Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/zfs-linux-0.8.5/cmd/zstreamdump/zstreamdump.c
Examining data/zfs-linux-0.8.5/cmd/zinject/translate.c
Examining data/zfs-linux-0.8.5/cmd/zinject/zinject.c
Examining data/zfs-linux-0.8.5/cmd/zinject/zinject.h
Examining data/zfs-linux-0.8.5/cmd/zed/zed_log.c
Examining data/zfs-linux-0.8.5/cmd/zed/zed_file.c
Examining data/zfs-linux-0.8.5/cmd/zed/zed_file.h
Examining data/zfs-linux-0.8.5/cmd/zed/zed.c
Examining data/zfs-linux-0.8.5/cmd/zed/zed_log.h
Examining data/zfs-linux-0.8.5/cmd/zed/zed_exec.c
Examining data/zfs-linux-0.8.5/cmd/zed/zed_disk_event.c
Examining data/zfs-linux-0.8.5/cmd/zed/zed_event.h
Examining data/zfs-linux-0.8.5/cmd/zed/zed_conf.h
Examining data/zfs-linux-0.8.5/cmd/zed/zed_disk_event.h
Examining data/zfs-linux-0.8.5/cmd/zed/zed.h
Examining data/zfs-linux-0.8.5/cmd/zed/agents/fmd_api.h
Examining data/zfs-linux-0.8.5/cmd/zed/agents/zfs_agents.c
Examining data/zfs-linux-0.8.5/cmd/zed/agents/fmd_serd.h
Examining data/zfs-linux-0.8.5/cmd/zed/agents/zfs_retire.c
Examining data/zfs-linux-0.8.5/cmd/zed/agents/fmd_serd.c
Examining data/zfs-linux-0.8.5/cmd/zed/agents/zfs_mod.c
Examining data/zfs-linux-0.8.5/cmd/zed/agents/zfs_agents.h
Examining data/zfs-linux-0.8.5/cmd/zed/agents/zfs_diagnosis.c
Examining data/zfs-linux-0.8.5/cmd/zed/agents/fmd_api.c
Examining data/zfs-linux-0.8.5/cmd/zed/zed_strings.c
Examining data/zfs-linux-0.8.5/cmd/zed/zed_event.c
Examining data/zfs-linux-0.8.5/cmd/zed/zed_exec.h
Examining data/zfs-linux-0.8.5/cmd/zed/zed_conf.c
Examining data/zfs-linux-0.8.5/cmd/zed/zed_strings.h
Examining data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c
Examining data/zfs-linux-0.8.5/cmd/zpool/zpool_util.h
Examining data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c
Examining data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c
Examining data/zfs-linux-0.8.5/cmd/zpool/zpool_util.c
Examining data/zfs-linux-0.8.5/cmd/zpool/zpool_iter.c
Examining data/zfs-linux-0.8.5/cmd/zhack/zhack.c
Examining data/zfs-linux-0.8.5/cmd/zdb/zdb.c
Examining data/zfs-linux-0.8.5/cmd/zdb/zdb.h
Examining data/zfs-linux-0.8.5/cmd/zdb/zdb_il.c
Examining data/zfs-linux-0.8.5/cmd/raidz_test/raidz_bench.c
Examining data/zfs-linux-0.8.5/cmd/raidz_test/raidz_test.h
Examining data/zfs-linux-0.8.5/cmd/raidz_test/raidz_test.c
Examining data/zfs-linux-0.8.5/cmd/ztest/ztest.c
Examining data/zfs-linux-0.8.5/cmd/zvol_id/zvol_id_main.c
Examining data/zfs-linux-0.8.5/cmd/zfs/zfs_project.c
Examining data/zfs-linux-0.8.5/cmd/zfs/zfs_iter.c
Examining data/zfs-linux-0.8.5/cmd/zfs/zfs_iter.h
Examining data/zfs-linux-0.8.5/cmd/zfs/zfs_projectutil.h
Examining data/zfs-linux-0.8.5/cmd/zfs/zfs_util.h
Examining data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c
Examining data/zfs-linux-0.8.5/include/zfs_comutil.h
Examining data/zfs-linux-0.8.5/include/libuutil.h
Examining data/zfs-linux-0.8.5/include/linux/xattr_compat.h
Examining data/zfs-linux-0.8.5/include/linux/dcache_compat.h
Examining data/zfs-linux-0.8.5/include/linux/simd.h
Examining data/zfs-linux-0.8.5/include/linux/simd_x86.h
Examining data/zfs-linux-0.8.5/include/linux/mod_compat.h
Examining data/zfs-linux-0.8.5/include/linux/compiler_compat.h
Examining data/zfs-linux-0.8.5/include/linux/page_compat.h
Examining data/zfs-linux-0.8.5/include/linux/kmap_compat.h
Examining data/zfs-linux-0.8.5/include/linux/utsname_compat.h
Examining data/zfs-linux-0.8.5/include/linux/simd_aarch64.h
Examining data/zfs-linux-0.8.5/include/linux/blkdev_compat.h
Examining data/zfs-linux-0.8.5/include/linux/vfs_compat.h
Examining data/zfs-linux-0.8.5/include/libuutil_common.h
Examining data/zfs-linux-0.8.5/include/libuutil_impl.h
Examining data/zfs-linux-0.8.5/include/libzfs.h
Examining data/zfs-linux-0.8.5/include/zfs_deleg.h
Examining data/zfs-linux-0.8.5/include/zfs_gitrev.h
Examining data/zfs-linux-0.8.5/include/libzfs_impl.h
Examining data/zfs-linux-0.8.5/include/libnvpair.h
Examining data/zfs-linux-0.8.5/include/thread_pool.h
Examining data/zfs-linux-0.8.5/include/zfeature_common.h
Examining data/zfs-linux-0.8.5/include/libzutil.h
Examining data/zfs-linux-0.8.5/include/zfs_prop.h
Examining data/zfs-linux-0.8.5/include/zfs_fletcher.h
Examining data/zfs-linux-0.8.5/include/spl/rpc/xdr.h
Examining data/zfs-linux-0.8.5/include/spl/sys/shrinker.h
Examining data/zfs-linux-0.8.5/include/spl/sys/callo.h
Examining data/zfs-linux-0.8.5/include/spl/sys/stat.h
Examining data/zfs-linux-0.8.5/include/spl/sys/wait.h
Examining data/zfs-linux-0.8.5/include/spl/sys/user.h
Examining data/zfs-linux-0.8.5/include/spl/sys/condvar.h
Examining data/zfs-linux-0.8.5/include/spl/sys/file.h
Examining data/zfs-linux-0.8.5/include/spl/sys/atomic.h
Examining data/zfs-linux-0.8.5/include/spl/sys/sysmacros.h
Examining data/zfs-linux-0.8.5/include/spl/sys/ctype.h
Examining data/zfs-linux-0.8.5/include/spl/sys/kmem.h
Examining data/zfs-linux-0.8.5/include/spl/sys/tsd.h
Examining data/zfs-linux-0.8.5/include/spl/sys/acl.h
Examining data/zfs-linux-0.8.5/include/spl/sys/list.h
Examining data/zfs-linux-0.8.5/include/spl/sys/zmod.h
Examining data/zfs-linux-0.8.5/include/spl/sys/inttypes.h
Examining data/zfs-linux-0.8.5/include/spl/sys/kobj.h
Examining data/zfs-linux-0.8.5/include/spl/sys/fcntl.h
Examining data/zfs-linux-0.8.5/include/spl/sys/vmsystm.h
Examining data/zfs-linux-0.8.5/include/spl/sys/uio.h
Examining data/zfs-linux-0.8.5/include/spl/sys/types.h
Examining data/zfs-linux-0.8.5/include/spl/sys/callb.h
Examining data/zfs-linux-0.8.5/include/spl/sys/console.h
Examining data/zfs-linux-0.8.5/include/spl/sys/cred.h
Examining data/zfs-linux-0.8.5/include/spl/sys/cmn_err.h
Examining data/zfs-linux-0.8.5/include/spl/sys/dkio.h
Examining data/zfs-linux-0.8.5/include/spl/sys/kstat.h
Examining data/zfs-linux-0.8.5/include/spl/sys/strings.h
Examining data/zfs-linux-0.8.5/include/spl/sys/proc.h
Examining data/zfs-linux-0.8.5/include/spl/sys/timer.h
Examining data/zfs-linux-0.8.5/include/spl/sys/param.h
Examining data/zfs-linux-0.8.5/include/spl/sys/vfs.h
Examining data/zfs-linux-0.8.5/include/spl/sys/kmem_cache.h
Examining data/zfs-linux-0.8.5/include/spl/sys/sunddi.h
Examining data/zfs-linux-0.8.5/include/spl/sys/vmem.h
Examining data/zfs-linux-0.8.5/include/spl/sys/debug.h
Examining data/zfs-linux-0.8.5/include/spl/sys/thread.h
Examining data/zfs-linux-0.8.5/include/spl/sys/disp.h
Examining data/zfs-linux-0.8.5/include/spl/sys/time.h
Examining data/zfs-linux-0.8.5/include/spl/sys/processor.h
Examining data/zfs-linux-0.8.5/include/spl/sys/mode.h
Examining data/zfs-linux-0.8.5/include/spl/sys/mutex.h
Examining data/zfs-linux-0.8.5/include/spl/sys/sid.h
Examining data/zfs-linux-0.8.5/include/spl/sys/byteorder.h
Examining data/zfs-linux-0.8.5/include/spl/sys/rwlock.h
Examining data/zfs-linux-0.8.5/include/spl/sys/zone.h
Examining data/zfs-linux-0.8.5/include/spl/sys/procfs_list.h
Examining data/zfs-linux-0.8.5/include/spl/sys/signal.h
Examining data/zfs-linux-0.8.5/include/spl/sys/random.h
Examining data/zfs-linux-0.8.5/include/spl/sys/systeminfo.h
Examining data/zfs-linux-0.8.5/include/spl/sys/types32.h
Examining data/zfs-linux-0.8.5/include/spl/sys/vnode.h
Examining data/zfs-linux-0.8.5/include/spl/sys/errno.h
Examining data/zfs-linux-0.8.5/include/spl/sys/taskq.h
Examining data/zfs-linux-0.8.5/include/spl/sys/isa_defs.h
Examining data/zfs-linux-0.8.5/include/libzfs_core.h
Examining data/zfs-linux-0.8.5/include/sys/spa_checkpoint.h
Examining data/zfs-linux-0.8.5/include/sys/zap_impl.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_dir.h
Examining data/zfs-linux-0.8.5/include/sys/fm/fs/zfs.h
Examining data/zfs-linux-0.8.5/include/sys/fm/protocol.h
Examining data/zfs-linux-0.8.5/include/sys/fm/util.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_context.h
Examining data/zfs-linux-0.8.5/include/sys/pathname.h
Examining data/zfs-linux-0.8.5/include/sys/multilist.h
Examining data/zfs-linux-0.8.5/include/sys/crypto/api.h
Examining data/zfs-linux-0.8.5/include/sys/crypto/common.h
Examining data/zfs-linux-0.8.5/include/sys/crypto/icp.h
Examining data/zfs-linux-0.8.5/include/sys/spa_boot.h
Examining data/zfs-linux-0.8.5/include/sys/edonr.h
Examining data/zfs-linux-0.8.5/include/sys/zvol.h
Examining data/zfs-linux-0.8.5/include/sys/trace_zio.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_sa.h
Examining data/zfs-linux-0.8.5/include/sys/uberblock.h
Examining data/zfs-linux-0.8.5/include/sys/dsl_scan.h
Examining data/zfs-linux-0.8.5/include/sys/dmu_zfetch.h
Examining data/zfs-linux-0.8.5/include/sys/dsl_pool.h
Examining data/zfs-linux-0.8.5/include/sys/unique.h
Examining data/zfs-linux-0.8.5/include/sys/space_reftree.h
Examining data/zfs-linux-0.8.5/include/sys/refcount.h
Examining data/zfs-linux-0.8.5/include/sys/vdev.h
Examining data/zfs-linux-0.8.5/include/sys/dmu_tx.h
Examining data/zfs-linux-0.8.5/include/sys/dsl_dir.h
Examining data/zfs-linux-0.8.5/include/sys/bqueue.h
Examining data/zfs-linux-0.8.5/include/sys/zfeature.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_fuid.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_ratelimit.h
Examining data/zfs-linux-0.8.5/include/sys/ddt.h
Examining data/zfs-linux-0.8.5/include/sys/cityhash.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_stat.h
Examining data/zfs-linux-0.8.5/include/sys/range_tree.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_rlock.h
Examining data/zfs-linux-0.8.5/include/sys/dsl_dataset.h
Examining data/zfs-linux-0.8.5/include/sys/vdev_indirect_births.h
Examining data/zfs-linux-0.8.5/include/sys/arc_impl.h
Examining data/zfs-linux-0.8.5/include/sys/bpobj.h
Examining data/zfs-linux-0.8.5/include/sys/zio_crypt.h
Examining data/zfs-linux-0.8.5/include/sys/space_map.h
Examining data/zfs-linux-0.8.5/include/sys/vdev_impl.h
Examining data/zfs-linux-0.8.5/include/sys/skein.h
Examining data/zfs-linux-0.8.5/include/sys/fs/zfs.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_project.h
Examining data/zfs-linux-0.8.5/include/sys/dataset_kstats.h
Examining data/zfs-linux-0.8.5/include/sys/vdev_removal.h
Examining data/zfs-linux-0.8.5/include/sys/dsl_crypt.h
Examining data/zfs-linux-0.8.5/include/sys/zil_impl.h
Examining data/zfs-linux-0.8.5/include/sys/aggsum.h
Examining data/zfs-linux-0.8.5/include/sys/dmu_traverse.h
Examining data/zfs-linux-0.8.5/include/sys/u8_textprep.h
Examining data/zfs-linux-0.8.5/include/sys/sha2.h
Examining data/zfs-linux-0.8.5/include/sys/txg_impl.h
Examining data/zfs-linux-0.8.5/include/sys/dnode.h
Examining data/zfs-linux-0.8.5/include/sys/dmu_recv.h
Examining data/zfs-linux-0.8.5/include/sys/policy.h
Examining data/zfs-linux-0.8.5/include/sys/sysevent/dev.h
Examining data/zfs-linux-0.8.5/include/sys/sysevent/eventdefs.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_vfsops.h
Examining data/zfs-linux-0.8.5/include/sys/uio_impl.h
Examining data/zfs-linux-0.8.5/include/sys/zthr.h
Examining data/zfs-linux-0.8.5/include/sys/zil.h
Examining data/zfs-linux-0.8.5/include/sys/vdev_disk.h
Examining data/zfs-linux-0.8.5/include/sys/dmu.h
Examining data/zfs-linux-0.8.5/include/sys/dmu_send.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_sysfs.h
Examining data/zfs-linux-0.8.5/include/sys/vdev_indirect_mapping.h
Examining data/zfs-linux-0.8.5/include/sys/uuid.h
Examining data/zfs-linux-0.8.5/include/sys/zio_compress.h
Examining data/zfs-linux-0.8.5/include/sys/sdt.h
Examining data/zfs-linux-0.8.5/include/sys/spa_impl.h
Examining data/zfs-linux-0.8.5/include/sys/trace_dbuf.h
Examining data/zfs-linux-0.8.5/include/sys/zcp.h
Examining data/zfs-linux-0.8.5/include/sys/sa_impl.h
Examining data/zfs-linux-0.8.5/include/sys/arc.h
Examining data/zfs-linux-0.8.5/include/sys/vdev_raidz_impl.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_delay.h
Examining data/zfs-linux-0.8.5/include/sys/zap.h
Examining data/zfs-linux-0.8.5/include/sys/vdev_initialize.h
Examining data/zfs-linux-0.8.5/include/sys/zio_priority.h
Examining data/zfs-linux-0.8.5/include/sys/zap_leaf.h
Examining data/zfs-linux-0.8.5/include/sys/dsl_prop.h
Examining data/zfs-linux-0.8.5/include/sys/mntent.h
Examining data/zfs-linux-0.8.5/include/sys/u8_textprep_data.h
Examining data/zfs-linux-0.8.5/include/sys/sysevent.h
Examining data/zfs-linux-0.8.5/include/sys/dsl_synctask.h
Examining data/zfs-linux-0.8.5/include/sys/frame.h
Examining data/zfs-linux-0.8.5/include/sys/avl_impl.h
Examining data/zfs-linux-0.8.5/include/sys/trace_dnode.h
Examining data/zfs-linux-0.8.5/include/sys/dsl_destroy.h
Examining data/zfs-linux-0.8.5/include/sys/dmu_objset.h
Examining data/zfs-linux-0.8.5/include/sys/zio_impl.h
Examining data/zfs-linux-0.8.5/include/sys/uberblock_impl.h
Examining data/zfs-linux-0.8.5/include/sys/avl.h
Examining data/zfs-linux-0.8.5/include/sys/spa_checksum.h
Examining data/zfs-linux-0.8.5/include/sys/dbuf.h
Examining data/zfs-linux-0.8.5/include/sys/dsl_deadlist.h
Examining data/zfs-linux-0.8.5/include/sys/trace_dmu.h
Examining data/zfs-linux-0.8.5/include/sys/dmu_impl.h
Examining data/zfs-linux-0.8.5/include/sys/metaslab.h
Examining data/zfs-linux-0.8.5/include/sys/zpl.h
Examining data/zfs-linux-0.8.5/include/sys/bptree.h
Examining data/zfs-linux-0.8.5/include/sys/trace_zil.h
Examining data/zfs-linux-0.8.5/include/sys/zrlock.h
Examining data/zfs-linux-0.8.5/include/sys/dsl_deleg.h
Examining data/zfs-linux-0.8.5/include/sys/zio.h
Examining data/zfs-linux-0.8.5/include/sys/trace_zrlock.h
Examining data/zfs-linux-0.8.5/include/sys/nvpair_impl.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_ioctl.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_ctldir.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_znode.h
Examining data/zfs-linux-0.8.5/include/sys/trace_txg.h
Examining data/zfs-linux-0.8.5/include/sys/zcp_iter.h
Examining data/zfs-linux-0.8.5/include/sys/vdev_trim.h
Examining data/zfs-linux-0.8.5/include/sys/zcp_prop.h
Examining data/zfs-linux-0.8.5/include/sys/nvpair.h
Examining data/zfs-linux-0.8.5/include/sys/hkdf.h
Examining data/zfs-linux-0.8.5/include/sys/note.h
Examining data/zfs-linux-0.8.5/include/sys/rrwlock.h
Examining data/zfs-linux-0.8.5/include/sys/spa.h
Examining data/zfs-linux-0.8.5/include/sys/sa.h
Examining data/zfs-linux-0.8.5/include/sys/trace_multilist.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_acl.h
Examining data/zfs-linux-0.8.5/include/sys/efi_partition.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_vnops.h
Examining data/zfs-linux-0.8.5/include/sys/metaslab_impl.h
Examining data/zfs-linux-0.8.5/include/sys/vdev_raidz.h
Examining data/zfs-linux-0.8.5/include/sys/blkptr.h
Examining data/zfs-linux-0.8.5/include/sys/zio_checksum.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_debug.h
Examining data/zfs-linux-0.8.5/include/sys/trace.h
Examining data/zfs-linux-0.8.5/include/sys/trace_common.h
Examining data/zfs-linux-0.8.5/include/sys/vdev_file.h
Examining data/zfs-linux-0.8.5/include/sys/dsl_userhold.h
Examining data/zfs-linux-0.8.5/include/sys/lua/lualib.h
Examining data/zfs-linux-0.8.5/include/sys/lua/luaconf.h
Examining data/zfs-linux-0.8.5/include/sys/lua/lua.h
Examining data/zfs-linux-0.8.5/include/sys/lua/lauxlib.h
Examining data/zfs-linux-0.8.5/include/sys/trace_arc.h
Examining data/zfs-linux-0.8.5/include/sys/trace_acl.h
Examining data/zfs-linux-0.8.5/include/sys/trace_dbgmsg.h
Examining data/zfs-linux-0.8.5/include/sys/txg.h
Examining data/zfs-linux-0.8.5/include/sys/trace_vdev.h
Examining data/zfs-linux-0.8.5/include/sys/dsl_bookmark.h
Examining data/zfs-linux-0.8.5/include/sys/bplist.h
Examining data/zfs-linux-0.8.5/include/sys/xvattr.h
Examining data/zfs-linux-0.8.5/include/sys/zfs_onexit.h
Examining data/zfs-linux-0.8.5/include/sys/mmp.h
Examining data/zfs-linux-0.8.5/include/sys/zcp_global.h
Examining data/zfs-linux-0.8.5/include/sys/abd.h
Examining data/zfs-linux-0.8.5/include/zfs_namecheck.h
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mkbusy/mkbusy.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_trunc/file_trunc.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_common.h
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/devname2devid/devname2devid.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mmapwrite/mmapwrite.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/rename_dir/rename_dir.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mmap_exec/mmap_exec.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/user_ns_exec/user_ns_exec.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/libzfs_input_check/libzfs_input_check.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mkfile/mkfile.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/dir_rd_update/dir_rd_update.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_check/file_check.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/threadsappend/threadsappend.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mkfiles/mkfiles.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/largest_file/largest_file.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/nvlist_to_lua/nvlist_to_lua.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mmap_libaio/mmap_libaio.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/readmmap/readmmap.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/rm_lnkcnt_zero_file/rm_lnkcnt_zero_file.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/randfree_file/randfree_file.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/chg_usr_exec/chg_usr_exec.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/randwritecomp/randwritecomp.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mktree/mktree.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_write/file_write.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/truncate/truncate_test.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/hkdf/hkdf_test.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_stat_mode.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_003_pos.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_001_pos.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_test.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_002_pos.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/cli_root/zfs_diff/socket.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/checksum/sha2_test.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/checksum/skein_test.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/checksum/edonr_test.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/cp_files/cp_files.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/suid/suid_write_to_file.c
Examining data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/libzfs/many_fds.c
Examining data/zfs-linux-0.8.5/module/zcommon/zfs_fletcher_intel.c
Examining data/zfs-linux-0.8.5/module/zcommon/zpool_prop.c
Examining data/zfs-linux-0.8.5/module/zcommon/zfs_fletcher_superscalar4.c
Examining data/zfs-linux-0.8.5/module/zcommon/zfs_fletcher_sse.c
Examining data/zfs-linux-0.8.5/module/zcommon/zfs_fletcher.c
Examining data/zfs-linux-0.8.5/module/zcommon/zfs_namecheck.c
Examining data/zfs-linux-0.8.5/module/zcommon/zfs_comutil.c
Examining data/zfs-linux-0.8.5/module/zcommon/zfs_uio.c
Examining data/zfs-linux-0.8.5/module/zcommon/zfs_deleg.c
Examining data/zfs-linux-0.8.5/module/zcommon/zfs_prop.c
Examining data/zfs-linux-0.8.5/module/zcommon/zfs_fletcher_superscalar.c
Examining data/zfs-linux-0.8.5/module/zcommon/zfeature_common.c
Examining data/zfs-linux-0.8.5/module/zcommon/zfs_fletcher_avx512.c
Examining data/zfs-linux-0.8.5/module/zcommon/zfs_fletcher_aarch64_neon.c
Examining data/zfs-linux-0.8.5/module/zcommon/zprop_common.c
Examining data/zfs-linux-0.8.5/module/nvpair/nvpair_alloc_fixed.c
Examining data/zfs-linux-0.8.5/module/nvpair/fnvpair.c
Examining data/zfs-linux-0.8.5/module/nvpair/nvpair.c
Examining data/zfs-linux-0.8.5/module/nvpair/nvpair_alloc_spl.c
Examining data/zfs-linux-0.8.5/module/avl/avl.c
Examining data/zfs-linux-0.8.5/module/spl/spl-kstat.c
Examining data/zfs-linux-0.8.5/module/spl/spl-zlib.c
Examining data/zfs-linux-0.8.5/module/spl/spl-kmem-cache.c
Examining data/zfs-linux-0.8.5/module/spl/spl-condvar.c
Examining data/zfs-linux-0.8.5/module/spl/spl-vnode.c
Examining data/zfs-linux-0.8.5/module/spl/spl-thread.c
Examining data/zfs-linux-0.8.5/module/spl/spl-atomic.c
Examining data/zfs-linux-0.8.5/module/spl/spl-cred.c
Examining data/zfs-linux-0.8.5/module/spl/spl-proc.c
Examining data/zfs-linux-0.8.5/module/spl/spl-kobj.c
Examining data/zfs-linux-0.8.5/module/spl/spl-procfs-list.c
Examining data/zfs-linux-0.8.5/module/spl/spl-vmem.c
Examining data/zfs-linux-0.8.5/module/spl/spl-xdr.c
Examining data/zfs-linux-0.8.5/module/spl/spl-tsd.c
Examining data/zfs-linux-0.8.5/module/spl/spl-err.c
Examining data/zfs-linux-0.8.5/module/spl/spl-generic.c
Examining data/zfs-linux-0.8.5/module/spl/spl-kmem.c
Examining data/zfs-linux-0.8.5/module/spl/spl-taskq.c
Examining data/zfs-linux-0.8.5/module/unicode/uconv.c
Examining data/zfs-linux-0.8.5/module/unicode/u8_textprep.c
Examining data/zfs-linux-0.8.5/module/lua/ldebug.h
Examining data/zfs-linux-0.8.5/module/lua/lparser.c
Examining data/zfs-linux-0.8.5/module/lua/lmem.h
Examining data/zfs-linux-0.8.5/module/lua/ltm.c
Examining data/zfs-linux-0.8.5/module/lua/lbaselib.c
Examining data/zfs-linux-0.8.5/module/lua/lctype.h
Examining data/zfs-linux-0.8.5/module/lua/llex.c
Examining data/zfs-linux-0.8.5/module/lua/lparser.h
Examining data/zfs-linux-0.8.5/module/lua/lfunc.h
Examining data/zfs-linux-0.8.5/module/lua/ldo.h
Examining data/zfs-linux-0.8.5/module/lua/lcode.h
Examining data/zfs-linux-0.8.5/module/lua/lopcodes.h
Examining data/zfs-linux-0.8.5/module/lua/lstrlib.c
Examining data/zfs-linux-0.8.5/module/lua/ltm.h
Examining data/zfs-linux-0.8.5/module/lua/lstring.c
Examining data/zfs-linux-0.8.5/module/lua/lcompat.c
Examining data/zfs-linux-0.8.5/module/lua/lcorolib.c
Examining data/zfs-linux-0.8.5/module/lua/lstate.c
Examining data/zfs-linux-0.8.5/module/lua/lcode.c
Examining data/zfs-linux-0.8.5/module/lua/lobject.h
Examining data/zfs-linux-0.8.5/module/lua/ltable.h
Examining data/zfs-linux-0.8.5/module/lua/lstate.h
Examining data/zfs-linux-0.8.5/module/lua/ltablib.c
Examining data/zfs-linux-0.8.5/module/lua/lvm.c
Examining data/zfs-linux-0.8.5/module/lua/lzio.c
Examining data/zfs-linux-0.8.5/module/lua/lvm.h
Examining data/zfs-linux-0.8.5/module/lua/llimits.h
Examining data/zfs-linux-0.8.5/module/lua/ltable.c
Examining data/zfs-linux-0.8.5/module/lua/ldebug.c
Examining data/zfs-linux-0.8.5/module/lua/lobject.c
Examining data/zfs-linux-0.8.5/module/lua/lauxlib.c
Examining data/zfs-linux-0.8.5/module/lua/llex.h
Examining data/zfs-linux-0.8.5/module/lua/lgc.c
Examining data/zfs-linux-0.8.5/module/lua/lzio.h
Examining data/zfs-linux-0.8.5/module/lua/lctype.c
Examining data/zfs-linux-0.8.5/module/lua/lapi.c
Examining data/zfs-linux-0.8.5/module/lua/lgc.h
Examining data/zfs-linux-0.8.5/module/lua/lmem.c
Examining data/zfs-linux-0.8.5/module/lua/lopcodes.c
Examining data/zfs-linux-0.8.5/module/lua/lfunc.c
Examining data/zfs-linux-0.8.5/module/lua/lstring.h
Examining data/zfs-linux-0.8.5/module/lua/lapi.h
Examining data/zfs-linux-0.8.5/module/lua/ldo.c
Examining data/zfs-linux-0.8.5/module/icp/os/modhash.c
Examining data/zfs-linux-0.8.5/module/icp/os/modconf.c
Examining data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c
Examining data/zfs-linux-0.8.5/module/icp/core/kcf_prov_lib.c
Examining data/zfs-linux-0.8.5/module/icp/core/kcf_sched.c
Examining data/zfs-linux-0.8.5/module/icp/core/kcf_callprov.c
Examining data/zfs-linux-0.8.5/module/icp/core/kcf_prov_tabs.c
Examining data/zfs-linux-0.8.5/module/icp/include/modes/modes.h
Examining data/zfs-linux-0.8.5/module/icp/include/modes/gcm_impl.h
Examining data/zfs-linux-0.8.5/module/icp/include/aes/aes_impl.h
Examining data/zfs-linux-0.8.5/module/icp/include/sha1/sha1_impl.h
Examining data/zfs-linux-0.8.5/module/icp/include/sha1/sha1_consts.h
Examining data/zfs-linux-0.8.5/module/icp/include/sha1/sha1.h
Examining data/zfs-linux-0.8.5/module/icp/include/sha2/sha2_impl.h
Examining data/zfs-linux-0.8.5/module/icp/include/sha2/sha2_consts.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/modhash_impl.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/crypto/spi.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/crypto/elfsign.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/crypto/sched_impl.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/crypto/impl.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/crypto/ioctl.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/crypto/ioctladmin.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/crypto/ops_impl.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/ia32/stack.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/ia32/trap.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/ia32/asm_linkage.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/modhash.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/stack.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/modctl.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/bitmap.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/trap.h
