Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/tor-0.4.5.2-alpha/scripts/maint/practracker/testdata/b.c
Examining data/tor-0.4.5.2-alpha/scripts/maint/practracker/testdata/a.c
Examining data/tor-0.4.5.2-alpha/scripts/maint/practracker/testdata/header.h
Examining data/tor-0.4.5.2-alpha/scripts/maint/checkspace_tests/good_guard.h
Examining data/tor-0.4.5.2-alpha/scripts/maint/checkspace_tests/dubious.c
Examining data/tor-0.4.5.2-alpha/scripts/maint/checkspace_tests/subdir/dubious.c
Examining data/tor-0.4.5.2-alpha/scripts/maint/checkspace_tests/dubious.h
Examining data/tor-0.4.5.2-alpha/scripts/maint/checkspace_tests/same_guard.h
Examining data/tor-0.4.5.2-alpha/scripts/coccinelle/tor-coccinelle.h
Examining data/tor-0.4.5.2-alpha/src/lib/malloc/map_anon.c
Examining data/tor-0.4.5.2-alpha/src/lib/malloc/map_anon.h
Examining data/tor-0.4.5.2-alpha/src/lib/malloc/malloc.c
Examining data/tor-0.4.5.2-alpha/src/lib/malloc/malloc.h
Examining data/tor-0.4.5.2-alpha/src/lib/buf/buffers.h
Examining data/tor-0.4.5.2-alpha/src/lib/buf/buffers.c
Examining data/tor-0.4.5.2-alpha/src/lib/llharden/winprocess_sys.c
Examining data/tor-0.4.5.2-alpha/src/lib/llharden/winprocess_sys.h
Examining data/tor-0.4.5.2-alpha/src/lib/conf/confmacros.h
Examining data/tor-0.4.5.2-alpha/src/lib/conf/conftesting.h
Examining data/tor-0.4.5.2-alpha/src/lib/conf/conftypes.h
Examining data/tor-0.4.5.2-alpha/src/lib/conf/confdecl.h
Examining data/tor-0.4.5.2-alpha/src/lib/version/torversion.h
Examining data/tor-0.4.5.2-alpha/src/lib/version/git_revision.c
Examining data/tor-0.4.5.2-alpha/src/lib/version/version.c
Examining data/tor-0.4.5.2-alpha/src/lib/version/git_revision.h
Examining data/tor-0.4.5.2-alpha/src/lib/tls/tortls_openssl.c
Examining data/tor-0.4.5.2-alpha/src/lib/tls/x509.h
Examining data/tor-0.4.5.2-alpha/src/lib/tls/tortls.c
Examining data/tor-0.4.5.2-alpha/src/lib/tls/tortls_sys.h
Examining data/tor-0.4.5.2-alpha/src/lib/tls/tortls_nss.c
Examining data/tor-0.4.5.2-alpha/src/lib/tls/nss_countbytes.h
Examining data/tor-0.4.5.2-alpha/src/lib/tls/x509_openssl.c
Examining data/tor-0.4.5.2-alpha/src/lib/tls/x509.c
Examining data/tor-0.4.5.2-alpha/src/lib/tls/tortls_st.h
Examining data/tor-0.4.5.2-alpha/src/lib/tls/tortls_internal.h
Examining data/tor-0.4.5.2-alpha/src/lib/tls/nss_countbytes.c
Examining data/tor-0.4.5.2-alpha/src/lib/tls/tortls.h
Examining data/tor-0.4.5.2-alpha/src/lib/tls/buffers_tls.c
Examining data/tor-0.4.5.2-alpha/src/lib/tls/x509_internal.h
Examining data/tor-0.4.5.2-alpha/src/lib/tls/x509_nss.c
Examining data/tor-0.4.5.2-alpha/src/lib/tls/buffers_tls.h
Examining data/tor-0.4.5.2-alpha/src/lib/metrics/metrics_common.c
Examining data/tor-0.4.5.2-alpha/src/lib/metrics/metrics_store.c
Examining data/tor-0.4.5.2-alpha/src/lib/metrics/metrics_store_entry.c
Examining data/tor-0.4.5.2-alpha/src/lib/metrics/prometheus.c
Examining data/tor-0.4.5.2-alpha/src/lib/metrics/metrics_store.h
Examining data/tor-0.4.5.2-alpha/src/lib/metrics/metrics_common.h
Examining data/tor-0.4.5.2-alpha/src/lib/metrics/prometheus.h
Examining data/tor-0.4.5.2-alpha/src/lib/metrics/metrics_store_entry.h
Examining data/tor-0.4.5.2-alpha/src/lib/math/laplace.h
Examining data/tor-0.4.5.2-alpha/src/lib/math/fp.h
Examining data/tor-0.4.5.2-alpha/src/lib/math/laplace.c
Examining data/tor-0.4.5.2-alpha/src/lib/math/prob_distr.c
Examining data/tor-0.4.5.2-alpha/src/lib/math/prob_distr.h
Examining data/tor-0.4.5.2-alpha/src/lib/math/fp.c
Examining data/tor-0.4.5.2-alpha/src/lib/memarea/memarea.h
Examining data/tor-0.4.5.2-alpha/src/lib/memarea/memarea.c
Examining data/tor-0.4.5.2-alpha/src/lib/term/getpass.c
Examining data/tor-0.4.5.2-alpha/src/lib/term/getpass.h
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/time_fmt.h
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/cstring.h
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/kvline.c
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/pem.c
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/binascii.h
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/kvline.h
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/pem.h
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/keyval.c
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/keyval.h
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/time_fmt.c
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/qstring.c
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/qstring.h
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/cstring.c
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/binascii.c
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/confline.h
Examining data/tor-0.4.5.2-alpha/src/lib/encoding/confline.c
Examining data/tor-0.4.5.2-alpha/src/lib/err/torerr_sys.c
Examining data/tor-0.4.5.2-alpha/src/lib/err/torerr.c
Examining data/tor-0.4.5.2-alpha/src/lib/err/backtrace.h
Examining data/tor-0.4.5.2-alpha/src/lib/err/backtrace.c
Examining data/tor-0.4.5.2-alpha/src/lib/err/torerr_sys.h
Examining data/tor-0.4.5.2-alpha/src/lib/err/torerr.h
Examining data/tor-0.4.5.2-alpha/src/lib/pubsub/pubsub_macros.h
Examining data/tor-0.4.5.2-alpha/src/lib/pubsub/pubsub_check.c
Examining data/tor-0.4.5.2-alpha/src/lib/pubsub/pubsub_builder_st.h
Examining data/tor-0.4.5.2-alpha/src/lib/pubsub/pub_binding_st.h
Examining data/tor-0.4.5.2-alpha/src/lib/pubsub/pubsub_publish.h
Examining data/tor-0.4.5.2-alpha/src/lib/pubsub/pubsub_build.h
Examining data/tor-0.4.5.2-alpha/src/lib/pubsub/pubsub_flags.h
Examining data/tor-0.4.5.2-alpha/src/lib/pubsub/pubsub.h
Examining data/tor-0.4.5.2-alpha/src/lib/pubsub/pubsub_publish.c
Examining data/tor-0.4.5.2-alpha/src/lib/pubsub/pubsub_connect.h
Examining data/tor-0.4.5.2-alpha/src/lib/pubsub/pubsub_build.c
Examining data/tor-0.4.5.2-alpha/src/lib/ctime/di_ops.c
Examining data/tor-0.4.5.2-alpha/src/lib/ctime/di_ops.h
Examining data/tor-0.4.5.2-alpha/src/lib/fdio/fdio.c
Examining data/tor-0.4.5.2-alpha/src/lib/fdio/fdio.h
Examining data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c
Examining data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.h
Examining data/tor-0.4.5.2-alpha/src/lib/process/env.h
Examining data/tor-0.4.5.2-alpha/src/lib/process/process_win32.c
Examining data/tor-0.4.5.2-alpha/src/lib/process/setuid.c
Examining data/tor-0.4.5.2-alpha/src/lib/process/restrict.h
Examining data/tor-0.4.5.2-alpha/src/lib/process/restrict.c
Examining data/tor-0.4.5.2-alpha/src/lib/process/daemon.h
Examining data/tor-0.4.5.2-alpha/src/lib/process/process_unix.h
Examining data/tor-0.4.5.2-alpha/src/lib/process/process_sys.c
Examining data/tor-0.4.5.2-alpha/src/lib/process/process_win32.h
Examining data/tor-0.4.5.2-alpha/src/lib/process/waitpid.h
Examining data/tor-0.4.5.2-alpha/src/lib/process/daemon.c
Examining data/tor-0.4.5.2-alpha/src/lib/process/waitpid.c
Examining data/tor-0.4.5.2-alpha/src/lib/process/pidfile.c
Examining data/tor-0.4.5.2-alpha/src/lib/process/process_sys.h
Examining data/tor-0.4.5.2-alpha/src/lib/process/pidfile.h
Examining data/tor-0.4.5.2-alpha/src/lib/process/setuid.h
Examining data/tor-0.4.5.2-alpha/src/lib/process/process.h
Examining data/tor-0.4.5.2-alpha/src/lib/process/env.c
Examining data/tor-0.4.5.2-alpha/src/lib/process/process.c
Examining data/tor-0.4.5.2-alpha/src/lib/process/process_unix.c
Examining data/tor-0.4.5.2-alpha/src/lib/fs/userdb.c
Examining data/tor-0.4.5.2-alpha/src/lib/fs/winlib.h
Examining data/tor-0.4.5.2-alpha/src/lib/fs/conffile.c
Examining data/tor-0.4.5.2-alpha/src/lib/fs/lockfile.h
Examining data/tor-0.4.5.2-alpha/src/lib/fs/mmap.c
Examining data/tor-0.4.5.2-alpha/src/lib/fs/conffile.h
Examining data/tor-0.4.5.2-alpha/src/lib/fs/freespace.c
Examining data/tor-0.4.5.2-alpha/src/lib/fs/files.c
Examining data/tor-0.4.5.2-alpha/src/lib/fs/dir.h
Examining data/tor-0.4.5.2-alpha/src/lib/fs/files.h
Examining data/tor-0.4.5.2-alpha/src/lib/fs/path.c
Examining data/tor-0.4.5.2-alpha/src/lib/fs/dir.c
Examining data/tor-0.4.5.2-alpha/src/lib/fs/storagedir.h
Examining data/tor-0.4.5.2-alpha/src/lib/fs/storagedir.c
Examining data/tor-0.4.5.2-alpha/src/lib/fs/lockfile.c
Examining data/tor-0.4.5.2-alpha/src/lib/fs/userdb.h
Examining data/tor-0.4.5.2-alpha/src/lib/fs/path.h
Examining data/tor-0.4.5.2-alpha/src/lib/fs/winlib.c
Examining data/tor-0.4.5.2-alpha/src/lib/fs/mmap.h
Examining data/tor-0.4.5.2-alpha/src/lib/testsupport/testsupport.h
Examining data/tor-0.4.5.2-alpha/src/lib/dispatch/dispatch.h
Examining data/tor-0.4.5.2-alpha/src/lib/dispatch/dispatch_cfg.c
Examining data/tor-0.4.5.2-alpha/src/lib/dispatch/dispatch_cfg_st.h
Examining data/tor-0.4.5.2-alpha/src/lib/dispatch/dispatch_naming.c
Examining data/tor-0.4.5.2-alpha/src/lib/dispatch/dispatch_cfg.h
Examining data/tor-0.4.5.2-alpha/src/lib/dispatch/dispatch_naming.h
Examining data/tor-0.4.5.2-alpha/src/lib/dispatch/dispatch_st.h
Examining data/tor-0.4.5.2-alpha/src/lib/dispatch/dispatch_core.c
Examining data/tor-0.4.5.2-alpha/src/lib/dispatch/dispatch_new.c
Examining data/tor-0.4.5.2-alpha/src/lib/dispatch/msgtypes.h
Examining data/tor-0.4.5.2-alpha/src/lib/evloop/procmon.c
Examining data/tor-0.4.5.2-alpha/src/lib/evloop/compat_libevent.c
Examining data/tor-0.4.5.2-alpha/src/lib/evloop/timers.h
Examining data/tor-0.4.5.2-alpha/src/lib/evloop/timers.c
Examining data/tor-0.4.5.2-alpha/src/lib/evloop/workqueue.h
Examining data/tor-0.4.5.2-alpha/src/lib/evloop/workqueue.c
Examining data/tor-0.4.5.2-alpha/src/lib/evloop/compat_libevent.h
Examining data/tor-0.4.5.2-alpha/src/lib/evloop/procmon.h
Examining data/tor-0.4.5.2-alpha/src/lib/evloop/token_bucket.c
Examining data/tor-0.4.5.2-alpha/src/lib/evloop/evloop_sys.h
Examining data/tor-0.4.5.2-alpha/src/lib/evloop/evloop_sys.c
Examining data/tor-0.4.5.2-alpha/src/lib/evloop/token_bucket.h
Examining data/tor-0.4.5.2-alpha/src/lib/subsys/subsys.h
Examining data/tor-0.4.5.2-alpha/src/lib/lock/compat_mutex_pthreads.c
Examining data/tor-0.4.5.2-alpha/src/lib/lock/compat_mutex.h
Examining data/tor-0.4.5.2-alpha/src/lib/lock/compat_mutex_winthreads.c
Examining data/tor-0.4.5.2-alpha/src/lib/lock/compat_mutex.c
Examining data/tor-0.4.5.2-alpha/src/lib/confmgt/type_defs.c
Examining data/tor-0.4.5.2-alpha/src/lib/confmgt/confmgt.c
Examining data/tor-0.4.5.2-alpha/src/lib/confmgt/unitparse.h
Examining data/tor-0.4.5.2-alpha/src/lib/confmgt/confmgt.h
Examining data/tor-0.4.5.2-alpha/src/lib/confmgt/structvar.h
Examining data/tor-0.4.5.2-alpha/src/lib/confmgt/typedvar.c
Examining data/tor-0.4.5.2-alpha/src/lib/confmgt/type_defs.h
Examining data/tor-0.4.5.2-alpha/src/lib/confmgt/unitparse.c
Examining data/tor-0.4.5.2-alpha/src/lib/confmgt/typedvar.h
Examining data/tor-0.4.5.2-alpha/src/lib/confmgt/structvar.c
Examining data/tor-0.4.5.2-alpha/src/lib/confmgt/var_type_def_st.h
Examining data/tor-0.4.5.2-alpha/src/lib/net/socket.c
Examining data/tor-0.4.5.2-alpha/src/lib/net/buffers_net.h
Examining data/tor-0.4.5.2-alpha/src/lib/net/buffers_net.c
Examining data/tor-0.4.5.2-alpha/src/lib/net/network_sys.c
Examining data/tor-0.4.5.2-alpha/src/lib/net/socks5_status.h
Examining data/tor-0.4.5.2-alpha/src/lib/net/address.h
Examining data/tor-0.4.5.2-alpha/src/lib/net/inaddr_st.h
Examining data/tor-0.4.5.2-alpha/src/lib/net/socketpair.c
Examining data/tor-0.4.5.2-alpha/src/lib/net/socketpair.h
Examining data/tor-0.4.5.2-alpha/src/lib/net/resolve.h
Examining data/tor-0.4.5.2-alpha/src/lib/net/address.c
Examining data/tor-0.4.5.2-alpha/src/lib/net/alertsock.c
Examining data/tor-0.4.5.2-alpha/src/lib/net/gethostname.h
Examining data/tor-0.4.5.2-alpha/src/lib/net/socket.h
Examining data/tor-0.4.5.2-alpha/src/lib/net/nettypes.h
Examining data/tor-0.4.5.2-alpha/src/lib/net/network_sys.h
Examining data/tor-0.4.5.2-alpha/src/lib/net/inaddr.h
Examining data/tor-0.4.5.2-alpha/src/lib/net/resolve.c
Examining data/tor-0.4.5.2-alpha/src/lib/net/alertsock.h
Examining data/tor-0.4.5.2-alpha/src/lib/net/gethostname.c
Examining data/tor-0.4.5.2-alpha/src/lib/net/inaddr.c
Examining data/tor-0.4.5.2-alpha/src/lib/wallclock/tor_gettimeofday.c
Examining data/tor-0.4.5.2-alpha/src/lib/wallclock/timeval.h
Examining data/tor-0.4.5.2-alpha/src/lib/wallclock/time_to_tm.c
Examining data/tor-0.4.5.2-alpha/src/lib/wallclock/approx_time.h
Examining data/tor-0.4.5.2-alpha/src/lib/wallclock/time_to_tm.h
Examining data/tor-0.4.5.2-alpha/src/lib/wallclock/tor_gettimeofday.h
Examining data/tor-0.4.5.2-alpha/src/lib/wallclock/approx_time.c
Examining data/tor-0.4.5.2-alpha/src/lib/wallclock/wallclock_sys.h
Examining data/tor-0.4.5.2-alpha/src/lib/defs/time.h
Examining data/tor-0.4.5.2-alpha/src/lib/defs/logging_types.h
Examining data/tor-0.4.5.2-alpha/src/lib/defs/digest_sizes.h
Examining data/tor-0.4.5.2-alpha/src/lib/defs/x25519_sizes.h
Examining data/tor-0.4.5.2-alpha/src/lib/defs/dh_sizes.h
Examining data/tor-0.4.5.2-alpha/src/lib/smartlist_core/smartlist_core.h
Examining data/tor-0.4.5.2-alpha/src/lib/smartlist_core/smartlist_foreach.h
Examining data/tor-0.4.5.2-alpha/src/lib/smartlist_core/smartlist_split.h
Examining data/tor-0.4.5.2-alpha/src/lib/smartlist_core/smartlist_split.c
Examining data/tor-0.4.5.2-alpha/src/lib/smartlist_core/smartlist_core.c
Examining data/tor-0.4.5.2-alpha/src/lib/arch/bytes.h
Examining data/tor-0.4.5.2-alpha/src/lib/container/order.c
Examining data/tor-0.4.5.2-alpha/src/lib/container/namemap_st.h
Examining data/tor-0.4.5.2-alpha/src/lib/container/namemap.h
Examining data/tor-0.4.5.2-alpha/src/lib/container/bloomfilt.c
Examining data/tor-0.4.5.2-alpha/src/lib/container/bitarray.h
Examining data/tor-0.4.5.2-alpha/src/lib/container/namemap.c
Examining data/tor-0.4.5.2-alpha/src/lib/container/smartlist.c
Examining data/tor-0.4.5.2-alpha/src/lib/container/handles.h
Examining data/tor-0.4.5.2-alpha/src/lib/container/smartlist.h
Examining data/tor-0.4.5.2-alpha/src/lib/container/map.c
Examining data/tor-0.4.5.2-alpha/src/lib/container/map.h
Examining data/tor-0.4.5.2-alpha/src/lib/container/order.h
Examining data/tor-0.4.5.2-alpha/src/lib/container/bloomfilt.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_s2k.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_nss_mgt.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_curve25519.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_ope.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_dh.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_hkdf.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_util.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_curve25519.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_dh.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_options_st.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_ed25519.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_util.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rand.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/aes_nss.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_dh_nss.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/digestset.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_pwbox.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_sys.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_cipher.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rand_numeric.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_openssl.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rand.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_nss_mgt.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_openssl_mgt.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_init.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_s2k.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_init.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa_openssl.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/digestset.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa_nss.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/aes.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_ope.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_cipher.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_nss.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/compat_openssl.h
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_openssl_mgt.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_pwbox.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_ed25519.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_dh_openssl.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/aes_openssl.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rand_fast.c
Examining data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_hkdf.c
Examining data/tor-0.4.5.2-alpha/src/lib/string/compat_ctype.c
Examining data/tor-0.4.5.2-alpha/src/lib/string/util_string.c
Examining data/tor-0.4.5.2-alpha/src/lib/string/compat_string.c
Examining data/tor-0.4.5.2-alpha/src/lib/string/scanf.h
Examining data/tor-0.4.5.2-alpha/src/lib/string/compat_ctype.h
Examining data/tor-0.4.5.2-alpha/src/lib/string/printf.c
Examining data/tor-0.4.5.2-alpha/src/lib/string/compat_string.h
Examining data/tor-0.4.5.2-alpha/src/lib/string/scanf.c
Examining data/tor-0.4.5.2-alpha/src/lib/string/util_string.h
Examining data/tor-0.4.5.2-alpha/src/lib/string/printf.h
Examining data/tor-0.4.5.2-alpha/src/lib/string/parse_int.h
Examining data/tor-0.4.5.2-alpha/src/lib/string/parse_int.c
Examining data/tor-0.4.5.2-alpha/src/lib/intmath/cmp.h
Examining data/tor-0.4.5.2-alpha/src/lib/intmath/addsub.h
Examining data/tor-0.4.5.2-alpha/src/lib/intmath/muldiv.c
Examining data/tor-0.4.5.2-alpha/src/lib/intmath/addsub.c
Examining data/tor-0.4.5.2-alpha/src/lib/intmath/bits.c
Examining data/tor-0.4.5.2-alpha/src/lib/intmath/weakrng.c
Examining data/tor-0.4.5.2-alpha/src/lib/intmath/logic.h
Examining data/tor-0.4.5.2-alpha/src/lib/intmath/bits.h
Examining data/tor-0.4.5.2-alpha/src/lib/intmath/weakrng.h
Examining data/tor-0.4.5.2-alpha/src/lib/intmath/muldiv.h
Examining data/tor-0.4.5.2-alpha/src/lib/compress/compress_zlib.h
Examining data/tor-0.4.5.2-alpha/src/lib/compress/compress.c
Examining data/tor-0.4.5.2-alpha/src/lib/compress/compress_none.c
Examining data/tor-0.4.5.2-alpha/src/lib/compress/compress_lzma.h
Examining data/tor-0.4.5.2-alpha/src/lib/compress/compress_buf.c
Examining data/tor-0.4.5.2-alpha/src/lib/compress/compress_zstd.h
Examining data/tor-0.4.5.2-alpha/src/lib/compress/compress_zstd.c
Examining data/tor-0.4.5.2-alpha/src/lib/compress/compress_zlib.c
Examining data/tor-0.4.5.2-alpha/src/lib/compress/compress_none.h
Examining data/tor-0.4.5.2-alpha/src/lib/compress/compress.h
Examining data/tor-0.4.5.2-alpha/src/lib/compress/compress_lzma.c
Examining data/tor-0.4.5.2-alpha/src/lib/compress/compress_sys.h
Examining data/tor-0.4.5.2-alpha/src/lib/osinfo/libc.c
Examining data/tor-0.4.5.2-alpha/src/lib/osinfo/uname.c
Examining data/tor-0.4.5.2-alpha/src/lib/osinfo/libc.h
Examining data/tor-0.4.5.2-alpha/src/lib/osinfo/uname.h
Examining data/tor-0.4.5.2-alpha/src/lib/meminfo/meminfo.h
Examining data/tor-0.4.5.2-alpha/src/lib/meminfo/meminfo.c
Examining data/tor-0.4.5.2-alpha/src/lib/log/util_bug.h
Examining data/tor-0.4.5.2-alpha/src/lib/log/log.c
Examining data/tor-0.4.5.2-alpha/src/lib/log/log.h
Examining data/tor-0.4.5.2-alpha/src/lib/log/util_bug.c
Examining data/tor-0.4.5.2-alpha/src/lib/log/escape.c
Examining data/tor-0.4.5.2-alpha/src/lib/log/win32err.h
Examining data/tor-0.4.5.2-alpha/src/lib/log/ratelim.h
Examining data/tor-0.4.5.2-alpha/src/lib/log/log_sys.c
Examining data/tor-0.4.5.2-alpha/src/lib/log/log_sys.h
Examining data/tor-0.4.5.2-alpha/src/lib/log/ratelim.c
Examining data/tor-0.4.5.2-alpha/src/lib/log/escape.h
Examining data/tor-0.4.5.2-alpha/src/lib/log/win32err.c
Examining data/tor-0.4.5.2-alpha/src/lib/trace/trace.h
Examining data/tor-0.4.5.2-alpha/src/lib/trace/usdt/usdt.h
Examining data/tor-0.4.5.2-alpha/src/lib/trace/lttng/lttng.h
Examining data/tor-0.4.5.2-alpha/src/lib/trace/trace_sys.h
Examining data/tor-0.4.5.2-alpha/src/lib/trace/trace_sys.c
Examining data/tor-0.4.5.2-alpha/src/lib/trace/trace.c
Examining data/tor-0.4.5.2-alpha/src/lib/trace/events.h
Examining data/tor-0.4.5.2-alpha/src/lib/trace/debug.h
Examining data/tor-0.4.5.2-alpha/src/lib/trace/trace_stub.c
Examining data/tor-0.4.5.2-alpha/src/lib/cc/tokpaste.h
Examining data/tor-0.4.5.2-alpha/src/lib/cc/compat_compiler.h
Examining data/tor-0.4.5.2-alpha/src/lib/cc/torint.h
Examining data/tor-0.4.5.2-alpha/src/lib/cc/ctassert.h
Examining data/tor-0.4.5.2-alpha/src/lib/time/time_sys.h
Examining data/tor-0.4.5.2-alpha/src/lib/time/compat_time.c
Examining data/tor-0.4.5.2-alpha/src/lib/time/compat_time.h
Examining data/tor-0.4.5.2-alpha/src/lib/time/tvdiff.h
Examining data/tor-0.4.5.2-alpha/src/lib/time/tvdiff.c
Examining data/tor-0.4.5.2-alpha/src/lib/time/time_sys.c
Examining data/tor-0.4.5.2-alpha/src/lib/geoip/geoip.c
Examining data/tor-0.4.5.2-alpha/src/lib/geoip/country.h
Examining data/tor-0.4.5.2-alpha/src/lib/geoip/geoip.h
Examining data/tor-0.4.5.2-alpha/src/lib/thread/numcpus.c
Examining data/tor-0.4.5.2-alpha/src/lib/thread/threads.h
Examining data/tor-0.4.5.2-alpha/src/lib/thread/numcpus.h
Examining data/tor-0.4.5.2-alpha/src/lib/thread/compat_pthreads.c
Examining data/tor-0.4.5.2-alpha/src/lib/thread/compat_threads.c
Examining data/tor-0.4.5.2-alpha/src/lib/thread/compat_winthreads.c
Examining data/tor-0.4.5.2-alpha/src/lib/thread/thread_sys.h
Examining data/tor-0.4.5.2-alpha/src/win32/orconfig.h
Examining data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna.c
Examining data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna-c64.c
Examining data/tor-0.4.5.2-alpha/src/ext/readpassphrase.c
Examining data/tor-0.4.5.2-alpha/src/ext/strlcat.c
Examining data/tor-0.4.5.2-alpha/src/ext/keccak-tiny/keccak-tiny.h
Examining data/tor-0.4.5.2-alpha/src/ext/keccak-tiny/keccak-tiny-unrolled.c
Examining data/tor-0.4.5.2-alpha/src/ext/getdelim.c
Examining data/tor-0.4.5.2-alpha/src/ext/csiphash.c
Examining data/tor-0.4.5.2-alpha/src/ext/tor_readpassphrase.h
Examining data/tor-0.4.5.2-alpha/src/ext/byteorder.h
Examining data/tor-0.4.5.2-alpha/src/ext/siphash.h
Examining data/tor-0.4.5.2-alpha/src/ext/tinytest_macros.h
Examining data/tor-0.4.5.2-alpha/src/ext/ht.h
Examining data/tor-0.4.5.2-alpha/src/ext/strlcpy.c
Examining data/tor-0.4.5.2-alpha/src/ext/mulodi/mulodi4.c
Examining data/tor-0.4.5.2-alpha/src/ext/trunnel/trunnel.h
Examining data/tor-0.4.5.2-alpha/src/ext/trunnel/trunnel.c
Examining data/tor-0.4.5.2-alpha/src/ext/trunnel/trunnel-impl.h
Examining data/tor-0.4.5.2-alpha/src/ext/tor_queue.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ed25519_ref10.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/crypto_uint64.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_p1p1_to_p3.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/sqrtm1.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_p3_to_cached.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_1.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/d.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_0.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_double_scalarmult.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_p1p1_to_p2.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_frombytes.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_frombytes.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/base2.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/d2.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/api.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/base.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/crypto_hash_sha512.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_p3_dbl.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_isnonzero.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_p3_tobytes.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_p3_to_p2.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_madd.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_scalarmult_base.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_sub.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/sc_muladd.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/blinding.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/randombytes.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_p2_dbl.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/crypto_uint32.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_invert.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/sc.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_precomp_0.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/crypto_int32.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/pow22523.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/pow225521.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_sq.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_pow22523.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_msub.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/sc_reduce.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/open.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/sign.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_msub.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/keyconv.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_sub.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_add.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/crypto_sign.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/crypto_int64.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_neg.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_sq2.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_isnegative.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_copy.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_mul.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/keypair.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_add.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_p2_0.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_add.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_tobytes.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/crypto_verify_32.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_p2_dbl.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_p3_0.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_sub.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_tobytes.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_cmov.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_madd.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-base.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/modm-donna-64bit.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/test-internals.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-32bit.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-64bit-tables.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/modm-donna-32bit.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_donna_tor.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-32bit-tables.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-64bit.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-64bit-sse2.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-64bit-x86.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/regression.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-hash.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-sse2.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-hash-custom.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-basepoint-table.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_tor.c
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-batchverify.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/test-ticks.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-randombytes-custom.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-randombytes.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-portable.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-helpers.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-sse2.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-portable-identify.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-32bit-sse2.h
Examining data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-64bit-x86-32bit.h
Examining data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c
Examining data/tor-0.4.5.2-alpha/src/ext/tinytest.c
Examining data/tor-0.4.5.2-alpha/src/ext/tinytest.h
Examining data/tor-0.4.5.2-alpha/src/ext/timeouts/timeout.c
Examining data/tor-0.4.5.2-alpha/src/ext/timeouts/timeout.h
Examining data/tor-0.4.5.2-alpha/src/ext/timeouts/bench/bench.c
Examining data/tor-0.4.5.2-alpha/src/ext/timeouts/bench/bench-heap.c
Examining data/tor-0.4.5.2-alpha/src/ext/timeouts/bench/bench-llrb.c
Examining data/tor-0.4.5.2-alpha/src/ext/timeouts/bench/bench.h
Examining data/tor-0.4.5.2-alpha/src/ext/timeouts/bench/bench-wheel.c
Examining data/tor-0.4.5.2-alpha/src/ext/timeouts/timeout-bitops.c
Examining data/tor-0.4.5.2-alpha/src/ext/timeouts/lua/timeout-lua.c
Examining data/tor-0.4.5.2-alpha/src/ext/timeouts/test-timeout.c
Examining data/tor-0.4.5.2-alpha/src/ext/timeouts/timeout-debug.h
Examining data/tor-0.4.5.2-alpha/src/core/proto/proto_socks.c
Examining data/tor-0.4.5.2-alpha/src/core/proto/proto_ext_or.h
Examining data/tor-0.4.5.2-alpha/src/core/proto/proto_haproxy.h
Examining data/tor-0.4.5.2-alpha/src/core/proto/proto_ext_or.c
Examining data/tor-0.4.5.2-alpha/src/core/proto/proto_http.h
Examining data/tor-0.4.5.2-alpha/src/core/proto/proto_cell.h
Examining data/tor-0.4.5.2-alpha/src/core/proto/proto_cell.c
Examining data/tor-0.4.5.2-alpha/src/core/proto/proto_socks.h
Examining data/tor-0.4.5.2-alpha/src/core/proto/proto_haproxy.c
Examining data/tor-0.4.5.2-alpha/src/core/proto/proto_control0.h
Examining data/tor-0.4.5.2-alpha/src/core/proto/proto_http.c
Examining data/tor-0.4.5.2-alpha/src/core/proto/proto_control0.c
Examining data/tor-0.4.5.2-alpha/src/core/mainloop/mainloop_pubsub.c
Examining data/tor-0.4.5.2-alpha/src/core/mainloop/mainloop_sys.c
Examining data/tor-0.4.5.2-alpha/src/core/mainloop/netstatus.c
Examining data/tor-0.4.5.2-alpha/src/core/mainloop/mainloop_state_st.h
Examining data/tor-0.4.5.2-alpha/src/core/mainloop/mainloop.c
Examining data/tor-0.4.5.2-alpha/src/core/mainloop/cpuworker.c
Examining data/tor-0.4.5.2-alpha/src/core/mainloop/mainloop_pubsub.h
Examining data/tor-0.4.5.2-alpha/src/core/mainloop/netstatus.h
Examining data/tor-0.4.5.2-alpha/src/core/mainloop/cpuworker.h
Examining data/tor-0.4.5.2-alpha/src/core/mainloop/mainloop_sys.h
Examining data/tor-0.4.5.2-alpha/src/core/mainloop/connection.h
Examining data/tor-0.4.5.2-alpha/src/core/mainloop/mainloop.h
Examining data/tor-0.4.5.2-alpha/src/core/mainloop/periodic.c
Examining data/tor-0.4.5.2-alpha/src/core/mainloop/periodic.h
Examining data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c
Examining data/tor-0.4.5.2-alpha/src/core/crypto/onion_ntor.h
Examining data/tor-0.4.5.2-alpha/src/core/crypto/onion_ntor.c
Examining data/tor-0.4.5.2-alpha/src/core/crypto/relay_crypto.c
Examining data/tor-0.4.5.2-alpha/src/core/crypto/onion_fast.c
Examining data/tor-0.4.5.2-alpha/src/core/crypto/onion_tap.h
Examining data/tor-0.4.5.2-alpha/src/core/crypto/onion_crypto.h
Examining data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.h
Examining data/tor-0.4.5.2-alpha/src/core/crypto/onion_fast.h
Examining data/tor-0.4.5.2-alpha/src/core/crypto/relay_crypto.h
Examining data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c
Examining data/tor-0.4.5.2-alpha/src/core/crypto/onion_tap.c
Examining data/tor-0.4.5.2-alpha/src/core/crypto/onion_crypto.c
Examining data/tor-0.4.5.2-alpha/src/core/or/edge_connection_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/crypt_path.c
Examining data/tor-0.4.5.2-alpha/src/core/or/scheduler_kist.c
Examining data/tor-0.4.5.2-alpha/src/core/or/circuitbuild.c
Examining data/tor-0.4.5.2-alpha/src/core/or/connection_edge.h
Examining data/tor-0.4.5.2-alpha/src/core/or/reasons.c
Examining data/tor-0.4.5.2-alpha/src/core/or/cpath_build_state_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/circuitstats.h
Examining data/tor-0.4.5.2-alpha/src/core/or/connection_or.h
Examining data/tor-0.4.5.2-alpha/src/core/or/circuitstats.c
Examining data/tor-0.4.5.2-alpha/src/core/or/circuituse.c
Examining data/tor-0.4.5.2-alpha/src/core/or/or.h
Examining data/tor-0.4.5.2-alpha/src/core/or/scheduler.c
Examining data/tor-0.4.5.2-alpha/src/core/or/circuitmux_ewma.c
Examining data/tor-0.4.5.2-alpha/src/core/or/command.h
Examining data/tor-0.4.5.2-alpha/src/core/or/circuitpadding_machines.h
Examining data/tor-0.4.5.2-alpha/src/core/or/server_port_cfg_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/port_cfg_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/channelpadding.c
Examining data/tor-0.4.5.2-alpha/src/core/or/scheduler.h
Examining data/tor-0.4.5.2-alpha/src/core/or/extendinfo.c
Examining data/tor-0.4.5.2-alpha/src/core/or/connection_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/onion.c
Examining data/tor-0.4.5.2-alpha/src/core/or/orconn_event.c
Examining data/tor-0.4.5.2-alpha/src/core/or/address_set.h
Examining data/tor-0.4.5.2-alpha/src/core/or/circuitlist.c
Examining data/tor-0.4.5.2-alpha/src/core/or/or_periodic.c
Examining data/tor-0.4.5.2-alpha/src/core/or/circuitpadding_machines.c
Examining data/tor-0.4.5.2-alpha/src/core/or/circuitmux.h
Examining data/tor-0.4.5.2-alpha/src/core/or/circuitlist.h
Examining data/tor-0.4.5.2-alpha/src/core/or/or_sys.h
Examining data/tor-0.4.5.2-alpha/src/core/or/crypt_path_reference_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/circuitmux.c
Examining data/tor-0.4.5.2-alpha/src/core/or/crypt_path_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/orconn_event.h
Examining data/tor-0.4.5.2-alpha/src/core/or/extendinfo.h
Examining data/tor-0.4.5.2-alpha/src/core/or/circuitbuild.h
Examining data/tor-0.4.5.2-alpha/src/core/or/trace_probes_circuit.c
Examining data/tor-0.4.5.2-alpha/src/core/or/protover.h
Examining data/tor-0.4.5.2-alpha/src/core/or/circuit_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/versions.h
Examining data/tor-0.4.5.2-alpha/src/core/or/var_cell_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/policies.c
Examining data/tor-0.4.5.2-alpha/src/core/or/entry_connection_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/cell_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/socks_request_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/or_handshake_certs_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/dos.h
Examining data/tor-0.4.5.2-alpha/src/core/or/or_connection_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/channeltls.c
Examining data/tor-0.4.5.2-alpha/src/core/or/relay.c
Examining data/tor-0.4.5.2-alpha/src/core/or/channel.h
Examining data/tor-0.4.5.2-alpha/src/core/or/half_edge_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/scheduler_vanilla.c
Examining data/tor-0.4.5.2-alpha/src/core/or/or_circuit_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c
Examining data/tor-0.4.5.2-alpha/src/core/or/crypt_path.h
Examining data/tor-0.4.5.2-alpha/src/core/or/protover_rust.c
Examining data/tor-0.4.5.2-alpha/src/core/or/entry_port_cfg_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/channelpadding.h
Examining data/tor-0.4.5.2-alpha/src/core/or/relay_crypto_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/cell_queue_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/circuituse.h
Examining data/tor-0.4.5.2-alpha/src/core/or/protover.c
Examining data/tor-0.4.5.2-alpha/src/core/or/channeltls.h
Examining data/tor-0.4.5.2-alpha/src/core/or/or_handshake_state_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/addr_policy_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/circuitpadding.c
Examining data/tor-0.4.5.2-alpha/src/core/or/status.h
Examining data/tor-0.4.5.2-alpha/src/core/or/onion.h
Examining data/tor-0.4.5.2-alpha/src/core/or/dos.c
Examining data/tor-0.4.5.2-alpha/src/core/or/relay.h
Examining data/tor-0.4.5.2-alpha/src/core/or/circuitmux_ewma.h
Examining data/tor-0.4.5.2-alpha/src/core/or/policies.h
Examining data/tor-0.4.5.2-alpha/src/core/or/reasons.h
Examining data/tor-0.4.5.2-alpha/src/core/or/address_set.c
Examining data/tor-0.4.5.2-alpha/src/core/or/circuitpadding.h
Examining data/tor-0.4.5.2-alpha/src/core/or/ocirc_event.h
Examining data/tor-0.4.5.2-alpha/src/core/or/listener_connection_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/origin_circuit_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/destroy_cell_queue_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/tor_version_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/sendme.h
Examining data/tor-0.4.5.2-alpha/src/core/or/or_periodic.h
Examining data/tor-0.4.5.2-alpha/src/core/or/command.c
Examining data/tor-0.4.5.2-alpha/src/core/or/versions.c
Examining data/tor-0.4.5.2-alpha/src/core/or/channel.c
Examining data/tor-0.4.5.2-alpha/src/core/or/or_sys.c
Examining data/tor-0.4.5.2-alpha/src/core/or/connection_or.c
Examining data/tor-0.4.5.2-alpha/src/core/or/ocirc_event.c
Examining data/tor-0.4.5.2-alpha/src/core/or/sendme.c
Examining data/tor-0.4.5.2-alpha/src/core/or/status.c
Examining data/tor-0.4.5.2-alpha/src/core/or/extend_info_st.h
Examining data/tor-0.4.5.2-alpha/src/core/or/trace_probes_circuit.h
Examining data/tor-0.4.5.2-alpha/src/app/config/tor_cmdline_mode.h
Examining data/tor-0.4.5.2-alpha/src/app/config/config.c
Examining data/tor-0.4.5.2-alpha/src/app/config/config.h
Examining data/tor-0.4.5.2-alpha/src/app/config/statefile.h
Examining data/tor-0.4.5.2-alpha/src/app/config/quiet_level.h
Examining data/tor-0.4.5.2-alpha/src/app/config/quiet_level.c
Examining data/tor-0.4.5.2-alpha/src/app/config/resolve_addr.c
Examining data/tor-0.4.5.2-alpha/src/app/config/or_options_st.h
Examining data/tor-0.4.5.2-alpha/src/app/config/or_state_st.h
Examining data/tor-0.4.5.2-alpha/src/app/config/resolve_addr.h
Examining data/tor-0.4.5.2-alpha/src/app/config/statefile.c
Examining data/tor-0.4.5.2-alpha/src/app/main/risky_options.h
Examining data/tor-0.4.5.2-alpha/src/app/main/risky_options.c
Examining data/tor-0.4.5.2-alpha/src/app/main/subsystem_list.c
Examining data/tor-0.4.5.2-alpha/src/app/main/ntmain.c
Examining data/tor-0.4.5.2-alpha/src/app/main/shutdown.c
Examining data/tor-0.4.5.2-alpha/src/app/main/main.c
Examining data/tor-0.4.5.2-alpha/src/app/main/subsysmgr.h
Examining data/tor-0.4.5.2-alpha/src/app/main/ntmain.h
Examining data/tor-0.4.5.2-alpha/src/app/main/shutdown.h
Examining data/tor-0.4.5.2-alpha/src/app/main/tor_main.c
Examining data/tor-0.4.5.2-alpha/src/app/main/subsysmgr.c
Examining data/tor-0.4.5.2-alpha/src/app/main/main.h
Examining data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.h
Examining data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c
Examining data/tor-0.4.5.2-alpha/src/trunnel/netinfo.h
Examining data/tor-0.4.5.2-alpha/src/trunnel/socks5.h
Examining data/tor-0.4.5.2-alpha/src/trunnel/circpad_negotiation.h
Examining data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_establish_intro.c
Examining data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_introduce1.c
Examining data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_establish_intro.h
Examining data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_common.c
Examining data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_introduce1.h
Examining data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_rendezvous.h
Examining data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_common.h
Examining data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_rendezvous.c
Examining data/tor-0.4.5.2-alpha/src/trunnel/channelpadding_negotiation.c
Examining data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.h
Examining data/tor-0.4.5.2-alpha/src/trunnel/sendme_cell.h
Examining data/tor-0.4.5.2-alpha/src/trunnel/channelpadding_negotiation.h
Examining data/tor-0.4.5.2-alpha/src/trunnel/circpad_negotiation.c
Examining data/tor-0.4.5.2-alpha/src/trunnel/socks5.c
Examining data/tor-0.4.5.2-alpha/src/trunnel/trunnel-local.h
Examining data/tor-0.4.5.2-alpha/src/trunnel/netinfo.c
Examining data/tor-0.4.5.2-alpha/src/trunnel/pwbox.c
Examining data/tor-0.4.5.2-alpha/src/trunnel/pwbox.h
Examining data/tor-0.4.5.2-alpha/src/trunnel/sendme_cell.c
Examining data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c
Examining data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.h
Examining data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c
Examining data/tor-0.4.5.2-alpha/src/feature/dircommon/fp_pair.c
Examining data/tor-0.4.5.2-alpha/src/feature/dircommon/directory.c
Examining data/tor-0.4.5.2-alpha/src/feature/dircommon/dir_connection_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/dircommon/fp_pair.h
Examining data/tor-0.4.5.2-alpha/src/feature/dircommon/directory.h
Examining data/tor-0.4.5.2-alpha/src/feature/dircommon/vote_timing_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/metrics/metrics_sys.h
Examining data/tor-0.4.5.2-alpha/src/feature/metrics/metrics_sys.c
Examining data/tor-0.4.5.2-alpha/src/feature/metrics/metrics.h
Examining data/tor-0.4.5.2-alpha/src/feature/metrics/metrics.c
Examining data/tor-0.4.5.2-alpha/src/feature/stats/connstats.h
Examining data/tor-0.4.5.2-alpha/src/feature/stats/bwhist.c
Examining data/tor-0.4.5.2-alpha/src/feature/stats/connstats.c
Examining data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c
Examining data/tor-0.4.5.2-alpha/src/feature/stats/geoip_stats.c
Examining data/tor-0.4.5.2-alpha/src/feature/stats/rephist.h
Examining data/tor-0.4.5.2-alpha/src/feature/stats/bwhist.h
Examining data/tor-0.4.5.2-alpha/src/feature/stats/predict_ports.h
Examining data/tor-0.4.5.2-alpha/src/feature/stats/bw_array_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/stats/predict_ports.c
Examining data/tor-0.4.5.2-alpha/src/feature/stats/geoip_stats.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/policy_parse.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/parsecommon.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/signing.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/microdesc_parse.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/policy_parse.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/microdesc_parse.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/unparseable.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/authcert_parse.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/sigcommon.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/ns_parse.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/authcert_parse.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/parsecommon.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/ns_parse.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/unparseable.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/authcert_members.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/signing.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirparse/sigcommon.h
Examining data/tor-0.4.5.2-alpha/src/feature/hibernate/hibernate.c
Examining data/tor-0.4.5.2-alpha/src/feature/hibernate/hibernate.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs_common/shared_random_client.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs_common/shared_random_client.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs_common/replaycache.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs_common/replaycache.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirclient/dir_server_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient_modes.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirclient/dlstatus.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirclient/dlstatus.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirclient/download_status_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient_modes.h
Examining data/tor-0.4.5.2-alpha/src/feature/client/transports.h
Examining data/tor-0.4.5.2-alpha/src/feature/client/circpathbias.c
Examining data/tor-0.4.5.2-alpha/src/feature/client/circpathbias.h
Examining data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.h
Examining data/tor-0.4.5.2-alpha/src/feature/client/bridges.c
Examining data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.c
Examining data/tor-0.4.5.2-alpha/src/feature/client/proxymode.c
Examining data/tor-0.4.5.2-alpha/src/feature/client/addressmap.h
Examining data/tor-0.4.5.2-alpha/src/feature/client/transports.c
Examining data/tor-0.4.5.2-alpha/src/feature/client/bridges.h
Examining data/tor-0.4.5.2-alpha/src/feature/client/proxymode.h
Examining data/tor-0.4.5.2-alpha/src/feature/client/dnsserv.h
Examining data/tor-0.4.5.2-alpha/src/feature/client/addressmap.c
Examining data/tor-0.4.5.2-alpha/src/feature/client/dnsserv.c
Examining data/tor-0.4.5.2-alpha/src/feature/api/tor_api_internal.h
Examining data/tor-0.4.5.2-alpha/src/feature/api/tor_api.h
Examining data/tor-0.4.5.2-alpha/src/feature/api/tor_api.c
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/dirlist.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/routerinfo.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/nickname.c
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/nodefamily.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/signed_descriptor_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/routerstatus_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/torcert.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus_sr_info_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/microdesc.c
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/nodefamily_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/microdesc_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/nodelist.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/microdesc.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/node_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/describe.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/desc_store_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/routerinfo_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/nodelist.c
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/routerinfo.c
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/node_select.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/nodefamily.c
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/node_select.c
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/fmt_routerstatus.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/routerset.c
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/authcert.c
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/document_signature_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/fmt_routerstatus.c
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/dirlist.c
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/vote_routerstatus_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/describe.c
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/torcert.c
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/extrainfo_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus_voter_info_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/authority_cert_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/routerset.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/authcert.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/nickname.h
Examining data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_circuitmap.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_opts_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_dos.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_cache.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_ob.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_cache.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_dos.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_intropoint.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_control.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_metrics.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_ob.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_config.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_metrics.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_intropoint.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_ident.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_metrics_entry.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_stats.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_ident.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_circuitmap.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_config.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_metrics_entry.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_circuit.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_control.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hsdir_index_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_stats.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_sys.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.h
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_sys.c
Examining data/tor-0.4.5.2-alpha/src/feature/hs/hs_circuit.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/bridgeauth.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/dirauth_periodic.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/dsigs_parse.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/ns_detached_signatures_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/recommend_pkg.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random_state.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/reachability.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/vote_microdesc_hash_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/dirauth_sys.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/guardfraction.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/keypin.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/voting_schedule.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/dircollate.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/dircollate.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/voting_schedule.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/recommend_pkg.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/dsigs_parse.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random_state.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/dirauth_config.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/dirauth_sys.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/authmode.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/dirauth_config.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/guardfraction.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/keypin.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/voteflags.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/voteflags.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/dirauth_periodic.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/dirauth_options_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/process_descs.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/reachability.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/authmode.h
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/process_descs.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/bridgeauth.c
Examining data/tor-0.4.5.2-alpha/src/feature/dirauth/dirauth_stub.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/router.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/dns_structs.h
Examining data/tor-0.4.5.2-alpha/src/feature/relay/dns.h
Examining data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.h
Examining data/tor-0.4.5.2-alpha/src/feature/relay/selftest.h
Examining data/tor-0.4.5.2-alpha/src/feature/relay/relay_periodic.h
Examining data/tor-0.4.5.2-alpha/src/feature/relay/onion_queue.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/dns.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/routerkeys.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/selftest.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/relay_find_addr.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/router.h
Examining data/tor-0.4.5.2-alpha/src/feature/relay/transport_config.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/relay_sys.h
Examining data/tor-0.4.5.2-alpha/src/feature/relay/relay_sys.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/transport_config.h
Examining data/tor-0.4.5.2-alpha/src/feature/relay/onion_queue.h
Examining data/tor-0.4.5.2-alpha/src/feature/relay/relay_handshake.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/routerkeys.h
Examining data/tor-0.4.5.2-alpha/src/feature/relay/circuitbuild_relay.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/relay_periodic.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/relay_find_addr.h
Examining data/tor-0.4.5.2-alpha/src/feature/relay/routermode.h
Examining data/tor-0.4.5.2-alpha/src/feature/relay/relay_config.h
Examining data/tor-0.4.5.2-alpha/src/feature/relay/routermode.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/circuitbuild_relay.h
Examining data/tor-0.4.5.2-alpha/src/feature/relay/relay_config.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/relay_stub.c
Examining data/tor-0.4.5.2-alpha/src/feature/relay/relay_handshake.h
Examining data/tor-0.4.5.2-alpha/src/feature/keymgt/loadkey.c
Examining data/tor-0.4.5.2-alpha/src/feature/keymgt/loadkey.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_proto.c
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_cmd_args_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_connection_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/btrack_circuit.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/btrack_circuit.c
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_fmt.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_events.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/getinfo_geoip.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/btrack_orconn.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_bootstrap.c
Examining data/tor-0.4.5.2-alpha/src/feature/control/btrack_orconn.c
Examining data/tor-0.4.5.2-alpha/src/feature/control/btrack_orconn_maps.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_proto.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.c
Examining data/tor-0.4.5.2-alpha/src/feature/control/btrack.c
Examining data/tor-0.4.5.2-alpha/src/feature/control/btrack_orconn_cevent.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_events.c
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_hs.c
Examining data/tor-0.4.5.2-alpha/src/feature/control/control.c
Examining data/tor-0.4.5.2-alpha/src/feature/control/getinfo_geoip.c
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_auth.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/btrack_orconn_cevent.c
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c
Examining data/tor-0.4.5.2-alpha/src/feature/control/control.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_hs.h
Examining data/tor-0.4.5.2-alpha/src/feature/control/control_fmt.c
Examining data/tor-0.4.5.2-alpha/src/feature/control/btrack_orconn_maps.c
Examining data/tor-0.4.5.2-alpha/src/feature/control/btrack_sys.h
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.h
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rendparse.c
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.h
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rendcache.h
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rendmid.h
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rendmid.c
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rend_intro_point_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rendcache.c
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rendparse.h
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rend_authorized_client_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rend_encoded_v2_service_descriptor_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rend_service_descriptor_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.h
Examining data/tor-0.4.5.2-alpha/src/feature/dircache/dircache_stub.c
Examining data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c
Examining data/tor-0.4.5.2-alpha/src/feature/dircache/conscache.h
Examining data/tor-0.4.5.2-alpha/src/feature/dircache/cached_dir_st.h
Examining data/tor-0.4.5.2-alpha/src/feature/dircache/dirserv.h
Examining data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.h
Examining data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.h
Examining data/tor-0.4.5.2-alpha/src/feature/dircache/conscache.c
Examining data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c
Examining data/tor-0.4.5.2-alpha/src/feature/dircache/dirserv.c
Examining data/tor-0.4.5.2-alpha/src/test/test_pt.c
Examining data/tor-0.4.5.2-alpha/src/test/fakechans.h
Examining data/tor-0.4.5.2-alpha/src/test/test_cell_queue.c
Examining data/tor-0.4.5.2-alpha/src/test/test_util.c
Examining data/tor-0.4.5.2-alpha/src/test/test_hs_ntor_cl.c
Examining data/tor-0.4.5.2-alpha/src/test/test_util_process.c
Examining data/tor-0.4.5.2-alpha/src/test/test_mainloop.c
Examining data/tor-0.4.5.2-alpha/src/test/test-memwipe.c
Examining data/tor-0.4.5.2-alpha/src/test/test_hs_descriptor.c
Examining data/tor-0.4.5.2-alpha/src/test/test_consdiffmgr.c
Examining data/tor-0.4.5.2-alpha/src/test/test_pubsub_build.c
Examining data/tor-0.4.5.2-alpha/src/test/test_data.c
Examining data/tor-0.4.5.2-alpha/src/test/test_hs_ntor.c
Examining data/tor-0.4.5.2-alpha/src/test/test_voting_schedule.c
Examining data/tor-0.4.5.2-alpha/src/test/test_hs_client.c
Examining data/tor-0.4.5.2-alpha/src/test/test_crypto_openssl.c
Examining data/tor-0.4.5.2-alpha/src/test/test_circuitbuild.c
Examining data/tor-0.4.5.2-alpha/src/test/test_circuitpadding.c
Examining data/tor-0.4.5.2-alpha/src/test/test_process.c
Examining data/tor-0.4.5.2-alpha/src/test/test_circuitlist.c
Examining data/tor-0.4.5.2-alpha/src/test/log_test_helpers.c
Examining data/tor-0.4.5.2-alpha/src/test/test_containers.c
Examining data/tor-0.4.5.2-alpha/src/test/test_relay.c
Examining data/tor-0.4.5.2-alpha/src/test/test_util_format.c
Examining data/tor-0.4.5.2-alpha/src/test/test_nodelist.c
Examining data/tor-0.4.5.2-alpha/src/test/fakecircs.h
Examining data/tor-0.4.5.2-alpha/src/test/test_dir.c
Examining data/tor-0.4.5.2-alpha/src/test/test_crypto.c
Examining data/tor-0.4.5.2-alpha/src/test/test_helpers.h
Examining data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c
Examining data/tor-0.4.5.2-alpha/src/test/test_bwmgt.c
Examining data/tor-0.4.5.2-alpha/src/test/test_hs_dos.c
Examining data/tor-0.4.5.2-alpha/src/test/test_addr.c
Examining data/tor-0.4.5.2-alpha/src/test/test_proto_misc.c
Examining data/tor-0.4.5.2-alpha/src/test/test_connection.h
Examining data/tor-0.4.5.2-alpha/src/test/hs_test_helpers.h
Examining data/tor-0.4.5.2-alpha/src/test/log_test_helpers.h
Examining data/tor-0.4.5.2-alpha/src/test/test_options.c
Examining data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c
Examining data/tor-0.4.5.2-alpha/src/test/test_crypto_rng.c
Examining data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c
Examining data/tor-0.4.5.2-alpha/src/test/test_ptr_slow.c
Examining data/tor-0.4.5.2-alpha/src/test/test_routerkeys.c
Examining data/tor-0.4.5.2-alpha/src/test/bench.c
Examining data/tor-0.4.5.2-alpha/src/test/test_bridges.c
Examining data/tor-0.4.5.2-alpha/src/test/test_channeltls.c
Examining data/tor-0.4.5.2-alpha/src/test/opts_test_helpers.c
Examining data/tor-0.4.5.2-alpha/src/test/test_voting_flags.c
Examining data/tor-0.4.5.2-alpha/src/test/testing_common.c
Examining data/tor-0.4.5.2-alpha/src/test/test_extorport.c
Examining data/tor-0.4.5.2-alpha/src/test/test_sendme.c
Examining data/tor-0.4.5.2-alpha/src/test/test_conscache.c
Examining data/tor-0.4.5.2-alpha/src/test/test_storagedir.c
Examining data/tor-0.4.5.2-alpha/src/test/test_ntor_cl.c
Examining data/tor-0.4.5.2-alpha/src/test/test_token_bucket.c
Examining data/tor-0.4.5.2-alpha/src/test/test_rng.c
Examining data/tor-0.4.5.2-alpha/src/test/test-timers.c
Examining data/tor-0.4.5.2-alpha/src/test/test_buffers.c
Examining data/tor-0.4.5.2-alpha/src/test/test_slow.c
Examining data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c
Examining data/tor-0.4.5.2-alpha/src/test/test_routerlist.c
Examining data/tor-0.4.5.2-alpha/src/test/test_shared_random.c
Examining data/tor-0.4.5.2-alpha/src/test/test_status.c
Examining data/tor-0.4.5.2-alpha/src/test/test_circuitmux.c
Examining data/tor-0.4.5.2-alpha/src/test/test_switch_id.c
Examining data/tor-0.4.5.2-alpha/src/test/test_stats.c
Examining data/tor-0.4.5.2-alpha/src/test/test_process_descs.c
Examining data/tor-0.4.5.2-alpha/src/test/test_tortls.c
Examining data/tor-0.4.5.2-alpha/src/test/test_channelpadding.c
Examining data/tor-0.4.5.2-alpha/src/test/test_confmgr.c
Examining data/tor-0.4.5.2-alpha/src/test/test_oom.c
Examining data/tor-0.4.5.2-alpha/src/test/test_tortls.h
Examining data/tor-0.4.5.2-alpha/src/test/resolve_test_helpers.c
Examining data/tor-0.4.5.2-alpha/src/test/test_dir_common.h
Examining data/tor-0.4.5.2-alpha/src/test/test_entryconn.c
Examining data/tor-0.4.5.2-alpha/src/test/test_crypto_ope.c
Examining data/tor-0.4.5.2-alpha/src/test/test_hs_cache.c
Examining data/tor-0.4.5.2-alpha/src/test/test_options_act.c
Examining data/tor-0.4.5.2-alpha/src/test/test_threads.c
Examining data/tor-0.4.5.2-alpha/src/test/test_procmon.c
Examining data/tor-0.4.5.2-alpha/src/test/test_dns.c
Examining data/tor-0.4.5.2-alpha/src/test/test_periodic_event.c
Examining data/tor-0.4.5.2-alpha/src/test/test_x509.c
Examining data/tor-0.4.5.2-alpha/src/test/test_oos.c
Examining data/tor-0.4.5.2-alpha/src/test/testing_rsakeys.c
Examining data/tor-0.4.5.2-alpha/src/test/test_routerset.c
Examining data/tor-0.4.5.2-alpha/src/test/test_hs_ob.c
Examining data/tor-0.4.5.2-alpha/src/test/test_btrack.c
Examining data/tor-0.4.5.2-alpha/src/test/test_relaycell.c
Examining data/tor-0.4.5.2-alpha/src/test/test_microdesc.c
Examining data/tor-0.4.5.2-alpha/src/test/test_relaycrypt.c
Examining data/tor-0.4.5.2-alpha/src/test/test_scheduler.c
Examining data/tor-0.4.5.2-alpha/src/test/test_address.c
Examining data/tor-0.4.5.2-alpha/src/test/test_workqueue.c
Examining data/tor-0.4.5.2-alpha/src/test/test_tortls_openssl.c
Examining data/tor-0.4.5.2-alpha/src/test/test_hs_metrics.c
Examining data/tor-0.4.5.2-alpha/src/test/resolve_test_helpers.h
Examining data/tor-0.4.5.2-alpha/src/test/test_dispatch.c
Examining data/tor-0.4.5.2-alpha/src/test/rend_test_helpers.c
Examining data/tor-0.4.5.2-alpha/src/test/test_circuitmux_ewma.c
Examining data/tor-0.4.5.2-alpha/src/test/ptr_helpers.c
Examining data/tor-0.4.5.2-alpha/src/test/test_dirvote.c
Examining data/tor-0.4.5.2-alpha/src/test/test_namemap.c
Examining data/tor-0.4.5.2-alpha/src/test/test_hs_service.c
Examining data/tor-0.4.5.2-alpha/src/test/test_protover.c
Examining data/tor-0.4.5.2-alpha/src/test/test_geoip.c
Examining data/tor-0.4.5.2-alpha/src/test/test_handles.c
Examining data/tor-0.4.5.2-alpha/src/test/test_keypin.c
Examining data/tor-0.4.5.2-alpha/src/test/test_pem.c
Examining data/tor-0.4.5.2-alpha/src/test/test_hs_config.c
Examining data/tor-0.4.5.2-alpha/src/test/test_introduce.c
Examining data/tor-0.4.5.2-alpha/src/test/test_circuituse.c
Examining data/tor-0.4.5.2-alpha/src/test/test_circuitstats.c
Examining data/tor-0.4.5.2-alpha/src/test/opts_test_helpers.h
Examining data/tor-0.4.5.2-alpha/src/test/test_controller.c
Examining data/tor-0.4.5.2-alpha/src/test/test_policy.c
Examining data/tor-0.4.5.2-alpha/src/test/test_channel.c
Examining data/tor-0.4.5.2-alpha/src/test/test_hs_cell.c
Examining data/tor-0.4.5.2-alpha/src/test/test.c
Examining data/tor-0.4.5.2-alpha/src/test/test_entrynodes.c
Examining data/tor-0.4.5.2-alpha/src/test/test_confparse.c
Examining data/tor-0.4.5.2-alpha/src/test/test_address_set.c
Examining data/tor-0.4.5.2-alpha/src/test/test_proto_http.c
Examining data/tor-0.4.5.2-alpha/src/test/rend_test_helpers.h
Examining data/tor-0.4.5.2-alpha/src/test/test_proto_haproxy.c
Examining data/tor-0.4.5.2-alpha/src/test/test_dos.c
Examining data/tor-0.4.5.2-alpha/src/test/test_rendcache.c
Examining data/tor-0.4.5.2-alpha/src/test/test_hs.c
Examining data/tor-0.4.5.2-alpha/src/test/test_dir_common.c
Examining data/tor-0.4.5.2-alpha/src/test/test_pubsub_msg.c
Examining data/tor-0.4.5.2-alpha/src/test/rng_test_helpers.c
Examining data/tor-0.4.5.2-alpha/src/test/test_config.c
Examining data/tor-0.4.5.2-alpha/src/test/test_guardfraction.c
Examining data/tor-0.4.5.2-alpha/src/test/test_hs_control.c
Examining data/tor-0.4.5.2-alpha/src/test/test_controller_events.c
Examining data/tor-0.4.5.2-alpha/src/test/test_prob_distr.c
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_iptsv2.c
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_extrainfo.c
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_strops.c
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_hsdescv3.c
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_descriptor.c
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_diff_apply.c
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_http_connect.c
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_consensus.c
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_hsdescv2.c
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_socks.c
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_vrs.c
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzzing.h
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_diff.c
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzzing_common.c
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_microdesc.c
Examining data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_http.c
Examining data/tor-0.4.5.2-alpha/src/test/rng_test_helpers.h
Examining data/tor-0.4.5.2-alpha/src/test/test_helpers.c
Examining data/tor-0.4.5.2-alpha/src/test/test_consdiff.c
Examining data/tor-0.4.5.2-alpha/src/test/test_hs_common.c
Examining data/tor-0.4.5.2-alpha/src/test/test_statefile.c
Examining data/tor-0.4.5.2-alpha/src/test/test_accounting.c
Examining data/tor-0.4.5.2-alpha/src/test/test-process.c
Examining data/tor-0.4.5.2-alpha/src/test/test_compat_libevent.c
Examining data/tor-0.4.5.2-alpha/src/test/fakecircs.c
Examining data/tor-0.4.5.2-alpha/src/test/hs_test_helpers.c
Examining data/tor-0.4.5.2-alpha/src/test/test_router.c
Examining data/tor-0.4.5.2-alpha/src/test/test_bt_cl.c
Examining data/tor-0.4.5.2-alpha/src/test/test_netinfo.c
Examining data/tor-0.4.5.2-alpha/src/test/test_metrics.c
Examining data/tor-0.4.5.2-alpha/src/test/test_connection.c
Examining data/tor-0.4.5.2-alpha/src/test/test_replay.c
Examining data/tor-0.4.5.2-alpha/src/test/test_process_slow.c
Examining data/tor-0.4.5.2-alpha/src/test/test.h
Examining data/tor-0.4.5.2-alpha/src/test/test_socks.c
Examining data/tor-0.4.5.2-alpha/src/test/test_logging.c
Examining data/tor-0.4.5.2-alpha/src/test/test_parsecommon.c
Examining data/tor-0.4.5.2-alpha/src/test/test_checkdir.c
Examining data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c
Examining data/tor-0.4.5.2-alpha/src/test/ptr_helpers.h
Examining data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c
Examining data/tor-0.4.5.2-alpha/src/tools/tor-resolve.c
Examining data/tor-0.4.5.2-alpha/src/tools/tor_runner.c
Examining data/tor-0.4.5.2-alpha/src/tools/tor-print-ed-signing-cert.c
FINAL RESULTS:
data/tor-0.4.5.2-alpha/src/app/config/config.c:1373:9: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
if (chmod(directory, 0750)) {
data/tor-0.4.5.2-alpha/src/app/config/config.c:7363:9: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
if (chmod(fname, 0640)) {
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:1636:18: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
} else if (chown(sandbox_intern_string(address),
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:1663:18: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
} else if (chmod(sandbox_intern_string(address), mode) < 0) {
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:684:14: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
j = (int) readlink("/etc/malloc.conf", b, sizeof b - 1);
data/tor-0.4.5.2-alpha/src/feature/control/control.c:165:9: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
if (chmod(options->ControlPortWriteToFile, 0640)) {
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:1005:9: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
if (chmod(fname, S_IRUSR | S_IWUSR | S_IRGRP) < 0) {
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:1564:9: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
