Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/pam-ssh-agent-auth-0.10.3/atomicio.c
Examining data/pam-ssh-agent-auth-0.10.3/atomicio.h
Examining data/pam-ssh-agent-auth-0.10.3/authfd.h
Examining data/pam-ssh-agent-auth-0.10.3/bufaux.c
Examining data/pam-ssh-agent-auth-0.10.3/buffer.c
Examining data/pam-ssh-agent-auth-0.10.3/buffer.h
Examining data/pam-ssh-agent-auth-0.10.3/cleanup.c
Examining data/pam-ssh-agent-auth-0.10.3/compat.c
Examining data/pam-ssh-agent-auth-0.10.3/compat.h
Examining data/pam-ssh-agent-auth-0.10.3/defines.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-32bit.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-64bit.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-helpers.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-sse2.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-32bit-sse2.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-32bit-tables.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-64bit-sse2.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-64bit-tables.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-64bit-x86-32bit.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-64bit-x86.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-basepoint-table.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-batchverify.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-base.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-sse2.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-portable-identify.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-portable.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-hash-custom.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-hash.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-randombytes-custom.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-randombytes.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519.c
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/curve25519-ref10.c
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/curve25519-ref10.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-donna-sse2.c
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-donna.c
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-donna.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-curve25519.c
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-ed25519.c
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/modm-donna-32bit.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/modm-donna-64bit.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/regression.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test-internals.c
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test-ticks.h
Examining data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test.c
Examining data/pam-ssh-agent-auth-0.10.3/entropy.c
Examining data/pam-ssh-agent-auth-0.10.3/entropy.h
Examining data/pam-ssh-agent-auth-0.10.3/fatal.c
Examining data/pam-ssh-agent-auth-0.10.3/get_command_line.c
Examining data/pam-ssh-agent-auth-0.10.3/get_command_line.h
Examining data/pam-ssh-agent-auth-0.10.3/identity.h
Examining data/pam-ssh-agent-auth-0.10.3/includes.h
Examining data/pam-ssh-agent-auth-0.10.3/iterate_ssh_agent_keys.c
Examining data/pam-ssh-agent-auth-0.10.3/iterate_ssh_agent_keys.h
Examining data/pam-ssh-agent-auth-0.10.3/key.h
Examining data/pam-ssh-agent-auth-0.10.3/log.c
Examining data/pam-ssh-agent-auth-0.10.3/log.h
Examining data/pam-ssh-agent-auth-0.10.3/match.h
Examining data/pam-ssh-agent-auth-0.10.3/misc.c
Examining data/pam-ssh-agent-auth-0.10.3/misc.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/base64.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/base64.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/basename.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-arc4random.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-asprintf.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-closefrom.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cygwin_util.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cygwin_util.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-getpeereid.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-misc.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-misc.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-nextstep.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-nextstep.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-openpty.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-poll.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-poll.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-snprintf.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-waitpid.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-waitpid.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/daemon.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/dirname.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/fake-rfc2553.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/fake-rfc2553.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/getcwd.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/getgrouplist.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/getopt.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/getrrsetbyname.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/getrrsetbyname.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/glob.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/glob.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/inet_aton.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/inet_ntoa.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/inet_ntop.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/mktemp.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/openbsd-compat.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/openssl-compat.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/openssl-compat.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-aix.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-aix.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-irix.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-irix.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-linux.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-linux.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-solaris.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-solaris.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-uw.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-uw.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/realpath.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/regress/closefromtest.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/regress/snprintftest.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/regress/strduptest.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/regress/strtonumtest.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/rresvport.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/setenv.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/setproctitle.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sha2.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sha2.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sigact.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sigact.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/strlcat.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/strlcpy.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/strmode.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/strsep.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/strtoll.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/strtonum.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/strtoul.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sys-queue.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sys-tree.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/vis.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/vis.h
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/xcrypt.c
Examining data/pam-ssh-agent-auth-0.10.3/openbsd-compat/xmmap.c
Examining data/pam-ssh-agent-auth-0.10.3/pam_ssh_agent_auth.c
Examining data/pam-ssh-agent-auth-0.10.3/pam_static_macros.h
Examining data/pam-ssh-agent-auth-0.10.3/pam_user_authorized_keys.c
Examining data/pam-ssh-agent-auth-0.10.3/pam_user_authorized_keys.h
Examining data/pam-ssh-agent-auth-0.10.3/pam_user_key_allowed2.c
Examining data/pam-ssh-agent-auth-0.10.3/pam_user_key_allowed2.h
Examining data/pam-ssh-agent-auth-0.10.3/pathnames.h
Examining data/pam-ssh-agent-auth-0.10.3/platform.h
Examining data/pam-ssh-agent-auth-0.10.3/rsa.h
Examining data/pam-ssh-agent-auth-0.10.3/secure_filename.c
Examining data/pam-ssh-agent-auth-0.10.3/secure_filename.h
Examining data/pam-ssh-agent-auth-0.10.3/ssh-ed25519.c
Examining data/pam-ssh-agent-auth-0.10.3/ssh.h
Examining data/pam-ssh-agent-auth-0.10.3/ssh2.h
Examining data/pam-ssh-agent-auth-0.10.3/uidswap.c
Examining data/pam-ssh-agent-auth-0.10.3/uidswap.h
Examining data/pam-ssh-agent-auth-0.10.3/userauth_pubkey_from_id.c
Examining data/pam-ssh-agent-auth-0.10.3/userauth_pubkey_from_id.h
Examining data/pam-ssh-agent-auth-0.10.3/uuencode.c
Examining data/pam-ssh-agent-auth-0.10.3/uuencode.h
Examining data/pam-ssh-agent-auth-0.10.3/xmalloc.c
Examining data/pam-ssh-agent-auth-0.10.3/xmalloc.h
Examining data/pam-ssh-agent-auth-0.10.3/cipher.h
Examining data/pam-ssh-agent-auth-0.10.3/kex.h
Examining data/pam-ssh-agent-auth-0.10.3/authfd.c
Examining data/pam-ssh-agent-auth-0.10.3/bufbn.c
Examining data/pam-ssh-agent-auth-0.10.3/key.c
Examining data/pam-ssh-agent-auth-0.10.3/ssh-dss.c
Examining data/pam-ssh-agent-auth-0.10.3/ssh-ecdsa.c
Examining data/pam-ssh-agent-auth-0.10.3/ssh-rsa.c
FINAL RESULTS:
data/pam-ssh-agent-auth-0.10.3/iterate_ssh_agent_keys.c:64:9: [5] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is high; the length parameter
appears to be a constant, instead of computing the number of characters
left.