Examining data/zfs-linux-0.8.5/module/icp/include/sys/asm_linkage.h
Examining data/zfs-linux-0.8.5/module/icp/asm-x86_64/aes/aesopt.h
Examining data/zfs-linux-0.8.5/module/icp/asm-x86_64/aes/aestab.h
Examining data/zfs-linux-0.8.5/module/icp/asm-x86_64/aes/aestab2.h
Examining data/zfs-linux-0.8.5/module/icp/asm-x86_64/aes/aeskey.c
Examining data/zfs-linux-0.8.5/module/icp/io/aes.c
Examining data/zfs-linux-0.8.5/module/icp/io/skein_mod.c
Examining data/zfs-linux-0.8.5/module/icp/io/sha2_mod.c
Examining data/zfs-linux-0.8.5/module/icp/io/sha1_mod.c
Examining data/zfs-linux-0.8.5/module/icp/io/edonr_mod.c
Examining data/zfs-linux-0.8.5/module/icp/api/kcf_mac.c
Examining data/zfs-linux-0.8.5/module/icp/api/kcf_digest.c
Examining data/zfs-linux-0.8.5/module/icp/api/kcf_miscapi.c
Examining data/zfs-linux-0.8.5/module/icp/api/kcf_cipher.c
Examining data/zfs-linux-0.8.5/module/icp/api/kcf_ctxops.c
Examining data/zfs-linux-0.8.5/module/icp/algs/modes/ecb.c
Examining data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c
Examining data/zfs-linux-0.8.5/module/icp/algs/modes/ctr.c
Examining data/zfs-linux-0.8.5/module/icp/algs/modes/gcm_generic.c
Examining data/zfs-linux-0.8.5/module/icp/algs/modes/modes.c
Examining data/zfs-linux-0.8.5/module/icp/algs/modes/gcm_pclmulqdq.c
Examining data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c
Examining data/zfs-linux-0.8.5/module/icp/algs/modes/cbc.c
Examining data/zfs-linux-0.8.5/module/icp/algs/aes/aes_modes.c
Examining data/zfs-linux-0.8.5/module/icp/algs/aes/aes_impl_aesni.c
Examining data/zfs-linux-0.8.5/module/icp/algs/aes/aes_impl_x86-64.c
Examining data/zfs-linux-0.8.5/module/icp/algs/aes/aes_impl.c
Examining data/zfs-linux-0.8.5/module/icp/algs/aes/aes_impl_generic.c
Examining data/zfs-linux-0.8.5/module/icp/algs/skein/skein_block.c
Examining data/zfs-linux-0.8.5/module/icp/algs/skein/skein_iv.c
Examining data/zfs-linux-0.8.5/module/icp/algs/skein/skein_impl.h
Examining data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c
Examining data/zfs-linux-0.8.5/module/icp/algs/skein/skein_port.h
Examining data/zfs-linux-0.8.5/module/icp/algs/sha1/sha1.c
Examining data/zfs-linux-0.8.5/module/icp/algs/edonr/edonr.c
Examining data/zfs-linux-0.8.5/module/icp/algs/edonr/edonr_byteorder.h
Examining data/zfs-linux-0.8.5/module/icp/algs/sha2/sha2.c
Examining data/zfs-linux-0.8.5/module/icp/illumos-crypto.c
Examining data/zfs-linux-0.8.5/module/icp/spi/kcf_spi.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_cache.c
Examining data/zfs-linux-0.8.5/module/zfs/zio.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_removal.c
Examining data/zfs-linux-0.8.5/module/zfs/zcp_iter.c
Examining data/zfs-linux-0.8.5/module/zfs/qat.c
Examining data/zfs-linux-0.8.5/module/zfs/zfeature.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_mirror.c
Examining data/zfs-linux-0.8.5/module/zfs/zap_micro.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_raidz_math_impl.h
Examining data/zfs-linux-0.8.5/module/zfs/zpl_inode.c
Examining data/zfs-linux-0.8.5/module/zfs/lz4.c
Examining data/zfs-linux-0.8.5/module/zfs/zap_leaf.c
Examining data/zfs-linux-0.8.5/module/zfs/spa.c
Examining data/zfs-linux-0.8.5/module/zfs/dmu_objset.c
Examining data/zfs-linux-0.8.5/module/zfs/qat.h
Examining data/zfs-linux-0.8.5/module/zfs/vdev_queue.c
Examining data/zfs-linux-0.8.5/module/zfs/zio_crypt.c
Examining data/zfs-linux-0.8.5/module/zfs/dsl_synctask.c
Examining data/zfs-linux-0.8.5/module/zfs/edonr_zfs.c
Examining data/zfs-linux-0.8.5/module/zfs/dsl_pool.c
Examining data/zfs-linux-0.8.5/module/zfs/ddt_zap.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_replay.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_sysfs.c
Examining data/zfs-linux-0.8.5/module/zfs/skein_zfs.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_dir.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_missing.c
Examining data/zfs-linux-0.8.5/module/zfs/unique.c
Examining data/zfs-linux-0.8.5/module/zfs/zle.c
Examining data/zfs-linux-0.8.5/module/zfs/dsl_prop.c
Examining data/zfs-linux-0.8.5/module/zfs/zthr.c
Examining data/zfs-linux-0.8.5/module/zfs/zvol.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_acl.c
Examining data/zfs-linux-0.8.5/module/zfs/dmu_send.c
Examining data/zfs-linux-0.8.5/module/zfs/spa_misc.c
Examining data/zfs-linux-0.8.5/module/zfs/qat_compress.c
Examining data/zfs-linux-0.8.5/module/zfs/dmu_zfetch.c
Examining data/zfs-linux-0.8.5/module/zfs/dnode.c
Examining data/zfs-linux-0.8.5/module/zfs/ddt.c
Examining data/zfs-linux-0.8.5/module/zfs/bqueue.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_sa.c
Examining data/zfs-linux-0.8.5/module/zfs/zpl_xattr.c
Examining data/zfs-linux-0.8.5/module/zfs/multilist.c
Examining data/zfs-linux-0.8.5/module/zfs/zcp_global.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_ctldir.c
Examining data/zfs-linux-0.8.5/module/zfs/sha256.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_label.c
Examining data/zfs-linux-0.8.5/module/zfs/txg.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev.c
Examining data/zfs-linux-0.8.5/module/zfs/zio_checksum.c
Examining data/zfs-linux-0.8.5/module/zfs/arc.c
Examining data/zfs-linux-0.8.5/module/zfs/dbuf_stats.c
Examining data/zfs-linux-0.8.5/module/zfs/zpl_ctldir.c
Examining data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_raidz_math_avx512bw.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_byteswap.c
Examining data/zfs-linux-0.8.5/module/zfs/dsl_deleg.c
Examining data/zfs-linux-0.8.5/module/zfs/zcp_synctask.c
Examining data/zfs-linux-0.8.5/module/zfs/space_reftree.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_raidz_math_aarch64_neonx2.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_onexit.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_file.c
Examining data/zfs-linux-0.8.5/module/zfs/zcp_get.c
Examining data/zfs-linux-0.8.5/module/zfs/spa_boot.c
Examining data/zfs-linux-0.8.5/module/zfs/range_tree.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c
Examining data/zfs-linux-0.8.5/module/zfs/dbuf.c
Examining data/zfs-linux-0.8.5/module/zfs/dmu_diff.c
Examining data/zfs-linux-0.8.5/module/zfs/dsl_bookmark.c
Examining data/zfs-linux-0.8.5/module/zfs/zil.c
Examining data/zfs-linux-0.8.5/module/zfs/zpl_file.c
Examining data/zfs-linux-0.8.5/module/zfs/metaslab.c
Examining data/zfs-linux-0.8.5/module/zfs/spa_checkpoint.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_znode.c
Examining data/zfs-linux-0.8.5/module/zfs/dmu_recv.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_ratelimit.c
Examining data/zfs-linux-0.8.5/module/zfs/dsl_dir.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_initialize.c
Examining data/zfs-linux-0.8.5/module/zfs/cityhash.c
Examining data/zfs-linux-0.8.5/module/zfs/lzjb.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_debug.c
Examining data/zfs-linux-0.8.5/module/zfs/bpobj.c
Examining data/zfs-linux-0.8.5/module/zfs/bplist.c
Examining data/zfs-linux-0.8.5/module/zfs/dsl_userhold.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_fuid.c
Examining data/zfs-linux-0.8.5/module/zfs/bptree.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_raidz.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_trim.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_rlock.c
Examining data/zfs-linux-0.8.5/module/zfs/dmu_traverse.c
Examining data/zfs-linux-0.8.5/module/zfs/aggsum.c
Examining data/zfs-linux-0.8.5/module/zfs/blkptr.c
Examining data/zfs-linux-0.8.5/module/zfs/trace.c
Examining data/zfs-linux-0.8.5/module/zfs/spa_history.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_indirect.c
Examining data/zfs-linux-0.8.5/module/zfs/spa_stats.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_vfsops.c
Examining data/zfs-linux-0.8.5/module/zfs/fm.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_raidz_math.c
Examining data/zfs-linux-0.8.5/module/zfs/dsl_destroy.c
Examining data/zfs-linux-0.8.5/module/zfs/zpl_super.c
Examining data/zfs-linux-0.8.5/module/zfs/pathname.c
Examining data/zfs-linux-0.8.5/module/zfs/policy.c
Examining data/zfs-linux-0.8.5/module/zfs/dsl_scan.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_indirect_births.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_vnops.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_log.c
Examining data/zfs-linux-0.8.5/module/zfs/zap.c
Examining data/zfs-linux-0.8.5/module/zfs/dmu.c
Examining data/zfs-linux-0.8.5/module/zfs/refcount.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_raidz_math_ssse3.c
Examining data/zfs-linux-0.8.5/module/zfs/zrlock.c
Examining data/zfs-linux-0.8.5/module/zfs/dataset_kstats.c
Examining data/zfs-linux-0.8.5/module/zfs/zfs_fm.c
Examining data/zfs-linux-0.8.5/module/zfs/mmp.c
Examining data/zfs-linux-0.8.5/module/zfs/zio_compress.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_raidz_math_aarch64_neon_common.h
Examining data/zfs-linux-0.8.5/module/zfs/space_map.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_disk.c
Examining data/zfs-linux-0.8.5/module/zfs/zpl_export.c
Examining data/zfs-linux-0.8.5/module/zfs/spa_config.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_raidz_math_aarch64_neon.c
Examining data/zfs-linux-0.8.5/module/zfs/sa.c
Examining data/zfs-linux-0.8.5/module/zfs/spa_errlog.c
Examining data/zfs-linux-0.8.5/module/zfs/dmu_tx.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_raidz_math_scalar.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_raidz_math_avx2.c
Examining data/zfs-linux-0.8.5/module/zfs/hkdf.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_indirect_mapping.c
Examining data/zfs-linux-0.8.5/module/zfs/dmu_object.c
Examining data/zfs-linux-0.8.5/module/zfs/qat_crypt.c
Examining data/zfs-linux-0.8.5/module/zfs/rrwlock.c
Examining data/zfs-linux-0.8.5/module/zfs/gzip.c
Examining data/zfs-linux-0.8.5/module/zfs/zio_inject.c
Examining data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_root.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_raidz_math_avx512f.c
Examining data/zfs-linux-0.8.5/module/zfs/dsl_deadlist.c
Examining data/zfs-linux-0.8.5/module/zfs/dnode_sync.c
Examining data/zfs-linux-0.8.5/module/zfs/vdev_raidz_math_sse2.c
Examining data/zfs-linux-0.8.5/module/zfs/zcp.c
Examining data/zfs-linux-0.8.5/module/zfs/abd.c
Examining data/zfs-linux-0.8.5/module/zfs/uberblock.c
Examining data/zfs-linux-0.8.5/lib/libzfs_core/libzfs_core.c
Examining data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c
Examining data/zfs-linux-0.8.5/lib/libnvpair/nvpair_alloc_system.c
Examining data/zfs-linux-0.8.5/lib/libnvpair/libnvpair_json.c
Examining data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c
Examining data/zfs-linux-0.8.5/lib/libuutil/uu_open.c
Examining data/zfs-linux-0.8.5/lib/libuutil/uu_avl.c
Examining data/zfs-linux-0.8.5/lib/libuutil/uu_string.c
Examining data/zfs-linux-0.8.5/lib/libuutil/uu_misc.c
Examining data/zfs-linux-0.8.5/lib/libuutil/uu_pname.c
Examining data/zfs-linux-0.8.5/lib/libuutil/uu_dprintf.c
Examining data/zfs-linux-0.8.5/lib/libuutil/uu_alloc.c
Examining data/zfs-linux-0.8.5/lib/libuutil/uu_ident.c
Examining data/zfs-linux-0.8.5/lib/libuutil/uu_list.c
Examining data/zfs-linux-0.8.5/lib/libspl/getmntany.c
Examining data/zfs-linux-0.8.5/lib/libspl/strlcpy.c
Examining data/zfs-linux-0.8.5/lib/libspl/include/libdevinfo.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/atomic.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/ia32/sys/asm_linkage.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/stdlib.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/util/sscanf.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/umem.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/tzfile.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/stdio.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/statcommon.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/string.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/unistd.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/rpc/xdr.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/thread.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/limits.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/devid.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/locale.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/ucred.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/libgen.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/zone.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/libshare.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/stdtypes.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/list_impl.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/va_list.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/stat.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/file.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/sysmacros.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/kmem.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/stack.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/acl.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/list.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/bitmap.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/inttypes.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/policy.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/int_limits.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/dklabel.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/uio.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/types.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/callb.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/poll.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/cred.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/int_types.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/tzfile.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/cmn_err.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/dkio.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/kstat.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/strings.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/param.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/priv.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/dktp/fdisk.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/sunddi.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/mkdev.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/debug.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/feature_tests.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/mnttab.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/time.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/processor.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/mount.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/mhd.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/varargs.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/byteorder.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/zone.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/signal.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/systeminfo.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/stropts.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/types32.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/vnode.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/errno.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/acl_impl.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/sys/isa_defs.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/stropts.h
Examining data/zfs-linux-0.8.5/lib/libspl/include/assert.h
Examining data/zfs-linux-0.8.5/lib/libspl/zone.c
Examining data/zfs-linux-0.8.5/lib/libspl/list.c
Examining data/zfs-linux-0.8.5/lib/libspl/page.c
Examining data/zfs-linux-0.8.5/lib/libspl/mkdirp.c
Examining data/zfs-linux-0.8.5/lib/libspl/gethostid.c
Examining data/zfs-linux-0.8.5/lib/libspl/asm-generic/atomic.c
Examining data/zfs-linux-0.8.5/lib/libspl/strlcat.c
Examining data/zfs-linux-0.8.5/lib/libspl/getexecname.c
Examining data/zfs-linux-0.8.5/lib/libspl/timestamp.c
Examining data/zfs-linux-0.8.5/lib/libzutil/zutil_nicenum.c
Examining data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c
Examining data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c
Examining data/zfs-linux-0.8.5/lib/libzutil/zutil_pool.c
Examining data/zfs-linux-0.8.5/lib/libzpool/util.c
Examining data/zfs-linux-0.8.5/lib/libzpool/kernel.c
Examining data/zfs-linux-0.8.5/lib/libzpool/taskq.c
Examining data/zfs-linux-0.8.5/lib/libtpool/thread_pool.c
Examining data/zfs-linux-0.8.5/lib/libtpool/thread_pool_impl.h
Examining data/zfs-linux-0.8.5/lib/libshare/smb.c
Examining data/zfs-linux-0.8.5/lib/libshare/nfs.c
Examining data/zfs-linux-0.8.5/lib/libshare/libshare_impl.h
Examining data/zfs-linux-0.8.5/lib/libshare/nfs.h
Examining data/zfs-linux-0.8.5/lib/libshare/smb.h
Examining data/zfs-linux-0.8.5/lib/libshare/libshare.c
Examining data/zfs-linux-0.8.5/lib/libzfs/libzfs_config.c
Examining data/zfs-linux-0.8.5/lib/libzfs/libzfs_status.c
Examining data/zfs-linux-0.8.5/lib/libzfs/libzfs_iter.c
Examining data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c
Examining data/zfs-linux-0.8.5/lib/libzfs/libzfs_import.c
Examining data/zfs-linux-0.8.5/lib/libzfs/libzfs_changelist.c
Examining data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c
Examining data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c
Examining data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c
Examining data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c
Examining data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c
Examining data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c
FINAL RESULTS:
data/zfs-linux-0.8.5/lib/libspl/getexecname.c:44:8: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
rc = readlink("/proc/self/exe",
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:449:10: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
size = readlink(tmp2, buf, sizeof (buf));
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mkfile/mkfile.c:259:7: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
if (chmod(argv[1], FILE_MODE) < 0)
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:227:6: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
if (chmod(pfile, ALL_MODE) == -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:245:6: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
if (chown(pfile, getuid(), getgid()) == -1) {
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:201:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(badopt, opt);
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:354:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(tmp, MNT_LINE_MAX, quote ? ",%s=\"%s\"" : ",%s=%s", name, val);
data/zfs-linux-0.8.5/cmd/raidz_test/raidz_test.c:56:7: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (system(gdb)) { }
data/zfs-linux-0.8.5/cmd/raidz_test/raidz_test.c:77:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stdout, DBLSEP "Running with options:\n"
data/zfs-linux-0.8.5/cmd/raidz_test/raidz_test.c:743:9: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
(void) sprintf(gdb, gdb_tmpl, getpid());
data/zfs-linux-0.8.5/cmd/raidz_test/raidz_test.h:91:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stdout, a); \
data/zfs-linux-0.8.5/cmd/raidz_test/raidz_test.h:97:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stdout, a); \
data/zfs-linux-0.8.5/cmd/raidz_test/raidz_test.h:100:26: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define ERR(a...) (void) fprintf(stderr, a)
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:250:9: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) vfprintf(stderr, fmt, ap);
data/zfs-linux-0.8.5/cmd/zed/agents/fmd_api.c:208:9: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) vsnprintf(message, sizeof (message), format, vargs);
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:275:6: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
n = vsnprintf(dstp, buflen, fmt, vargs);
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:531:7: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
n = snprintf(p, buflen, fmt, (u_longlong_t)u64p[i]);
data/zfs-linux-0.8.5/cmd/zed/zed_exec.c:117:3: [4] (shell) execle:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execle(path, prog, NULL, env);
data/zfs-linux-0.8.5/cmd/zed/zed_log.c:213:6: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
n = vsnprintf(buf, sizeof (buf), fmt, vargs);
data/zfs-linux-0.8.5/cmd/zfs/zfs_iter.c:188:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(col->sc_user_prop, name);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2220:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(cb->cb_lastfs, zfs_get_name(zhp));
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2888:12: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(first ? "%-*s" : " %-*s",
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2891:12: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(first ? "%*s" : " %*s",
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5214:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(fp, fmt, gettext("NAME"), gettext("TYPE"),
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5221:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(fp, fmt, perm_name, perm_type, perm_comment);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5239:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(fp, fmt, props[i], gettext("property"), "");
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6555:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(&mntopts[len], newopts);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:7444:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/cmd/zfs/zfs_project.c:55:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(zpi->zpi_name, name);
data/zfs-linux-0.8.5/cmd/zfs/zfs_project.c:241:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fullname, "%s/%s", name, ent->d_name);
data/zfs-linux-0.8.5/cmd/zhack/zhack.c:97:9: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) vfprintf(stderr, fmt, ap);
data/zfs-linux-0.8.5/cmd/zinject/translate.c:61:9: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) vprintf(fmt, ap);
data/zfs-linux-0.8.5/cmd/zinject/translate.c:148:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(dataset, mp.mnt_special);
data/zfs-linux-0.8.5/cmd/zinject/translate.c:153:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(relpath, rel);
data/zfs-linux-0.8.5/cmd/zinject/translate.c:290:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(poolname, object);
data/zfs-linux-0.8.5/cmd/zinject/translate.c:330:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(poolname, dataset);
data/zfs-linux-0.8.5/cmd/zpool/zpool_iter.c:583:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(fullpath, X_OK) == 0) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:882:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
(void) sprintf(strval, "%" PRId32, intval);
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:4957:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fullpath, "%s/%s", dirpath, ent->d_name);
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:5592:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(propval, sizeof (propval),
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:5742:12: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dashes, cb->cb_namewidth,
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:5757:10: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dashes, cb->cb_namewidth, "cache");
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:5770:10: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dashes, cb->cb_namewidth, "spare");
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:6042:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
(void) sprintf(strval, "%" PRId32, intval);
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:298:9: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) vfprintf(stderr, fmt, ap);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:599:9: [4] (format) vsprintf:
Potential format string problem (CWE-134). Make format string constant.