if (chmod(fname, 0640))
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:562:21: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
== SCMP_SYS(chmod)) {
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:563:61: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
rc = seccomp_rule_add_1(ctx, SCMP_ACT_ALLOW, SCMP_SYS(chmod),
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:587:21: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
== SCMP_SYS(chown)) {
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:588:61: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
rc = seccomp_rule_add_1(ctx, SCMP_ACT_ALLOW, SCMP_SYS(chown),
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:1475:31: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
elem = new_element(SCMP_SYS(chmod), file);
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:1488:31: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
elem = new_element(SCMP_SYS(chown), file);
data/tor-0.4.5.2-alpha/src/test/test_config.c:295:7: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
r = chmod(subpath, group_permission);
data/tor-0.4.5.2-alpha/src/test/test_config.c:5481:5: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
chmod(dir, 0700);
data/tor-0.4.5.2-alpha/src/test/test_helpers.c:271:13: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
tt_int_op(chmod(forbidden, 0), OP_EQ, 0);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4479:23: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
tt_int_op(0, OP_EQ, chmod(forbidden, 0700));
data/tor-0.4.5.2-alpha/src/test/test_util.c:4483:23: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
tt_int_op(0, OP_EQ, chmod(forbidden, 0));
data/tor-0.4.5.2-alpha/src/test/test_util.c:4642:10: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
(void) chmod(forbidden, 0700);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4643:10: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
(void) chmod(dir1_forbidden, 0700);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4644:10: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
(void) chmod(dir2_forbidden, 0700);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4645:10: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
(void) chmod(forbidden_forbidden, 0700);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4708:3: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
chmod(forbidden, 0700);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4712:3: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
chmod(forbidden, 0);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4838:21: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
chmod_failed |= chmod(forbidden, 0700);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4840:23: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
chmod_failed |= chmod(dir1_forbidden, 0700);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4842:23: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
chmod_failed |= chmod(dir2_forbidden, 0700);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4844:23: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
chmod_failed |= chmod(forbidden_forbidden, 0700);
data/tor-0.4.5.2-alpha/src/test/testing_common.c:110:9: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
r = chown(temp_dir, getuid(), getgid());
data/tor-0.4.5.2-alpha/scripts/maint/checkspace_tests/dubious.c:74:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(foo,x);
data/tor-0.4.5.2-alpha/scripts/maint/checkspace_tests/dubious.c:75:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(foo,y);
data/tor-0.4.5.2-alpha/src/ext/readpassphrase.c:209:1: [4] (misc) getpass:
This function is obsolete and not portable. It was in SUSv2 but removed by
POSIX.2. What it does exactly varies considerably between systems,
particularly in where its prompt is displayed and where it gets its data
(e.g., /dev/tty, stdin, stderr, etc.). In addition, some implementations
overflow buffers. (CWE-676, CWE-120, CWE-20). Make the specific calls to do
exactly what you want. If you continue to use it, or write your own, be
sure to zero the password as soon as possible to avoid leaving the
cleartext password visible in the process' address space.
getpass(const char *prompt)
data/tor-0.4.5.2-alpha/src/ext/timeouts/timeout-debug.h:18:3: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, fmt "%s", __FILE__, __LINE__, __func__, __VA_ARGS__); \
data/tor-0.4.5.2-alpha/src/ext/timeouts/timeout.c:601:3: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, __VA_ARGS__); \
data/tor-0.4.5.2-alpha/src/ext/tinytest_macros.h:44:2: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf args ; \
data/tor-0.4.5.2-alpha/src/feature/api/tor_api.c:42:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/tor-0.4.5.2-alpha/src/feature/api/tor_api.c:42:18: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/tor-0.4.5.2-alpha/src/feature/api/tor_api.c:112:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(buf, sizeof(buf), "%"PRIu64, (uint64_t)fds[1]);
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:643:37: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define PRINTF(args) STMT_BEGIN if (fprintf args <0) goto err; STMT_END
data/tor-0.4.5.2-alpha/src/lib/cc/compat_compiler.h:42:27: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
__attribute__ ((format(printf, formatIdx, firstArg)))
data/tor-0.4.5.2-alpha/src/lib/cc/compat_compiler.h:48:27: [4] (buffer) scanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
__attribute__ ((format(scanf, formatIdx, firstArg)))
data/tor-0.4.5.2-alpha/src/lib/fs/winlib.c:26:3: [4] (buffer) _tcscat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120).
_tcscat(path, TEXT("\\"));
data/tor-0.4.5.2-alpha/src/lib/fs/winlib.c:27:3: [4] (buffer) _tcscat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120).
_tcscat(path, library_name);
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:149:14: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
SCMP_SYS(access),
data/tor-0.4.5.2-alpha/src/lib/string/printf.c:51:7: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
r = vsnprintf(str, size, format, args);
data/tor-0.4.5.2-alpha/src/lib/string/printf.c:145:9: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = vsnprintf(buf, sizeof(buf), fmt, tmp_args);
data/tor-0.4.5.2-alpha/src/test/test_util.c:7031:13: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
UTIL_TEST(sscanf, TT_FORK),
data/tor-0.4.5.2-alpha/src/tools/tor_runner.c:104:12: [4] (shell) execv:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
int rv = execv(BINDIR "/tor", args);
data/tor-0.4.5.2-alpha/src/app/main/tor_main.c:29:23: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
int restart_count = getenv("TOR_DEBUG_RESTART") ? 1 : 0;
data/tor-0.4.5.2-alpha/src/core/mainloop/mainloop.c:2381:23: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (first_time && getenv("TOR_DEBUG_RESTART")) {
data/tor-0.4.5.2-alpha/src/core/mainloop/mainloop.c:2383:29: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char *sec_str = getenv("TOR_DEBUG_RESTART_AFTER_SECONDS");
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:692:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
p = getenv("MALLOC_OPTIONS");
data/tor-0.4.5.2-alpha/src/ext/timeouts/bench/bench.c:132:31: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
i = (lua_isnoneornil(L, 2))? random() % B->count : (unsigned)luaL_checkinteger(L, 2);
data/tor-0.4.5.2-alpha/src/ext/timeouts/bench/bench.c:133:31: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
t = (lua_isnoneornil(L, 3))? random() % B->timeout_max : (unsigned)luaL_checkinteger(L, 3);
data/tor-0.4.5.2-alpha/src/ext/timeouts/bench/bench.c:143:35: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
size_t i = luaL_optinteger(L, 2, random() % B->count);
data/tor-0.4.5.2-alpha/src/ext/timeouts/bench/bench.c:163:14: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
timeout = random() % B->timeout_max;
data/tor-0.4.5.2-alpha/src/ext/timeouts/test-timeout.c:44:21: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
timeout_t rand64 = random() * (timeout_t)INT_MAX + random();
data/tor-0.4.5.2-alpha/src/ext/timeouts/test-timeout.c:44:53: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
timeout_t rand64 = random() * (timeout_t)INT_MAX + random();
data/tor-0.4.5.2-alpha/src/ext/timeouts/test-timeout.c:201:14: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
int idx = random() % cfg->n_timeouts;
data/tor-0.4.5.2-alpha/src/lib/cc/compat_compiler.h:244:35: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
#define POSSIBLE(expr) ((expr) || getenv("STATIC_ANALYZER_DEADCODE_DUMMY_"))
data/tor-0.4.5.2-alpha/src/lib/fs/path.c:100:14: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
home = getenv("HOME");
data/tor-0.4.5.2-alpha/src/lib/fs/winlib.c:28:10: [3] (misc) LoadLibrary:
Ensure that the full path to the library is specified, or current directory
may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
find library path, if you aren't already.
return LoadLibrary(path);
data/tor-0.4.5.2-alpha/src/lib/lock/compat_mutex_winthreads.c:23:3: [3] (misc) InitializeCriticalSection:
Exceptions can be thrown in low-memory situations. Use
InitializeCriticalSectionAndSpinCount instead.
InitializeCriticalSection(&m->mutex);
data/tor-0.4.5.2-alpha/src/lib/lock/compat_mutex_winthreads.c:28:3: [3] (misc) InitializeCriticalSection:
Exceptions can be thrown in low-memory situations. Use
InitializeCriticalSectionAndSpinCount instead.
InitializeCriticalSection(&m->mutex);
data/tor-0.4.5.2-alpha/src/lib/lock/compat_mutex_winthreads.c:40:3: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection(&m->mutex);
data/tor-0.4.5.2-alpha/src/lib/math/laplace.h:19:50: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
int64_t add_laplace_noise(int64_t signal, double random, double delta_f,
data/tor-0.4.5.2-alpha/src/lib/time/compat_time.c:558:3: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection(&monotime_lock);
data/tor-0.4.5.2-alpha/src/lib/time/compat_time.c:580:5: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection(&monotime_coarse_lock);
data/tor-0.4.5.2-alpha/src/test/rng_test_helpers.c:127:31: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char *provided_seed = getenv("TOR_TEST_RNG_SEED");
data/tor-0.4.5.2-alpha/src/test/test-process.c:33:11: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
getenv("TOR_TEST_ENV"));
data/tor-0.4.5.2-alpha/src/test/test_relaycell.c:449:53: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
streamid_t *streams, int num, int random)
data/tor-0.4.5.2-alpha/src/test/test_relaycell.c:457:9: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (random)
data/tor-0.4.5.2-alpha/src/test/testing_common.c:379:28: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char *skip_tests = getenv("TOR_SKIP_TESTCASES");
data/tor-0.4.5.2-alpha/src/app/config/config.c:2959:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i = atoi(cp);
data/tor-0.4.5.2-alpha/src/app/config/config.c:3476:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int p = atoi(portno);
data/tor-0.4.5.2-alpha/src/app/config/config.c:4239:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char path[MAX_PATH*2+1];
data/tor-0.4.5.2-alpha/src/app/config/config.c:4240:3: [2] (buffer) TCHAR:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TCHAR tpath[MAX_PATH] = {0};
data/tor-0.4.5.2-alpha/src/app/config/config.c:4301:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char defaults_path[MAX_PATH+1];
data/tor-0.4.5.2-alpha/src/app/config/config.c:4306:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char path[MAX_PATH+1];
data/tor-0.4.5.2-alpha/src/app/config/config.c:5472:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/app/config/config.c:5473:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v3_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/app/config/config.c:5631:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/app/config/config.c:5968:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cfg->unix_addr, defaultaddr, strlen(defaultaddr) + 1);
data/tor-0.4.5.2-alpha/src/app/config/config.c:6331:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cfg->unix_addr, unix_socket_path, namelen + 1);
data/tor-0.4.5.2-alpha/src/app/config/config.c:7354:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cookie_file_str, header, strlen(header));
data/tor-0.4.5.2-alpha/src/app/config/config.c:7355:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cookie_file_str+strlen(header), *cookie_out, cookie_len);
data/tor-0.4.5.2-alpha/src/app/config/config.h:227:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN]; /* The bridge's identity key digest. */
data/tor-0.4.5.2-alpha/src/app/config/resolve_addr.c:357:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[256];
data/tor-0.4.5.2-alpha/src/app/config/statefile.c:565:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/app/main/main.c:541:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char progname[256];
data/tor-0.4.5.2-alpha/src/app/main/main.c:738:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[FINGERPRINT_LEN+1];
data/tor-0.4.5.2-alpha/src/app/main/main.c:770:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char output[256];
data/tor-0.4.5.2-alpha/src/app/main/main.c:771:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[S2K_RFC2440_SPECIFIER_LEN+DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/app/main/main.c:823:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hname[256];
data/tor-0.4.5.2-alpha/src/app/main/main.c:1288:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(argv, tor_cfg->argv, tor_cfg->argc*sizeof(char*));
data/tor-0.4.5.2-alpha/src/app/main/main.c:1290:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(argv + tor_cfg->argc, tor_cfg->argv_owned,
data/tor-0.4.5.2-alpha/src/app/main/ntmain.c:486:3: [2] (buffer) TCHAR:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TCHAR tor_exe[MAX_PATH+1];
data/tor-0.4.5.2-alpha/src/app/main/ntmain.c:487:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tor_exe_ascii[MAX_PATH*2+1];
data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c:53:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, (inp), (len)); \
data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c:135:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&hs_ntor_rend_cell_keys_out->rend_cell_auth_mac,
data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c:137:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&hs_ntor_rend_cell_keys_out->ntor_key_seed,
data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c:199:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&hs_ntor_intro_cell_keys_out->enc_key, keystream,CIPHER256_KEY_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c:200:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&hs_ntor_intro_cell_keys_out->mac_key,
data/tor-0.4.5.2-alpha/src/core/crypto/onion_crypto.c:54:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(keys->my_identity, router_get_my_id_digest(), DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_crypto.c:193:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rend_nonce_out, reply_out+DH1024_KEY_LEN, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_crypto.c:201:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rend_nonce_out, reply_out+DIGEST_LEN, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_crypto.c:220:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(keys_out, keys_tmp, keys_out_len);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_crypto.c:221:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rend_nonce_out, keys_tmp+keys_out_len, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_crypto.c:270:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rend_authenticator_out, reply+DH1024_KEY_LEN, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_crypto.c:283:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rend_authenticator_out, reply+DIGEST_LEN, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_crypto.c:300:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(keys_out, keys_tmp, keys_out_len);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_crypto.c:301:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rend_authenticator_out, keys_tmp + keys_out_len, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_fast.c:55:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(handshake_out, s->state, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_fast.c:79:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, key_in, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_fast.c:80:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp+DIGEST_LEN, handshake_reply_out, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_fast.c:86:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(handshake_reply_out+DIGEST_LEN, out, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_fast.c:87:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(key_out, out+DIGEST_LEN, key_out_len);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_fast.c:120:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, handshake_state->state, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_fast.c:121:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp+DIGEST_LEN, handshake_reply_out, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_fast.c:137:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(key_out, out+DIGEST_LEN, key_out_len);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_ntor.c:81:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, (inp), (len)); \
data/tor-0.4.5.2-alpha/src/core/crypto/onion_ntor.c:103:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(state->router_id, router_id, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_ntor.c:104:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&state->pubkey_B, router_key, sizeof(curve25519_public_key_t));
data/tor-0.4.5.2-alpha/src/core/crypto/onion_ntor.c:184:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s.pubkey_X.public_key, onion_skin+DIGEST_LEN+DIGEST256_LEN,
data/tor-0.4.5.2-alpha/src/core/crypto/onion_ntor.c:229:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(handshake_reply_out, s.pubkey_Y.public_key, CURVE25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_ntor.c:276:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s.pubkey_Y.public_key, handshake_reply, CURVE25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_tap.c:57:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char challenge[DH1024_KEY_LEN];
data/tor-0.4.5.2-alpha/src/core/crypto/onion_tap.c:115:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char challenge[TAP_ONIONSKIN_CHALLENGE_LEN];
data/tor-0.4.5.2-alpha/src/core/crypto/onion_tap.c:176:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(handshake_reply_out+DH1024_KEY_LEN, key_material, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_tap.c:179:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(key_out, key_material+DIGEST_LEN, key_out_len);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_tap.c:237:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(key_out, key_material+DIGEST_LEN, key_out_len);
data/tor-0.4.5.2-alpha/src/core/crypto/relay_crypto.c:33:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char integrity[4];
data/tor-0.4.5.2-alpha/src/core/crypto/relay_crypto.c:41:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rh.integrity, integrity, 4);
data/tor-0.4.5.2-alpha/src/core/crypto/relay_crypto.c:61:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&received_integrity, rh.integrity, 4);
data/tor-0.4.5.2-alpha/src/core/crypto/relay_crypto.c:80:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rh.integrity, &received_integrity, 4);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:271:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[64];
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:305:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[96];
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:411:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char peer_buf[256];
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:416:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char extra_buf[128];
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:451:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ed_id_buf[ED25519_BASE64_LEN+1];
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:452:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rsa_id_buf[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:466:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char canonical_addr_buf[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:484:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addr_buf[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:497:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char portbuf[7];
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:549:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char desc_buf[256];
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:1704:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&lis_conn->entry_cfg, &port_cfg->entry_cfg, sizeof(entry_port_cfg_t));
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2100:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&TO_ENTRY_CONN(conn)->entry_cfg, &listener->entry_cfg,
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2549:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2636:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + 2, &portn, 2); /* port */
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2637:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + 4, &ip4addr, 4); /* addr */
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2672:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[4]; /* fields: vers, num methods, method list */
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2845:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[1024];
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2858:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + 4, &addr, 4);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2859:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + 8, &port, 2);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2863:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + 4, tor_addr_to_in6_addr8(&conn->addr), 16);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2864:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + 20, &port, 2);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2936:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[1024];
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2986:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + 2, user, usize);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2988:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + 3 + usize, pass, psize);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:5860:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dbuf[64];
data/tor-0.4.5.2-alpha/src/core/mainloop/cpuworker.c:466:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&job->u.reply, &rpl, sizeof(rpl));
data/tor-0.4.5.2-alpha/src/core/mainloop/cpuworker.c:546:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&req.create_cell, onionskin, sizeof(create_cell_t));
data/tor-0.4.5.2-alpha/src/core/mainloop/cpuworker.c:555:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&job->u.request, &req, sizeof(req));
data/tor-0.4.5.2-alpha/src/core/or/cell_queue_st.h:21:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char body[CELL_MAX_NETWORK_SIZE]; /**< Cell as packed for network. */
data/tor-0.4.5.2-alpha/src/core/or/channel.c:572:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(search.digest, chan->identity_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/or/channel.c:576:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ent->digest, chan->identity_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/or/channel.c:609:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(search.digest, chan->identity_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/or/channel.c:712:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(search.digest, rsa_id_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/or/channel.c:1373:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&chan->ed25519_identity, ed_identity, sizeof(*ed_identity));
data/tor-0.4.5.2-alpha/src/core/or/channel.c:3444:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(search.digest, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/or/channel.h:378:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char identity_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/core/or/channeltls.c:2216:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(chan->conn->handshake_state->authenticated_rsa_peer_id,
data/tor-0.4.5.2-alpha/src/core/or/channeltls.c:2225:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&chan->conn->handshake_state->authenticated_ed25519_peer_id,
data/tor-0.4.5.2-alpha/src/core/or/channeltls.c:2492:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/core/or/channeltls.c:2533:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&sig.sig, auth + authlen - ED25519_SIG_LEN, ED25519_SIG_LEN);
data/tor-0.4.5.2-alpha/src/core/or/channeltls.c:2554:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&chan->conn->handshake_state->authenticated_ed25519_peer_id,
data/tor-0.4.5.2-alpha/src/core/or/channeltls.c:2561:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(chan->conn->handshake_state->authenticated_rsa_peer_id,
data/tor-0.4.5.2-alpha/src/core/or/circuitbuild.c:1130:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ec.node_id, hop->extend_info->identity_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/or/circuitbuild.c:1216:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char keys[CPATH_KEY_MATERIAL_LEN];
data/tor-0.4.5.2-alpha/src/core/or/circuitlist.c:766:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[64];
data/tor-0.4.5.2-alpha/src/core/or/circuitlist.c:786:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[32];
data/tor-0.4.5.2-alpha/src/core/or/circuitlist.c:907:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[32];
data/tor-0.4.5.2-alpha/src/core/or/circuitpadding.c:522:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(mi->histogram, state->histogram,
data/tor-0.4.5.2-alpha/src/core/or/circuitstats.c:470:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(recent_circs, cbt->liveness.timeouts_after_firsthop,
data/tor-0.4.5.2-alpha/src/core/or/circuitstats.c:1552:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char last_live_buf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/core/or/circuitstats.c:1553:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char start_time_buf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/core/or/circuitstats.c:1554:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char now_buf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/core/or/circuituse.c:197:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/core/or/circuituse.c:924:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char created[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/core/or/circuituse.c:934:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dirty_since[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/core/or/circuituse.c:960:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stream_created[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/core/or/circuituse.c:2496:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/core/or/circuituse.c:2735:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fp[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/core/or/circuituse.c:3111:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char old_purpose_desc[80] = "";
data/tor-0.4.5.2-alpha/src/core/or/command.c:640:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char payload[1];
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:443:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char payload[1];
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:511:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char payload[RELAY_PAYLOAD_SIZE];
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:546:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(payload+1, tor_addr_to_in6_addr8(&conn->base_.addr), 16);
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:908:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(payload_out + 5, tor_addr_to_in6_addr8(addr), 16);
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:1477:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:1660:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char query[HS_SERVICE_ADDR_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:2743:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pnl.saddr.v6, dest_in6, sizeof(struct in6_addr));
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:2745:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pnl.daddr.v6, &sin6->sin6_addr, sizeof(struct in6_addr));
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:2930:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp_buf[36], *tbuf, *daddr;
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3240:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char payload[CELL_PAYLOAD_SIZE];
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3362:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char inaddr_buf[REVERSE_LOOKUP_NAME_BUF_LEN];
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3586:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[384];
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3639:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+4, answer, 4); /* address */
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3653:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+4, answer, 4); /* address */
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3660:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+4, answer, 16); /* address */
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3668:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+5, answer, answer_len); /* address */
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3700:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.h:273:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char orig_address[MAX_SOCKS_ADDR_LEN];
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:198:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(conn->identity_digest, rsa_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:282:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tls_state[256];
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:297:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:467:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest+1, src->payload, CELL_PAYLOAD_SIZE);
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:484:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest->payload, src+1, CELL_PAYLOAD_SIZE);
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:536:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(copy->payload, src->payload, copy->payload_len);
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:1246:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data, addr_ptr, addr_size);
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:1248:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data + offset, entry->identity_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:1952:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seen_rsa[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:1953:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expected_rsa[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:1954:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seen_ed[ED25519_BASE64_LEN+1];
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:1955:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expected_ed[ED25519_BASE64_LEN+1];
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:2081:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest_rcvd[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:2231:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[VAR_CELL_MAX_HEADER_SIZE];
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:2321:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hdr[VAR_CELL_MAX_HEADER_SIZE];
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:2391:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[CELL_MAX_NETWORK_SIZE];
data/tor-0.4.5.2-alpha/src/core/or/connection_or.c:2487:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ipv6_buf, in6_addr, 16);
data/tor-0.4.5.2-alpha/src/core/or/crypt_path_st.h:58:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rend_circ_nonce[DIGEST_LEN];/* KH in tor-spec.txt */
data/tor-0.4.5.2-alpha/src/core/or/extend_info_st.h:28:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nickname[MAX_HEX_NICKNAME_LEN+1]; /**< This router's nickname for
data/tor-0.4.5.2-alpha/src/core/or/extend_info_st.h:31:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char identity_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/core/or/extendinfo.c:42:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(info->identity_digest, rsa_id_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/or/extendinfo.c:44:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&info->ed_identity, ed_id, sizeof(ed25519_public_key_t));
data/tor-0.4.5.2-alpha/src/core/or/extendinfo.c:50:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&info->curve25519_onion_key, ntor_key,
data/tor-0.4.5.2-alpha/src/core/or/extendinfo.c:185:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newinfo, info, sizeof(extend_info_t));
data/tor-0.4.5.2-alpha/src/core/or/onion.c:112:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out->onionskin, onionskin, handshake_len);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:217:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out->reply, cell_in->payload, TAP_ONIONSKIN_REPLY_LEN);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:222:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out->reply, cell_in->payload, CREATED_FAST_LEN);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:231:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out->reply, p+2, cell_out->handshake_len);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:292:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out->create_cell.onionskin, cell->onionskin + 16,
data/tor-0.4.5.2-alpha/src/core/or/onion.c:298:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out->create_cell.onionskin, cell->onionskin,
data/tor-0.4.5.2-alpha/src/core/or/onion.c:301:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out->node_id, cell->identity, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:322:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out->onionskin,
data/tor-0.4.5.2-alpha/src/core/or/onion.c:363:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out->node_id, ls->un_legacy_id, 20);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:369:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out->ed_pubkey.pubkey, ls->un_ed25519_id, 32);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:483:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out->created_cell.reply, payload, TAP_ONIONSKIN_REPLY_LEN);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:493:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out->created_cell.reply, payload+2,
data/tor-0.4.5.2-alpha/src/core/or/onion.c:525:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, NTOR_CREATE_MAGIC, 16);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:532:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, cell_in->onionskin, cell_in->handshake_len);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:538:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out->payload + 4, cell_in->onionskin, cell_in->handshake_len);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:575:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out->payload, cell_in->reply, cell_in->handshake_len);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:580:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out->payload + 2, cell_in->reply, cell_in->handshake_len);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:627:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+6, NTOR_CREATE_MAGIC, 16);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:628:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+22, cell_in->create_cell.onionskin, NTOR_ONIONSKIN_LEN);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:630:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+6, cell_in->create_cell.onionskin,
data/tor-0.4.5.2-alpha/src/core/or/onion.c:633:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+6+TAP_ONIONSKIN_CHALLENGE_LEN, cell_in->node_id, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:658:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ls->un_legacy_id, cell_in->node_id, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:668:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ls->un_ed25519_id, cell_in->ed_pubkey.pubkey, 32);
data/tor-0.4.5.2-alpha/src/core/or/onion.c:689:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(create2_cell_body_getarray_handshake_data(cell->create2),
data/tor-0.4.5.2-alpha/src/core/or/onion.c:729:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(payload_out, cell_in->created_cell.reply,
data/tor-0.4.5.2-alpha/src/core/or/onion.c:740:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(payload_out+2, cell_in->created_cell.reply,
data/tor-0.4.5.2-alpha/src/core/or/or.h:412:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char onion_address[REND_SERVICE_ADDRESS_LEN+1];
data/tor-0.4.5.2-alpha/src/core/or/or.h:428:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rend_cookie[REND_COOKIE_LEN];
data/tor-0.4.5.2-alpha/src/core/or/or.h:439:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char onion_address[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/core/or/or.h:444:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char descriptor_id[REND_NUMBER_OF_NON_CONSECUTIVE_REPLICAS][DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/core/or/or.h:447:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char descriptor_cookie[REND_DESC_COOKIE_LEN];
data/tor-0.4.5.2-alpha/src/core/or/or.h:455:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id_fetch[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/core/or/or.h:458:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rend_pk_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/core/or/or.h:642:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char integrity[4]; /**< Used to tell whether cell is corrupted. */
data/tor-0.4.5.2-alpha/src/core/or/or_circuit_st.h:53:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rend_circ_nonce[DIGEST_LEN];/* KH in tor-spec.txt */
data/tor-0.4.5.2-alpha/src/core/or/or_connection_st.h:27:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char identity_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/core/or/policies.c:126:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&newpolicy, p, sizeof(addr_policy_t));
data/tor-0.4.5.2-alpha/src/core/or/policies.c:161:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&newpolicy_ipv4, p, sizeof(addr_policy_t));
data/tor-0.4.5.2-alpha/src/core/or/policies.c:162:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&newpolicy_ipv6, p, sizeof(addr_policy_t));
data/tor-0.4.5.2-alpha/src/core/or/policies.c:1722:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char p1[POLICY_BUF_LEN], p2[POLICY_BUF_LEN];
data/tor-0.4.5.2-alpha/src/core/or/policies.c:1751:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char p1[POLICY_BUF_LEN], p2[POLICY_BUF_LEN];
data/tor-0.4.5.2-alpha/src/core/or/policies.c:1886:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[TOR_ADDR_BUF_LEN + 32];
data/tor-0.4.5.2-alpha/src/core/or/policies.c:2186:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char subnet_status[256];
data/tor-0.4.5.2-alpha/src/core/or/policies.c:2272:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addrbuf[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/core/or/policies.c:2608:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[POLICY_BUF_LEN];
data/tor-0.4.5.2-alpha/src/core/or/policies.c:2775:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(result->entries, entries, sizeof(short_policy_entry_t)*n_entries);
data/tor-0.4.5.2-alpha/src/core/or/policies.c:3119:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[POLICY_BUF_LEN];
data/tor-0.4.5.2-alpha/src/core/or/port_cfg_st.h:38:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unix_addr[FLEXIBLE_ARRAY_MEMBER];
data/tor-0.4.5.2-alpha/src/core/or/relay.c:483:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest+5, src->integrity, 4);
data/tor-0.4.5.2-alpha/src/core/or/relay.c:496:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest->integrity, src+5, 4);
data/tor-0.4.5.2-alpha/src/core/or/relay.c:504:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[64];
data/tor-0.4.5.2-alpha/src/core/or/relay.c:639:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload+RELAY_HEADER_SIZE, payload, payload_len);
data/tor-0.4.5.2-alpha/src/core/or/relay.c:906:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char new_addr[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/core/or/relay.c:1864:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char payload[1];
data/tor-0.4.5.2-alpha/src/core/or/relay.c:2157:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char payload[CELL_PAYLOAD_SIZE];
data/tor-0.4.5.2-alpha/src/core/or/relay.c:3194:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(payload_out+2, &a, 4);
data/tor-0.4.5.2-alpha/src/core/or/relay.c:3199:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(payload_out+2, tor_addr_to_in6_addr8(addr), 16);
data/tor-0.4.5.2-alpha/src/core/or/scheduler.c:712:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/tor-0.4.5.2-alpha/src/core/or/sendme.c:258:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sendme_cell_getarray_data_v1_digest(cell), cell_digest,
data/tor-0.4.5.2-alpha/src/core/or/socks_request_st.h:57:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char address[MAX_SOCKS_ADDR_LEN]; /**< What address did the client ask to
data/tor-0.4.5.2-alpha/src/core/or/status.c:264:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char end_buf[ISO_TIME_LEN + 1];
data/tor-0.4.5.2-alpha/src/core/or/tor_version_st.h:29:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char status_tag[MAX_STATUS_TAG_LEN];
data/tor-0.4.5.2-alpha/src/core/or/tor_version_st.h:33:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char git_tag[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/core/or/versions.c:27:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/core/or/versions.c:131:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[128];
data/tor-0.4.5.2-alpha/src/core/or/versions.c:280:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out->status_tag, cp, eos-cp);
data/tor-0.4.5.2-alpha/src/core/or/versions.c:291:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/core/or/versions.c:303:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out->git_tag, digest, hexlen/2);
data/tor-0.4.5.2-alpha/src/core/or/versions.c:434:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, cached, sizeof(protover_summary_flags_t));
data/tor-0.4.5.2-alpha/src/core/proto/proto_cell.c:59:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hdr[VAR_CELL_MAX_HEADER_SIZE];
data/tor-0.4.5.2-alpha/src/core/proto/proto_control0.c:22:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char header[4];
data/tor-0.4.5.2-alpha/src/core/proto/proto_ext_or.c:29:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hdr[EXT_OR_CMD_HEADER_SIZE];
data/tor-0.4.5.2-alpha/src/core/proto/proto_ext_or.h:21:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char body[FLEXIBLE_ARRAY_MEMBER]; /** Message body */
data/tor-0.4.5.2-alpha/src/core/proto/proto_haproxy.c:37:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addrbuf[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:350:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:519:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open("malloc.out", O_RDWR|O_APPEND);
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:672:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p, b[64];
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:1306:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, ptr, PTR_SIZE);
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:1405:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, ptr, osize);
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:1407:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, ptr, size);
data/tor-0.4.5.2-alpha/src/ext/csiphash.c:82:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&mi, m + i, 8);
data/tor-0.4.5.2-alpha/src/ext/csiphash.c:93:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&mi, m+i, (src_sz-blocks));
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna-c64.c:303:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(origx, x, 5 * sizeof(limb));
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna-c64.c:307:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(origxprime, xprime, sizeof(limb) * 5);
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna-c64.c:312:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(origxprime, xxprime, sizeof(limb) * 5);
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna-c64.c:362:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nqpqx, q, sizeof(limb) * 5);
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna-c64.c:396:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(resultx, nqx, sizeof(limb) * 5);
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna-c64.c:397:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(resultz, nqz, sizeof(limb) * 5);
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna.c:346:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(output, t, sizeof(limb) * 10);
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna.c:430:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(output, t, sizeof(limb) * 10);
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna.c:642:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(origx, x, 10 * sizeof(limb));
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna.c:648:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(origxprime, xprime, sizeof(limb) * 10);
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna.c:665:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(origxprime, xxprime, sizeof(limb) * 10);
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna.c:679:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x3, xxxprime, sizeof(limb) * 10);
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna.c:680:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(z3, zzprime, sizeof(limb) * 10);
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna.c:744:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nqpqx, q, sizeof(limb) * 10);
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna.c:778:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(resultx, nqx, sizeof(limb) * 10);
data/tor-0.4.5.2-alpha/src/ext/curve25519_donna/curve25519-donna.c:779:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(resultz, nqz, sizeof(limb) * 10);
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-32bit.h:403:51: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
curve25519_expand(bignum25519 out, const unsigned char in[32]) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-32bit.h:449:30: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
curve25519_contract(unsigned char out[32], const bignum25519 in) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-32bit.h:509:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+0] |= (unsigned char )(f[i] & 0xff); \
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-32bit.h:510:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+1] = (unsigned char )((f[i] >> 8) & 0xff); \
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-32bit.h:511:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+2] = (unsigned char )((f[i] >> 16) & 0xff); \
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-32bit.h:512:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+3] = (unsigned char )((f[i] >> 24) & 0xff);
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-sse2.h:12:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char u[16];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-sse2.h:917:51: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
curve25519_expand(bignum25519 out, const unsigned char in[32]) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-sse2.h:947:30: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
curve25519_contract(unsigned char out[32], const bignum25519 in) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-sse2.h:1007:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+0] |= (unsigned char )(f[i] & 0xff); \
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-sse2.h:1008:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+1] = (unsigned char )((f[i] >> 8) & 0xff); \
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-sse2.h:1009:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+2] = (unsigned char )((f[i] >> 16) & 0xff); \
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/curve25519-donna-sse2.h:1010:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
out[s+3] = (unsigned char )((f[i] >> 24) & 0xff);
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-batchverify.h:14:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char r[heap_batch_size][16]; /* 128 bit random values */
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-batchverify.h:191:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char batch_point_buffer[3][32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-batchverify.h:195:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char zero[32] = {0};
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-batchverify.h:196:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char point_buffer[3][32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-batchverify.h:200:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(batch_point_buffer[1], point_buffer[1], 32);
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-batchverify.h:210:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char hram[64];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-base.h:180:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
ge25519_pack(unsigned char r[32], const ge25519 *p) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-base.h:182:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char parity[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-base.h:192:60: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
ge25519_unpack_negative_vartime(ge25519 *r, const unsigned char p[32]) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-base.h:193:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char zero[32] = {0};
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-base.h:196:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char check[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-base.h:254:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char slide1[256], slide2[256];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-base.h:336:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char b[64];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-sse2.h:209:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
ge25519_pack(unsigned char r[32], const ge25519 *p) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-sse2.h:211:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char parity[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-sse2.h:222:60: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
ge25519_unpack_negative_vartime(ge25519 *r, const unsigned char p[32]) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-sse2.h:224:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char zero[32] = {0};
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-sse2.h:226:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char check[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-sse2.h:285:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char slide1[256], slide2[256];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna-impl-sse2.h:363:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char b[64];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-donna.h:71:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char hash_512bits[64];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-hash.h:131:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(S->buffer + S->leftover, in, want);
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-hash.h:150:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(S->buffer, in, S->leftover);
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-randombytes.h:10:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buffer[1024];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519-randombytes.h:52:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c, st->buffer + (sizeof(st->buffer) - st->left), use);
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519.h:10:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char ed25519_signature[64];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519.h:11:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char ed25519_public_key[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519.h:12:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char ed25519_secret_key[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519.h:14:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char curved25519_key[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_donna_tor.h:6:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char curved25519_key[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_tor.c:49:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char ed25519_signature[64];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_tor.c:50:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char ed25519_public_key[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_tor.c:51:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char ed25519_secret_key[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_tor.c:87:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char checkR[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_tor.c:254:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, param, 32);
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_tor.c:266:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tweak[64];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_tor.c:282:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out + 32, tweak, 32);
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_tor.c:296:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tweak[64];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_tor.c:297:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char pkcopy[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_tor.c:305:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pkcopy, inp, 32);
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_tor.c:353:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char pkcopy[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_tor.c:358:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pkcopy, pubkey, 32);
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/modm-donna-32bit.h:209:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char work[64] = {0};
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/modm-donna-32bit.h:213:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(work, in, len);
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/modm-donna-32bit.h:261:54: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
expand_raw256_modm(bignum256modm out, const unsigned char in[32]) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/modm-donna-32bit.h:285:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
contract256_modm(unsigned char out[32], const bignum256modm in) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/modm-donna-32bit.h:299:33: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
contract256_window4_modm(signed char r[64], const bignum256modm in) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/modm-donna-32bit.h:335:39: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
contract256_slidingwindow_modm(signed char r[256], const bignum256modm s, int windowsize) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/modm-donna-64bit.h:154:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char work[64] = {0};
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/modm-donna-64bit.h:158:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(work, in, len);
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/modm-donna-64bit.h:190:54: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
expand_raw256_modm(bignum256modm out, const unsigned char in[32]) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/modm-donna-64bit.h:206:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
contract256_modm(unsigned char out[32], const bignum256modm in) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/modm-donna-64bit.h:214:33: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
contract256_window4_modm(signed char r[64], const bignum256modm in) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/modm-donna-64bit.h:241:39: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
contract256_slidingwindow_modm(signed char r[256], const bignum256modm s, int windowsize) {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/test-internals.c:15:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum_raw[32] = {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/test-internals.c:22:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum2_squared_raw[32] = {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/test-internals.c:28:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum3_squared_raw[32] = {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/test-internals.c:40:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum2_squared_raw[32] = {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/test-internals.c:46:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum3_squared_raw[32] = {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/test-internals.c:51:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char result[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/test-internals.c:94:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum_raw[32] = {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/test-internals.c:100:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum_squared_raw[32] = {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/test-internals.c:112:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum_raw[32] = {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/test-internals.c:118:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char max_bignum_squared_raw[32] = {
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/test-internals.c:123:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char result[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/blinding.c:15:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, param, 32);
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/blinding.c:27:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tweak[64];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/blinding.c:28:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char zero[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/blinding.c:36:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out+32, tweak, 32);
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/blinding.c:47:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tweak[64];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/blinding.c:48:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char zero[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/blinding.c:49:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char pkcopy[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/blinding.c:64:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pkcopy, inp, 32);
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/blinding.c:101:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char pkcopy[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/blinding.c:102:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char zero[32] = {0};
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/blinding.c:108:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pkcopy, pubkey, 32);
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_isnegative.c:13:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char s[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_isnonzero.c:12:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char zero[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/fe_isnonzero.c:16:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char s[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_double_scalarmult.c:48:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char aslide[256];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_double_scalarmult.c:49:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char bslide[256];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_scalarmult_base.c:70:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char e[64];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/keypair.c:15:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char seed[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/open.c:17:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char pkcopy[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/open.c:18:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char rcopy[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/open.c:19:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char scopy[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/open.c:20:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char h[64];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/open.c:21:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char rcheck[32];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/sign.c:14:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char nonce[64];
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/sign.c:15:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char hram[64];
data/tor-0.4.5.2-alpha/src/ext/keccak-tiny/keccak-tiny-unrolled.c:27:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x, &val, sizeof(u));
data/tor-0.4.5.2-alpha/src/ext/keccak-tiny/keccak-tiny-unrolled.c:165:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&s->block[s->offset], buf, buf_bytes);
data/tor-0.4.5.2-alpha/src/ext/keccak-tiny/keccak-tiny-unrolled.c:232:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, &s->block[s->offset], indirect_bytes);
data/tor-0.4.5.2-alpha/src/ext/keccak-tiny/keccak-tiny-unrolled.c:327:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, in, sizeof(keccak_state));
data/tor-0.4.5.2-alpha/src/ext/readpassphrase.c:93:24: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
(input = output = open(_PATH_TTY, O_RDWR)) == -1) {
data/tor-0.4.5.2-alpha/src/ext/readpassphrase.c:211:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[_PASSWORD_LEN + 1];
data/tor-0.4.5.2-alpha/src/ext/tinytest.c:86:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char commandname[MAX_PATH+1];
data/tor-0.4.5.2-alpha/src/ext/tinytest.c:144:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[LONGEST_TEST_NAME+256];
data/tor-0.4.5.2-alpha/src/ext/tinytest.c:199:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[1];
data/tor-0.4.5.2-alpha/src/ext/tinytest.c:214:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[1];
data/tor-0.4.5.2-alpha/src/ext/tinytest.c:302:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fullname[LONGEST_TEST_NAME];
data/tor-0.4.5.2-alpha/src/ext/trunnel/trunnel-impl.h:53:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, &v, 8);
data/tor-0.4.5.2-alpha/src/ext/trunnel/trunnel-impl.h:57:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, &v, 4);
data/tor-0.4.5.2-alpha/src/ext/trunnel/trunnel-impl.h:61:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, &v, 2);
data/tor-0.4.5.2-alpha/src/ext/trunnel/trunnel-impl.h:65:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, &v, 1);
data/tor-0.4.5.2-alpha/src/ext/trunnel/trunnel-impl.h:71:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&x, p, 8);
data/tor-0.4.5.2-alpha/src/ext/trunnel/trunnel-impl.h:77:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&x, p, 4);
data/tor-0.4.5.2-alpha/src/ext/trunnel/trunnel-impl.h:83:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&x, p, 2);
data/tor-0.4.5.2-alpha/src/ext/trunnel/trunnel.c:160:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(str->elts_, val, len);
data/tor-0.4.5.2-alpha/src/feature/api/tor_api.c:111:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/tor-0.4.5.2-alpha/src/feature/client/addressmap.c:730:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char valbuf[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/client/addressmap.c:897:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(bytes, addr_bytes, conf->bits / 8);
data/tor-0.4.5.2-alpha/src/feature/client/addressmap.c:922:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/tor-0.4.5.2-alpha/src/feature/client/addressmap.c:926:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rand_bytes[10];
data/tor-0.4.5.2-alpha/src/feature/client/addressmap.c:962:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/client/addressmap.c:1141:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char isotime[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/client/bridges.c:55:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char identity[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/client/bridges.c:402:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(bridge->identity, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/client/bridges.c:410:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&bridge->ed25519_identity, ed_id, sizeof(*ed_id));
data/tor-0.4.5.2-alpha/src/feature/client/bridges.c:552:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b->identity, bridge_line->digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/client/bridges.c:683:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&bridge_addrport.addr, &bridge->addr, sizeof(tor_addr_t));
data/tor-0.4.5.2-alpha/src/feature/client/bridges.c:781:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char resource[10 + HEX_DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/client/bridges.c:782:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(resource, "fp/", 3);
data/tor-0.4.5.2-alpha/src/feature/client/bridges.c:785:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(resource+3+HEX_DIGEST_LEN, ".z", 3);
data/tor-0.4.5.2-alpha/src/feature/client/bridges.c:956:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(bridge->identity,ri->cache_info.identity_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/client/bridges.c:988:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(digest_tmp, b->identity, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/client/circpathbias.c:779:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char payload[CELL_PAYLOAD_SIZE];
data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.c:321:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[256];