strncat(buf, action[i], MAX_LEN_PER_CMDLINE_ARG);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.c:778:7: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
if (chown(cray_tmpdir, pw->pw_uid, pw->pw_gid) != 0) {
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/realpath.c:150:11: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
slen = readlink(resolved, symlink, sizeof(symlink) - 1);
data/pam-ssh-agent-auth-0.10.3/pam_user_authorized_keys.c:108:5: [5] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is high; the length parameter
appears to be a constant, instead of computing the number of characters
left.
strncat(auth_keys_file_buf, authorized_keys_file_input,
data/pam-ssh-agent-auth-0.10.3/defines.h:601:7: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int snprintf (char *, size_t, const char *, ...);
data/pam-ssh-agent-auth-0.10.3/defines.h:603:9: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
char *crypt (const char *, const char *);
data/pam-ssh-agent-auth-0.10.3/entropy.c:112:3: [4] (shell) execl:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execl(SSH_RAND_HELPER, "ssh-rand-helper", NULL);
data/pam-ssh-agent-auth-0.10.3/iterate_ssh_agent_keys.c:63:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buf, (i > 0) ? " '" : "'");
data/pam-ssh-agent-auth-0.10.3/log.c:361:3: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(msgbuf, sizeof(msgbuf), fmtbuf, args);
data/pam-ssh-agent-auth-0.10.3/log.c:364:3: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(msgbuf, sizeof(msgbuf), fmtbuf, args);
data/pam-ssh-agent-auth-0.10.3/log.h:55:80: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void pamsshagentauth_fatal(const char *, ...) __dead __attribute__((format(printf, 1, 2)));
data/pam-ssh-agent-auth-0.10.3/log.h:56:76: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void pamsshagentauth_logerror(const char *, ...) __attribute__((format(printf, 1, 2)));
data/pam-ssh-agent-auth-0.10.3/log.h:57:74: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void pamsshagentauth_sigdie(const char *, ...) __attribute__((format(printf, 1, 2)));
data/pam-ssh-agent-auth-0.10.3/log.h:58:73: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void pamsshagentauth_logit(const char *, ...) __attribute__((format(printf, 1, 2)));
data/pam-ssh-agent-auth-0.10.3/log.h:59:75: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void pamsshagentauth_verbose(const char *, ...) __attribute__((format(printf, 1, 2)));
data/pam-ssh-agent-auth-0.10.3/log.h:60:73: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void pamsshagentauth_debug(const char *, ...) __attribute__((format(printf, 1, 2)));
data/pam-ssh-agent-auth-0.10.3/log.h:61:74: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void pamsshagentauth_debug2(const char *, ...) __attribute__((format(printf, 1, 2)));
data/pam-ssh-agent-auth-0.10.3/log.h:62:74: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
void pamsshagentauth_debug3(const char *, ...) __attribute__((format(printf, 1, 2)));
data/pam-ssh-agent-auth-0.10.3/misc.h:47:29: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
__attribute__((format(printf, 2, 3)));
data/pam-ssh-agent-auth-0.10.3/misc.h:49:29: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
__attribute__((format(printf, 3, 4)));
data/pam-ssh-agent-auth-0.10.3/misc.h:88:62: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
int ask_permission(const char *, ...) __attribute__((format(printf, 1, 2)));
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-asprintf.c:54:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
ret = vsnprintf(string, INIT_SZ, fmt, ap2);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-asprintf.c:68:10: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
ret = vsnprintf(newstr, len, fmt, ap2);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.c:314:4: [4] (shell) execl:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execl("/bin/passwd", "passwd", username, 0);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.c:584:39: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if (setshares(ue.ue_uid, valid_acct, printf, 0, 0)) {
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.c:736:3: [4] (shell) execl:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execl(CLEANTMPCMD, CLEANTMPCMD, login, jtmp, (char *)NULL);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-snprintf.c:832:1: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf (char *str, size_t count, const char *fmt, va_list args)
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-snprintf.c:840:1: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(char *str, size_t count, SNPRINTF_CONST char *fmt, ...)