(void) vsprintf(buf + strlen(buf), message, args);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:914:12: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (0 != access(altdir, F_OK)) {
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:935:12: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (0 != access(zo->zo_alt_ztest, X_OK)) {
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:939:19: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
} else if (0 != access(zo->zo_alt_libpath, X_OK)) {
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:1015:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(path, MAXPATHLEN,
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:1021:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(path, MAXPATHLEN,
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:1318:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ddname, name);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:3203:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(path, MAXPATHLEN, ztest_aux_template,
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:3454:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(oldpath, oldvd->vdev_path);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:3485:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(newpath, newvd->vdev_path);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:3487:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(newpath, MAXPATHLEN, ztest_dev_template,
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5837:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(path0, MAXPATHLEN, ztest_dev_template,
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5840:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(pathrand, MAXPATHLEN, ztest_dev_template,
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5894:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(path0, vd0->vdev_path);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5895:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(pathrand, vd0->vdev_path);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:6627:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
(void) sprintf(zdb,
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:6638:7: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
fp = popen(zdb, "r");
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7649:10: [4] (shell) execv:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
(void) execv(cmd, emptyargv);
data/zfs-linux-0.8.5/include/sys/dsl_crypt.h:210:46: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
uint64_t dsl_crypto_key_create_sync(uint64_t crypt, dsl_wrapping_key_t *wkey,
data/zfs-linux-0.8.5/include/sys/lua/luaconf.h:220:3: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(fprintf(stderr, (s), (p)), fflush(stderr))
data/zfs-linux-0.8.5/include/sys/trace_dbuf.h:75:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(__get_str(msg), TRACE_DBUF_MSG_MAX, \
data/zfs-linux-0.8.5/include/sys/trace_dbuf.h:87:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(__get_str(msg), TRACE_DBUF_MSG_MAX, \
data/zfs-linux-0.8.5/include/sys/zio_crypt.h:107:33: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
int zio_crypt_key_init(uint64_t crypt, zio_crypt_key_t *key);
data/zfs-linux-0.8.5/include/sys/zio_crypt.h:112:56: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
int zio_crypt_key_unwrap(crypto_key_t *cwkey, uint64_t crypt, uint64_t version,
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:198:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(fp, pctl->nvprt_nmfmt, name); \
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:199:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(fp, vfmt, (ptype)value); \
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:234:11: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(fp, pctl->nvprt_nmfmt, name); \
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:240:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(fp, vfmt, (ptype)valuep[i]); \
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:394:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(fp, pctl->nvprt_nmfmt, name);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:917:11: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN, "bad config type "
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1041:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi8, &val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1052:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi8, &val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1064:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi8, (int8_t *)&val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1075:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi8, (int8_t *)&val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1087:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi16, &val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1098:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi16, &val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1110:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi16, (int16_t *)&val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1121:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi16, (int16_t *)&val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1133:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi32, &val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1144:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi32, &val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1156:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi32, (int32_t *)&val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1167:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi32, (int32_t *)&val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1179:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi64, &val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1190:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi64, &val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1202:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi64, (int64_t *)&val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1213:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi64, (int64_t *)&val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1226:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi32, (int32_t *)&val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair.c:1238:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sr = sscanf(value, "%"SCNi32, (int32_t *)&val_arg);
data/zfs-linux-0.8.5/lib/libnvpair/libnvpair_json.c:26:7: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if (fprintf(fp, __VA_ARGS__) < 0) \
data/zfs-linux-0.8.5/lib/libshare/libshare.c:669:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errstr, sizeof (errstr),
data/zfs-linux-0.8.5/lib/libshare/nfs.c:53:39: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
const char *security, const char *access, void *cookie);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:131:14: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
const char *access;
data/zfs-linux-0.8.5/lib/libshare/nfs.c:163:25: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
udata->security, access, udata->cookie);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:233:39: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
const char *security, const char *access, void *pcookie)
data/zfs-linux-0.8.5/lib/libshare/nfs.c:255:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(hostpath, "%s:%s", linuxhost, sharepath);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:267:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(opts, "sec=%s,%s,%s", security, access, linux_opts);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:267:42: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
sprintf(opts, "sec=%s,%s,%s", security, access, linux_opts);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:314:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_linux_opts, key);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:318:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_linux_opts, value);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:442:39: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
const char *security, const char *access, void *cookie)
data/zfs-linux-0.8.5/lib/libshare/nfs.c:460:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(hostpath, "%s:%s", linuxhost, sharepath);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:719:7: [4] (shell) execlp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
rc = execlp("/usr/sbin/exportfs", "exportfs", "-v", NULL);
data/zfs-linux-0.8.5/lib/libshare/smb.c:454:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(NET_CMD_PATH, F_OK) != 0)
data/zfs-linux-0.8.5/lib/libspl/include/assert.h:58:2: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
vfprintf(stderr, format, args);
data/zfs-linux-0.8.5/lib/libspl/mkdirp.c:83:7: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(str, F_OK) == 0)
data/zfs-linux-0.8.5/lib/libuutil/uu_alloc.c:116:6: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
M = vsnprintf(attic, 1, format, args);
data/zfs-linux-0.8.5/lib/libuutil/uu_alloc.c:125:7: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
M = vsnprintf(b, m + 1, format, args);
data/zfs-linux-0.8.5/lib/libuutil/uu_dprintf.c:109:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, FACILITY_FMT, D->uud_name,
data/zfs-linux-0.8.5/lib/libuutil/uu_dprintf.c:113:9: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) vfprintf(stderr, format, alist);
data/zfs-linux-0.8.5/lib/libuutil/uu_misc.c:200:9: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) vfprintf(stderr, format, args);
data/zfs-linux-0.8.5/lib/libuutil/uu_pname.c:92:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, PNAME_FMT, pname);
data/zfs-linux-0.8.5/lib/libuutil/uu_pname.c:94:9: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) vfprintf(stderr, format, alist);
data/zfs-linux-0.8.5/lib/libuutil/uu_pname.c:97:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, ERRNO_FMT, strerror(err));
data/zfs-linux-0.8.5/lib/libzfs/libzfs_config.c:273:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(zc.zc_name, zhp->zpool_name);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:663:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, prop_encroot);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:683:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:688:46: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
zfs_prop_to_name(ZFS_PROP_ENCRYPTION), &crypt);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:846:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:955:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:1118:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:1255:11: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
uint64_t crypt, pcrypt, keystatus, pkeystatus;
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:1263:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:691:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:1498:16: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
} else if (crypt != ZIO_CRYPT_OFF &&
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:1577:9: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
if (crypt != ZIO_CRYPT_OFF && intval > 2) {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:1860:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:1898:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:2075:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3493:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3670:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3714:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3982:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3990:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4024:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4107:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4185:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4223:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4233:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4266:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4304:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4447:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4510:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4585:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4645:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4958:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5024:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5058:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5077:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5158:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5181:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5197:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5245:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5273:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5313:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5350:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:109:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(di->errbuf, sizeof (di->errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:115:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(di->errbuf, sizeof (di->errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:120:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(di->errbuf, sizeof (di->errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:413:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(di->errbuf, sizeof (di->errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:482:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(di->errbuf, sizeof (di->errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:500:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(di->errbuf, sizeof (di->errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:515:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(zc.zc_value, sizeof (zc.zc_value),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:523:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(di->errbuf, sizeof (di->errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:529:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(di->errbuf, sizeof (di->errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:576:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(di->errbuf, sizeof (di->errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:598:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(di->errbuf, sizeof (di->errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:641:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(di->errbuf, sizeof (di->errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:680:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(di->errbuf, sizeof (di->errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:766:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:803:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:611:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(buf, sizeof (buf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:761:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:949:12: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(buf, ZFS_UNSUPPORTED_INACTIVE);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:951:12: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(buf, ZFS_UNSUPPORTED_READONLY);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1228:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1404:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1440:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1461:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1484:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1587:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1651:11: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1656:11: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1661:11: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1665:11: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1668:11: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1672:11: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1693:10: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN, "action: "));
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1695:10: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN, "\t"));
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1707:9: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1712:10: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1717:10: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1723:10: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1728:10: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1735:11: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1739:11: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1744:9: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1748:9: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1754:9: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1872:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1949:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(desc, sizeof (desc),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1953:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(desc, sizeof (desc),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1962:12: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN, "This "
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1968:13: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2002:13: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(aux, sizeof (aux),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2009:13: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(aux, sizeof (aux),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2037:12: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) printf(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2195:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2277:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2348:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2352:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2357:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2360:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2675:8: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
rsz = snprintf(physpath + pos, bytes_left, format, tmppath);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2884:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2887:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2967:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3015:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3050:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3114:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3117:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3177:11: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, dgettext(TEXT_DOMAIN, "Make "
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3272:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3374:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3586:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3656:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3678:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3715:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3719:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3785:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3809:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:4130:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(zc.zc_name, zhp->zpool_name);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:4214:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(zc.zc_name, zhp->zpool_name);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:4441:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(msg, sizeof (msg), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:4671:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:684:11: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:879:12: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:884:11: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:936:11: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1094:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1166:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1298:12: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(fout, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1302:12: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(fout, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1307:11: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(fout, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1319:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(fout, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1460:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(sdd->prevsnap, thissnap);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1478:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1550:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1558:11: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1565:11: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1770:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1783:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(fout, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1877:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1951:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2152:12: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(fout, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2267:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2464:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(newname, tryname);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2641:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(gtnd->name, zhp->zfs_name);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2777:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(top_zfs, destname);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2786:12: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
uint64_t crypt;
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3230:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3429:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3432:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3444:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3817:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3851:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmp_keylocation, keylocation);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3909:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(&cp[1], drrb->drr_toname);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4021:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4024:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(name, destsnap);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4031:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(suffix, strrchr(destsnap, '/'));
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4035:12: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
(void) strcat(destsnap, suffix);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4044:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4048:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4053:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(name, destsnap);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4065:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(snap, strchr(destsnap, '@'));
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4069:12: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
(void) strcat(destsnap, snap);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4074:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(name, destsnap);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4082:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(zc.zc_name, name);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4371:12: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(tbuf, sizeof (tbuf),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4383:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(zc.zc_name, destsnap);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4584:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, dgettext(TEXT_DOMAIN, "Warning: "
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4589:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, dgettext(TEXT_DOMAIN, "Warning: "
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4697:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:324:9: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) vsnprintf(hdl->libzfs_desc, sizeof (hdl->libzfs_desc),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:334:9: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) vsnprintf(hdl->libzfs_action, sizeof (hdl->libzfs_action),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:345:11: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) fprintf(stderr, dgettext(TEXT_DOMAIN, "internal "
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:721:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(path + sizeof (path_prefix) - 1, module);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:723:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return (access(path, F_OK) == 0);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:813:5: [4] (shell) execv:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execv(path, argv);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:818:5: [4] (shell) execvp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execvp(path, argv);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:930:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access("/run/systemd/container", R_OK) == 0)
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:540:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
(void) sprintf(realpath, "%s", path);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:543:11: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
(void) sprintf(realpath + (dsk - path) + 1, "r%s",
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:546:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
(void) sprintf(realpath, "%s", path);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:624:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
(void) sprintf(realpath, "/%s", path);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:832:10: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) vprintf(fmt, adx);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:847:11: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) vsnprintf(buf + i, size - i, fmt, adx);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:869:9: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) vfprintf(stderr, fmt, adx);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:892:10: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) vfprintf(stderr, fmt, adx);
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:95:12: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
error = access(path, F_OK);
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:108:12: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
error = access(path, F_OK);
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:103:9: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) vsnprintf(hdl->lpc_desc, sizeof (hdl->lpc_desc), fmt, ap);
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:114:9: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) vsnprintf(action, sizeof (action), fmt, ap);
data/zfs-linux-0.8.5/module/icp/algs/aes/aes_impl.c:429:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
cnt += sprintf(buffer + cnt, fmt, aes_impl_opts[i].name);
data/zfs-linux-0.8.5/module/icp/algs/aes/aes_impl.c:435:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
cnt += sprintf(buffer + cnt, fmt, aes_supp_impl[i]->name);
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:999:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
cnt += sprintf(buffer + cnt, fmt, gcm_impl_opts[i].name);
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:1005:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
cnt += sprintf(buffer + cnt, fmt, gcm_supp_impl[i]->name);
data/zfs-linux-0.8.5/module/lua/lcompat.c:15:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
res = vsnprintf(buf, size, fmt, args);
data/zfs-linux-0.8.5/module/lua/lstrlib.c:40:9: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = vsnprintf(buf, INT_MAX, fmt, args);
data/zfs-linux-0.8.5/module/spl/spl-err.c:64:9: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) vsnprintf(msg, sizeof (msg), fmt, ap);
data/zfs-linux-0.8.5/module/spl/spl-err.c:89:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(msg, MAXMSGLEN, fmt, ap);
data/zfs-linux-0.8.5/module/spl/spl-thread.c:144:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(name, sizeof (name), namefmt, args);
data/zfs-linux-0.8.5/module/zcommon/zfs_fletcher.c:898:9: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
cnt += sprintf(buffer + cnt, fmt, "fastest");
data/zfs-linux-0.8.5/module/zcommon/zfs_fletcher.c:903:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
cnt += sprintf(buffer + cnt, fmt,
data/zfs-linux-0.8.5/module/zfs/ddt.c:256:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(name, DDT_NAMELEN, DMU_POOL_DDT,
data/zfs-linux-0.8.5/module/zfs/dmu_objset.c:1993:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(name, sizeof (name), DMU_OBJACCT_PREFIX "%llx",
data/zfs-linux-0.8.5/module/zfs/dmu_objset.c:1997:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(name, sizeof (name), DMU_OBJACCT_PREFIX "%llx",
data/zfs-linux-0.8.5/module/zfs/dmu_objset.c:2002:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) snprintf(name, sizeof (name),
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:174:47: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
zfs_prop_to_name(ZFS_PROP_ENCRYPTION), &crypt);
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:184:19: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
dcp->cp_crypt = crypt;
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:205:19: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
dcp->cp_crypt = crypt;
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:569:7: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
&crypt);
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:604:44: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
ret = zio_crypt_key_unwrap(&wkey->wk_key, crypt, version, guid,
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:1181:44: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
dsl_dir_get_crypt(dsl_dir_t *dd, uint64_t *crypt)
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:1189:41: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
DSL_CRYPTO_KEY_CRYPTO_SUITE, 8, 1, crypt));
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:1193:67: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
dsl_crypto_key_sync_impl(objset_t *mos, uint64_t dckobj, uint64_t crypt,
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:1199:7: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
&crypt, tx));
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:1788:19: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
uint64_t pcrypt, crypt;
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:1811:11: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
ASSERT3U(crypt, !=, ZIO_CRYPT_INHERIT);
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:1898:11: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
uint64_t crypt;
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:1936:45: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
VERIFY0(dsl_dir_get_crypt(dd->dd_parent, &crypt));
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:1957:49: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
dd->dd_crypto_obj = dsl_crypto_key_create_sync(crypt, wkey, tx);
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:2266:11: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
uint64_t crypt, key_guid, keyformat, iters, salt;
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:2326:51: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
dsl_crypto_key_sync_impl(mos, dd->dd_crypto_obj, crypt,
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:2440:7: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
&crypt);
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:2522:55: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
fnvlist_add_uint64(nvl, DSL_CRYPTO_KEY_CRYPTO_SUITE, crypt);
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:2563:37: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
dsl_crypto_key_create_sync(uint64_t crypt, dsl_wrapping_key_t *wkey,
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:2571:11: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
ASSERT3U(crypt, <, ZIO_CRYPT_FUNCTIONS);
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:2572:11: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
ASSERT3U(crypt, >, ZIO_CRYPT_OFF);
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:2580:29: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
VERIFY0(zio_crypt_key_init(crypt, &dck.dck_key));
data/zfs-linux-0.8.5/module/zfs/fm.c:134:10: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
width = vsnprintf(&c1, sizeof (c1), format, ap);
data/zfs-linux-0.8.5/module/zfs/qat.h:183:33: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
crypto_key_t *key, uint64_t crypt, uint32_t enc_len);
data/zfs-linux-0.8.5/module/zfs/qat_crypt.c:158:12: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
Cpa64U crypt, Cpa32U aad_len)
data/zfs-linux-0.8.5/module/zfs/qat_crypt.c:166:22: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
if (zio_crypt_table[crypt].ci_crypt_type == ZC_TYPE_CCM) {
data/zfs-linux-0.8.5/module/zfs/qat_crypt.c:296:33: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
crypto_key_t *key, uint64_t crypt, uint32_t enc_len)
data/zfs-linux-0.8.5/module/zfs/qat_crypt.c:332:28: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
&cy_session_ctx, key, crypt, aad_len);
data/zfs-linux-0.8.5/module/zfs/qat_crypt.c:335:23: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
if (zio_crypt_table[crypt].ci_crypt_type == ZC_TYPE_GCM)
data/zfs-linux-0.8.5/module/zfs/spa_misc.c:389:9: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) vsnprintf(buf, sizeof (buf), fmt, adx);
data/zfs-linux-0.8.5/module/zfs/spa_misc.c:404:9: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) vsnprintf(buf, sizeof (buf), fmt, adx);
data/zfs-linux-0.8.5/module/zfs/spa_misc.c:1489:18: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
SNPRINTF_BLKPTR(snprintf, ' ', buf, buflen, bp, type, checksum,
data/zfs-linux-0.8.5/module/zfs/vdev.c:120:9: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) vsnprintf(buf, sizeof (buf), fmt, adx);
data/zfs-linux-0.8.5/module/zfs/vdev_raidz_math.c:651:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
cnt += sprintf(buffer + cnt, fmt, math_impl_opts[i].name);
data/zfs-linux-0.8.5/module/zfs/vdev_raidz_math.c:657:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
cnt += sprintf(buffer + cnt, fmt, raidz_supp_impl[i]->name);
data/zfs-linux-0.8.5/module/zfs/zcp.c:1236:19: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
VERIFY3U(len, >, vsnprintf(errmsg, len, fmt, argp));
data/zfs-linux-0.8.5/module/zfs/zfs_ctldir.c:703:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
(void) strcat(full_name, snap_name);
data/zfs-linux-0.8.5/module/zfs/zfs_debug.c:138:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(zdm->zdm_msg, buf);
data/zfs-linux-0.8.5/module/zfs/zfs_debug.c:178:10: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) vsnprintf(buf + i, size - i, fmt, adx);
data/zfs-linux-0.8.5/module/zfs/zfs_vfsops.c:929:9: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
(void) sprintf(buf, DMU_OBJACCT_PREFIX "%llx", (longlong_t)id);
data/zfs-linux-0.8.5/module/zfs/zfs_vnops.c:2340:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(zap.za_name, ZFS_CTLDIR_NAME);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:223:29: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
zio_crypt_key_init(uint64_t crypt, zio_crypt_key_t *key)
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:230:11: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
ASSERT3U(crypt, <, ZIO_CRYPT_FUNCTIONS);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:232:32: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
keydata_len = zio_crypt_table[crypt].ci_keylen;
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:272:48: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
mech.cm_type = crypto_mech2id(zio_crypt_table[crypt].ci_mechname);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:284:18: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
key->zk_crypt = crypt;
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:377:46: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
zio_do_crypt_uio(boolean_t encrypt, uint64_t crypt, crypto_key_t *key,
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:389:11: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
ASSERT3U(crypt, <, ZIO_CRYPT_FUNCTIONS);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:393:31: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
crypt_info = zio_crypt_table[crypt];
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:488:11: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
ASSERT3U(crypt, <, ZIO_CRYPT_FUNCTIONS);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:491:32: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
keydata_len = zio_crypt_table[crypt].ci_keylen;
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:523:18: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
aad[1] = LE_64(crypt);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:527:28: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
enc_len = zio_crypt_table[crypt].ci_keylen + SHA512_HMAC_KEYLEN;
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:536:33: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
ret = zio_do_crypt_uio(B_TRUE, crypt, cwkey, NULL, iv, enc_len,
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:548:52: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
zio_crypt_key_unwrap(crypto_key_t *cwkey, uint64_t crypt, uint64_t version,
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:559:11: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
ASSERT3U(crypt, <, ZIO_CRYPT_FUNCTIONS);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:564:32: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
keydata_len = zio_crypt_table[crypt].ci_keylen;
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:586:18: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
aad[1] = LE_64(crypt);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:599:34: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
ret = zio_do_crypt_uio(B_FALSE, crypt, cwkey, NULL, iv, enc_len,
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:629:48: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
mech.cm_type = crypto_mech2id(zio_crypt_table[crypt].ci_mechname);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:641:18: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
key->zk_crypt = crypt;
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1872:39: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
uint_t keydata_len = zio_crypt_table[crypt].ci_keylen;
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/chg_usr_exec/chg_usr_exec.c:71:6: [4] (shell) execl:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (execl(EXECSHELL, "sh", "-c", cmds, (char *)NULL) != 0) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/dir_rd_update/dir_rd_update.c:71:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(&dirpath[0], (const char *)cp1);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mktree/mktree.c:106:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(dname, getfdname(pdir, TYPE_D, level, d, 0));
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mktree/mktree.c:121:12: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(fname,
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mktree/mktree.c:130:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(fname, getfdname(pdir, TYPE_F, level, d, f));
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mmapwrite/mmapwrite.c:95:9: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
ret = access(file_path, F_OK);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/user_ns_exec/user_ns_exec.c:81:6: [4] (shell) execl:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (execl(EXECSHELL, "sh", "-c", cmds, (char *)NULL) != 0) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:278:10: [4] (shell) execvp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
(void) execvp(path, argv);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/checksum/sha2_test.c:186:9: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
(void) vfprintf(stderr, format, ap);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:275:31: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if ((strlen(tfile) != 0) && (access(tfile, F_OK) == 0)) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:320:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(tfile, F_OK) == 0) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_002_pos.c:61:13: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ((ret = system("sudo zpool freeze $TESTPOOL"))) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_002_pos.c:72:13: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ((ret = system("sudo zpool export $TESTPOOL"))) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_002_pos.c:81:13: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ((ret = system("sudo zpool import $TESTPOOL"))) {
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:397:14: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt_long(argc, argv, "sfnvo:h?", 0, 0)) != -1) {
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:444:6: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (realpath(argv[1], mntpoint) == NULL) {
data/zfs-linux-0.8.5/cmd/raidz_test/raidz_test.c:131:16: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((opt = getopt(argc, argv, "TDBSvha:o:d:s:t:")) != -1) {
data/zfs-linux-0.8.5/cmd/raidz_test/raidz_test.c:764:2: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand((unsigned)time(NULL) * getpid());
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:5774:8: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
(getenv("ZDB_NO_ZLE") ? ZIO_COMPRESS_MASK(ZLE) : 0);
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:5986:24: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
spa_config_path_env = getenv("SPA_CONFIG_PATH");
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:5990:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv,
data/zfs-linux-0.8.5/cmd/zed/agents/zfs_mod.c:293:6: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (realpath(rawpath, devpath) == NULL && !is_dm) {
data/zfs-linux-0.8.5/cmd/zed/zed_conf.c:260:16: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((opt = getopt(argc, argv, opts)) != -1) {
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:810:14: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((val = getenv(*keyp)))
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:571:6: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("ZFS_ABORT") != NULL) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:775:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "o:p")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:895:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, ":V:b:so:p")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:1372:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "vpndfrR")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:1762:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, ":d:o:s:rt:Hp")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2036:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "rS")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2249:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "rvV:a")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2949:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "nHpo:s:S:t:i")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:3338:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "HS:d:o:prs:t:")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:3493:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "prf")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:3722:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "rRf")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:3950:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "ro:")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:4046:14: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt_long(argc, argv, ":i:I:RDpvnPLeht:cwb", long_options,
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:4309:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, ":o:x:dehnuvFsA")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5754:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, optstr)) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5869:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, opts)) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6085:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, opts)) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6568:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, op == OP_MOUNT ? ":alvo:O" : "al"))
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6899:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, op == OP_SHARE ? ":a" : "af")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:7232:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "FHt")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:7335:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:7371:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:7497:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "nt:m:j")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:7740:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "anrL:")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:7833:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "lio:")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:7953:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "0Ccdkp:rs")) != -1) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:8234:6: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("ZFS_ABORT") != NULL) {
data/zfs-linux-0.8.5/cmd/zhack/zhack.c:285:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "+rd:")) != -1) {
data/zfs-linux-0.8.5/cmd/zhack/zhack.c:383:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "+md")) != -1) {
data/zfs-linux-0.8.5/cmd/zhack/zhack.c:489:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "+c:d:")) != -1) {
data/zfs-linux-0.8.5/cmd/zinject/translate.c:255:11: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
debug = (getenv("ZINJECT_DEBUG") != NULL);
data/zfs-linux-0.8.5/cmd/zinject/zinject.c:793:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv,
data/zfs-linux-0.8.5/cmd/zpool/zpool_iter.c:536:8: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
env = getenv("ZPOOL_SCRIPTS_PATH");
data/zfs-linux-0.8.5/cmd/zpool/zpool_iter.c:540:8: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
env = getenv("HOME");
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:526:6: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("ZFS_ABORT") != NULL) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:558:14: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt_long(argc, argv, "cs", long_options, NULL)) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:809:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "fgLno:P")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:983:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "nps")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:1086:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "f")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:1259:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, ":fndR:m:o:O:t:")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:1576:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "f")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:1680:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "afF")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:2896:14: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt_long(argc, argv, ":d", long_options, NULL)) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:3036:14: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt_long(argc, argv, ":aCc:d:DEfFlmnNo:R:stT:VX",