data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.c:890:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(guard->identity, rsa_id_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.c:976:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(g->identity, rsa_id_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.c:983:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char old_id[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.c:1574:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rst->exclude_id, exit_id, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.c:2052:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.c:2844:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.c:3605:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.c:3606:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nbuf[MAX_VERBOSE_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.h:87:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nickname[MAX_HEX_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.h:88:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char identity[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:743:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addr[TOR_ADDR_BUF_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/control/control.c:368:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:90:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char decoded[64];
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:138:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char server_hash[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:139:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char server_hash_encoded[HEX_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:140:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char server_nonce[SAFECOOKIE_SERVER_NONCE_LEN];
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:141:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char server_nonce_encoded[(2*SAFECOOKIE_SERVER_NONCE_LEN) + 1];
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:195:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, authentication_cookie, AUTHENTICATION_COOKIE_LEN);
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:196:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + AUTHENTICATION_COOKIE_LEN, client_nonce, client_nonce_len);
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:197:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp + AUTHENTICATION_COOKIE_LEN + client_nonce_len,
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:349:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char received[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/control/control_bootstrap.c:26:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char last_sent_bootstrap_message[BOOTSTRAP_MSG_LEN];
data/tor-0.4.5.2-alpha/src/feature/control/control_bootstrap.c:155:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BOOTSTRAP_MSG_LEN];
data/tor-0.4.5.2-alpha/src/feature/control/control_bootstrap.c:273:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BOOTSTRAP_MSG_LEN];
data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.c:1445:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN], *desc_id = NULL;
data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.c:1608:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char serviceid[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:635:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reasons[64] = "";
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:656:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unk_reason_buf[16];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:693:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char event_tail[160] = "";
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:723:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_USEC_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:791:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reason_buf[64];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:792:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addrport_buf[64];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:796:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:927:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[128];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:928:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ncircs_buf[32] = {0}; /* > 8 + log10(2^32)=10 + 2 */
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:973:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_USEC_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:1002:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_USEC_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:1060:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_USEC_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:1493:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:1494:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:1693:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char format_buf[160];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:1820:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hbuf[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:1826:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAX_VERBOSE_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:2191:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:2263:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/control/control_fmt.c:34:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[256];
data/tor-0.4.5.2-alpha/src/feature/control/control_fmt.c:126:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addr[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/control/control_fmt.c:138:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_USEC_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/control/control_fmt.c:273:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char longname[MAX_VERBOSE_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:115:35: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
smartlist_add(event_names, (char *)control_event_table[i].event_name);
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:234:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, ri_body, router_sig-ri_body);
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:245:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(outp, cp, eol-cp+1);
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:248:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(outp, router_sig, ri_len - (router_sig-ri_body));
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:331:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timebuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:701:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cp, signed_descriptor_get_body(sd),
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:726:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:782:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:893:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:894:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sk_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:992:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:1038:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bridge_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:1177:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:1229:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[128];
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:1364:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cp, signed_descriptor_get_body(&r->cache_info),
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:1374:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cp, signed_descriptor_get_body(&e->cache_info),
data/tor-0.4.5.2-alpha/src/feature/control/control_hs.c:244:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char x25519_b64[128];
data/tor-0.4.5.2-alpha/src/feature/control/control_proto.c:150:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(outp, data, n_to_copy);
data/tor-0.4.5.2-alpha/src/feature/control/control_proto.c:155:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(outp, data, end-data);
data/tor-0.4.5.2-alpha/src/feature/dirauth/bridgeauth.c:30:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char published[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/bridgeauth.c:32:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fingerprint[FINGERPRINT_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.h:39:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char node_id[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.h:40:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char node_hex[MAX_HEX_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dircollate.c:88:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ent->d, rsa_sha1, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirauth/dircollate.c:89:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ent->d + DIGEST_LEN, ed25519, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:151:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, cert, sizeof(authority_cert_t));
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:227:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fingerprint[FINGERPRINT_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:228:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:253:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char published[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:254:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char va[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:255:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fu[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:256:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vu[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:309:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b64_digest_bw_file[BASE64_DIGEST256_LEN+1] = {0};
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:377:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fpbuf[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:410:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char signing_key_fingerprint[FINGERPRINT_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:491:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mstr[64];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:493:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dstr[64];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:509:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BASE64_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:737:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(best_alt_orport_out, most_alt_orport, sizeof(tor_addr_port_t));
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:751:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:761:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(microdesc_digest256_out, best_microdesc_digest, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:987:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out_string, param, cur_param_len);
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:1640:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char va_buf[ISO_TIME_LEN+1], fu_buf[ISO_TIME_LEN+1],
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:1732:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fingerprint[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:1733:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char votedigest[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:1815:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char conflict[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:1816:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unknown[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:1942:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char microdesc_digest[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2040:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs_out.identity_digest, current_rsa_id, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2041:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs_out.descriptor_digest, rs->status.descriptor_digest,
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2203:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2204:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dd[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2214:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2215:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dd[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2263:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char m[BASE64_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2367:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2368:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fingerprint[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2369:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char signing_key_fingerprint[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2610:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char voter_identity[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2681:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4096];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2697:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sk[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2698:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2759:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char va_buf[ISO_TIME_LEN+1], fu_buf[ISO_TIME_LEN+1],
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2761:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2786:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[HEX_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3220:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf1[ISO_TIME_LEN+1], tbuf2[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3235:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf1[ISO_TIME_LEN+1], tbuf2[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3418:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char legacy_dbuf[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3483:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pending_consensuses, pending, sizeof(pending));
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3852:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char kbuf[CURVE25519_BASE64_PADDED_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3883:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char idbuf[ED25519_BASE64_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3937:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d64[BASE64_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:4023:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:4561:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char identity_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:4562:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char signing_key_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:4671:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(vrs->ed25519_id,
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:4736:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:4807:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(v3_out->bw_file_digest256, bw_file_digest256, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:4811:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(voter->identity_digest, identity_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirauth/dsigs_parse.c:168:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dsigs_parse.c:169:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sk_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dsigs_parse.c:239:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sig->identity_digest, id_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirauth/dsigs_parse.c:240:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sig->signing_key_digest, sk_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirauth/guardfraction.c:68:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char guard_id[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/keypin.c:320:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[80];
data/tor-0.4.5.2-alpha/src/feature/dirauth/keypin.c:321:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/keypin.c:356:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[JOURNAL_LINE_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/process_descs.c:104:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/process_descs.c:163:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fp[FINGERPRINT_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/process_descs.c:294:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/process_descs.c:379:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pk.pubkey, vrs->ed25519_id, ED25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirauth/process_descs.c:655:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char annotation_buf[ROUTER_ANNOTATION_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/process_descs.c:656:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char time_buf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/reachability.c:81:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addrstr[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/reachability.c:162:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addrstr[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:195:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char received_hashed_reveal[sizeof(commit->hashed_reveal)];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:243:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b64_decoded[SR_COMMIT_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:295:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b64_decoded[SR_REVEAL_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:349:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SR_REVEAL_LEN] = {0};
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:356:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + offset, commit->random_number,
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:376:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SR_COMMIT_LEN] = {0};
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:385:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + offset, commit->hashed_reveal,
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:427:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[DIGEST256_LEN + SR_SRV_MSG_LEN] = {0};
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:434:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(msg, SR_SRV_TOKEN, SR_SRV_TOKEN_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:440:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(msg + offset, hashed_reveals, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:443:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(msg + offset, previous_srv->value, sizeof(previous_srv->value));
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:454:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char srv_hash_encoded[SR_SRV_VALUE_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:518:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char srv_hash_encoded[SR_SRV_VALUE_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:861:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char encoded[SR_SRV_VALUE_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:891:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:997:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hashed_reveals[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:1026:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *value, digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:1095:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rsa_identity[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.h:80:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rsa_identity[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.h:81:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rsa_identity_hex[HEX_DIGEST_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.h:88:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hashed_reveal[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.h:90:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char encoded_commit[SR_COMMIT_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.h:101:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char encoded_reveal[SR_REVEAL_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random_state.c:156:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random_state.c:546:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char encoded[SR_SRV_VALUE_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random_state.c:709:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random_state.c:1167:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/voting_schedule.c:73:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:207:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, diff->from_sha3, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:249:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ent->from_sha3, from_sha3, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:250:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ent->target_sha3, target_sha3, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:276:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(search.from_sha3, from_sha3, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:312:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(search.from_sha3, from_sha3, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:421:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hexdigest[HEX_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:461:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char formatted_time[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:667:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(search.from_sha3, digest, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:688:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hex[HEX_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:1653:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char description[128];
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:1859:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char va_str[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:1860:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vu_str[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:1861:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fu_str[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:1874:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:105:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datebuf[RFC1123_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:133:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[RFC1123_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:158:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expbuf[RFC1123_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:517:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timestamp[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1440:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/dircache/dirserv.c:189:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&new_networkstatus->digests, digests, sizeof(common_digests_t));
data/tor-0.4.5.2-alpha/src/feature/dircache/dirserv.c:190:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&new_networkstatus->digest_sha3_as_signed, sha3_as_signed,
data/tor-0.4.5.2-alpha/src/feature/dircache/dirserv.c:333:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(spooled->digest, digest, digestlen);
data/tor-0.4.5.2-alpha/src/feature/dirclient/dir_server_st.h:33:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN]; /**< Digest of identity key. */
data/tor-0.4.5.2-alpha/src/feature/dirclient/dir_server_st.h:34:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v3_identity_digest[DIGEST_LEN]; /**< Digest of v3 (authority only,
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:416:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(or_diff_from, v->digest_sha3_as_signed, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:429:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(or_diff_from, cd->digest_sha3_as_signed, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:438:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hex[HEX_DIGEST256_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:778:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:986:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&req->or_addr_port, p, sizeof(*p));
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:997:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&req->dir_addr_port, p, sizeof(*p));
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1007:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(req->digest, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1329:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(conn->identity_digest, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1538:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char proxystring[256];
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1539:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hoststring[128];
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1542:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char decorated_address[128];
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1547:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char request[8192];
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1576:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[RFC1123_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1809:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1810:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char time_buf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:2848:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char service_id[REND_SERVICE_ID_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:3158:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:3221:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BASE64_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.h:106:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:186:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(prev, result, a_size);
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:556:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&iter->last_hash, &iter->hash, sizeof(cdline_t));
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:594:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:750:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:868:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char diff_line[128];
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:876:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(diff_line, diff_cdline->s, diff_cdline->len);
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1071:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cons1_hash_hex[HEX_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1072:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cons2_hash_hex[HEX_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1079:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[160];
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1112:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cons1_hash[DIGEST256_LEN], cons2_hash[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1167:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(digest1_out, cons1_hash, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1170:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(digest2_out, cons2_hash, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1198:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char e_cons1_hash[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1199:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char e_cons2_hash[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1208:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hex_digest1[HEX_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1209:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char e_hex_digest1[HEX_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1249:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hex_digest2[HEX_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1250:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char e_hex_digest2[HEX_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1328:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, cdline->s, cdline->len);
data/tor-0.4.5.2-alpha/src/feature/dircommon/dir_connection_st.h:57:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char identity_digest[DIGEST_LEN]; /**< Hash of the public RSA key for
data/tor-0.4.5.2-alpha/src/feature/dircommon/directory.c:368:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datestr[RFC1123_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dircommon/fp_pair.c:93:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(search.key), key, sizeof(*key));
data/tor-0.4.5.2-alpha/src/feature/dircommon/fp_pair.c:100:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(resolve->key), key, sizeof(*key));
data/tor-0.4.5.2-alpha/src/feature/dircommon/fp_pair.c:123:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(k.first, first, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dircommon/fp_pair.c:124:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(k.second, second, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dircommon/fp_pair.c:142:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(search.key), key, sizeof(*key));
data/tor-0.4.5.2-alpha/src/feature/dircommon/fp_pair.c:162:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(k.first, first, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dircommon/fp_pair.c:163:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(k.second, second, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dircommon/fp_pair.c:184:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(search.key), key, sizeof(*key));
data/tor-0.4.5.2-alpha/src/feature/dircommon/fp_pair.c:293:16: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (key_out) memcpy(key_out, &((*iter)->key), sizeof(fp_pair_t));
data/tor-0.4.5.2-alpha/src/feature/dircommon/fp_pair.h:14:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char first[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dircommon/fp_pair.h:15:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char second[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirparse/authcert_parse.c:44:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirparse/authcert_parse.c:46:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fp_declared[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirparse/authcert_parse.c:93:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cert->cache_info.signed_descriptor_digest, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirparse/authcert_parse.c:193:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cert->cache_info.signed_descriptor_body, s, len);
data/tor-0.4.5.2-alpha/src/feature/dirparse/microdesc_parse.c:326:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(md_digest, md->digest, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirparse/ns_parse.c:315:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timebuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/dirparse/ns_parse.c:1130:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&ns->digests, &ns_digests, sizeof(ns_digests));
data/tor-0.4.5.2-alpha/src/feature/dirparse/ns_parse.c:1131:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&ns->digest_sha3_as_signed, sha3_as_signed, sizeof(sha3_as_signed));
data/tor-0.4.5.2-alpha/src/feature/dirparse/ns_parse.c:1361:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(voter->vote_digest, ns_digests.d[DIGEST_SHA1], DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirparse/ns_parse.c:1581:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char declared_identity[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirparse/ns_parse.c:1629:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sig->identity_digest, v->identity_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirparse/parsecommon.c:172:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *args[MAX_ARGS];
data/tor-0.4.5.2-alpha/src/feature/dirparse/parsecommon.c:198:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ebuf[128];
data/tor-0.4.5.2-alpha/src/feature/dirparse/parsecommon.c:284:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ebuf[128];
data/tor-0.4.5.2-alpha/src/feature/dirparse/policy_parse.c:57:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[TOR_ADDR_BUF_LEN*2 + 32];
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:275:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char raw_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:400:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[128];
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:496:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(signed_body, prepend_annotations, prepend_len);
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:507:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(signed_body, start_of_annotations, end-start_of_annotations);
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:511:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(router->cache_info.signed_descriptor_digest, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:792:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:972:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[128];
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:1022:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(extrainfo->cache_info.signed_descriptor_digest, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirparse/signing.c:95:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+s_len, sig, sig_len+1);
data/tor-0.4.5.2-alpha/src/feature/dirparse/unparseable.c:151:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ent->digest_sha256, digest_sha256, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirparse/unparseable.c:265:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST256_LEN], content_digest[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/dirparse/unparseable.c:370:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ent->digest_sha256, digest, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirparse/unparseable.c:503:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest_sha256_hex[HEX_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/hibernate/hibernate.c:167:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[64];
data/tor-0.4.5.2-alpha/src/feature/hibernate/hibernate.c:602:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/hibernate/hibernate.c:615:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/hibernate/hibernate.c:633:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/hibernate/hibernate.c:634:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/hibernate/hibernate.c:672:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/hibernate/hibernate.c:673:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/hibernate/hibernate.c:674:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf3[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/hibernate/hibernate.c:675:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf4[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/hibernate/hibernate.c:773:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf1[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/hibernate/hibernate.c:774:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf2[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/hibernate/hibernate.c:1067:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/hibernate/hibernate.c:1101:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cache.c:260:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key_b64[BASE64_DIGEST256_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cache.c:795:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key_b64[BASE64_DIGEST256_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cache.c:918:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key_b64[BASE64_DIGEST256_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:57:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(mac_msg, encoded_cell, encoded_cell_len);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:61:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(mac_msg + offset, encrypted, (encrypted_len - DIGEST256_LEN));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:97:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(client_pk->public_key, encrypted_section, CURVE25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:271:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(trn_cell_introduce_encrypted_getarray_onion_key(cell), onion_pk,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:372:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(encrypted, data->client_kp->pubkey.public_key,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:386:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(encrypted + offset, mac, sizeof(mac));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:392:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(trn_cell_introduce1_getarray_encrypted(cell),
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:425:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(trn_cell_introduce_encrypted_getarray_rend_cookie(enc_cell),
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:456:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(trn_cell_introduce1_getarray_auth_key(cell),
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:473:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(trn_cell_introduce1_getarray_legacy_key_id(cell),
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:662:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(auth_key_ptr, ip->auth_key_kp.pubkey.pubkey, auth_key_len);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:690:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(handshake_ptr, mac, sizeof(mac));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:720:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sig_ptr, sig.sig, sig_len);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:882:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&data->client_pk.public_key, encrypted_section,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:930:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data->onion_pk.public_key,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:986:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(trn_cell_rendezvous1_getarray_rendezvous_cookie(cell),
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:991:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(trn_cell_rendezvous1_getarray_handshake_info(cell),
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:1055:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out, rendezvous_cookie, HS_REND_COOKIE_LEN);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:1116:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(handshake_info,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_circuit.c:119:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char keys[DIGEST_LEN+CPATH_KEY_MATERIAL_LEN];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_circuit.c:275:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(handshake_info, server_pk->public_key, CURVE25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_circuit.c:276:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(handshake_info + CURVE25519_PUBKEY_LEN, keys->rend_cell_auth_mac,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.c:200:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char base64_blinded_pk[ED25519_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.c:283:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char onion_address[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.c:383:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char base64_blinded_pubkey[ED25519_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.c:432:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char base64_blinded_pubkey[ED25519_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.c:600:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char onion_address[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.c:884:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char onion_address[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.c:1250:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&server_pk, handshake_info, CURVE25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.c:1602:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char priv_key_b32[BASE32_NOPAD_LEN(CURVE25519_PUBKEY_LEN)+1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.h:72:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char onion_address[HS_SERVICE_ADDR_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:607:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char period_stuff[sizeof(uint64_t)*2];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:638:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(srv_out, cached_disaster_srv[0], DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:641:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(srv_out, cached_disaster_srv[1], DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:653:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(srv_out, cached_disaster_srv[replace_idx], DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:702:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nonce, HS_KEYBLIND_NONCE_PREFIX, HS_KEYBLIND_NONCE_PREFIX_LEN);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:740:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data[HS_SERVICE_ADDR_CHECKSUM_INPUT_LEN];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:743:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data, HS_SERVICE_ADDR_CHECKSUM_PREFIX,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:746:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data + offset, key->pubkey, ED25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:771:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(addr_out, key->pubkey, ED25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:773:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(addr_out + offset, checksum, HS_SERVICE_ADDR_CHECKSUM_LEN_USED);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:795:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(key_out->pubkey, address, ED25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:800:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(checksum_out, address + offset, HS_SERVICE_ADDR_CHECKSUM_LEN_USED);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:924:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char decoded[HS_SERVICE_ADDR_LEN];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:1025:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char address[HS_SERVICE_ADDR_LEN];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:1173:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[sizeof(uint64_t)*3];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:1216:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char period_stuff[sizeof(uint64_t)*2];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:1242:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sr_value, current_srv->value, sizeof(current_srv->value));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:1260:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sr_value, previous_srv->value, sizeof(previous_srv->value));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:1501:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hsdir_id_base32[BASE32_DIGEST_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:1721:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char legacy_id[DIGEST_LEN] = {0};
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:1768:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ed25519_pk.pubkey,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.h:163:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unix_addr[FLEXIBLE_ARRAY_MEMBER];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_control.c:33:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char onion_address[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_control.c:69:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char onion_address[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_control.c:70:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char base64_blinded_pk[ED25519_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_control.c:92:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char onion_address[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_control.c:93:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char base64_blinded_pk[ED25519_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_control.c:114:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char base64_blinded_pk[ED25519_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_control.c:138:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char base64_blinded_pk[ED25519_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_control.c:162:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char onion_address[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_control.c:182:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char onion_address[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_control.c:183:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char base64_blinded_pk[ED25519_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:213:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(secret_input, secret_data, secret_data_len);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:216:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(secret_input + offset, desc->subcredential.subcred, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:301:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(key_out, kdf_key, key_len);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:303:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iv_out, kdf_key + offset, iv_len);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:305:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(mac_out, kdf_key + offset, mac_len);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:365:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *key_str, b64_cert[256], *encoded = NULL;
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:403:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key_b64[CURVE25519_BASE64_PADDED_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:429:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key_b64[CURVE25519_BASE64_PADDED_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:548:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(padded, plaintext, plaintext_len);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:649:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(final_blob, salt, sizeof(salt));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:652:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(final_blob + offset, encrypted, encrypted_len);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:655:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(final_blob + offset, mac, sizeof(mac));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:678:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char client_id_b64[HS_DESC_CLIENT_ID_LEN * 2];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:679:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iv_b64[CIPHER_IV_LEN * 2];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:680:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char encrypted_cookie_b64[HS_DESC_ENCRYPED_COOKIE_LEN * 2];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:810:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ephemeral_key_base64[CURVE25519_BASE64_PADDED_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:910:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(secret_data,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:913:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(secret_data + ED25519_PUBKEY_LEN,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:921:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(secret_data,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:1075:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ed_sig_b64[ED25519_SIG_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:1293:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expiration_str[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:2101:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&desc->signing_pubkey, &desc->signing_key_cert->signed_key,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:2103:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&desc->blinded_pubkey, &desc->signing_key_cert->signing_key,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:2918:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(client_out->client_id, keystream, HS_DESC_CLIENT_ID_LEN);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_ident.c:40:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ident, src, sizeof(*ident));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_ident.c:50:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ident, src, sizeof(*ident));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_intropoint.c:71:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(auth_key_out->pubkey, key_array, auth_key_len);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_intropoint.c:116:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sig_struct.sig, sig_array, cell->sig_len);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_intropoint.c:665:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b64_key[ED25519_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_metrics.c:27:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[8];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_metrics.c:39:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[128];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_ob.c:105:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char address[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_ob.c:341:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&subcreds[idx++], &service->desc_current->desc->subcredential,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_ob.c:343:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&subcreds[idx++], &service->desc_next->desc->subcredential,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:293:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[HEX_DIGEST_LEN + 2];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:1359:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(client_dup->client_pk.public_key,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:1781:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&superencrypted->auth_ephemeral_pubkey,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:2257:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b64_digest[BASE64_DIGEST_LEN+1] = {0};
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:2495:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt_time[ISO_TIME_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:3026:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt_next_time[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:3059:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b64_digest[BASE64_DIGEST_LEN+1] = {0};
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:3523:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[128] = {0};
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:3646:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version_str[4] = {0};
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.h:303:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char onion_address[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/hs_common/shared_random_client.c:27:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char srv_hash_encoded[SR_SRV_VALUE_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/hs_common/shared_random_client.c:93:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SR_SRV_VALUE_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/keymgt/loadkey.c:148:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(prompt2 + p2len - sizeof(msg), msg, sizeof(msg));
data/tor-0.4.5.2-alpha/src/feature/keymgt/loadkey.c:191:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pwbuf[256];
data/tor-0.4.5.2-alpha/src/feature/keymgt/loadkey.c:240:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out->seckey, secret, ED25519_SECKEY_LEN);
data/tor-0.4.5.2-alpha/src/feature/keymgt/loadkey.c:262:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pwbuf0[256];
data/tor-0.4.5.2-alpha/src/feature/keymgt/loadkey.c:406:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tag[8];
data/tor-0.4.5.2-alpha/src/feature/keymgt/loadkey.c:513:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&keypair->pubkey, &pubkey_tmp, sizeof(pubkey_tmp));
data/tor-0.4.5.2-alpha/src/feature/metrics/metrics.c:52:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[RFC1123_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/authcert.c:214:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/authcert.c:267:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, sk_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/authcert.c:686:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id_digest_str[2*DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/authcert.c:687:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sk_digest_str[2*DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/authcert.c:746:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hex_digest[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/authcert.c:875:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id_digest_str[2*DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/authcert.c:876:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sk_digest_str[2*DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/authority_cert_st.h:27:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char signing_key_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/describe.c:70:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hex_digest[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/describe.c:86:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ed_base64[ED25519_BASE64_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/describe.c:101:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addr_str[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/describe.c:118:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addr_str[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/describe.c:139:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[NODE_DESC_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/describe.c:162:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[NODE_DESC_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/describe.c:205:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[NODE_DESC_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/describe.c:226:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[NODE_DESC_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/describe.c:279:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hex_digest[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/dirlist.c:335:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ent->digest, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/dirlist.c:337:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ent->v3_identity_digest, v3_auth_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/dirlist.c:348:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ent->fake_status.identity_digest, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/document_signature_st.h:18:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char identity_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/document_signature_st.h:20:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char signing_key_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/extrainfo_st.h:23:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nickname[MAX_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/fmt_routerstatus.c:51:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char published[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/fmt_routerstatus.c:52:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char identity64[BASE64_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/fmt_routerstatus.c:53:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest64[BASE64_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/fmt_routerstatus.c:124:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/fmt_routerstatus.c:125:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dd[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/fmt_routerstatus.c:142:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rl_d[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/fmt_routerstatus.c:143:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rs_d[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/fmt_routerstatus.c:144:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/fmt_routerstatus.c:193:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ed_b64[BASE64_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/microdesc.c:113:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char relay_hexdigest[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/microdesc.c:164:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char relay_hexdigest[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/microdesc.c:212:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/microdesc.c:213:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char annotation[ISO_TIME_LEN+32];
data/tor-0.4.5.2-alpha/src/feature/nodelist/microdesc.c:505:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[65];
data/tor-0.4.5.2-alpha/src/feature/nodelist/microdesc.c:950:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(search.digest, d, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/microdesc_st.h:62:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:226:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:462:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:791:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(digest_tmp, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:1214:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf1[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:1215:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf2[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:1216:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf3[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:1726:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&rs_new->dl_status, &rs_old->dl_status,sizeof(download_status_t));
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:1865:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:1866:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dbuf[64];
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:2336:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummy[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:2392:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs->identity_digest, node->identity, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:2393:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs->descriptor_digest, ri->cache_info.signed_descriptor_digest,
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:2656:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:2692:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus_voter_info_st.h:18:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char identity_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus_voter_info_st.h:22:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char legacy_id_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus_voter_info_st.h:28:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vote_digest[DIGEST_LEN]; /**< Digest of this voter's vote, as signed. */
data/tor-0.4.5.2-alpha/src/feature/nodelist/node_select.c:877:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fake_node.identity, router->cache_info.identity_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/node_st.h:46:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char identity[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodefamily.c:175:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr+1, cp, strlen(cp));
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodefamily.c:179:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest_buf[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodefamily.c:180:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nn_buf[MAX_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodefamily.c:185:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr+1, digest_buf, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodefamily.c:209:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr+1, rsa_id_self, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodefamily.c:244:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp2->family_members, tmp->family_members,
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodefamily.c:388:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[HEX_DIGEST_LEN+2];
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodelist.c:200:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&search.identity, identity_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodelist.c:251:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(node->identity, identity_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodelist.c:326:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ed_id[BASE32_BUFSIZE(sizeof(key->pubkey))];
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodelist.c:979:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest_buf[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodelist.c:980:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nn_buf[MAX_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodelist.c:1045:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fp[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodelist.c:1317:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(link_specifier_getarray_un_legacy_id(ls), node->identity,
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodelist.c:1331:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(link_specifier_getarray_un_ed25519_id(ls), &node->ed25519_id,
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodelist.c:1345:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ipv6_array, in6_addr, addr_len);
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodelist.c:2336:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char dir_info_status[512] = "";
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:723:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:725:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nn_buf[MAX_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:999:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest, src, sizeof(signed_descriptor_t));
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:1196:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d1[HEX_DIGEST_LEN+1], d2[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:2053:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char annotation_buf[ROUTER_ANNOTATION_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:2121:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fp[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:2138:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:2159:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d, ri->cache_info.signed_descriptor_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:2230:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d, ei->cache_info.signed_descriptor_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:2234:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fp[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:2257:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fp[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:2693:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char time_bufnew[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:2694:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char time_bufold[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:2734:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char time_cons[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:2735:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char time_cert_expires[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:2834:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d1[HEX_DIGEST_LEN+1], d2[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:2835:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d3[HEX_DIGEST_LEN+1], d4[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:2848:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d1[HEX_DIGEST_LEN+1], d2[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:3058:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char signed_digest[128];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerset.c:129:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerstatus_st.h:25:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nickname[MAX_NICKNAME_LEN+1]; /**< The nickname this router says it
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerstatus_st.h:27:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char identity_digest[DIGEST_LEN]; /**< Digest of the router's identity
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerstatus_st.h:31:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char descriptor_digest[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/signed_descriptor_st.h:29:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char signed_descriptor_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/signed_descriptor_st.h:31:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char identity_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/signed_descriptor_st.h:35:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char extra_info_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/signed_descriptor_st.h:37:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char extra_info_digest256[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/nodelist/torcert.c:58:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cert->certified_key, signed_key_info, 32);
data/tor-0.4.5.2-alpha/src/feature/nodelist/torcert.c:63:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ext->un_signing_key, signing_key->pubkey.pubkey, 32);
data/tor-0.4.5.2-alpha/src/feature/nodelist/torcert.c:87:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sig, signature.sig, ED25519_SIG_LEN);
data/tor-0.4.5.2-alpha/src/feature/nodelist/torcert.c:171:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cert->signed_key.pubkey, parsed->certified_key, 32);
data/tor-0.4.5.2-alpha/src/feature/nodelist/torcert.c:187:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cert->signing_key.pubkey, ext->un_signing_key, 32);
data/tor-0.4.5.2-alpha/src/feature/nodelist/torcert.c:228:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(checkable_out->signature.sig,
data/tor-0.4.5.2-alpha/src/feature/nodelist/torcert.c:267:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cert->signing_key.pubkey, checkable.pubkey->pubkey, 32);
data/tor-0.4.5.2-alpha/src/feature/nodelist/torcert.c:343:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cc->ed_key, ed_key->pubkey, ED25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/feature/relay/circuitbuild_relay.c:576:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(circ->rend_circ_nonce, rend_circ_nonce, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/relay/dns.c:346:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&resolve->result_ipv6.addr_ipv6,
