l+(cs-chunk_size_str.length()),chunk_size_str.c_str(),chunk_size_str.length()); data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.cpp:1340:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(buf+l+cs+s,"\r\n",2); data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.cpp:1352:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(buf+l,"0\r\n\r\n",5); data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.h:126:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tbuf_[1024]; /** intermediate buffer for reading header lines */ data/nordugrid-arc-6.8.1/src/hed/mcc/tcp/MCCTCP.cpp:176:27: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). timeout = atoi(v.c_str()); data/nordugrid-arc-6.8.1/src/hed/mcc/tcp/MCCTCP.cpp:202:24: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). max_executers_ = atoi(v.c_str()); data/nordugrid-arc-6.8.1/src/hed/mcc/tcp/MCCTCP.cpp:430:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[INET6_ADDRSTRLEN]; data/nordugrid-arc-6.8.1/src/hed/mcc/tcp/MCCTCP.cpp:453:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(addr, &sin, sizeof(struct sockaddr_in)); data/nordugrid-arc-6.8.1/src/hed/mcc/tcp/MCCTCP.cpp:607:16: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int port = atoi(port_s.c_str()); data/nordugrid-arc-6.8.1/src/hed/mcc/tcp/MCCTCP.cpp:612:19: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). timeout = atoi(timeout_s.c_str()); data/nordugrid-arc-6.8.1/src/hed/mcc/tcp/PayloadTCPSocket.cpp:180:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int port = atoi(hostname.c_str()+p+1); data/nordugrid-arc-6.8.1/src/hed/mcc/tcp/PayloadTCPSocket.cpp:212:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tbuf[1024]; data/nordugrid-arc-6.8.1/src/hed/mcc/tls/BIOGSIMCC.cpp:163:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char header[4]; data/nordugrid-arc-6.8.1/src/hed/mcc/tls/BIOGSIMCC.cpp:203:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char header[4]; data/nordugrid-arc-6.8.1/src/hed/mcc/tls/GlobusSigningPolicy.cpp:231:27: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). bool GlobusSigningPolicy::open(const X509_NAME* issuer_subject,const std::string& ca_path) { data/nordugrid-arc-6.8.1/src/hed/mcc/tls/GlobusSigningPolicy.cpp:236:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hash_str[32]; data/nordugrid-arc-6.8.1/src/hed/mcc/tls/GlobusSigningPolicy.h:13:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). bool open(const X509_NAME* issuer_subject,const std::string& ca_path); data/nordugrid-arc-6.8.1/src/hed/mcc/tls/MCCTLS.cpp:45:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s[256]; data/nordugrid-arc-6.8.1/src/hed/mcc/tls/PayloadTLSMCC.cpp:109:30: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(globus_policy.open(X509_get_issuer_name(cert),it->Config().CADir())) { data/nordugrid-arc-6.8.1/src/hed/mcc/tls/PayloadTLSMCC.cpp:195:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char gsi_cmd[1] = { '0' }; data/nordugrid-arc-6.8.1/src/hed/mcc/tls/PayloadTLSStream.cpp:48:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tbuf[1024]; data/nordugrid-arc-6.8.1/src/hed/shc/delegationsh/DelegationSH.cpp:123:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char md[16]; data/nordugrid-arc-6.8.1/src/hed/shc/delegationsh/DelegationSH.cpp:201:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char text[20]; data/nordugrid-arc-6.8.1/src/hed/shc/delegationsh/DelegationSH.cpp:265:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char text[20]; data/nordugrid-arc-6.8.1/src/hed/shc/legacy/ConfigParser.cpp:16:6: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f_.open(filename.c_str()); data/nordugrid-arc-6.8.1/src/hed/shc/legacy/auth.cpp:334:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). std::string tmpfile; data/nordugrid-arc-6.8.1/src/hed/shc/legacy/auth.cpp:335:27: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if(Arc::TmpFileCreate(tmpfile,cred)) { data/nordugrid-arc-6.8.1/src/hed/shc/legacy/auth.cpp:336:18: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). filename = tmpfile; data/nordugrid-arc-6.8.1/src/hed/shc/legacy/simplemap.cpp:57:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). pool_handle_=open((dir_+"pool").c_str(),O_RDWR); data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDeliveryComm.h:51:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char error_desc[1024]; ///< Error description data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDeliveryComm.h:57:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char checksum[128]; ///< Calculated checksum data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDeliveryLocalComm.cpp:198:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024+1]; data/nordugrid-arc-6.8.1/src/libs/data-staging/DataStagingDelivery.cpp:517:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/nordugrid-arc-6.8.1/src/libs/data-staging/DataStagingDelivery.cpp:521:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/nordugrid-arc-6.8.1/src/libs/data-staging/DataStagingDelivery.cpp:525:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[100]; data/nordugrid-arc-6.8.1/src/libs/data-staging/Processor.cpp:32:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hostn[256]; data/nordugrid-arc-6.8.1/src/libs/data-staging/test/ProcessorTest.cpp:145:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int fd = ::open(lock_file.c_str(), O_WRONLY|O_CREAT, S_IRUSR|S_IWUSR); data/nordugrid-arc-6.8.1/src/libs/data-staging/test/ProcessorTest.cpp:163:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = ::open(cache_file.c_str(), O_WRONLY|O_CREAT, S_IRUSR|S_IWUSR); data/nordugrid-arc-6.8.1/src/libs/data-staging/test/ProcessorTest.cpp:443:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int fd = ::open(cache_file.c_str(), O_WRONLY|O_CREAT, S_IRUSR|S_IWUSR); data/nordugrid-arc-6.8.1/src/services/a-rex/PayloadFile.cpp:19:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). handle_=::open(filename,O_RDONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/PayloadFile.cpp:120:12: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return ::open(filename,O_RDONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/PayloadFile.h:82:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cbuf[1024]; data/nordugrid-arc-6.8.1/src/services/a-rex/arex.cpp:460:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4096]; data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordBDB.cpp:61:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). valid_ = open(create); data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordBDB.cpp:91:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). bool FileRecordBDB::open(bool create) { data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordBDB.cpp:115:20: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). db_env_->open(basepath_.c_str(),eflags,mode))) { data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordBDB.cpp:137:20: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). db_rec_->open(NULL,dbpath.c_str(), "meta", DB_BTREE,oflags,mode))) return false; data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordBDB.cpp:139:21: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). db_link_->open(NULL,dbpath.c_str(), "link", DB_RECNO,oflags,mode))) return false; data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordBDB.cpp:141:21: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). db_lock_->open(NULL,dbpath.c_str(), "lock", DB_BTREE,oflags,mode))) return false; data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordBDB.cpp:143:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). db_locked_->open(NULL,dbpath.c_str(),"locked",DB_BTREE,oflags,mode))) return false; data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordBDB.cpp:167:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. ::memcpy(p,str.c_str(),str.length()); data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordBDB.h:26:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). bool open(bool create); data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordSQLite.cpp:46:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). valid_ = open(create); data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordSQLite.cpp:70:26: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). bool FileRecordSQLite::open(bool create) { data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/FileRecordSQLite.h:21:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). bool open(bool create); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/GridManager.cpp:95:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h = open(logfile.c_str(), O_WRONLY | O_APPEND); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/GridManager.cpp:103:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h = open(logfile.c_str(), O_WRONLY | O_CREAT, S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/GridManager.cpp:200:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int r = ::open(gm_heartbeat.c_str(), O_WRONLY|O_CREAT|O_TRUNC, S_IRUSR|S_IWUSR); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/accounting/AAR.cpp:49:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BUFSIZ]; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/arc_blahp_logger.cpp:69:54: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). debuglevel = Arc::old_level_to_level(atoi(optarg)); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/arc_blahp_logger.cpp:107:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char host[256]; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/arc_blahp_logger.cpp:138:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). job_local.open(job_local_f, std::ios::in); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/arc_blahp_logger.cpp:274:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). logfile.open(fname.c_str(),std::ofstream::app); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/CacheConfig.cpp:27:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(!cfile.open(config.ConfigFile())) throw CacheConfigException("Can't open configuration file"); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/CoreConfig.cpp:67:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!cfile.open(config.conffile)) { data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/GMConfig.cpp:272:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4096]; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/StagingConfig.cpp:34:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!cfile.open(config.ConfigFile())) { data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/conf/UrlMapConfig.cpp:23:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!cfile.open(config.ConfigFile())) { data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileContent.cpp:51:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). handle_ = ::open(fname.c_str(),O_WRONLY | O_CREAT, S_IRUSR | S_IWUSR); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileContent.cpp:66:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). handle_ = ::open(fname.c_str(),O_RDONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileHandling.cpp:232:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h = open(fname.c_str(),O_WRONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileHandling.cpp:316:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h=open(fname.c_str(),O_WRONLY | O_CREAT | O_APPEND,S_IRUSR | S_IWUSR); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileHandling.cpp:323:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h=open(fname.c_str(),O_WRONLY | O_CREAT,S_IRUSR | S_IWUSR); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/gm_jobs.cpp:230:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outf.open(output_file.c_str()); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/gm_kick.cpp:51:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:398:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int JobPlugin::open(const char* name,open_modes mode,unsigned long long int size) { data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:412:12: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return open(newname.c_str(),mode,size); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:445:31: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int r=chosenFilePlugin->open(name,mode); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:449:30: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return chosenFilePlugin->open(name,mode); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:522:31: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int r=chosenFilePlugin->open(name,mode,size); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:526:30: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return chosenFilePlugin->open(name,mode,size); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:666:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h_old=::open(rsl_fname.c_str(),O_RDONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:686:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h=::open(rsl_fname.c_str(),O_WRONLY,0600); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:689:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:1037:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h=::open(rsl_fname.c_str(),O_WRONLY|O_CREAT,0600); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:1349:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h = ::open(fname.c_str(),O_RDWR | O_CREAT | O_EXCL,0600); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:1369:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h = ::open(fname.c_str(),O_RDWR | O_CREAT | O_EXCL,0600); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.h:75:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). virtual int open(const char* name,open_modes mode,unsigned long long int size = 0); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/CommFIFO.cpp:130:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/CommFIFO.cpp:164:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/CommFIFO.cpp:196:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(path.c_str(),O_WRONLY | O_NONBLOCK); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/CommFIFO.cpp:199:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(path.c_str(),O_RDONLY | O_NONBLOCK); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/CommFIFO.cpp:201:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int fd_keep = open(path.c_str(),O_WRONLY | O_NONBLOCK); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/CommFIFO.cpp:231:12: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int fd = open(path.c_str(),O_WRONLY | O_NONBLOCK); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/DTRGenerator.cpp:1289:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h = ::open(fname.c_str(), O_RDONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/DTRGenerator.cpp:1297:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/JobsList.cpp:983:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char const * const args[2] = { cmd.c_str(), NULL }; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/JobsList.cpp:1954:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h = ::open("/dev/null",O_RDONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/JobsList.cpp:1956:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h = ::open("/dev/null",O_WRONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/JobsList.cpp:1959:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h = ::open(logpath,O_WRONLY | O_CREAT | O_APPEND,S_IRUSR | S_IWUSR); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/JobsList.cpp:1960:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(h==-1) { h = ::open("/dev/null",O_WRONLY); }; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/JobsList.cpp:1962:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). else { h = ::open("/dev/null",O_WRONLY); }; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/log/JobLog.cpp:45:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). o.open(filename.c_str(),std::ofstream::app); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/log/JobLog.cpp:214:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h=::open("/dev/null",O_RDONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/log/JobLog.cpp:216:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h=::open("/dev/null",O_WRONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/log/JobLog.cpp:218:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h=errlog ? ::open(errlog,O_WRONLY | O_CREAT | O_APPEND,S_IRUSR | S_IWUSR) : -1; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/log/JobLog.cpp:219:19: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(h==-1) { h=::open("/dev/null",O_WRONLY); }; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/smtp-send.c:24:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[8192]; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/smtp-send.c:33:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/smtp-send.c:37:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char my_hostname[256]; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/smtp-send.c:108:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mxbuf[1024]; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/misc/proxy.cpp:34:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h=::open(proxy_file.c_str(),O_RDONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/misc/proxy.cpp:49:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h=::open(proxy_file_tmp.c_str(),O_WRONLY | O_CREAT,S_IRUSR | S_IWUSR); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/run/RunParallel.cpp:177:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h=::open("/dev/null",O_RDONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/run/RunParallel.cpp:179:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h=::open("/dev/null",O_WRONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/run/RunParallel.cpp:183:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h=::open(it->errlog_.c_str(),O_WRONLY | O_CREAT | O_APPEND,S_IRUSR | S_IWUSR); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/run/RunParallel.cpp:184:21: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(h==-1) { h=::open("/dev/null",O_WRONLY); }; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/run/RunParallel.cpp:186:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). else { h=::open("/dev/null",O_WRONLY); }; data/nordugrid-arc-6.8.1/src/services/a-rex/information_collector.cpp:271:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). handle_ = ::open(filename_.c_str(),O_RDONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/information_collector.cpp:290:15: [2] (tmpfile) mkstemp: Potential for temporary file vulnerability in some circumstances. Some older Unix-like systems create temp files with permission to write by all by default, so be sure to set the umask to override this. Also, some older Unix systems might fail to use O_EXCL when opening the file, so make sure that O_EXCL is used by the library (CWE-377). h = Glib::mkstemp(tmpfilename); data/nordugrid-arc-6.8.1/src/services/a-rex/job.cpp:885:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h = ::open(fname.c_str(),O_RDWR | O_CREAT | O_EXCL,0600); data/nordugrid-arc-6.8.1/src/services/a-rex/job.cpp:1068:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h = ::open(fname.c_str(),O_RDONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/job.cpp:1072:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h = ::open(fname.c_str(),O_RDONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/job.cpp:1075:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h = ::open(fname.c_str(),O_RDONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/job.cpp:1078:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h = ::open(fname.c_str(),O_RDONLY); data/nordugrid-arc-6.8.1/src/services/a-rex/job.cpp:1081:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). h = ::open(fname.c_str(),O_RDONLY); data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/simplemap.cpp:55:16: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). pool_handle_=open((dir_+"pool").c_str(),O_RDWR); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:153:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[8*5]; data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:213:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[8*5]; data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:293:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if(n<margs) args[n]=atoi(np); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:392:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(host_port->host),&addr,sizeof(addr)); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:398:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&(host_port->host),&addr,sizeof(addr)); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:527:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[200]; sprintf(buf,"213 %llu\r\n",size); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:527:22: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. char buf[200]; sprintf(buf,"213 %llu\r\n",size); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:563:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:663:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[200]; data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:691:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf,"227 Entering Passive Mode (%i,%i,%i,%i,%i,%i)\r\n", data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:696:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf,"229 Entering Extended Passive Mode (|||%u|)\r\n",node.port); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:713:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf,"229-Entering Passive Mode\r\n %i,%i,%i,%i,%i,%i\r\n229 End\r\n", data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:824:20: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(it->froot.open(args[3],GRIDFTP_OPEN_RETRIEVE)!