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:3239:37: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((searchdirs == NULL) && (env = getenv("ZPOOL_IMPORT_PATH"))) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:3428:17: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((ret = getopt(argc, argv, "f")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:5073:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "c:gLPT:vyhplqrwnH")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:5082:8: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("ZPOOL_SCRIPTS_ENABLED") != NULL &&
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:5857:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, ":gHLo:pPT:v")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:5957:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "fo:")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:6116:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:6192:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, ":gLR:lno:P")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:6346:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "e")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:6421:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "ft")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:6497:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "FnX")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:6577:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:6624:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "n")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:6722:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "sp")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:6774:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:6819:14: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt_long(argc, argv, "cdr:s", long_options, NULL))
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:7802:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "c:igLpPsvxDtT:")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:7811:8: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("ZPOOL_SCRIPTS_ENABLED") != NULL &&
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:8251:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, ":avV:")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:8577:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "li")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:8942:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "vHfc")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:9068:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, ":Hpo:")) != -1) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:9272:2: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand(time(NULL));
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:9362:6: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("ZFS_ABORT") != NULL) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:628:7: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (realpath(arg, path) == NULL) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:1255:7: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (realpath(path, devpath) == NULL) {
data/zfs-linux-0.8.5/cmd/zstreamdump/zstreamdump.c:256:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, ":vCd")) != -1) {
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:784:16: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((opt = getopt(argc, argv,
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:844:11: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
path = realpath(optarg, NULL);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:913:18: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
VERIFY(NULL != realpath(getexecname(), cmd));
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:919:18: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
VERIFY(NULL != realpath(altdir, realaltdir));
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:6415:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((zdb_path = getenv("ZDB_PATH"))) {
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:6424:9: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
VERIFY(realpath(getexecname(), bin) != NULL);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7733:22: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *fd_data_str = getenv("ZTEST_FD_DATA");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:239:13: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
dev_path = realpath(path, NULL);
data/zfs-linux-0.8.5/lib/libspl/gethostid.c:42:8: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
env = getenv("ZFS_HOSTID");
data/zfs-linux-0.8.5/lib/libspl/include/sys/tzfile.h:43:20: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
#define TZDEFAULT (getenv("TZ"))
data/zfs-linux-0.8.5/lib/libuutil/uu_pname.c:125:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
cp = getenv("UU_DIE_ABORTS");
data/zfs-linux-0.8.5/lib/libzfs/libzfs_config.c:352:13: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
exclude = getenv("__ZFS_POOL_EXCLUDE");
data/zfs-linux-0.8.5/lib/libzfs/libzfs_config.c:353:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
restricted = getenv("__ZFS_POOL_RESTRICT");
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:1492:7: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
(getenv("ZFS_SERIAL_MOUNT") != NULL);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3974:8: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
env = getenv("ZPOOL_VDEV_NAME_PATH");
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3979:8: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
env = getenv("ZPOOL_VDEV_NAME_GUID");
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3984:8: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
env = getenv("ZPOOL_VDEV_NAME_FOLLOW_LINKS");
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:4044:15: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
char *rp = realpath(path, NULL);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:896:14: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *env = getenv(envvar);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:935:14: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
load_str = getenv("ZFS_MODULE_LOADING");
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:961:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
timeout_str = getenv("ZFS_MODULE_TIMEOUT");
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1033:6: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("ZFS_PROP_DEBUG") != NULL) {
data/zfs-linux-0.8.5/lib/libzfs_core/libzfs_core.c:120:20: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *ioc_test = getenv("ZFS_IOC_TEST");
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:100:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
stkstr = getenv("ZFS_STACK_SIZE");
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:505:8: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
char *realpath;
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:530:9: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
free(realpath);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:536:9: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
free(realpath);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:540:18: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
(void) sprintf(realpath, "%s", path);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:546:18: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
(void) sprintf(realpath, "%s", path);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:547:35: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (!(flags & FCREAT) && stat64(realpath, &st) == -1) {
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:549:9: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
free(realpath);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:567:14: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
fd = open64(realpath, flags - FREAD, mode);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:570:8: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
free(realpath);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:580:37: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
"%s/%s", vn_dumpdir, basename(realpath));
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:585:9: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
free(realpath);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:593:7: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
free(realpath);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:624:17: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
(void) sprintf(realpath, "/%s", path);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:627:16: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
ret = vn_open(realpath, x1, flags, mode, vpp, x2, x3);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:629:12: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
umem_free(realpath, strlen(path) + 2);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:774:20: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
dprintf_string = getenv("ZFS_DEBUG");
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:87:8: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
env = getenv("ZPOOL_IMPORT_PATH");
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:134:8: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
env = getenv("ZPOOL_IMPORT_PATH");
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:244:10: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
realp = realpath(dm_name, NULL);
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:380:9: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
tmp = realpath(dev_name, NULL);
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:607:6: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (realpath(path, nodepath) == NULL)
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:433:8: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (realpath(path, nodepath) != NULL) {
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:529:6: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (realpath(path, nodepath) == NULL)
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:634:8: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
env = getenv("ZFS_VDEV_DEVID_OPT_OUT");
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:1663:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
env = getenv("ZPOOL_IMPORT_UDEV_TIMEOUT_MS");
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:1760:6: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (realpath(dir, path) == NULL) {
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:1815:6: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (realpath(dpath, path) == NULL) {
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:1928:8: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
env = getenv("ZPOOL_IMPORT_PATH");
data/zfs-linux-0.8.5/module/spl/spl-vnode.c:267:8: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
char *realpath;
data/zfs-linux-0.8.5/module/spl/spl-vnode.c:274:7: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (!realpath)
data/zfs-linux-0.8.5/module/spl/spl-vnode.c:277:18: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
(void) snprintf(realpath, len, "/%s", path);
data/zfs-linux-0.8.5/module/spl/spl-vnode.c:278:15: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
rc = vn_open(realpath, seg, flags, mode, vpp, x1, x2);
data/zfs-linux-0.8.5/module/spl/spl-vnode.c:279:8: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
kfree(realpath);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/devname2devid/devname2devid.c:135:6: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (realpath(device, nodepath) == NULL) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_trunc/file_trunc.c:109:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "b:c:f:o:rs:v")) != -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_trunc/file_trunc.c:166:2: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srandom(seed);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_trunc/file_trunc.c:183:12: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
roffset = random() % fsize;
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_trunc/file_trunc.c:230:12: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
roffset = random() % fsize;
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_write/file_write.c:88:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "b:c:d:s:f:o:vwr")) != -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_write/file_write.c:158:3: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand(time(NULL));
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mkbusy/mkbusy.c:78:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "fr")) != -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mktree/mktree.c:57:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "b:l:d:f:")) != -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/randfree_file/randfree_file.c:65:15: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((ch = getopt(argc, argv, "l:s:n:")) != EOF) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/randwritecomp/randwritecomp.c:78:16: [3] (random) lrand48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
uint64_t rv = lrand48() % distribution_n;
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/randwritecomp/randwritecomp.c:96:25: [3] (random) lrand48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
((uint32_t *)buf)[0] = lrand48();
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/randwritecomp/randwritecomp.c:115:8: [3] (random) lrand48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
j = lrand48() % nblocks;
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/randwritecomp/randwritecomp.c:128:33: [3] (random) lrand48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
rwc_pwrite(fd, buf, BLOCKSZ, (lrand48() % nblocks) * BLOCKSZ);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/randwritecomp/randwritecomp.c:179:16: [3] (random) lrand48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
randbuf[i] = lrand48();
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/readmmap/readmmap.c:96:2: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srandom(seed);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/readmmap/readmmap.c:98:8: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
idx = random() % size;
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/rm_lnkcnt_zero_file/rm_lnkcnt_zero_file.c:55:10: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
return (random() % 1000);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:138:14: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt_long(argc, argv, shortopts, longopts, NULL)) != -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:209:2: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srandom(seed);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:484:17: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
rnd_size = (random() % (size - 16)) + 16;
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:310:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((penv[i] = getenv(penv[i])) == NULL) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/suid/suid_write_to_file.c:48:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((penv[i] = getenv(penv[i])) == NULL) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_001_pos.c:35:2: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand(time(NULL));
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_001_pos.c:54:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((penv[i] = getenv(penv[i])) == NULL) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_002_pos.c:41:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((penv[i] = getenv(penv[i])) == NULL) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_003_pos.c:40:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((penv[i] = getenv(penv[i])) == NULL) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_stat_mode.c:61:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((penv[i] = getenv(penv[i])) == NULL) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/truncate/truncate_test.c:79:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "s:f")) != -1) {
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:232:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cwd[PATH_MAX];
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:249:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(dataset, O_RDONLY);
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:303:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open("/etc/mtab", O_RDWR | O_CREAT, 0644);
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:352:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[MNT_LINE_MAX];
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:367:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char context[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:380:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prop[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:382:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mntopts[MNT_LINE_MAX] = { '\0' };
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:383:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char badopt[MNT_LINE_MAX] = { '\0' };
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:384:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mtabopt[MNT_LINE_MAX] = { '\0' };
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:385:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mntpoint[PATH_MAX];
data/zfs-linux-0.8.5/cmd/raidz_test/raidz_test.c:40:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char gdb[256];
data/zfs-linux-0.8.5/cmd/raidz_test/raidz_test.c:129:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&rto_opts_defaults, o, sizeof (*o));
data/zfs-linux-0.8.5/cmd/raidz_test/raidz_test.c:618:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&failed_opts, opts, sizeof (raidz_test_opts_t));
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:481:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bytes[32], comp[32], uncomp[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:513:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blkbuf[BP_SPRINTF_LEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:884:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char maxbuf[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:907:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char freebuf[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1127:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *types[4] = { "ditto", "single", "double", "triple" };
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1128:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blkbuf[BP_SPRINTF_LEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1168:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[DDT_NAMELEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1272:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *name[DTL_TYPES] = { "missing", "partial", "scrub",
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1274:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prefix[256];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1314:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[30];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1315:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char internalstr[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1420:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(blkbuf,
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1466:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blkbuf[BP_SPRINTF_LEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1563:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nice[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1620:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char used[32], compressed[32], uncompressed[32], unique[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1621:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blkbuf[BP_SPRINTF_LEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1681:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blkbuf[BP_SPRINTF_LEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1693:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bytes[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1722:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blkbuf[BP_SPRINTF_LEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1733:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bytes[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1734:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char comp[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1735:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char uncomp[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1826:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bytes[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1827:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char comp[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1828:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char uncomp[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1874:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2056:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAXPATHLEN * 2]; /* allow for xattr and failure prefix */
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2224:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iblk[32], dblk[32], lsize[32], asize[32], fill[32], dnsize[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2225:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bonus_size[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2226:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char aux[50];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2282:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(fill, "%6.2f", 100.0 * doi.doi_fill_count *
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2356:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char segsize[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2412:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *objset_types[DMU_OST_NUMTYPES] = {
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2421:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char numbuf[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2422:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blkbuf[BP_SPRINTF_LEN + 20];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2423:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char osname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2583:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blkbuf[BP_SPRINTF_LEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2927:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char header[ZDB_MAX_UB_HEADER_SIZE];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2961:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char curpath[PATH_MAX];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:3066:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:3463:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blkbuf[BP_SPRINTF_LEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:3498:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blkbuf[BP_SPRINTF_LEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:3550:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:4210:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blkbuf[BP_SPRINTF_LEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:4426:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mem[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:4442:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char csize[32], lsize[32], psize[32], asize[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:4443:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char avg[32], gang[32];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:5465:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blkbuf[BP_SPRINTF_LEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:6049:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(searchdirs, tmp, nsearch *
data/zfs-linux-0.8.5/cmd/zdb/zdb_il.c:52:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char tab_prefix[4] = "\t\t\t";
data/zfs-linux-0.8.5/cmd/zdb/zdb_il.c:57:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blkbuf[BP_SPRINTF_LEN];
data/zfs-linux-0.8.5/cmd/zdb/zdb_il.c:348:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blkbuf[BP_SPRINTF_LEN + 10];
data/zfs-linux-0.8.5/cmd/zdb/zdb_il.c:356:10: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
(void) strcpy(blkbuf, ", ");
data/zfs-linux-0.8.5/cmd/zed/agents/fmd_api.c:107:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
(void) strcpy(mp->mod_stats.ms_accepted.fmds_name, "fmd.accepted");
data/zfs-linux-0.8.5/cmd/zed/agents/fmd_api.c:108:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
(void) strcpy(mp->mod_stats.ms_caseopen.fmds_name, "fmd.caseopen");
data/zfs-linux-0.8.5/cmd/zed/agents/fmd_api.c:109:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
(void) strcpy(mp->mod_stats.ms_casesolved.fmds_name, "fmd.casesolved");
data/zfs-linux-0.8.5/cmd/zed/agents/fmd_api.c:110:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
(void) strcpy(mp->mod_stats.ms_caseclosed.fmds_name, "fmd.caseclosed");
data/zfs-linux-0.8.5/cmd/zed/agents/fmd_api.c:203:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[256];
data/zfs-linux-0.8.5/cmd/zed/agents/fmd_api.c:474:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(cp->ci_bufptr, buf, size);
data/zfs-linux-0.8.5/cmd/zed/agents/fmd_api.c:485:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(buf, cp->ci_bufptr, size);
data/zfs-linux-0.8.5/cmd/zed/agents/fmd_api.h:64:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ci_uuid[48]; /* uuid string for this case */
data/zfs-linux-0.8.5/cmd/zed/agents/fmd_api.h:108:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmds_name[32]; /* statistic name */
data/zfs-linux-0.8.5/cmd/zed/agents/fmd_api.h:110:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmds_desc[64]; /* statistic description */
data/zfs-linux-0.8.5/cmd/zed/agents/zfs_agents.c:46:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ae_class[64];
data/zfs-linux-0.8.5/cmd/zed/agents/zfs_agents.c:47:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ae_subclass[32];
data/zfs-linux-0.8.5/cmd/zed/agents/zfs_diagnosis.c:60:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zc_serd_checksum[MAX_SERDLEN];
data/zfs-linux-0.8.5/cmd/zed/agents/zfs_diagnosis.c:61:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zc_serd_io[MAX_SERDLEN];
data/zfs-linux-0.8.5/cmd/zed/agents/zfs_mod.c:112:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pd_physpath[128];
data/zfs-linux-0.8.5/cmd/zed/agents/zfs_mod.c:192:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rawpath[PATH_MAX], fullpath[PATH_MAX];
data/zfs-linux-0.8.5/cmd/zed/agents/zfs_mod.c:193:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char devpath[PATH_MAX];
data/zfs-linux-0.8.5/cmd/zed/agents/zfs_mod.c:730:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *path, fullpath[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zed/agents/zfs_mod.c:800:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *devname, name[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zed/agents/zfs_mod.c:804:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(name, "%llu", (u_longlong_t)guid);
data/zfs-linux-0.8.5/cmd/zed/zed.c:186:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
devnull = open("/dev/null", O_RDWR);
data/zfs-linux-0.8.5/cmd/zed/zed_conf.c:222:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[PATH_MAX];
data/zfs-linux-0.8.5/cmd/zed/zed_conf.c:342:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pathname[PATH_MAX];
data/zfs-linux-0.8.5/cmd/zed/zed_conf.c:452:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[PATH_MAX];
data/zfs-linux-0.8.5/cmd/zed/zed_conf.c:489:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
zcp->pid_fd = open(zcp->pid_file, (O_RDWR | O_CREAT), filemode);
data/zfs-linux-0.8.5/cmd/zed/zed_conf.c:553:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dirbuf[PATH_MAX];
data/zfs-linux-0.8.5/cmd/zed/zed_conf.c:593:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
zcp->state_fd = open(zcp->state_file,
data/zfs-linux-0.8.5/cmd/zed/zed_disk_event.c:105:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char strval[128];
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:53:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
zcp->zevent_fd = open(ZFS_DEV, O_RDWR);
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:206:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char keybuf[MAXBUF];
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:207:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char valbuf[MAXBUF];
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:305:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXBUF];
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:335:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXBUF];
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:365:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXBUF];
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:395:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXBUF];
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:425:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXBUF];
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:455:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXBUF];
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:485:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXBUF];
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:515:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXBUF];
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:547:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXBUF];
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:651:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char alt[32];
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:661:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char alt[32];
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:776:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *(*pa)[2];
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:850:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/zfs-linux-0.8.5/cmd/zed/zed_exec.c:63:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, q, len);
data/zfs-linux-0.8.5/cmd/zed/zed_exec.c:83:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[PATH_MAX];
data/zfs-linux-0.8.5/cmd/zed/zed_exec.c:110:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open("/dev/null", O_RDWR)) != -1) {
data/zfs-linux-0.8.5/cmd/zed/zed_exec.c:197:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *class_strings[4];
data/zfs-linux-0.8.5/cmd/zed/zed_log.c:207:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ZED_LOG_MAX_LOG_LEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_iter.c:304:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lbuf[ZFS_MAXPROPLEN], rbuf[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:87:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char history_str[HIS_MAX_RECORD_LEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:973:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:1449:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:1630:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:1631:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rbuf[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:1633:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char source[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2124:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cb_lastfs[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2203:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char verstr[16];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2579:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sizebuf[32];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2605:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sid[MAXNAMELEN + 32];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2764:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char valstr[MAXNAMELEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2812:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(valstr, "%llu",
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2821:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(valstr, "%llu",
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2838:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(valstr, "%llu",
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:3189:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char headerbuf[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:3233:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char property[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:3717:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parentname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:4201:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char frombuf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:4247:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char origin[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:4398:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:4549:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char who_ug_name[256]; /* user/group name */
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:4958:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
rid = atoi(perm_name);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:4965:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
rid = atoi(perm_name);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5196:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *props[ZFS_NUM_PROPS];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5326:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ld[2] = { '\0', '\0' };
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5327:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char who_buf[MAXNAMELEN + 32];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5489:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[256];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5490:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[64];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5557:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(id, "%u", rid);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5694:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXNAMELEN + 32];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5900:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parent[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5997:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tsbuf[DATETIME_BUF_LEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6250:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mountpoint[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6251:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char shareopts[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6252:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char smbshareopts[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6493:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char info[32];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6508:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(info, "(%d/%d)", current, total);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6839:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nfs_mnt_prop[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6840:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char smbshare_prop[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6860:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mtpt_prop[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6895:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nfs_mnt_prop[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6896:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sharesmb[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:7363:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snapname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:7364:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bookname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:7442:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:7550:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
} else if ((fd = open(filename, O_RDONLY)) < 0) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_project.c:46:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zpi_name[0];
data/zfs-linux-0.8.5/cmd/zfs/zfs_project.c:101:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(name, O_RDONLY | O_NOCTTY);
data/zfs-linux-0.8.5/cmd/zfs/zfs_project.c:126:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(name, O_RDONLY | O_NOCTTY);
data/zfs-linux-0.8.5/cmd/zfs/zfs_project.c:210:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fullname[PATH_MAX];
data/zfs-linux-0.8.5/cmd/zhack/zhack.c:198:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char val[1024];
data/zfs-linux-0.8.5/cmd/zhack/zhack.c:479:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *path[MAX_NUM_PATHS];
data/zfs-linux-0.8.5/cmd/zinject/translate.c:91:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fullpath[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zinject/translate.c:116:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp = fopen(MNTTAB, "r")) == NULL) {
data/zfs-linux-0.8.5/cmd/zinject/translate.c:250:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zinject/zinject.c:164:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *errtable[TYPE_INVAL] = {
data/zfs-linux-0.8.5/cmd/zinject/zinject.c:755:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pool[MAXNAMELEN] = "";
data/zfs-linux-0.8.5/cmd/zinject/zinject.c:756:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dataset[MAXNAMELEN] = "";
data/zfs-linux-0.8.5/cmd/zinject/zinject.c:772:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((zfs_fd = open(ZFS_DEV, O_RDWR)) < 0) {
data/zfs-linux-0.8.5/cmd/zinject/zinject.c:1150:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
record.zi_type = atoi(argv[1]);
data/zfs-linux-0.8.5/cmd/zpool/zpool_iter.c:481:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[2] = {cmd, 0};
data/zfs-linux-0.8.5/cmd/zpool/zpool_iter.c:482:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *env[5] = {"PATH=/bin:/sbin:/usr/bin:/usr/sbin", NULL, NULL, NULL,
data/zfs-linux-0.8.5/cmd/zpool/zpool_iter.c:568:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fullpath[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:204:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *vsx_type_to_nvlist[IOS_COUNT][13] = {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:321:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char history_str[HIS_MAX_RECORD_LEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:878:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char strval[ZPOOL_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:1046:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char valstr[32];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:1076:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vdev[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:1134:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(vdev, O_RDWR)) < 0) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:1420:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:1506:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char propname[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:1908:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zbuf[1024];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:1909:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[256];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:1959:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zbuf[1024];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:1960:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[256];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:2011:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rbuf[6], wbuf[6], cbuf[6];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:3051:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(searchdirs, tmp, nsearch *
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:3251:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(searchdirs, tmp, nsearch *
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:3818:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:3840:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(calcvs, newvs, sizeof (*calcvs));
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:3941:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(calcnva[j].data, newnva[j].data, alloc_size);
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:3971:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[6];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:4951:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fullpath[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:5443:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char headerbuf[ZPOOL_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:5497:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char property[ZPOOL_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:5561:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char propval[64];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:6038:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char strval[ZPOOL_MAXPROPLEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:6927:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char processed_buf[7], scanned_buf[7], issued_buf[7], total_buf[7];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:6928:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char srate_buf[7], irate_buf[7];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:7106:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char copied_buf[7], examined_buf[7], total_buf[7], rate_buf[7];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:7197:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mem_buf[7];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:7209:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char space_buf[7];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:7317:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dspace[6], mspace[6];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:8435:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[30] = "";
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:8610:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char poolname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:8616:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctime_str[26], str[32], *ptr;
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:8623:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(str, ctime_str+4, 6); /* 'Jun 30' */
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:8624:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(str+7, ctime_str+20, 4); /* '1993' */
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:8625:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(str+12, ctime_str+11, 8); /* '21:49:08' */
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:8626:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(str+20, ".%09lld", (longlong_t)tv[1]); /* '.123456789' */
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:8881:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
zevent_fd = open(ZFS_DEV, O_RDWR);
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:8996:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[MAXNAMELEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:99:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[24];
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:235:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char inq_buff[INQ_REPLY_LEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:236:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sense_buffer[32];
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:237:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char inq_cmd_blk[INQ_CMD_LEN] =
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:256:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(path, O_RDONLY|O_DIRECT)) < 0)
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:315:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(file, O_RDONLY)) < 0)
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:420:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char slice_path[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:432:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(path, flags)) < 0) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:557:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(path, O_RDONLY|O_DIRECT)) < 0)
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:606:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:937:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(path, O_RDONLY)) >= 0) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:1171:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[size];
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:1174:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(path, O_WRONLY|O_EXCL)) < 0) {
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:1216:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char devpath[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:1217:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char udevpath[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:1272:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(devpath, O_RDWR|O_EXCL);
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:1372:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXPATHLEN];
data/zfs-linux-0.8.5/cmd/zstreamdump/zstreamdump.c:209:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
n = sprintf(str, "%02x", buf[i] & 0xff);
data/zfs-linux-0.8.5/cmd/zstreamdump/zstreamdump.c:224:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char salt[ZIO_DATA_SALT_LEN * 2 + 1];
data/zfs-linux-0.8.5/cmd/zstreamdump/zstreamdump.c:225:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iv[ZIO_DATA_IV_LEN * 2 + 1];
data/zfs-linux-0.8.5/cmd/zstreamdump/zstreamdump.c:226:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mac[ZIO_DATA_MAC_LEN * 2 + 1];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:162:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zo_pool[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:163:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zo_dir[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:164:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zo_alt_ztest[MAXNAMELEN];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:165:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zo_alt_libpath[MAXNAMELEN];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:306:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char od_name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:318:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zd_name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:597:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(buf, "ztest: ");
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:677:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nice_vdev_size[NN_NUMBUF_SZ];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:678:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nice_force_ganging[NN_NUMBUF_SZ];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:736:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[32];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:780:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char altdir[MAXNAMELEN] = { 0 };
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:782:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&ztest_opts_defaults, zo, sizeof (*zo));
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:1028:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open(path, O_RDWR | O_CREAT | O_TRUNC, 0666);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:1316:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ddname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:1663:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&lr->lr_common + 1, &itx->itx_lr + 1,
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:1680:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&lr->lr_common + 1, &itx->itx_lr + 1,
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:1713:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&lr->lr_common + 1, &itx->itx_lr + 1,
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:1728:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&lr->lr_common + 1, &itx->itx_lr + 1,
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:1744:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&lr->lr_common + 1, &itx->itx_lr + 1,