data/tor-0.4.5.2-alpha/src/feature/relay/dns.c:503:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[RELAY_PAYLOAD_SIZE], *cp = buf;
data/tor-0.4.5.2-alpha/src/feature/relay/dns.c:524:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cp+2, bytes, 16);
data/tor-0.4.5.2-alpha/src/feature/relay/dns.c:570:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[RELAY_PAYLOAD_SIZE];
data/tor-0.4.5.2-alpha/src/feature/relay/dns.c:584:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+2, hostname, namelen);
data/tor-0.4.5.2-alpha/src/feature/relay/dns.c:1569:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char answer_buf[INET_NTOA_BUF_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/relay/dns.c:1592:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char answer_buf[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/relay/dns.c:1667:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(addr+1, address, addr_len + 1);
data/tor-0.4.5.2-alpha/src/feature/relay/dns.c:1879:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char answer_buf[INET_NTOA_BUF_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/relay/dns.c:1891:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char answer_buf[TOR_ADDR_BUF_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/relay/dns_structs.h:65:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char address[MAX_ADDRESSLEN]; /**< The hostname to be resolved. */
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:71:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char header[4];
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:172:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char authtype[1] = {0};
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:196:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char server_hash[EXT_OR_PORT_AUTH_HASH_LEN] = {0};
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:197:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char server_nonce[EXT_OR_PORT_AUTH_NONCE_LEN] = {0};
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:217:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(hmac_s_msg,
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:220:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(hmac_s_msg + strlen(EXT_OR_PORT_AUTH_SERVER_TO_CLIENT_CONST),
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:222:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(hmac_s_msg + strlen(EXT_OR_PORT_AUTH_SERVER_TO_CLIENT_CONST) +
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:226:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(hmac_c_msg,
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:229:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(hmac_c_msg + strlen(EXT_OR_PORT_AUTH_CLIENT_TO_SERVER_CONST),
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:231:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(hmac_c_msg + strlen(EXT_OR_PORT_AUTH_CLIENT_TO_SERVER_CONST) +
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:259:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char server_hash_encoded[(2*EXT_OR_PORT_AUTH_HASH_LEN) + 1];
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:260:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char server_nonce_encoded[(2*EXT_OR_PORT_AUTH_NONCE_LEN) + 1];
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:261:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char client_nonce_encoded[(2*EXT_OR_PORT_AUTH_NONCE_LEN) + 1];
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:283:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(reply, server_hash, EXT_OR_PORT_AUTH_HASH_LEN);
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:284:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(reply + EXT_OR_PORT_AUTH_HASH_LEN, server_nonce,
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:303:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char client_nonce[EXT_OR_PORT_AUTH_NONCE_LEN];
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:369:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char provided_client_hash[EXT_OR_PORT_AUTH_HASH_LEN] = {0};
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:707:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char random_id[EXT_OR_CONN_ID_LEN];
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:724:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(conn->ext_or_conn_id, random_id, EXT_OR_CONN_ID_LEN);
data/tor-0.4.5.2-alpha/src/feature/relay/relay_config.c:143:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[16];
data/tor-0.4.5.2-alpha/src/feature/relay/relay_config.c:161:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[256];
data/tor-0.4.5.2-alpha/src/feature/relay/relay_handshake.c:49:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(certs_cell_cert_getarray_body(ccc), cert_encoded, cert_len);
data/tor-0.4.5.2-alpha/src/feature/relay/relay_handshake.c:332:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(auth1_getarray_type(auth), authtype_str, 8);
data/tor-0.4.5.2-alpha/src/feature/relay/relay_handshake.c:352:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(auth->cid, client_id, 32);
data/tor-0.4.5.2-alpha/src/feature/relay/relay_handshake.c:355:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(auth->sid, server_id, 32);
data/tor-0.4.5.2-alpha/src/feature/relay/relay_handshake.c:370:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(auth->u1_cid_ed, cid_ed, ED25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/feature/relay/relay_handshake.c:371:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(auth->u1_sid_ed, sid_ed, ED25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/feature/relay/relay_handshake.c:405:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(auth->scert,
data/tor-0.4.5.2-alpha/src/feature/relay/relay_handshake.c:419:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label[128];
data/tor-0.4.5.2-alpha/src/feature/relay/relay_handshake.c:492:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(auth1_getarray_sig(auth), sig.sig, ED25519_SIG_LEN);
data/tor-0.4.5.2-alpha/src/feature/relay/relay_handshake.c:497:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[32];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:118:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char server_identitykey_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:357:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(server_identitykey_digest, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:522:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&last_curve25519_onion_key, &curve25519_onion_key,
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:524:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&curve25519_onion_key, &new_curve25519_keypair,
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:845:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fingerprint[FINGERPRINT_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:936:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:937:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v3_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:1177:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ds->v3_identity_digest, v3_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:1636:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(msg, ri->cache_info.signed_descriptor_body, desc_len);
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:1638:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(msg+desc_len, ei->cache_info.signed_descriptor_body, extra_len);
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:1857:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char port_addr_str[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:1858:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_addr_str[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2017:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2052:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char platform[256];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2208:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ei->cache_info.identity_digest, ri->cache_info.identity_digest,
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2307:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ri->cache_info.extra_info_digest,
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2310:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ri->cache_info.extra_info_digest256,
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2627:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addrbuf_prev[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2628:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addrbuf_cur[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2754:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2755:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char published[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2756:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fingerprint[FINGERPRINT_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2796:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ed_cert_base64[256];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2797:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ed_fp_base64[ED25519_BASE64_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2834:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2865:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2907:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char extra_info_digest[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2911:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d256_64[BASE64_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2923:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addr[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:3010:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char kbuf[CURVE25519_BASE64_PADDED_LEN + 1];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:3053:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ED25519_SIG_BASE64_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:3207:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char identity[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:3208:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char published[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:3225:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ed_cert_base64[256];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:3353:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sha256_digest[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:3355:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ED25519_SIG_BASE64_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:3390:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sig[DIROBJ_MAX_SIG_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:3391:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:3577:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/tor-0.4.5.2-alpha/src/feature/relay/routerkeys.c:216:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&id->pubkey, &check_signing_cert->signing_key,
data/tor-0.4.5.2-alpha/src/feature/relay/routerkeys.c:532:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expiration[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/relay/routerkeys.c:726:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(signed_data + DIGEST_LEN, master_id_key->pubkey, ED25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/feature/relay/selftest.c:392:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addr_buf[TOR_ADDRPORT_BUF_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rend_encoded_v2_service_descriptor_st.h:17:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id[DIGEST_LEN]; /**< Descriptor ID. */
data/tor-0.4.5.2-alpha/src/feature/rend/rendcache.c:192:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char service_id[REND_SERVICE_ID_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcache.c:500:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcache.c:526:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[REND_SERVICE_ID_LEN_BASE32 + 2]; /* <version><query>\0 */
data/tor-0.4.5.2-alpha/src/feature/rend/rendcache.c:614:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcache.c:650:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcache.c:654:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcache.c:758:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcache.c:763:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char service_id[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcache.c:857:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcache.c:863:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[REND_SERVICE_ID_LEN_BASE32+2];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcache.c:864:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char service_id[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcache.c:865:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char want_desc_id[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:119:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char payload[RELAY_PAYLOAD_SIZE];
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:120:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[RELAY_PAYLOAD_SIZE];
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:221:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp+4, TO_REND_DATA_V2(introcirc->rend_data)->descriptor_cookie,
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:247:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp+v3_shift+7, extend_info->identity_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:257:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp+v3_shift+7+DIGEST_LEN+2+klen, rendcirc->rend_data->rend_cookie,
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:273:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp+MAX_NICKNAME_LEN+1, rendcirc->rend_data->rend_cookie,
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:304:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(introcirc->rend_data->rend_cookie, rendcirc->rend_data->rend_cookie,
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:420:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cached_rend_digest, rend_digest_tmp, digest_len);
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:474:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:475:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char descriptor_cookie_base64[3*REND_DESC_COOKIE_LEN_BASE64];
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:568:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:619:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char descriptor_id[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:1058:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char service_id[REND_SERVICE_ID_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:158:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char service_id_binary[REND_SERVICE_ID_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:159:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char secret_id_part[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:207:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id_base32[REND_INTRO_POINT_ID_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:328:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iv, enc + 2 + client_entries_len, CIPHER_IV_LEN);
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:371:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(enc + pos, entry, REND_BASIC_AUTH_CLIENT_ENTRY_LEN);
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:428:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char test_desc_id[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:486:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char service_id[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:487:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char service_id_base32[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:571:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char secret_id_part[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:572:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char secret_id_part_base32[REND_SECRET_ID_PART_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:573:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:576:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char published[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:578:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char protocol_versions_string[16]; /* max len: "0,1,2,3,4,5,6,7\0" */
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:584:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:714:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:902:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(extended_cookie, cookie_in, REND_DESC_COOKIE_LEN);
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:934:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char descriptor_cookie_base64ext[REND_DESC_COOKIE_LEN_EXT_BASE64 + 1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:975:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cookie_out, descriptor_cookie_decoded, REND_DESC_COOKIE_LEN);
data/tor-0.4.5.2-alpha/src/feature/rend/rendmid.c:34:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[DIGEST_LEN+9];
data/tor-0.4.5.2-alpha/src/feature/rend/rendmid.c:35:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expected_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendmid.c:36:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pk_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendmid.c:39:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char serviceid[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendmid.c:67:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, circ->rend_circ_nonce, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/rend/rendmid.c:68:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+DIGEST_LEN, "INTRODUCE", 9);
data/tor-0.4.5.2-alpha/src/feature/rend/rendmid.c:147:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char serviceid[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendmid.c:148:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nak_body[1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendmid.c:237:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hexid[9];
data/tor-0.4.5.2-alpha/src/feature/rend/rendmid.c:312:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hexid[9];
data/tor-0.4.5.2-alpha/src/feature/rend/rendparse.c:83:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_hash[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendparse.c:87:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char secret_id_part[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendparse.c:90:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char public_key_hash[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendparse.c:91:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char test_desc_id[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/rend/rendparse.c:282:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iv[CIPHER_IV_LEN], client_id[REND_BASIC_AUTH_CLIENT_ID_LEN],
data/tor-0.4.5.2-alpha/src/feature/rend/rendparse.c:296:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iv, ipos_encrypted + 2 + client_entries_len, CIPHER_IV_LEN);
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:423:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(conf->unix_addr, socket_path, pathlen);
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:1535:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:1599:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_cook_out[3*REND_DESC_COOKIE_LEN_BASE64+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:1600:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char service_id[16+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:1601:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1500];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:1642:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(client->descriptor_cookie, parsed->descriptor_cookie,
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:1830:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char descriptor_cookie_base64[3*REND_DESC_COOKIE_LEN_BASE64];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:1893:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char serviceid[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:1902:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[RELAY_PAYLOAD_SIZE];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:1903:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char keys[DIGEST_LEN+CPATH_KEY_MATERIAL_LEN]; /* Holds KH, Df, Db, Kf, Kb */
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:1908:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hexcookie[9];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:2180:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cpath->rend_circ_nonce, keys, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:2414:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rv->pk, request, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:2418:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rv->ciphertext, request + DIGEST_LEN, request_len - DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:2506:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(intro->u.v0_v1.rp, rp_nickname, endptr - rp_nickname + 1);
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:2562:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(extend_info->identity_digest, buf + 7, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:2714:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(intro->u.v3.auth_data, buf + 4, intro->u.v3.auth_len);
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:2767:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char service_id[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:2852:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(intro->plaintext, buf, intro->plaintext_len);
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:2951:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(intro->rc,
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:2954:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(intro->dh,
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:3051:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char serviceid[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:3235:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char auth[DIGEST_LEN + 9];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:3250:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(auth, rend_circ_nonce, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:3251:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(auth+DIGEST_LEN, "INTRODUCE", 9);
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:3279:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[RELAY_PAYLOAD_SIZE];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:3280:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char serviceid[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:3414:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char serviceid[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:3472:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[RELAY_PAYLOAD_SIZE];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:3474:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char serviceid[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:3475:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hexcookie[9];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:3540:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, rend_cookie, REND_COOKIE_LEN);
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:3547:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+REND_COOKIE_LEN+DH1024_KEY_LEN, hop->rend_circ_nonce,
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:3706:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:3800:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char serviceid[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:4422:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char serviceid[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.h:82:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char service_id[REND_SERVICE_ID_LEN_BASE32+1]; /**< Onion address without
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.h:84:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pk_digest[DIGEST_LEN]; /**< Hash of permanent hidden-service key. */
data/tor-0.4.5.2-alpha/src/feature/stats/bwhist.c:305:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[MAX_HIST_VALUE_LEN];
data/tor-0.4.5.2-alpha/src/feature/stats/bwhist.c:306:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char end[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/connstats.c:226:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *result, written_at[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/geoip_stats.c:419:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char country[3]; /**< Two-letter country code. */
data/tor-0.4.5.2-alpha/src/feature/stats/geoip_stats.c:968:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char t[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/geoip_stats.c:1084:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stats_end_str[ISO_TIME_LEN+1], stats_start_str[ISO_TIME_LEN+1],
data/tor-0.4.5.2-alpha/src/feature/stats/geoip_stats.c:1151:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char written[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/geoip_stats.c:1185:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char started[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/geoip_stats.c:1347:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char t[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:165:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char first_published_at[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:233:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:304:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:545:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hexdigest1[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:615:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char time_buf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:667:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dbuf[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:738:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[5];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:847:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:848:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hexbuf[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:849:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mtbf_timebuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:850:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char wfu_timebuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:1043:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char t[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:1373:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char t[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:1550:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char t[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:1807:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pubkey_hash[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:1858:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char t[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/lib/arch/bytes.h:45:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&v,cp,2);
data/tor-0.4.5.2-alpha/src/lib/arch/bytes.h:57:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&v,cp,4);
data/tor-0.4.5.2-alpha/src/lib/arch/bytes.h:69:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&v,cp,8);
data/tor-0.4.5.2-alpha/src/lib/arch/bytes.h:80:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cp,&v,2);
data/tor-0.4.5.2-alpha/src/lib/arch/bytes.h:89:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cp,&v,4);
data/tor-0.4.5.2-alpha/src/lib/arch/bytes.h:98:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cp,&v,8);
data/tor-0.4.5.2-alpha/src/lib/buf/buffers.c:259:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(CHUNK_WRITE_PTR(dest), src->data, src->datalen);
data/tor-0.4.5.2-alpha/src/lib/buf/buffers.c:266:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(CHUNK_WRITE_PTR(dest), src->data, n);
data/tor-0.4.5.2-alpha/src/lib/buf/buffers.c:310:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&buf->head->mem[0], cp, sz);
data/tor-0.4.5.2-alpha/src/lib/buf/buffers.c:546:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(CHUNK_WRITE_PTR(buf->tail), string, copy);
data/tor-0.4.5.2-alpha/src/lib/buf/buffers.c:625:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(string, chunk->data, copy);
data/tor-0.4.5.2-alpha/src/lib/buf/buffers.c:660:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[4096];
data/tor-0.4.5.2-alpha/src/lib/buf/buffers.c:836:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[PEEK_BUF_STARTSWITH_MAX];
data/tor-0.4.5.2-alpha/src/lib/buf/buffers.h:85:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mem[FLEXIBLE_ARRAY_MEMBER]; /**< The actual memory used for storage in
data/tor-0.4.5.2-alpha/src/lib/compress/compress_none.c:44:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*out, *in, n_to_copy);
data/tor-0.4.5.2-alpha/src/lib/compress/compress_zstd.c:90:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char version_str[VERSION_STR_MAX_LEN];
data/tor-0.4.5.2-alpha/src/lib/compress/compress_zstd.c:518:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char header_version[VERSION_STR_MAX_LEN];
data/tor-0.4.5.2-alpha/src/lib/compress/compress_zstd.c:519:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char runtime_version[VERSION_STR_MAX_LEN];
data/tor-0.4.5.2-alpha/src/lib/confmgt/confmgt.c:290:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&mgr->toplevel_magic, &mgr->toplevel->magic,
data/tor-0.4.5.2-alpha/src/lib/container/map.c:41:33: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
DEFINE_MAP_STRUCTS(digestmap_t, char key[DIGEST_LEN], digestmap_);
data/tor-0.4.5.2-alpha/src/lib/container/map.c:136:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ent->key, key, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/lib/container/map.c:141:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ent->key, key, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/lib/container/map.c:151:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ent->key, key, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/lib/container/map.c:156:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ent->key, key, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/lib/container/namemap.c:72:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[32];
data/tor-0.4.5.2-alpha/src/lib/container/namemap.c:95:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char storage[MAX_NAMEMAP_NAME_LEN + sizeof(mapped_name_t) + 1];
data/tor-0.4.5.2-alpha/src/lib/container/namemap.c:97:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(u.n.name, name, namelen);
data/tor-0.4.5.2-alpha/src/lib/container/namemap.c:154:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(insert->name, name, namelen+1);
data/tor-0.4.5.2-alpha/src/lib/container/namemap_st.h:26:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[FLEXIBLE_ARRAY_MEMBER];
data/tor-0.4.5.2-alpha/src/lib/container/smartlist.c:149:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32]; /* long enough for 64-bit int, and then some. */
data/tor-0.4.5.2-alpha/src/lib/container/smartlist.c:314:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, join, join_len);
data/tor-0.4.5.2-alpha/src/lib/container/smartlist.c:319:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, join, join_len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/aes_nss.c:33:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(params.cb, iv, 16);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/aes_openssl.c:241:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char zero[16];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/aes_openssl.c:242:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char output[16];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/aes_openssl.c:243:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char ivec[16];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/aes_openssl.c:244:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char ivec_tmp[16];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/aes_openssl.c:406:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cipher->ctr_buf.buf, iv, 16);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_cipher.c:56:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zeroiv[CIPHER_IV_LEN];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_cipher.c:98:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(to, from, fromlen);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_cipher.c:116:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(to, from, fromlen);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_cipher.c:152:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iv[CIPHER_IV_LEN];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_cipher.c:156:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(to, iv, CIPHER_IV_LEN);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_curve25519.c:70:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(bp, point, CURVE25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_curve25519.c:214:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(contents, keypair->seckey.secret_key, CURVE25519_SECKEY_LEN);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_curve25519.c:215:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(contents+CURVE25519_SECKEY_LEN,
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_curve25519.c:247:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(keypair_out->seckey.secret_key, content, CURVE25519_SECKEY_LEN);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_curve25519.c:294:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char e1[32], e2[32];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_curve25519.c:295:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char x[32],y[32];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_curve25519.c:326:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(e1, x, 32);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_curve25519.c:327:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(e2, x, 32);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_dh_nss.c:26:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char tls_dh_prime_data[DH1024_KEY_LEN];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_dh_nss.c:27:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char circuit_dh_prime_data[DH1024_KEY_LEN];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_dh_nss.c:28:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char dh_generator_data[1];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_dh_nss.c:133:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pubkey_out + pubkey_out_len - item->len,
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_dh_nss.c:205:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(secret_out, result->data, len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest.h:89:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[N_COMMON_DIGEST_ALGORITHMS][DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_nss.c:351:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char r[DIGEST512_LEN];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_nss.c:365:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[1024];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_nss.c:381:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, r, out_len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_nss.c:424:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(checkpoint->mem, digest, bytes);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_nss.c:442:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(digest, checkpoint->mem, bytes);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_nss.c:462:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(into,from,alloc_bytes);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_openssl.c:338:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char r[DIGEST512_LEN];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_openssl.c:368:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&tmpenv, digest, alloc_bytes);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_openssl.c:392:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, r, out_len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_openssl.c:428:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(checkpoint->mem, digest, bytes);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_openssl.c:439:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(digest, checkpoint->mem, bytes);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_openssl.c:463:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(into,from,alloc_bytes);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_ed25519.c:53:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int (*open)(const unsigned char *, const unsigned char *, size_t, const
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_ed25519.c:257:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(prefixed_msg, prefix_str, prefix_len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_ed25519.c:258:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(prefixed_msg + prefix_len, msg, msg_len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_ed25519.c:330:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
get_ed_impl()->open(signature->sig, msg, len, pubkey->pubkey) < 0 ? -1 : 0;
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_ed25519.c:464:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out->seckey.seckey, inp->seckey.secret_key, 32);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_ed25519.c:471:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out->seckey.seckey + 32, sha512_output, 32);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_ed25519.c:659:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest, src, sizeof(ed25519_public_key_t));
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_ed25519.c:724:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (impl->open(sig, alicemsg, sizeof(alicemsg), pk) < 0)
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:48:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char header[32];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:83:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prefix[33];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:103:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(prefix, content, 32);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:122:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data_out, content+32, st_size-32);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:178:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[CURVE25519_BASE64_PADDED_LEN+1];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:181:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pkey->public_key, buf, CURVE25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:195:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char formatted[ED25519_BASE64_LEN+1];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:242:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:248:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(output, buf, ED25519_SIG_BASE64_LEN+1);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:260:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char decoded[128];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:265:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sig->sig, decoded, ED25519_SIG_LEN);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:277:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:284:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d64, buf, BASE64_DIGEST_LEN+1);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:306:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:313:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d64, buf, BASE64_DIGEST256_LEN+1);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_hkdf.c:53:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, key_in, key_in_len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_hkdf.c:59:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cp, digest, MIN(DIGEST_LEN, key_out_len-(cp-key_out)));
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_hkdf.c:146:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, mac, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_hkdf.c:147:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp+DIGEST256_LEN, info_in, info_in_len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_hkdf.c:151:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, info_in, info_in_len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_hkdf.c:159:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(outp, mac, n);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_nss_mgt.c:91:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_ope.c:79:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iv + CIPHER_IV_LEN - sizeof(n), &n, sizeof(n));
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_ope.c:132:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ope->key, key, OPE_KEY_LEN);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_pwbox.c:83:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(encrypted_portion+4, input, input_len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rand.c:260:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(sandbox_intern_string(filenames[i]), O_RDONLY, 0);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rand.c:383:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, tmp, out_len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rand.c:512:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[BUFLEN];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rand.c:576:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(result, prefix, prefixlen);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rand_fast.c:166:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(result->buf.seed, seed, SEED_LEN);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rand_fast.c:321:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, copy_from, to_copy);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa.c:122:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[CIPHER_KEY_LEN];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa.c:127:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, key, CIPHER_KEY_LEN);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa.c:128:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+CIPHER_KEY_LEN, from, pkeylen-overhead-CIPHER_KEY_LEN);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa.c:200:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(to,buf+CIPHER_KEY_LEN,outlen-CIPHER_KEY_LEN);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa.c:231:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa.c:232:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hexdigest[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa.c:256:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN], hashed_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa.c:297:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa.c:343:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa_nss.c:609:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest, item->data, n_used);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa_nss.c:673:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest, item->data, item->len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa_openssl.c:517:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest,buf,len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa_openssl.c:532:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,str,len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa_openssl.c:563:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest,buf,len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa_openssl.c:638:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,str,len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_s2k.c:221:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp,s2k_specifier,8);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_s2k.c:222:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp+8,secret,secret_len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_s2k.c:236:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(key_out, buf, key_out_len);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_s2k.c:320:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(key_out, iptr->data, rv);
data/tor-0.4.5.2-alpha/src/lib/ctime/di_ops.c:187:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new_ent->key, key, 32);
data/tor-0.4.5.2-alpha/src/lib/dispatch/dispatch_core.c:131:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&m->aux_data__, &auxdata, sizeof(msg_aux_data_t));
data/tor-0.4.5.2-alpha/src/lib/dispatch/dispatch_new.c:102:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&ent->rcv[rcv_sl_idx], rcv, sizeof(*rcv));
data/tor-0.4.5.2-alpha/src/lib/dispatch/dispatch_new.c:138:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&d->typefns[i], &nop_typefns, sizeof(dispatch_typefns_t));
data/tor-0.4.5.2-alpha/src/lib/encoding/binascii.c:36:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[65];
data/tor-0.4.5.2-alpha/src/lib/encoding/binascii.c:195:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char base64_encode_table[64] = {
data/tor-0.4.5.2-alpha/src/lib/encoding/time_fmt.c:191:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, WEEKDAY_NAMES[tm.tm_wday], 3);
data/tor-0.4.5.2-alpha/src/lib/encoding/time_fmt.c:194:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+8, MONTH_NAMES[tm.tm_mon], 3);
data/tor-0.4.5.2-alpha/src/lib/encoding/time_fmt.c:209:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char month[4];
data/tor-0.4.5.2-alpha/src/lib/encoding/time_fmt.c:210:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char weekday[4];
data/tor-0.4.5.2-alpha/src/lib/encoding/time_fmt.c:412:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char month[4];
data/tor-0.4.5.2-alpha/src/lib/encoding/time_fmt.c:413:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char wkday[4];
data/tor-0.4.5.2-alpha/src/lib/err/backtrace.c:74:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char bt_version[128] = "";
data/tor-0.4.5.2-alpha/src/lib/err/backtrace.c:180:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[40];
data/tor-0.4.5.2-alpha/src/lib/err/backtrace.c:332:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version[128] = "Tor\0";
data/tor-0.4.5.2-alpha/src/lib/err/torerr.c:74:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timebuf[33];
data/tor-0.4.5.2-alpha/src/lib/err/torerr.c:138:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sigsafe_log_fds, fds, n * sizeof(int));
data/tor-0.4.5.2-alpha/src/lib/err/torerr.c:197:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char linebuf[16];
data/tor-0.4.5.2-alpha/src/lib/evloop/compat_libevent.c:29:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/tor-0.4.5.2-alpha/src/lib/evloop/compat_libevent.c:480:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/lib/fs/dir.c:97:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(sandbox_intern_string(dirname), O_NOFOLLOW);
data/tor-0.4.5.2-alpha/src/lib/fs/dir.c:129:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(sandbox_intern_string(dirname), O_NOFOLLOW);
data/tor-0.4.5.2-alpha/src/lib/fs/dir.c:312:3: [2] (buffer) TCHAR:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TCHAR tpattern[MAX_PATH] = {0};
data/tor-0.4.5.2-alpha/src/lib/fs/dir.c:313:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[MAX_PATH*2+1] = {0};
data/tor-0.4.5.2-alpha/src/lib/fs/files.c:59:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(p, flags|O_CLOEXEC, mode);
data/tor-0.4.5.2-alpha/src/lib/fs/files.c:70:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(p, flags, mode);
data/tor-0.4.5.2-alpha/src/lib/fs/files.c:88:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *result = fopen(path, mode);
data/tor-0.4.5.2-alpha/src/lib/fs/files.c:678:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(stat_out, &statbuf, sizeof(struct stat));
data/tor-0.4.5.2-alpha/src/lib/fs/files.c:731:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(stat_out, &statbuf, sizeof(struct stat));
data/tor-0.4.5.2-alpha/src/lib/fs/mmap.c:138:3: [2] (buffer) TCHAR:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TCHAR tfilename[MAX_PATH]= {0};
data/tor-0.4.5.2-alpha/src/lib/fs/path.c:504:9: [2] (buffer) TCHAR:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TCHAR tpattern[MAX_PATH] = {0};
data/tor-0.4.5.2-alpha/src/lib/fs/path.c:505:9: [2] (buffer) TCHAR:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TCHAR tfile[MAX_PATH] = {0};
data/tor-0.4.5.2-alpha/src/lib/fs/storagedir.c:259:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/tor-0.4.5.2-alpha/src/lib/fs/winlib.c:21:3: [2] (buffer) TCHAR:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TCHAR path[MAX_PATH];
data/tor-0.4.5.2-alpha/src/lib/geoip/geoip.c:82:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char geoip_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/lib/geoip/geoip.c:85:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char geoip6_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/lib/geoip/geoip.c:166:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c[3];
data/tor-0.4.5.2-alpha/src/lib/geoip/geoip.c:187:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/tor-0.4.5.2-alpha/src/lib/geoip/geoip.c:359:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/tor-0.4.5.2-alpha/src/lib/geoip/geoip.h:35:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char countrycode[3];
data/tor-0.4.5.2-alpha/src/lib/log/log.c:294:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/lib/log/log.c:377:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+n, "Bug: ", 6);
data/tor-0.4.5.2-alpha/src/lib/log/log.c:399:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+n, suffix, suffix_len);
data/tor-0.4.5.2-alpha/src/lib/log/log.c:407:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+n, tor_bug_suffix, strlen(tor_bug_suffix));
data/tor-0.4.5.2-alpha/src/lib/log/log.c:537:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10240];
data/tor-0.4.5.2-alpha/src/lib/log/log.c:1006:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(lf->severities, &severities, sizeof(severities));
data/tor-0.4.5.2-alpha/src/lib/log/log.c:1187:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[256];
data/tor-0.4.5.2-alpha/src/lib/log/log.c:1299:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cp, ",", 2); /*Nul-terminated ,"*/
data/tor-0.4.5.2-alpha/src/lib/malloc/malloc.c:206:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(duplicate, mem, len);
data/tor-0.4.5.2-alpha/src/lib/malloc/malloc.c:219:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(duplicate, mem, len);
data/tor-0.4.5.2-alpha/src/lib/memarea/memarea.c:100:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mem[FLEXIBLE_ARRAY_MEMBER] __attribute__((aligned(MEMAREA_ALIGN)));
data/tor-0.4.5.2-alpha/src/lib/memarea/memarea.c:103:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mem[1]; /**< Memory space in this chunk. */
data/tor-0.4.5.2-alpha/src/lib/memarea/memarea.c:260:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(result, s, n);
data/tor-0.4.5.2-alpha/src/lib/memarea/memarea.c:281:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(result, s, ln);
data/tor-0.4.5.2-alpha/src/lib/memarea/memarea.c:370:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(r, s, n);
data/tor-0.4.5.2-alpha/src/lib/memarea/memarea.c:378:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(r, s, n);
data/tor-0.4.5.2-alpha/src/lib/memarea/memarea.c:387:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(r, s, ln);
data/tor-0.4.5.2-alpha/src/lib/metrics/prometheus.c:27:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[1024];
data/tor-0.4.5.2-alpha/src/lib/net/address.c:143:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&sin6->sin6_addr, tor_addr_to_in6_assert(a),
data/tor-0.4.5.2-alpha/src/lib/net/address.c:200:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char address[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/lib/net/address.c:352:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest+strlen(dest), "]", 2);
data/tor-0.4.5.2-alpha/src/lib/net/address.c:385:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[INET_NTOA_BUF_LEN];
data/tor-0.4.5.2-alpha/src/lib/net/address.c:395:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, address, len);
data/tor-0.4.5.2-alpha/src/lib/net/address.c:457:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(result, &tmp, sizeof(tor_addr_t));
data/tor-0.4.5.2-alpha/src/lib/net/address.c:497:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cp, "ip6.arpa", 9); /* 8 characters plus NUL */
data/tor-0.4.5.2-alpha/src/lib/net/address.c:906:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest->addr.in6_addr.s6_addr, ipv6_bytes, 16);
data/tor-0.4.5.2-alpha/src/lib/net/address.c:927:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest, src->addr.in6_addr.s6_addr, 16);
data/tor-0.4.5.2-alpha/src/lib/net/address.c:939:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest, src, sizeof(tor_addr_t));
data/tor-0.4.5.2-alpha/src/lib/net/address.c:960:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest->addr.in6_addr.s6_addr, src->addr.in6_addr.s6_addr, 16);
data/tor-0.4.5.2-alpha/src/lib/net/address.c:1166:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/lib/net/address.c:1186:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/lib/net/address.c:1201:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[TOR_ADDRPORT_BUF_LEN];
data/tor-0.4.5.2-alpha/src/lib/net/address.c:1212:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[INET_NTOA_BUF_LEN];
data/tor-0.4.5.2-alpha/src/lib/net/address.c:1235:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[INET_NTOA_BUF_LEN + 6];
data/tor-0.4.5.2-alpha/src/lib/net/address.c:1520:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(r, buf, end - buf < IFREQ_SIZE ? end - buf : IFREQ_SIZE);
data/tor-0.4.5.2-alpha/src/lib/net/address.c:2050:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/lib/net/address.c:2126:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest, source, sizeof(tor_addr_port_t));
data/tor-0.4.5.2-alpha/src/lib/net/alertsock.c:149:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/tor-0.4.5.2-alpha/src/lib/net/alertsock.c:177:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/tor-0.4.5.2-alpha/src/lib/net/inaddr.c:107:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64], *cp;
data/tor-0.4.5.2-alpha/src/lib/net/resolve.c:138:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/tor-0.4.5.2-alpha/src/lib/net/resolve.c:143:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/tor-0.4.5.2-alpha/src/lib/osinfo/uname.c:26:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char uname_result[256];
data/tor-0.4.5.2-alpha/src/lib/process/env.c:167:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cp, s, slen+1);
data/tor-0.4.5.2-alpha/src/lib/process/pidfile.c:35:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((pidfile = fopen(filename, "w")) == NULL) {
data/tor-0.4.5.2-alpha/src/lib/process/process_win32.c:56:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[BUFFER_SIZE];
data/tor-0.4.5.2-alpha/src/lib/process/process_win32.c:644:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pipe_name[MAX_PATH];
data/tor-0.4.5.2-alpha/src/lib/pubsub/pubsub_build.c:224:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&cfg->fns, fns, sizeof(*fns));
data/tor-0.4.5.2-alpha/src/lib/pubsub/pubsub_check.c:142:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[32];
data/tor-0.4.5.2-alpha/src/lib/pubsub/pubsub_publish.c:68:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(m, &pub->msg_template, sizeof(msg_t));
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:516:61: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return seccomp_rule_add_1(ctx, SCMP_ACT_ALLOW, SCMP_SYS(open),
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:538:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
== SCMP_SYS(open)) {
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:1157:74: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (param != NULL && param->prot == 1 && (param->syscall == SCMP_SYS(open)
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:1279:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(location, param_val, param_size);
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:1462:31: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
elem = new_element(SCMP_SYS(open), file);
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:1647:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char syscall_name_buf[64];
data/tor-0.4.5.2-alpha/src/lib/smartlist_core/smartlist_core.c:130:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s1->list + s1->num_used, s2->list, s2->num_used*sizeof(void*));
data/tor-0.4.5.2-alpha/src/lib/string/printf.c:137:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/tor-0.4.5.2-alpha/src/lib/time/compat_time.c:109:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&initialized_at_saved,
data/tor-0.4.5.2-alpha/src/lib/time/compat_time.c:113:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&initialized_at_coarse_saved,
data/tor-0.4.5.2-alpha/src/lib/time/compat_time.c:125:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&initialized_at,
data/tor-0.4.5.2-alpha/src/lib/time/compat_time.c:128:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&initialized_at_coarse,
data/tor-0.4.5.2-alpha/src/lib/time/compat_time.c:218:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, &last_timeofday, sizeof(struct timeval));
data/tor-0.4.5.2-alpha/src/lib/time/compat_time.c:220:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&last_timeofday, out, sizeof(struct timeval));
data/tor-0.4.5.2-alpha/src/lib/tls/nss_countbytes.c:65:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&countbytes_methods, PR_GetDefaultIOMethods(), sizeof(PRIOMethods));
data/tor-0.4.5.2-alpha/src/lib/tls/tortls_nss.c:378:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/tor-0.4.5.2-alpha/src/lib/tls/tortls_openssl.c:778:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char cipherid[3];
data/tor-0.4.5.2-alpha/src/lib/tls/tortls_openssl.c:793:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char cipherid[3];
data/tor-0.4.5.2-alpha/src/lib/tls/tortls_openssl.c:1605:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, s->s3->client_random, len);
data/tor-0.4.5.2-alpha/src/lib/tls/tortls_openssl.c:1618:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, s->s3->server_random, len);
data/tor-0.4.5.2-alpha/src/lib/tls/tortls_openssl.c:1632:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, s->master_key, len);
data/tor-0.4.5.2-alpha/src/lib/tls/tortls_openssl.c:1685:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nextbuf, TLSSECRET_MAGIC, strlen(TLSSECRET_MAGIC) + 1);
data/tor-0.4.5.2-alpha/src/lib/tls/x509_nss.c:371:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nowbuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/lib/tls/x509_nss.c:372:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nbbuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/lib/tls/x509_nss.c:373:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nabuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/lib/tls/x509_openssl.c:113:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char serial_tmp[SERIAL_NUMBER_SIZE];
data/tor-0.4.5.2-alpha/src/lib/tls/x509_openssl.c:200:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cert->encoded, buf, length);
data/tor-0.4.5.2-alpha/src/lib/tls/x509_openssl.c:373:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mytime[33];
data/tor-0.4.5.2-alpha/src/lib/version/version.c:34:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char the_tor_version[MAX_VERSION_LEN] = "";
data/tor-0.4.5.2-alpha/src/lib/wallclock/time_to_tm.c:142:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(result, r, sizeof(struct tm));
data/tor-0.4.5.2-alpha/src/lib/wallclock/time_to_tm.c:154:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(result, r, sizeof(struct tm));
data/tor-0.4.5.2-alpha/src/lib/wallclock/time_to_tm.c:185:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(result, r, sizeof(struct tm));
data/tor-0.4.5.2-alpha/src/lib/wallclock/time_to_tm.c:197:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(result, r, sizeof(struct tm));
data/tor-0.4.5.2-alpha/src/test/bench.c:108:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[CIPHER_KEY_LEN];
data/tor-0.4.5.2-alpha/src/test/bench.c:136:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char os[TAP_ONIONSKIN_CHALLENGE_LEN];
data/tor-0.4.5.2-alpha/src/test/bench.c:137:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char or[TAP_ONIONSKIN_REPLY_LEN];
data/tor-0.4.5.2-alpha/src/test/bench.c:159:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key_out[CPATH_KEY_MATERIAL_LEN];
data/tor-0.4.5.2-alpha/src/test/bench.c:169:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key_out[CPATH_KEY_MATERIAL_LEN];
data/tor-0.4.5.2-alpha/src/test/bench.c:180:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key_out[CPATH_KEY_MATERIAL_LEN];
data/tor-0.4.5.2-alpha/src/test/bench.c:409:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[CIPHER_KEY_LEN];
data/tor-0.4.5.2-alpha/src/test/bench.c:438:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[20];
data/tor-0.4.5.2-alpha/src/test/bench.c:508:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/tor-0.4.5.2-alpha/src/test/bench.c:530:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8192];
data/tor-0.4.5.2-alpha/src/test/bench.c:531:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char out[DIGEST512_LEN];
data/tor-0.4.5.2-alpha/src/test/bench.c:588:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key1[CIPHER_KEY_LEN], key2[CIPHER_KEY_LEN];
data/tor-0.4.5.2-alpha/src/test/bench.c:629:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dh_pubkey_a[DH1024_KEY_LEN], dh_pubkey_b[DH1024_KEY_LEN];
data/tor-0.4.5.2-alpha/src/test/bench.c:630:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char secret_a[DH1024_KEY_LEN], secret_b[DH1024_KEY_LEN];
data/tor-0.4.5.2-alpha/src/test/bench.c:665:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char secret_a[DH1024_KEY_LEN], secret_b[DH1024_KEY_LEN];
data/tor-0.4.5.2-alpha/src/test/fakecircs.c:34:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char whatevs_key[CPATH_KEY_MATERIAL_LEN];
data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_hsdescv2.c:36:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id[64];
data/tor-0.4.5.2-alpha/src/test/hs_test_helpers.c:57:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(link_specifier_getarray_un_ipv6_addr(ls_ip),
data/tor-0.4.5.2-alpha/src/test/hs_test_helpers.c:73:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&auth_kp, intro_auth_kp, sizeof(ed25519_keypair_t));
data/tor-0.4.5.2-alpha/src/test/hs_test_helpers.c:107:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&curve25519_kp, intro_enc_kp, sizeof(curve25519_keypair_t));
data/tor-0.4.5.2-alpha/src/test/hs_test_helpers.c:121:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ip->enc_key.public_key, curve25519_kp.pubkey.public_key,
data/tor-0.4.5.2-alpha/src/test/hs_test_helpers.c:149:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&desc->plaintext_data.signing_pubkey, &signing_kp->pubkey,
data/tor-0.4.5.2-alpha/src/test/hs_test_helpers.c:156:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&desc->plaintext_data.blinded_pubkey, &blinded_kp.pubkey,
data/tor-0.4.5.2-alpha/src/test/hs_test_helpers.c:173:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&desc->superencrypted_data.auth_ephemeral_pubkey,
data/tor-0.4.5.2-alpha/src/test/hs_test_helpers.c:262:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&desc->superencrypted_data.auth_ephemeral_pubkey,
data/tor-0.4.5.2-alpha/src/test/hs_test_helpers.c:430:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&auth->enc_seckey, client_sk, sizeof(curve25519_secret_key_t));
data/tor-0.4.5.2-alpha/src/test/rng_test_helpers.c:108:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fast_rng_seed, rng_seed, MIN(sizeof(rng_seed),
data/tor-0.4.5.2-alpha/src/test/rng_test_helpers.c:177:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, prefilled_rng_buffer + prefilled_rng_idx, n_to_copy);
data/tor-0.4.5.2-alpha/src/test/test-memwipe.c:38:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+i, s, MIN(strlen(s), BUF_LEN-i)); \
data/tor-0.4.5.2-alpha/src/test/test-memwipe.c:58:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUF_LEN];
data/tor-0.4.5.2-alpha/src/test/test-memwipe.c:68:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUF_LEN];
data/tor-0.4.5.2-alpha/src/test/test-memwipe.c:78:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUF_LEN];
data/tor-0.4.5.2-alpha/src/test/test-memwipe.c:98:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
volatile char buf[BUF_LEN];
data/tor-0.4.5.2-alpha/src/test/test-process.c:57:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/tor-0.4.5.2-alpha/src/test/test.c:75:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c_buf[TAP_ONIONSKIN_CHALLENGE_LEN];
data/tor-0.4.5.2-alpha/src/test/test.c:76:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c_keys[40];
data/tor-0.4.5.2-alpha/src/test/test.c:78:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s_buf[TAP_ONIONSKIN_REPLY_LEN];
data/tor-0.4.5.2-alpha/src/test/test.c:79:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s_keys[40];
data/tor-0.4.5.2-alpha/src/test/test.c:128:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk_buf[TAP_ONIONSKIN_CHALLENGE_LEN];
data/tor-0.4.5.2-alpha/src/test/test.c:129:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char junk_buf2[TAP_ONIONSKIN_CHALLENGE_LEN];
data/tor-0.4.5.2-alpha/src/test/test.c:132:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c_buf[TAP_ONIONSKIN_CHALLENGE_LEN];
data/tor-0.4.5.2-alpha/src/test/test.c:133:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c_keys[40];
data/tor-0.4.5.2-alpha/src/test/test.c:135:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s_buf[TAP_ONIONSKIN_REPLY_LEN];
data/tor-0.4.5.2-alpha/src/test/test.c:136:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s_keys[40];
data/tor-0.4.5.2-alpha/src/test/test.c:534:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char service_id[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test.c:535:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char service_id_base32[REND_SERVICE_ID_LEN_BASE32+1];
data/tor-0.4.5.2-alpha/src/test/test.c:538:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char computed_desc_id[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test.c:539:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parsed_desc_id[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_addr.c:34:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/test/test_addr.c:165:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[TOR_ADDR_BUF_LEN], bug[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/test/test_addr.c:166:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rbuf[REVERSE_LOOKUP_NAME_BUF_LEN];