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-snprintf.c:846:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
ret = vsnprintf(str, count, fmt, ap);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/inet_ntop.c:92:6: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
l = snprintf(tmp, size, fmt, src[0], src[1], src[2], src[3]);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/openbsd-compat.h:172:5: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int snprintf(char *, size_t, SNPRINTF_CONST char *, ...);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/openbsd-compat.h:194:5: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int vsnprintf(char *, size_t, const char *, va_list);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-solaris.c:174:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(ctl_path, sizeof(ctl_path),
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/regress/snprintftest.c:41:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
ret = vsnprintf(str, count, fmt, ap);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/setproctitle.c:142:4: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(buf + len, sizeof(buf) - len , fmt, ap);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/xcrypt.c:69:27: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
crypted = crypt(password, salt);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/xcrypt.c:74:27: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
crypted = crypt(password, salt);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/xcrypt.c:78:19: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
crypted = crypt(password, salt);
data/pam-ssh-agent-auth-0.10.3/pam_user_key_allowed2.c:269:9: [4] (shell) execl:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execl(authorized_keys_command, authorized_keys_command, username, (char *)NULL);
data/pam-ssh-agent-auth-0.10.3/xmalloc.h:25:44: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
__attribute__((__format__ (printf, 2, 3)))
data/pam-ssh-agent-auth-0.10.3/authfd.c:112:15: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
authsocket = getenv(SSH_AUTHSOCKET_ENV_NAME);
data/pam-ssh-agent-auth-0.10.3/authfd.c:223:6: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv(SSH_AUTHSOCKET_ENV_NAME))
data/pam-ssh-agent-auth-0.10.3/defines.h:515:9: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
# undef getopt
data/pam-ssh-agent-auth-0.10.3/defines.h:521:10: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
# define getopt(ac, av, o) BSDgetopt(ac, av, o)
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cygwin_util.c:158:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *cygwin = getenv("CYGWIN");
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cygwin_util.c:187:11: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
cygwin = getenv("CYGWIN");
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cygwin_util.c:234:20: [3] (misc) LoadLibrary:
Ensure that the full path to the library is specified, or current directory
may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
find library path, if you aren't already.
if (!(kerneldll = LoadLibrary("KERNEL32.DLL")))
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/glob.c:372:32: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (issetugid() != 0 || (h = getenv("HOME")) == NULL) {
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/glob.c:374:39: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((getuid() != geteuid()) || (h = getenv("HOME")) == NULL) {
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/openbsd-compat.h:64:7: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
char *realpath(const char *path, char *resolved);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/realpath.c:52:1: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
realpath(const char *path, char resolved[PATH_MAX])
data/pam-ssh-agent-auth-0.10.3/pam_ssh_agent_auth.c:133:61: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
pamsshagentauth_log_init(__progname, log_lvl, facility, getenv("PAM_SSH_AGENT_AUTH_DEBUG") ? 1 : 0);
data/pam-ssh-agent-auth-0.10.3/pam_ssh_agent_auth.c:150:131: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if( (strlen(sudo_service_name) > 0) && strncasecmp(servicename, sudo_service_name, sizeof(sudo_service_name) - 1) == 0 && getenv("SUDO_USER") ) {
data/pam-ssh-agent-auth-0.10.3/pam_ssh_agent_auth.c:151:28: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
strncpy(ruser, getenv("SUDO_USER"), sizeof(ruser) - 1 );
data/pam-ssh-agent-auth-0.10.3/secure_filename.c:85:6: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (realpath(name, buf) == NULL) {
data/pam-ssh-agent-auth-0.10.3/secure_filename.c:91:27: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (pw_dir != NULL && realpath(pw_dir, homedir) != NULL)
data/pam-ssh-agent-auth-0.10.3/atomicio.c:103:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iov, _iov, iovcnt * sizeof(*_iov));
data/pam-ssh-agent-auth-0.10.3/atomicio.c:142:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
iov[0].iov_base = ((char *)iov[0].iov_base) + rem;
data/pam-ssh-agent-auth-0.10.3/authfd.c:171:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/pam-ssh-agent-auth-0.10.3/bufaux.c:130:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2];
data/pam-ssh-agent-auth-0.10.3/bufaux.c:139:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4];
data/pam-ssh-agent-auth-0.10.3/bufaux.c:148:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8];
data/pam-ssh-agent-auth-0.10.3/bufbn.c:65:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[2];
data/pam-ssh-agent-auth-0.10.3/buffer.c:76:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, data, len);
data/pam-ssh-agent-auth-0.10.3/buffer.c:178:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, buffer->buf + buffer->offset, len);
data/pam-ssh-agent-auth-0.10.3/defines.h:296:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sun_path[108]; /* path name (gag) */
data/pam-ssh-agent-auth-0.10.3/defines.h:553:29: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
# define memmove(s1, s2, n) bcopy((s2), (s1), (n))
data/pam-ssh-agent-auth-0.10.3/defines.h:602:7: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
int mkstemp (char *);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-32bit.h:403:51: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
curve25519_expand(bignum25519 out, const unsigned char in[32]) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-32bit.h:449:30: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
curve25519_contract(unsigned char out[32], const bignum25519 in) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-32bit.h:509:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+0] |= (unsigned char )(f[i] & 0xff); \
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-32bit.h:510:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+1] = (unsigned char )((f[i] >> 8) & 0xff); \
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-32bit.h:511:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+2] = (unsigned char )((f[i] >> 16) & 0xff); \
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-32bit.h:512:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+3] = (unsigned char )((f[i] >> 24) & 0xff);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-sse2.h:12:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char u[16];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-sse2.h:924:51: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
curve25519_expand(bignum25519 out, const unsigned char in[32]) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-sse2.h:954:30: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
curve25519_contract(unsigned char out[32], const bignum25519 in) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-sse2.h:1014:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+0] |= (unsigned char )(f[i] & 0xff); \
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-sse2.h:1015:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+1] = (unsigned char )((f[i] >> 8) & 0xff); \
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-sse2.h:1016:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+2] = (unsigned char )((f[i] >> 16) & 0xff); \
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/curve25519-donna-sse2.h:1017:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+3] = (unsigned char )((f[i] >> 24) & 0xff);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-batchverify.h:14:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char r[heap_batch_size][16]; /* 128 bit random values */
