Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/s6-2.9.2.0/src/conn-tools/s6-accessrules-cdb-from-fs.c
Examining data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c
Examining data/s6-2.9.2.0/src/conn-tools/s6-connlimit.c
Examining data/s6-2.9.2.0/src/conn-tools/s6-ioconnect.c
Examining data/s6-2.9.2.0/src/conn-tools/s6-ipcclient.c
Examining data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c
Examining data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-socketbinder.c
Examining data/s6-2.9.2.0/src/conn-tools/s6-ipcserver.c
Examining data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c
Examining data/s6-2.9.2.0/src/conn-tools/s6-sudo.c
Examining data/s6-2.9.2.0/src/conn-tools/s6-sudo.h
Examining data/s6-2.9.2.0/src/conn-tools/s6-sudoc.c
Examining data/s6-2.9.2.0/src/conn-tools/s6-sudod.c
Examining data/s6-2.9.2.0/src/daemontools-extras/s6-applyuidgid.c
Examining data/s6-2.9.2.0/src/daemontools-extras/s6-envdir.c
Examining data/s6-2.9.2.0/src/daemontools-extras/s6-envuidgid.c
Examining data/s6-2.9.2.0/src/daemontools-extras/s6-fghack.c
Examining data/s6-2.9.2.0/src/daemontools-extras/s6-log.c
Examining data/s6-2.9.2.0/src/daemontools-extras/s6-setlock.c
Examining data/s6-2.9.2.0/src/daemontools-extras/s6-setsid.c
Examining data/s6-2.9.2.0/src/daemontools-extras/s6-setuidgid.c
Examining data/s6-2.9.2.0/src/daemontools-extras/s6-softlimit.c
Examining data/s6-2.9.2.0/src/daemontools-extras/s6-tai64n.c
Examining data/s6-2.9.2.0/src/daemontools-extras/s6-tai64nlocal.c
Examining data/s6-2.9.2.0/src/daemontools-extras/ucspilogd.c
Examining data/s6-2.9.2.0/src/fdholder/s6-fdholder-daemon.c
Examining data/s6-2.9.2.0/src/fdholder/s6-fdholder-delete.c
Examining data/s6-2.9.2.0/src/fdholder/s6-fdholder-getdump.c
Examining data/s6-2.9.2.0/src/fdholder/s6-fdholder-list.c
Examining data/s6-2.9.2.0/src/fdholder/s6-fdholder-retrieve.c
Examining data/s6-2.9.2.0/src/fdholder/s6-fdholder-setdump.c
Examining data/s6-2.9.2.0/src/fdholder/s6-fdholder-store.c
Examining data/s6-2.9.2.0/src/fdholder/s6-fdholder-transferdump.c
Examining data/s6-2.9.2.0/src/fdholder/s6-fdholderd.c
Examining data/s6-2.9.2.0/src/include/s6/accessrules.h
Examining data/s6-2.9.2.0/src/include/s6/compat.h
Examining data/s6-2.9.2.0/src/include/s6/ftrigr.h
Examining data/s6-2.9.2.0/src/include/s6/ftrigw.h
Examining data/s6-2.9.2.0/src/include/s6/s6-fdholder.h
Examining data/s6-2.9.2.0/src/include/s6/s6-supervise.h
Examining data/s6-2.9.2.0/src/include/s6/s6.h
Examining data/s6-2.9.2.0/src/include/s6/s6lock.h
Examining data/s6-2.9.2.0/src/libs6/ftrig1.h
Examining data/s6-2.9.2.0/src/libs6/ftrig1_free.c
Examining data/s6-2.9.2.0/src/libs6/ftrig1_make.c
Examining data/s6-2.9.2.0/src/libs6/ftrigr1_zero.c
Examining data/s6-2.9.2.0/src/libs6/ftrigr_ack.c
Examining data/s6-2.9.2.0/src/libs6/ftrigr_check.c
Examining data/s6-2.9.2.0/src/libs6/ftrigr_checksa.c
Examining data/s6-2.9.2.0/src/libs6/ftrigr_end.c
Examining data/s6-2.9.2.0/src/libs6/ftrigr_start.c
Examining data/s6-2.9.2.0/src/libs6/ftrigr_startf.c
Examining data/s6-2.9.2.0/src/libs6/ftrigr_subscribe.c
Examining data/s6-2.9.2.0/src/libs6/ftrigr_unsubscribe.c
Examining data/s6-2.9.2.0/src/libs6/ftrigr_update.c
Examining data/s6-2.9.2.0/src/libs6/ftrigr_updateb.c
Examining data/s6-2.9.2.0/src/libs6/ftrigr_wait_and.c
Examining data/s6-2.9.2.0/src/libs6/ftrigr_wait_or.c
Examining data/s6-2.9.2.0/src/libs6/ftrigr_zero.c
Examining data/s6-2.9.2.0/src/libs6/ftrigw_clean.c
Examining data/s6-2.9.2.0/src/libs6/ftrigw_fifodir_make.c
Examining data/s6-2.9.2.0/src/libs6/ftrigw_notify.c
Examining data/s6-2.9.2.0/src/libs6/ftrigw_notifyb.c
Examining data/s6-2.9.2.0/src/libs6/ftrigw_notifyb_nosig.c
Examining data/s6-2.9.2.0/src/libs6/s6-ftrigrd.c
Examining data/s6-2.9.2.0/src/libs6/s6_accessrules_backend_cdb.c
Examining data/s6-2.9.2.0/src/libs6/s6_accessrules_backend_fs.c
Examining data/s6-2.9.2.0/src/libs6/s6_accessrules_keycheck_ip4.c
Examining data/s6-2.9.2.0/src/libs6/s6_accessrules_keycheck_ip6.c
Examining data/s6-2.9.2.0/src/libs6/s6_accessrules_keycheck_reversedns.c
Examining data/s6-2.9.2.0/src/libs6/s6_accessrules_keycheck_uidgid.c
Examining data/s6-2.9.2.0/src/libs6/s6_accessrules_params_free.c
Examining data/s6-2.9.2.0/src/libs6/s6_accessrules_uidgid_cdb.c
Examining data/s6-2.9.2.0/src/libs6/s6_accessrules_uidgid_fs.c
Examining data/s6-2.9.2.0/src/libs6/s6_compat_el_semicolon.c
Examining data/s6-2.9.2.0/src/libs6/s6_dtally_pack.c
Examining data/s6-2.9.2.0/src/libs6/s6_dtally_read.c
Examining data/s6-2.9.2.0/src/libs6/s6_dtally_unpack.c
Examining data/s6-2.9.2.0/src/libs6/s6_dtally_write.c
Examining data/s6-2.9.2.0/src/libs6/s6_fdholder_delete.c
Examining data/s6-2.9.2.0/src/libs6/s6_fdholder_delete_async.c
Examining data/s6-2.9.2.0/src/libs6/s6_fdholder_end.c
Examining data/s6-2.9.2.0/src/libs6/s6_fdholder_getdump.c
Examining data/s6-2.9.2.0/src/libs6/s6_fdholder_list.c
Examining data/s6-2.9.2.0/src/libs6/s6_fdholder_list_async.c
Examining data/s6-2.9.2.0/src/libs6/s6_fdholder_list_cb.c
Examining data/s6-2.9.2.0/src/libs6/s6_fdholder_retrieve.c
Examining data/s6-2.9.2.0/src/libs6/s6_fdholder_retrieve_async.c
Examining data/s6-2.9.2.0/src/libs6/s6_fdholder_retrieve_cb.c
Examining data/s6-2.9.2.0/src/libs6/s6_fdholder_setdump.c
Examining data/s6-2.9.2.0/src/libs6/s6_fdholder_start.c
Examining data/s6-2.9.2.0/src/libs6/s6_fdholder_store.c
Examining data/s6-2.9.2.0/src/libs6/s6_fdholder_store_async.c
Examining data/s6-2.9.2.0/src/libs6/s6_supervise_lock.c
Examining data/s6-2.9.2.0/src/libs6/s6_supervise_lock_mode.c
Examining data/s6-2.9.2.0/src/libs6/s6_svc_lock_release.c
Examining data/s6-2.9.2.0/src/libs6/s6_svc_lock_take.c
Examining data/s6-2.9.2.0/src/libs6/s6_svc_ok.c
Examining data/s6-2.9.2.0/src/libs6/s6_svc_write.c
Examining data/s6-2.9.2.0/src/libs6/s6_svc_writectl.c
Examining data/s6-2.9.2.0/src/libs6/s6_svstatus_pack.c
Examining data/s6-2.9.2.0/src/libs6/s6_svstatus_read.c
Examining data/s6-2.9.2.0/src/libs6/s6_svstatus_unpack.c
Examining data/s6-2.9.2.0/src/libs6/s6_svstatus_write.c
Examining data/s6-2.9.2.0/src/libs6/s6lock_acquire.c
Examining data/s6-2.9.2.0/src/libs6/s6lock_check.c
Examining data/s6-2.9.2.0/src/libs6/s6lock_end.c
Examining data/s6-2.9.2.0/src/libs6/s6lock_release.c
Examining data/s6-2.9.2.0/src/libs6/s6lock_start.c
Examining data/s6-2.9.2.0/src/libs6/s6lock_startf.c
Examining data/s6-2.9.2.0/src/libs6/s6lock_update.c
Examining data/s6-2.9.2.0/src/libs6/s6lock_wait_and.c
Examining data/s6-2.9.2.0/src/libs6/s6lock_wait_or.c
Examining data/s6-2.9.2.0/src/libs6/s6lock_zero.c
Examining data/s6-2.9.2.0/src/libs6/s6lockd-helper.c
Examining data/s6-2.9.2.0/src/libs6/s6lockd.c
Examining data/s6-2.9.2.0/src/pipe-tools/s6-cleanfifodir.c
Examining data/s6-2.9.2.0/src/pipe-tools/s6-ftrig-listen.c
Examining data/s6-2.9.2.0/src/pipe-tools/s6-ftrig-listen1.c
Examining data/s6-2.9.2.0/src/pipe-tools/s6-ftrig-notify.c
Examining data/s6-2.9.2.0/src/pipe-tools/s6-ftrig-wait.c
Examining data/s6-2.9.2.0/src/pipe-tools/s6-mkfifodir.c
Examining data/s6-2.9.2.0/src/supervision/s6-notifyoncheck.c
Examining data/s6-2.9.2.0/src/supervision/s6-permafailon.c
Examining data/s6-2.9.2.0/src/supervision/s6-supervise.c
Examining data/s6-2.9.2.0/src/supervision/s6-svc.c
Examining data/s6-2.9.2.0/src/supervision/s6-svdt-clear.c
Examining data/s6-2.9.2.0/src/supervision/s6-svdt.c
Examining data/s6-2.9.2.0/src/supervision/s6-svlisten.c
Examining data/s6-2.9.2.0/src/supervision/s6-svlisten.h
Examining data/s6-2.9.2.0/src/supervision/s6-svlisten1.c