data/tor-0.4.5.2-alpha/src/test/test_addr.c:1135:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/test/test_addr.c:1170:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/test/test_addr.c:1564:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sin6.sin6_addr.s6_addr, "\x20\x00\x00\x00\x00\x00\x00\x00"
data/tor-0.4.5.2-alpha/src/test/test_addr.c:1614:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/test/test_address.c:612:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(address,mock_addr,bytes_to_copy);
data/tor-0.4.5.2-alpha/src/test/test_address.c:1049:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(a->addr.in6_addr.s6_addr, expected, 16);
data/tor-0.4.5.2-alpha/src/test/test_address.c:1114:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(a->addr.in6_addr.s6_addr, toset, 16);
data/tor-0.4.5.2-alpha/src/test/test_address_set.c:147:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs->descriptor_digest, md->digest, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/test/test_bridges.c:254:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_bridges.c:256:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char fingerprint[HEX_DIGEST_LEN] =
data/tor-0.4.5.2-alpha/src/test/test_bridges.c:259:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ret_addr[16];
data/tor-0.4.5.2-alpha/src/test/test_bridges.c:293:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ret_addr[16];
data/tor-0.4.5.2-alpha/src/test/test_bridges.c:322:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_bridges.c:324:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char fingerprint[HEX_DIGEST_LEN] =
data/tor-0.4.5.2-alpha/src/test/test_bridges.c:354:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_bridges.c:356:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char fingerprint[HEX_DIGEST_LEN] =
data/tor-0.4.5.2-alpha/src/test/test_bridges.c:360:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ret_addr[16];
data/tor-0.4.5.2-alpha/src/test/test_bridges.c:392:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ret_addr[16];
data/tor-0.4.5.2-alpha/src/test/test_bridges.c:420:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest1[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_bridges.c:422:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char fingerprint[HEX_DIGEST_LEN] =
data/tor-0.4.5.2-alpha/src/test/test_bridges.c:619:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char fingerprint[HEX_DIGEST_LEN] =
data/tor-0.4.5.2-alpha/src/test/test_bridges.c:622:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char fingerprint2[HEX_DIGEST_LEN] =
data/tor-0.4.5.2-alpha/src/test/test_buffers.c:22:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[256];
data/tor-0.4.5.2-alpha/src/test/test_buffers.c:23:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str2[256];
data/tor-0.4.5.2-alpha/src/test/test_buffers.c:374:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[256];
data/tor-0.4.5.2-alpha/src/test/test_buffers.c:508:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[4096];
data/tor-0.4.5.2-alpha/src/test/test_buffers.c:732:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cp, tls_read_ptr, max);
data/tor-0.4.5.2-alpha/src/test/test_bwmgt.c:317:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs->descriptor_digest, md->digest, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/test/test_bwmgt.c:398:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&conn->addr, &relay_addr, sizeof(tor_addr_t));
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:70:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out->payload + RELAY_HEADER_SIZE, body, bodylen);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:407:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload, b, TAP_ONIONSKIN_CHALLENGE_LEN);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:422:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload, b, CREATE_FAST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:437:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload, "\x00\x00\x00\xBA", 4); /* TAP, 186 bytes long */
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:438:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload+4, b, TAP_ONIONSKIN_CHALLENGE_LEN);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:453:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload, "\x00\x02\x00\x54", 4); /* ntor, 84 bytes long */
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:454:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload+4, b, NTOR_ONIONSKIN_LEN);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:469:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload, "ntorNTORntorNTOR", 16);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:470:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload+16, b, NTOR_ONIONSKIN_LEN);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:490:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload, "\x00\x50\x00\x99", 4); /* Type 0x50???? */
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:493:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload, "\x00\x00\x00\xBC", 4); /* TAP, 187 bytes.*/
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:496:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload, "\x00\x00\x02\x00", 4); /* TAP, 512 bytes.*/
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:525:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload, b, TAP_ONIONSKIN_REPLY_LEN);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:539:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload, b, CREATED_FAST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:553:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload, "\x00\x40", 2);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:554:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload+2, b, 64);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:568:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload, "\x01\xF0", 2);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:569:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload+2, b, 496);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:583:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload, "\x01\xF1", 2);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:613:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "\x12\xf4\x00\x01\x01\x02", 6); /* 18 244 0 1 : 258 */
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:614:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+6,b,TAP_ONIONSKIN_CHALLENGE_LEN);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:615:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+6+TAP_ONIONSKIN_CHALLENGE_LEN, "electroencephalogram", 20);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:636:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "\x12\xf4\x00\x01\x01\x02", 6); /* 18 244 0 1 : 258 */
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:637:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+6,"ntorNTORntorNTOR", 16);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:638:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+22, b, NTOR_ONIONSKIN_LEN);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:639:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+6+TAP_ONIONSKIN_CHALLENGE_LEN, "electroencephalogram", 20);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:663:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "\x02\x00\x06\x12\xf4\x00\x01\xf0\xf1", 9);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:665:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+9, "\x02\x14" "anarchoindividualist", 22);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:667:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+31, "\x00\x02\x00\x54", 4);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:668:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+35, b, NTOR_ONIONSKIN_LEN);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:691:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "\x04\x00\x06\x12\xf4\x00\x01\xf0\xf1", 9);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:693:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+9, "\x02\x14" "anthropomorphization", 22);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:695:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+31, "\x01\x12\x20\x02\x00\x00\x00\x00\x00\x00"
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:698:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+51, "\xf0\x20upupdowndownleftrightleftrightba", 34);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:700:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+85, "\x01\x05\x00\x63", 4);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:701:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+89, b, 99);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:733:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ec.ed_pubkey.pubkey,
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:774:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "\x02", 1);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:775:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+1, "\x02\x14" "anthropomorphization", 22);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:776:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+23, "\x01\x12" "xxxxxxxxxxxxxxxxYY", 20);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:777:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+43, "\xff\xff\x00\x20", 4);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:810:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "\x02\x00\x06\x12\xf4\x00\x01\xf0\xf1", 9);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:811:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+9, "\x02\x14" "anarchoindividualist", 22);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:812:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+31, "\xff\xff\x01\xd0", 4);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:818:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "\x03\x00\x06\x12\xf4\x00\x01\xf0\xf1", 9);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:819:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+9, "\x02\x14" "anarchoindividualist", 22);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:820:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+31, "\x02\x14" "autodepolymerization", 22);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:821:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+53, "\xff\xff\x00\x10", 4);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:827:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "\x01\x00\x06\x12\xf4\x00\x01\xf0\xf1", 9);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:828:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+53, "\xff\xff\x00\x10", 4);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:834:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "\x02\x00\x07\x12\xf4\x00\x01\xf0\xf1\xff", 10);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:835:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+10, "\x02\x14" "anarchoindividualist", 22);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:836:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+32, "\xff\xff\x00\x10", 4);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:840:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "\x02\x00\x05\x12\xf4\x00\x01\xf0", 8);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:841:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+8, "\x02\x14" "anarchoindividualist", 22);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:842:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+30, "\xff\xff\x00\x10", 4);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:848:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "\x03\x00\x06\x12\xf4\x00\x01\xf0\xf1", 9);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:849:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+9, "\x02\x14" "anarchoindividualist", 22);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:850:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+31, "\x01\x13" "xxxxxxxxxxxxxxxxYYZ", 19);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:851:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+50, "\xff\xff\x00\x20", 4);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:855:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "\x03\x00\x06\x12\xf4\x00\x01\xf0\xf1", 9);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:856:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+9, "\x02\x14" "anarchoindividualist", 22);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:857:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+31, "\x01\x11" "xxxxxxxxxxxxxxxxY", 17);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:858:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+48, "\xff\xff\x00\x20", 4);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:864:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "\x05\x0a\xff", 3);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:865:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+3+255, "\x0a\xff", 2);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:904:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p,b,TAP_ONIONSKIN_REPLY_LEN);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:921:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p,"\x00\x2a",2);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:922:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p+2,b,42);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:935:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "\x01\xf0", 2);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:941:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, "\x01\xf1", 2);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:970:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload + RELAY_HEADER_SIZE, (s), sizeof((s))-1); \
data/tor-0.4.5.2-alpha/src/test/test_channel.c:1009:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rsa_id[N_CHAN][DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_channel.c:1028:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rsa_id[4], rsa_id[2], DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_channel.c:1031:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rsa_id[4], rsa_id[2], DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_channel.c:1032:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rsa_id[5], rsa_id[2], DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_channel.c:1035:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ed_id[5], ed_id[2], sizeof(*ed_id[2]));
data/tor-0.4.5.2-alpha/src/test/test_channel.c:1336:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_channelpadding.c:635:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(relay->identity_digest,
data/tor-0.4.5.2-alpha/src/test/test_channeltls.c:59:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char test_digest[DIGEST_LEN] = {
data/tor-0.4.5.2-alpha/src/test/test_channeltls.c:105:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char test_digest[DIGEST_LEN] = {
data/tor-0.4.5.2-alpha/src/test/test_channeltls.c:191:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char test_digest[DIGEST_LEN] = {
data/tor-0.4.5.2-alpha/src/test/test_channeltls.c:292:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(result->base_.addr), addr, sizeof(tor_addr_t));
data/tor-0.4.5.2-alpha/src/test/test_channeltls.c:294:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(result->identity_digest, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_channeltls.c:296:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&result->base_.addr, addr, sizeof(tor_addr_t));
data/tor-0.4.5.2-alpha/src/test/test_circuitbuild.c:335:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(old_ec, ec, sizeof(extend_cell_t));
data/tor-0.4.5.2-alpha/src/test/test_circuitbuild.c:345:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(old_ec, ec, sizeof(extend_cell_t));
data/tor-0.4.5.2-alpha/src/test/test_circuitbuild.c:358:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(old_ec, ec, sizeof(extend_cell_t));
data/tor-0.4.5.2-alpha/src/test/test_circuitbuild.c:377:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(old_ec, ec, sizeof(extend_cell_t));
data/tor-0.4.5.2-alpha/src/test/test_circuitbuild.c:397:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(old_ec, ec, sizeof(extend_cell_t));
data/tor-0.4.5.2-alpha/src/test/test_circuitbuild.c:417:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(old_ec, ec, sizeof(extend_cell_t));
data/tor-0.4.5.2-alpha/src/test/test_circuitbuild.c:439:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(old_ec, ec, sizeof(extend_cell_t));
data/tor-0.4.5.2-alpha/src/test/test_circuitbuild.c:860:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(old_ec, ec, sizeof(extend_cell_t));
data/tor-0.4.5.2-alpha/src/test/test_circuitbuild.c:872:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ec, old_ec, sizeof(extend_cell_t));
data/tor-0.4.5.2-alpha/src/test/test_circuitbuild.c:1018:35: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char ip_version = ((const char *)arg)[0];
data/tor-0.4.5.2-alpha/src/test/test_circuitbuild.c:1204:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell_out, &mock_extend_cell_parse_cell_out,
data/tor-0.4.5.2-alpha/src/test/test_circuitbuild.c:1521:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char keys[CPATH_KEY_MATERIAL_LEN] = {0};
data/tor-0.4.5.2-alpha/src/test/test_circuitpadding.c:1579:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char whatevs_key[CPATH_KEY_MATERIAL_LEN];
data/tor-0.4.5.2-alpha/src/test/test_circuitpadding.c:1580:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_config.c:78:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/tor-0.4.5.2-alpha/src/test/test_config.c:79:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char address[256];
data/tor-0.4.5.2-alpha/src/test/test_config.c:995:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *ret_addr_lookup_01010101[2] = {
data/tor-0.4.5.2-alpha/src/test/test_config.c:1164:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *ret_get_interface_address6_08080808[2] = {
data/tor-0.4.5.2-alpha/src/test/test_config.c:1802:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char digest[DIGEST_LEN] = "";
data/tor-0.4.5.2-alpha/src/test/test_config.c:1838:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char digest[DIGEST_LEN] = "";
data/tor-0.4.5.2-alpha/src/test/test_config.c:5325:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char torrc_contents[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5356:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char torrc_contents[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5388:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char torrc_contents[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5427:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char torrc_contents[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5466:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char torrc_contents[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5504:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file_contents[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5537:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expected[10];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5569:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file_contents[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5602:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expected[10];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5677:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char torrc_contents[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5691:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expected[10];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5744:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char torrc_contents[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5759:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expected[10];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5823:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char torrc_contents[1000] = "%include does_not_exist\n";
data/tor-0.4.5.2-alpha/src/test/test_config.c:5856:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char torrc_contents[1000] = "Test 1\n";
data/tor-0.4.5.2-alpha/src/test/test_config.c:5880:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char conf_empty[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5916:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char conf_empty[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5920:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char conf_include[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5957:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char conf_empty[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:5961:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char conf_include[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:6027:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char torrc_contents[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:6063:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expected[10];
data/tor-0.4.5.2-alpha/src/test/test_config.c:6169:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char torrc_contents[1000];
data/tor-0.4.5.2-alpha/src/test/test_config.c:6173:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expected[10];
data/tor-0.4.5.2-alpha/src/test/test_config.c:6430:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char torrc_contents[1000];
data/tor-0.4.5.2-alpha/src/test/test_conscache.c:139:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char num[8];
data/tor-0.4.5.2-alpha/src/test/test_conscache.c:282:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char num[8];
data/tor-0.4.5.2-alpha/src/test/test_consdiffmgr.c:88:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char valid_after_string[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_consdiffmgr.c:458:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *md_body[N], *ns_body[N];
data/tor-0.4.5.2-alpha/src/test/test_consdiffmgr.c:614:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *md_body[N];
data/tor-0.4.5.2-alpha/src/test/test_consdiffmgr.c:749:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *md_body[N];
data/tor-0.4.5.2-alpha/src/test/test_containers.c:718:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_controller.c:779:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(ns_dl_status[i]), &dl_status_default,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:781:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(ns_dl_status_bootstrap[i]), &dl_status_default,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:783:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(ns_dl_status_running[i]), &dl_status_default,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:787:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&auth_def_cert_download_status_1, &dl_status_default,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:789:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&auth_def_cert_download_status_2, &dl_status_default,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:791:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&auth_1_sk_1_dls, &dl_status_default,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:793:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&auth_1_sk_2_dls, &dl_status_default,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:795:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&auth_2_sk_1_dls, &dl_status_default,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:797:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&auth_2_sk_2_dls, &dl_status_default,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:800:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&descbr_digest_1_dl, &dl_status_default,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:802:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&descbr_digest_2_dl, &dl_status_default,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:846:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN], *tmp;
data/tor-0.4.5.2-alpha/src/test/test_controller.c:856:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_controller.c:862:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_controller.c:873:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest_str[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_controller.c:894:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sk[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_controller.c:895:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest_str[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_controller.c:914:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, sk, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_controller.c:920:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, sk, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_controller.c:928:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, sk, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_controller.c:934:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, sk, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_controller.c:946:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fp_digest_str[HEX_DIGEST_LEN+1], sk_digest_str[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1005:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN], *tmp;
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1016:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1022:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1034:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest_str[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1115:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(ns_dl_status[FLAV_NS]), &dls_sample_1,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1126:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(ns_dl_status[FLAV_MICRODESC]), &dls_sample_2,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1137:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(ns_dl_status_bootstrap[FLAV_NS]), &dls_sample_3,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1148:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(ns_dl_status_bootstrap[FLAV_MICRODESC]), &dls_sample_4,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1160:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(ns_dl_status_running[FLAV_NS]), &dls_sample_5,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1172:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&(ns_dl_status_running[FLAV_MICRODESC]), &dls_sample_6,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1228:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&auth_def_cert_download_status_1, &dls_sample_1,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1241:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&auth_def_cert_download_status_2, &dls_sample_2,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1276:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&auth_1_sk_1_dls, &dls_sample_3,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1290:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&auth_1_sk_2_dls, &dls_sample_4,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1304:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&auth_2_sk_1_dls, &dls_sample_5,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1318:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&auth_2_sk_2_dls, &dls_sample_6,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1523:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&descbr_digest_1_dl, &dls_sample_1,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1536:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&descbr_digest_2_dl, &dls_sample_2,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1627:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&descbr_digest_1_dl, &dls_sample_3,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1640:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&descbr_digest_2_dl, &dls_sample_4,
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1856:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timebuf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:44:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char p1[DH1024_KEY_LEN];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:45:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char p2[DH1024_KEY_LEN];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:46:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[DH1024_KEY_LEN];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:47:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s2[DH1024_KEY_LEN];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:265:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[CIPHER_KEY_LEN];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:453:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[32];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:454:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iv[16];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:455:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char plaintext[16*4];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:478:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[RFC_4231_MAX_KEY_SIZE];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:479:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:480:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data[DIGEST512_LEN];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:481:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d_out1[DIGEST512_LEN], d_out2[DIGEST512_LEN];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:646:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data[DIGEST512_LEN];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:647:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d_out1[DIGEST512_LEN], d_out2[DIGEST512_LEN];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1048:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hmac_manual[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1067:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(all, &key_len_netorder, sizeof(key_len_netorder));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1068:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(all + sizeof(key_len_netorder), key_msg_concat,
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1089:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data1[1024], data2[1024], data3[1024];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1134:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data2+1, "XYZZY", 5); /* This has fails ~ once-in-2^40 */
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1215:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char encoded[512];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1216:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[DIGEST_LEN], d2[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1217:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fingerprint[FINGERPRINT_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1344:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1457:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1631:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char plain_1[1], plain_15[15], plain_16[16], plain_17[17];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1632:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key1[16], key2[16];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1743:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char plain[60], encoded[96 + 1], decoded[60];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1974:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char e1k[32];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1975:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char e2k[32];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1976:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char e1e2k[32];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1977:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char e2e1k[32];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1978:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char e1[32] = {3};
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1979:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char e2[32] = {5};
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1980:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char k[32] = {9};
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2110:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64], buf_nopad[64];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2235:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&kp1.pubkey, &pub1, sizeof(pub1));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2236:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&kp1.seckey, &sec1, sizeof(sec1));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2487:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ED25519_SIG_BASE64_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2667:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&curvekp.seckey.secret_key, esk.seckey, 32);
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2678:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&keypair.seckey, &esk, sizeof(esk));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2679:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&keypair.pubkey, &pk, sizeof(pk));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2861:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[FAILURE_MODE_BUFFER_SIZE];
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2910:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[FAILURE_MODE_BUFFER_SIZE];
data/tor-0.4.5.2-alpha/src/test/test_crypto_openssl.c:79:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data1[1024];
data/tor-0.4.5.2-alpha/src/test/test_crypto_openssl.c:80:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data2[1024];
data/tor-0.4.5.2-alpha/src/test/test_crypto_openssl.c:81:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data3[1024];
data/tor-0.4.5.2-alpha/src/test/test_crypto_rng.c:20:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data1[100], data2[100];
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:29:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[29];
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:30:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[29];
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:44:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,"vrbacrda",8);
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:45:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf2,"vrbacrda",8);
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:50:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf3+i, "vrbacrda12345678", 16);
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:90:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf2, buf+speclen, keylen);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:196:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char platform[256];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:296:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fingerprint[FINGERPRINT_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:409:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cert_buf[256];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:701:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cert_buf[256];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:793:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char k[ED25519_BASE64_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1141:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[20];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1208:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1368:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1519:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1579:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1601:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1602:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hexdigest[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:2225:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bw_file_headers_str_long[MAX_BW_FILE_HEADER_COUNT_IN_VOTE * 8 + 1] = "";
data/tor-0.4.5.2-alpha/src/test/test_dir.c:2230:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char header_lines_long[MAX_BW_FILE_HEADER_COUNT_IN_VOTE * 8 + 1] = "";
data/tor-0.4.5.2-alpha/src/test/test_dir.c:2546:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[8] = "foo=bar\0";
data/tor-0.4.5.2-alpha/src/test/test_dir.c:4390:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs.identity_digest, "Stately, plump Buck ", DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:4391:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs.descriptor_digest, "Mulligan came up fro", DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:4456:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest_empty_str[DIGEST256_LEN] = "01234567890123456789abcdefghijkl";
data/tor-0.4.5.2-alpha/src/test/test_dir.c:4460:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest_expected[DIGEST256_LEN] = "01234567890123456789abcdefghijkl";
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5394:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5657:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char test_desc_1_hash_str[HEX_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5671:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char test_desc_2_hash_str[HEX_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5685:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char test_desc_3_hash_str[HEX_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5698:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char test_desc_4_hash_str[HEX_DIGEST256_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6287:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(result, file_content, file_content_len);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6293:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(stat_out, &file_stat, sizeof(file_stat));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6898:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char platform[256];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:7097:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:7098:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fp[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:7182:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fp[HEX_DIGEST_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_dir.c:7194:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs.identity_digest, "Cloud nine is great ", DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:7203:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(vrs.ed25519_id, &kp.pubkey, ED25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:7238:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_dir_common.c:210:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(r->cache_info.identity_digest, rs->identity_digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_dir_common.c:211:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(r->cache_info.signed_descriptor_digest, rs->descriptor_digest,
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:405:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[30];
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:406:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char req[70];
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:409:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:530:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:531:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest_base64[128];
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:532:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[80];
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:591:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:592:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest_base64[128];
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:593:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[80];
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:986:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char req[155];
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1047:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char req_header[155]; /* XXX Why 155? What kind of number is that?? */
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1117:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char req_header[155]; /* XXX 155? Why 155? */
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1208:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char digest[DIGEST_LEN] = "";
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1370:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char digest[DIGEST_LEN] = "";
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1392:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char req[71];
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1467:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char req[71];
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1528:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char digest[DIGEST_LEN] = "";
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1551:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char req[115];
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1587:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char digest[DIGEST_LEN] = "";
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1614:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char req[71];
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2078:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char digest[DIGEST_LEN] = "";
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2455:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char digest[DIGEST_LEN] = "";
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2565:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expbuf[RFC1123_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2614:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char digest[DIGEST_LEN] = "";
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2701:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char digest[DIGEST_LEN] = "";
data/tor-0.4.5.2-alpha/src/test/test_dirvote.c:29:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_dirvote.c:34:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char sha1_digest_t[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_dirvote.c:269:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest_one[DIGEST_LEN] = "aaaa";
data/tor-0.4.5.2-alpha/src/test/test_dirvote.c:272:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest_two[DIGEST_LEN] = "bbbb";
data/tor-0.4.5.2-alpha/src/test/test_entrynodes.c:168:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(n->rs->identity_digest, n->identity, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_entrynodes.c:182:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nickname_binary[8];
data/tor-0.4.5.2-alpha/src/test/test_entrynodes.c:342:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(g.identity, "theforestprimeval---", DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_entrynodes.c:388:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(eg->identity, "plurpyflurpyslurpydo", DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_entrynodes.c:415:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(eg->identity, "plurpyflurpyslurpydo", DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_entrynodes.c:1019:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(bl->digest, n[4]->identity, 20);
data/tor-0.4.5.2-alpha/src/test/test_entrynodes.c:2043:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rst->exclude_id, g->identity, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_entrynodes.c:2904:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(conn->identity_digest, g->identity, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_extorport.c:167:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cookie0[32];
data/tor-0.4.5.2-alpha/src/test/test_extorport.c:204:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cookie0, ext_or_auth_cookie, 32);
data/tor-0.4.5.2-alpha/src/test/test_extorport.c:221:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hmac1[32], hmac2[32];
data/tor-0.4.5.2-alpha/src/test/test_extorport.c:223:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char client_nonce[32] =
data/tor-0.4.5.2-alpha/src/test/test_extorport.c:240:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ext_or_auth_cookie, "s beside you? When I count, ther", 32);
data/tor-0.4.5.2-alpha/src/test/test_extorport.c:272:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(server_hash_input+46+32, reply+32, 32);
data/tor-0.4.5.2-alpha/src/test/test_extorport.c:273:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(client_hash_input+46+32, reply+32, 32);
data/tor-0.4.5.2-alpha/src/test/test_extorport.c:289:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(server_hash_input+46+32, reply2+32, 32);
data/tor-0.4.5.2-alpha/src/test/test_extorport.c:290:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(client_hash_input+46+32, reply2+32, 32);
data/tor-0.4.5.2-alpha/src/test/test_extorport.c:317:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ext_or_auth_cookie, "Gliding wrapt in a brown mantle," , 32);
data/tor-0.4.5.2-alpha/src/test/test_extorport.c:402:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[256];
data/tor-0.4.5.2-alpha/src/test/test_extorport.c:432:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[256];
data/tor-0.4.5.2-alpha/src/test/test_extorport.c:439:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ext_or_auth_cookie, "Gliding wrapt in a brown mantle," , 32);
data/tor-0.4.5.2-alpha/src/test/test_guardfraction.c:37:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest_tmp[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_guardfraction.c:47:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs->identity_digest, digest_tmp, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_helpers.c:82:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_hs.c:244:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/test/test_hs.c:377:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_hs.c:378:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char client_cookie[REND_DESC_COOKIE_LEN];
data/tor-0.4.5.2-alpha/src/test/test_hs.c:465:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rend_pk_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_hs_cache.c:39:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char query_b64[256];
data/tor-0.4.5.2-alpha/src/test/test_hs_cache.c:248:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hsdir_cache_key[ED25519_BASE64_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_hs_cache.c:508:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&wanted_subcredential, &published_desc->subcredential,
data/tor-0.4.5.2-alpha/src/test/test_hs_cell.c:33:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char circ_nonce[DIGEST_LEN] = {0};
data/tor-0.4.5.2-alpha/src/test/test_hs_cell.c:101:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char circ_nonce[DIGEST_LEN] = {0};
data/tor-0.4.5.2-alpha/src/test/test_hs_client.c:154:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char service_id[REND_SERVICE_ID_LEN_BASE32+1] = {0};
data/tor-0.4.5.2-alpha/src/test/test_hs_client.c:260:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char keys[DIGEST_LEN+CPATH_KEY_MATERIAL_LEN];
data/tor-0.4.5.2-alpha/src/test/test_hs_client.c:268:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rend_cell_body+DH1024_KEY_LEN, keys, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_hs_client.c:538:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ip_addr[TOR_ADDR_BUF_LEN];
data/tor-0.4.5.2-alpha/src/test/test_hs_client.c:1198:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_hs_client.c:1371:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:116:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char onion_addr[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:222:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN + 1];
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:300:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs->identity_digest, identity, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:308:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ri->cache_info.identity_digest, identity, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:498:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char onion_addr[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:750:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummy[2000];
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:977:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nickname_binary[8];
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:978:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nickname_str[13] = {0};
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:1485:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[32];
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:1539:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char test_vector[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:1555:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char test_vector[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:1672:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char client_hsdir_b64_digest[BASE64_DIGEST_LEN+1] = {0};
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:92:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(node.identity, digest, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:103:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char onion_address[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:106:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char base64_blinded_pk[ED25519_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:124:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(hsdir_rs.identity_digest, HSDIR_EXIST_ID, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:126:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&ident.identity_pk, &identity_kp.pubkey,
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:128:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&ident.blinded_pk, &blinded_pk, sizeof(blinded_pk));
data/tor-0.4.5.2-alpha/src/test/test_hs_descriptor.c:70:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *b64_cert, buf[256];
data/tor-0.4.5.2-alpha/src/test/test_hs_descriptor.c:307:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&desc->superencrypted_data.auth_ephemeral_pubkey,
data/tor-0.4.5.2-alpha/src/test/test_hs_descriptor.c:746:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sig_b64[ED25519_SIG_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:158:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(auth_key_ptr, auth_key_kp.pubkey.pubkey, auth_key_len);
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:190:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char circ_nonce[DIGEST_LEN] = {0};
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:198:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(intro_circ->rend_circ_nonce, circ_nonce, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:225:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(circ->rend_circ_nonce, circ_nonce, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:234:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char circ_nonce[DIGEST_LEN] = {0};
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:258:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char circ_nonce[DIGEST_LEN] = {0};
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:293:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char circ_nonce[DIGEST_LEN] = {0};
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:325:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(auth_key_ptr, key_struct.pubkey.pubkey, ED25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:339:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sig_ptr, sig.sig, cell->sig_len);
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:364:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char circ_nonce[DIGEST_LEN] = {0};
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:409:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char circ_nonce[DIGEST_LEN] = {0};
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:454:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char circ_nonce[DIGEST_LEN] = {0};
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:491:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char circ_nonce[DIGEST_LEN] = {0};
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:529:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char circ_nonce[DIGEST_LEN] = {0};
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:626:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:872:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(auth_key.pubkey, cell_auth_key, ED25519_PUBKEY_LEN);
data/tor-0.4.5.2-alpha/src/test/test_hs_intropoint.c:922:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char circ_nonce[DIGEST_LEN] = {0};
data/tor-0.4.5.2-alpha/src/test/test_hs_ntor_cl.c:39:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
var = atoi(argv[(idx)]); \
data/tor-0.4.5.2-alpha/src/test/test_hs_ntor_cl.c:61:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/test/test_hs_ntor_cl.c:116:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/test/test_hs_ntor_cl.c:196:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/test/test_hs_ob.c:25:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char onion_addr_1[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/test/test_hs_ob.c:28:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char onion_addr_2[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/test/test_hs_ob.c:211:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char current_subcred[SUBCRED_LEN];
data/tor-0.4.5.2-alpha/src/test/test_hs_ob.c:212:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char next_subcred[SUBCRED_LEN];
data/tor-0.4.5.2-alpha/src/test/test_hs_ob.c:215:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(service->desc_current->desc->subcredential.subcred, current_subcred,
data/tor-0.4.5.2-alpha/src/test/test_hs_ob.c:217:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(service->desc_next->desc->subcredential.subcred, next_subcred,
data/tor-0.4.5.2-alpha/src/test/test_hs_service.c:123:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char relay_payload[RELAY_PAYLOAD_SIZE];
data/tor-0.4.5.2-alpha/src/test/test_hs_service.c:141:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(relay_payload, payload, payload_len);
data/tor-0.4.5.2-alpha/src/test/test_hs_service.c:293:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(client_out->client_pk.public_key,
data/tor-0.4.5.2-alpha/src/test/test_hs_service.c:386:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addr[HS_SERVICE_ADDR_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/test/test_hs_service.c:1870:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char rend1_payload[RELAY_PAYLOAD_SIZE];
data/tor-0.4.5.2-alpha/src/test/test_hs_service.c:1891:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rend1_payload, payload, payload_len);
data/tor-0.4.5.2-alpha/src/test/test_hs_service.c:2397:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&x_service.desc_next->desc->subcredential, &x_subcred, SUBCRED_LEN);
data/tor-0.4.5.2-alpha/src/test/test_introduce.c:287:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:43:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newcell, vc, sizeof(var_cell_t));
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:44:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newcell->payload, vc->payload, vc->payload_len);
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:105:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(secrets_out, "int getRandomNumber(){return 4;}", 32);
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:421:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(certs_cell_cert_getarray_body(ccc1), enca, lena);
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:422:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(certs_cell_cert_getarray_body(ccc2), encb, lenb);
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:447:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(certs_cell_cert_getarray_body(ccc3), id_sign->encoded,
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:449:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(certs_cell_cert_getarray_body(ccc4), secondary->encoded,
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:451:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(certs_cell_cert_getarray_body(ccc5), cc, ccc5->cert_len);
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:591:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->cell->payload, "\x01\x01\x00\x05", 4);
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:597:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->cell->payload, "\x01\x01\x00\x05""abc", 7);
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:717:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(certs_cell_cert_getarray_body(cert),
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:815:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(body, encoded, encoded_len);
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:835:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(certs_cell_cert_getarray_body(cert), encoded, encoded_len);
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:892:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(certs_cell_cert_getarray_body(certs_cell_get_certs(d->ccell, 1)),
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:1161:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(secrets_out, "int getRandomNumber(){return 4;}", 32);
data/tor-0.4.5.2-alpha/src/test/test_link_handshake.c:1357:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&sig.sig, auth1_getarray_sig(auth1), ED25519_SIG_LEN);
data/tor-0.4.5.2-alpha/src/test/test_metrics.c:86:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char _c_buf[256];
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:74:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d1[DIGEST256_LEN], d2[DIGEST256_LEN], d3[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:805:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(mock_rgsbd_val_a->descriptor_digest, d, 32);
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:808:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(mock_rgsbd_val_b->descriptor_digest, d, 32);
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:830:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:41:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vname[MAX_VERBOSE_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:63:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vname[MAX_VERBOSE_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:73:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(mock_node.identity,
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:170:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ri[i]->cache_info.identity_digest, rs[i]->identity_digest,
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:172:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs[i]->descriptor_digest, md[i]->digest, DIGEST256_LEN);
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:174:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&ri[i]->cache_info.signing_key_cert->signing_key,
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:215:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(md[4]->ed25519_identity_pkey, md[3]->ed25519_identity_pkey,
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:217:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&ri[4]->cache_info.signing_key_cert->signing_key,
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:437:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fake_node->identity, id, DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:505:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(mock_node.identity, ".forabettertomorrow.", DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:558:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(mock_node1.identity, "NodeOneNode1NodeOne1", DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:559:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(mock_node2.identity, "SecondNodeWe'reTestn", DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:656:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mock_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:657:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mock_nickname[MAX_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:663:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ndesc[NODE_DESC_BUF_LEN];
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:786:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mock_nickname[MAX_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:885:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mock_nickname[MAX_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:1234:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mock_nickname[MAX_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:1236:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vname[MAX_VERBOSE_NICKNAME_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:1246:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(mock_ri.cache_info.identity_digest,
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:1272:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs_orig.identity_digest, "abcdefghijklmnopqrst", 20);
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:1273:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs_orig.descriptor_digest, "abcdefghijklmnopqrst", 20);
data/tor-0.4.5.2-alpha/src/test/test_ntor_cl.c:29:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
var = atoi(argv[(idx)]); \
data/tor-0.4.5.2-alpha/src/test/test_ntor_cl.c:44:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/tor-0.4.5.2-alpha/src/test/test_ntor_cl.c:78:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/tor-0.4.5.2-alpha/src/test/test_oom.c:71:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[3000];
data/tor-0.4.5.2-alpha/src/test/test_options.c:4107:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&a->sev, sev, sizeof(log_severity_list_t));
data/tor-0.4.5.2-alpha/src/test/test_options.c:4118:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&a->sev, sev, sizeof(log_severity_list_t));
data/tor-0.4.5.2-alpha/src/test/test_parsecommon.c:383:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char decoded[256];
data/tor-0.4.5.2-alpha/src/test/test_pem.c:34:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4096];
data/tor-0.4.5.2-alpha/src/test/test_pem.c:67:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[4096];
data/tor-0.4.5.2-alpha/src/test/test_pem.c:122:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char crlf_version[4096];
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1063:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[POLICY_BUF_LEN];
data/tor-0.4.5.2-alpha/src/test/test_policy.c:2554:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ipv6_array, in6_addr, addr_len);
data/tor-0.4.5.2-alpha/src/test/test_process_slow.c:122:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buffer[MAX_PATH];
data/tor-0.4.5.2-alpha/src/test/test_process_slow.c:132:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(offset, TEST_PROCESS, strlen(TEST_PROCESS));
data/tor-0.4.5.2-alpha/src/test/test_process_slow.c:246:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char argv0_expected[256];
data/tor-0.4.5.2-alpha/src/test/test_proto_misc.c:25:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[1024];
data/tor-0.4.5.2-alpha/src/test/test_proto_misc.c:216:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[60];
data/tor-0.4.5.2-alpha/src/test/test_protover.c:707:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pv[30];
data/tor-0.4.5.2-alpha/src/test/test_pt.c:39:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[200];
data/tor-0.4.5.2-alpha/src/test/test_pt.c:200:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[200];
data/tor-0.4.5.2-alpha/src/test/test_relaycell.c:58:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(srm_answer, answer, answer_len < 512 ? answer_len : 512);
data/tor-0.4.5.2-alpha/src/test/test_relaycell.c:178:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload+RELAY_HEADER_SIZE, (body_s), sizeof((body_s))-1); \
data/tor-0.4.5.2-alpha/src/test/test_relaycell.c:883:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cell.payload + RELAY_HEADER_SIZE, (s), sizeof((s))-1); \
data/tor-0.4.5.2-alpha/src/test/test_relaycrypt.c:22:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char KEY_MATERIAL[3][CPATH_KEY_MATERIAL_LEN] = {
data/tor-0.4.5.2-alpha/src/test/test_relaycrypt.c:107:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&encrypted, &orig, sizeof(orig));
data/tor-0.4.5.2-alpha/src/test/test_relaycrypt.c:152:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&encrypted, &orig, sizeof(orig));
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:34:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:83:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:87:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char client_cookie[REND_DESC_COOKIE_LEN];
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:231:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(TO_REND_DATA_V2(mock_rend_query)->descriptor_cookie, client_cookie,
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:302:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:388:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc_id_base32[REND_DESC_ID_V2_LEN_BASE32 + 1];
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:724:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char key_ip_one[DIGEST_LEN] = "ip1";
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:725:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char key_ip_two[DIGEST_LEN] = "ip2";
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:726:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char key_foo[DIGEST_LEN] = "foo1";
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:856:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char key_one[DIGEST_LEN] = "ip1";
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:857:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char key_two[DIGEST_LEN] = "ip2";
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:1021:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char identity[DIGEST_LEN] = "foo1";
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:1053:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char key[DIGEST_LEN] = "foo1";
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:1084:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char key[DIGEST_LEN] = "abcde";
data/tor-0.4.5.2-alpha/src/test/test_router.c:451:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fake_node.identity, "whydoyouasknonononon", DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_routerkeys.c:37:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fp[FINGERPRINT_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_routerkeys.c:100:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ed25519_id[BASE64_DIGEST256_LEN + 1];
data/tor-0.4.5.2-alpha/src/test/test_routerkeys.c:223:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(junk, cert[0]->encoded, cert[0]->encoded_len);
data/tor-0.4.5.2-alpha/src/test/test_routerkeys.c:647:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[20];