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-batchverify.h:191:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char batch_point_buffer[3][32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-batchverify.h:195:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char zero[32] = {0};
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-batchverify.h:196:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char point_buffer[3][32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-batchverify.h:200:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(batch_point_buffer[1], point_buffer[1], 32);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-batchverify.h:210:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char hram[64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-base.h:180:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
ge25519_pack(unsigned char r[32], const ge25519 *p) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-base.h:182:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char parity[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-base.h:192:60: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
ge25519_unpack_negative_vartime(ge25519 *r, const unsigned char p[32]) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-base.h:193:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char zero[32] = {0};
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-base.h:196:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char check[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-base.h:254:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char slide1[256], slide2[256];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-base.h:336:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char b[64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-sse2.h:209:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
ge25519_pack(unsigned char r[32], const ge25519 *p) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-sse2.h:211:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char parity[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-sse2.h:222:60: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
ge25519_unpack_negative_vartime(ge25519 *r, const unsigned char p[32]) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-sse2.h:224:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char zero[32] = {0};
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-sse2.h:226:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char check[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-sse2.h:285:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char slide1[256], slide2[256];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna-impl-sse2.h:363:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char b[64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-donna.h:61:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char hash_512bits[64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-hash.h:131:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(S->buffer + S->leftover, in, want);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-hash.h:150:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(S->buffer, in, S->leftover);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-randombytes.h:10:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buffer[1024];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519-randombytes.h:52:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c, st->buffer + (sizeof(st->buffer) - st->left), use);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519.c:98:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char checkR[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519.h:10:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char ed25519_signature[64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519.h:11:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char ed25519_public_key[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519.h:12:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char ed25519_secret_key[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/ed25519.h:14:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char curved25519_key[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/curve25519-ref10.c:1086:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char e[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/curve25519-ref10.c:1266:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char basepoint[32] = {9};
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-donna.h:6:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char ed25519_signature[64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-donna.h:7:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char ed25519_public_key[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-donna.h:8:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char ed25519_secret_key[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-donna.h:10:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char curved25519_key[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:174:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(S->buffer + S->leftover, in, want);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:193:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(S->buffer, in, S->leftover);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:1250:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char s[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:1264:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char zero[32] = {0};
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:1268:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char s[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:3793:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char aslide[256];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:3794:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char bslide[256];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:3902:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char e[64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:4563:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char h[64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:4585:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char az[64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:4586:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char r[64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:4587:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char hram[64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:4619:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char h[64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:4620:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char checkr[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-curve25519.c:68:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen("/dev/urandom", "rb");
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-curve25519.c:103:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, x, bytes);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-curve25519.c:106:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, x, 64);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-curve25519.c:120:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char sk[1024][32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-curve25519.c:121:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char pk[3][32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-ed25519.c:67:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen("/dev/urandom", "rb");
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-ed25519.c:102:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, x, bytes);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-ed25519.c:105:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, x, 64);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-ed25519.c:116:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sk[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-ed25519.c:117:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char m[128];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-ed25519.c:121:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char pk[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-ed25519.c:122:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sig[64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-ed25519.c:149:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char dummysk[64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-ed25519.c:150:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char dummymsg[2][128+64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-ed25519.c:172:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dummysk, r->sk, 32); /* pk is appended to the sk, need to copy the sk to a larger buffer */