Examining data/s6-2.9.2.0/src/supervision/s6-svok.c
Examining data/s6-2.9.2.0/src/supervision/s6-svscan.c
Examining data/s6-2.9.2.0/src/supervision/s6-svscanctl.c
Examining data/s6-2.9.2.0/src/supervision/s6-svstat.c
Examining data/s6-2.9.2.0/src/supervision/s6-svwait.c
Examining data/s6-2.9.2.0/src/supervision/s6_svlisten_loop.c
Examining data/s6-2.9.2.0/src/supervision/s6_svlisten_signal_handler.c
FINAL RESULTS:
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:398:11: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
if (chmod(x, S_IRWXU | S_IRGRP | S_IROTH) < 0)
data/s6-2.9.2.0/src/libs6/ftrigw_fifodir_make.c:22:30: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
if ((gid != (gid_t)-1) && (chown(path, -1, gid) == -1)) return 0 ;
data/s6-2.9.2.0/src/libs6/ftrigw_fifodir_make.c:23:7: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
if (chmod(path, (gid != (gid_t)-1) ? 03730 : 01733) == -1) return 0 ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-cdb-from-fs.c:41:7: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(sa->s, F_OK) < 0)
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-cdb-from-fs.c:50:9: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(sa->s, F_OK) < 0)
data/s6-2.9.2.0/src/libs6/s6_accessrules_backend_fs.c:23:9: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(tmp, R_OK) < 0)
data/s6-2.9.2.0/src/libs6/s6_accessrules_backend_fs.c:28:15: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return (access(tmp, R_OK) == 0) ? S6_ACCESSRULES_DENY :
data/s6-2.9.2.0/src/supervision/s6-supervise.c:281:5: [4] (shell) execv:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execv("./run", (char *const *)cargv) ;
data/s6-2.9.2.0/src/supervision/s6-supervise.c:399:5: [4] (shell) execv:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execv("./finish", cargv) ;
data/s6-2.9.2.0/src/supervision/s6-supervise.c:667:9: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access("down", F_OK) == 0) status.flagwantup = 0 ;
data/s6-2.9.2.0/src/supervision/s6-svc.c:78:9: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(fn, F_OK) < 0)
data/s6-2.9.2.0/src/supervision/s6-svscan.c:75:3: [4] (shell) execv:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execv(eargv[0], (char *const *)eargv) ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:591:5: [4] (shell) execv:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execv(eargv[0], (char **)eargv) ;
data/s6-2.9.2.0/src/supervision/s6-svstat.c:285:9: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(fn, F_OK) < 0)
data/s6-2.9.2.0/src/fdholder/s6-fdholder-setdump.c:40:7: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
x = getenv("S6_FD#") ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-setdump.c:58:11: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
x = getenv(s) ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-setdump.c:64:11: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
x = getenv(s) ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-setdump.c:71:11: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
x = getenv(s) ;
data/s6-2.9.2.0/src/libs6/s6_compat_el_semicolon.c:18:21: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char const *x = getenv("EXECLINE_STRICT") ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-cdb-from-fs.c:117:8: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
fd = mkstemp(tmp.s) ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:74:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[dirlen + p + 2] ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:75:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, dir, dirlen) ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:77:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + dirlen + 1, env + i, p) ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:101:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[basedirlen + klen + 8] ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:102:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data[dlen] ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:103:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(name, basedir, basedirlen) ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:117:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(name + basedirlen + klen + 2, "allow", 6) ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:122:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(name + basedirlen + klen + 2, "deny", 5) ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:132:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(name + basedirlen + klen + 2, "env", 4) ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:135:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(name + basedirlen + klen + 2, "exec", 5) ;
data/s6-2.9.2.0/src/conn-tools/s6-connlimit.c:20:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[protolen + 8] ;
data/s6-2.9.2.0/src/conn-tools/s6-connlimit.c:21:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s, x, protolen) ;
data/s6-2.9.2.0/src/conn-tools/s6-connlimit.c:22:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s + protolen, "CONNNUM", 8) ;
data/s6-2.9.2.0/src/conn-tools/s6-connlimit.c:26:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s + protolen + 4, "MAX", 4) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcclient.c:39:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char modif[24 + IPCPATH_MAX] = "PROTO=IPC\0IPCLOCALPATH=" ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcclient.c:52:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(modif + i, localname, n) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:51:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtpid[PID_FMT] ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:52:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtuid[UID_FMT] ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:53:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtgid[GID_FMT] ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:156:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[protolen + 11] ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:157:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, proto, protolen) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:158:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + protolen, "REMOTEEUID", 11) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:178:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[protolen + 10] ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:179:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, proto, protolen) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:180:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + protolen, "LOCALPATH", 10) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:187:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char curname[IPCPATH_MAX+1] ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:196:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[protolen + 11] ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:197:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, proto, protolen) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:198:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + protolen, "REMOTEEUID", 11) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:203:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + protolen + 6, "PATH", 5) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:205:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + protolen, "LOCALPATH", 10) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:207:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + protolen, "CONNNUM", 8) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:214:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *specialargv[4] = { EXECLINE_EXTBINPREFIX "execlineb", "-Pc", params.exec.s, 0 } ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver.c:64:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[UINT_FMT * 3 + 5 + UID_FMT + GID_FMT * (NGROUPS_MAX+1)] ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver.c:65:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *newargv[26 + argc] ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:30:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char fmtmaxconn[UINT_FMT+1] = "/" ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:31:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char fmtlocalmaxconn[UINT_FMT+1] = "/" ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:100:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[UINT_FMT] ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:107:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtuid[UID_FMT] = "?" ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:108:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtgid[GID_FMT] = "?" ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:109:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtnum[UINT_FMT] = "?" ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:121:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtuidgid[UID_FMT + GID_FMT + 1] = "?:?" ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:122:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtpid[UINT_FMT] ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:123:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtnum[UINT_FMT] = "?" ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:138:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtpid[PID_FMT] ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:139:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtuid[UID_FMT] = "?" ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:140:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtw[UINT_FMT] ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:235:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[65 + UID_FMT + GID_FMT + UINT_FMT + rplen] ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:239:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fmt+n, "PROTO=IPC\0IPCREMOTEEUID", 23) ; n += 23 ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:246:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fmt+n, "IPCREMOTEEGID", 13) ; n += 13 ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:253:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fmt+n, "IPCCONNNUM=", 11) ; n += 11 ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:256:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fmt+n, "IPCREMOTEPATH=", 14) ; n += 14 ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:257:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fmt+n, remotepath, rplen) ; n += rplen ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:394:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char remotepath[IPCPATH_MAX+1] ;
data/s6-2.9.2.0/src/conn-tools/s6-sudo.c:43:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *eargv[9 + argc + ((verbosity < 2 ? 1 : verbosity-1)) + ((!!bindpath + !!localname) << 1) + nodoenv] ;
data/s6-2.9.2.0/src/conn-tools/s6-sudo.c:44:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt1[UINT_FMT] ;
data/s6-2.9.2.0/src/conn-tools/s6-sudo.c:45:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt2[UINT_FMT] ;
data/s6-2.9.2.0/src/conn-tools/s6-sudoc.c:30:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf6[64] ;
data/s6-2.9.2.0/src/conn-tools/s6-sudoc.c:62:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[S6_SUDO_BANNERB_LEN] ;
data/s6-2.9.2.0/src/conn-tools/s6-sudoc.c:73:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[16] ;
data/s6-2.9.2.0/src/conn-tools/s6-sudoc.c:116:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[UINT_PACK] ;
data/s6-2.9.2.0/src/conn-tools/s6-sudod.c:136:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *targv[argc + 1 + cargc] ;
data/s6-2.9.2.0/src/conn-tools/s6-sudod.c:137:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *tenvp[envc + 1 + cenvc] ;
data/s6-2.9.2.0/src/conn-tools/s6-sudod.c:239:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[UINT_PACK] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-envuidgid.c:157:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[19 + UID_FMT + (NGROUPS_MAX+1) * GID_FMT] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-envuidgid.c:160:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fmt + pos, "UID=", 4) ; pos += 4 ;
data/s6-2.9.2.0/src/daemontools-extras/s6-envuidgid.c:166:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fmt + pos, "GID=", 4) ; pos += 4 ;
data/s6-2.9.2.0/src/daemontools-extras/s6-envuidgid.c:172:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fmt + pos, "GIDLIST=", 8) ; pos += 8 ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:187:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[28] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:236:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fullname[dirlen + 29] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:237:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fullname, ldp->dir, dirlen) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:248:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fullname + dirlen + 1, d->d_name, 28) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:254:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(archive[i].name, d->d_name, 28) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:271:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fullname + dirlen + 1, archive[n].name, 28) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:289:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char x[dirlen + namelen + 2] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:290:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x, ldp->dir, dirlen) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:292:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x + dirlen + 1, name, namelen + 1) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:296:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char y[dirlen + 29] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:297:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(y, ldp->dir, dirlen) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:312:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *cargv[4] = { ldp->flags & 4 ? "/bin/sh" : EXECLINE_EXTBINPREFIX "execlineb", ldp->flags & 4 ? "-c" : "-Pc", ldp->processor, 0 } ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:314:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *cargv[4] = { "/bin/sh", "-c", ldp->processor, 0 } ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:351:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char current[dirlen + 9] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:352:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char previous[dirlen + 10] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:353:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(current, ldp->dir, dirlen) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:354:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(current + dirlen, "/current", 9) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:355:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(previous, ldp->dir, dirlen) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:356:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(previous + dirlen, "/previous", 10) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:367:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char x[dirlen + 9] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:368:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x, ldp->dir, dirlen) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:369:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x + dirlen, "/current", 9) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:395:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char x[dirlen + 10] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:396:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x, ldp->dir, dirlen) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:397:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x + dirlen, "/previous", 10) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:435:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char x[dirlen + 11] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:436:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x, ldp->dir, dirlen) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:437:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x + dirlen, "/processed", 11) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:463:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char x[dirlen + 10] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:464:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x, ldp->dir, dirlen) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:465:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x + dirlen, "/newstate", 10) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:483:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char x[dirlen + 10] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:484:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x, ldp->dir, dirlen) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:485:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x + dirlen, "/previous", 10) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:495:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char newstate[dirlen + 10] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:496:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char state[dirlen + 7] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:497:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newstate, ldp->dir, dirlen) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:498:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(state, ldp->dir, dirlen) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:499:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newstate + dirlen, "/newstate", 10) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:500:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(state + dirlen, "/state", 7) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:570:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char x[dirlen + 11] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:584:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x, name, dirlen) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:585:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x + dirlen, "/lock", 6) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:590:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x + dirlen + 1, "current", 8) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:596:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x + dirlen + 1, "state", 6) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:598:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x + dirlen + 1, "newstate", 9) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:602:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x + dirlen + 1, "processed", 10) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:610:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x + dirlen + 1, "previous", 9) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:624:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x + dirlen + 1, "state", 6) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:629:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x + dirlen + 1, "current", 8) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:917:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hstamp[32] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:918:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstamp[TIMESTAMP+1] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:994:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pad[k] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-setlock.c:53:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *cargv[3] = { "s6lockd-helper", argv[0], 0 } ;
data/s6-2.9.2.0/src/daemontools-extras/s6-setlock.c:54:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *cenvp[2] = { ex ? "S6LOCK_EX=1" : 0, 0 } ;
data/s6-2.9.2.0/src/daemontools-extras/s6-setuidgid.c:13:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *newargv[argc + 7] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-tai64n.c:13:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stamp[TIMESTAMP+1] ;
data/s6-2.9.2.0/src/daemontools-extras/s6-tai64nlocal.c:52:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[LOCALTMN_FMT+1] ;
data/s6-2.9.2.0/src/daemontools-extras/ucspilogd.c:153:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *envs[argc] ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-daemon.c:65:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *newargv[30] ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-daemon.c:66:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[UINT_FMT * 8 + GID_FMT * NGROUPS_MAX] ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-getdump.c:55:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char modifs[7 + UINT_FMT + (25 + TIMESTAMP + 4 * UINT_FMT) * n] ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-getdump.c:57:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(modifs + pos, "S6_FD#=", 7) ; pos += 7 ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-getdump.c:65:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(modifs + pos, "S6_FD_", 6) ; pos += 6 ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-getdump.c:70:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(modifs + pos, "S6_FDID_", 8) ; pos += 8 ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-getdump.c:73:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(modifs + pos, p->id, len) ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-getdump.c:75:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(modifs + pos, "S6_FDLIMIT_", 11) ; pos += 11 ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-setdump.c:51:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[11 + UINT_FMT] ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-setdump.c:56:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s, "S6_FD_", 6) ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-setdump.c:62:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s, "S6_FDID_", 8) ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-setdump.c:68:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dump[i].id, x, len+1) ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-setdump.c:69:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s, "S6_FDLIMIT_", 11) ;