data/tor-0.4.5.2-alpha/src/test/test_routerkeys.c:648:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/tor-0.4.5.2-alpha/src/test/test_routerlist.c:65:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char output[4*BASE64_DIGEST256_LEN+3+2+2+1];
data/tor-0.4.5.2-alpha/src/test/test_sendme.c:191:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(or_circ->crypto.sendme_digest, digest, sizeof(digest));
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:175:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN + 1];
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:247:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[ISO_TIME_LEN + 1];
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:530:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char raw_rand[32];
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:532:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hashed_rand[DIGEST256_LEN], hashed_reveal[DIGEST256_LEN];
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:576:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char encoded[SR_REVEAL_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:587:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char encoded[SR_COMMIT_BASE64_LEN + 1];
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:692:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:925:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(place_holder, commit_d, sizeof(*place_holder));
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:1140:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:1341:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&old_current_srv, sr_state_get_current_srv(), sizeof(sr_srv_t));
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:1478:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fp[FINGERPRINT_LEN + 1];
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:1529:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dup_commit, commit, sizeof(*dup_commit));
data/tor-0.4.5.2-alpha/src/test/test_stats.c:456:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char t[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:209:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fns[8];
data/tor-0.4.5.2-alpha/src/test/test_threads.c:43:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/tor-0.4.5.2-alpha/src/test/test_tortls_openssl.c:64:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(method, TLSv1_method(), sizeof(SSL_METHOD));
data/tor-0.4.5.2-alpha/src/test/test_tortls_openssl.c:1434:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/tor-0.4.5.2-alpha/src/test/test_tortls_openssl.c:1508:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/tor-0.4.5.2-alpha/src/test/test_util.c:139:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(fifo_name, O_RDONLY|O_BINARY);
data/tor-0.4.5.2-alpha/src/test/test_util.c:430:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timestr[128];
data/tor-0.4.5.2-alpha/src/test/test_util.c:1403:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_util.c:1507:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/tor-0.4.5.2-alpha/src/test/test_util.c:1645:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[1024];
data/tor-0.4.5.2-alpha/src/test/test_util.c:1646:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[128];
data/tor-0.4.5.2-alpha/src/test/test_util.c:1647:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf3[128];
data/tor-0.4.5.2-alpha/src/test/test_util.c:1648:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf4[128];
data/tor-0.4.5.2-alpha/src/test/test_util.c:1704:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/tor-0.4.5.2-alpha/src/test/test_util.c:1745:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[1024];
data/tor-0.4.5.2-alpha/src/test/test_util.c:1746:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[128];
data/tor-0.4.5.2-alpha/src/test/test_util.c:1747:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf3[128];
data/tor-0.4.5.2-alpha/src/test/test_util.c:1748:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf4[128];
data/tor-0.4.5.2-alpha/src/test/test_util.c:1749:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf5[128];
data/tor-0.4.5.2-alpha/src/test/test_util.c:1750:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf6[128];
data/tor-0.4.5.2-alpha/src/test/test_util.c:2165:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/tor-0.4.5.2-alpha/src/test/test_util.c:2334:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char binary_data[68];
data/tor-0.4.5.2-alpha/src/test/test_util.c:2577:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf2+len1, buf2, len1);
data/tor-0.4.5.2-alpha/src/test/test_util.c:2737:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char input[4096];
data/tor-0.4.5.2-alpha/src/test/test_util.c:2754:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c3, c1, sz1);
data/tor-0.4.5.2-alpha/src/test/test_util.c:2755:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c3+sz1, c2, sz2);
data/tor-0.4.5.2-alpha/src/test/test_util.c:2790:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char input[4096];
data/tor-0.4.5.2-alpha/src/test/test_util.c:2933:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char compression_bomb[1039] =
data/tor-0.4.5.2-alpha/src/test/test_util.c:3073:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[20], s2[10], s3[10], ch, *huge = NULL;
data/tor-0.4.5.2-alpha/src/test/test_util.c:3465:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dbuf[DBUF_SIZE];
data/tor-0.4.5.2-alpha/src/test/test_util.c:3473:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label_s[LABEL_SIZE];
data/tor-0.4.5.2-alpha/src/test/test_util.c:3474:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label_m[LABEL_SIZE];
data/tor-0.4.5.2-alpha/src/test/test_util.c:3475:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label_h[LABEL_SIZE];
data/tor-0.4.5.2-alpha/src/test/test_util.c:3476:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label_d[LABEL_SIZE];
data/tor-0.4.5.2-alpha/src/test/test_util.c:4042:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/tor-0.4.5.2-alpha/src/test/test_util.c:4075:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/tor-0.4.5.2-alpha/src/test/test_util.c:4076:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[128];
data/tor-0.4.5.2-alpha/src/test/test_util.c:5003:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[33];
data/tor-0.4.5.2-alpha/src/test/test_util.c:5047:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[33];
data/tor-0.4.5.2-alpha/src/test/test_util.c:5093:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *split_line[MAX_SPLIT_LINE_COUNT]; // Split lines
data/tor-0.4.5.2-alpha/src/test/test_util.c:5185:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[25];
data/tor-0.4.5.2-alpha/src/test/test_util.c:5186:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[25];
data/tor-0.4.5.2-alpha/src/test/test_util.c:5187:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf3[25];
data/tor-0.4.5.2-alpha/src/test/test_util.c:5192:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf3, buf1, sizeof(buf1));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5277:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[80];
data/tor-0.4.5.2-alpha/src/test/test_util.c:6373:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char randbytes[4];
data/tor-0.4.5.2-alpha/src/test/test_util.c:6374:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char badname[9];
data/tor-0.4.5.2-alpha/src/test/test_util.c:6909:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1];
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:16:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[9] = "onionsoup"; // 6f6e696f6e736f7570
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:140:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *dst, real_dst[7];
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:379:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outbuf[1024];
data/tor-0.4.5.2-alpha/src/test/test_voting_schedule.c:17:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/test/test_workqueue.c:91:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rw->msg, sig, len);
data/tor-0.4.5.2-alpha/src/test/test_workqueue.c:119:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ew->u.msg, output, CURVE25519_OUTPUT_LEN);
data/tor-0.4.5.2-alpha/src/test/test_workqueue.c:349:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
opt_n_threads = atoi(argv[++i]);
data/tor-0.4.5.2-alpha/src/test/test_workqueue.c:351:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
opt_n_items = atoi(argv[++i]);
data/tor-0.4.5.2-alpha/src/test/test_workqueue.c:353:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
opt_n_inflight = atoi(argv[++i]);
data/tor-0.4.5.2-alpha/src/test/test_workqueue.c:355:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
opt_n_lowwater = atoi(argv[++i]);
data/tor-0.4.5.2-alpha/src/test/test_workqueue.c:357:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
opt_ratio_rsa = atoi(argv[++i]);
data/tor-0.4.5.2-alpha/src/test/test_workqueue.c:359:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
opt_n_cancel = atoi(argv[++i]);
data/tor-0.4.5.2-alpha/src/test/testing_common.c:53:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char temp_dir[256];
data/tor-0.4.5.2-alpha/src/test/testing_common.c:67:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rnd[256], rnd32[256];
data/tor-0.4.5.2-alpha/src/test/testing_common.c:77:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAX_PATH];
data/tor-0.4.5.2-alpha/src/test/testing_common.c:128:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[1024];
data/tor-0.4.5.2-alpha/src/test/testing_common.c:151:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rnd[256], rnd32[256];
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:91:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024]; /* "Ought to be enough for anybody." */
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:168:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
months_lifetime = atoi(argv[++i]);
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:202:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
passphrase_fd = atoi(argv[++i]);
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:309:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(f = fopen(identity_key_file, "r"))) {
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:334:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(f = fopen(signing_key_file, "r"))) {
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:407:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(result, buf->data, buf->length);
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:447:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8192];
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:450:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char published[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:451:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expires[ISO_TIME_LEN+1];
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:452:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id_digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:453:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fingerprint[FINGERPRINT_LEN+1];
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:456:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[DIGEST_LEN];
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:457:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char signature[1024]; /* handles up to 8192-bit keys. */
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:522:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(f = fopen(certificate_file, "w"))) {
data/tor-0.4.5.2-alpha/src/tools/tor-print-ed-signing-cert.c:19:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rfc1123_buf[RFC1123_TIME_LEN+1] = "";
data/tor-0.4.5.2-alpha/src/tools/tor-resolve.c:170:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ipv6_array, tor_addr_to_in6_addr8(&addr), 16);
data/tor-0.4.5.2-alpha/src/tools/tor-resolve.c:178:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dn_buf, hostname, addrlen - 1);
data/tor-0.4.5.2-alpha/src/tools/tor-resolve.c:458:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reply_buf[RESPONSE_LEN_4];
data/tor-0.4.5.2-alpha/src/tools/tor-resolve.c:580:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
p = atoi(arg[1]);
data/tor-0.4.5.2-alpha/src/tools/tor_runner.c:97:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(args, cfg->argv, cfg->argc * sizeof(char *));
data/tor-0.4.5.2-alpha/src/tools/tor_runner.c:99:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(args + cfg->argc, cfg->argv_owned,
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:227:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->handshake_data.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:281:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->handshake_data.elts_, ptr, obj->handshake_len);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:575:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->un_signing_key, 32);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:588:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->un_unparsed.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:664:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->un_signing_key, ptr, 32);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:674:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->un_unparsed.elts_, ptr, remaining);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:904:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->onionskin, 186);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:911:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->identity, 20);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:961:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->onionskin, ptr, 186);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:966:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->identity, ptr, 20);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:1392:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->un_ipv6_addr, 16);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:1409:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->un_legacy_id, 20);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:1419:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->un_ed25519_id, 32);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:1432:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->un_unrecognized.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:1515:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->un_ipv6_addr, ptr, 16);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:1528:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->un_legacy_id, ptr, 20);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:1536:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->un_ed25519_id, ptr, 32);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:1546:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->un_unrecognized.elts_, ptr, remaining);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:1943:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->certified_key, 32);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:1970:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->signature, 64);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:2031:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->certified_key, ptr, 32);
data/tor-0.4.5.2-alpha/src/trunnel/ed25519_cert.c:2056:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->signature, ptr, 64);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_common.c:227:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->field.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_common.c:281:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->field.elts_, ptr, obj->field_len);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_establish_intro.c:595:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->auth_key.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_establish_intro.c:610:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->handshake_mac, TRUNNEL_SHA3_256_LEN);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_establish_intro.c:628:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->sig.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_establish_intro.c:685:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->auth_key.elts_, ptr, obj->auth_key_len);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_establish_intro.c:698:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->handshake_mac, ptr, TRUNNEL_SHA3_256_LEN);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_establish_intro.c:712:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->sig.elts_, ptr, obj->sig_len);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_introduce1.c:368:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->legacy_key_id, TRUNNEL_SHA1_LEN);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_introduce1.c:393:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->auth_key.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_introduce1.c:411:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->encrypted.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_introduce1.c:452:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->legacy_key_id, ptr, TRUNNEL_SHA1_LEN);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_introduce1.c:472:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->auth_key.elts_, ptr, obj->auth_key_len);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_introduce1.c:486:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->encrypted.elts_, ptr, remaining);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_introduce1.c:1159:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->rend_cookie, TRUNNEL_REND_COOKIE_LEN);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_introduce1.c:1191:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->onion_key.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_introduce1.c:1222:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->pad.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_introduce1.c:1263:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->rend_cookie, ptr, TRUNNEL_REND_COOKIE_LEN);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_introduce1.c:1290:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->onion_key.elts_, ptr, obj->onion_key_len);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_introduce1.c:1317:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->pad.elts_, ptr, remaining);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_rendezvous.c:210:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->rendezvous_cookie, TRUNNEL_REND_COOKIE_LEN);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_rendezvous.c:220:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->handshake_info.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_rendezvous.c:261:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->rendezvous_cookie, ptr, TRUNNEL_REND_COOKIE_LEN);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_rendezvous.c:268:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->handshake_info.elts_, ptr, remaining);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_rendezvous.c:408:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->handshake_info, TRUNNEL_HANDSHAKE_INFO_LEN);
data/tor-0.4.5.2-alpha/src/trunnel/hs/cell_rendezvous.c:448:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->handshake_info, ptr, TRUNNEL_HANDSHAKE_INFO_LEN);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:234:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->challenge, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:294:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->challenge, ptr, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:571:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->body.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:624:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->body.elts_, ptr, obj->cert_len);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:871:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->ed_key, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:896:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->sig.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:937:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->ed_key, ptr, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:956:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->sig.elts_, ptr, obj->sig_len);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1547:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->type, 8);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1554:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->cid, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1561:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->sid, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1577:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->u1_cid_ed, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1584:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->u1_sid_ed, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1597:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->slog, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1604:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->clog, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1611:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->scert, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1618:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->tlssecrets, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1625:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->rand, 24);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1635:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->sig.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1677:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->type, ptr, 8);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1682:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->cid, ptr, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1687:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->sid, ptr, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1700:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->u1_cid_ed, ptr, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1705:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->u1_sid_ed, ptr, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1716:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->slog, ptr, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1721:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->clog, ptr, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1726:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->scert, ptr, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1731:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->tlssecrets, ptr, 32);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1737:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->rand, ptr, 24);
data/tor-0.4.5.2-alpha/src/trunnel/link_handshake.c:1745:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->sig.elts_, ptr, remaining);
data/tor-0.4.5.2-alpha/src/trunnel/netinfo.c:245:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->addr_ipv6, 16);
data/tor-0.4.5.2-alpha/src/trunnel/netinfo.c:325:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->addr_ipv6, ptr, 16);
data/tor-0.4.5.2-alpha/src/trunnel/pwbox.c:406:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->skey_header.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/pwbox.c:414:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->iv, 16);
data/tor-0.4.5.2-alpha/src/trunnel/pwbox.c:425:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->data.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/pwbox.c:443:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->hmac, 32);
data/tor-0.4.5.2-alpha/src/trunnel/pwbox.c:506:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->skey_header.elts_, ptr, obj->header_len);
data/tor-0.4.5.2-alpha/src/trunnel/pwbox.c:511:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->iv, ptr, 16);
data/tor-0.4.5.2-alpha/src/trunnel/pwbox.c:523:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->data.elts_, ptr, remaining);
data/tor-0.4.5.2-alpha/src/trunnel/pwbox.c:532:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->hmac, ptr, 32);
data/tor-0.4.5.2-alpha/src/trunnel/sendme_cell.c:232:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->data_v1_digest, TRUNNEL_SENDME_V1_DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/trunnel/sendme_cell.c:312:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->data_v1_digest, ptr, TRUNNEL_SENDME_V1_DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:220:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->name.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:1036:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->username, len + 1);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:1306:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->socks4a_addr_hostname, len + 1);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:1385:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->username, ptr, memlen);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:1659:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->socks4a_addr_hostname, ptr, memlen);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:2252:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->username.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:2271:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->passwd.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:2565:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->methods.elts_, elt_len);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:2621:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->methods.elts_, ptr, obj->n_methods);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:3357:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->dest_addr_ipv6, 16);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:3459:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->dest_addr_ipv6, ptr, 16);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:3828:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, obj->bind_addr_ipv6, 16);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:3928:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(obj->bind_addr_ipv6, ptr, 16);
data/tor-0.4.5.2-alpha/scripts/maint/checkspace_tests/dubious.c:76:3: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf(foo,"x");
data/tor-0.4.5.2-alpha/src/app/config/config.c:2293:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
http_authenticator, strlen(http_authenticator),
data/tor-0.4.5.2-alpha/src/app/config/config.c:3762:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(options->HTTPProxyAuthenticator) >= 512)
data/tor-0.4.5.2-alpha/src/app/config/config.c:3776:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(options->HTTPSProxyAuthenticator) >= 512)
data/tor-0.4.5.2-alpha/src/app/config/config.c:3827:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(options->Socks5ProxyUsername);
data/tor-0.4.5.2-alpha/src/app/config/config.c:3834:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(options->Socks5ProxyPassword);
data/tor-0.4.5.2-alpha/src/app/config/config.c:5042:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
socks_string_len = strlen(socks_string);
data/tor-0.4.5.2-alpha/src/app/config/config.c:5145:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(fingerprint) != HEX_DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/app/config/config.c:5507:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *portstring = flag + strlen("orport=");
data/tor-0.4.5.2-alpha/src/app/config/config.c:5514:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *wstring = flag + strlen("weight=");
data/tor-0.4.5.2-alpha/src/app/config/config.c:5521:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *idstr = flag + strlen("v3ident=");
data/tor-0.4.5.2-alpha/src/app/config/config.c:5522:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(idstr) != HEX_DIGEST_LEN ||
data/tor-0.4.5.2-alpha/src/app/config/config.c:5534:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (tor_addr_port_parse(LOG_WARN, flag+strlen("ipv6="),
data/tor-0.4.5.2-alpha/src/app/config/config.c:5576:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(fingerprint) != HEX_DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/app/config/config.c:5578:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fingerprint, (int)strlen(fingerprint));
data/tor-0.4.5.2-alpha/src/app/config/config.c:5647:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
orport = (int)tor_parse_long(cp+strlen("orport="), 10,
data/tor-0.4.5.2-alpha/src/app/config/config.c:5650:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ok = base16_decode(id, DIGEST_LEN, cp+strlen("id="),
data/tor-0.4.5.2-alpha/src/app/config/config.c:5651:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(cp)-strlen("id=")) == DIGEST_LEN;
data/tor-0.4.5.2-alpha/src/app/config/config.c:5651:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(cp)-strlen("id=")) == DIGEST_LEN;
data/tor-0.4.5.2-alpha/src/app/config/config.c:5656:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (tor_addr_port_parse(LOG_WARN, cp+strlen("ipv6="),
data/tor-0.4.5.2-alpha/src/app/config/config.c:5668:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *wstring = cp + strlen("weight=");
data/tor-0.4.5.2-alpha/src/app/config/config.c:5856:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line += strlen(unix_socket_prefix); /* No 'unix:', but keep the quote */
data/tor-0.4.5.2-alpha/src/app/config/config.c:5858:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!*rest_out || (*addrport_out && sz != strlen(*addrport_out))) {
data/tor-0.4.5.2-alpha/src/app/config/config.c:5867:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line += strlen(unix_socket_prefix);
data/tor-0.4.5.2-alpha/src/app/config/config.c:5964:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cfg = port_cfg_new(is_unix_socket ? strlen(defaultaddr) : 0);
data/tor-0.4.5.2-alpha/src/app/config/config.c:5968:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(cfg->unix_addr, defaultaddr, strlen(defaultaddr) + 1);
data/tor-0.4.5.2-alpha/src/app/config/config.c:5999:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(addrport) == 0) {
data/tor-0.4.5.2-alpha/src/app/config/config.c:6038:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *addrtmp = tor_strndup(addrport, strlen(addrport)-5);
data/tor-0.4.5.2-alpha/src/app/config/config.c:6068:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cfg = port_cfg_new(unix_socket_path ? strlen(unix_socket_path) : 0);
data/tor-0.4.5.2-alpha/src/app/config/config.c:6140:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int group = (int)tor_parse_long(elt+strlen("SessionGroup="),
data/tor-0.4.5.2-alpha/src/app/config/config.c:6254:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
elt[strlen(elt)-1] = '\0'; /* kill plurals. */
data/tor-0.4.5.2-alpha/src/app/config/config.c:6328:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namelen = unix_socket_path ? strlen(unix_socket_path) : 0;
data/tor-0.4.5.2-alpha/src/app/config/config.c:6800:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(options->DataDirectory) > (512-128)) {
data/tor-0.4.5.2-alpha/src/app/config/config.c:7332:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char cookie_file_str_len = strlen(header) + cookie_len;
data/tor-0.4.5.2-alpha/src/app/config/config.c:7354:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(cookie_file_str, header, strlen(header));
data/tor-0.4.5.2-alpha/src/app/config/config.c:7355:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(cookie_file_str+strlen(header), *cookie_out, cookie_len);
data/tor-0.4.5.2-alpha/src/app/config/statefile.c:667:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) < strlen(transport) + 2) {
data/tor-0.4.5.2-alpha/src/app/config/statefile.c:667:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) < strlen(transport) + 2) {
data/tor-0.4.5.2-alpha/src/app/config/statefile.c:677:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return (line+strlen(transport)+1);
data/tor-0.4.5.2-alpha/src/app/main/main.c:606:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(risky_option_list) && running_tor) {
data/tor-0.4.5.2-alpha/src/app/main/main.c:776:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
get_options()->command_arg, strlen(get_options()->command_arg),
data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c:99:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(const uint8_t *)T_HSENC, strlen(T_HSENC));
data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c:105:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(const uint8_t *)T_HSVERIFY, strlen(T_HSVERIFY));
data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c:123:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
APPEND(ptr, PROTOID, strlen(PROTOID));
data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c:125:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
APPEND(ptr, SERVER_STR, strlen(SERVER_STR));
data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c:131:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(const uint8_t *)T_HSMAC, strlen(T_HSMAC));
data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c:183:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
APPEND(ptr, M_HSEXPAND, strlen(M_HSEXPAND));
data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c:190:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
APPEND(ptr, T_HSENC, strlen(T_HSENC));
data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c:243:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
APPEND(ptr, PROTOID, strlen(PROTOID));
data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c:290:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
APPEND(ptr, PROTOID, strlen(PROTOID));
data/tor-0.4.5.2-alpha/src/core/crypto/hs_ntor.c:632:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
APPEND(ptr, M_HSEXPAND, strlen(M_HSEXPAND));
data/tor-0.4.5.2-alpha/src/core/crypto/onion_ntor.c:55:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t tweak_len = strlen(tweak);
data/tor-0.4.5.2-alpha/src/core/crypto/onion_ntor.c:237:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(const uint8_t*)T->t_key, strlen(T->t_key),
data/tor-0.4.5.2-alpha/src/core/crypto/onion_ntor.c:238:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(const uint8_t*)T->m_expand, strlen(T->m_expand),
data/tor-0.4.5.2-alpha/src/core/crypto/onion_ntor.c:318:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(const uint8_t*)T->t_key, strlen(T->t_key),
data/tor-0.4.5.2-alpha/src/core/crypto/onion_ntor.c:319:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(const uint8_t*)T->m_expand, strlen(T->m_expand),
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:469:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_snprintf(extra_buf+strlen(extra_buf),
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:470:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sizeof(extra_buf)-strlen(extra_buf),
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:911:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(cp, 0, strlen(cp));
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2447:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(socket_path) + 1 > sizeof(dest_addr.sun_path)) {
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2576:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
connection_buf_add(buf, strlen(buf), conn);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2626:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf_size += strlen(socks_args_string);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2643:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_assert(strlen(socks_args_string) > 0);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2645:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
SOCKS4_STANDARD_BUFFER_SIZE + strlen(socks_args_string));
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2716:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
connection_buf_add(buf, strlen(buf), conn);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2951:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_assert(strlen(socks_args_string) > 0);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2952:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_assert(strlen(socks_args_string) <= MAX_SOCKS5_AUTH_SIZE_TOTAL);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2954:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(socks_args_string) > MAX_SOCKS5_AUTH_FIELD_SIZE) {
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2958:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
psize = strlen(socks_args_string) - MAX_SOCKS5_AUTH_FIELD_SIZE;
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2961:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
usize = strlen(socks_args_string);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2969:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
usize = strlen(user);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:2970:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
psize = strlen(pass);
data/tor-0.4.5.2-alpha/src/core/mainloop/connection.c:5003:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t authenticator_length = strlen(authenticator);
data/tor-0.4.5.2-alpha/src/core/or/circuitlist.c:1642:9: [1] (buffer) mismatch:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (mismatch)
data/tor-0.4.5.2-alpha/src/core/or/circuitlist.c:1645:19: [1] (buffer) mismatch:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (badlen || mismatch) {
data/tor-0.4.5.2-alpha/src/core/or/circuituse.c:2499:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(hexdigest) < HEX_DIGEST_LEN ||
data/tor-0.4.5.2-alpha/src/core/or/circuituse.c:3113:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(old_purpose_desc, circuit_purpose_to_string(circ->purpose), 80-1);
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:957:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
connection_buf_add(buf, strlen(buf), TO_CONN(edge_conn));
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:1692:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(address, q, strlen(q) + 1 /* also get \0 */);
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:1695:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(query) == REND_SERVICE_ID_LEN_BASE32) {
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:1704:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(query) == HS_SERVICE_ADDR_LEN_BASE32) {
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:1884:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(result), (uint8_t*)result,
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3069:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(addr) >= MAX_SOCKS_ADDR_LEN) {
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3080:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
socks->usernamelen = strlen(authorization);
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3085:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
socks->passwordlen = strlen(isolation);
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3106:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
connection_buf_add(errmsg, strlen(errmsg), ENTRY_TO_CONN(conn));
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3274:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
payload_len = (int)strlen(payload)+1;
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3390:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
payload_len = (int)strlen(string_addr)+1;
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3416:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
payload_len = (int)strlen(inaddr_buf)+1;
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:3767:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
connection_buf_add(response, strlen(response), ENTRY_TO_CONN(conn));
data/tor-0.4.5.2-alpha/src/core/or/connection_edge.c:4288:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_assert(conn->address && strlen(conn->address) > 0);
data/tor-0.4.5.2-alpha/src/core/or/policies.c:2303:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
written += strlen(buf);
data/tor-0.4.5.2-alpha/src/core/or/policies.c:2309:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
written += strlen(buf+written);
data/tor-0.4.5.2-alpha/src/core/or/policies.c:2643:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (rejects_len > MAX_EXITPOLICY_SUMMARY_LEN-strlen("reject")-1 &&
data/tor-0.4.5.2-alpha/src/core/or/policies.c:2644:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
accepts_len > MAX_EXITPOLICY_SUMMARY_LEN-strlen("accept")-1) {
data/tor-0.4.5.2-alpha/src/core/or/policies.c:2649:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
c = shorter_str + (MAX_EXITPOLICY_SUMMARY_LEN-strlen(prefix)-1);
data/tor-0.4.5.2-alpha/src/core/or/policies.c:2696:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
summary += strlen("accept ");
data/tor-0.4.5.2-alpha/src/core/or/policies.c:2699:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
summary += strlen("reject ");
data/tor-0.4.5.2-alpha/src/core/or/protover.c:120:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
end_of_range = s + strlen(s); // LCOV_EXCL_LINE
data/tor-0.4.5.2-alpha/src/core/or/protover.c:205:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
end_of_entry = s + strlen(s); // LCOV_EXCL_LINE
data/tor-0.4.5.2-alpha/src/core/or/protover.c:274:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
end_of_entry = s + strlen(s);
data/tor-0.4.5.2-alpha/src/core/or/relay.c:1258:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(addr_hostname->hostname),
data/tor-0.4.5.2-alpha/src/core/or/versions.c:71:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(versionlist)) { /* no authorities cared or agreed */
data/tor-0.4.5.2-alpha/src/core/proto/proto_http.c:156:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p += strlen(CONTENT_LENGTH);
data/tor-0.4.5.2-alpha/src/core/proto/proto_http.c:157:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
remaining -= strlen(CONTENT_LENGTH);
data/tor-0.4.5.2-alpha/src/core/proto/proto_socks.c:174:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t usernamelen = username ? strlen(username) : 0;
data/tor-0.4.5.2-alpha/src/core/proto/proto_socks.c:968:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
req->replylen = strlen((char*)req->reply)+1;
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:295:7: [1] (free) memalign:
On some systems (though not Linux-based systems) an attempt to free()
results from memalign() may fail. This may, on a few systems, be
exploitable. Also note that memalign() may not check that the boundary
parameter is correct (CWE-676). Use posix_memalign instead (defined in
POSIX's 1003.1d). Don't switch to valloc(); it is marked as obsolete in BSD
4.3, as legacy in SUSv2, and is no longer defined in SUSv3. In some cases,
malloc()'s alignment may be sufficient.
void *memalign(size_t boundary, size_t size);
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:362:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd, buf, strlen(buf));
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:375:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd, buf, strlen(buf));
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:388:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd, buf, strlen(buf));
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:401:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd, buf, strlen(buf));
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:404:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd, buf, strlen(buf));
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:410:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd, buf, strlen(buf));
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:424:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd, buf, strlen(buf));
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:427:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd, buf, strlen(buf));
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:434:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd, buf, strlen(buf));
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:436:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd, buf, strlen(buf));
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:438:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd, buf, strlen(buf));
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:440:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd, buf, strlen(buf));
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:442:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd, buf, strlen(buf));
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:444:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(fd, buf, strlen(buf));
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:458:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iov[0].iov_len = strlen(__progname);
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:460:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iov[1].iov_len = strlen(malloc_func);
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:462:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iov[2].iov_len = strlen(q);
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:464:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iov[3].iov_len = strlen(p);
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:496:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iov[0].iov_len = strlen(__progname);
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:498:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iov[1].iov_len = strlen(malloc_func);
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:500:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iov[2].iov_len = strlen(q);
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:502:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
iov[3].iov_len = strlen(p);
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:524:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write(STDERR_FILENO, q, strlen(q));
data/tor-0.4.5.2-alpha/src/ext/OpenBSD_malloc_Linux.c:2015:7: [1] (free) memalign:
On some systems (though not Linux-based systems) an attempt to free()
results from memalign() may fail. This may, on a few systems, be
exploitable. Also note that memalign() may not check that the boundary
parameter is correct (CWE-676). Use posix_memalign instead (defined in
POSIX's 1003.1d). Don't switch to valloc(); it is marked as obsolete in BSD
4.3, as legacy in SUSv2, and is no longer defined in SUSv3. In some cases,
malloc()'s alignment may be sufficient.
void *memalign(size_t boundary, size_t size)
data/tor-0.4.5.2-alpha/src/ext/ed25519/donna/ed25519_tor.c:278:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ed25519_hash_update(&ctx, (const unsigned char*)str, strlen(str));
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/blinding.c:34:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_hash_sha512_2(tweak, (const unsigned char *)str, strlen(str),
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_scalarmult_base.c:8:22: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
static unsigned char equal(signed char b,signed char c)
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_scalarmult_base.c:45:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][0],equal(babs,1));
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_scalarmult_base.c:46:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][1],equal(babs,2));
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_scalarmult_base.c:47:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][2],equal(babs,3));
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_scalarmult_base.c:48:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][3],equal(babs,4));
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_scalarmult_base.c:49:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][4],equal(babs,5));
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_scalarmult_base.c:50:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][5],equal(babs,6));
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_scalarmult_base.c:51:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][6],equal(babs,7));
data/tor-0.4.5.2-alpha/src/ext/ed25519/ref10/ge_scalarmult_base.c:52:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
cmov(t,&base[pos][7],equal(babs,8));
data/tor-0.4.5.2-alpha/src/ext/getdelim.c:50:11: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int c = fgetc(fp);
data/tor-0.4.5.2-alpha/src/ext/readpassphrase.c:140:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bytes_written = write(output, prompt, strlen(prompt));
data/tor-0.4.5.2-alpha/src/ext/readpassphrase.c:143:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((nr = read(input, &ch, 1)) == 1 && ch != '\n' && ch != '\r') {
data/tor-0.4.5.2-alpha/src/ext/strlcat.c:59:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return(dlen + strlen(s));
data/tor-0.4.5.2-alpha/src/ext/strlcpy.c:49:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return(strlen(s));
data/tor-0.4.5.2-alpha/src/ext/tinytest.c:218:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
r = (int)read(outcome_pipe[0], b, 1);
data/tor-0.4.5.2-alpha/src/ext/trunnel/trunnel-impl.h:153:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
trunnel_memwipe(s, strlen(s)); \
data/tor-0.4.5.2-alpha/src/feature/client/addressmap.c:225:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(target);
data/tor-0.4.5.2-alpha/src/feature/client/circpathbias.c:835:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
payload_len = (int)strlen(payload)+1;
data/tor-0.4.5.2-alpha/src/feature/client/dnsserv.c:130:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (err == DNS_ERR_NONE && strlen(q->name) > MAX_SOCKS_ADDR_LEN-1)
data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.c:324:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(guard->nickname) ? guard->nickname : "[bridge]",
data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.c:2856:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(guard->nickname) && is_legal_nickname(guard->nickname)) {
data/tor-0.4.5.2-alpha/src/feature/client/entrynodes.c:3078:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rsa_id, strlen(rsa_id)) != DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:952:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) < (strlen(PROTO_ENV_ERROR) + 2))
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:952:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) < (strlen(PROTO_ENV_ERROR) + 2))
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:958:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line+strlen(PROTO_ENV_ERROR)+1);
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:966:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) < (strlen(PROTO_NEG_SUCCESS) + 2)) {
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:966:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) < (strlen(PROTO_NEG_SUCCESS) + 2)) {
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:972:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strcmp("1", line+strlen(PROTO_NEG_SUCCESS)+1)) { /* hardcoded temp */
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:974:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
"We only support version '1'", line+strlen(PROTO_NEG_SUCCESS)+1);
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:993:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) < (strlen(error) + 2))
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:993:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) < (strlen(error) + 2))
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:999:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line+strlen(error)+1);
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:1088:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
args_string = options_string+strlen("ARGS:");
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:1147:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) < (strlen(PROTO_PROXY_ERROR) + 2))
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:1147:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) < (strlen(PROTO_PROXY_ERROR) + 2))
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:1153:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line+strlen(PROTO_PROXY_ERROR)+1);
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:1166:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) < (strlen(PROTO_LOG) + 1)) {
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:1166:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) < (strlen(PROTO_LOG) + 1)) {
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:1172:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *data = line + strlen(PROTO_LOG) + 1;
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:1232:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) < (strlen(PROTO_STATUS) + 1)) {
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:1232:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) < (strlen(PROTO_STATUS) + 1)) {
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:1238:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *data = line + strlen(PROTO_STATUS) + 1;
data/tor-0.4.5.2-alpha/src/feature/client/transports.c:1836:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length = strlen(string);
data/tor-0.4.5.2-alpha/src/feature/control/control.c:374:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
body_len = 2+strlen(buf+6)+2; /* code, msg, nul. */
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:51:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (options->CookieAuthFile && strlen(options->CookieAuthFile)) {
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:100:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (base16_decode(decoded, sizeof(decoded), hashed+3, strlen(hashed+3))
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:102:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
|| strlen(hashed+3) != (S2K_RFC2440_SPECIFIER_LEN+DIGEST_LEN)*2) {
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:106:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (base64_decode(decoded, sizeof(decoded), hashed, strlen(hashed))
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:169:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
client_nonce_len = strlen(client_nonce);
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:173:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
client_nonce_len = strlen(hex_nonce) / 2;
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:176:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(hex_nonce)) != (int)client_nonce_len) {
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:202:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(SAFECOOKIE_SERVER_TO_CONTROLLER_CONSTANT),
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:208:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(SAFECOOKIE_CONTROLLER_TO_SERVER_CONSTANT),
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:272:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
password_len = strlen(password);
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:275:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
password_len = strlen(hex_passwd) / 2;
data/tor-0.4.5.2-alpha/src/feature/control/control_auth.c:277:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (base16_decode(password, password_len+1, hex_passwd, strlen(hex_passwd))
data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.c:97:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
SMARTLIST_FOREACH(args->args, char *, c, memwipe(c, 0, strlen(c)));
data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.c:100:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(line->key, 0, strlen(line->key));
data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.c:101:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(line->value, 0, strlen(line->value));
data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.c:710:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string += strlen("purpose=");
data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.c:1222:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(line->value)) {
data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.c:1448:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t v2_str_len = strlen(v2_str);
data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.c:1918:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(encoded, 0, strlen(encoded));
data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.c:1943:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(key_new_blob, 0, strlen(key_new_blob));
data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.c:2008:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pk = crypto_pk_base64_decode_private(key_blob, strlen(key_blob));
data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.c:2025:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(key_blob)) != sizeof(sk->seckey)) {
data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.c:2092:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(cp, 0, strlen(cp));
data/tor-0.4.5.2-alpha/src/feature/control/control_cmd.c:2236:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(cp, 0, strlen(cp));
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:548:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t msg_len = strlen(ev->msg);
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:672:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *sp = strlen(circdesc) ? " " : "";
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:743:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *sp = strlen(circdesc) ? " " : "";
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:900:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *sp = strlen(conndesc) ? " " : "";
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:1562:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write_escaped_data(s, strlen(s), &esc);
data/tor-0.4.5.2-alpha/src/feature/control/control_events.c:2328:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write_escaped_data(content, strlen(content), &esc_content);
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:412:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
key += strlen("/tor/server/d/");
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:426:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
key += strlen("/tor/server/fp/");
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:469:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const node_t *node = node_get_by_hex_id(question+strlen("desc/id/"), 0);
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:488:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
node_get_by_nickname(question+strlen("desc/name/"), 0);
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:544:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
question += strlen("hs/client/desc/id/");
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:586:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
question += strlen("hs/service/desc/id/");
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:648:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const node_t *node = node_get_by_hex_id(question+strlen("md/id/"), 0);
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:657:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const node_t *node = node_get_by_nickname(question+strlen("md/name/"), 0);
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:670:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
node_get_by_hex_id(question+strlen("desc-annotations/id/"), 0);
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:724:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
question += strlen("extra-info/digest/");
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:725:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(question) == HEX_DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:728:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (base16_decode(d, sizeof(d), question, strlen(question))
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:930:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fp_sk_req += strlen("fp/");
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:949:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sk_req, strlen(sk_req)) == DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:965:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(fp_sk_req) == HEX_DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:967:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fp_sk_req, strlen(fp_sk_req)) == DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:1015:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
} else if (strlen(desc_req) == HEX_DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:1017:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
desc_req, strlen(desc_req)) == DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:1057:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
} else if (strlen(bridge_req) == HEX_DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:1059:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bridge_req, strlen(bridge_req)) == DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:1095:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
question + strlen("downloads/networkstatus/"),
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:1100:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
question + strlen("downloads/cert/"),
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:1105:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
question + strlen("downloads/desc/"),
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:1110:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
question + strlen("downloads/bridge/"),
data/tor-0.4.5.2-alpha/src/feature/control/control_getinfo.c:1249:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
question += strlen("address-mappings/");
data/tor-0.4.5.2-alpha/src/feature/control/control_hs.c:53:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(key_blob)) != sizeof(privkey->secret_key)) {
data/tor-0.4.5.2-alpha/src/feature/control/control_hs.c:138:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line->value) > REND_CLIENTNAME_MAX_LEN) {
data/tor-0.4.5.2-alpha/src/feature/control/control_proto.c:34:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(s);
data/tor-0.4.5.2-alpha/src/feature/control/control_proto.c:276:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
esc_len = write_escaped_data(data, strlen(data), &esc);
data/tor-0.4.5.2-alpha/src/feature/control/getinfo_geoip.c:28:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
question += strlen("ip-to-country/");
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.c:262:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest_add_bytes(digest, (const char *) line, strlen(line));
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.c:264:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(line) || line[strlen(line)-1] != '\n') {
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.c:264:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(line) || line[strlen(line)-1] != '\n') {
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.c:271:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.c:298:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest_add_bytes(digest, (const char *) line, strlen(line));
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.c:323:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.c:341:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest_add_bytes(digest, (const char *) line, strlen(line));
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.c:384:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) == 0) {
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.c:391:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (line[strlen(line) - 1] == '\n') {
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.c:392:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line) - 1] = '\0';
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.c:404:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (orig_line[strlen(orig_line)-1] != '\n') {
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.c:427:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp+=strlen("bw=");
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.c:444:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp+=strlen("node_id=$");
data/tor-0.4.5.2-alpha/src/feature/dirauth/bwauth.c:446:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(cp) != HEX_DIGEST_LEN ||
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:287:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (BUG(strlen(bw_file_headers) > MAX_BW_FILE_HEADERS_LINE_LEN)) {
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:435:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(v = networkstatus_parse_vote_from_string(status, strlen(status),
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:496:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mlen = strlen(mstr);
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:515:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp += strlen(dstr);
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:893:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strcmpstart(k_v_pair, keyword) && k_v_pair[strlen(keyword)] == '=') {
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:894:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *integer_str = &k_v_pair[strlen(keyword)+1];
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:2431:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(c = networkstatus_parse_vote_from_string(result, strlen(result),
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3190:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vote = networkstatus_parse_vote_from_string(vote_body, strlen(vote_body),
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3194:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
end_of_vote = vote_body + strlen(vote_body);
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3197:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)strlen(vote_body));
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3449:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(consensus_body),
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3516:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(pending_consensus_signatures), 0);
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3577:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(pc->body) + strlen(new_signatures) + 1;
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3577:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(pc->body) + strlen(new_signatures) + 1;
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3589:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pc->body, strlen(pc->body), NULL,
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3728:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(pending->body),
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3901:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
output+strlen(output), 0,
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:3950:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = strlen(out_buf);
data/tor-0.4.5.2-alpha/src/feature/dirauth/dirvote.c:4133:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
url += strlen("/tor/status-vote/");
data/tor-0.4.5.2-alpha/src/feature/dirauth/dsigs_parse.c:82:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eos = s + strlen(s);
data/tor-0.4.5.2-alpha/src/feature/dirauth/dsigs_parse.c:123:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(hexdigest) != expected_length) {
data/tor-0.4.5.2-alpha/src/feature/dirauth/dsigs_parse.c:136:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hexdigest, strlen(hexdigest)) != (int) digest_length) {