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:2009:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(data, abuf->b_data, length);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:2280:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(name, lr + lrsize, namesize);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:2437:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(data, lr + 1, size);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:3658:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(vd->vdev_path, O_RDWR)) == -1)
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:3896:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char oldnumbuf[NN_NUMBUF_SZ], newnumbuf[NN_NUMBUF_SZ];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:4035:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snapname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:4055:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snapname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:4075:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:4869:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy((caddr_t)bigbuf + (off - bigoff),
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:4872:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy((caddr_t)bigbuf + (off - bigoff),
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:4875:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy((caddr_t)bigbuf + (off - bigoff) +
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5019:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char propname[100], txgname[100];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5021:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *hc[2] = { "s.acl.h", ".s.open.h.hyLZlg" };
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5065:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(propname, "prop_%llu", (u_longlong_t)prop);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5066:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(txgname, "txg_%llu", (u_longlong_t)prop);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5127:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(propname, "prop_%llu", (u_longlong_t)prop);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5128:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(txgname, "txg_%llu", (u_longlong_t)prop);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5174:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5206:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20], string_value[20];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5260:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(name, string_value, namelen);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5634:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snapname[100];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5635:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fullname[100];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5636:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char clonename[100];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5637:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tag[100];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5638:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char osname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:5951:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(pathrand, O_RDWR);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:6427:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(bin, "/zdb/zdb");
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:6431:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(bin, "zdb");
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:6924:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:6973:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7274:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7395:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(timebuf,
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7398:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(timebuf, "%lluh%02llum%02llus", h, m, s);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7400:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(timebuf, "%llum%02llus", m, s);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7402:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(timebuf, "%llus", s);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7431:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *searchdirs[nsearch];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7543:18: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
ztest_fd_data = mkstemp(ztest_name_data);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7636:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *emptyargv[2] = { cmd, NULL };
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7637:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fd_data_str[12];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7728:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timebuf[100];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7729:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char numbuf[NN_NUMBUF_SZ];
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7781:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ztest_fd_rand = open(random_path, O_RDONLY);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7790:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&ztest_opts, ztest_shared_opts,
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7793:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ztest_fd_data = atoi(fd_data_str);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7795:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ztest_shared_opts, &ztest_opts, sizeof (ztest_opts));
data/zfs-linux-0.8.5/cmd/zvol_id/zvol_id_main.c:42:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/zvol_id/zvol_id_main.c:57:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zvol_name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/cmd/zvol_id/zvol_id_main.c:80:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(dev_name, O_RDONLY);
data/zfs-linux-0.8.5/include/libuutil_impl.h:112:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ulp_name[UU_LIST_POOL_MAXNAME];
data/zfs-linux-0.8.5/include/libuutil_impl.h:158:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char uap_name[UU_AVL_POOL_MAXNAME];
data/zfs-linux-0.8.5/include/libzfs.h:169:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char z_pname[MAXPATHLEN];
data/zfs-linux-0.8.5/include/libzfs.h:174:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char z_key[MAXPATHLEN]; /* name, such as joe */
data/zfs-linux-0.8.5/include/libzfs.h:182:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char z_setpoint[MAXPATHLEN];
data/zfs-linux-0.8.5/include/libzfs_impl.h:56:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char libzfs_action[1024];
data/zfs-linux-0.8.5/include/libzfs_impl.h:57:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char libzfs_desc[1024];
data/zfs-linux-0.8.5/include/libzfs_impl.h:72:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char libzfs_chassis_id[256];
data/zfs-linux-0.8.5/include/libzfs_impl.h:82:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zfs_name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/include/libzfs_impl.h:103:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zpool_name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/include/spl/sys/kstat.h:89:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ksm_name[KSTAT_STRLEN+1]; /* module name */
data/zfs-linux-0.8.5/include/spl/sys/kstat.h:102:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char kpe_name[KSTAT_STRLEN+1]; /* kstat name */
data/zfs-linux-0.8.5/include/spl/sys/kstat.h:103:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char kpe_module[KSTAT_STRLEN+1]; /* provider module name */
data/zfs-linux-0.8.5/include/spl/sys/kstat.h:115:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ks_class[KSTAT_STRLEN+1]; /* kstat class */
data/zfs-linux-0.8.5/include/spl/sys/kstat.h:132:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[KSTAT_STRLEN]; /* name of counter */
data/zfs-linux-0.8.5/include/spl/sys/kstat.h:135:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c[16]; /* 128-bit int */
data/zfs-linux-0.8.5/include/spl/sys/kstat.h:145:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char __pad[8]; /* 64-bit padding */
data/zfs-linux-0.8.5/include/spl/sys/kstat.h:181:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[KSTAT_STRLEN+1]; /* event name */
data/zfs-linux-0.8.5/include/spl/sys/sid.h:49:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(kd->kd_name, dom, len);
data/zfs-linux-0.8.5/include/spl/sys/strings.h:28:9: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define bcopy(src, dest, size) memmove(dest, src, size)
data/zfs-linux-0.8.5/include/spl/sys/sysmacros.h:144:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char spl_gitrev[64];
data/zfs-linux-0.8.5/include/spl/sys/vfs.h:43:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data[MAXFIDSZ]; /* data (variable len) */
data/zfs-linux-0.8.5/include/sys/crypto/common.h:44:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char crypto_mech_name_t[CRYPTO_MAX_MECH_NAME];
data/zfs-linux-0.8.5/include/sys/crypto/common.h:401:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char le_dev_name[MAXNAMELEN];
data/zfs-linux-0.8.5/include/sys/dbuf.h:387:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char __db_buf[32]; \
data/zfs-linux-0.8.5/include/sys/dbuf.h:390:10: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
(void) strcpy(__db_buf, "mdn"); \
data/zfs-linux-0.8.5/include/sys/ddt.h:162:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ddt_op_name[32];
data/zfs-linux-0.8.5/include/sys/dmu.h:954:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dds_origin[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/include/sys/dmu_objset.h:82:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char os_pad0[OBJSET_PHYS_SIZE_V2 - sizeof (dnode_phys_t)*3 -
data/zfs-linux-0.8.5/include/sys/dmu_objset.h:88:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char os_pad1[OBJSET_PHYS_SIZE_V3 - OBJSET_PHYS_SIZE_V2 -
data/zfs-linux-0.8.5/include/sys/dnode.h:592:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char __db_buf[32]; \
data/zfs-linux-0.8.5/include/sys/dnode.h:595:10: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
(void) strcpy(__db_buf, "mdn"); \
data/zfs-linux-0.8.5/include/sys/dsl_dataset.h:260:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ds_snapname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/include/sys/dsl_dir.h:119:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dd_myname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/include/sys/efi_partition.h:65:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char efi_gpt_Reserved2[LEN_EFI_PAD];
data/zfs-linux-0.8.5/include/sys/efi_partition.h:307:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char p_name[EFI_PART_NAME_LEN]; /* partition name */
data/zfs-linux-0.8.5/include/sys/fs/zfs.h:206:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char *zfs_userquota_prop_prefixes[ZFS_NUM_USERQUOTA_PROPS];
data/zfs-linux-0.8.5/include/sys/lua/lauxlib.h:136:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char initb[LUAL_BUFFERSIZE]; /* initial buffer */
data/zfs-linux-0.8.5/include/sys/lua/lua.h:412:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char short_src[LUA_IDSIZE]; /* (S) */
data/zfs-linux-0.8.5/include/sys/spa_impl.h:202:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spa_name[ZFS_MAX_DATASET_NAME_LEN]; /* pool name */
data/zfs-linux-0.8.5/include/sys/txg_impl.h:76:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tc_pad[8]; /* pad to fill 3 cache lines */
data/zfs-linux-0.8.5/include/sys/vdev_impl.h:108:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vdev_op_type[16];
data/zfs-linux-0.8.5/include/sys/vdev_impl.h:442:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vp_nvlist[VDEV_PHYS_SIZE - sizeof (zio_eck_t)];
data/zfs-linux-0.8.5/include/sys/vdev_impl.h:447:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vl_pad1[VDEV_PAD_SIZE]; /* 8K */
data/zfs-linux-0.8.5/include/sys/vdev_impl.h:448:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vl_pad2[VDEV_PAD_SIZE]; /* 8K */
data/zfs-linux-0.8.5/include/sys/vdev_impl.h:450:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vl_uberblock[VDEV_UBERBLOCK_RING]; /* 128K */
data/zfs-linux-0.8.5/include/sys/vdev_raidz_impl.h:72:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char *raidz_gen_name[RAIDZ_GEN_NUM];
data/zfs-linux-0.8.5/include/sys/vdev_raidz_impl.h:73:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char *raidz_rec_name[RAIDZ_REC_NUM];
data/zfs-linux-0.8.5/include/sys/vdev_raidz_impl.h:101:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[RAIDZ_IMPL_NAME_MAX]; /* Name of the implementation */
data/zfs-linux-0.8.5/include/sys/zap.h:365:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char za_name[ZAP_MAXNAMELEN];
data/zfs-linux-0.8.5/include/sys/zap_impl.h:56:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mze_name[MZAP_NAME_LEN];
data/zfs-linux-0.8.5/include/sys/zap_impl.h:194:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zn_normbuf[ZAP_MAXNAMELEN];
data/zfs-linux-0.8.5/include/sys/zfs_context.h:449:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tq_name[TASKQ_NAMELEN + 1];
data/zfs-linux-0.8.5/include/sys/zfs_ioctl.h:228:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char drr_toname[MAXNAMELEN];
data/zfs-linux-0.8.5/include/sys/zfs_ioctl.h:386:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zi_func[MAXNAMELEN];
data/zfs-linux-0.8.5/include/sys/zfs_ioctl.h:450:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zc_name[MAXPATHLEN]; /* name of pool or dataset */
data/zfs-linux-0.8.5/include/sys/zfs_ioctl.h:463:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zc_value[MAXPATHLEN * 2];
data/zfs-linux-0.8.5/include/sys/zfs_ioctl.h:464:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zc_string[MAXNAMELEN];
data/zfs-linux-0.8.5/include/sys/zfs_ioctl.h:492:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zu_domain[256];
data/zfs-linux-0.8.5/include/sys/zfs_project.h:55:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char fsx_pad[8];
data/zfs-linux-0.8.5/include/sys/zio.h:283:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char *zio_type_name[ZIO_TYPES];
data/zfs-linux-0.8.5/include/zfs_comutil.h:46:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char *zfs_history_event_names[ZFS_NUM_LEGACY_HISTORY_EVENTS];
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:238:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(path, "/proc/self/fd/%d", fd);
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:246:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_cname, "sd");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:252:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_cname, "hd");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:258:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_cname, "pseudo");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:260:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_dname, "md");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:265:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_cname, "vd");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:271:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_cname, "xvd");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:277:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_cname, "zd");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:279:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_dname, "zd");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:284:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_cname, "pseudo");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:286:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_dname, "dm-");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:291:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_cname, "pseudo");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:293:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_dname, "ram");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:298:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_cname, "pseudo");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:300:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_dname, "loop");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:305:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_cname, "nvme");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:307:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_dname, "nvme");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:319:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_dname, "unknown");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:320:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dki_info->dki_cname, "unknown");
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:991:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(buf, &mb, sizeof (mb));
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:1399:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&vtoc->efi_parts[i].p_uguid,
data/zfs-linux-0.8.5/lib/libshare/libshare.c:114:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[512];
data/zfs-linux-0.8.5/lib/libshare/libshare.c:117:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(ZFS_SHARETAB, "r");
data/zfs-linux-0.8.5/lib/libshare/libshare.c:182:12: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
temp_fd = mkstemp(tempfile);
data/zfs-linux-0.8.5/lib/libshare/libshare.c:231:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mountpoint[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libshare/libshare.c:232:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char shareopts[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libshare/libshare.c:562:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char errstr[32];
data/zfs-linux-0.8.5/lib/libshare/nfs.c:238:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[6];
data/zfs-linux-0.8.5/lib/libshare/nfs.c:446:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[4];
data/zfs-linux-0.8.5/lib/libshare/nfs.c:526:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[512];
data/zfs-linux-0.8.5/lib/libshare/nfs.c:676:25: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
nfs_exportfs_temp_fd = mkstemp(nfs_exportfs_tempfile);
data/zfs-linux-0.8.5/lib/libshare/smb.c:77:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file_path[PATH_MAX], line[512], *token, *key, *value;
data/zfs-linux-0.8.5/lib/libshare/smb.c:107:24: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((share_file_fp = fopen(file_path, "r")) == NULL) {
data/zfs-linux-0.8.5/lib/libshare/smb.c:175:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
shares->guest_ok = atoi(guest_ok);
data/zfs-linux-0.8.5/lib/libshare/smb.c:219:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[10], *pos;
data/zfs-linux-0.8.5/lib/libshare/smb.c:220:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[SMB_NAME_MAX], comment[SMB_COMMENT_MAX];
data/zfs-linux-0.8.5/lib/libshare/smb.c:297:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[7];
data/zfs-linux-0.8.5/lib/libshare/smb.h:39:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[SMB_NAME_MAX]; /* Share name */
data/zfs-linux-0.8.5/lib/libshare/smb.h:40:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[PATH_MAX]; /* Share path */
data/zfs-linux-0.8.5/lib/libshare/smb.h:41:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char comment[SMB_COMMENT_MAX]; /* Share's comment */
data/zfs-linux-0.8.5/lib/libspl/getexecname.c:36:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char execname[PATH_MAX + 1] = "";
data/zfs-linux-0.8.5/lib/libspl/gethostid.c:48:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen("/sys/module/spl/parameters/spl_hostid", "r");
data/zfs-linux-0.8.5/lib/libspl/gethostid.c:77:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open("/etc/hostid", O_RDONLY);
data/zfs-linux-0.8.5/lib/libspl/getmntany.c:43:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
__thread char buf[BUFSIZE];
data/zfs-linux-0.8.5/lib/libspl/include/sys/dkio.h:52:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dki_cname[DK_DEVLEN]; /* controller name (no unit #) */
data/zfs-linux-0.8.5/lib/libspl/include/sys/dkio.h:60:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dki_dname[DK_DEVLEN]; /* drive name (no unit #) */
data/zfs-linux-0.8.5/lib/libspl/include/sys/dkio.h:382:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vdr_side_name[VOL_SIDENAME];
data/zfs-linux-0.8.5/lib/libspl/include/sys/dkio.h:403:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vdr_side_name[VOL_SIDENAME];
data/zfs-linux-0.8.5/lib/libspl/include/sys/dkio.h:440:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dkd_amodel[DKD_ATA_MODEL]; /* 40 bytes */
data/zfs-linux-0.8.5/lib/libspl/include/sys/dkio.h:441:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dkd_afwver[DKD_ATA_FWVER]; /* 8 bytes */
data/zfs-linux-0.8.5/lib/libspl/include/sys/dkio.h:442:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dkd_aserial[DKD_ATA_SERIAL]; /* 20 bytes */
data/zfs-linux-0.8.5/lib/libspl/include/sys/dkio.h:445:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dkd_svendor[DKD_SCSI_VENDOR]; /* 8 bytes */
data/zfs-linux-0.8.5/lib/libspl/include/sys/dkio.h:446:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dkd_sproduct[DKD_SCSI_PRODUCT]; /* 16 bytes */
data/zfs-linux-0.8.5/lib/libspl/include/sys/dkio.h:447:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dkd_sfwver[DKD_SCSI_REVLEVEL]; /* 4 bytes */
data/zfs-linux-0.8.5/lib/libspl/include/sys/dkio.h:448:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dkd_sserial[DKD_SCSI_SERIAL]; /* 12 bytes */
data/zfs-linux-0.8.5/lib/libspl/include/sys/dklabel.h:126:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v_volume[LEN_DKL_VVOL]; /* volume name */
data/zfs-linux-0.8.5/lib/libspl/include/sys/dklabel.h:132:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v_asciilabel[LEN_DKL_ASCII]; /* for compatibility */
data/zfs-linux-0.8.5/lib/libspl/include/sys/dklabel.h:135:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v_volume[LEN_DKL_VVOL]; /* volume name */
data/zfs-linux-0.8.5/lib/libspl/include/sys/dklabel.h:185:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dkl_pad[LEN_DKL_PAD]; /* unused part of 512 bytes */
data/zfs-linux-0.8.5/lib/libspl/include/sys/dklabel.h:187:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dkl_asciilabel[LEN_DKL_ASCII]; /* for compatibility */
data/zfs-linux-0.8.5/lib/libspl/include/sys/dklabel.h:191:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dkl_pad[LEN_DKL_PAD]; /* unused part of 512 bytes */
data/zfs-linux-0.8.5/lib/libspl/include/sys/dktp/fdisk.h:147:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bootinst[BOOTSZ];
data/zfs-linux-0.8.5/lib/libspl/include/sys/dktp/fdisk.h:151:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parts[FD_NUMPART * sizeof (struct ipart)];
data/zfs-linux-0.8.5/lib/libspl/include/sys/kstat.h:75:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ks_module[KSTAT_STRLEN]; /* provider module name */
data/zfs-linux-0.8.5/lib/libspl/include/sys/kstat.h:78:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ks_name[KSTAT_STRLEN]; /* kstat name */
data/zfs-linux-0.8.5/lib/libspl/include/sys/kstat.h:80:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ks_class[KSTAT_STRLEN]; /* kstat class */
data/zfs-linux-0.8.5/lib/libspl/include/sys/kstat.h:106:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ks_module[KSTAT_STRLEN];
data/zfs-linux-0.8.5/lib/libspl/include/sys/kstat.h:109:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ks_name[KSTAT_STRLEN];
data/zfs-linux-0.8.5/lib/libspl/include/sys/kstat.h:111:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ks_class[KSTAT_STRLEN];
data/zfs-linux-0.8.5/lib/libspl/include/sys/kstat.h:446:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[KSTAT_STRLEN]; /* name of counter */
data/zfs-linux-0.8.5/lib/libspl/include/sys/kstat.h:449:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c[16]; /* enough for 128-bit ints */
data/zfs-linux-0.8.5/lib/libspl/include/sys/kstat.h:458:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char __pad[8]; /* 64-bit padding */
data/zfs-linux-0.8.5/lib/libspl/include/sys/kstat.h:691:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[KSTAT_STRLEN]; /* event name */
data/zfs-linux-0.8.5/lib/libspl/include/sys/tzfile.h:52:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tzh_reserved[24]; /* reserved for future use */
data/zfs-linux-0.8.5/lib/libspl/include/sys/tzfile.h:53:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tzh_ttisstdcnt[4]; /* coded number of trans. time flags */
data/zfs-linux-0.8.5/lib/libspl/include/sys/tzfile.h:54:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tzh_leapcnt[4]; /* coded number of leap seconds */
data/zfs-linux-0.8.5/lib/libspl/include/sys/tzfile.h:55:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tzh_timecnt[4]; /* coded number of transition times */
data/zfs-linux-0.8.5/lib/libspl/include/sys/tzfile.h:56:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tzh_typecnt[4]; /* coded number of local time types */
data/zfs-linux-0.8.5/lib/libspl/include/sys/tzfile.h:57:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tzh_charcnt[4]; /* coded number of abbr. chars */
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:110:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v_volume[LEN_DKL_VVOL]; /* volume name */
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:116:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v_asciilabel[LEN_DKL_ASCII]; /* for compatibility */
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:132:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v_volume[LEN_DKL_VVOL]; /* volume name */
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:139:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v_asciilabel[LEN_DKL_ASCII]; /* for compatibility */
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:151:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(extv.v_volume, v.v_volume, LEN_DKL_VVOL); \
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:163:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(extv.v_asciilabel, v.v_asciilabel, LEN_DKL_ASCII); \
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:174:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(v.v_volume, extv.v_volume, LEN_DKL_VVOL); \
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:188:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(v.v_asciilabel, extv.v_asciilabel, LEN_DKL_ASCII); \
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:204:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v_volume[LEN_DKL_VVOL]; /* volume name */
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:210:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v_asciilabel[LEN_DKL_ASCII]; /* for compatibility */
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:221:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(v32.v_volume, v.v_volume, LEN_DKL_VVOL); \
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:235:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(v32.v_asciilabel, v.v_asciilabel, LEN_DKL_ASCII); \
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:246:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(v32.v_volume, extv.v_volume, LEN_DKL_VVOL); \
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:259:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(v32.v_asciilabel, extv.v_asciilabel, LEN_DKL_ASCII); \
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:271:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(v.v_volume, v32.v_volume, LEN_DKL_VVOL); \
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:289:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(v.v_asciilabel, v32.v_asciilabel, LEN_DKL_ASCII); \
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:300:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(extv.v_volume, v32.v_volume, LEN_DKL_VVOL); \
data/zfs-linux-0.8.5/lib/libspl/include/sys/vtoc.h:318:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(extv.v_asciilabel, v32.v_asciilabel, LEN_DKL_ASCII); \
data/zfs-linux-0.8.5/lib/libspl/include/umem.h:72:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cache_name[UMEM_CACHE_NAMELEN + 1];
data/zfs-linux-0.8.5/lib/libspl/strlcat.c:54:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(dst + l1, src, copied);
data/zfs-linux-0.8.5/lib/libspl/strlcpy.c:51:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(dst, src, copied);
data/zfs-linux-0.8.5/lib/libspl/timestamp.c:56:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dstr[64];
data/zfs-linux-0.8.5/lib/libuutil/uu_alloc.c:64:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(buf, str, sz);
data/zfs-linux-0.8.5/lib/libuutil/uu_alloc.c:85:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(p, s, len);
data/zfs-linux-0.8.5/lib/libuutil/uu_alloc.c:103:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(p, buf, sz);
data/zfs-linux-0.8.5/lib/libuutil/uu_alloc.c:111:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char attic[1];
data/zfs-linux-0.8.5/lib/libuutil/uu_open.c:58:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = open(fname, O_CREAT | O_EXCL | O_RDWR, 0600);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_changelist.c:168:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char shareopts[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_changelist.c:309:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char newname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_changelist.c:476:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char property[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_changelist.c:477:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char where[64];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_changelist.c:568:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char propa[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_changelist.c:569:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char propb[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_changelist.c:623:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char property[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:71:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
rand = open("/dev/urandom", O_RDONLY);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:301:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = fopen(&keylocation[7], "r");
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:456:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(key_material, key, WRAPPING_KEY_LEN);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:642:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prop_encroot[MAXNAMELEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:674:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:844:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:945:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:948:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prop_keylocation[MAXNAMELEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:949:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prop_encroot[MAXNAMELEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:1113:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:1114:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prop_encroot[MAXNAMELEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:1249:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:1259:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char origin_name[MAXNAMELEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:1260:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prop_keylocation[MAXNAMELEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:1261:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parent_name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:592:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fsname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:688:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:717:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dsname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:1069:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char domain[128];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:1210:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:1235:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:1238:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char state[64] = "";
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:1539:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:1856:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:1890:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:2072:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:2541:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:2596:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pool[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:2764:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3089:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3487:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parent[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3490:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3667:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3711:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3712:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parent[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3750:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pool_path[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3924:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3981:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3989:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4016:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parent[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4018:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4103:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snapname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4105:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4162:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4183:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4217:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4221:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pool[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4299:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fsname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4302:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4445:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4502:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parent[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4504:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4726:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4945:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4990:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5020:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5044:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5110:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5146:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5226:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5291:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5343:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:5553:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ncopies = atoi(strval);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:68:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:98:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(sb, &zc.zc_stat, sizeof (zfs_stat_t));
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:266:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fobjname[MAXPATHLEN], tobjname[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:387:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fobjname[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:493:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fullpath[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:617:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char origin[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:740:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
di->cleanupfd = open(ZFS_DEV, O_RDWR);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:760:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_iter.c:225:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_iter.c:410:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snapname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_iter.c:430:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snapname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_iter.c:559:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mnt_prop[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_iter.c:566:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((mnttab = fopen(MNTTAB, "r")) == NULL)
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:139:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXPATHLEN], *tab;
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:311:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sourceloc[MAXNAMELEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:358:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[9] = {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:395:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[7] = {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:476:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mountpoint[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:477:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mntopts[MNT_LINE_MAX];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:478:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char overlay[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:607:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:862:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mountpoint[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:863:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char shareopts[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:864:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sourcestr[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:1135:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mountpoint[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:1249:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mounta[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:1250:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mountb[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:1324:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parent[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:1325:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char child[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:1431:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mountpoint[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:1449:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char child[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:454:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bootfs[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:755:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:811:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1225:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1348:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1394:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1435:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1456:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1480:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1538:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1585:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1634:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timestr[128];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1687:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timestr[128];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1867:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1934:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desc[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1935:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char aux[256];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2128:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[MAXNAMELEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2169:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2252:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2325:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2800:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(path, O_RDWR|O_DIRECT)) < 0) {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2876:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2920:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2962:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3012:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3047:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3101:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3267:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3365:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3580:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3653:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3673:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3706:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3782:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3805:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3904:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(path, O_RDONLY)) < 0)
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3963:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[PATH_BUF_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3964:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[PATH_BUF_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:4439:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:4496:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dsname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:4550:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char diskname[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:4558:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(diskname, O_RDONLY|O_DIRECT)) >= 0) {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:4610:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(path, O_RDONLY|O_DIRECT)) < 0)
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:4641:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open("/dev/urandom", O_RDONLY);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:4662:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:4668:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:4692:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(path, O_RDWR|O_DIRECT|O_EXCL)) < 0) {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:821:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:857:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char guidstring[64];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:971:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snapname[MAXPATHLEN] = { 0 };
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1064:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prevsnap[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1077:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char holdtag[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1093:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1165:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1245:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1317:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1416:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fromds[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1523:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snapname[MAXPATHLEN] = { 0 };
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1760:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1766:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1876:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1938:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2122:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
sdd.cleanup_fd = open(ZFS_DEV, O_RDWR);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2150:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2241:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2390:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char origin[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2664:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2719:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2775:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char top_zfs[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2792:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char keylocation[MAXNAMELEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2793:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fsname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2913:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char newname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2914:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char guidname[32];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3026:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3040:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(guidname, "%llu",
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3067:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3068:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tryname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3098:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(guidname, "%llu",
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3132:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(guidname, "%llu",
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3152:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tryname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3221:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tofs[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3222:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sendfs[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3223:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3442:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3543:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char target_fs[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3557:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char token_buf[ZFS_MAXPROPLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3595:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3784:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3799:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char destsnap[MAXPATHLEN * 2];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3800:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char origin[MAXNAMELEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3801:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3802:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp_keylocation[MAXNAMELEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4030:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char suffix[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4064:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snap[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4346:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4600:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[64];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4601:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[64];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4692:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[1024];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4782:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nonpackage_sendfs[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4850:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *procf = fopen("/proc/sys/fs/pipe-max-size", "r");
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4873:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
cleanup_fd = open(ZFS_DEV, O_RDWR);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:718:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[256];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:720:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path, path_prefix, sizeof (path_prefix) - 1);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:789:8: [2] (race) vfork:
On some old systems, vfork() permits race conditions, and it's very
difficult to use correctly (CWE-362). Use fork() instead.