data/s6-2.9.2.0/src/fdholder/s6-fdholderd.c:267:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p->id, m->s + TAIN_PACK + 1, idlen) ;
data/s6-2.9.2.0/src/fdholder/s6-fdholderd.c:327:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[5] = "" ;
data/s6-2.9.2.0/src/fdholder/s6-fdholderd.c:368:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[9] = "" ;
data/s6-2.9.2.0/src/fdholder/s6-fdholderd.c:380:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char limits[(TAIN_PACK+1) * numfds] ;
data/s6-2.9.2.0/src/fdholder/s6-fdholderd.c:418:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[5] = "" ;
data/s6-2.9.2.0/src/fdholder/s6-fdholderd.c:463:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p->id, s + TAIN_PACK + 1, idlen+1) ;
data/s6-2.9.2.0/src/fdholder/s6-fdholderd.c:537:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256] ;
data/s6-2.9.2.0/src/fdholder/s6-fdholderd.c:553:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256] ;
data/s6-2.9.2.0/src/fdholder/s6-fdholderd.c:624:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtuid[UID_FMT] ;
data/s6-2.9.2.0/src/fdholder/s6-fdholderd.c:625:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtgid[GID_FMT] ;
data/s6-2.9.2.0/src/fdholder/s6-fdholderd.c:633:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *envp[n+1] ;
data/s6-2.9.2.0/src/include/s6/s6-fdholder.h:78:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[S6_FDHOLDER_ID_SIZE + 1] ;
data/s6-2.9.2.0/src/libs6/ftrig1_make.c:17:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[pathlen + FTRIG1_PREFIXLEN + 36] ;
data/s6-2.9.2.0/src/libs6/ftrig1_make.c:19:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, path, pathlen) ;
data/s6-2.9.2.0/src/libs6/ftrig1_make.c:21:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + pathlen + 2, FTRIG1_PREFIX, FTRIG1_PREFIXLEN) ;
data/s6-2.9.2.0/src/libs6/ftrig1_make.c:24:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + pathlen + FTRIG1_PREFIXLEN + 28, ":XXXXXX", 8) ;
data/s6-2.9.2.0/src/libs6/ftrigr_startf.c:8:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char const *const cargv[2] = { FTRIGRD_PROG, 0 } ;
data/s6-2.9.2.0/src/libs6/ftrigr_startf.c:9:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char const *const cenvp[1] = { 0 } ;
data/s6-2.9.2.0/src/libs6/ftrigr_subscribe.c:21:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[15] = "--L" ;
data/s6-2.9.2.0/src/libs6/ftrigr_unsubscribe.c:13:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[3] = "--U" ;
data/s6-2.9.2.0/src/libs6/ftrigw_clean.c:18:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[pathlen + FTRIG1_PREFIXLEN + 45] ;
data/s6-2.9.2.0/src/libs6/ftrigw_clean.c:19:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, path, pathlen) ;
data/s6-2.9.2.0/src/libs6/ftrigw_clean.c:30:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + pathlen + 1, d->d_name, FTRIG1_PREFIXLEN + 43) ;
data/s6-2.9.2.0/src/libs6/ftrigw_notifyb_nosig.c:22:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[pathlen + FTRIG1_PREFIXLEN + 35] ;
data/s6-2.9.2.0/src/libs6/ftrigw_notifyb_nosig.c:23:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, path, pathlen) ;
data/s6-2.9.2.0/src/libs6/ftrigw_notifyb_nosig.c:35:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + pathlen + 1, d->d_name, FTRIG1_PREFIXLEN + 33) ;
data/s6-2.9.2.0/src/libs6/s6-ftrigrd.c:39:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[FTRIGRD_BUFSIZE] ;
data/s6-2.9.2.0/src/libs6/s6-ftrigrd.c:66:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[4] ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_backend_cdb.c:33:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(params->exec.s + execbase, params->exec.s + execbase + 5 + envlen, execlen) ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_backend_fs.c:18:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[dirlen + keylen + 10] ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_backend_fs.c:19:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, dir, dirlen) ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_backend_fs.c:21:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + dirlen + 1, key, keylen) ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_backend_fs.c:22:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + dirlen + keylen + 1, "/allow", 7) ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_backend_fs.c:27:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + dirlen + keylen + 2, "deny", 5) ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_backend_fs.c:32:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + dirlen + keylen + 2, "env", 4) ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_backend_fs.c:41:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + dirlen + keylen + 2, "exec", 5) ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_keycheck_ip4.c:10:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[IP4_FMT + UINT_FMT + 6] = "ip4/" ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_keycheck_ip6.c:11:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[IP6_FMT + UINT_FMT + 6] = "ip6/" ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_keycheck_ip6.c:12:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ip6[16] ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_keycheck_ip6.c:14:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ip6, (char const *)key, 16) ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_keycheck_reversedns.c:16:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[len + 11] ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_keycheck_reversedns.c:17:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, "reversedns/", 11) ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_keycheck_reversedns.c:21:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp+11, name+i, len-i) ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_keycheck_uidgid.c:12:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[4 + UINT64_FMT] = "uid/" ;
data/s6-2.9.2.0/src/libs6/s6_compat_el_semicolon.c:41:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt1[UINT_FMT] ;
data/s6-2.9.2.0/src/libs6/s6_compat_el_semicolon.c:42:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt2[UINT_FMT] ;
data/s6-2.9.2.0/src/libs6/s6_dtally_read.c:26:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[len + sizeof(S6_DTALLY_FILENAME) + 1] ;
data/s6-2.9.2.0/src/libs6/s6_dtally_read.c:27:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn, sv, len) ;
data/s6-2.9.2.0/src/libs6/s6_dtally_read.c:28:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn + len, "/" S6_DTALLY_FILENAME, sizeof(S6_DTALLY_FILENAME) + 1) ;
data/s6-2.9.2.0/src/libs6/s6_dtally_read.c:40:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[n ? S6_DTALLY_PACK * n : 1] ;
data/s6-2.9.2.0/src/libs6/s6_dtally_write.c:10:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[len + sizeof(S6_DTALLY_FILENAME) + 1] ;
data/s6-2.9.2.0/src/libs6/s6_dtally_write.c:11:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[n ? S6_DTALLY_PACK * n : 1] ;