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-ed25519.c:174:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(g->pk, dummysk + 32, 32);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/fuzz-ed25519.c:176:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(g->sig, dummymsg[0], 64); /* sig is placed in front of the signed message */
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/modm-donna-32bit.h:209:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char work[64] = {0};
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/modm-donna-32bit.h:213:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(work, in, len);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/modm-donna-32bit.h:261:54: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
expand_raw256_modm(bignum256modm out, const unsigned char in[32]) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/modm-donna-32bit.h:285:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
contract256_modm(unsigned char out[32], const bignum256modm in) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/modm-donna-32bit.h:299:33: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
contract256_window4_modm(signed char r[64], const bignum256modm in) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/modm-donna-32bit.h:335:39: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
contract256_slidingwindow_modm(signed char r[256], const bignum256modm s, int windowsize) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/modm-donna-64bit.h:154:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char work[64] = {0};
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/modm-donna-64bit.h:158:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(work, in, len);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/modm-donna-64bit.h:190:54: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
expand_raw256_modm(bignum256modm out, const unsigned char in[32]) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/modm-donna-64bit.h:206:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
contract256_modm(unsigned char out[32], const bignum256modm in) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/modm-donna-64bit.h:214:33: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
contract256_window4_modm(signed char r[64], const bignum256modm in) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/modm-donna-64bit.h:241:39: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
contract256_slidingwindow_modm(signed char r[256], const bignum256modm s, int windowsize) {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test-internals.c:13:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum_raw[32] = {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test-internals.c:19:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum2_squared_raw[32] = {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test-internals.c:25:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum3_squared_raw[32] = {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test-internals.c:37:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum2_squared_raw[32] = {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test-internals.c:43:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum3_squared_raw[32] = {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test-internals.c:48:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char result[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test-internals.c:91:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum_raw[32] = {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test-internals.c:97:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum_squared_raw[32] = {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test-internals.c:109:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum_raw[32] = {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test-internals.c:115:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum_squared_raw[32] = {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test-internals.c:120:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char result[32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test.c:50:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sk[32], pk[32], sig[64];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test.c:69:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern unsigned char batch_point_buffer[3][32];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test.c:72:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char batch_verify_y[32] = {
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test.c:125:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char messages[test_batch_count][128];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test.c:127:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char *message_pointers[test_batch_count];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test.c:128:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char *pk_pointers[test_batch_count];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test.c:129:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char *sig_pointers[test_batch_count];
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test.c:216:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char forge[1024] = {'x'};
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test.c:223:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
ed25519_sign((unsigned char *)dataset[i].m, i, dataset[i].sk, pk, sig);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test.c:225:41: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
edassert(!ed25519_sign_open((unsigned char *)dataset[i].m, i, pk, sig), i, "failed to open message");
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test.c:227:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(forge, dataset[i].m, i);
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test.c:241:33: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
timeit(ed25519_sign((unsigned char *)dataset[0].m, 0, dataset[0].sk, pk, sig), signticks)
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/test.c:243:44: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
timeit(res = ed25519_sign_open((unsigned char *)dataset[0].m, 0, pk, sig), openticks)
data/pam-ssh-agent-auth-0.10.3/entropy.c:78:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[RANDOM_SEED_SIZE];
data/pam-ssh-agent-auth-0.10.3/entropy.c:88:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((devnull = open("/dev/null", O_RDWR)) == -1)
data/pam-ssh-agent-auth-0.10.3/get_command_line.c:45:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[64] = { 0 }, c = '\0';
data/pam-ssh-agent-auth-0.10.3/get_command_line.c:47:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char argbuf[MAX_LEN_PER_CMDLINE_ARG + 1] = { 0 };
data/pam-ssh-agent-auth-0.10.3/get_command_line.c:54:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(filename, "r");
data/pam-ssh-agent-auth-0.10.3/iterate_ssh_agent_keys.c:92:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[256] = { 0 };
data/pam-ssh-agent-auth-0.10.3/iterate_ssh_agent_keys.c:93:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pwd[1024] = { 0 };
data/pam-ssh-agent-auth-0.10.3/key.c:348:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hex[4];
data/pam-ssh-agent-auth-0.10.3/key.c:878:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(n->ed25519, k->ed25519, sizeof(ED25519));
data/pam-ssh-agent-auth-0.10.3/key.c:1180:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*blobp, pamsshagentauth_buffer_ptr(&b), len);
data/pam-ssh-agent-auth-0.10.3/log.c:315:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msgbuf[MSGBUFSIZ];
data/pam-ssh-agent-auth-0.10.3/log.c:316:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtbuf[MSGBUFSIZ];
data/pam-ssh-agent-auth-0.10.3/misc.c:521:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char user[128], ret[MAXPATHLEN];
data/pam-ssh-agent-auth-0.10.3/misc.c:534:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(user, filename, slash);
data/pam-ssh-agent-auth-0.10.3/misc.c:574:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4096];
data/pam-ssh-agent-auth-0.10.3/misc.c:653:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[100];
data/pam-ssh-agent-auth-0.10.3/misc.c:659:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(name, O_RDWR);
data/pam-ssh-agent-auth-0.10.3/misc.c:663:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(name, O_RDWR)) >= 0)