pid = vfork();
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:792:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
devnull_fd = open("/dev/null", O_WRONLY);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:917:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[4] = {"/sbin/modprobe", "-q", (char *)module, (char *)0};
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:969:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(ZFS_DEV, O_RDWR);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1001:24: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((hdl->libzfs_fd = open(ZFS_DEV, O_RDWR)) < 0) {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1009:28: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((hdl->libzfs_mnttab = fopen(MNTTAB, "r")) == NULL) {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1016:25: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
hdl->libzfs_sharetab = fopen(ZFS_SHARETAB, "r");
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1382:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1982:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(ZFS_SYSFS_DIR "/version", O_RDONLY)) == -1)
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:2008:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zver_userland[128];
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:2009:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zver_kernel[128];
data/zfs-linux-0.8.5/lib/libzfs_core/libzfs_core.c:138:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
g_fd = open(ZFS_DEV, O_RDWR);
data/zfs-linux-0.8.5/lib/libzfs_core/libzfs_core.c:364:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pool[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs_core/libzfs_core.c:416:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pool[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs_core/libzfs_core.c:443:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fs[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs_core/libzfs_core.c:523:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pool[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs_core/libzfs_core.c:570:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pool[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs_core/libzfs_core.c:744:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fsname[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzfs_core/libzfs_core.c:1100:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pool[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzfs_core/libzfs_core.c:1163:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pool[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:52:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hw_serial[HW_HOSTID_LEN];
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:105:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
stksize = MAX(atoi(stkstr), TS_STACK_MIN);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:862:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char ce_prefix[CE_IGNORE][10] = { "", "NOTICE: ", "WARNING: ", "" };
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:863:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char ce_suffix[CE_IGNORE][2] = { "", "\n", "\n", "" };
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:1009:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
VERIFY((random_fd = open(random_path, O_RDONLY)) != -1);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:1010:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
VERIFY((urandom_fd = open(urandom_path, O_RDONLY)) != -1);
data/zfs-linux-0.8.5/lib/libzpool/util.c:54:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char used[6], avail[6];
data/zfs-linux-0.8.5/lib/libzpool/util.c:55:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rops[6], wops[6], rbytes[6], wbytes[6], rerr[6], werr[6], cerr[6];
data/zfs-linux-0.8.5/lib/libzpool/util.c:68:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bias_suffix[32];
data/zfs-linux-0.8.5/lib/libzpool/util.c:226:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(ZFS_DEV, O_RDWR);
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:57:10: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
(void) strcat(path, "-part1");
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:64:11: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
(void) strcat(path, "p1");
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:127:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path_name[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:140:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
dir = (char *)zpool_default_import_path[i];
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:162:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
dir = (char *)zpool_default_import_path[i];
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:183:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path_name[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:184:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmp_name[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:313:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(dev_name, O_RDONLY | O_DIRECT)) < 0)
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:408:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:603:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nodepath[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:90:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lpc_desc[1024];
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:112:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char action[1024];
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:223:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vds_devid[128];
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:224:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vds_devphys[128];
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:238:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char devbyid[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:418:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nodepath[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:520:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nodepath[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:1601:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(rn->rn_name, O_RDONLY | O_DIRECT);
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:1603:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(rn->rn_name, O_RDONLY);
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:1756:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:1799:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAXPATHLEN];
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:1897:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char *
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:2139:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(slice->rn_name, O_RDONLY | O_EXCL);
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:2203:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(cachefile, O_RDONLY)) < 0) {
data/zfs-linux-0.8.5/lib/libzutil/zutil_nicenum.c:40:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *units[3][7] = {
data/zfs-linux-0.8.5/lib/libzutil/zutil_pool.c:37:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char refcnt[6];
data/zfs-linux-0.8.5/lib/libzutil/zutil_pool.c:38:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blocks[6], lsize[6], psize[6], dsize[6];
data/zfs-linux-0.8.5/lib/libzutil/zutil_pool.c:39:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ref_blocks[6], ref_lsize[6], ref_psize[6], ref_dsize[6];
data/zfs-linux-0.8.5/lib/libzutil/zutil_pool.c:45:10: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
(void) strcpy(refcnt, "Total");
data/zfs-linux-0.8.5/module/icp/algs/aes/aes_impl.c:84:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(cipherKey, keyarr.ka32, keysize);
data/zfs-linux-0.8.5/module/icp/algs/aes/aes_impl.c:135:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(pt, &buffer, AES_BLOCK_LEN);
data/zfs-linux-0.8.5/module/icp/algs/aes/aes_impl.c:146:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&buffer, ct, AES_BLOCK_LEN);
data/zfs-linux-0.8.5/module/icp/algs/aes/aes_impl.c:182:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ct, &buffer, AES_BLOCK_LEN);
data/zfs-linux-0.8.5/module/icp/algs/aes/aes_impl.c:193:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&buffer, pt, AES_BLOCK_LEN);
data/zfs-linux-0.8.5/module/icp/algs/aes/aes_impl.c:363:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char req_name[AES_IMPL_NAME_MAX];
data/zfs-linux-0.8.5/module/icp/algs/edonr/edonr.c:467:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(i224p2, hashState224(state)->DoublePipe,
data/zfs-linux-0.8.5/module/icp/algs/edonr/edonr.c:475:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(i256p2, hashState256(state)->DoublePipe,
data/zfs-linux-0.8.5/module/icp/algs/edonr/edonr.c:483:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(i384p2, hashState384(state)->DoublePipe,
data/zfs-linux-0.8.5/module/icp/algs/edonr/edonr.c:491:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(i512p2, hashState224(state)->DoublePipe,
data/zfs-linux-0.8.5/module/icp/algs/edonr/edonr.c:517:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(data, hashState256(state)->LastPart
data/zfs-linux-0.8.5/module/icp/algs/edonr/edonr.c:539:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(data32, hashState256(state)->LastPart, LastBytes);
data/zfs-linux-0.8.5/module/icp/algs/edonr/edonr.c:552:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(data, hashState512(state)->LastPart
data/zfs-linux-0.8.5/module/icp/algs/edonr/edonr.c:574:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(data64, hashState512(state)->LastPart, LastBytes);
data/zfs-linux-0.8.5/module/icp/algs/edonr/edonr.c:679:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(hashState256(state)->DoublePipe + 9, hashval,
data/zfs-linux-0.8.5/module/icp/algs/edonr/edonr.c:693:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(hashState256(state)->DoublePipe + 8, hashval,
data/zfs-linux-0.8.5/module/icp/algs/edonr/edonr.c:707:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(hashState384(state)->DoublePipe + 10, hashval,
data/zfs-linux-0.8.5/module/icp/algs/edonr/edonr.c:721:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(hashState512(state)->DoublePipe + 8, hashval,
data/zfs-linux-0.8.5/module/icp/algs/modes/cbc.c:54:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap,
data/zfs-linux-0.8.5/module/icp/algs/modes/cbc.c:74:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, &((uint8_t *)ctx->cbc_remainder)
data/zfs-linux-0.8.5/module/icp/algs/modes/cbc.c:94:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blockp, ctx->cbc_copy_to,
data/zfs-linux-0.8.5/module/icp/algs/modes/cbc.c:96:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blockp + ctx->cbc_remainder_len, datap,
data/zfs-linux-0.8.5/module/icp/algs/modes/cbc.c:113:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lastp, out_data_1, out_data_1_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/cbc.c:115:6: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lastp + out_data_1_len,
data/zfs-linux-0.8.5/module/icp/algs/modes/cbc.c:136:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, ctx->cbc_remainder, remainder);
data/zfs-linux-0.8.5/module/icp/algs/modes/cbc.c:181:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap,
data/zfs-linux-0.8.5/module/icp/algs/modes/cbc.c:201:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, &((uint8_t *)ctx->cbc_remainder)
data/zfs-linux-0.8.5/module/icp/algs/modes/cbc.c:233:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blockp, out_data_1, out_data_1_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/cbc.c:235:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blockp + out_data_1_len, out_data_2,
data/zfs-linux-0.8.5/module/icp/algs/modes/cbc.c:244:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blockp, ctx->cbc_copy_to, ctx->cbc_remainder_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/cbc.c:245:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blockp + ctx->cbc_remainder_len, datap, need);
data/zfs-linux-0.8.5/module/icp/algs/modes/cbc.c:260:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, ctx->cbc_remainder, remainder);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:62:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap,
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:84:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, &((uint8_t *)ctx->ccm_remainder)
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:131:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blockp, ctx->ccm_copy_to,
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:133:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blockp + ctx->ccm_remainder_len, datap,
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:144:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lastp, out_data_1, out_data_1_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:146:6: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lastp + out_data_1_len,
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:167:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, ctx->ccm_remainder, remainder);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:241:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx->ccm_remainder, macp, ctx->ccm_remainder_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:272:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(macp, out_data_1, ctx->ccm_remainder_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:273:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ccm_mac_p, out_data_1 + ctx->ccm_remainder_len,
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:281:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(macp, out_data_1, out_data_1_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:286:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy((uint8_t *)macp + out_data_1_len,
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:288:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ccm_mac_p, out_data_2 + data_2_len_used,
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:291:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(macp, out_data_1, out_data_1_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:294:6: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ccm_mac_p, out_data_2,
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:304:6: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ccm_mac_p,
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:307:6: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ccm_mac_p + len_not_used,
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:316:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ccm_mac_p, out_data_1, out_data_1_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:318:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ccm_mac_p + out_data_1_len, out_data_2,
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:386:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, tmp + pm_len, length);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:419:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(data + pt_part, ctx->ccm_mac_input_buf, mac_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:426:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, &((uint8_t *)ctx->ccm_remainder)
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:439:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap,
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:455:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, &((uint8_t *)ctx->ccm_remainder)
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:506:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, ctx->ccm_remainder, remainder);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:556:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(pt, macp, mac_remain);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:668:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(nonce, &(b0[1]), nonceSize);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:687:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(nonce, &(cb[1]), nonceSize);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:819:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(encoded_a, authp, encoded_a_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:825:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(auth_data, authp+encoded_a_len, processed);
data/zfs-linux-0.8.5/module/icp/algs/modes/ccm.c:842:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&(auth_data[processed]), authp, remainder);
data/zfs-linux-0.8.5/module/icp/algs/modes/ctr.c:55:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap,
data/zfs-linux-0.8.5/module/icp/algs/modes/ctr.c:75:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, &((uint8_t *)ctx->ctr_remainder)
data/zfs-linux-0.8.5/module/icp/algs/modes/ctr.c:116:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lastp, ctx->ctr_copy_to,
data/zfs-linux-0.8.5/module/icp/algs/modes/ctr.c:118:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lastp + ctx->ctr_remainder_len, datap,
data/zfs-linux-0.8.5/module/icp/algs/modes/ctr.c:126:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lastp, out_data_1, out_data_1_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/ctr.c:128:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lastp + out_data_1_len, out_data_2,
data/zfs-linux-0.8.5/module/icp/algs/modes/ctr.c:147:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, ctx->ctr_remainder, remainder);
data/zfs-linux-0.8.5/module/icp/algs/modes/ctr.c:189:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(p, out_data_1, out_data_1_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/ctr.c:191:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy((uint8_t *)p + out_data_1_len,
data/zfs-linux-0.8.5/module/icp/algs/modes/ecb.c:52:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap,
data/zfs-linux-0.8.5/module/icp/algs/modes/ecb.c:72:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, &((uint8_t *)ctx->ecb_remainder)
data/zfs-linux-0.8.5/module/icp/algs/modes/ecb.c:87:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blockp, ctx->ecb_copy_to,
data/zfs-linux-0.8.5/module/icp/algs/modes/ecb.c:89:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blockp + ctx->ecb_remainder_len, datap,
data/zfs-linux-0.8.5/module/icp/algs/modes/ecb.c:98:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lastp, out_data_1, out_data_1_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/ecb.c:100:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lastp + out_data_1_len, out_data_2,
data/zfs-linux-0.8.5/module/icp/algs/modes/ecb.c:119:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, ctx->ecb_remainder, remainder);
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:109:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap,
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:130:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, &((uint8_t *)ctx->gcm_remainder)
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:165:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blockp, ctx->gcm_copy_to,
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:167:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blockp + ctx->gcm_remainder_len, datap,
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:178:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lastp, out_data_1, out_data_1_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:180:6: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lastp + out_data_1_len,
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:204:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, ctx->gcm_remainder, remainder);
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:327:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, (uint8_t *)ctx->gcm_tmp, ctx->gcm_remainder_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:359:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx->gcm_pt_buf, new, ctx->gcm_pt_buf_len);
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:366:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(data, &ctx->gcm_pt_buf[ctx->gcm_processed_data_len],
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:405:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blockp, ctx->gcm_remainder, remainder);
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:503:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(iv, cb, 12);
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:515:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&(iv[processed]), cb, remainder);
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:573:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&(auth_data[processed]), authp, remainder);
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:909:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char req_name[GCM_IMPL_NAME_MAX];
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:1154:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, (uint8_t *)ctx->gcm_remainder +
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:1164:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, (uint8_t *)ctx->gcm_remainder +
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:1254:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, ctx->gcm_remainder, bleft);
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:1412:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, lastb, bleft);
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:1489:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(iv, cb, 12);
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:1495:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(cb, ctx->gcm_J0, sizeof (ctx->gcm_J0));
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:1534:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, authp, incomp);
data/zfs-linux-0.8.5/module/icp/algs/modes/gcm.c:1548:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char val_rounded[16];
data/zfs-linux-0.8.5/module/icp/algs/sha1/sha1.c:169:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(input, &ctx->buf_un.buf8[buf_index], buf_len);
data/zfs-linux-0.8.5/module/icp/algs/sha1/sha1.c:200:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&input[i], &ctx->buf_un.buf8[buf_index], input_len - i);
data/zfs-linux-0.8.5/module/icp/algs/sha1/sha1.c:371:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blk, ctx->buf_un.buf32, sizeof (ctx->buf_un.buf32));
data/zfs-linux-0.8.5/module/icp/algs/sha2/sha2.c:193:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blk, ctx->buf_un.buf32, sizeof (ctx->buf_un.buf32));
data/zfs-linux-0.8.5/module/icp/algs/sha2/sha2.c:409:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(blk, ctx->buf_un.buf64, sizeof (ctx->buf_un.buf64));
data/zfs-linux-0.8.5/module/icp/algs/sha2/sha2.c:833:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(input, &ctx->buf_un.buf8[buf_index], buf_len);
data/zfs-linux-0.8.5/module/icp/algs/sha2/sha2.c:887:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&input[i], &ctx->buf_un.buf8[buf_index], input_len - i);
data/zfs-linux-0.8.5/module/icp/algs/sha2/sha2.c:939:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(last, (uint8_t *)digest + 24, 4);
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:39:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(SKEIN_256_IV_256, ctx->X, sizeof (ctx->X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:42:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(SKEIN_256_IV_224, ctx->X, sizeof (ctx->X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:45:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(SKEIN_256_IV_160, ctx->X, sizeof (ctx->X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:48:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(SKEIN_256_IV_128, ctx->X, sizeof (ctx->X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:174:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(msg, &ctx->b[ctx->h.bCnt], n);
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:202:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(msg, &ctx->b[ctx->h.bCnt], msgByteCnt);
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:236:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx->X, X, sizeof (X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:275:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(SKEIN_512_IV_512, ctx->X, sizeof (ctx->X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:278:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(SKEIN_512_IV_384, ctx->X, sizeof (ctx->X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:281:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(SKEIN_512_IV_256, ctx->X, sizeof (ctx->X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:284:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(SKEIN_512_IV_224, ctx->X, sizeof (ctx->X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:410:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(msg, &ctx->b[ctx->h.bCnt], n);
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:438:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(msg, &ctx->b[ctx->h.bCnt], msgByteCnt);
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:472:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx->X, X, sizeof (X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:511:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(SKEIN1024_IV_512, ctx->X, sizeof (ctx->X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:514:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(SKEIN1024_IV_384, ctx->X, sizeof (ctx->X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:517:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(SKEIN1024_IV_1024, ctx->X, sizeof (ctx->X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:643:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(msg, &ctx->b[ctx->h.bCnt], n);
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:671:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(msg, &ctx->b[ctx->h.bCnt], msgByteCnt);
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:705:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx->X, X, sizeof (X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:813:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx->X, X, sizeof (X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:853:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx->X, X, sizeof (X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein.c:893:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx->X, X, sizeof (X));
data/zfs-linux-0.8.5/module/icp/algs/skein/skein_port.h:55:51: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define Skein_Put64_LSB_First(dst08, src64, bCnt) bcopy(src64, dst08, bCnt)
data/zfs-linux-0.8.5/module/icp/algs/skein/skein_port.h:57:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(src08, dst64, 8 * (wCnt))
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:443:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(mech_info, &prov_mech->pm_mech_info, sizeof (crypto_mech_info_t));
data/zfs-linux-0.8.5/module/icp/core/kcf_prov_lib.c:80:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datap, buf, cur_len);
data/zfs-linux-0.8.5/module/icp/core/kcf_prov_lib.c:84:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(buf, datap, cur_len);
data/zfs-linux-0.8.5/module/icp/core/kcf_prov_lib.c:130:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(buf, (uchar_t *)(output->cd_raw.iov_base +
data/zfs-linux-0.8.5/module/icp/core/kcf_prov_tabs.c:573:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(p, final_buffer, final_size);
data/zfs-linux-0.8.5/module/icp/include/aes/aes_impl.h:192:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[AES_IMPL_NAME_MAX];
data/zfs-linux-0.8.5/module/icp/include/modes/gcm_impl.h:53:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[GCM_IMPL_NAME_MAX];
data/zfs-linux-0.8.5/module/icp/include/sys/crypto/elfsign.h:64:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[MAXPATHLEN]; /* For request */
data/zfs-linux-0.8.5/module/icp/include/sys/crypto/elfsign.h:84:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filesig_data[1];
data/zfs-linux-0.8.5/module/icp/include/sys/crypto/elfsign.h:93:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filesig_v1_data[1];
data/zfs-linux-0.8.5/module/icp/include/sys/crypto/elfsign.h:100:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filesig_v3_data[1];
data/zfs-linux-0.8.5/module/icp/include/sys/crypto/ioctladmin.h:60:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char di_dev_name[MAXNAMELEN];
data/zfs-linux-0.8.5/module/icp/include/sys/crypto/ioctladmin.h:68:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char si_name[MAXNAMELEN];
data/zfs-linux-0.8.5/module/icp/include/sys/crypto/ioctladmin.h:75:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dd_dev_name[MAXNAMELEN];