data/s6-2.9.2.0/src/libs6/s6_dtally_write.c:12:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn, sv, len) ;
data/s6-2.9.2.0/src/libs6/s6_dtally_write.c:13:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn + len, "/" S6_DTALLY_FILENAME, sizeof(S6_DTALLY_FILENAME) + 1) ;
data/s6-2.9.2.0/src/libs6/s6_fdholder_delete_async.c:12:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[2] = "D" ;
data/s6-2.9.2.0/src/libs6/s6_fdholder_getdump.c:52:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tab[j].id, m.s, thislen) ;
data/s6-2.9.2.0/src/libs6/s6_fdholder_retrieve_async.c:12:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[3] = "R" ;
data/s6-2.9.2.0/src/libs6/s6_fdholder_setdump.c:29:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[5] = "!" ;
data/s6-2.9.2.0/src/libs6/s6_fdholder_setdump.c:49:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[n * (TAIN_PACK+1)] ;
data/s6-2.9.2.0/src/libs6/s6_fdholder_store_async.c:13:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[2 + TAIN_PACK] = "S" ;
data/s6-2.9.2.0/src/libs6/s6_supervise_lock_mode.c:14:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char control[subdirlen + 9] ;
data/s6-2.9.2.0/src/libs6/s6_supervise_lock_mode.c:15:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lock[subdirlen + 6] ;
data/s6-2.9.2.0/src/libs6/s6_supervise_lock_mode.c:16:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(control, subdir, subdirlen) ;
data/s6-2.9.2.0/src/libs6/s6_supervise_lock_mode.c:17:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(control + subdirlen, "/control", 9) ;
data/s6-2.9.2.0/src/libs6/s6_supervise_lock_mode.c:18:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(lock, subdir, subdirlen) ;
data/s6-2.9.2.0/src/libs6/s6_supervise_lock_mode.c:19:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(lock + subdirlen, "/lock", 6) ;
data/s6-2.9.2.0/src/libs6/s6_svc_lock_take.c:13:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lock[dirlen + sizeof(S6_SUPERVISE_CTLDIR) + 6] ;
data/s6-2.9.2.0/src/libs6/s6_svc_lock_take.c:14:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(lock, dir, dirlen) ;
data/s6-2.9.2.0/src/libs6/s6_svc_lock_take.c:15:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(lock + dirlen, "/" S6_SUPERVISE_CTLDIR, sizeof(S6_SUPERVISE_CTLDIR) + 1) ;
data/s6-2.9.2.0/src/libs6/s6_svc_lock_take.c:17:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(lock + dirlen + sizeof(S6_SUPERVISE_CTLDIR), "/lock", 6) ;
data/s6-2.9.2.0/src/libs6/s6_svc_ok.c:12:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[dirlen + 9 + sizeof(S6_SUPERVISE_CTLDIR)] ;
data/s6-2.9.2.0/src/libs6/s6_svc_ok.c:13:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn, dir, dirlen) ;
data/s6-2.9.2.0/src/libs6/s6_svc_ok.c:15:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn + dirlen + 1, S6_SUPERVISE_CTLDIR, sizeof(S6_SUPERVISE_CTLDIR) - 1) ;
data/s6-2.9.2.0/src/libs6/s6_svc_ok.c:16:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn + dirlen + sizeof(S6_SUPERVISE_CTLDIR), "/control", 9) ;
data/s6-2.9.2.0/src/libs6/s6_svc_writectl.c:17:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[svlen + sublen + 10] ;
data/s6-2.9.2.0/src/libs6/s6_svc_writectl.c:18:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn, service, svlen) ;
data/s6-2.9.2.0/src/libs6/s6_svc_writectl.c:20:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn + svlen + 1, subdir, sublen) ;
data/s6-2.9.2.0/src/libs6/s6_svc_writectl.c:21:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn + svlen + 1 + sublen, "/control", 9) ;
data/s6-2.9.2.0/src/libs6/s6_svc_writectl.c:31:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(service, O_RDONLY | O_DIRECTORY) ;
data/s6-2.9.2.0/src/libs6/s6_svstatus_read.c:10:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[S6_SVSTATUS_SIZE] ;
data/s6-2.9.2.0/src/libs6/s6_svstatus_read.c:11:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[n + 1 + sizeof(S6_SVSTATUS_FILENAME)] ;
data/s6-2.9.2.0/src/libs6/s6_svstatus_read.c:12:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, dir, n) ;
data/s6-2.9.2.0/src/libs6/s6_svstatus_read.c:13:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + n, "/" S6_SVSTATUS_FILENAME, 1 + sizeof(S6_SVSTATUS_FILENAME)) ;
data/s6-2.9.2.0/src/libs6/s6_svstatus_write.c:10:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[S6_SVSTATUS_SIZE] ;
data/s6-2.9.2.0/src/libs6/s6_svstatus_write.c:11:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[n + 1 + sizeof(S6_SVSTATUS_FILENAME)] ;
data/s6-2.9.2.0/src/libs6/s6_svstatus_write.c:12:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, dir, n) ;
data/s6-2.9.2.0/src/libs6/s6_svstatus_write.c:13:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + n, "/" S6_SVSTATUS_FILENAME, 1 + sizeof(S6_SVSTATUS_FILENAME)) ;
data/s6-2.9.2.0/src/libs6/s6lock_acquire.c:17:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[23] = "--<" ;
data/s6-2.9.2.0/src/libs6/s6lock_release.c:13:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[3] = "-->" ;
data/s6-2.9.2.0/src/libs6/s6lock_startf.c:10:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *cargv[3] = { S6LOCKD_PROG, lockdir, 0 } ;
data/s6-2.9.2.0/src/libs6/s6lockd.c:61:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[3] ;
data/s6-2.9.2.0/src/libs6/s6lockd.c:134:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *cargv[3] = { S6LOCKD_HELPER_PROG, 0, 0 } ;
data/s6-2.9.2.0/src/libs6/s6lockd.c:135:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *cenvp[2] = { 0, 0 } ;
data/s6-2.9.2.0/src/pipe-tools/s6-ftrig-listen1.c:38:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[2] = " \n" ;
data/s6-2.9.2.0/src/pipe-tools/s6-ftrig-wait.c:19:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pack[2] = " \n" ;
data/s6-2.9.2.0/src/supervision/s6-notifyoncheck.c:36:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[UINT_FMT + 1] ;
data/s6-2.9.2.0/src/supervision/s6-notifyoncheck.c:85:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *childargv[4] = { "./data/check", 0, 0, 0 } ;
data/s6-2.9.2.0/src/supervision/s6-permafailon.c:46:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[next - pos + 1] ;
data/s6-2.9.2.0/src/supervision/s6-permafailon.c:47:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, s + pos, next - pos) ;
data/s6-2.9.2.0/src/supervision/s6-permafailon.c:60:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char codes[32] ;
data/s6-2.9.2.0/src/supervision/s6-permafailon.c:108:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtevent[4] ;
data/s6-2.9.2.0/src/supervision/s6-permafailon.c:109:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtseconds[UINT_FMT] ;
data/s6-2.9.2.0/src/supervision/s6-permafailon.c:110:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtn[UINT_FMT] ;
data/s6-2.9.2.0/src/supervision/s6-supervise.c:87:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[UINT_FMT + 1] ;
data/s6-2.9.2.0/src/supervision/s6-supervise.c:100:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16] ;
data/s6-2.9.2.0/src/supervision/s6-supervise.c:219:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8] = "-------" ;
data/s6-2.9.2.0/src/supervision/s6-supervise.c:266:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *cargv[2] = { "run", 0 } ;
data/s6-2.9.2.0/src/supervision/s6-supervise.c:392:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt0[UINT_FMT] ;
data/s6-2.9.2.0/src/supervision/s6-supervise.c:393:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt1[UINT_FMT] ;