data/pam-ssh-agent-auth-0.10.3/misc.c:724:24: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((nullfd = dupfd = open(_PATH_DEVNULL, O_RDWR)) == -1) {
data/pam-ssh-agent-auth-0.10.3/misc.c:745:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[3], *r;
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/basename.c:29:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char bname[MAXPATHLEN];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/basename.c:62:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(bname, startp, len);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-arc4random.c:64:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char rand_buf[SEED_SIZE];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-closefrom.c:73:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fdpath[PATH_MAX], *endp;
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.c:95:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cray_tmpdir[TPATHSIZ + 1]; /* job TMPDIR path */
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.c:196:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char acct_name[MAXACID] = { "" }; /* used to read acct name */
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.c:206:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[MAXHOSTNAMELEN];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.c:696:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(UTMP_FILE, O_RDONLY)) != -1) {
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.c:722:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char jtmp[TPATHSIZ];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cygwin_util.c:34:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#if defined(open) && open == binary_open
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cygwin_util.c:35:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
# undef open
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cygwin_util.c:67:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return (open(filename, flags | O_BINARY, mode));
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cygwin_util.h:52:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#define open binary_open
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-misc.c:126:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(path, O_WRONLY);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-misc.c:242:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
return(memcpy(cp, str, len));
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-openpty.c:87:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((*aslave = open(slave, O_RDWR | O_NOCTTY)) == -1) {
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-openpty.c:102:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((ptm = open("/dev/ptmx", O_RDWR | O_NOCTTY)) == -1)
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-openpty.c:119:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((*aslave = open(pts, O_RDWR | O_NOCTTY)) == -1) {
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-openpty.c:140:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((*amaster = open("/dev/ptc", O_RDWR | O_NOCTTY)) == -1)
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-openpty.c:144:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((*aslave = open(ttname, O_RDWR | O_NOCTTY)) == -1) {
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-openpty.c:151:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ptbuf[64], ttbuf[64];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-openpty.c:164:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((*amaster = open(ptbuf, O_RDWR|O_NOCTTY)) == -1)
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-openpty.c:167:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((*aslave = open(ttbuf, O_RDWR|O_NOCTTY)) == -1) {
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-openpty.c:177:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ptbuf[64], ttbuf[64];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-openpty.c:192:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((*amaster = open(ptbuf, O_RDWR | O_NOCTTY)) == -1) {
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-openpty.c:196:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((*amaster = open(ptbuf, O_RDWR | O_NOCTTY)) == -1)
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-openpty.c:201:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((*aslave = open(ttbuf, O_RDWR | O_NOCTTY)) == -1) {
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-snprintf.c:518:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char convert[20];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-snprintf.c:678:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iconvert[311];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-snprintf.c:679:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fconvert[311];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/daemon.c:81:24: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!noclose && (fd = open(_PATH_DEVNULL, O_RDWR, 0)) != -1) {
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/dirname.c:31:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char dname[MAXPATHLEN];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/dirname.c:68:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dname, path, len);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/fake-rfc2553.c:52:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpserv[16];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/fake-rfc2553.h:57:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char __ss_pad2[_SS_PADSIZE];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/getcwd.c:173:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(bup, dp->d_name, dp->d_namlen + 1);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/getcwd.c:210:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(bpt, dp->d_name, dp->d_namlen);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/getrrsetbyname.c:332:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rdata->rdi_data, rr->rdata, rr->size);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/getrrsetbyname.c:397:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&resp->header, cp, HFIXEDSZ);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/getrrsetbyname.c:452:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[MAXDNAME];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/getrrsetbyname.c:499:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[MAXDNAME];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/getrrsetbyname.c:550:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(curr->rdata, *cp, curr->size);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/glob.c:366:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
if (((char *) patbuf)[0] == EOS) {
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/glob.c:589:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXPATHLEN];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/glob.c:793:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXPATHLEN];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/glob.c:811:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXPATHLEN];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/glob.c:823:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXPATHLEN];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/inet_ntoa.c:49:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char b[18];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/inet_ntop.c:89:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[sizeof "255.255.255.255"];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/inet_ntop.c:117:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/mktemp.c:59:1: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
mkstemp(char *path)
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/mktemp.c:141:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open(path, O_CREAT|O_EXCL|O_RDWR, 0600)) >= 0)
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/openbsd-compat.h:95:5: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
int mkstemp(char *path);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-aix.c:61:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char old_registry[REGISTRY_SIZE] = "";
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-solaris.c:145:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctl_path[256];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-uw.c:97:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = fopen (password_file, "r")) == NULL) {
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/realpath.c:51:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/realpath.c:52:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