data/zfs-linux-0.8.5/module/icp/include/sys/crypto/ioctladmin.h:83:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sd_name[MAXNAMELEN];
data/zfs-linux-0.8.5/module/icp/include/sys/crypto/ioctladmin.h:90:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sm_name[MAXNAMELEN];
data/zfs-linux-0.8.5/module/icp/include/sys/crypto/ioctladmin.h:95:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sc_name[MAXNAMELEN];
data/zfs-linux-0.8.5/module/icp/include/sys/modctl.h:207:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char drvname[MAXMODCONFNAME];
data/zfs-linux-0.8.5/module/icp/include/sys/modctl.h:208:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char drvclass[MAXMODCONFNAME];
data/zfs-linux-0.8.5/module/icp/include/sys/modctl.h:224:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char drvname[MAXMODCONFNAME];
data/zfs-linux-0.8.5/module/icp/include/sys/modctl.h:225:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char drvclass[MAXMODCONFNAME];
data/zfs-linux-0.8.5/module/icp/include/sys/modctl.h:266:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msi_linkinfo[MODMAXLINKINFOLEN]; /* name in linkage struct */
data/zfs-linux-0.8.5/module/icp/include/sys/modctl.h:284:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mi_name[MODMAXNAMELEN]; /* name of module */
data/zfs-linux-0.8.5/module/icp/include/sys/modctl.h:297:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msi_linkinfo[MODMAXLINKINFOLEN32]; /* name in linkage struct */
data/zfs-linux-0.8.5/module/icp/include/sys/modctl.h:310:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mi_name[MODMAXNAMELEN32]; /* name of module */
data/zfs-linux-0.8.5/module/icp/io/sha1_mod.c:68:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy((m)->cm_param, &tmp_ulong, sizeof (ulong_t)); \
data/zfs-linux-0.8.5/module/icp/io/sha1_mod.c:370:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digest_scratch, (uchar_t *)digest->
data/zfs-linux-0.8.5/module/icp/io/sha1_mod.c:395:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digest_tmp + scratch_offset,
data/zfs-linux-0.8.5/module/icp/io/sha1_mod.c:674:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(keyval, ipad, length_in_bytes);
data/zfs-linux-0.8.5/module/icp/io/sha1_mod.c:675:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(keyval, opad, length_in_bytes);
data/zfs-linux-0.8.5/module/icp/io/sha1_mod.c:717:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx_template, PROV_SHA1_HMAC_CTX(ctx),
data/zfs-linux-0.8.5/module/icp/io/sha1_mod.c:842:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digest, (unsigned char *)mac->cd_raw.iov_base +
data/zfs-linux-0.8.5/module/icp/io/sha1_mod.c:910:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx_template, &sha1_hmac_ctx, sizeof (sha1_hmac_ctx_t));
data/zfs-linux-0.8.5/module/icp/io/sha1_mod.c:973:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digest, (unsigned char *)mac->cd_raw.iov_base +
data/zfs-linux-0.8.5/module/icp/io/sha1_mod.c:1026:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx_template, &sha1_hmac_ctx, sizeof (sha1_hmac_ctx_t));
data/zfs-linux-0.8.5/module/icp/io/sha2_mod.c:68:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy((m)->cm_param, &tmp_ulong, sizeof (ulong_t)); \
data/zfs-linux-0.8.5/module/icp/io/sha2_mod.c:398:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digest_scratch, (uchar_t *)digest->
data/zfs-linux-0.8.5/module/icp/io/sha2_mod.c:425:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digest_tmp + scratch_offset,
data/zfs-linux-0.8.5/module/icp/io/sha2_mod.c:743:9: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) bcopy(keyval, ipad, length_in_bytes);
data/zfs-linux-0.8.5/module/icp/io/sha2_mod.c:744:9: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) bcopy(keyval, opad, length_in_bytes);
data/zfs-linux-0.8.5/module/icp/io/sha2_mod.c:805:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx_template, PROV_SHA2_HMAC_CTX(ctx),
data/zfs-linux-0.8.5/module/icp/io/sha2_mod.c:950:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digest, (unsigned char *)mac->cd_raw.iov_base +
data/zfs-linux-0.8.5/module/icp/io/sha2_mod.c:1034:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx_template, &sha2_hmac_ctx, sizeof (sha2_hmac_ctx_t));
data/zfs-linux-0.8.5/module/icp/io/sha2_mod.c:1107:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digest, (unsigned char *)mac->cd_raw.iov_base +
data/zfs-linux-0.8.5/module/icp/io/sha2_mod.c:1172:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx_template, &sha2_hmac_ctx, sizeof (sha2_hmac_ctx_t));
data/zfs-linux-0.8.5/module/icp/io/skein_mod.c:370:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digest_tmp + scratch_offset,
data/zfs-linux-0.8.5/module/icp/io/skein_mod.c:632:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx_template, SKEIN_CTX(ctx),
data/zfs-linux-0.8.5/module/icp/io/skein_mod.c:670:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx_template, &skein_ctx, sizeof (skein_ctx));
data/zfs-linux-0.8.5/module/icp/spi/kcf_spi.c:152:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(info->pi_provider_description, prov_desc->pd_description,
data/zfs-linux-0.8.5/module/icp/spi/kcf_spi.c:581:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(info->pi_mechanisms, desc->pd_mechanisms,
data/zfs-linux-0.8.5/module/icp/spi/kcf_spi.c:603:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(info->pi_mechanisms, desc->pd_mechanisms,
data/zfs-linux-0.8.5/module/icp/spi/kcf_spi.c:614:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(info->pi_mechanisms, desc->pd_mechanisms,
data/zfs-linux-0.8.5/module/lua/lauxlib.c:409:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newbuff, B->b, B->n * sizeof(char));
data/zfs-linux-0.8.5/module/lua/lauxlib.c:421:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b, s, l * sizeof(char));
data/zfs-linux-0.8.5/module/lua/ldebug.c:574:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[LUA_IDSIZE]; /* add file:line information */
data/zfs-linux-0.8.5/module/lua/llex.c:102:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[LUA_IDSIZE];
data/zfs-linux-0.8.5/module/lua/lobject.c:203:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[4*sizeof(void *) + 8]; /* should be enough space for a `%p' */
data/zfs-linux-0.8.5/module/lua/lobject.c:245:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define addstr(a,b,l) ( memcpy(a,b,(l) * sizeof(char)), a += (l) )
data/zfs-linux-0.8.5/module/lua/lobject.c:251:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, source + 1, l * sizeof(char));
data/zfs-linux-0.8.5/module/lua/lobject.c:259:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, source + 1, l * sizeof(char));
data/zfs-linux-0.8.5/module/lua/lobject.c:263:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, source + 1 + l - bufflen, bufflen * sizeof(char));
data/zfs-linux-0.8.5/module/lua/lobject.c:279:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out, POS, (LL(POS) + 1) * sizeof(char));
data/zfs-linux-0.8.5/module/lua/lopcodes.c:18:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
LUAI_DDEF const char *const luaP_opnames[NUM_OPCODES+1] = {
data/zfs-linux-0.8.5/module/lua/lopcodes.h:282:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
LUAI_DDEC const char *const luaP_opnames[NUM_OPCODES+1]; /* opcode names */
data/zfs-linux-0.8.5/module/lua/lstate.c:58:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[LUAI_EXTRASPACE];
data/zfs-linux-0.8.5/module/lua/lstate.c:84:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buff + p, &t, sizeof(t)); p += sizeof(t); }
data/zfs-linux-0.8.5/module/lua/lstate.c:87:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[4 * sizeof(size_t)];
data/zfs-linux-0.8.5/module/lua/lstring.c:108:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sbuf, str, l*sizeof(char));
data/zfs-linux-0.8.5/module/lua/lstrlib.c:131:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, s, l * sizeof(char)); p += l;
data/zfs-linux-0.8.5/module/lua/lstrlib.c:133:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, sep, lsep * sizeof(char)); p += lsep;
data/zfs-linux-0.8.5/module/lua/lstrlib.c:136:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, s, l * sizeof(char)); /* last copy (not followed by separator) */
data/zfs-linux-0.8.5/module/lua/lstrlib.c:854:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[10];
data/zfs-linux-0.8.5/module/lua/lstrlib.c:883:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(form, strfrmt, (p - strfrmt + 1) * sizeof(char));
data/zfs-linux-0.8.5/module/lua/lstrlib.c:917:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char form[MAX_FORMAT]; /* to store the format (`%...') */
data/zfs-linux-0.8.5/module/lua/ltm.c:23:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
LUAI_DDEF const char *const luaT_typenames_[LUA_TOTALTAGS] = {
data/zfs-linux-0.8.5/module/lua/ltm.h:50:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
LUAI_DDEC const char *const luaT_typenames_[LUA_TOTALTAGS];
data/zfs-linux-0.8.5/module/lua/lvm.c:50:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[LUAI_MAXNUMBER2STR];
data/zfs-linux-0.8.5/module/lua/lvm.c:325:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buffer+tl, svalue(top-i), l * sizeof(char));
data/zfs-linux-0.8.5/module/lua/lzio.c:57:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b, z->p, m);
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:1192:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(name, NVP_NAME(nvp), name_sz);
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:1206:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(strs[i], buf, slen);
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:1244:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(data, NVP_VALUE(nvp), value_sz);
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:1566:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(NVP_VALUE(nvp), data, (size_t)value_sz);
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:2791:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(buf, native->n_curr, size);
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:2794:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(native->n_curr, buf, size);
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:3052:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(native->n_curr, &decode_len, sizeof (int32_t));
data/zfs-linux-0.8.5/module/spl/spl-err.c:54:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[MAXMSGLEN];
data/zfs-linux-0.8.5/module/spl/spl-err.c:87:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[MAXMSGLEN];
data/zfs-linux-0.8.5/module/spl/spl-generic.c:50:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spl_gitrev[64] = ZFS_META_GITREV;
data/zfs-linux-0.8.5/module/spl/spl-generic.c:535:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(to, from, len);
data/zfs-linux-0.8.5/module/spl/spl-generic.c:548:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(to, from, len);
data/zfs-linux-0.8.5/module/spl/spl-kmem.c:117:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, str, n + 1);
data/zfs-linux-0.8.5/module/spl/spl-kmem.c:470:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str, "%02x%02x%02x%02x%02x%02x%02x%02x",
data/zfs-linux-0.8.5/module/spl/spl-kmem.c:503:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[17];
data/zfs-linux-0.8.5/module/spl/spl-proc.c:192:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *end, str[32];
data/zfs-linux-0.8.5/module/spl/spl-proc.c:256:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[100];
data/zfs-linux-0.8.5/module/spl/spl-proc.c:258:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char *list_names[LHEAD_SIZE] =
data/zfs-linux-0.8.5/module/spl/spl-thread.c:141:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[TASK_COMM_LEN];
data/zfs-linux-0.8.5/module/spl/spl-xdr.c:189:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(xdrs->x_addr, cp, cnt);
data/zfs-linux-0.8.5/module/spl/spl-xdr.c:218:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cp, xdrs->x_addr, cnt);
data/zfs-linux-0.8.5/module/zcommon/zfs_comutil.c:190:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *zfs_history_event_names[ZFS_NUM_LEGACY_HISTORY_EVENTS] = {
data/zfs-linux-0.8.5/module/zcommon/zfs_fletcher.c:310:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(zcp, &ctx->scalar, sizeof (zio_cksum_t));
data/zfs-linux-0.8.5/module/zcommon/zfs_uio.c:113:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(p, iov->iov_base + skip, cnt);
data/zfs-linux-0.8.5/module/zcommon/zfs_uio.c:115:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(iov->iov_base + skip, p, cnt);
data/zfs-linux-0.8.5/module/zcommon/zfs_uio.c:148:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(p, paddr + bv->bv_offset + skip, cnt);
data/zfs-linux-0.8.5/module/zcommon/zfs_uio.c:150:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(paddr + bv->bv_offset + skip, p, cnt);
data/zfs-linux-0.8.5/module/zcommon/zfs_uio.c:251:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(uio, &uio_copy, sizeof (struct uio));
data/zfs-linux-0.8.5/module/zfs/abd.c:1200:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(ba_ptr->arg_buf, buf, size);
data/zfs-linux-0.8.5/module/zfs/abd.c:1246:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(buf, ba_ptr->arg_buf, size);
data/zfs-linux-0.8.5/module/zfs/abd.c:1334:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(dbuf, sbuf, size);
data/zfs-linux-0.8.5/module/zfs/arc.c:1004:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char pad[HT_LOCK_PAD];
data/zfs-linux-0.8.5/module/zfs/arc.c:1515:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(hdr->b_crypt_hdr.b_salt, salt, ZIO_DATA_SALT_LEN);
data/zfs-linux-0.8.5/module/zfs/arc.c:1516:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(hdr->b_crypt_hdr.b_iv, iv, ZIO_DATA_IV_LEN);
data/zfs-linux-0.8.5/module/zfs/arc.c:1517:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(hdr->b_crypt_hdr.b_mac, mac, ZIO_DATA_MAC_LEN);
data/zfs-linux-0.8.5/module/zfs/arc.c:1866:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(from->b_data, buf->b_data, arc_buf_size(buf));
data/zfs-linux-0.8.5/module/zfs/arc.c:3454:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(hdr, nhdr, HDR_L2ONLY_SIZE);
data/zfs-linux-0.8.5/module/zfs/arc.c:3689:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(salt, hdr->b_crypt_hdr.b_salt, ZIO_DATA_SALT_LEN);
data/zfs-linux-0.8.5/module/zfs/arc.c:3691:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(iv, hdr->b_crypt_hdr.b_iv, ZIO_DATA_IV_LEN);
data/zfs-linux-0.8.5/module/zfs/arc.c:3693:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(mac, hdr->b_crypt_hdr.b_mac, ZIO_DATA_MAC_LEN);
data/zfs-linux-0.8.5/module/zfs/arc.c:3773:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(salt, hdr->b_crypt_hdr.b_salt, ZIO_DATA_SALT_LEN);
data/zfs-linux-0.8.5/module/zfs/arc.c:3774:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(iv, hdr->b_crypt_hdr.b_iv, ZIO_DATA_IV_LEN);
data/zfs-linux-0.8.5/module/zfs/arc.c:3775:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(mac, hdr->b_crypt_hdr.b_mac, ZIO_DATA_MAC_LEN);
data/zfs-linux-0.8.5/module/zfs/arc.c:5877:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(buf->b_data, arg, arc_buf_size(buf));
data/zfs-linux-0.8.5/module/zfs/arc.c:7277:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(hdr->b_crypt_hdr.b_salt, localprop.zp_salt,
data/zfs-linux-0.8.5/module/zfs/arc.c:7279:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(hdr->b_crypt_hdr.b_iv, localprop.zp_iv,
data/zfs-linux-0.8.5/module/zfs/arc.c:7281:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(hdr->b_crypt_hdr.b_mac, localprop.zp_mac,
data/zfs-linux-0.8.5/module/zfs/dataset_kstats.c:90:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char kstat_module_name[KSTAT_STRLEN];
data/zfs-linux-0.8.5/module/zfs/dataset_kstats.c:106:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char kstat_name[KSTAT_STRLEN];
data/zfs-linux-0.8.5/module/zfs/dbuf.c:1123:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(db->db.db_data, abuf->b_data, blksz);
data/zfs-linux-0.8.5/module/zfs/dbuf.c:1315:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(DN_BONUS(dn->dn_phys), db->db.db_data, bonuslen);
data/zfs-linux-0.8.5/module/zfs/dbuf.c:1450:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(db->db.db_data, dr->dt.dl.dr_data, bonuslen);
data/zfs-linux-0.8.5/module/zfs/dbuf.c:1478:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(db->db.db_data, dr->dt.dl.dr_data->b_data, size);
data/zfs-linux-0.8.5/module/zfs/dbuf.c:1818:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(obuf->b_data, buf->b_data, MIN(osize, size));
data/zfs-linux-0.8.5/module/zfs/dbuf.c:2395:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(salt, dr->dt.dl.dr_salt, ZIO_DATA_SALT_LEN);
data/zfs-linux-0.8.5/module/zfs/dbuf.c:2396:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(iv, dr->dt.dl.dr_iv, ZIO_DATA_IV_LEN);
data/zfs-linux-0.8.5/module/zfs/dbuf.c:2397:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(mac, dr->dt.dl.dr_mac, ZIO_DATA_MAC_LEN);
data/zfs-linux-0.8.5/module/zfs/dbuf.c:2495:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(buf->b_data, db->db.db_data, db->db.db_size);
data/zfs-linux-0.8.5/module/zfs/dbuf.c:3128:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(data->b_data, db->db.db_data, arc_buf_size(data));
data/zfs-linux-0.8.5/module/zfs/dbuf.c:3902:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(*datap, DN_BONUS(dn->dn_phys),
data/zfs-linux-0.8.5/module/zfs/dbuf.c:3999:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(db->db.db_data, (*datap)->b_data, psize);
data/zfs-linux-0.8.5/module/zfs/ddt.c:53:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *ddt_class_name[DDT_CLASSES] = {
data/zfs-linux-0.8.5/module/zfs/ddt.c:68:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[DDT_NAMELEN];
data/zfs-linux-0.8.5/module/zfs/ddt.c:92:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[DDT_NAMELEN];
data/zfs-linux-0.8.5/module/zfs/ddt.c:113:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[DDT_NAMELEN];
data/zfs-linux-0.8.5/module/zfs/ddt.c:154:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[DDT_NAMELEN];
data/zfs-linux-0.8.5/module/zfs/ddt.c:628:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(src, dst, s_len);
data/zfs-linux-0.8.5/module/zfs/ddt.c:649:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(src, dst, d_len);
data/zfs-linux-0.8.5/module/zfs/dmu.c:1017:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(buf, (char *)db->db_data + bufoff, tocpy);
data/zfs-linux-0.8.5/module/zfs/dmu.c:1074:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy((char *)db->db_data + bufoff, buf, tocpy);
data/zfs-linux-0.8.5/module/zfs/dmu.c:1724:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(srcdb->db_buf->b_data, abuf->b_data, datalen);
data/zfs-linux-0.8.5/module/zfs/dmu_objset.c:473:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(os->os_phys_buf->b_data, buf->b_data,
data/zfs-linux-0.8.5/module/zfs/dmu_objset.c:848:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dmu_objset.c:1366:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dmu_objset.c:1861:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char uqn_id[20 + DMU_OBJACCT_PREFIX_LEN];
data/zfs-linux-0.8.5/module/zfs/dmu_objset.c:1965:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20];
data/zfs-linux-0.8.5/module/zfs/dmu_objset.c:1990:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20 + DMU_OBJACCT_PREFIX_LEN];
data/zfs-linux-0.8.5/module/zfs/dmu_recv.c:311:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dmu_recv.c:629:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char recvname[ZFS_MAX_DATASET_NAME_LEN + 6];
data/zfs-linux-0.8.5/module/zfs/dmu_recv.c:714:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char recvname[ZFS_MAX_DATASET_NAME_LEN + 6];
data/zfs-linux-0.8.5/module/zfs/dmu_recv.c:1452:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(data, db->db_data, DRR_OBJECT_PAYLOAD_SIZE(drro));
data/zfs-linux-0.8.5/module/zfs/dmu_recv.c:1845:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(drror->drr_salt, rwa->or_salt, ZIO_DATA_SALT_LEN);
data/zfs-linux-0.8.5/module/zfs/dmu_recv.c:1846:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(drror->drr_iv, rwa->or_iv, ZIO_DATA_IV_LEN);
data/zfs-linux-0.8.5/module/zfs/dmu_recv.c:1847:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(drror->drr_mac, rwa->or_mac, ZIO_DATA_MAC_LEN);
data/zfs-linux-0.8.5/module/zfs/dmu_recv.c:1875:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dmu_recv.c:3029:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dmu_send.c:393:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BPE_PAYLOAD_SIZE];
data/zfs-linux-0.8.5/module/zfs/dnode.c:783:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&odn->dn_next_type[0], &ndn->dn_next_type[0],
data/zfs-linux-0.8.5/module/zfs/dnode.c:785:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&odn->dn_next_nblkptr[0], &ndn->dn_next_nblkptr[0],
data/zfs-linux-0.8.5/module/zfs/dnode.c:787:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&odn->dn_next_nlevels[0], &ndn->dn_next_nlevels[0],
data/zfs-linux-0.8.5/module/zfs/dnode.c:789:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&odn->dn_next_indblkshift[0], &ndn->dn_next_indblkshift[0],
data/zfs-linux-0.8.5/module/zfs/dnode.c:791:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&odn->dn_next_bonustype[0], &ndn->dn_next_bonustype[0],
data/zfs-linux-0.8.5/module/zfs/dnode.c:793:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&odn->dn_rm_spillblk[0], &ndn->dn_rm_spillblk[0],
data/zfs-linux-0.8.5/module/zfs/dnode.c:795:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&odn->dn_next_bonuslen[0], &ndn->dn_next_bonuslen[0],
data/zfs-linux-0.8.5/module/zfs/dnode.c:797:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&odn->dn_next_blksz[0], &ndn->dn_next_blksz[0],
data/zfs-linux-0.8.5/module/zfs/dnode.c:799:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&odn->dn_next_maxblkid[0], &ndn->dn_next_maxblkid[0],
data/zfs-linux-0.8.5/module/zfs/dnode.c:805:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&odn->dn_free_ranges[0], &ndn->dn_free_ranges[0],
data/zfs-linux-0.8.5/module/zfs/dnode_sync.c:69:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(dn->dn_phys->dn_blkptr, db->db.db_data,
data/zfs-linux-0.8.5/module/zfs/dsl_bookmark.c:39:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:131:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(wkeydata, wkey->wk_key.ck_data, WRAPPING_KEY_LEN);
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:2135:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(portable_mac, os->os_phys->os_portable_mac, ZIO_OBJSET_MAC_LEN);
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:2631:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:2729:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(portable_mac, osp->os_portable_mac, ZIO_OBJSET_MAC_LEN);
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:2730:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(local_mac, osp->os_local_mac, ZIO_OBJSET_MAC_LEN);
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:2780:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digestbuf, mac, ZIO_DATA_MAC_LEN);
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:1550:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dsname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:1774:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dsname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:1821:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fsname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:2058:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:2133:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXNAMELEN];
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:2191:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char recvname[ZFS_MAX_DATASET_NAME_LEN + 6];
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:2495:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:2547:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char recvname[ZFS_MAX_DATASET_NAME_LEN + 6];
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:2964:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dsl_deleg.c:129:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char idstr[32];
data/zfs-linux-0.8.5/module/zfs/dsl_deleg.c:390:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char p_setname[ZFS_MAX_DELEG_NAME];
data/zfs-linux-0.8.5/module/zfs/dsl_deleg.c:421:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char whokey[ZFS_MAX_DELEG_NAME];
data/zfs-linux-0.8.5/module/zfs/dsl_deleg.c:490:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char whokey[ZFS_MAX_DELEG_NAME];
data/zfs-linux-0.8.5/module/zfs/dsl_deleg.c:687:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char whokey[ZFS_MAX_DELEG_NAME];
data/zfs-linux-0.8.5/module/zfs/dsl_dir.c:1137:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dsl_dir.c:1870:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dsl_prop.c:656:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char valbuf[32];
data/zfs-linux-0.8.5/module/zfs/dsl_prop.c:1001:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ZAP_MAXNAMELEN];
data/zfs-linux-0.8.5/module/zfs/dsl_prop.c:1121:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char setpoint[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dsl_scan.c:359:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[36];
data/zfs-linux-0.8.5/module/zfs/dsl_scan.c:402:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(sio->sio_dva, bp->blk_dva, sio->sio_nr_dvas * sizeof (dva_t));
data/zfs-linux-0.8.5/module/zfs/dsl_scan.c:506:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(zaptmp, &scn->scn_phys,
data/zfs-linux-0.8.5/module/zfs/dsl_userhold.c:180:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[MAXNAMELEN];
data/zfs-linux-0.8.5/module/zfs/dsl_userhold.c:204:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zhca_spaname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/dsl_userhold.c:599:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/edonr_zfs.c:57:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx_template, &ctx, sizeof (ctx));
data/zfs-linux-0.8.5/module/zfs/edonr_zfs.c:60:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digest, zcp->zc_word, sizeof (zcp->zc_word));
data/zfs-linux-0.8.5/module/zfs/fm.c:1068:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ereport_class[FM_MAX_CLASS];
data/zfs-linux-0.8.5/module/zfs/fm.c:1160:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char idstr[11];
data/zfs-linux-0.8.5/module/zfs/fm.c:1247:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char idstr[11];
data/zfs-linux-0.8.5/module/zfs/gzip.c:68:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(s_start, d_start, s_len);
data/zfs-linux-0.8.5/module/zfs/gzip.c:78:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(s_start, d_start, s_len);
data/zfs-linux-0.8.5/module/zfs/hkdf.c:137:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(T, out_buf + pos,
data/zfs-linux-0.8.5/module/zfs/lz4.c:638:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(op, anchor, iend - anchor);
data/zfs-linux-0.8.5/module/zfs/lz4.c:826:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(op, anchor, iend - anchor);
data/zfs-linux-0.8.5/module/zfs/lz4.c:926:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(op, ip, length);
data/zfs-linux-0.8.5/module/zfs/qat_crypt.c:371:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(aad_buf, op_data.pAdditionalAuthData, aad_len);
data/zfs-linux-0.8.5/module/zfs/qat_crypt.c:417:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(iv_buf, op_data.pIv, ZIO_DATA_IV_LEN);
data/zfs-linux-0.8.5/module/zfs/qat_crypt.c:420:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digest_buf, op_data.pDigestResult, ZIO_DATA_MAC_LEN);
data/zfs-linux-0.8.5/module/zfs/qat_crypt.c:439:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(op_data.pDigestResult, digest_buf, ZIO_DATA_MAC_LEN);
data/zfs-linux-0.8.5/module/zfs/qat_crypt.c:561:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digest_buffer, zcp, sizeof (zio_cksum_t));
data/zfs-linux-0.8.5/module/zfs/sa.c:164:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(s, t, l); \
data/zfs-linux-0.8.5/module/zfs/sa.c:419:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(attrs, tb->lot_attrs, sizeof (sa_attr_type_t) * attr_count);
data/zfs-linux-0.8.5/module/zfs/sa.c:425:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char attr_name[8];
data/zfs-linux-0.8.5/module/zfs/sa.c:516:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(datastart, target, buflen);
data/zfs-linux-0.8.5/module/zfs/sa.c:528:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(dataptr, saptr, length);
data/zfs-linux-0.8.5/module/zfs/sa.c:1544:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char scanstamp[AV_SCANSTAMP_SZ];
data/zfs-linux-0.8.5/module/zfs/sa.c:1669:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy((caddr_t)db->db_data + ZFS_OLD_ZNODE_PHYS_SIZE,
data/zfs-linux-0.8.5/module/zfs/sa.c:1878:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(hdl->sa_bonus->db_data, old_data[0],