=0) { data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:839:22: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(it->froot.open(command->retr.string_arg,GRIDFTP_OPEN_RETRIEVE)!=0) { data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:868:20: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(it->froot.open(command->stor.string_arg,GRIDFTP_OPEN_STORE) != 0) { data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:1033:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). pbsz=atoi(args[0]); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:1044:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[200]; sprintf(buf,"200 PBSZ=%lu\r\n",npbsz); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:1044:26: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. char buf[200]; sprintf(buf,"200 PBSZ=%lu\r\n",npbsz); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:1096:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[200]; sprintf(buf,"213 %04u%02u%02u%02u%02u%02u\r\n",tp->tm_year+1900,tp->tm_mon+1,tp->tm_mday,tp->tm_hour,tp->tm_min,tp->tm_sec); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:1096:24: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. char buf[200]; sprintf(buf,"213 %04u%02u%02u%02u%02u%02u\r\n",tp->tm_year+1900,tp->tm_mon+1,tp->tm_mday,tp->tm_hour,tp->tm_min,tp->tm_sec); data/nordugrid-arc-6.8.1/src/services/gridftpd/conf/daemon.cpp:55:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BUFSIZ]; data/nordugrid-arc-6.8.1/src/services/gridftpd/conf/daemon.cpp:67:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BUFSIZ]; data/nordugrid-arc-6.8.1/src/services/gridftpd/conf/daemon.cpp:135:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BUFSIZ]; data/nordugrid-arc-6.8.1/src/services/gridftpd/conf/daemon.cpp:147:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BUFSIZ]; data/nordugrid-arc-6.8.1/src/services/gridftpd/conf/daemon.cpp:234:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h=::open("/dev/null",O_RDONLY); data/nordugrid-arc-6.8.1/src/services/gridftpd/conf/daemon.cpp:246:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int h=::open(log,O_WRONLY | O_CREAT | O_APPEND,S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH); data/nordugrid-arc-6.8.1/src/services/gridftpd/conf/daemon.cpp:261:37: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(pidfile_.length() != 0) hp=::open(pidfile_.c_str(),O_WRONLY | O_CREAT | O_TRUNC,S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH); data/nordugrid-arc-6.8.1/src/services/gridftpd/conf/daemon.cpp:289:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[30]; int l = snprintf(buf,29,"%u",getpid()); buf[l]=0; data/nordugrid-arc-6.8.1/src/services/gridftpd/config.cpp:21:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(!cfile.open(config_name)) return ""; data/nordugrid-arc-6.8.1/src/services/gridftpd/datalist.cpp:26:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:51:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BUFSIZ]; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:213:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmgsbuf[256] = ""; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:272:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmgsbuf[256] = ""; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:329:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int DirectFilePlugin::open(const char* name,open_modes mode,unsigned long long int size) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:345:21: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). data_file=::open(fname.c_str(),O_RDONLY); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:385:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). data_file=::open(fname.c_str(),O_WRONLY); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:422:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). data_file=::open(fname.c_str(),O_WRONLY | O_CREAT | O_EXCL, data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:470:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). data_file=::open(fname.c_str(),O_RDONLY); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:477:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). data_file=::open(fname.c_str(),O_WRONLY | O_CREAT,S_IRUSR | S_IWUSR); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:104:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). virtual int open(const char* name,open_modes mode,unsigned long long int size = 0); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.cpp:282:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int FileRoot::open(const char* name,open_modes mode,unsigned long long int size) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.cpp:290:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(i->open(new_name.c_str(),mode,size) == 0) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.cpp:434:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int FileNode::open(const char* name,open_modes mode,unsigned long long int size) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.cpp:437:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return plug->open(remove_head_dir_c(name,point.length()),mode,size); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.h:84:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). virtual int open(const char*,open_modes,unsigned long long int /* size */ = 0) { return 1; }; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.h:160:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int open(const char* name,open_modes mode,unsigned long long int size = 0); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.h:205:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int open(const char* name,open_modes mode,unsigned long long int size = 0); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot_config.cpp:94:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BUFSIZ]; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot_config.cpp:99:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BUFSIZ]; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot_config.cpp:103:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BUFSIZ]; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot_config.cpp:172:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hostn[256]; data/nordugrid-arc-6.8.1/src/services/gridftpd/misc.cpp:10:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/nordugrid-arc-6.8.1/src/services/gridftpd/misc/ldapquery.cpp:412:19: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. attrs = new char * [attributes.size() + 1]; data/nordugrid-arc-6.8.1/src/services/gridftpd/userspec.cpp:38:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufp[BUFSIZ]; data/nordugrid-arc-6.8.1/src/services/gridftpd/userspec.cpp:39:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufg[BUFSIZ]; data/nordugrid-arc-6.8.1/src/services/gridftpd/userspec.cpp:55:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char abuf[1024]; abuf[sizeof(abuf)-1]=0; data/nordugrid-arc-6.8.1/src/services/gridftpd/userspec.cpp:63:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/nordugrid-arc-6.8.1/src/services/gridftpd/userspec.cpp:70:15: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(abuf,"localhost"); data/nordugrid-arc-6.8.1/src/services/gridftpd/userspec.cpp:127:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufp[BUFSIZ]; data/nordugrid-arc-6.8.1/src/services/gridftpd/userspec.cpp:128:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufg[BUFSIZ]; data/nordugrid-arc-6.8.1/src/services/gridftpd/userspec.cpp:182:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/nordugrid-arc-6.8.1/src/services/gridftpd/userspec.cpp:187:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[10]; data/nordugrid-arc-6.8.1/src/services/gridftpd/userspec.cpp:215:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BUFSIZ]; data/nordugrid-arc-6.8.1/src/tests/echo/echo.cpp:134:16: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int size = atoi(std::string(echo_op["size"]).c_str()); data/nordugrid-arc-6.8.1/src/tests/echo/perftest.cpp:229:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). numberOfThreads = atoi(argv[3]); data/nordugrid-arc-6.8.1/src/tests/echo/perftest.cpp:230:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). duration = atoi(argv[4]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest.cpp:176:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). numberOfThreads = atoi(argv[2]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest.cpp:177:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). duration = atoi(argv[3]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_cmd_duration.cpp:48:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. list[i] = (char *)arglist[i].c_str(); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_cmd_duration.cpp:105:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). duration = atoi(argv[1]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_cmd_duration.cpp:112:24: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. arglist.push_back((char *)argv[i+2]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_cmd_times.cpp:48:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. list[i] = (char *)arglist[i].c_str(); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_cmd_times.cpp:109:23: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). numberOfProcesses = atoi(argv[1]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_cmd_times.cpp:116:24: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. arglist.push_back((char *)argv[i+2]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_deleg_bydelegclient.cpp:150:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). numberOfThreads = atoi(argv[2]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_deleg_bydelegclient.cpp:151:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). duration = atoi(argv[3]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_deleg_bysechandler.cpp:195:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). numberOfThreads = atoi(argv[2]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_deleg_bysechandler.cpp:196:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). duration = atoi(argv[3]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_msgsize.cpp:167:36: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). fixedMsgSize = true; msgSize=atoi(argv[2]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_msgsize.cpp:210:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). numberOfThreads = atoi(argv[2]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_msgsize.cpp:211:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). duration = atoi(argv[3]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_msgsize.cpp:212:11: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). start = atoi(argv[4]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_msgsize.cpp:213:10: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). stop = atoi(argv[5]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_msgsize.cpp:214:16: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). steplength = atoi(argv[6]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_saml2sso.cpp:191:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). numberOfThreads = atoi(argv[5]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_saml2sso.cpp:192:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). duration = atoi(argv[6]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_samlaa.cpp:298:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). numberOfThreads = atoi(argv[2]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_samlaa.cpp:299:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). duration = atoi(argv[3]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_slcs.cpp:191:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). numberOfThreads = atoi(argv[5]); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_slcs.cpp:192:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). duration = atoi(argv[6]); data/nordugrid-arc-6.8.1/src/tests/xpath/query.cpp:16:19: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int filenum = atoi(argv[1]); data/nordugrid-arc-6.8.1/src/tests/xpath/query.cpp:17:19: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int attrnum = atoi(argv[2]); data/nordugrid-arc-6.8.1/src/tests/xpath/query.cpp:21:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[200]; data/nordugrid-arc-6.8.1/src/tests/xpath/query.cpp:36:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char query[200]; data/nordugrid-arc-6.8.1/src/utils/hed/arcplugin.cpp:98:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). apd.open(descriptor_filename.c_str()); data/nordugrid-arc-6.8.1/src/utils/hed/common.cpp:18:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[65536]; data/nordugrid-arc-6.8.1/src/utils/hed/common.cpp:34:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[65536]; data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:22:21: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). proc_mount_fd = fopen("/proc/mounts", "r"); data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:30:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fs_type[4096+1]; data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:31:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fs_mntopts[4096+1]; data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:77:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pid_cgroup_file[64]; data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:81:21: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). pid_cgroup_fd = fopen(pid_cgroup_file, "r"); data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:87:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char controllers[64]; data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:154:24: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). cgroup_tasks = fopen(task_path, "w"); data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:210:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(current_cgroup_path, "/tasks"); data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:211:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(parent_cgroup_path, "/tasks"); data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:213:27: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). cgroup_tasks_fd = fopen(current_cgroup_path, "r"); data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:218:28: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). pcgroup_tasks_fd = fopen(parent_cgroup_path, "w"); data/nordugrid-arc-6.8.1/src/clients/compute/arcsub.cpp:120:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). descriptionfile.read(buffer, length); data/nordugrid-arc-6.8.1/src/clients/credentials/arcproxy.cpp:184:14: [1] (buffer) getchar: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). char c = getchar(); data/nordugrid-arc-6.8.1/src/clients/credentials/arcproxy.cpp:1082:13: [1] (buffer) getchar: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c = getchar(); data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:54:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(str) + 1; data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:374:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (ret) len+=strlen(ret)+2+(fmt?1:0); else fail=1; data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:396:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(ptr,entries[i]);ptr+=strlen(entries[i]); data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:474:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (str && ret) len+=strlen(ret)+strlen(str)+2+(fmt?2+depth:0); else fail=1; data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:474:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (str && ret) len+=strlen(ret)+strlen(str)+2+(fmt?2+depth:0); else fail=1; data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:495:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(ptr,names[i]);ptr+=strlen(names[i]); data/nordugrid-arc-6.8.1/src/external/cJSON/cJSON.c:497:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(ptr,entries[i]);ptr+=strlen(entries[i]); data/nordugrid-arc-6.8.1/src/hed/acc/GRIDFTPJOB/JobControllerPluginGRIDFTPJOB.cpp:591:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). descriptionfile.read(buffer, length); data/nordugrid-arc-6.8.1/src/hed/acc/TEST/JobListRetrieverPluginTEST.cpp:17:9: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(JobListRetrieverPluginTESTControl::delay*1000000); data/nordugrid-arc-6.8.1/src/hed/acc/TEST/TargetInformationRetrieverPluginTEST.cpp:23:9: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(TargetInformationRetrieverPluginTESTControl::delay*1000000); data/nordugrid-arc-6.8.1/src/hed/daemon/unix/daemon.cpp:42:7: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). ::umask(0022); data/nordugrid-arc-6.8.1/src/hed/dmc/file/DataPointFile.cpp:145:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ll = ::read(fd, (*(buffer))[h], l); data/nordugrid-arc-6.8.1/src/hed/dmc/file/DataPointFile.cpp:315:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(fd != -1) ll = read(fd,tbuf,l); data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/DataPointGridFTPHelper.cpp:543:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(!dataChunk.read(instream)) { data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/Lister.cpp:35:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int l = strlen(s); data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/Lister.cpp:433:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(cmd,cmds.c_str(),cmds.length()+1); data/nordugrid-arc-6.8.1/src/hed/dmc/gridftp/Lister.cpp:1022:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t nlength = strlen(nresp); data/nordugrid-arc-6.8.1/src/hed/dmc/ldap/LDAPQuery.cpp:229:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). interact->len = strlen((char*)interact->result); data/nordugrid-arc-6.8.1/src/hed/dmc/srm/srmclient/SRMInfo.cpp:73:13: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(sleeptime); data/nordugrid-arc-6.8.1/src/hed/dmc/srm/srmclient/SRMInfo.cpp:159:11: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(sleeptime); data/nordugrid-arc-6.8.1/src/hed/libs/common/ArcConfigIni.cpp:127:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int l = strlen(name); data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.cpp:133:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return decodeInternal(bufcoded, std::strlen(bufcoded), false); data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.cpp:147:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return decodeInternal(bufcoded, std::strlen(bufcoded), true); data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.cpp:182:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return encodeInternal(bufplain, std::strlen(bufplain), false); data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.cpp:194:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return encodeInternal(bufplain, std::strlen(bufplain), true); data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.cpp:207:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(encoded, encode(str).c_str(), str.length()); data/nordugrid-arc-6.8.1/src/hed/libs/common/Base64.cpp:218:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(bufplain, decode(str).c_str(), str.length()); data/nordugrid-arc-6.8.1/src/hed/libs/common/CheckSum.cpp:456:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = crc + strlen(crc); data/nordugrid-arc-6.8.1/src/hed/libs/common/CheckSum.cpp:558:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). l = read(h, buffer, 1024); data/nordugrid-arc-6.8.1/src/hed/libs/common/DateTime.cpp:190:11: [1] (buffer) sscanf: It's unclear if the %s limit in the format string is small enough (CWE-120). Check that the limit is sufficiently small, or use a different input function. if (sscanf(timestring.c_str(), data/nordugrid-arc-6.8.1/src/hed/libs/common/DateTime.cpp:243:11: [1] (buffer) sscanf: It's unclear if the %s limit in the format string is small enough (CWE-120). Check that the limit is sufficiently small, or use a different input function. if (sscanf(timestring.c_str(), data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:131:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). l=::read(source_handle,buf,l); data/nordugrid-arc-6.8.1/src/hed/libs/common/FileUtils.cpp:194:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ssize_t l = ::read(h,buf,sizeof(buf)); data/nordugrid-arc-6.8.1/src/hed/libs/common/Run_unix.cpp:110:7: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). ::umask(0077); data/nordugrid-arc-6.8.1/src/hed/libs/common/Run_unix.cpp:242:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). (void)read(handles[0].fd, &dummy, 1); data/nordugrid-arc-6.8.1/src/hed/libs/common/Run_unix.cpp:473:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int l = strlen(msg); data/nordugrid-arc-6.8.1/src/hed/libs/common/Run_unix.cpp:736:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return ::read(stdout_, buf, size); data/nordugrid-arc-6.8.1/src/hed/libs/common/Run_unix.cpp:751:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return ::read(stderr_, buf, size); data/nordugrid-arc-6.8.1/src/hed/libs/common/User.cpp:161:5: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). umask(0077); data/nordugrid-arc-6.8.1/src/hed/libs/common/UserConfig.cpp:1053:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ifsSource.read((char*)buff, 1024); data/nordugrid-arc-6.8.1/src/hed/libs/common/Watchdog.cpp:194:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ::read(fd.fd,&c,1); data/nordugrid-arc-6.8.1/src/hed/libs/common/XMLNode.cpp:417:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (len == -1) len = strlen(xml); data/nordugrid-arc-6.8.1/src/hed/libs/common/file_access.cpp:42:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ssize_t l = ::read(s,buf,size); data/nordugrid-arc-6.8.1/src/hed/libs/common/file_access.cpp:298:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ssize_t l = read(h_src,filebuf,sizeof(filebuf)); data/nordugrid-arc-6.8.1/src/hed/libs/common/file_access.cpp:474:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ssize_t l = ::read(curfile,filebuf,size); data/nordugrid-arc-6.8.1/src/hed/libs/common/hostname_resolver.cpp:44:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ssize_t l = ::read(s,buf,size); data/nordugrid-arc-6.8.1/src/hed/libs/compute/Job.cpp:1087:13: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(tryInterval); data/nordugrid-arc-6.8.1/src/hed/libs/compute/Job.cpp:1116:13: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(tryInterval); data/nordugrid-arc-6.8.1/src/hed/libs/compute/Job.cpp:1148:13: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(tryInterval); data/nordugrid-arc-6.8.1/src/hed/libs/compute/Job.cpp:1181:13: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(tryInterval); data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobDescription.cpp:429:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). descriptionfile.read(buffer, length); data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageXML.cpp:54:13: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(tryInterval); data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageXML.cpp:226:13: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(tryInterval); data/nordugrid-arc-6.8.1/src/hed/libs/compute/JobInformationStorageXML.cpp:266:13: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(tryInterval); data/nordugrid-arc-6.8.1/src/hed/libs/credential/CertUtil.cpp:310:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned int buffer_len = cadir.length() + strlen(FILE_SEPARATOR) + 8 /* hash */ data/nordugrid-arc-6.8.1/src/hed/libs/credential/CertUtil.cpp:311:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). + strlen(SIGNING_POLICY_FILE_EXTENSION) + 1 /* zero termination */; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:98:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). if(buf) strncpy(buf, password.c_str(), bufsiz); data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:2490:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). j = strlen(serialfile.c_str()); data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:2492:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). j = strlen(serialfile.c_str()) + strlen(suffix) + 1; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:2492:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). j = strlen(serialfile.c_str()) + strlen(suffix) + 1; data/nordugrid-arc-6.8.1/src/hed/libs/credential/Credential.cpp:2645:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t buflen = strlen(subject)+1; data/nordugrid-arc-6.8.1/src/hed/libs/credential/PasswordSource.cpp:102:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). res = strlen(buf1); data/nordugrid-arc-6.8.1/src/hed/libs/credential/VOMSAttribute.cpp:343:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASN1_STRING_set(tmpr, pos, strlen(list)); data/nordugrid-arc-6.8.1/src/hed/libs/credential/test/listfuncTest.cpp:40:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). Risk is low because the source is a constant string. strncpy(str1,"Hello",6); data/nordugrid-arc-6.8.1/src/hed/libs/credential/test/listfuncTest.cpp:42:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). Risk is low because the source is a constant string. strncpy(str2,"World",6); data/nordugrid-arc-6.8.1/src/hed/libs/credential/test/listfuncTest.cpp:44:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). Risk is low because the source is a constant string. strncpy(str3,"World",6); data/nordugrid-arc-6.8.1/src/hed/libs/data/DataExternalComm.cpp:33:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). instream.read(&tag, 1); data/nordugrid-arc-6.8.1/src/hed/libs/data/DataExternalComm.cpp:341:46: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). bool DataExternalComm::DataChunkExtBuffer::read(Arc::Run& run, int timeout, void* data, unsigned long long int& offset, unsigned long long int& size) { data/nordugrid-arc-6.8.1/src/hed/libs/data/DataExternalComm.cpp:385:43: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). bool DataExternalComm::DataChunkClient::read(std::istream& instream) { data/nordugrid-arc-6.8.1/src/hed/libs/data/DataExternalComm.cpp:395:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). instream.read(data, size); data/nordugrid-arc-6.8.1/src/hed/libs/data/DataExternalComm.h:65:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). bool read(Arc::Run& run, int timeout, void* data, unsigned long long int& offset, unsigned long long int& size); data/nordugrid-arc-6.8.1/src/hed/libs/data/DataExternalComm.h:79:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). bool read(std::istream& instream); data/nordugrid-arc-6.8.1/src/hed/libs/data/DataExternalHelper.cpp:151:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(!dataChunk.read(instream)) { data/nordugrid-arc-6.8.1/src/hed/libs/data/DataPointDelegate.cpp:252:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(!chunkReader.read(*run, 1000 * it->usercfg.Timeout(), (*(it->buffer))[h], offset, size)) { data/nordugrid-arc-6.8.1/src/hed/libs/data/FileCacheHash.cpp:55:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). EVP_DigestUpdate(mdctx, mess1, strlen(mess1)); data/nordugrid-arc-6.8.1/src/hed/libs/delegation/DelegationInterface.cpp:117:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return strlen(buf); data/nordugrid-arc-6.8.1/src/hed/libs/delegation/DelegationInterface.cpp:241:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). std::string::size_type l = ::strlen(token); data/nordugrid-arc-6.8.1/src/hed/libs/delegation/DelegationInterface.cpp:256:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ps += ::strlen(ts); data/nordugrid-arc-6.8.1/src/hed/libs/message/PayloadRaw.cpp:125:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(size < 0) size=strlen(s); data/nordugrid-arc-6.8.1/src/hed/libs/message/PayloadStream.cpp:63:7: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). l=::read(handle_,buf,l); data/nordugrid-arc-6.8.1/src/hed/libs/message/PayloadStream.cpp:160:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return Put(buf,buf?strlen(buf):0); data/nordugrid-arc-6.8.1/src/hed/libs/message/SOAPEnvelope.cpp:360:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int l = strlen(base); data/nordugrid-arc-6.8.1/src/hed/libs/message/SecAttr.cpp:16:15: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool SecAttr::equal(const SecAttr&) const { data/nordugrid-arc-6.8.1/src/hed/libs/message/SecAttr.cpp:100:20: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool MultiSecAttr::equal(const SecAttr &b) const { data/nordugrid-arc-6.8.1/src/hed/libs/message/SecAttr.h:51:54: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool operator==(const SecAttr &b) const { return equal(b); }; data/nordugrid-arc-6.8.1/src/hed/libs/message/SecAttr.h:54:55: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool operator!=(const SecAttr &b) const { return !equal(b); }; data/nordugrid-arc-6.8.1/src/hed/libs/message/SecAttr.h:92:18: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(const SecAttr &b) const; data/nordugrid-arc-6.8.1/src/hed/libs/message/SecAttr.h:111:18: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(const SecAttr &b) const; data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/AnyURIAttribute.cpp:12:23: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool AnyURIAttribute::equal(AttributeValue* o, bool check_id){ data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/AnyURIAttribute.h:18:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(AttributeValue* other, bool check_id = true); data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/AttributeValue.h:21:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(AttributeValue* value, bool check_id = true) = 0; data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/BooleanAttribute.cpp:12:24: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool BooleanAttribute::equal(AttributeValue* o, bool check_id){ data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/BooleanAttribute.h:18:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(AttributeValue* o, bool check_id = true); data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/DateTimeAttribute.cpp:12:25: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool DateTimeAttribute::equal(AttributeValue* o, bool check_id){ data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/DateTimeAttribute.cpp:81:21: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool TimeAttribute::equal(AttributeValue* o, bool check_id){ data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/DateTimeAttribute.cpp:127:21: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool DateAttribute::equal(AttributeValue* o, bool check_id){ data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/DateTimeAttribute.cpp:167:25: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool DurationAttribute::equal(AttributeValue* o, bool check_id){ data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/DateTimeAttribute.cpp:249:23: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool PeriodAttribute::equal(AttributeValue* o, bool check_id){ data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/DateTimeAttribute.h:31:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(AttributeValue* other, bool check_id = true); data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/DateTimeAttribute.h:59:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(AttributeValue* other, bool check_id = true); data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/DateTimeAttribute.h:82:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(AttributeValue* other, bool check_id = true); data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/DateTimeAttribute.h:107:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(AttributeValue* other, bool check_id = true); data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/DateTimeAttribute.h:138:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(AttributeValue* other, bool check_id = true); data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/GenericAttribute.cpp:12:24: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool GenericAttribute::equal(AttributeValue* o, bool check_id){ data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/GenericAttribute.h:19:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(AttributeValue* other, bool check_id = true); data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/StringAttribute.cpp:12:23: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool StringAttribute::equal(AttributeValue* o, bool check_id){ data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/StringAttribute.h:18:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(AttributeValue* other, bool check_id = true); data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/X500NameAttribute.cpp:12:25: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool X500NameAttribute::equal(AttributeValue* o, bool check_id){ data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/attr/X500NameAttribute.h:18:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(AttributeValue* other, bool check_id = true); data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/fn/EqualFunction.cpp:44:37: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. return new BooleanAttribute(arg0->equal(arg1, check_id)); data/nordugrid-arc-6.8.1/src/hed/libs/security/ArcPDP/fn/EqualFunction.cpp:53:52: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. AttributeValue* res = new BooleanAttribute(arg0->equal(arg1, check_id)); data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/UsernameToken.cpp:69:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). j = strlen(pwd); data/nordugrid-arc-6.8.1/src/hed/libs/ws-security/UsernameToken.cpp:106:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). r = strlen(buf); data/nordugrid-arc-6.8.1/src/hed/libs/xmlsec/XmlSecUtils.cpp:50:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(buf); data/nordugrid-arc-6.8.1/src/hed/libs/xmlsec/XmlSecUtils.cpp:385:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(cert_file && (strlen(cert_file) != 0)) data/nordugrid-arc-6.8.1/src/hed/libs/xmlsec/XmlSecUtils.cpp:436:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(capath && (strlen(capath) != 0)) data/nordugrid-arc-6.8.1/src/hed/libs/xmlsec/XmlSecUtils.cpp:443:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(cafile && (strlen(cafile) != 0)) data/nordugrid-arc-6.8.1/src/hed/libs/xmlsec/XmlSecUtils.cpp:449:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(cafile && (strlen(cafile) != 0)) data/nordugrid-arc-6.8.1/src/hed/mcc/http/MCCHTTP.cpp:58:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(const SecAttr &b) const; data/nordugrid-arc-6.8.1/src/hed/mcc/http/MCCHTTP.cpp:89:19: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool HTTPSecAttr::equal(const SecAttr &b) const { data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.cpp:126:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). bool PayloadHTTPIn::read(char* buf,int64_t& size) { data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.cpp:165:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(!chunked_) return read(buf,size); data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.cpp:189:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(!read(buf,l)) break; data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.cpp:426:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(!tag_end) tag_end = tag_start + strlen(tag_start); data/nordugrid-arc-6.8.1/src/hed/mcc/http/PayloadHTTP.h:138:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). bool read(char* buf,int64_t& size); data/nordugrid-arc-6.8.1/src/hed/mcc/soap/MCCSOAP.cpp:59:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(const SecAttr &b) const; data/nordugrid-arc-6.8.1/src/hed/mcc/soap/MCCSOAP.cpp:82:19: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool SOAPSecAttr::equal(const SecAttr &b) const { data/nordugrid-arc-6.8.1/src/hed/mcc/tcp/MCCTCP.cpp:341:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(const SecAttr &b) const; data/nordugrid-arc-6.8.1/src/hed/mcc/tcp/MCCTCP.cpp:363:18: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool TCPSecAttr::equal(const SecAttr &b) const { data/nordugrid-arc-6.8.1/src/hed/mcc/tcp/PayloadTCPSocket.h:45:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). virtual bool Put(const char* buf) { return Put(buf,buf?strlen(buf):0); }; data/nordugrid-arc-6.8.1/src/hed/mcc/tls/BIOGSIMCC.cpp:271:5: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n=strlen(str); data/nordugrid-arc-6.8.1/src/hed/mcc/tls/BIOMCC.cpp:242:5: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n=strlen(str); data/nordugrid-arc-6.8.1/src/hed/mcc/tls/DelegationSecAttr.cpp:36:25: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool DelegationSecAttr::equal(const SecAttr &b) const { data/nordugrid-arc-6.8.1/src/hed/mcc/tls/DelegationSecAttr.h:14:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(const Arc::SecAttr &b) const; data/nordugrid-arc-6.8.1/src/hed/mcc/tls/GlobusSigningPolicy.cpp:76:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(id.compare(0,strlen(access_id),access_id) != 0) { data/nordugrid-arc-6.8.1/src/hed/mcc/tls/GlobusSigningPolicy.cpp:80:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id=id.substr(strlen(access_id)); data/nordugrid-arc-6.8.1/src/hed/mcc/tls/GlobusSigningPolicy.cpp:127:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(id.compare(0,strlen(conditions_id),conditions_id) != 0) { data/nordugrid-arc-6.8.1/src/hed/mcc/tls/GlobusSigningPolicy.cpp:131:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). id=id.substr(strlen(conditions_id)); data/nordugrid-arc-6.8.1/src/hed/mcc/tls/GlobusSigningPolicy.cpp:201:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(s.compare(0,strlen(access_id),access_id) == 0) { data/nordugrid-arc-6.8.1/src/hed/mcc/tls/GlobusSigningPolicy.cpp:210:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). } else if((s.compare(0,strlen(positive_rights),positive_rights) == 0) || data/nordugrid-arc-6.8.1/src/hed/mcc/tls/GlobusSigningPolicy.cpp:211:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (s.compare(0,strlen(positive_rights),negative_rights) == 0)) { data/nordugrid-arc-6.8.1/src/hed/mcc/tls/GlobusSigningPolicy.cpp:217:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). } else if(s.compare(0,strlen(conditions_id),conditions_id) == 0) { data/nordugrid-arc-6.8.1/src/hed/mcc/tls/MCCTLS.cpp:120:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(const SecAttr &b) const; data/nordugrid-arc-6.8.1/src/hed/mcc/tls/MCCTLS.cpp:243:18: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool TLSSecAttr::equal(const SecAttr &b) const { data/nordugrid-arc-6.8.1/src/hed/mcc/tls/PayloadTLSStream.h:40:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). virtual bool Put(const char* buf) { return Put(buf,buf?strlen(buf):0); }; data/nordugrid-arc-6.8.1/src/hed/shc/arcpdp/ArcRule.cpp:225:24: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if(res && res->equal(&bool_attr)) data/nordugrid-arc-6.8.1/src/hed/shc/legacy/LegacyMap.cpp:144:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(const SecAttr &b) const; data/nordugrid-arc-6.8.1/src/hed/shc/legacy/LegacyMap.cpp:166:21: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool LegacyMapAttr::equal(const SecAttr &b) const { data/nordugrid-arc-6.8.1/src/hed/shc/legacy/LegacyPDP.cpp:181:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(const SecAttr &b) const; data/nordugrid-arc-6.8.1/src/hed/shc/legacy/LegacyPDP.cpp:216:21: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool LegacyPDPAttr::equal(const SecAttr &b) const { data/nordugrid-arc-6.8.1/src/hed/shc/legacy/LegacySecAttr.cpp:71:21: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool LegacySecAttr::equal(const SecAttr &b) const { data/nordugrid-arc-6.8.1/src/hed/shc/legacy/LegacySecAttr.h:45:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(const SecAttr &b) const; data/nordugrid-arc-6.8.1/src/hed/shc/legacy/auth.cpp:258:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (strlen(s->cmd) == command_len)) { data/nordugrid-arc-6.8.1/src/hed/shc/legacy/auth.cpp:300:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int s_l = strlen(s); data/nordugrid-arc-6.8.1/src/hed/shc/legacy/auth.cpp:306:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int s_l = strlen(s); data/nordugrid-arc-6.8.1/src/hed/shc/samltokensh/SAMLTokenSH.cpp:54:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(const SecAttr &b) const; data/nordugrid-arc-6.8.1/src/hed/shc/samltokensh/SAMLTokenSH.cpp:74:28: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool SAMLAssertionSecAttr::equal(const SecAttr& b) const { data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLRule.cpp:67:17: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if(attrval->equal(&bool_attr)) data/nordugrid-arc-6.8.1/src/hed/shc/xacmlpdp/XACMLTarget.cpp:100:39: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if((evalres != NULL) && (evalres->equal(&bool_attr))) { data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDeliveryComm.cpp:85:13: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(500000); data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDeliveryRemoteComm.cpp:283:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). Risk is low because the source is a constant string. strncpy(status_.error_desc, "SOAP error in connection with delivery service", sizeof(status_.error_desc)); data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDeliveryRemoteComm.cpp:403:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(status_.error_desc, empty.c_str(), sizeof(status_.error_desc)); data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDeliveryRemoteComm.cpp:410:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(status_.checksum, empty.c_str(), sizeof(status_.checksum)); data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDeliveryRemoteComm.cpp:448:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(status_.error_desc, ((std::string)datanode).c_str(), sizeof(status_.error_desc)); data/nordugrid-arc-6.8.1/src/libs/data-staging/DataDeliveryRemoteComm.cpp:465:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(status_.checksum, ((std::string)datanode).c_str(), sizeof(status_.checksum)); data/nordugrid-arc-6.8.1/src/libs/data-staging/DataStagingDelivery.cpp:55:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(status.error_desc,err_desc.c_str(),sizeof(status.error_desc)); data/nordugrid-arc-6.8.1/src/libs/data-staging/DataStagingDelivery.cpp:62:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(status.checksum, checksum.c_str(), sizeof(status.checksum)); data/nordugrid-arc-6.8.1/src/libs/data-staging/Scheduler.cpp:1412:13: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(50000); data/nordugrid-arc-6.8.1/src/libs/data-staging/test/DeliveryTest.cpp:90:11: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(100000); data/nordugrid-arc-6.8.1/src/libs/data-staging/test/DeliveryTest.cpp:124:11: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(100000); data/nordugrid-arc-6.8.1/src/libs/data-staging/test/ProcessorTest.cpp:76:86: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. while (dtr->get_status().GetStatus() != DataStaging::DTRStatus::PRE_CLEANED) Glib::usleep(100); data/nordugrid-arc-6.8.1/src/libs/data-staging/test/ProcessorTest.cpp:90:86: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. while (dtr->get_status().GetStatus() != DataStaging::DTRStatus::PRE_CLEANED) Glib::usleep(100); data/nordugrid-arc-6.8.1/src/libs/data-staging/test/ProcessorTest.cpp:137:88: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. while (dtr->get_status().GetStatus() != DataStaging::DTRStatus::CACHE_CHECKED) Glib::usleep(100); data/nordugrid-arc-6.8.1/src/libs/data-staging/test/ProcessorTest.cpp:156:85: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. while (dtr->get_status().GetStatus() != DataStaging::DTRStatus::CACHE_WAIT) Glib::usleep(100); data/nordugrid-arc-6.8.1/src/libs/data-staging/test/ProcessorTest.cpp:175:88: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. while (dtr->get_status().GetStatus() != DataStaging::DTRStatus::CACHE_CHECKED) Glib::usleep(100); data/nordugrid-arc-6.8.1/src/libs/data-staging/test/ProcessorTest.cpp:196:88: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. while (dtr->get_status().GetStatus() != DataStaging::DTRStatus::CACHE_CHECKED) Glib::usleep(100); data/nordugrid-arc-6.8.1/src/libs/data-staging/test/ProcessorTest.cpp:224:11: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(100); data/nordugrid-arc-6.8.1/src/libs/data-staging/test/ProcessorTest.cpp:334:90: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. while (dtr->get_status().GetStatus() != DataStaging::DTRStatus::REPLICA_QUERIED) Glib::usleep(100); data/nordugrid-arc-6.8.1/src/libs/data-staging/test/ProcessorTest.cpp:350:90: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. while (dtr->get_status().GetStatus() != DataStaging::DTRStatus::REPLICA_QUERIED) Glib::usleep(100); data/nordugrid-arc-6.8.1/src/libs/data-staging/test/ProcessorTest.cpp:436:90: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. while (dtr->get_status().GetStatus() != DataStaging::DTRStatus::CACHE_PROCESSED) Glib::usleep(100); data/nordugrid-arc-6.8.1/src/libs/data-staging/test/ProcessorTest.cpp:455:90: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. while (dtr->get_status().GetStatus() != DataStaging::DTRStatus::CACHE_PROCESSED) Glib::usleep(100); data/nordugrid-arc-6.8.1/src/services/a-rex/PayloadFile.h:91:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). virtual bool Put(const char* buf) { return Put(buf,buf?strlen(buf):0); }; data/nordugrid-arc-6.8.1/src/services/a-rex/arex.cpp:102:16: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(const Arc::SecAttr &b) const; data/nordugrid-arc-6.8.1/src/services/a-rex/arex.cpp:204:19: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. bool ARexSecAttr::equal(const SecAttr &b) const { data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/DelegationStore.cpp:143:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). std::string::size_type end = proxy.find(key_end_tag,start+strlen(key_start_tag)); data/nordugrid-arc-6.8.1/src/services/a-rex/delegation/DelegationStore.cpp:145:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return proxy.substr(start,end-start+strlen(key_end_tag)); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileContent.cpp:125:21: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ssize_t l = ::read(handle_, read_buf_, read_buf_size_); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileContent.cpp:605:27: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). bool JobLocalDescription::read(const std::string& fname) { data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileContent.h:82:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). bool read(const std::string& fname); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/files/ControlFileHandling.cpp:529:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return job_desc.read(fname); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:690:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). l=::read(h_old,buf,sizeof(buf)); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:997:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int JobPlugin::read(unsigned char *buf,unsigned long long int offset,unsigned long long int *size) { data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:1005:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int r=chosenFilePlugin->read(buf,offset,size); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.cpp:1009:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return chosenFilePlugin->read(buf,offset,size); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobplugin/jobplugin.h:77:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). virtual int read(unsigned char *buf,unsigned long long int offset,unsigned long long int *size); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/CommFIFO.cpp:131:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ssize_t l = read(i->fd,buf,sizeof(buf)); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/CommFIFO.cpp:165:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ssize_t l = read(kick_out,buf,sizeof(buf)); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/ContinuationPlugins.cpp:90:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(next_opt_p == NULL) next_opt_p=opt_p+strlen(opt_p); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/ContinuationPlugins.cpp:167:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p+=strlen(job.get_state_name()); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/DTRGenerator.cpp:1301:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). else l = read(h, buffer, 1024); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/jobs/JobsList.cpp:1951:3: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). umask(0077); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/smtp-send.c:77:70: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(fscanf(S,"%i%*[^\n]",&err_code) != 1) { fclose(S); return 2; }; fgetc(S); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/smtp-send.c:80:70: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(fscanf(S,"%i%*[^\n]",&err_code) != 1) { fclose(S); return 2; }; fgetc(S); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/smtp-send.c:83:70: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(fscanf(S,"%i%*[^\n]",&err_code) != 1) { fclose(S); return 2; }; fgetc(S); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/smtp-send.c:86:70: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(fscanf(S,"%i%*[^\n]",&err_code) != 1) { fclose(S); return 2; }; fgetc(S); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/smtp-send.c:89:70: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(fscanf(S,"%i%*[^\n]",&err_code) != 1) { fclose(S); return 2; }; fgetc(S); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/smtp-send.c:95:41: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(fscanf(stdin,"%*[^\n]") > 0) {}; fgetc(stdin); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/smtp-send.c:100:70: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(fscanf(S,"%i%*[^\n]",&err_code) != 1) { fclose(S); return 1; }; fgetc(S); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/smtp-send.c:191:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(domain_rcpt) == 0) { data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/mail/smtp-send.c:199:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(domain_snd) == 0) domain_snd=NULL; data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/misc/proxy.cpp:41:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ll=read(h,buf+l,len-l); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/run/RunParallel.cpp:37:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p+=strlen(subs->job->get_state_name()); data/nordugrid-arc-6.8.1/src/services/a-rex/grid-manager/run/RunParallel.cpp:40:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p+=strlen(subs->reason); data/nordugrid-arc-6.8.1/src/services/a-rex/information_collector.cpp:384:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ssize_t l = ::read(h,buf+p,st.st_size-p); data/nordugrid-arc-6.8.1/src/services/a-rex/information_collector.cpp:484:19: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ssize_t l = ::read(h,buf+p,st.st_size-p); data/nordugrid-arc-6.8.1/src/services/a-rex/internaljobplugin/INTERNALClient.cpp:247:18: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. virtual bool equal(const SecAttr &b) const { data/nordugrid-arc-6.8.1/src/services/data-staging/DataDeliveryService.cpp:595:5: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). umask(0077); data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/auth.cpp:302:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (strlen(s->cmd) == command_len)) { data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/auth_plugin.cpp:22:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int s_l = strlen(s); data/nordugrid-arc-6.8.1/src/services/gridftpd/auth/auth_plugin.cpp:28:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int s_l = strlen(s); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:566:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int str1l=strlen(str1); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:567:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int str2l=strlen(str2); data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:1002:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if((n < 1) || (n > 2) || (strlen(args[0]) != 1)) { data/nordugrid-arc-6.8.1/src/services/gridftpd/commands.cpp:1055:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(args[0]) != 1) { it->send_response("504 Protection level is not supported\r\n"); break; }; data/nordugrid-arc-6.8.1/src/services/gridftpd/dataread.cpp:58:24: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int fres=it->froot.read(it->data_buffer[i].data, data/nordugrid-arc-6.8.1/src/services/gridftpd/dataread.cpp:148:22: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int