realpath(const char *path, char resolved[PATH_MAX])
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/realpath.c:52:28: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
realpath(const char *path, char resolved[PATH_MAX])
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/realpath.c:59:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char left[PATH_MAX], next_token[PATH_MAX], symlink[PATH_MAX];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/realpath.c:97:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(next_token, left, s - left);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/regress/closefromtest.c:38:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/regress/closefromtest.c:41:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fds[i] = open("/dev/null", O_RDONLY)) == -1)
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/regress/snprintftest.c:49:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[5];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/setenv.c:109:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(P, environ, cnt * sizeof(char *));
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/setproctitle.c:124:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sha2.c:286:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(context->state, sha256_initial_hash_value,
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sha2.c:466:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&context->buffer[usedspace], data, freespace);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sha2.c:473:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&context->buffer[usedspace], data, len);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sha2.c:489:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(context->buffer, data, len);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sha2.c:553:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(digest, context->state, SHA256_DIGEST_LENGTH);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sha2.c:566:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(context->state, sha512_initial_hash_value,
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sha2.c:747:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&context->buffer[usedspace], data, freespace);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sha2.c:754:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&context->buffer[usedspace], data, len);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sha2.c:770:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(context->buffer, data, len);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sha2.c:834:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(digest, context->state, SHA512_DIGEST_LENGTH);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sha2.c:848:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(context->state, sha384_initial_hash_value,
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sha2.c:872:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(digest, context->state, SHA384_DIGEST_LENGTH);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/vis.c:169:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[5];
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/vis.c:191:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, tbuf, i);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/xmmap.c:58:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open("/dev/zero", O_RDWR), (off_t)0);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/xmmap.c:63:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpname[sizeof(MM_SWAP_TEMPLATE)] = MM_SWAP_TEMPLATE;
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/xmmap.c:68:11: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
tmpfd = mkstemp(tmpname);
data/pam-ssh-agent-auth-0.10.3/pam_ssh_agent_auth.c:83:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sudo_service_name[128] = "sudo";
data/pam-ssh-agent-auth-0.10.3/pam_ssh_agent_auth.c:84:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ruser[128] = "";
data/pam-ssh-agent-auth-0.10.3/pam_user_authorized_keys.c:97:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fqdn[HOST_NAME_MAX] = "";
data/pam-ssh-agent-auth-0.10.3/pam_user_authorized_keys.c:98:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[HOST_NAME_MAX] = "";
data/pam-ssh-agent-auth-0.10.3/pam_user_authorized_keys.c:99:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char auth_keys_file_buf[4096] = "";
data/pam-ssh-agent-auth-0.10.3/pam_user_authorized_keys.c:101:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char owner_uname[128] = "";
data/pam-ssh-agent-auth-0.10.3/pam_user_key_allowed2.c:64:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[SSH_MAX_PUBKEY_BYTES];
data/pam-ssh-agent-auth-0.10.3/pam_user_key_allowed2.c:128:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SSH_MAX_PUBKEY_BYTES];
data/pam-ssh-agent-auth-0.10.3/pam_user_key_allowed2.c:140:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(file, "r");
data/pam-ssh-agent-auth-0.10.3/pam_user_key_allowed2.c:171:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[512];
data/pam-ssh-agent-auth-0.10.3/pam_user_key_allowed2.c:172:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char username[512] = { 0 };
data/pam-ssh-agent-auth-0.10.3/pam_user_key_allowed2.c:236:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((devnull = open(_PATH_DEVNULL, O_RDWR)) == -1) {
data/pam-ssh-agent-auth-0.10.3/secure_filename.c:78:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXPATHLEN], homedir[MAXPATHLEN];
data/pam-ssh-agent-auth-0.10.3/secure_filename.c:156:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXPATHLEN] = { 0 };
data/pam-ssh-agent-auth-0.10.3/ssh-dss.c:105:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*sigp, sigblob, SIGBLOB_LEN);
data/pam-ssh-agent-auth-0.10.3/ssh-dss.c:117:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*sigp, pamsshagentauth_buffer_ptr(&b), len);
data/pam-ssh-agent-auth-0.10.3/ssh-dss.c:146:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sigblob, signature, signaturelen);
data/pam-ssh-agent-auth-0.10.3/ssh-ecdsa.c:95:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*sigp, pamsshagentauth_buffer_ptr(&b), len);
data/pam-ssh-agent-auth-0.10.3/ssh-ed25519.c:39:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*sigp, pamsshagentauth_buffer_ptr(&b), len);
data/pam-ssh-agent-auth-0.10.3/ssh-rsa.c:97:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*sigp, pamsshagentauth_buffer_ptr(&b), len);
data/pam-ssh-agent-auth-0.10.3/atomicio.c:59:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
pfd.events = f == read ? POLLIN : POLLOUT;
data/pam-ssh-agent-auth-0.10.3/authfd.c:188:31: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (pamsshagentauth_atomicio(read, auth->fd, buf, 4) != 4) {
data/pam-ssh-agent-auth-0.10.3/authfd.c:204:32: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (pamsshagentauth_atomicio(read, auth->fd, buf, l) != l) {
data/pam-ssh-agent-auth-0.10.3/bufaux.c:214:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pamsshagentauth_buffer_put_string(buffer, s, strlen(s));
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:3843:22: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
static unsigned char equal(signed char b,signed char c)
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:3877:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][0],equal(babs,1));
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:3878:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][1],equal(babs,2));
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:3879:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][2],equal(babs,3));
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:3880:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][3],equal(babs,4));
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:3881:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][4],equal(babs,5));
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:3882:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][5],equal(babs,6));
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:3883:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][6],equal(babs,7));
data/pam-ssh-agent-auth-0.10.3/ed25519-donna/fuzz/ed25519-ref10.c:3884:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][7],equal(babs,8));
data/pam-ssh-agent-auth-0.10.3/entropy.c:122:33: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = pamsshagentauth_atomicio(read, p[0], buf, sizeof(buf));
data/pam-ssh-agent-auth-0.10.3/get_command_line.c:59:41: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (!feof(f) && (c = fgetc(f)) != '\0');