data/s6-2.9.2.0/src/supervision/s6-supervise.c:394:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *cargv[4] = { "finish", fmt0, fmt1, 0 } ;
data/s6-2.9.2.0/src/supervision/s6-supervise.c:554:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4096] ;
data/s6-2.9.2.0/src/supervision/s6-supervise.c:637:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char progname[proglen + namelen + 2] ;
data/s6-2.9.2.0/src/supervision/s6-supervise.c:638:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(progname, PROG, proglen) ;
data/s6-2.9.2.0/src/supervision/s6-supervise.c:640:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(progname + proglen + 1, argv[1], namelen + 1) ;
data/s6-2.9.2.0/src/supervision/s6-svc.c:20:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data[DATASIZE+1] = "-" ;
data/s6-2.9.2.0/src/supervision/s6-svc.c:23:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char updown[3] = "-\0" ;
data/s6-2.9.2.0/src/supervision/s6-svc.c:75:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[arglen + 17] ;
data/s6-2.9.2.0/src/supervision/s6-svc.c:76:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn, argv[0], arglen) ;
data/s6-2.9.2.0/src/supervision/s6-svc.c:77:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn + arglen, "/notification-fd", 17) ;
data/s6-2.9.2.0/src/supervision/s6-svc.c:88:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *newargv[11] ;
data/s6-2.9.2.0/src/supervision/s6-svc.c:90:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[UINT_FMT] ;
data/s6-2.9.2.0/src/supervision/s6-svdt.c:45:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[TIMESTAMP + 1] ;
data/s6-2.9.2.0/src/supervision/s6-svdt.c:54:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[3] ;
data/s6-2.9.2.0/src/supervision/s6-svdt.c:65:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[3] ;
data/s6-2.9.2.0/src/supervision/s6-svlisten.c:69:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char upstate[bitarray_div8(argc1)] ;
data/s6-2.9.2.0/src/supervision/s6-svlisten.c:70:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char readystate[bitarray_div8(argc1)] ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:72:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *eargv[2] = { CRASH_PROG, 0 } ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:170:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[SIGNAL_PROG_LEN + len + 1] ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:171:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *const newargv[2] = { fn, 0 } ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:172:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn, SIGNAL_PROG, SIGNAL_PROG_LEN) ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:173:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn + SIGNAL_PROG_LEN, name, len + 1) ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:209:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[2] = { c, 0 } ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:309:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *cargv[3] = { "s6-supervise", name, 0 } ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:366:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[namelen + 5] ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:367:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, name, namelen) ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:368:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + namelen, "/log", 5) ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:405:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[namelen + 5] ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:406:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, name, namelen) ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:407:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + namelen, "/log", 5) ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:590:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *eargv[3] = { FINISH_PROG, finish_arg, 0 } ;
data/s6-2.9.2.0/src/supervision/s6-svscanctl.c:14:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data[DATASIZE] ;
data/s6-2.9.2.0/src/supervision/s6-svstat.c:60:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[PID_FMT] ;
data/s6-2.9.2.0/src/supervision/s6-svstat.c:68:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[TIMESTAMP] ;
data/s6-2.9.2.0/src/supervision/s6-svstat.c:85:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[UINT64_FMT] ;
data/s6-2.9.2.0/src/supervision/s6-svstat.c:104:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[INT_FMT] ;
data/s6-2.9.2.0/src/supervision/s6-svstat.c:112:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[INT_FMT] ;
data/s6-2.9.2.0/src/supervision/s6-svstat.c:163:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blah[pos+1] ;
data/s6-2.9.2.0/src/supervision/s6-svstat.c:164:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(blah, arg, pos) ;
data/s6-2.9.2.0/src/supervision/s6-svstat.c:179:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[UINT64_FMT] ;
data/s6-2.9.2.0/src/supervision/s6-svstat.c:282:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[dirlen + 6] ;
data/s6-2.9.2.0/src/supervision/s6-svstat.c:283:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn, *argv, dirlen) ;
data/s6-2.9.2.0/src/supervision/s6-svstat.c:284:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fn + dirlen, "/down", 6) ;
data/s6-2.9.2.0/src/supervision/s6-svwait.c:51:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char upstate[bitarray_div8(argc)] ;
data/s6-2.9.2.0/src/supervision/s6-svwait.c:52:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char readystate[bitarray_div8(argc)] ;
data/s6-2.9.2.0/src/supervision/s6_svlisten_loop.c:26:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[len + 1 + sizeof(S6_SUPERVISE_EVENTDIR)] ;
data/s6-2.9.2.0/src/supervision/s6_svlisten_loop.c:27:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s, argv[i], len) ;
data/s6-2.9.2.0/src/supervision/s6_svlisten_loop.c:29:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s + len + 1, S6_SUPERVISE_EVENTDIR, sizeof(S6_SUPERVISE_EVENTDIR)) ;
data/s6-2.9.2.0/src/supervision/s6_svlisten_loop.c:41:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char t[m] ;
data/s6-2.9.2.0/src/supervision/s6_svlisten_loop.c:42:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(t, foo->upstate, m) ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:33:14: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
mode_t m = umask(0) ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:34:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(s) ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:43:3: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(m) ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:60:14: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
mode_t m = umask(0) ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:67:3: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(m) ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:153:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
basedirlen = strlen(argv[1]) ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:155:16: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
mode_t m = umask(0) ;
data/s6-2.9.2.0/src/conn-tools/s6-accessrules-fs-from-cdb.c:158:5: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(m) ;