fres=it->froot.read(it->data_buffer[i].data, data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:29:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (buf, estring, buflen); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:335:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(i->access.read) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:490:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int DirectFilePlugin::read(unsigned char *buf,unsigned long long int offset,unsigned long long int *size) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:497:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if((l=::read(data_file,buf,(*size))) == -1) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:660:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if(i->access.read && (fur & S_IRUSR)) dent.may_read=true; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.cpp:785:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int l=strlen(name); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:21:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). bool read; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileplugin/fileplugin.h:107:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). virtual int read(unsigned char *buf,unsigned long long int offset,unsigned long long int *size); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.cpp:68:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int l=strlen(name); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.cpp:99:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int l=strlen(name); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.cpp:312:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int FileRoot::read(unsigned char* buf,unsigned long long int offset,unsigned long long *size) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.cpp:315:30: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int res = (*opened_node).read(buf,offset,size); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.cpp:450:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int FileNode::read(unsigned char *buf,unsigned long long int offset,unsigned long long *size) { data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.cpp:453:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return plug->read(buf,offset,size); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.h:86:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). virtual int read(unsigned char *,unsigned long long int /* offset */,unsigned long long int* /* size */) { return 1; }; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.h:154:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). bool operator> (char* right) const { return (point.length() > strlen(right)); }; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.h:155:65: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). bool operator< (char* right) const { return (point.length() < strlen(right)); }; data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.h:163:7: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int read(unsigned char *buf,unsigned long long int offset,unsigned long long int *size); data/nordugrid-arc-6.8.1/src/services/gridftpd/fileroot.h:208:7: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int read(unsigned char *buf,unsigned long long int offset,unsigned long long int *size); data/nordugrid-arc-6.8.1/src/services/gridftpd/misc.cpp:13:5: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). l=strlen(buf); data/nordugrid-arc-6.8.1/src/services/gridftpd/misc/ldapquery.cpp:212:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). interact->len = strlen ((char *) interact->result); data/nordugrid-arc-6.8.1/src/services/gridftpd/userspec.cpp:64:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). he_p=globus_libc_gethostbyaddr_r((char*)&a,strlen(abuf),AF_INET, data/nordugrid-arc-6.8.1/src/tests/echo/perftest.cpp:247:9: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(duration*1000000); data/nordugrid-arc-6.8.1/src/tests/echo/perftest.cpp:252:11: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(100000); data/nordugrid-arc-6.8.1/src/tests/perf/perftest.cpp:189:9: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(duration*1000000); data/nordugrid-arc-6.8.1/src/tests/perf/perftest.cpp:194:11: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(100000); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_deleg_bydelegclient.cpp:163:9: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(duration*1000000); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_deleg_bydelegclient.cpp:168:11: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(100000); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_deleg_bysechandler.cpp:208:9: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(duration*1000000); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_deleg_bysechandler.cpp:213:11: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(100000); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_msgsize.cpp:226:9: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(duration*1000000); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_msgsize.cpp:231:11: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(100000); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_saml2sso.cpp:208:9: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(duration*1000000); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_saml2sso.cpp:213:11: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(100000); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_samlaa.cpp:311:9: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(duration*1000000); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_samlaa.cpp:316:11: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(100000); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_slcs.cpp:208:9: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(duration*1000000); data/nordugrid-arc-6.8.1/src/tests/perf/perftest_slcs.cpp:213:11: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. Glib::usleep(100000); data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:36:22: [1] (buffer) fscanf: It's unclear if the %s limit in the format string is small enough (CWE-120). Check that the limit is sufficiently small, or use a different input function. while (!found && fscanf(proc_mount_fd, "%" STR(FILENAME_MAX) "s %" STR(FILENAME_MAX) "s %4096s %4096s %d %d\n", fs_spec, fs_mount, fs_type, fs_mntopts, &fs_freq, &fs_passno) == 6 ) { data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:41:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((strncmp(req_controller, mntopt, strlen(req_controller) + 1) == 0) && (mntopt[strlen(req_controller)] == ',' || mntopt[strlen(req_controller)] == '\0')) { data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:41:95: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((strncmp(req_controller, mntopt, strlen(req_controller) + 1) == 0) && (mntopt[strlen(req_controller)] == ',' || mntopt[strlen(req_controller)] == '\0')) { data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:41:136: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((strncmp(req_controller, mntopt, strlen(req_controller) + 1) == 0) && (mntopt[strlen(req_controller)] == ',' || mntopt[strlen(req_controller)] == '\0')) { data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:97:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((strncmp(req_controller, controller, strlen(req_controller) + 1) == 0) && (controller[strlen(req_controller)] == ',' || controller[strlen(req_controller)] == '\0')) { data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:97:103: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((strncmp(req_controller, controller, strlen(req_controller) + 1) == 0) && (controller[strlen(req_controller)] == ',' || controller[strlen(req_controller)] == '\0')) { data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:97:148: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((strncmp(req_controller, controller, strlen(req_controller) + 1) == 0) && (controller[strlen(req_controller)] == ',' || controller[strlen(req_controller)] == '\0')) { data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:99:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(controllers_path) && controllers_path[strlen(controllers_path) - 1] == '/') { data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:99:66: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(controllers_path) && controllers_path[strlen(controllers_path) - 1] == '/') { data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:100:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). controllers_path[strlen(controllers_path) - 1] = '\0'; data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:103:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(controllers_path) && controllers_path[0] != '/') { data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:107:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(cgroup_path, controllers_path, FILENAME_MAX); cgroup_path[FILENAME_MAX] = '\0'; data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:129:5: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). umask(S_IWGRP | S_IWOTH); data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:186:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(current_cgroup_path, cgroup_path, FILENAME_MAX); current_cgroup_path[FILENAME_MAX] = '\0'; data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:187:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(parent_cgroup_path, cgroup_path, FILENAME_MAX); parent_cgroup_path[FILENAME_MAX] = '\0'; data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:189:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(parent_cgroup_path) && parent_cgroup_path[strlen(parent_cgroup_path) - 1] == '/') { data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:189:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(parent_cgroup_path) && parent_cgroup_path[strlen(parent_cgroup_path) - 1] == '/') { data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:190:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). parent_cgroup_path[strlen(parent_cgroup_path) - 1] = '\0'; data/nordugrid-arc-6.8.1/src/wn/arc-job-cgroup.c:206:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(current_cgroup_path) > (FILENAME_MAX - 6)) { // parent_cgroup_path is less ANALYSIS SUMMARY: Hits = 894 Lines analyzed = 207188 in approximately 5.88 seconds (35232 lines/second) Physical Source Lines of Code (SLOC) = 151521 Hits@level = [0] 150 [1] 286 [2] 455 [3] 32 [4] 91 [5] 30 Hits@level+ = [0+] 1044 [1+] 894 [2+] 608 [3+] 153 [4+] 121 [5+] 30 Hits/KSLOC@level+ = [0+] 6.89013 [1+] 5.90017 [2+] 4.01265 [3+] 1.00976 [4+] 0.798569 [5+] 0.197992 Dot directories skipped = 2 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.