data/pam-ssh-agent-auth-0.10.3/get_command_line.c:62:21: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = fgetc(f);
data/pam-ssh-agent-auth-0.10.3/get_command_line.c:70:25: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(argv[count++], argbuf, len);
data/pam-ssh-agent-auth-0.10.3/iterate_ssh_agent_keys.c:65:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buf, "'");
data/pam-ssh-agent-auth-0.10.3/key.c:555:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = 2*strlen(cp);
data/pam-ssh-agent-auth-0.10.3/key.c:913:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) > 11)
data/pam-ssh-agent-auth-0.10.3/log.c:372:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (write(STDERR_FILENO, msgbuf, strlen(msgbuf)) < 0) {
data/pam-ssh-agent-auth-0.10.3/log.c:379:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (write(STDERR_FILENO, msgbuf, strlen(msgbuf)) < 0) {
data/pam-ssh-agent-auth-0.10.3/misc.c:177:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(*s, *s + 1, strlen(*s)); /* move nul too */
data/pam-ssh-agent-auth-0.10.3/misc.c:398:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s = *cp + strlen(*cp); /* skip to end (see first case below) */
data/pam-ssh-agent-auth-0.10.3/misc.c:421:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (*host == '[' && host[strlen(host) - 1] == ']') {
data/pam-ssh-agent-auth-0.10.3/misc.c:422:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
host[strlen(host) - 1] = '\0';
data/pam-ssh-agent-auth-0.10.3/misc.c:545:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(pw->pw_dir);
data/pam-ssh-agent-auth-0.10.3/misc.c:633:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (buf[strlen(buf) - 1] == '\n' || feof(f)) {
data/pam-ssh-agent-auth-0.10.3/misc.c:639:11: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (fgetc(f) != '\n' && !feof(f))
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/basename.c:41:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
endp = path + strlen(path) - 1;
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-closefrom.c:35:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
# define NAMLEN(dirent) strlen((dirent)->d_name)
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.c:698:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (read(fd, (char *)&utmp, sizeof(utmp)) == sizeof(utmp)) {
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.c:701:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ut->ut_tpath, utmp.ut_tpath, sizeof(utmp.ut_tpath));
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.c:702:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ut->ut_host, utmp.ut_host, sizeof(utmp.ut_host));
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.c:703:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ut->ut_name, utmp.ut_name, sizeof(utmp.ut_name));
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-cray.c:802:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ut->ut_tpath, cray_tmpdir, TPATHSIZ);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-misc.c:239:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(str) + 1;
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-openpty.c:182:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int num_minors = strlen(ptyminors);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-openpty.c:183:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int num_ptys = strlen(ptymajors) * num_minors;
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/bsd-snprintf.c:406:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
max = strlen(strvalue);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/dirname.c:43:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
endp = path + strlen(path) - 1;
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/inet_ntop.c:182:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tp += strlen(tp);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-aix.c:78:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = sizeof("LOGNAME= NAME= ") + (2 * strlen(pw->pw_name));
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-aix.c:158:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p += strlen(p) + 1;
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-aix.c:202:55: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pamsshagentauth_buffer_append(ctxt->loginmsg, msg, strlen(msg));
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-aix.c:262:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pamsshagentauth_buffer_append(loginmsg, msg, strlen(msg));
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/port-aix.c:287:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pamsshagentauth_buffer_append(loginmsg, msg, strlen(msg));
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/realpath.c:75:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
resolved_len = strlen(resolved);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/regress/closefromtest.c:52:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(fds[i], buf, sizeof(buf)) == -1)
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/setenv.c:89:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l_value = strlen(value);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/setenv.c:93:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(C) >= l_value) { /* old larger; copy over */
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/setproctitle.c:97:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lastargv = argv[i] + strlen(argv[i]);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/setproctitle.c:101:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lastargv = envp[i] + strlen(envp[i]);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/setproctitle.c:148:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pstat(PSTAT_SETCMD, pst, strlen(buf), 0, 0);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/sha2.c:92:32: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
#error Define BYTE_ORDER to be equal to either LITTLE_ENDIAN or BIG_ENDIAN
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/strlcat.c:49:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return(dlen + strlen(s));
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/xmmap.c:67:15: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
old_umask = umask(0177);
data/pam-ssh-agent-auth-0.10.3/openbsd-compat/xmmap.c:69:3: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(old_umask);
data/pam-ssh-agent-auth-0.10.3/pam_ssh_agent_auth.c:128:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( sudo_service_name, *argv_ptr + sizeof("sudo_service_name=") - 1, sizeof(sudo_service_name) - 1);
data/pam-ssh-agent-auth-0.10.3/pam_ssh_agent_auth.c:140:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ruser, ruser_ptr, sizeof(ruser) - 1);
data/pam-ssh-agent-auth-0.10.3/pam_ssh_agent_auth.c:150:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( (strlen(sudo_service_name) > 0) && strncasecmp(servicename, sudo_service_name, sizeof(sudo_service_name) - 1) == 0 && getenv("SUDO_USER") ) {
data/pam-ssh-agent-auth-0.10.3/pam_ssh_agent_auth.c:151:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ruser, getenv("SUDO_USER"), sizeof(ruser) - 1 );
data/pam-ssh-agent-auth-0.10.3/pam_ssh_agent_auth.c:160:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ruser, getpwuid(getuid())->pw_name, sizeof(ruser) - 1);
data/pam-ssh-agent-auth-0.10.3/pam_ssh_agent_auth.c:189:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(user && strlen(ruser) > 0) {
data/pam-ssh-agent-auth-0.10.3/pam_user_authorized_keys.c:127:13: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat(owner_uname, auth_keys_file_buf + 1, owner_uname_len);
data/pam-ssh-agent-auth-0.10.3/pam_user_authorized_keys.c:135:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(auth_keys_file_buf, authorized_keys_file,
data/pam-ssh-agent-auth-0.10.3/pam_user_authorized_keys.c:150:5: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat(hostname, fqdn, strcspn(fqdn, "."));
data/pam-ssh-agent-auth-0.10.3/pam_user_key_allowed2.c:181:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(username, user_pw->pw_name, sizeof(username) - 1);
data/pam-ssh-agent-auth-0.10.3/xmalloc.c:90:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(str) + 1;
ANALYSIS SUMMARY:
Hits = 376
Lines analyzed = 37945 in approximately 4.47 seconds (8497 lines/second)
Physical Source Lines of Code (SLOC) = 26795
Hits@level = [0] 171 [1] 69 [2] 251 [3] 16 [4] 36 [5] 4
Hits@level+ = [0+] 547 [1+] 376 [2+] 307 [3+] 56 [4+] 40 [5+] 4
Hits/KSLOC@level+ = [0+] 20.4143 [1+] 14.0325 [2+] 11.4574 [3+] 2.08994 [4+] 1.49282 [5+] 0.149282
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.