data/tor-0.4.5.2-alpha/src/feature/dirauth/dsigs_parse.c:207:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(id_hexdigest) != HEX_DIGEST_LEN ||
data/tor-0.4.5.2-alpha/src/feature/dirauth/dsigs_parse.c:214:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(sk_hexdigest) != HEX_DIGEST_LEN ||
data/tor-0.4.5.2-alpha/src/feature/dirauth/guardfraction.c:88:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(inputs_tmp) != HEX_DIGEST_LEN ||
data/tor-0.4.5.2-alpha/src/feature/dirauth/keypin.c:324:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (write_all_to_fd(fd, buf, strlen(buf)) < 0)
data/tor-0.4.5.2-alpha/src/feature/dirauth/process_descs.c:112:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fingerprint, strlen(fingerprint)) != DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/dirauth/process_descs.c:235:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(fingerprint) == HEX_DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/dirauth/process_descs.c:244:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(fingerprint) == BASE64_DIGEST256_LEN) {
data/tor-0.4.5.2-alpha/src/feature/dirauth/recommend_pkg.c:64:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
end_of_word = cp + strlen(cp);
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:248:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(encoded) > SR_COMMIT_BASE64_LEN) {
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:258:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
encoded, strlen(encoded));
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:300:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(encoded) > SR_REVEAL_BASE64_LEN) {
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:310:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
encoded, strlen(encoded));
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random.c:1001:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (crypto_digest256(hashed_reveals, reveals, strlen(reveals),
data/tor-0.4.5.2-alpha/src/feature/dirauth/shared_random_state.c:536:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(reveal_str, 0, strlen(reveal_str));
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:446:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n = base16_decode((char*)digest_out, DIGEST256_LEN, hex, strlen(hex));
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:520:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(consensus);
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:1544:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t difflen = strlen(consensus_diff);
data/tor-0.4.5.2-alpha/src/feature/dircache/consdiffmgr.c:1856:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
job->consensus_len = strlen(job->consensus);
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:114:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
connection_buf_add(buf, strlen(buf), TO_CONN(conn));
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:427:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t url_len = strlen(url);
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:487:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dlen = strlen(frontpage);
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:558:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (base16_decode((char*)digest, DIGEST256_LEN, hex, strlen(hex)) ==
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:790:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
f = url + strlen(CONSENSUS_FLAVORED_PREFIX);
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:804:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
after_flavor = url+strlen(CONSENSUS_URL_PREFIX);
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:813:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
after_flavor += strlen(DIFF_COMPONENT);
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1062:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t ln = strlen(item);
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1085:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
connection_dir_buf_add(c, strlen(c), conn,
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1116:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dir_split_resource_into_spoolable(url+strlen("/tor/micro/d/"),
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1175:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
url += is_extra ? strlen("/tor/extra/") : strlen("/tor/server/");
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1175:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
url += is_extra ? strlen("/tor/extra/") : strlen("/tor/server/");
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1273:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dir_split_resource_into_fingerprints(url+strlen("/tor/keys/fp/"),
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1284:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dir_split_resource_into_fingerprints(url+strlen("/tor/keys/sk/"),
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1295:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dir_split_resource_into_fingerprint_pairs(url+strlen("/tor/keys/fp-sk/"),
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1360:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *query = url + strlen("/tor/rendezvous2/");
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1366:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write_http_response_header(conn, strlen(descp), NO_METHOD, 0);
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1367:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
connection_buf_add(descp, strlen(descp), TO_CONN(conn));
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1411:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pubkey_str = url + strlen("/tor/hs/3/");
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1420:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write_http_response_header(conn, strlen(desc_str), NO_METHOD, 0);
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1421:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
connection_buf_add(desc_str, strlen(desc_str), TO_CONN(conn));
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1444:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest256(digest, header, strlen(header), DIGEST_SHA256);
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1458:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dlen = strlen(status);
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1482:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ssize_t len = strlen(bandwidth);
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1508:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(robots);
data/tor-0.4.5.2-alpha/src/feature/dircache/dircache.c:1542:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
start = url + strlen(prefix);
data/tor-0.4.5.2-alpha/src/feature/dircache/dirserv.c:140:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->dir_len = strlen(s);
data/tor-0.4.5.2-alpha/src/feature/dircache/dirserv.c:272:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
key += strlen("d/");
data/tor-0.4.5.2-alpha/src/feature/dircache/dirserv.c:276:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
key += strlen("fp/");
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:781:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (base16_decode(digest, DIGEST_LEN, cp, strlen(cp)) != DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:824:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen("fp/"),
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:855:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(fp_pfx),
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:865:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(fpsk_pfx), failed);
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1686:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_assert(strlen(resource) <= REND_DESC_ID_V2_LEN_BASE32);
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1693:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_assert(strlen(resource) <= ED25519_BASE64_LEN);
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1716:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (direct && (strlen(proxystring) + strlen(url) >= 4096)) {
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1716:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (direct && (strlen(proxystring) + strlen(url) >= 4096)) {
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1720:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)(strlen(proxystring) + strlen(url)), proxystring, url);
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1720:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)(strlen(proxystring) + strlen(url)), proxystring, url);
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1725:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
request_len = strlen(request);
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1729:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
url_len = strlen(url);
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:1746:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
request_len = strlen(request);
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:2303:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)strlen(new_consensus));
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:2314:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(consensus),
data/tor-0.4.5.2-alpha/src/feature/dirclient/dirclient.c:3170:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (base16_decode(digest, DIGEST_LEN, cp, strlen(cp)) != DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:62:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t len = strlen(b);
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:73:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t len = strlen(b);
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:83:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(s);
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1150:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(cons1_hash_hex) != HEX_DIGEST256_LEN ||
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1151:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(cons2_hash_hex) != HEX_DIGEST256_LEN) {
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1234:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (consensus_compute_digest(cons2_str, strlen(cons2_str),
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1418:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return (len >= strlen(ns_diff_version) &&
data/tor-0.4.5.2-alpha/src/feature/dircommon/consdiff.c:1419:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fast_memeq(document, ns_diff_version, strlen(ns_diff_version)));
data/tor-0.4.5.2-alpha/src/feature/dircommon/directory.c:335:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp += strlen(which);
data/tor-0.4.5.2-alpha/src/feature/dircommon/directory.c:594:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t last_len = strlen(last);
data/tor-0.4.5.2-alpha/src/feature/dircommon/directory.c:600:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(cp) != HEX_DIGEST_LEN*2+1) {
data/tor-0.4.5.2-alpha/src/feature/dircommon/directory.c:668:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t last_len = strlen(last);
data/tor-0.4.5.2-alpha/src/feature/dircommon/directory.c:681:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(cp) != encoded_len) {
data/tor-0.4.5.2-alpha/src/feature/dirparse/authcert_parse.c:110:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(tok->args[0])) != DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/dirparse/microdesc_parse.c:305:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eos = s + strlen(s);
data/tor-0.4.5.2-alpha/src/feature/dirparse/ns_parse.c:1329:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (last_kwd && eq_pos == strlen(last_kwd) &&
data/tor-0.4.5.2-alpha/src/feature/dirparse/ns_parse.c:1364:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tok->args[1]) != HEX_DIGEST_LEN ||
data/tor-0.4.5.2-alpha/src/feature/dirparse/ns_parse.c:1415:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tok->args[0]) != HEX_DIGEST_LEN ||
data/tor-0.4.5.2-alpha/src/feature/dirparse/ns_parse.c:1440:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tok->args[0]) == HEX_DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/dirparse/ns_parse.c:1615:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(id_hexdigest) != HEX_DIGEST_LEN ||
data/tor-0.4.5.2-alpha/src/feature/dirparse/ns_parse.c:1631:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(sk_hexdigest) != HEX_DIGEST_LEN ||
data/tor-0.4.5.2-alpha/src/feature/dirparse/parsecommon.c:67:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
end = start+strlen(start);
data/tor-0.4.5.2-alpha/src/feature/dirparse/parsecommon.c:260:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(token);
data/tor-0.4.5.2-alpha/src/feature/dirparse/policy_parse.c:79:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eos = cp + strlen(cp);
data/tor-0.4.5.2-alpha/src/feature/dirparse/policy_parse.c:199:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
arg += strlen("private");
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:270:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eos = *s + strlen(*s);
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:285:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
end += strlen("\n-----END SIGNATURE-----\n");
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:405:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t prepend_len = prepend_annotations ? strlen(prepend_annotations) : 0;
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:417:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
end = s + strlen(s);
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:509:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_assert(strlen(router->cache_info.signed_descriptor_body) == len);
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:741:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(ED_DESC_SIGNATURE_PREFIX));
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:796:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tok->args[0], strlen(tok->args[0])) != DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:887:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tok->args[0]) == HEX_DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:987:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
end = s + strlen(s);
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:1031:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tok->args[1]) != HEX_DIGEST_LEN ||
data/tor-0.4.5.2-alpha/src/feature/dirparse/routerparse.c:1101:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(ED_DESC_SIGNATURE_PREFIX));
data/tor-0.4.5.2-alpha/src/feature/dirparse/sigcommon.c:46:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
end = tor_memstr(start+strlen(start_str),
data/tor-0.4.5.2-alpha/src/feature/dirparse/sigcommon.c:47:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s_len - (start-s) - strlen(start_str), end_str);
data/tor-0.4.5.2-alpha/src/feature/dirparse/sigcommon.c:53:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
end = memchr(end+strlen(end_str), end_c, s_len - (end-s) - strlen(end_str));
data/tor-0.4.5.2-alpha/src/feature/dirparse/sigcommon.c:53:62: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
end = memchr(end+strlen(end_str), end_c, s_len - (end-s) - strlen(end_str));
data/tor-0.4.5.2-alpha/src/feature/dirparse/signing.c:50:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(buf);
data/tor-0.4.5.2-alpha/src/feature/dirparse/signing.c:88:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sig_len = strlen(sig);
data/tor-0.4.5.2-alpha/src/feature/dirparse/signing.c:89:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s_len = strlen(buf);
data/tor-0.4.5.2-alpha/src/feature/dirparse/unparseable.c:285:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
digest_str = f + strlen(f_pfx);
data/tor-0.4.5.2-alpha/src/feature/dirparse/unparseable.c:287:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
digest_str, strlen(digest_str)) != DIGEST256_LEN) {
data/tor-0.4.5.2-alpha/src/feature/dirparse/unparseable.c:508:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(desc);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cache.c:132:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen(entry->encoded_desc));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cache.c:367:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size += strlen(entry->encoded_desc);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cache.c:487:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(desc->encoded_desc, 0, strlen(desc->encoded_desc));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_cell.c:807:26: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
memcpy_if_true_timei(equal, intro_keys_result, &intro_keys[i],
data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.c:2207:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(filename) != strlen(valid_extension)) {
data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.c:2207:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(filename) != strlen(valid_extension)) {
data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.c:2253:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(seckey_b32) != BASE32_NOPAD_LEN(CURVE25519_SECKEY_LEN)) {
data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.c:2262:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
seckey_b32, strlen(seckey_b32)) !=
data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.c:2275:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(auth->onion_address, onion_address, HS_SERVICE_ADDR_LEN_BASE32);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_client.c:2288:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(seckey_b32, 0, strlen(seckey_b32));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:720:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(str_ed25519_basepoint));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:933:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(address) != HS_SERVICE_ADDR_LEN_BASE32) {
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:941:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (base32_decode(decoded, sizeof(decoded), address, strlen(address))
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:1580:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(key) < REND_DESC_ID_V2_LEN_BASE32 + strlen(req_key_str)) {
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:1580:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(key) < REND_DESC_ID_V2_LEN_BASE32 + strlen(req_key_str)) {
data/tor-0.4.5.2-alpha/src/feature/hs/hs_common.c:1587:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(req_key_str))) {
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:260:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(str_enc_const_superencryption));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:263:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(str_enc_const_encryption));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:635:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(plaintext), &encrypted,
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:843:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
SMARTLIST_FOREACH(lines, char *, a, memwipe(a, 0, strlen(a)));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:1092:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(encoded_str) >= hs_cache_get_max_descriptor_size()) {
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:1094:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
"Failing.", (int)strlen(encoded_str));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:1126:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tok->args[0], strlen(tok->args[0])) !=
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:1131:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tok->args[1], strlen(tok->args[1])) !=
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:1137:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tok->args[2], strlen(tok->args[2])) !=
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:1161:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
encoded_len = strlen(encoded);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:1220:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(intro_auth_types[idx].identifier))) {
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:1810:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (tokenize_string(area, start, start + strlen(start),
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:2004:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(b64_sig) != ED25519_SIG_BASE64_LEN) {
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:2007:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ED25519_SIG_BASE64_LEN, (unsigned long) strlen(b64_sig));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_descriptor.c:2507:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
encoded_len = strlen(encoded);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_ob.c:116:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(value) >
data/tor-0.4.5.2-alpha/src/feature/hs/hs_ob.c:125:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlcpy(address, value, strlen(value) - sizeof(".onion") + 2);
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:1109:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(filename) != strlen(valid_extension)) {
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:1109:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(filename) != strlen(valid_extension)) {
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:1168:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(pubkey_b32) != BASE32_NOPAD_LEN(CURVE25519_PUBKEY_LEN)) {
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:1177:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pubkey_b32, strlen(pubkey_b32)) !=
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:1192:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(pubkey_b32, 0, strlen(pubkey_b32));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:1271:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(client_key_str, 0, strlen(client_key_str));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:1291:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(client_key_str, 0, strlen(client_key_str));
data/tor-0.4.5.2-alpha/src/feature/hs/hs_service.c:3669:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(encoded_desc));
data/tor-0.4.5.2-alpha/src/feature/hs_common/shared_random_client.c:214:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(value) != SR_SRV_VALUE_BASE64_LEN) {
data/tor-0.4.5.2-alpha/src/feature/keymgt/loadkey.c:143:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t p2len = strlen(prompt) + 1;
data/tor-0.4.5.2-alpha/src/feature/keymgt/loadkey.c:272:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(pwbuf0) == 0) {
data/tor-0.4.5.2-alpha/src/feature/keymgt/loadkey.c:281:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pwbuf0, strlen(pwbuf0), 0) < 0) {
data/tor-0.4.5.2-alpha/src/feature/metrics/metrics.c:139:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(url) == EXPECTED_URL_PATH_LEN) {
data/tor-0.4.5.2-alpha/src/feature/metrics/metrics.c:156:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
connection_buf_add(errmsg, strlen(errmsg), conn);
data/tor-0.4.5.2-alpha/src/feature/nodelist/authcert.c:383:66: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
authority_cert_t *cert = authority_cert_parse_from_string(s, strlen(s),
data/tor-0.4.5.2-alpha/src/feature/nodelist/authcert.c:1196:62: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dir_split_resource_into_fingerprint_pairs(resource + strlen(pfx),
data/tor-0.4.5.2-alpha/src/feature/nodelist/fmt_routerstatus.c:106:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (version && strlen(version) < MAX_V_LINE_LEN - V_LINE_OVERHEAD) {
data/tor-0.4.5.2-alpha/src/feature/nodelist/microdesc.c:216:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (write_all_to_fd(fd, annotation, strlen(annotation)) < 0) {
data/tor-0.4.5.2-alpha/src/feature/nodelist/microdesc.c:222:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r += strlen(annotation);
data/tor-0.4.5.2-alpha/src/feature/nodelist/microdesc.c:540:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cache->journal_len = strlen(journal_content);
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:1788:55: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rv = networkstatus_set_current_consensus(content, strlen(content),
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:2458:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t name_len = strlen(param_name);
data/tor-0.4.5.2-alpha/src/feature/nodelist/networkstatus.c:2661:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (base16_decode(d, DIGEST_LEN, q, strlen(q)) != DIGEST_LEN) {
data/tor-0.4.5.2-alpha/src/feature/nodelist/nickname.c:23:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(s);
data/tor-0.4.5.2-alpha/src/feature/nodelist/nickname.c:50:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(s);
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodefamily.c:174:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_assert(strlen(cp) < DIGEST_LEN); // guaranteed by is_legal_nickname
data/tor-0.4.5.2-alpha/src/feature/nodelist/nodefamily.c:175:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(ptr+1, cp, strlen(cp));
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:695:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(hexdigest);
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:753:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(hexdigest) < HEX_DIGEST_LEN ||
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerlist.c:2345:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t p_len = strlen(prefix);
data/tor-0.4.5.2-alpha/src/feature/nodelist/routerset.c:70:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(c) < 4 || c[0] !='{' || c[3] !='}')
data/tor-0.4.5.2-alpha/src/feature/nodelist/torcert.c:356:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(RSA_ED_CROSSCERT_PREFIX));
data/tor-0.4.5.2-alpha/src/feature/nodelist/torcert.c:445:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(RSA_ED_CROSSCERT_PREFIX));
data/tor-0.4.5.2-alpha/src/feature/relay/dns.c:145:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return (unsigned) siphash24g((const uint8_t*)a->address, strlen(a->address));
data/tor-0.4.5.2-alpha/src/feature/relay/dns.c:540:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t msglen = strlen(errmsg);
data/tor-0.4.5.2-alpha/src/feature/relay/dns.c:577:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namelen = strlen(hostname);
data/tor-0.4.5.2-alpha/src/feature/relay/dns.c:1663:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t addr_len = strlen(address);
data/tor-0.4.5.2-alpha/src/feature/relay/dns.c:2094:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_assert(strlen(resolve->address) < MAX_ADDRESSLEN);
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:131:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(options->ExtORPortCookieAuthFile)) {
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:208:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t hmac_s_msg_len = strlen(EXT_OR_PORT_AUTH_SERVER_TO_CLIENT_CONST) +
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:210:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t hmac_c_msg_len = strlen(EXT_OR_PORT_AUTH_CLIENT_TO_SERVER_CONST) +
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:219:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(EXT_OR_PORT_AUTH_SERVER_TO_CLIENT_CONST));
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:220:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(hmac_s_msg + strlen(EXT_OR_PORT_AUTH_SERVER_TO_CLIENT_CONST),
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:222:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(hmac_s_msg + strlen(EXT_OR_PORT_AUTH_SERVER_TO_CLIENT_CONST) +
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:228:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(EXT_OR_PORT_AUTH_CLIENT_TO_SERVER_CONST));
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:229:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(hmac_c_msg + strlen(EXT_OR_PORT_AUTH_CLIENT_TO_SERVER_CONST),
data/tor-0.4.5.2-alpha/src/feature/relay/ext_orport.c:231:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(hmac_c_msg + strlen(EXT_OR_PORT_AUTH_CLIENT_TO_SERVER_CONST) +
data/tor-0.4.5.2-alpha/src/feature/relay/relay_config.c:186:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
type, addr, (strlen(addr) > 0) ? ":" : "",
data/tor-0.4.5.2-alpha/src/feature/relay/relay_config.c:552:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ContactInfo && !string_is_utf8(ContactInfo, strlen(ContactInfo)))
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:665:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
parsed = authority_cert_parse_from_string(cert, strlen(cert), &eos);
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2018:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n = base16_decode(d, sizeof(d), singleton+1, strlen(singleton+1));
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2244:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(ei->cache_info.signed_descriptor_body);
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2339:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(ri->cache_info.signed_descriptor_body);
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2342:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(ri->cache_info.signed_descriptor_body),
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2985:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (options->ContactInfo && strlen(options->ContactInfo)) {
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:2995:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (options->BridgeDistribution && strlen(options->BridgeDistribution)) {
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:3169:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(start) < strlen(end_line) + 1 + sizeof(timestr))
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:3169:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(start) < strlen(end_line) + 1 + sizeof(timestr))
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:3171:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlcpy(timestr, start + 1 + strlen(end_line), sizeof(timestr));
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:3395:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (router_get_extrainfo_hash(extrainfo_string, strlen(extrainfo_string),
data/tor-0.4.5.2-alpha/src/feature/relay/router.c:3458:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
while (strlen(s) > MAX_EXTRAINFO_UPLOAD_SIZE - DIROBJ_MAX_SIG_LEN) {
data/tor-0.4.5.2-alpha/src/feature/rend/rendcache.c:878:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
desc_id_base32, strlen(desc_id_base32)) !=
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:267:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (BUG(strlen(rendcirc->build_state->chosen_exit->nickname)
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:529:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
descriptor_cookie_base64[strlen(descriptor_cookie_base64)-2] = '\0';
data/tor-0.4.5.2-alpha/src/feature/rend/rendclient.c:1215:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(onion_address) != REND_SERVICE_ADDRESS_LEN ||
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:162:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(service_id) != REND_SERVICE_ID_LEN_BASE32) {
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:310:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = 2 + client_entries_len + CIPHER_IV_LEN + strlen(encoded);
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:322:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CIPHER_IV_LEN + strlen(encoded), encoded, strlen(encoded));
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:322:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CIPHER_IV_LEN + strlen(encoded), encoded, strlen(encoded));
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:403:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
enc = tor_malloc_zero(1 + CIPHER_IV_LEN + strlen(encoded));
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:407:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CIPHER_IV_LEN+strlen(encoded),
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:408:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
encoded, strlen(encoded));
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:523:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ipos_len = strlen(ipos);
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:657:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
written += strlen(desc_str + written);
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:671:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
written += strlen(desc_str+written);
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:727:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(query) != REND_SERVICE_ID_LEN_BASE32)
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:741:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(query) != REND_DESC_ID_V2_LEN_BASE32) {
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:759:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(client_name);
data/tor-0.4.5.2-alpha/src/feature/rend/rendcommon.c:941:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(descriptor_cookie);
data/tor-0.4.5.2-alpha/src/feature/rend/rendparse.c:102:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (router_get_hash_impl(desc, strlen(desc), desc_hash,
data/tor-0.4.5.2-alpha/src/feature/rend/rendparse.c:111:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eos = desc + strlen(desc);
data/tor-0.4.5.2-alpha/src/feature/rend/rendparse.c:174:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tok->args[0]) != REND_SECRET_ID_PART_LEN_BASE32 ||
data/tor-0.4.5.2-alpha/src/feature/rend/rendparse.c:531:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!ckstr || strlen(ckstr) == 0)
data/tor-0.4.5.2-alpha/src/feature/rend/rendparse.c:543:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eos = current_entry + strlen(current_entry);
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:218:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(client->client_name, 0, strlen(client->client_name));
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:420:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t pathlen = strlen(socket_path) + 1;
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:484:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (rest && strlen(rest)) {
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:1731:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(encoded_cookie, 0, strlen(encoded_cookie));
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:1753:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(client_keys_str, 0, strlen(client_keys_str));
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:1759:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(cfname, 0, strlen(cfname));
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:1789:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_assert(strlen(id) == REND_SERVICE_ID_LEN_BASE32);
data/tor-0.4.5.2-alpha/src/feature/rend/rendservice.c:3735:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
desc->desc_str, strlen(desc->desc_str));
data/tor-0.4.5.2-alpha/src/feature/stats/bwhist.c:290:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp += strlen(cp);
data/tor-0.4.5.2-alpha/src/feature/stats/connstats.c:81:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
size_t read; /**< Number of read bytes */
data/tor-0.4.5.2-alpha/src/feature/stats/connstats.c:149:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
else if (ent->read >= ent->written * BIDI_FACTOR)
data/tor-0.4.5.2-alpha/src/feature/stats/connstats.c:151:33: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
else if (ent->written >= ent->read * BIDI_FACTOR)
data/tor-0.4.5.2-alpha/src/feature/stats/geoip_stats.c:133:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
h += (unsigned) siphash24g(a->transport_name, strlen(a->transport_name));
data/tor-0.4.5.2-alpha/src/feature/stats/geoip_stats.c:162:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(ent->transport_name ? strlen(ent->transport_name) : 0));
data/tor-0.4.5.2-alpha/src/feature/stats/geoip_stats.c:1102:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tmp += strlen(BRIDGE_STATS_END);
data/tor-0.4.5.2-alpha/src/feature/stats/geoip_stats.c:1104:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tmp) < ISO_TIME_LEN + 6)
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:802:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
format = tor_parse_long(firstline+strlen("format "),
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:816:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (parse_iso_time(line+strlen("last-downrated "), &last_downrated)<0)
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:821:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (parse_iso_time(line+strlen("stored-at "), &stored_at)<0)
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:826:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (parse_iso_time(line+strlen("tracked-since "), &tracked_since)<0)
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:877:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strcmpstart(line, "R ") || strlen(line) < 2+HEX_DIGEST_LEN)
data/tor-0.4.5.2-alpha/src/feature/stats/rephist.c:1618:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (append_bytes_to_file(filename, str, strlen(str), 0) < 0)
data/tor-0.4.5.2-alpha/src/lib/buf/buffers.c:563:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf_add(buf, string, strlen(string));
data/tor-0.4.5.2-alpha/src/lib/buf/buffers.c:584:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf_add(buf, tmp, strlen(tmp));
data/tor-0.4.5.2-alpha/src/lib/buf/buffers.c:837:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t clen = strlen(cmd);
data/tor-0.4.5.2-alpha/src/lib/confmgt/confmgt.c:472:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t keylen = strlen(key);
data/tor-0.4.5.2-alpha/src/lib/confmgt/confmgt.c:694:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *space = (why && strlen(why)) ? " " : "";
data/tor-0.4.5.2-alpha/src/lib/confmgt/confmgt.c:754:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(c->value)) {
data/tor-0.4.5.2-alpha/src/lib/container/map.c:55:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return (unsigned) siphash24g(a->key, strlen(a->key));
data/tor-0.4.5.2-alpha/src/lib/container/namemap.c:34:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return (unsigned) siphash24g(a->name, strlen(a->name));
data/tor-0.4.5.2-alpha/src/lib/container/namemap.c:117:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namelen = strlen(name);
data/tor-0.4.5.2-alpha/src/lib/container/namemap.c:136:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namelen = strlen(name);
data/tor-0.4.5.2-alpha/src/lib/container/smartlist.c:282:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return smartlist_join_strings2(sl,join,strlen(join),terminate,len_out);
data/tor-0.4.5.2-alpha/src/lib/container/smartlist.c:305:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n += strlen(sl->list[i]);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_dh_nss.c:39:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
TLS_DH_PRIME, strlen(TLS_DH_PRIME));
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_dh_nss.c:43:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
OAKLEY_PRIME_2, strlen(OAKLEY_PRIME_2));
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_nss.c:494:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest_add_bytes(d, prepend, strlen(prepend));
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_nss.c:496:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest_add_bytes(d, cp, strlen(cp)));
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_nss.c:498:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest_add_bytes(d, append, strlen(append));
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_openssl.c:495:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest_add_bytes(d, prepend, strlen(prepend));
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_openssl.c:497:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest_add_bytes(d, cp, strlen(cp)));
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_digest_openssl.c:499:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest_add_bytes(d, append, strlen(append));
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_ed25519.c:247:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
prefix_len = strlen(prefix_str);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:107:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
! fast_mem_is_zero(prefix+strlen(prefix), 32-strlen(prefix))) {
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:107:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
! fast_mem_is_zero(prefix+strlen(prefix), 32-strlen(prefix))) {
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:113:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
3+strlen(typestring) >= 32 ||
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:114:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcmpstart(prefix+3+strlen(typestring), ": ")) {
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:119:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*tag_out = tor_strndup(prefix+5+strlen(typestring),
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:120:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(prefix)-8-strlen(typestring));
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:120:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(prefix)-8-strlen(typestring));
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:173:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(input);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:258:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(input) != ED25519_SIG_BASE64_LEN)
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:293:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (base64_decode(digest, DIGEST_LEN, d64, strlen(d64)) == DIGEST_LEN)
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_format.c:322:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (base64_decode(digest, DIGEST256_LEN, d64, strlen(d64)) == DIGEST256_LEN)
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_openssl_mgt.c:88:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
raw_version += strlen("OpenSSL ");
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rand.c:566:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
prefixlen = strlen(prefix);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rand.c:567:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
resultlen = prefixlen + strlen(suffix) + randlen + 16;
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa.c:240:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(fp_out, hexdigest, HEX_DIGEST_LEN+1);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_rsa.c:496:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(src);
data/tor-0.4.5.2-alpha/src/lib/crypt_ops/crypto_util.c:121:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memwipe(str, 0, strlen(str));
data/tor-0.4.5.2-alpha/src/lib/encoding/keyval.c:32:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(string) < 2) { /* "x=" is shortest args string */
data/tor-0.4.5.2-alpha/src/lib/encoding/kvline.c:62:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return line->key == NULL || strlen(line->key) == 0;
data/tor-0.4.5.2-alpha/src/lib/encoding/kvline.c:71:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return line->value == NULL || strlen(line->value) == 0;
data/tor-0.4.5.2-alpha/src/lib/encoding/kvline.c:260:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp = decode_qstring(cp, strlen(cp), &val, &len);
data/tor-0.4.5.2-alpha/src/lib/encoding/kvline.c:262:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (cp == NULL || len != strlen(val)) {
data/tor-0.4.5.2-alpha/src/lib/encoding/kvline.c:273:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (key && strlen(key) == 0) {
data/tor-0.4.5.2-alpha/src/lib/encoding/pem.c:36:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("-----BEGIN -----\n") +
data/tor-0.4.5.2-alpha/src/lib/encoding/pem.c:37:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("-----END -----\n") +
data/tor-0.4.5.2-alpha/src/lib/encoding/pem.c:38:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(objtype) * 2 +
data/tor-0.4.5.2-alpha/src/lib/encoding/pem.c:55:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t offset = strlen(dest);
data/tor-0.4.5.2-alpha/src/lib/encoding/pem.c:69:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_assert(strlen(dest) + 1 <= pem_encoded_size(srclen, objtype));
data/tor-0.4.5.2-alpha/src/lib/encoding/pem.c:89:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((size_t)(eos-src) < strlen(tag) || fast_memneq(src, tag, strlen(tag))) {
data/tor-0.4.5.2-alpha/src/lib/encoding/pem.c:89:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((size_t)(eos-src) < strlen(tag) || fast_memneq(src, tag, strlen(tag))) {
data/tor-0.4.5.2-alpha/src/lib/encoding/pem.c:93:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
src += strlen(tag);
data/tor-0.4.5.2-alpha/src/lib/encoding/time_fmt.c:215:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buf) != RFC1123_TIME_LEN)
data/tor-0.4.5.2-alpha/src/lib/err/backtrace.c:347:12: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
str_rv = strncpy(bt_version, version, sizeof(bt_version) - 1);
data/tor-0.4.5.2-alpha/src/lib/err/torerr.c:57:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(s);
data/tor-0.4.5.2-alpha/src/lib/fs/files.c:192:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
result = read(fd, buf+numread, count-numread);
data/tor-0.4.5.2-alpha/src/lib/fs/files.c:217:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!fname || strlen(fname) == 0) {
data/tor-0.4.5.2-alpha/src/lib/fs/files.c:283:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return write_bytes_to_file(fname, str, strlen(str), bin);
data/tor-0.4.5.2-alpha/src/lib/fs/files.c:600:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
r = read(fd, string + pos, string_max - pos - 1);
data/tor-0.4.5.2-alpha/src/lib/fs/files.c:712:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = strlen(string);
data/tor-0.4.5.2-alpha/src/lib/fs/path.c:53:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(path);
data/tor-0.4.5.2-alpha/src/lib/fs/path.c:108:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rest = strlen(filename)>=2?(filename+2):"";
data/tor-0.4.5.2-alpha/src/lib/fs/path.c:131:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(home)>1 && !strcmpend(home,PATH_SEPARATOR)) {
data/tor-0.4.5.2-alpha/src/lib/fs/path.c:132:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
home[strlen(home)-1] = '\0';
data/tor-0.4.5.2-alpha/src/lib/fs/path.c:152:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (filename && strlen(filename)>3 && TOR_ISALPHA(filename[0]) &&
data/tor-0.4.5.2-alpha/src/lib/fs/path.c:167:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(name);
data/tor-0.4.5.2-alpha/src/lib/fs/path.c:213:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp = fname + strlen(fname);
data/tor-0.4.5.2-alpha/src/lib/fs/path.c:603:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t pattern_len = strlen(pattern);
data/tor-0.4.5.2-alpha/src/lib/fs/path.c:611:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(match);
data/tor-0.4.5.2-alpha/src/lib/fs/storagedir.c:336:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(const uint8_t*)str, strlen(str), binary, fname_out);
data/tor-0.4.5.2-alpha/src/lib/fs/storagedir.c:362:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sz->len = strlen(line->key) + 1 + strlen(line->value) + 1;
data/tor-0.4.5.2-alpha/src/lib/fs/storagedir.c:362:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sz->len = strlen(line->key) + 1 + strlen(line->value) + 1;
data/tor-0.4.5.2-alpha/src/lib/fs/winlib.c:24:21: [1] (buffer) _tcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (n == 0 || n + _tcslen(library_name) + 2 >= MAX_PATH)
data/tor-0.4.5.2-alpha/src/lib/geoip/geoip.c:211:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(country) != 2)
data/tor-0.4.5.2-alpha/src/lib/geoip/geoip.c:362:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest_add_bytes(geoip_digest_env, buf, strlen(buf));
data/tor-0.4.5.2-alpha/src/lib/log/log.c:319:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (write_all_to_fd_minimal(lf->fd, buf, strlen(buf)) < 0) /* error */
data/tor-0.4.5.2-alpha/src/lib/log/log.c:371:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(buf);
data/tor-0.4.5.2-alpha/src/lib/log/log.c:397:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t suffix_len = strlen(suffix);
data/tor-0.4.5.2-alpha/src/lib/log/log.c:406:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf_len - n > strlen(tor_bug_suffix)+1) {
data/tor-0.4.5.2-alpha/src/lib/log/log.c:407:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(buf+n, tor_bug_suffix, strlen(tor_bug_suffix));
data/tor-0.4.5.2-alpha/src/lib/log/log.c:408:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n += strlen(tor_bug_suffix);
data/tor-0.4.5.2-alpha/src/lib/log/log.c:1081:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
logfile_deliver(lf, msg->fullmsg, strlen(msg->fullmsg), msg->msg,
data/tor-0.4.5.2-alpha/src/lib/log/log.c:1285:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return buf+strlen(buf);
data/tor-0.4.5.2-alpha/src/lib/log/log.c:1291:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return buf+strlen(buf);
data/tor-0.4.5.2-alpha/src/lib/malloc/malloc.c:192:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(duplicate, s, n);
data/tor-0.4.5.2-alpha/src/lib/memarea/memarea.c:268:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return memarea_memdup(area, s, strlen(s)+1);
data/tor-0.4.5.2-alpha/src/lib/memarea/memarea.c:376:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n = strlen(s);
data/tor-0.4.5.2-alpha/src/lib/net/address.c:352:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(dest+strlen(dest), "]", 2);
data/tor-0.4.5.2-alpha/src/lib/net/address.c:391:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(address) - strlen(".in-addr.arpa");
data/tor-0.4.5.2-alpha/src/lib/net/address.c:391:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(address) - strlen(".in-addr.arpa");
data/tor-0.4.5.2-alpha/src/lib/net/address.c:567:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(s) > MAX_ADDRESS_LENGTH) {
data/tor-0.4.5.2-alpha/src/lib/net/address.c:1307:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(src);
data/tor-0.4.5.2-alpha/src/lib/net/address.c:1311:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
src = tmp = tor_strndup(src+1, strlen(src)-2);
data/tor-0.4.5.2-alpha/src/lib/net/address.c:2164:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(string);
data/tor-0.4.5.2-alpha/src/lib/net/address.c:2195:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!string || strlen(string) == 0)
data/tor-0.4.5.2-alpha/src/lib/net/alertsock.c:62:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
r = (int) read(fd, buf, n);
data/tor-0.4.5.2-alpha/src/lib/net/buffers_net.c:54:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read_result = read(fd, CHUNK_WRITE_PTR(chunk), at_most);
data/tor-0.4.5.2-alpha/src/lib/net/inaddr.c:54:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
is_octal = (strlen(octet) > 1 && octet[0] == '0');
data/tor-0.4.5.2-alpha/src/lib/net/inaddr.c:127:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(buf) + 1) > len) /* +1 for \0 */
data/tor-0.4.5.2-alpha/src/lib/net/inaddr.c:162:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp += strlen(cp);
data/tor-0.4.5.2-alpha/src/lib/net/inaddr.c:168:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(buf) + 1) > len) /* +1 for \0 */
data/tor-0.4.5.2-alpha/src/lib/net/inaddr.c:192:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ssize_t len = strlen(src);
data/tor-0.4.5.2-alpha/src/lib/net/inaddr.c:208:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eow = src+strlen(src);
data/tor-0.4.5.2-alpha/src/lib/net/resolve.c:344:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return (unsigned)siphash24g(item->name, strlen(item->name)) + item->family;
data/tor-0.4.5.2-alpha/src/lib/process/daemon.c:85:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (0 < read(daemon_filedes[0], &c, sizeof(char))) {
data/tor-0.4.5.2-alpha/src/lib/process/env.c:64:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(s);
data/tor-0.4.5.2-alpha/src/lib/process/env.c:117:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t slen = strlen(s);
data/tor-0.4.5.2-alpha/src/lib/process/env.c:147:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t slen = strlen(s);
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:225:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
SCMP_SYS(read),
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:1268:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
param_size = strlen(param_val) + 1;
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:1314:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pr_mem_size += strlen((char*) el->param->value) + 1;
data/tor-0.4.5.2-alpha/src/lib/sandbox/sandbox.c:1316:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pr_mem_size += strlen((char*) el->param->value2) + 1;
data/tor-0.4.5.2-alpha/src/lib/smartlist_core/smartlist_split.c:68:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
next = end+strlen(sep);
data/tor-0.4.5.2-alpha/src/lib/string/util_string.c:69:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return tor_memmem(haystack, hlen, needle, strlen(needle));
data/tor-0.4.5.2-alpha/src/lib/string/util_string.c:217:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n = strlen(s2);
data/tor-0.4.5.2-alpha/src/lib/string/util_string.c:227:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n = strlen(s2);
data/tor-0.4.5.2-alpha/src/lib/string/util_string.c:241:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t plen = strlen(prefix);
data/tor-0.4.5.2-alpha/src/lib/string/util_string.c:253:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n1 = strlen(s1), n2 = strlen(s2);
data/tor-0.4.5.2-alpha/src/lib/string/util_string.c:253:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n1 = strlen(s1), n2 = strlen(s2);
data/tor-0.4.5.2-alpha/src/lib/string/util_string.c:266:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n1 = strlen(s1), n2 = strlen(s2);
data/tor-0.4.5.2-alpha/src/lib/string/util_string.c:266:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n1 = strlen(s1), n2 = strlen(s2);
data/tor-0.4.5.2-alpha/src/lib/string/util_string.c:402:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t needle_len = strlen(needle);
data/tor-0.4.5.2-alpha/src/lib/string/util_string.c:426:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t length = strlen(string);
data/tor-0.4.5.2-alpha/src/lib/term/getpass.c:58:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(pwd);
data/tor-0.4.5.2-alpha/src/lib/time/compat_time.c:66:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep((msec % 1000) * 1000);
data/tor-0.4.5.2-alpha/src/lib/tls/nss_countbytes.c:123:41: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
PRInt32 result = (fd->lower->methods->read)(fd->lower, buf, amount);
data/tor-0.4.5.2-alpha/src/lib/tls/tortls_nss.c:815:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_assert(strlen(label) <= UINT_MAX);
data/tor-0.4.5.2-alpha/src/lib/tls/tortls_nss.c:824:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
label, (unsigned)strlen(label),
data/tor-0.4.5.2-alpha/src/lib/tls/tortls_openssl.c:1663:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = client_random_len + server_random_len + strlen(TLSSECRET_MAGIC) + 1;
data/tor-0.4.5.2-alpha/src/lib/tls/tortls_openssl.c:1685:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(nextbuf, TLSSECRET_MAGIC, strlen(TLSSECRET_MAGIC) + 1);
data/tor-0.4.5.2-alpha/src/lib/tls/tortls_openssl.c:1720:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
label, strlen(label),
data/tor-0.4.5.2-alpha/src/lib/tls/tortls_openssl.c:1730:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(label) > 12 &&
data/tor-0.4.5.2-alpha/src/lib/version/version.c:41:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tor_git_revision)) {
data/tor-0.4.5.2-alpha/src/test/bench.c:809:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t f1len = strlen(f1);
data/tor-0.4.5.2-alpha/src/test/bench.c:810:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t f2len = strlen(f2);
data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_diff.c:42:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define SEPLEN strlen(SEP)
data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_diff.c:62:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *c4 = consensus_diff_apply(c1, c1_len, c3, strlen(c3));
data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_diff.c:64:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int equal = (c2_len == strlen(c4)) && fast_memeq(c2, c4, c2_len);
data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_diff.c:65:11: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (! equal) {
data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_diff.c:71:16: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
tor_assert(equal);
data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_diff_apply.c:50:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define SEPLEN strlen(SEP)
data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_hsdescv3.c:58:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t result = strlen(*decrypted_out);
data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_http.c:40:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
log_debug(LD_GENERAL, "Header-Length:\n%u\n", (unsigned)strlen(headers));
data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_http.c:64:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
log_debug(LD_GENERAL, "Header-Length:\n%u\n", (unsigned)strlen(headers));
data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_strops.c:106:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ch->len = strlen((char *) ch->buf);
data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_strops.c:127:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ch->len = strlen((char *) ch->buf);
data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_strops.c:152:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ch->len = strlen((char*)ch->buf);
data/tor-0.4.5.2-alpha/src/test/fuzz/fuzz_strops.c:173:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
res->len = strlen(s);
data/tor-0.4.5.2-alpha/src/test/rng_test_helpers.c:129:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t hexlen = strlen(provided_seed);
data/tor-0.4.5.2-alpha/src/test/test-memwipe.c:37:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < BUF_LEN; i += strlen(s)) { \
data/tor-0.4.5.2-alpha/src/test/test-memwipe.c:38:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(buf+i, s, MIN(strlen(s), BUF_LEN-i)); \
data/tor-0.4.5.2-alpha/src/test/test-memwipe.c:109:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < BUF_LEN - strlen(s); ++i) {
data/tor-0.4.5.2-alpha/src/test/test-memwipe.c:110:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (vmemeq(buf+i, s, strlen(s)))
data/tor-0.4.5.2-alpha/src/test/test-memwipe.c:165:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < BUF_LEN - strlen(s); ++i) {
data/tor-0.4.5.2-alpha/src/test/test-memwipe.c:166:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (vmemeq(buf+i, s, strlen(s)))
data/tor-0.4.5.2-alpha/src/test/test-process.c:63:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen(buffer);
data/tor-0.4.5.2-alpha/src/test/test.h:30:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t length = strlen(hex); \
data/tor-0.4.5.2-alpha/src/test/test_addr.c:45:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_str_op(tor_inet_ntop(AF_INET, &in, tmpbuf, strlen(ip) + 1), OP_EQ, ip);
data/tor-0.4.5.2-alpha/src/test/test_addr.c:48:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(tor_inet_ntop(AF_INET, &in, tmpbuf, strlen(ip)),OP_EQ, NULL);
data/tor-0.4.5.2-alpha/src/test/test_addr.c:194:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_str_op(tor_inet_ntop(AF_INET6, &a1, buf, strlen(ip)+1),OP_EQ, ip);
data/tor-0.4.5.2-alpha/src/test/test_addr.c:195:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_str_op(tor_inet_ntop(AF_INET6, &a2, buf, strlen(ip_ffff)+1),OP_EQ,
data/tor-0.4.5.2-alpha/src/test/test_addr.c:199:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(tor_inet_ntop(AF_INET6, &a1, buf, strlen(ip)),OP_EQ, NULL);
data/tor-0.4.5.2-alpha/src/test/test_addr.c:200:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(tor_inet_ntop(AF_INET6, &a2, buf, strlen(ip_ffff)),OP_EQ, NULL);
data/tor-0.4.5.2-alpha/src/test/test_addr.c:544:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("3.2.1.127.in-addr.arpa") - 1,
data/tor-0.4.5.2-alpha/src/test/test_addr.c:549:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("3.2.1.127.in-addr.arpa"));
data/tor-0.4.5.2-alpha/src/test/test_addr.c:572:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(tor_addr_to_PTR_name(rbuf, strlen(addr_PTR) - 1, &t1),OP_EQ, -1);
data/tor-0.4.5.2-alpha/src/test/test_addr.c:576:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(addr_PTR));
data/tor-0.4.5.2-alpha/src/test/test_buffers.c:388:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(s);
data/tor-0.4.5.2-alpha/src/test/test_buffers.c:412:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(s);
data/tor-0.4.5.2-alpha/src/test/test_buffers.c:822:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t headerlen = strlen(results[i].headers);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:116:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
make_relay_cell(&cell, RELAY_COMMAND_BEGIN, c, strlen(c)+1);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:1041:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(LONG_NAME), OP_EQ, 255);
data/tor-0.4.5.2-alpha/src/test/test_cell_formats.c:1174:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(LONG_NAME2), OP_EQ, 231);
data/tor-0.4.5.2-alpha/src/test/test_checkdir.c:23:9: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
#define umask(mask) ((void)0)
data/tor-0.4.5.2-alpha/src/test/test_checkdir.c:41:3: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(022);
data/tor-0.4.5.2-alpha/src/test/test_confmgr.c:135:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (! llama->llamaname || strlen(llama->llamaname) == 0) {
data/tor-0.4.5.2-alpha/src/test/test_confmgr.c:140:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(llama->llamaname, "0123456789") == strlen(llama->llamaname)) {
data/tor-0.4.5.2-alpha/src/test/test_connection.c:196:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_assert(strlen(TEST_CONN_REND_ADDR) == REND_SERVICE_ID_LEN_BASE32);
data/tor-0.4.5.2-alpha/src/test/test_consdiff.c:20:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(s);
data/tor-0.4.5.2-alpha/src/test/test_consdiff.c:28:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(cons);
data/tor-0.4.5.2-alpha/src/test/test_consdiff.c:41:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(cons);
data/tor-0.4.5.2-alpha/src/test/test_consdiff.c:426:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cdline_t aa = { a, a ? (uint32_t) strlen(a) : 0 };
data/tor-0.4.5.2-alpha/src/test/test_consdiff.c:427:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cdline_t bb = { b, b ? (uint32_t) strlen(b) : 0 };
data/tor-0.4.5.2-alpha/src/test/test_consdiffmgr.c:29:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t c_len = strlen(c);
data/tor-0.4.5.2-alpha/src/test/test_consdiffmgr.c:30:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t d_len = strlen(d);
data/tor-0.4.5.2-alpha/src/test/test_consdiffmgr.c:174:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
str1, strlen(str1))<0) {
data/tor-0.4.5.2-alpha/src/test/test_consdiffmgr.c:203:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *applied = consensus_diff_apply(str1, strlen(str1), diff_string, size);
data/tor-0.4.5.2-alpha/src/test/test_consdiffmgr.c:394:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(md_ns_body));
data/tor-0.4.5.2-alpha/src/test/test_controller.c:97:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(t->input),
data/tor-0.4.5.2-alpha/src/test/test_controller.c:402:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
encoded[strlen(encoded)/2] = '\0';
data/tor-0.4.5.2-alpha/src/test/test_controller.c:853:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
auth_id_digest_1_str, strlen(auth_id_digest_1_str));
data/tor-0.4.5.2-alpha/src/test/test_controller.c:859:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
auth_id_digest_2_str, strlen(auth_id_digest_2_str));
data/tor-0.4.5.2-alpha/src/test/test_controller.c:911:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
auth_1_sk_1_str, strlen(auth_1_sk_1_str));
data/tor-0.4.5.2-alpha/src/test/test_controller.c:917:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
auth_1_sk_2_str, strlen(auth_1_sk_2_str));
data/tor-0.4.5.2-alpha/src/test/test_controller.c:925:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
auth_2_sk_1_str, strlen(auth_2_sk_1_str));
data/tor-0.4.5.2-alpha/src/test/test_controller.c:931:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
auth_2_sk_2_str, strlen(auth_2_sk_2_str));
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1013:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
descbr_digest_1_str, strlen(descbr_digest_1_str));
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1019:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
descbr_digest_2_str, strlen(descbr_digest_2_str));
data/tor-0.4.5.2-alpha/src/test/test_controller.c:1738:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
res->size = strlen(res->data);
data/tor-0.4.5.2-alpha/src/test/test_controller.c:2046:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = handle_control_command(&conn, (uint32_t)strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_controller.c:2055:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = handle_control_command(&conn, (uint32_t)strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_controller.c:2065:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = handle_control_command(&conn, (uint32_t)strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_controller.c:2077:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = handle_control_command(&conn, (uint32_t)strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_controller.c:2088:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = handle_control_command(&conn, (uint32_t)strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_controller.c:2098:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = handle_control_command(&conn, (uint32_t)strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_controller_events.c:620:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ec->socks_request->usernamelen = strlen(username);
data/tor-0.4.5.2-alpha/src/test/test_controller_events.c:622:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ec->socks_request->passwordlen = strlen(password);
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:121:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode(p1, sizeof(p1), P, strlen(P));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:144:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode(p1, sizeof(p1), P_plus_one, strlen(P_plus_one));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:277:5: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is low because the source is a
constant string.