data/s6-2.9.2.0/src/conn-tools/s6-connlimit.c:16:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
protolen = strlen(x) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcclient.c:50:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n = strlen(localname) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcclient.c:59:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else i += strlen(modif + i) + 1 ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-access.c:152:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
protolen = strlen(proto) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-socketbinder.c:49:16: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
mode_t m = umask(~perms & 0777) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserver-socketbinder.c:52:5: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(m) ;
data/s6-2.9.2.0/src/conn-tools/s6-ipcserverd.c:233:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t rplen = strlen(remotepath) + 1 ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:204:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) != 27) return 0 ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:233:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dirlen = strlen(ldp->dir) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:287:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dirlen = strlen(ldp->dir) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:288:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namelen = strlen(name) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:338:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dirlen = strlen(ldp->dir) ;
data/s6-2.9.2.0/src/daemontools-extras/s6-log.c:568:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dirlen = strlen(name) ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-getdump.c:63:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(p->id) + 1 ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-list.c:51:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(sa.s + pos) ;
data/s6-2.9.2.0/src/fdholder/s6-fdholder-setdump.c:66:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(x) ;
data/s6-2.9.2.0/src/fdholder/s6-fdholderd.c:317:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
v->iov_len = strlen(p->id) + 1 ;
data/s6-2.9.2.0/src/fdholder/s6-fdholderd.c:350:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
unsigned char len = strlen(p->id) ;
data/s6-2.9.2.0/src/fdholder/s6-fdholderd.c:529:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t varlen = strlen(var) ;
data/s6-2.9.2.0/src/include/s6/ftrigw.h:13:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define ftrigw_notifys(f, s) ftrigw_notifyb(f, (s), strlen(s))
data/s6-2.9.2.0/src/libs6/ftrig1_make.c:16:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t pathlen = strlen(path) ;
data/s6-2.9.2.0/src/libs6/ftrigr_subscribe.c:17:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t pathlen = strlen(path) ;
data/s6-2.9.2.0/src/libs6/ftrigr_subscribe.c:18:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t relen = strlen(re) ;
data/s6-2.9.2.0/src/libs6/ftrigw_clean.c:13:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t pathlen = strlen(path) ;
data/s6-2.9.2.0/src/libs6/ftrigw_clean.c:29:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(d->d_name) != FTRIG1_PREFIXLEN + 43) continue ;
data/s6-2.9.2.0/src/libs6/ftrigw_fifodir_make.c:10:14: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
mode_t m = umask(0) ;
data/s6-2.9.2.0/src/libs6/ftrigw_fifodir_make.c:14:5: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(m) ;
data/s6-2.9.2.0/src/libs6/ftrigw_fifodir_make.c:21:8: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
else umask(m) ;
data/s6-2.9.2.0/src/libs6/ftrigw_notifyb_nosig.c:21:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t pathlen = strlen(path) ;
data/s6-2.9.2.0/src/libs6/ftrigw_notifyb_nosig.c:34:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(d->d_name) != FTRIG1_PREFIXLEN + 33) continue ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_backend_fs.c:14:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dirlen = strlen(dir) ;
data/s6-2.9.2.0/src/libs6/s6_accessrules_keycheck_reversedns.c:11:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(name) ;
data/s6-2.9.2.0/src/libs6/s6_dtally_read.c:22:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(sv) ;
data/s6-2.9.2.0/src/libs6/s6_dtally_write.c:9:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(sv) ;
data/s6-2.9.2.0/src/libs6/s6_fdholder_delete_async.c:11:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t idlen = strlen(id) ;
data/s6-2.9.2.0/src/libs6/s6_fdholder_retrieve_async.c:11:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t idlen = strlen(id) ;
data/s6-2.9.2.0/src/libs6/s6_fdholder_setdump.c:53:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(list->id) ;
data/s6-2.9.2.0/src/libs6/s6_fdholder_store_async.c:12:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t idlen = strlen(id) ;
data/s6-2.9.2.0/src/libs6/s6_supervise_lock_mode.c:12:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t subdirlen = strlen(subdir) ;
data/s6-2.9.2.0/src/libs6/s6_svc_lock_take.c:11:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dirlen = strlen(dir) ;
data/s6-2.9.2.0/src/libs6/s6_svc_ok.c:10:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dirlen = strlen(dir) ;
data/s6-2.9.2.0/src/libs6/s6_svc_writectl.c:14:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t svlen = strlen(service) ;
data/s6-2.9.2.0/src/libs6/s6_svc_writectl.c:15:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t sublen = strlen(subdir) ;
data/s6-2.9.2.0/src/libs6/s6_svstatus_read.c:9:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n = strlen(dir) ;
data/s6-2.9.2.0/src/libs6/s6_svstatus_write.c:9:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n = strlen(dir) ;
data/s6-2.9.2.0/src/libs6/s6lock_acquire.c:16:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t pathlen = strlen(path) ;
data/s6-2.9.2.0/src/supervision/s6-notifyoncheck.c:189:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(p[0], &c, 1) < 1) strerr_diefu1x(111, "synchronize with child") ;
data/s6-2.9.2.0/src/supervision/s6-supervise.c:635:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t proglen = strlen(PROG) ;
data/s6-2.9.2.0/src/supervision/s6-supervise.c:636:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namelen = strlen(argv[1]) ;
data/s6-2.9.2.0/src/supervision/s6-svc.c:74:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t arglen = strlen(argv[0]) ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:169:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(name) ;
data/s6-2.9.2.0/src/supervision/s6-svscan.c:345:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namelen = strlen(name) ;
data/s6-2.9.2.0/src/supervision/s6-svstat.c:281:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dirlen = strlen(*argv) ;
data/s6-2.9.2.0/src/supervision/s6_svlisten_loop.c:25:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(argv[i]) ;
ANALYSIS SUMMARY:
Hits = 381
Lines analyzed = 11523 in approximately 0.32 seconds (35663 lines/second)
Physical Source Lines of Code (SLOC) = 10256
Hits@level = [0] 0 [1] 62 [2] 300 [3] 5 [4] 11 [5] 3
Hits@level+ = [0+] 381 [1+] 381 [2+] 319 [3+] 19 [4+] 14 [5+] 3
Hits/KSLOC@level+ = [0+] 37.149 [1+] 37.149 [2+] 31.1037 [3+] 1.85257 [4+] 1.36505 [5+] 0.292512
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.