strncat(data1, "Now is the time for all good onions", i);
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:457:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode(key, sizeof(key), key16, strlen(key16));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:458:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode(iv, sizeof(iv), ctr16, strlen(ctr16));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:460:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
plaintext16, strlen(plaintext16));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1054:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(uint8_t *) key, strlen(key),
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1055:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(uint8_t *) msg, strlen(msg));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1061:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const uint64_t key_len_netorder = tor_htonll(strlen(key));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1065:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
all_len = sizeof(key_len_netorder) + strlen(key_msg_concat);
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1069:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(key_msg_concat));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1238:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(fingerprint), OP_EQ, DIGEST_LEN * 2);
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1243:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 4; i < strlen(fingerprint); i += 5) {
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1247:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(fingerprint), OP_EQ, DIGEST_LEN * 2);
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1253:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(fingerprint), OP_EQ, DIGEST_LEN * 2);
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1277:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pk2 = crypto_pk_base64_decode_private(encoded, strlen(encoded));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1284:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pk2 = crypto_pk_base64_decode_private(invalid_b64, strlen(invalid_b64));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1288:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pk2 = crypto_pk_base64_decode_private(encoded, strlen(encoded)/2);
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1317:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_pk_read_private_key_from_string(pk, s, strlen(s)));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1332:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_pk_read_public_key_from_string(pk, s, strlen(s)));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1416:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_pk_read_private_key_from_string(pk, pem, strlen(pem)));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1463:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(AUTHORITY_SIGNKEY_3));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1528:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(i, OP_EQ, strlen(data2));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1535:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(i, OP_EQ, strlen(data2));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1555:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(BASE64_DIGEST_LEN,OP_EQ, strlen(data2));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1568:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(BASE64_DIGEST256_LEN,OP_EQ, strlen(data2));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1611:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(data1),OP_EQ, 40);
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1785:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(const uint8_t*)(s), strlen(s), \
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1826:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t salt_len = strlen((char*)salt);
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1828:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t m_expand_len = strlen((char*)m_expand);
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1836:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(const uint8_t*)(s), strlen(s), \
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1914:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t ikm_len = strlen(vecs[i].ikm16)/2;
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1915:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t salt_len = strlen(vecs[i].salt16)/2;
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1916:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t info_len = strlen(vecs[i].info16)/2;
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1924:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode(ikm, ikm_len, vecs[i].ikm16, strlen(vecs[i].ikm16));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1925:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode(salt, salt_len, vecs[i].salt16, strlen(vecs[i].salt16));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:1926:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode(info, info_len, vecs[i].info16, strlen(vecs[i].info16));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2063:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode((char*)a, sizeof(a), a16, strlen(a16));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2064:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode((char*)b, sizeof(b), b16, strlen(b16));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2117:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(CURVE25519_BASE64_PADDED_LEN, OP_EQ, strlen(buf));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2123:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(CURVE25519_BASE64_LEN, OP_EQ, strlen(buf_nopad));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2171:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
taglen = strlen("== c25519v1: testing ==");
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2217:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t msg_len = strlen((const char*)msg);
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2218:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t msg2_len = strlen((const char*)msg2);
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2306:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(prefixed_msg), &kp1));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2470:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg_len = strlen(items[i].msg) / 2;
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2472:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode((char*)msg, msg_len, items[i].msg, strlen(items[i].msg));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2497:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(ED25519_BASE64_LEN, OP_EQ, strlen(buf));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2617:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
badkey, strlen(badkey));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2626:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
goodkey, strlen(goodkey));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2654:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define DECODE(p,s) base16_decode((char*)(p),sizeof(p),(s),strlen(s))
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2945:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
badkey, strlen(badkey));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2954:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
badkey, strlen(badkey));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2963:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
badkey, strlen(badkey));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2972:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
badkey, strlen(badkey));
data/tor-0.4.5.2-alpha/src/test/test_crypto.c:2981:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
goodkey, strlen(goodkey));
data/tor-0.4.5.2-alpha/src/test/test_crypto_ope.c:131:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode((char*)key, 32, OPE_TEST_KEY, strlen(OPE_TEST_KEY));
data/tor-0.4.5.2-alpha/src/test/test_crypto_openssl.c:94:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(j, OP_EQ, strlen(data2));
data/tor-0.4.5.2-alpha/src/test/test_crypto_rng.c:49:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(host) < 13 ||
data/tor-0.4.5.2-alpha/src/test/test_crypto_rng.c:50:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(host) > 18)
data/tor-0.4.5.2-alpha/src/test/test_crypto_rng.c:59:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(63+4+6, OP_EQ, strlen(h));
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:70:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pw1, strlen(pw1), flags);
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:83:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
secret_to_key_check(buf, sz, pw1, strlen(pw1)));
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:86:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
secret_to_key_check(buf, sz, pw2, strlen(pw2)));
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:95:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
secret_to_key_derivekey(buf3, keylen, buf, speclen, pw1, strlen(pw1)));
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:103:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pw1, strlen(pw1)));
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:110:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pw1, strlen(pw1)));
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:185:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
libscrypt_scrypt((const uint8_t *)"password", strlen("password"),
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:186:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(const uint8_t *)"NaCl", strlen("NaCl"),
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:189:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
EVP_PBE_scrypt((const char *)"password", strlen("password"),
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:190:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(const unsigned char *)"NaCl", strlen("NaCl"),
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:207:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("pleaseletmein"),
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:209:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("SodiumChloride"),
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:213:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("pleaseletmein"),
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:215:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("SodiumChloride"),
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:231:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("pleaseletmein"),
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:233:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("SodiumChloride"),
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:237:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("pleaseletmein"),
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:239:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("SodiumChloride"),
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:482:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(const uint8_t*)msg, strlen(msg),
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:483:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pw, strlen(pw), flags[i]));
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:488:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pw, strlen(pw)));
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:491:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_uint_op(dlen, OP_EQ, strlen(msg));
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:498:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pw, strlen(pw)-1));
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:502:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pw, strlen(pw)));
data/tor-0.4.5.2-alpha/src/test/test_crypto_slow.c:506:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pw, strlen(pw)));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:117:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(s);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:301:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_assert(strlen(fingerprint) > 0);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:414:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tor_assert(strlen(cert_buf) > 0);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:859:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf[strlen(buf2)] = '\0'; /* Don't compare either sig; they're never the same
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1134:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name##_KEY, strlen(name##_KEY))); \
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1135:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(20,OP_EQ,base16_decode(d, 20, name##_FP, strlen(name##_FP))); \
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1229:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(cp, OP_EQ, list + strlen(list));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1233:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
EX_RI_MINIMAL, strlen(EX_RI_MINIMAL));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1236:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
EX_RI_MAXIMAL, strlen(EX_RI_MAXIMAL));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1268:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
EX_EI_MAXIMAL, strlen(EX_EI_MAXIMAL));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1271:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
EX_EI_MINIMAL, strlen(EX_EI_MINIMAL));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1325:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
router_get_router_hash(string, strlen(string), (char*)digest_##name); \
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1374:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(0,OP_EQ,router_get_router_hash(str, strlen(str), buf)); \
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1454:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
router_get_extrainfo_hash(string, strlen(string), \
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1525:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(0,OP_EQ,router_get_extrainfo_hash(str, strlen(str), buf)); \
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1578:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(got_wanted), OP_EQ, HEX_DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:1580:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode(d, DIGEST_LEN, got_wanted, strlen(got_wanted));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:3425:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(AUTHORITY_CERT_1),
data/tor-0.4.5.2-alpha/src/test/test_dir.c:3429:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(AUTHORITY_CERT_2),
data/tor-0.4.5.2-alpha/src/test/test_dir.c:3433:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(AUTHORITY_CERT_3),
data/tor-0.4.5.2-alpha/src/test/test_dir.c:4461:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest256(digest_expected, content, strlen(content), DIGEST_SHA256);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5625:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(str);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5725:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_1), DIGEST_SHA256);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5730:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_2), DIGEST_SHA256);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5735:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_3), DIGEST_SHA256);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5740:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_4), DIGEST_SHA256);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5762:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(len_descs_dumped, OP_EQ, strlen(test_desc_1));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5797:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(len_descs_dumped, OP_EQ, strlen(test_desc_2));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5814:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_2) + strlen(test_desc_3));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5814:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_2) + strlen(test_desc_3));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5849:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(len_descs_dumped, OP_EQ, strlen(test_desc_4));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5866:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_4) + strlen(test_desc_1));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5866:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_4) + strlen(test_desc_1));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5883:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_1) + strlen(test_desc_2));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5883:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_1) + strlen(test_desc_2));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5918:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(len_descs_dumped, OP_EQ, strlen(test_desc_3));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5935:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_3) + strlen(test_desc_4));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5935:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_3) + strlen(test_desc_4));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5952:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_3) + strlen(test_desc_4));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5952:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_3) + strlen(test_desc_4));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:5987:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(len_descs_dumped, OP_EQ, strlen(test_desc_1));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6004:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_1) + strlen(test_desc_2));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6004:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_1) + strlen(test_desc_2));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6021:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_1) + strlen(test_desc_2));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6021:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_1) + strlen(test_desc_2));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6056:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(len_descs_dumped, OP_EQ, strlen(test_desc_3));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6073:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_3) + strlen(test_desc_4));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6073:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_3) + strlen(test_desc_4));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6090:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_3) + strlen(test_desc_4));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6090:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_3) + strlen(test_desc_4));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6107:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_4) + strlen(test_desc_1));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6107:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_4) + strlen(test_desc_1));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6142:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(len_descs_dumped, OP_EQ, strlen(test_desc_2));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6159:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_2) + strlen(test_desc_3));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6159:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_2) + strlen(test_desc_3));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6176:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_2) + strlen(test_desc_3));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6176:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_2) + strlen(test_desc_3));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6193:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_2) + strlen(test_desc_4));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6193:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_desc_2) + strlen(test_desc_4));
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6393:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
file_content_len = strlen(file_content);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6410:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
file_content_len = strlen(file_content);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6571:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_assert(strlen(data) == 3);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6747:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp + strlen(cp),
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6762:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp + strlen(cp), \
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6817:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *eos = str1 + strlen(str1);
data/tor-0.4.5.2-alpha/src/test/test_dir.c:6902:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op((int)strlen(platform), OP_GT, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_common.c:46:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(AUTHORITY_CERT_1),
data/tor-0.4.5.2-alpha/src/test/test_dir_common.c:53:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(AUTHORITY_CERT_2),
data/tor-0.4.5.2-alpha/src/test/test_dir_common.c:57:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(AUTHORITY_CERT_3),
data/tor-0.4.5.2-alpha/src/test/test_dir_common.c:218:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(r->cache_info.signed_descriptor_body);
data/tor-0.4.5.2-alpha/src/test/test_dir_common.c:280:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(v_text),
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:175:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
body_len = strlen(exp_body);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:192:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(body_used, OP_EQ, strlen(body));
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:254:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(body_used, OP_EQ, strlen(body));
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:439:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
body_len = strlen(desc_holder->desc_str);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:453:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(body_used, OP_EQ, strlen(body));
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:545:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest256(digest, microdesc, strlen(microdesc), DIGEST_SHA256);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:561:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&body, &body_used, strlen(microdesc)+1, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:570:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(body_used, OP_EQ, strlen(body));
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:604:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest256(digest, microdesc, strlen(microdesc), DIGEST_SHA256);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:909:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(TEST_DESCRIPTOR) - annotation_len;
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:922:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&body, &body_used, strlen(TEST_DESCRIPTOR)+1, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:931:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(body_used, OP_EQ, strlen(body));
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:975:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(TEST_DESCRIPTOR) - annotation_len;
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:995:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&body, &body_used, strlen(TEST_DESCRIPTOR)+1, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1004:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(body_used, OP_EQ, strlen(body));
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1236:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&body, &body_used, strlen(TEST_CERTIFICATE)+1, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1303:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(TEST_CERTIFICATE),
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1315:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&body, &body_used, strlen(TEST_CERTIFICATE)+1, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1398:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&body, &body_used, strlen(TEST_CERTIFICATE)+1, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1455:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(TEST_CERTIFICATE),
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1473:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&body, &body_used, strlen(TEST_CERTIFICATE)+1, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1559:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&body, &body_used, strlen(TEST_CERTIFICATE)+1, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1866:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
body, body_len, strlen(NETWORK_STATUS)+7, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:1907:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(NETWORK_STATUS), OP_EQ, body_used);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2013:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
body, body_l, strlen(VOTE_BODY_V3)+1, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2033:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
body, body_l, strlen(VOTE_BODY_V3)+1, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2464:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(TEST_CERTIFICATE),
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2502:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&body, &body_used, strlen(VOTE_BODY_V3)+1, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2556:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&body, &body_used, strlen(content)+1, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2574:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(body_used, OP_EQ, strlen(body));
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2585:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&body, &body_used, strlen(content)+1, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2625:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(TEST_CERTIFICATE),
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2667:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&body, &body_used, strlen(VOTE_BODY_V3)+1, 0);
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2712:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(TEST_CERTIFICATE),
data/tor-0.4.5.2-alpha/src/test/test_dir_handle_get.c:2846:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&body, &body_used, strlen(VOTE_BODY_V3)+1, 0);
data/tor-0.4.5.2-alpha/src/test/test_extorport.c:236:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(client_hash_input), OP_EQ, 46+32+32);
data/tor-0.4.5.2-alpha/src/test/test_extorport.c:237:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(server_hash_input), OP_EQ, 46+32+32);
data/tor-0.4.5.2-alpha/src/test/test_geoip.c:436:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(cc), OP_EQ, 2);
data/tor-0.4.5.2-alpha/src/test/test_geoip.c:445:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest((char*)d, contents, strlen(contents));
data/tor-0.4.5.2-alpha/src/test/test_geoip.c:512:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(cc6), OP_EQ, 2);
data/tor-0.4.5.2-alpha/src/test/test_geoip.c:521:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest((char*)d, contents, strlen(contents));
data/tor-0.4.5.2-alpha/src/test/test_guardfraction.c:43:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(digest_in_hex), OP_EQ, HEX_DIGEST_LEN);
data/tor-0.4.5.2-alpha/src/test/test_hs.c:255:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rend_query.onion_address, STR_HS_ADDR,
data/tor-0.4.5.2-alpha/src/test/test_hs.c:449:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(client_v2->onion_address), OP_EQ, 0);
data/tor-0.4.5.2-alpha/src/test/test_hs_cache.c:313:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(received_desc_str), OP_EQ, 0);
data/tor-0.4.5.2-alpha/src/test/test_hs_cache.c:351:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(received_desc_str), OP_EQ, 0);
data/tor-0.4.5.2-alpha/src/test/test_hs_cache.c:520:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
args->body_len = strlen(published_desc_str);
data/tor-0.4.5.2-alpha/src/test/test_hs_cache.c:640:55: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(search_desc_encoded, OP_EQ, desc_encoded, strlen(desc_encoded));
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:134:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pubkey_hex, strlen(pubkey_hex));
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:501:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pubkey_hex, strlen(pubkey_hex));
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:1541:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(b32_test_vector));
data/tor-0.4.5.2-alpha/src/test/test_hs_common.c:1557:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(b32_test_vector));
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:257:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:271:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:285:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:330:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:347:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:361:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:374:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:384:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:399:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:410:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:424:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:434:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:476:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:490:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:504:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:517:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:579:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:607:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:632:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:676:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_control.c:724:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = handle_control_command(&conn, (uint32_t) strlen(args), args);
data/tor-0.4.5.2-alpha/src/test/test_hs_descriptor.c:75:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pos += strlen("-----BEGIN ED25519 CERT-----\n");
data/tor-0.4.5.2-alpha/src/test/test_hs_descriptor.c:99:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pos += strlen("-----END ED25519 CERT-----");
data/tor-0.4.5.2-alpha/src/test/test_hs_descriptor.c:756:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = ed25519_sign_prefixed(&sig, (const uint8_t *) data, strlen(data),
data/tor-0.4.5.2-alpha/src/test/test_hs_descriptor.c:762:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = desc_sig_is_valid(sig_b64, &kp.pubkey, desc, strlen(desc));
data/tor-0.4.5.2-alpha/src/test/test_hs_descriptor.c:765:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = desc_sig_is_valid("JUNK", &kp.pubkey, desc, strlen(desc));
data/tor-0.4.5.2-alpha/src/test/test_hs_descriptor.c:807:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(ephemeral_sk_b16));
data/tor-0.4.5.2-alpha/src/test/test_hs_descriptor.c:812:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(descriptor_cookie_b16));
data/tor-0.4.5.2-alpha/src/test/test_hs_descriptor.c:817:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(client_pubkey_b16));
data/tor-0.4.5.2-alpha/src/test/test_hs_ntor_cl.c:33:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (base16_decode((char*)var, n, s, strlen(s)) < (int)n ) { \
data/tor-0.4.5.2-alpha/src/test/test_hs_service.c:601:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pubkey_b32, strlen(pubkey_b32));
data/tor-0.4.5.2-alpha/src/test/test_keypin.c:84:55: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(0, OP_EQ, keypin_load_journal_impl(data1, strlen(data1)));
data/tor-0.4.5.2-alpha/src/test/test_keypin.c:109:55: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(0, OP_EQ, keypin_load_journal_impl(data2, strlen(data2)));
data/tor-0.4.5.2-alpha/src/test/test_keypin.c:123:55: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(0, OP_EQ, keypin_load_journal_impl(data3, strlen(data3)));
data/tor-0.4.5.2-alpha/src/test/test_metrics.c:89:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(buf_datalen(conn->outbuf), OP_EQ, (strlen(msg))); \
data/tor-0.4.5.2-alpha/src/test/test_metrics.c:91:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf_get_bytes(conn->outbuf, _c_buf, (strlen(msg))); \
data/tor-0.4.5.2-alpha/src/test/test_metrics.c:97:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf_add(conn->inbuf, (msg), (strlen(msg)));
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:99:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest256(d1, test_md1, strlen(test_md1), DIGEST_SHA256);
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:100:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest256(d2, test_md2, strlen(test_md1), DIGEST_SHA256);
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:101:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_digest256(d3, test_md3_noannotation, strlen(test_md3_noannotation),
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:163:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(md1->bodylen, OP_EQ, strlen(test_md1));
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:164:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(md2->bodylen, OP_EQ, strlen(test_md2));
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:165:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(md3->bodylen, OP_EQ, strlen(test_md3_noannotation));
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:166:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(md1->body, OP_EQ, test_md1, strlen(test_md1));
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:167:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(md2->body, OP_EQ, test_md2, strlen(test_md2));
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:169:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_md3_noannotation));
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:203:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(md1->body, OP_EQ, s + md1->off, strlen(test_md1));
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:204:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(md2->body, OP_EQ, s + md2->off, strlen(test_md2));
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:205:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(md3->body, OP_EQ, s + md3->off, strlen(test_md3_noannotation));
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:217:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(md1->body, OP_EQ, s + md1->off, strlen(test_md1));
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:218:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(md2->body, OP_EQ, s + md2->off, strlen(test_md2));
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:219:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(md3->body, OP_EQ, s + md3->off, strlen(test_md3_noannotation));
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:856:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hex,strlen(hex)));\
data/tor-0.4.5.2-alpha/src/test/test_microdesc.c:914:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp, cp+strlen(cp),
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:258:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode((char*)d1, sizeof(d1), h1, strlen(h1));
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:259:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode((char*)d2, sizeof(d2), h2, strlen(h2));
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:260:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode((char*)d3, sizeof(d3), h3, strlen(h3));
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:261:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode((char*)d4, sizeof(d4), h4, strlen(h4));
data/tor-0.4.5.2-alpha/src/test/test_nodelist.c:262:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base16_decode((char*)d5, sizeof(d5), h5, strlen(h5));
data/tor-0.4.5.2-alpha/src/test/test_ntor_cl.c:23:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (base16_decode((char*)var, n, s, strlen(s)) < (int)n ) { \
data/tor-0.4.5.2-alpha/src/test/test_parsecommon.c:235:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *end = str + strlen(str);
data/tor-0.4.5.2-alpha/src/test/test_parsecommon.c:261:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *end = str + strlen(str);
data/tor-0.4.5.2-alpha/src/test/test_parsecommon.c:290:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *end = str + strlen(str);
data/tor-0.4.5.2-alpha/src/test/test_parsecommon.c:326:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *end2 = str2 + strlen(str2);
data/tor-0.4.5.2-alpha/src/test/test_parsecommon.c:366:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *end = str + strlen(str);
data/tor-0.4.5.2-alpha/src/test/test_parsecommon.c:392:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t signature_len = strlen(signature);
data/tor-0.4.5.2-alpha/src/test/test_parsecommon.c:410:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *end = str + strlen(str);
data/tor-0.4.5.2-alpha/src/test/test_parsecommon.c:430:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *end = str + strlen(str);
data/tor-0.4.5.2-alpha/src/test/test_parsecommon.c:461:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *end = str + strlen(str);
data/tor-0.4.5.2-alpha/src/test/test_parsecommon.c:494:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *end = str + strlen(str);
data/tor-0.4.5.2-alpha/src/test/test_parsecommon.c:527:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *end = str + strlen(str);
data/tor-0.4.5.2-alpha/src/test/test_parsecommon.c:556:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *end = str + strlen(str);
data/tor-0.4.5.2-alpha/src/test/test_pem.c:36:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n = (int) pem_encoded_size(strlen(example_pre), "WOMBAT QUOTE");
data/tor-0.4.5.2-alpha/src/test/test_pem.c:39:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(const unsigned char *)example_pre, strlen(example_pre),
data/tor-0.4.5.2-alpha/src/test/test_pem.c:41:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(buf)+1, OP_EQ, n);
data/tor-0.4.5.2-alpha/src/test/test_pem.c:48:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(example_pre), "WOMBAT QUOTE");
data/tor-0.4.5.2-alpha/src/test/test_pem.c:55:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(example_pre), "WOMBAT QUOTE");
data/tor-0.4.5.2-alpha/src/test/test_pem.c:71:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
expected, strlen(expected),
data/tor-0.4.5.2-alpha/src/test/test_pem.c:73:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(n, OP_EQ, strlen(example_pre));
data/tor-0.4.5.2-alpha/src/test/test_pem.c:78:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = pem_decode(buf, strlen(example_pre),
data/tor-0.4.5.2-alpha/src/test/test_pem.c:79:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
expected, strlen(expected),
data/tor-0.4.5.2-alpha/src/test/test_pem.c:81:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(n, OP_EQ, strlen(example_pre));
data/tor-0.4.5.2-alpha/src/test/test_pem.c:87:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = pem_decode(buf, strlen(example_pre) - 1,
data/tor-0.4.5.2-alpha/src/test/test_pem.c:88:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
expected, strlen(expected),
data/tor-0.4.5.2-alpha/src/test/test_pem.c:95:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
expected, strlen(expected),
data/tor-0.4.5.2-alpha/src/test/test_pem.c:101:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i <= strlen(expected); ++i) {
data/tor-0.4.5.2-alpha/src/test/test_pem.c:107:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (i < strlen(expected) - 1) {
data/tor-0.4.5.2-alpha/src/test/test_pem.c:110:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(n, OP_EQ, strlen(example_pre));
data/tor-0.4.5.2-alpha/src/test/test_pem.c:138:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crlf_version, strlen(crlf_version),
data/tor-0.4.5.2-alpha/src/test/test_pem.c:140:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(n, OP_EQ, strlen(example_pre));
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1559:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_assert(strlen(answer) > 0);
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1566:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_assert(strlen(answer) > 0);
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1582:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_assert(strlen(answer) == 0);
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1589:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ipv4_len = strlen(answer);
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1590:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_assert(ipv4_len == 0 || ipv4_len == strlen(DEFAULT_POLICY_STRING));
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1598:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ipv6_len = strlen(answer);
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1599:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_assert(ipv6_len == 0 || ipv6_len == strlen(DEFAULT_POLICY_STRING));
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1608:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_assert(strlen(answer) == 0 || !strcasecmp(answer, DEFAULT_POLICY_STRING));
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1631:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_assert(strlen(answer) > 0);
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1641:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_assert(strlen(answer) > 0);
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1651:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_assert(strlen(answer) > 0);
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1661:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_assert(strlen(answer) == 0);
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1668:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ipv4_len = strlen(answer);
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1676:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ipv6_len = strlen(answer);
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1684:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_assert(strlen(answer) > 0);
data/tor-0.4.5.2-alpha/src/test/test_policy.c:1685:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_assert(strlen(answer) == ipv4_len + ipv6_len + 1);
data/tor-0.4.5.2-alpha/src/test/test_process.c:105:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(data), OP_EQ, size);
data/tor-0.4.5.2-alpha/src/test/test_process.c:119:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(data), OP_EQ, size);
data/tor-0.4.5.2-alpha/src/test/test_process_slow.c:75:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(data), OP_EQ, size);
data/tor-0.4.5.2-alpha/src/test/test_process_slow.c:89:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(data), OP_EQ, size);
data/tor-0.4.5.2-alpha/src/test/test_process_slow.c:132:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(offset, TEST_PROCESS, strlen(TEST_PROCESS));
data/tor-0.4.5.2-alpha/src/test/test_proto_misc.c:244:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(buf_datalen(buf), OP_EQ, cases[i].input_len - strlen(tmp));
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:68:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(entry->len, OP_EQ, strlen(desc_holder->desc_str));
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:104:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(entry->len, OP_EQ, strlen(desc_holder->desc_str));
data/tor-0.4.5.2-alpha/src/test/test_rendcache.c:138:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(TO_REND_DATA_V2(mock_rend_query)->onion_address, "abc",
data/tor-0.4.5.2-alpha/src/test/test_replay.c:97:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:103:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer_2), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:109:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:130:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:135:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:142:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer_2), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:147:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer_2), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:168:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:173:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:178:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:200:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:205:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), &elapsed);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:227:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:232:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:237:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:259:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:264:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), NULL);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:302:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), &elapsed);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:309:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), &elapsed);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:320:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), &elapsed);
data/tor-0.4.5.2-alpha/src/test/test_replay.c:350:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
replaycache_add_and_test(r, test_buffer, strlen(test_buffer));
data/tor-0.4.5.2-alpha/src/test/test_replay.c:355:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
replaycache_add_and_test(r, test_buffer, strlen(test_buffer));
data/tor-0.4.5.2-alpha/src/test/test_replay.c:361:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(test_buffer), &elapsed);
data/tor-0.4.5.2-alpha/src/test/test_routerlist.c:267:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(AUTHORITY_CERT_1),
data/tor-0.4.5.2-alpha/src/test/test_routerlist.c:279:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(consensus_text_md),
data/tor-0.4.5.2-alpha/src/test/test_routerlist.c:480:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(AUTHORITY_CERT_1),
data/tor-0.4.5.2-alpha/src/test/test_routerlist.c:525:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
args.body_len = strlen(consensus_text_md);
data/tor-0.4.5.2-alpha/src/test/test_routerlist.c:655:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(AUTHORITY_CERT_1),
data/tor-0.4.5.2-alpha/src/test/test_routerlist.c:670:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retval = networkstatus_set_current_consensus(consensus, strlen(consensus),
data/tor-0.4.5.2-alpha/src/test/test_routerset.c:1391:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ei.nickname, nickname, sizeof(ei.nickname) - 1);
data/tor-0.4.5.2-alpha/src/test/test_routerset.c:1496:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rs.nickname, nickname, sizeof(rs.nickname) - 1);
data/tor-0.4.5.2-alpha/src/test/test_routerset.c:1550:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rs.nickname, nickname, sizeof(rs.nickname) - 1);
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:70:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(AUTHORITY_CERT_1),
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:432:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(AUTHORITY_CERT_1),
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:549:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(SR_REVEAL_BASE64_LEN, OP_EQ, strlen(encoded_reveal));
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:551:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(encoded_reveal), SR_DIGEST_ALG);
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:553:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(SR_COMMIT_BASE64_LEN, OP_EQ, strlen(encoded_commit));
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:582:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(encoded_reveal, OP_EQ, encoded, strlen(encoded_reveal));
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:593:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(encoded_commit, OP_EQ, encoded, strlen(encoded_commit));
data/tor-0.4.5.2-alpha/src/test/test_shared_random.c:845:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(AUTHORITY_CERT_1),
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:68:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(strlen(hello_str), OP_EQ, storage_dir_get_usage(d));
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:77:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(junklen + strlen(hello_str), OP_EQ, storage_dir_get_usage(d));
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:85:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(junklen + strlen(hello_str), OP_EQ, storage_dir_get_usage(d));
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:97:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(mapping->size, OP_EQ, strlen(hello_str));
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:98:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(mapping->data, OP_EQ, hello_str, strlen(hello_str));
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:138:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(strlen(str1), OP_EQ, storage_dir_get_usage(d));
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:148:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(strlen(str1), OP_EQ, storage_dir_get_usage(d));
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:190:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(strlen(str) * 3, OP_EQ, storage_dir_get_usage(d));
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:243:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(usage_orig - strlen(str), OP_EQ, storage_dir_get_usage(d));
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:247:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_u64_op(usage_orig - strlen(str)*3 + 6, OP_EQ, storage_dir_get_usage(d));
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:290:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(saved+strlen(expected)+1, OP_EQ, inp, 8192);
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:320:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t bodylen = 8192 - strlen((char*)inp) - 1;
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:321:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
crypto_rand((char *)inp+strlen((char*)inp)+1, bodylen);
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:333:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(datap, OP_EQ, inp+strlen((char*)inp)+1, bodylen);
data/tor-0.4.5.2-alpha/src/test/test_storagedir.c:350:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(as_read, OP_EQ, inp+strlen((char*)inp)+1, bodylen);
data/tor-0.4.5.2-alpha/src/test/test_tortls.c:122:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(str);
data/tor-0.4.5.2-alpha/src/test/test_tortls_openssl.c:2223:23: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
INTRUSIVE_TEST_CASE(read, 0),
data/tor-0.4.5.2-alpha/src/test/test_util.c:232:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = write_bytes_to_file(fname, file_content, strlen(file_content), 1);
data/tor-0.4.5.2-alpha/src/test/test_util.c:240:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(read_content), OP_EQ, strlen(expected_file_content));
data/tor-0.4.5.2-alpha/src/test/test_util.c:240:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(read_content), OP_EQ, strlen(expected_file_content));
data/tor-0.4.5.2-alpha/src/test/test_util.c:249:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(read_content), OP_EQ, strlen(file_content));
data/tor-0.4.5.2-alpha/src/test/test_util.c:249:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(read_content), OP_EQ, strlen(file_content));
data/tor-0.4.5.2-alpha/src/test/test_util.c:1362:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(timestr),OP_EQ, ISO_TIME_LEN);
data/tor-0.4.5.2-alpha/src/test/test_util.c:1365:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(timestr),OP_EQ, ISO_TIME_USEC_LEN);
data/tor-0.4.5.2-alpha/src/test/test_util.c:2554:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_assert(detect_compression_method(buf1, strlen(buf1)) == UNKNOWN_METHOD);
data/tor-0.4.5.2-alpha/src/test/test_util.c:2556:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_assert(!tor_compress(&buf2, &len1, buf1, strlen(buf1)+1, method));
data/tor-0.4.5.2-alpha/src/test/test_util.c:2561:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(len1, OP_EQ, strlen(buf1)+1);
data/tor-0.4.5.2-alpha/src/test/test_util.c:2564:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(len1, OP_LT, strlen(buf1));
data/tor-0.4.5.2-alpha/src/test/test_util.c:2570:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(buf1) + 1, OP_EQ, len2);
data/tor-0.4.5.2-alpha/src/test/test_util.c:2579:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op((strlen(buf1)+1)*2, OP_EQ, len2);
data/tor-0.4.5.2-alpha/src/test/test_util.c:2583:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(strlen(buf1)+1)*2);
data/tor-0.4.5.2-alpha/src/test/test_util.c:2798:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sz = strlen(input);
data/tor-0.4.5.2-alpha/src/test/test_util.c:2980:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(mapping->size,OP_EQ, strlen("Short file."));
data/tor-0.4.5.2-alpha/src/test/test_util.c:3046:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sz = read_escaped_data(inp, strlen(inp), &out);
data/tor-0.4.5.2-alpha/src/test/test_util.c:3049:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(sz,OP_EQ, strlen(out));
data/tor-0.4.5.2-alpha/src/test/test_util.c:3980:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(s);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4258:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("loveandrespect")));
data/tor-0.4.5.2-alpha/src/test/test_util.c:4341:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(cp),OP_EQ, r);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4348:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(cp),OP_EQ, r);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4355:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(cp),OP_EQ, r);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4361:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(cp2),OP_EQ, r);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4379:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(cp),OP_EQ, r);
data/tor-0.4.5.2-alpha/src/test/test_util.c:4935:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(message), OP_EQ,
data/tor-0.4.5.2-alpha/src/test/test_util.c:4936:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write_all_to_fd(fd, message, strlen(message)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:4937:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op((int)tor_fd_getpos(fd), OP_EQ, strlen(message));
data/tor-0.4.5.2-alpha/src/test/test_util.c:4939:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op((int)st.st_size, OP_EQ, strlen(message));
data/tor-0.4.5.2-alpha/src/test/test_util.c:4948:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(message2), OP_EQ,
data/tor-0.4.5.2-alpha/src/test/test_util.c:4949:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
write_all_to_fd(fd, message2, strlen(message2)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:4950:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op((int)tor_fd_getpos(fd), OP_EQ, strlen(message2));
data/tor-0.4.5.2-alpha/src/test/test_util.c:4952:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op((int)st.st_size, OP_EQ, strlen(message2));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5026:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(len,OP_EQ, strlen(buf));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5070:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(len,OP_EQ, strlen(buf));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5074:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)(strlen(test_data[i].str) + 1));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5075:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(len,OP_EQ, strlen(buf));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5119:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(examples[i].a);
data/tor-0.4.5.2-alpha/src/test/test_util.c:5121:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(len,OP_EQ, strlen(examples[i].b));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5287:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + 1,OP_EQ, eat_whitespace_eos(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5289:66: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + 1,OP_EQ, eat_whitespace_eos_no_nl(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5293:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + 1,OP_EQ, eat_whitespace_eos(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5295:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str,OP_EQ, eat_whitespace_eos_no_nl(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5306:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + strlen(str),OP_EQ, eat_whitespace(str));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5307:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + strlen(str),OP_EQ,
data/tor-0.4.5.2-alpha/src/test/test_util.c:5308:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eat_whitespace_eos(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5309:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + strlen(str) - 1,OP_EQ,
data/tor-0.4.5.2-alpha/src/test/test_util.c:5311:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + strlen(str) - 1,OP_EQ,
data/tor-0.4.5.2-alpha/src/test/test_util.c:5312:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eat_whitespace_eos_no_nl(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5315:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + strlen(str),OP_EQ, eat_whitespace(str));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5316:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + strlen(str),OP_EQ,
data/tor-0.4.5.2-alpha/src/test/test_util.c:5317:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eat_whitespace_eos(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5318:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + strlen(str),OP_EQ, eat_whitespace_no_nl(str));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5319:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + strlen(str),OP_EQ,
data/tor-0.4.5.2-alpha/src/test/test_util.c:5320:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eat_whitespace_eos_no_nl(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5328:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eat_whitespace_eos(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5331:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eat_whitespace_eos_no_nl(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5336:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_str_op("No Comment",OP_EQ, eat_whitespace_eos(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5338:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str,OP_EQ, eat_whitespace_eos_no_nl(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5343:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_str_op("No Comment",OP_EQ, eat_whitespace_eos(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5345:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + 1,OP_EQ, eat_whitespace_eos_no_nl(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5349:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + strlen(str),OP_EQ, eat_whitespace(str));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5350:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + strlen(str),OP_EQ,
data/tor-0.4.5.2-alpha/src/test/test_util.c:5351:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eat_whitespace_eos(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5353:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str,OP_EQ, eat_whitespace_eos_no_nl(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5357:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + strlen(str),OP_EQ, eat_whitespace(str));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5358:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + strlen(str),OP_EQ,
data/tor-0.4.5.2-alpha/src/test/test_util.c:5359:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eat_whitespace_eos(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:5361:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_ptr_op(str + 2,OP_EQ, eat_whitespace_eos_no_nl(str, str + strlen(str)));
data/tor-0.4.5.2-alpha/src/test/test_util.c:6801:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
used1 += strlen("uordblks=");
data/tor-0.4.5.2-alpha/src/test/test_util.c:6802:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
used2 += strlen("uordblks=");
data/tor-0.4.5.2-alpha/src/test/test_util.c:6910:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ssize_t r = read(pipefd[0], buf, 1);
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:158:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
res = base64_decode(dst, 1000, s, strlen(s));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:163:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
res = base64_decode(dst, 9, s, strlen(s));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:171:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
res = base64_decode(dst, 40, src40, strlen(src40));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:175:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
res = base64_decode(dst, 40, pad40, strlen(pad40));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:210:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
res = base64_decode(dst, 9, s, strlen(s));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:215:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
res = base64_decode(dst, 100, s, strlen(s));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:220:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
res = base64_decode(dst, 100, s, strlen(s));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:296:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t srclen = strlen(src);
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:307:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(expected, OP_EQ, dst, strlen(expected));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:311:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(expected, OP_EQ, dst, strlen(expected));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:319:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t srclen = strlen(src);
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:323:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(expected, OP_EQ, dst, strlen(expected));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:345:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = base32_decode(dst, strlen(expected), src, strlen(src));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:345:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = base32_decode(dst, strlen(expected), src, strlen(src));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:356:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = base32_decode(dst, strlen(expected), src, strlen(src));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:356:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = base32_decode(dst, strlen(expected), src, strlen(src));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:358:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_mem_op(expected, OP_EQ, dst, strlen(expected));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:388:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(outbuf) + 1, OP_EQ, base32_encoded_size(i));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:391:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(outbuf), OP_EQ, base64_encode_size(i, 0));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:392:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(i, OP_LE, base64_decode_maxsize(strlen(outbuf)));
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:396:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(strlen(outbuf), OP_EQ,
data/tor-0.4.5.2-alpha/src/test/test_util_format.c:398:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tt_int_op(i, OP_LE, base64_decode_maxsize(strlen(outbuf)));
data/tor-0.4.5.2-alpha/src/test/test_x509.c:67:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t der64len = strlen(der64);
data/tor-0.4.5.2-alpha/src/test/testing_rsakeys.c:534:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int r = crypto_pk_read_private_key_from_string(pk, s, strlen(s));
data/tor-0.4.5.2-alpha/src/test/testing_rsakeys.c:540:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int r = crypto_pk_read_private_key_from_string(pk, s, strlen(s));
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:499:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
signed_len = strlen(buf);
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:507:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
signed_len = strlen(buf);
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:517:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
signed_len = strlen(buf);
data/tor-0.4.5.2-alpha/src/tools/tor-gencert.c:555:3: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(0077);
data/tor-0.4.5.2-alpha/src/tools/tor-resolve.c:139:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
addrlen = reverse ? (ipv6 ? 16 : 4) : 1 + strlen(hostname);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:150:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return domainname_setstr0_name(inp, val, strlen(val));
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:709:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result += strlen(obj->username) + 1;
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:969:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result += strlen(obj->socks4a_addr_hostname) + 1;
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:1032:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(obj->username);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:1302:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(obj->socks4a_addr_hostname);
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:2070:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return socks5_client_userpass_auth_setstr0_username(inp, val, strlen(val));
data/tor-0.4.5.2-alpha/src/trunnel/socks5.c:2162:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return socks5_client_userpass_auth_setstr0_passwd(inp, val, strlen(val));
ANALYSIS SUMMARY:
Hits = 3437
Lines analyzed = 442821 in approximately 13.93 seconds (31794 lines/second)
Physical Source Lines of Code (SLOC) = 303535
Hits@level = [0] 287 [1] 1219 [2] 2144 [3] 25 [4] 19 [5] 30
Hits@level+ = [0+] 3724 [1+] 3437 [2+] 2218 [3+] 74 [4+] 49 [5+] 30
Hits/KSLOC@level+ = [0+] 12.2688 [1+] 11.3232 [2+] 7.30723 [3+] 0.243794 [4+] 0.161431 [5+] 0.0988354
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.