data/zfs-linux-0.8.5/module/zfs/sa.c:1891:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(hdl->sa_spill->db_data, old_data[1],
data/zfs-linux-0.8.5/module/zfs/skein_zfs.c:51:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(ctx_template, &ctx, sizeof (ctx));
data/zfs-linux-0.8.5/module/zfs/spa.c:126:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const zio_taskq_types[ZIO_TASKQ_TYPES] = {
data/zfs-linux-0.8.5/module/zfs/spa.c:940:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&spa->spa_errlist_last, last, sizeof (avl_tree_t));
data/zfs-linux-0.8.5/module/zfs/spa.c:941:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&spa->spa_errlist_scrub, scrub, sizeof (avl_tree_t));
data/zfs-linux-0.8.5/module/zfs/spa.c:995:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[32];
data/zfs-linux-0.8.5/module/zfs/spa.c:6621:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char guid_as_str[MAXNAMELEN];
data/zfs-linux-0.8.5/module/zfs/spa.c:6741:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char guid_as_str[MAXNAMELEN];
data/zfs-linux-0.8.5/module/zfs/spa_errlog.c:304:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/zfs-linux-0.8.5/module/zfs/spa_history.c:128:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[sizeof (reclen)];
data/zfs-linux-0.8.5/module/zfs/spa_history.c:581:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/spa_history.c:600:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/spa_misc.c:386:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/zfs-linux-0.8.5/module/zfs/spa_misc.c:401:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/zfs-linux-0.8.5/module/zfs/spa_misc.c:1420:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(s, new, len);
data/zfs-linux-0.8.5/module/zfs/spa_misc.c:1466:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type[256];
data/zfs-linux-0.8.5/module/zfs/spa_stats.c:63:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char origin[24]; /* read originated from here */
data/zfs-linux-0.8.5/module/zfs/spa_stats.c:66:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char comm[16]; /* process name of task doing read */
data/zfs-linux-0.8.5/module/zfs/spa_stats.c:259:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
(u_longlong_t)open, (u_longlong_t)quiesce, (u_longlong_t)wait,
data/zfs-linux-0.8.5/module/zfs/spa_stats.c:946:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ksp->ks_data, &spa_iostats_template,
data/zfs-linux-0.8.5/module/zfs/spa_stats.c:972:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ksp->ks_data, &spa_iostats_template, size);
data/zfs-linux-0.8.5/module/zfs/vdev.c:117:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/zfs-linux-0.8.5/module/zfs/vdev.c:137:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char state[20];
data/zfs-linux-0.8.5/module/zfs/vdev.c:388:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(pvd->vdev_child, newchild, oldsize);
data/zfs-linux-0.8.5/module/zfs/vdev.c:1297:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(vd->vdev_ms, mspp, oldc * sizeof (*mspp));
data/zfs-linux-0.8.5/module/zfs/vdev.c:3041:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bias_str[64];
data/zfs-linux-0.8.5/module/zfs/vdev.c:3899:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(vsx, &vd->vdev_stat_ex, sizeof (vd->vdev_stat_ex));
data/zfs-linux-0.8.5/module/zfs/vdev.c:3916:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&vd->vdev_stat, vs, sizeof (*vs));
data/zfs-linux-0.8.5/module/zfs/vdev_disk.c:199:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char disk_name[BDEVNAME_SIZE + 6] = "/dev/";
data/zfs-linux-0.8.5/module/zfs/vdev_indirect.c:1024:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(first_mapping, duplicate_mappings, copy_length);
data/zfs-linux-0.8.5/module/zfs/vdev_indirect_births.c:153:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(vib->vib_entries, new_entries, old_size);
data/zfs-linux-0.8.5/module/zfs/vdev_indirect_mapping.c:482:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(old_entries, vim->vim_entries, old_size);
data/zfs-linux-0.8.5/module/zfs/vdev_raidz.c:594:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(q, p, rm->rm_col[c].rc_size);
data/zfs-linux-0.8.5/module/zfs/vdev_raidz.c:642:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(q, p, rm->rm_col[c].rc_size);
data/zfs-linux-0.8.5/module/zfs/vdev_raidz.c:643:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(r, p, rm->rm_col[c].rc_size);
data/zfs-linux-0.8.5/module/zfs/vdev_raidz_math.c:511:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(vdev_raidz_fastest_impl.name, "fastest");
data/zfs-linux-0.8.5/module/zfs/vdev_raidz_math.c:585:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char req_name[RAIDZ_IMPL_NAME_MAX];
data/zfs-linux-0.8.5/module/zfs/vdev_removal.c:1125:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zkey[32];
data/zfs-linux-0.8.5/module/zfs/zap.c:1125:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20];
data/zfs-linux-0.8.5/module/zfs/zap.c:1134:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20];
data/zfs-linux-0.8.5/module/zfs/zap.c:1143:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20];
data/zfs-linux-0.8.5/module/zfs/zap.c:1153:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20];
data/zfs-linux-0.8.5/module/zfs/zap.c:1163:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20];
data/zfs-linux-0.8.5/module/zfs/zap.c:1172:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20];
data/zfs-linux-0.8.5/module/zfs/zap.c:1202:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20];
data/zfs-linux-0.8.5/module/zfs/zap_leaf.c:309:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(la->la_array, p, ZAP_LEAF_ARRAY_BYTES);
data/zfs-linux-0.8.5/module/zfs/zap_micro.c:156:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char norm[ZAP_MAXNAMELEN];
data/zfs-linux-0.8.5/module/zfs/zap_micro.c:647:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(zap->zap_dbuf->db_data, mzp, sz);
data/zfs-linux-0.8.5/module/zfs/zcp.c:252:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/zfs-linux-0.8.5/module/zfs/zcp.c:769:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy(luabuf, ptr, osize);
data/zfs-linux-0.8.5/module/zfs/zcp.c:1137:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[128];
data/zfs-linux-0.8.5/module/zfs/zcp.c:1230:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[512];
data/zfs-linux-0.8.5/module/zfs/zcp_get.c:154:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char setpoint[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zcp_get.c:287:10: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
(void) strcpy(setpoint, "temporary");
data/zfs-linux-0.8.5/module/zfs/zcp_get.c:308:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char setpoint[ZFS_MAX_DATASET_NAME_LEN] =
data/zfs-linux-0.8.5/module/zfs/zcp_get.c:535:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char setpoint[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zcp_get.c:786:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snap_name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zcp_iter.c:51:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char clonename[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zcp_iter.c:158:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snapname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zcp_iter.c:241:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char childname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zcp_iter.c:445:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[128];
data/zfs-linux-0.8.5/module/zfs/zfs_acl.c:1108:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(znode_acl.z_ace_data, aclnode->z_acldata,
data/zfs-linux-0.8.5/module/zfs/zfs_acl.c:1429:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(aclnode->z_acldata, start,
data/zfs-linux-0.8.5/module/zfs/zfs_acl.c:1698:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(data1, data2, data2sz);
data/zfs-linux-0.8.5/module/zfs/zfs_acl.c:1969:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(aclnode->z_acldata, start,
data/zfs-linux-0.8.5/module/zfs/zfs_debug.c:32:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zdm_msg[1]; /* variable length allocation */
data/zfs-linux-0.8.5/module/zfs/zfs_dir.c:298:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(dl->dl_name, name, dl->dl_namesize);
data/zfs-linux-0.8.5/module/zfs/zfs_fm.c:154:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char class[64];
data/zfs-linux-0.8.5/module/zfs/zfs_fm.c:842:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(info, report->zcr_ckinfo, sizeof (*info));
data/zfs-linux-0.8.5/module/zfs/zfs_fm.c:947:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char class[64];
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:563:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ds_hexsl[MAXNAMELEN];
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:680:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char setpoint[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:873:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parentname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:926:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parentname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:1110:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parentname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:1257:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fsname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:1278:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fsname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:3201:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parentname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:3615:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char originname[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:3867:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[ZFS_MAX_DATASET_NAME_LEN + 6];
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:4953:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tofs[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:5056:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tofs[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:5484:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char origin[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:171:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(xoap->xoa_av_scanstamp, scanstamp, AV_SCANSTAMP_SZ);
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:177:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&xoap->xoa_projid, scanstamp, sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:217:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy((void *)zdomain->z_domain, start,
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:367:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(vsecp->vsa_aclentp, end, aclsize);
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:379:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(name, end, namesize);
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:403:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(name, (char *)(lr + 1), namesize);
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:439:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(name, (char *)(lr + 1), namesize);
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:470:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(name, (char *)(lr + 1), namesize);
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:471:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(link, (char *)(lr + 1) + namesize, linksize);
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:495:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(sname, (char *)(lr + 1), snamesize);
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:496:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(dname, (char *)(lr + 1) + snamesize, dnamesize);
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:728:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(vsecp->vsa_aclentp, (ace_t *)(lrv0 + 1), aclbytes);
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:732:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(vsecp->vsa_aclentp, start, aclbytes);
data/zfs-linux-0.8.5/module/zfs/zfs_replay.c:133:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(scanstamp, xoap->xoa_av_scanstamp, AV_SCANSTAMP_SZ);
data/zfs-linux-0.8.5/module/zfs/zfs_replay.c:139:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(scanstamp, &xoap->xoa_projid, sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zfs_sa.c:105:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(link, (caddr_t)db->db_data +
data/zfs-linux-0.8.5/module/zfs/zfs_sa.c:118:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(link, dbp->db_data, len);
data/zfs-linux-0.8.5/module/zfs/zfs_sa.c:179:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy((caddr_t)db->db_data + ZFS_OLD_ZNODE_PHYS_SIZE,
data/zfs-linux-0.8.5/module/zfs/zfs_sa.c:294:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char scanstamp[AV_SCANSTAMP_SZ];
data/zfs-linux-0.8.5/module/zfs/zfs_sa.c:398:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy((caddr_t)db->db_data + ZFS_OLD_ZNODE_PHYS_SIZE,
data/zfs-linux-0.8.5/module/zfs/zfs_sysfs.c:267:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[32];
data/zfs-linux-0.8.5/module/zfs/zfs_vfsops.c:742:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(buf, "%llx", (longlong_t)fuid);
data/zfs-linux-0.8.5/module/zfs/zfs_vfsops.c:750:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20 + DMU_OBJACCT_PREFIX_LEN];
data/zfs-linux-0.8.5/module/zfs/zfs_vfsops.c:800:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/zfs-linux-0.8.5/module/zfs/zfs_vfsops.c:887:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20 + DMU_OBJACCT_PREFIX_LEN];
data/zfs-linux-0.8.5/module/zfs/zfs_vfsops.c:924:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(buf, "%llx", (longlong_t)id);
data/zfs-linux-0.8.5/module/zfs/zfs_vfsops.c:939:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20];
data/zfs-linux-0.8.5/module/zfs/zfs_vfsops.c:965:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(buf, "%llx", (longlong_t)id);
data/zfs-linux-0.8.5/module/zfs/zfs_vfsops.c:1374:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20 + DMU_OBJACCT_PREFIX_LEN];
data/zfs-linux-0.8.5/module/zfs/zfs_vnops.c:2335:11: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
(void) strcpy(zap.za_name, "..");
data/zfs-linux-0.8.5/module/zfs/zfs_znode.c:2123:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char component[MAXNAMELEN + 2];
data/zfs-linux-0.8.5/module/zfs/zfs_znode.c:2142:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(component + 1, "<xattrdir>");
data/zfs-linux-0.8.5/module/zfs/zfs_znode.c:2153:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(component, path, complen);
data/zfs-linux-0.8.5/module/zfs/zil.c:267:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lr, dst, len);
data/zfs-linux-0.8.5/module/zfs/zil.c:283:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lr, dst, zilc->zc_nused);
data/zfs-linux-0.8.5/module/zfs/zil.c:333:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(abuf->b_data, wbuf, arc_buf_size(abuf));
data/zfs-linux-0.8.5/module/zfs/zil.c:1691:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lrc, lr_buf, reclen);
data/zfs-linux-0.8.5/module/zfs/zil.c:3478:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/module/zfs/zil.c:3530:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(lr, zr->zr_lr, reclen);
data/zfs-linux-0.8.5/module/zfs/zio.c:57:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *zio_type_name[ZIO_TYPES] = {
data/zfs-linux-0.8.5/module/zfs/zio.c:205:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[36];
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:322:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(salt, key->zk_salt, ZIO_DATA_SALT_LEN);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:351:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(key->zk_salt, salt, ZIO_DATA_SALT_LEN);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:707:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(raw_digestbuf, digestbuf, digestlen);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:728:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digestbuf, salt, ZIO_DATA_SALT_LEN);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:729:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digestbuf + ZIO_DATA_SALT_LEN, ivbuf, ZIO_DATA_IV_LEN);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:752:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(salt, &bp->blk_dva[2].dva_word[0], sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:753:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(iv, &bp->blk_dva[2].dva_word[1], sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:754:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(iv + sizeof (uint64_t), &val32, sizeof (uint32_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:757:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(salt, &val64, sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:760:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(iv, &val64, sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:763:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(iv + sizeof (uint64_t), &val32, sizeof (uint32_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:784:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&bp->blk_dva[2].dva_word[0], salt, sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:785:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&bp->blk_dva[2].dva_word[1], iv, sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:788:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&val32, iv + sizeof (uint64_t), sizeof (uint32_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:791:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&val64, salt, sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:794:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&val64, iv, sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:797:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&val32, iv + sizeof (uint64_t), sizeof (uint32_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:810:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(mac, &bp->blk_cksum.zc_word[2], sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:811:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(mac + sizeof (uint64_t), &bp->blk_cksum.zc_word[3],
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:814:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(mac, &val64, sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:817:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(mac + sizeof (uint64_t), &val64, sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:836:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&bp->blk_cksum.zc_word[2], mac, sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:837:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&bp->blk_cksum.zc_word[3], mac + sizeof (uint64_t),
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:841:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&val64, mac, sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:844:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&val64, mac + sizeof (uint64_t), sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:853:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(mac, &zilc->zc_eck.zec_cksum.zc_word[2], sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:854:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(mac + sizeof (uint64_t), &zilc->zc_eck.zec_cksum.zc_word[3],
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:868:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&zilc->zc_eck.zec_cksum.zc_word[2], mac, sizeof (uint64_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:869:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&zilc->zc_eck.zec_cksum.zc_word[3], mac + sizeof (uint64_t),
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:896:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(DN_BONUS(dnp), DN_BONUS(&ddnp[i]),
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1038:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&bab, *aadp, bab_len);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1057:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(dnp, tmp_dncore, sizeof (tmp_dncore));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1198:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(raw_portable_mac, portable_mac, ZIO_OBJSET_MAC_LEN);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1275:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(raw_local_mac, local_mac, ZIO_OBJSET_MAC_LEN);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1317:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(digestbuf, cksum, ZIO_DATA_MAC_LEN);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1452:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(src, dst, sizeof (zil_chain_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1453:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(src, aadp, sizeof (zil_chain_t) - sizeof (zio_eck_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1474:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(slrp, dlrp, sizeof (lr_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1475:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(slrp, aadp, sizeof (lr_t));
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1496:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(slrp + sizeof (lr_write_t) - sizeof (blkptr_t),
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1499:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(slrp + sizeof (lr_write_t) - sizeof (blkptr_t),
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1647:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(dnp, &ddnp[i], (uint8_t *)DN_BONUS(dnp) - (uint8_t *)dnp);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1650:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(DN_SPILL_BLKPTR(dnp), DN_SPILL_BLKPTR(&ddnp[i]),
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1665:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(dnp, aadp, crypt_len);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1708:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(DN_BONUS(dnp), DN_BONUS(&ddnp[i]), crypt_len);
data/zfs-linux-0.8.5/module/zfs/zio_crypt.c:1709:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(DN_BONUS(dnp), aadp, crypt_len);
data/zfs-linux-0.8.5/module/zfs/zpl_ctldir.c:256:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snapname[MAXNAMELEN];
data/zfs-linux-0.8.5/module/zfs/zpl_xattr.c:141:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(xf->buf + xf->offset, name, name_len);
data/zfs-linux-0.8.5/module/zfs/zpl_xattr.c:343:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(value, nv_value, nv_size);
data/zfs-linux-0.8.5/module/zfs/zpl_xattr.c:1204:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(list, xattr_name, xattr_size);
data/zfs-linux-0.8.5/module/zfs/zpl_xattr.c:1221:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(list, xattr_name, xattr_size);
data/zfs-linux-0.8.5/module/zfs/zvol.c:117:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zv_name[MAXNAMELEN]; /* name */
data/zfs-linux-0.8.5/module/zfs/zvol.c:150:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pool[MAXNAMELEN];
data/zfs-linux-0.8.5/module/zfs/zvol.c:151:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name1[MAXNAMELEN];
data/zfs-linux-0.8.5/module/zfs/zvol.c:152:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name2[MAXNAMELEN];
data/zfs-linux-0.8.5/module/zfs/zvol.c:2504:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dsname[MAXNAMELEN];
data/zfs-linux-0.8.5/module/zfs/zvol.c:2590:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dsname[MAXNAMELEN];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/chg_usr_exec/chg_usr_exec.c:40:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmds[BUFSIZ] = { 0 };
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/devname2devid/devname2devid.c:52:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char devbyid[MAXPATHLEN];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/devname2devid/devname2devid.c:119:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char devid[128], nodepath[MAXPATHLEN];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/dir_rd_update/dir_rd_update.c:45:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char dirpath[256];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/dir_rd_update/dir_rd_update.c:72:9: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
(void) strcat(&dirpath[strlen(dirpath)], "TMP_DIR");
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/dir_rd_update/dir_rd_update.c:82:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
testdd = open(dirpath, O_RDONLY|O_RSYNC|O_SYNC|O_DSYNC);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/dir_rd_update/dir_rd_update.c:92:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open(dirpath, O_RDONLY|O_RSYNC|O_SYNC|O_DSYNC);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/dir_rd_update/dir_rd_update.c:93:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/dir_rd_update/dir_rd_update.c:113:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open(dirpath, O_RDONLY);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_check/file_check.c:29:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char bigbuffer[BIGBUFFERSIZE];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_check/file_check.c:55:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fillchar = atoi(argv[2]);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_check/file_check.c:63:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((bigfd = open(argv[1], O_RDONLY)) == -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_trunc/file_trunc.c:84:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(filename, O_RDWR|O_CREAT|O_TRUNC, 0666);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_trunc/file_trunc.c:112:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
bsize = atoi(optarg);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_trunc/file_trunc.c:116:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
count = atoi(optarg);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_trunc/file_trunc.c:120:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fsize = atoi(optarg);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_trunc/file_trunc.c:124:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
offset = atoi(optarg);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_trunc/file_trunc.c:132:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
seed = atoi(optarg);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_trunc/file_trunc.c:189:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
(void) strcpy(buf, "ZFS Test Suite Truncation Test");
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_write/file_write.c:41:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char bigbuffer[BIGBUFFERSIZE];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_write/file_write.c:91:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
block_size = atoi(optarg);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_write/file_write.c:94:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
write_count = atoi(optarg);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_write/file_write.c:100:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fillchar = atoi(optarg);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_write/file_write.c:201:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((bigfd = open(filename, oflag, 0666)) == -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/largest_file/largest_file.c:67:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mybuf[5] = "aaaa\0";
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/largest_file/largest_file.c:85:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(testfile, O_CREAT | O_RDWR, mode);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/libzfs_input_check/libzfs_input_check.c:234:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pname[MAXNAMELEN];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/libzfs_input_check/libzfs_input_check.c:314:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dataset[MAXNAMELEN + 32];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/libzfs_input_check/libzfs_input_check.c:522:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snapshot[MAXNAMELEN + 32];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/libzfs_input_check/libzfs_input_check.c:525:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int cleanup_fd = open(ZFS_DEV, O_RDWR);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/libzfs_input_check/libzfs_input_check.c:593:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *const argv[1] = { "Hello World!" };
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/libzfs_input_check/libzfs_input_check.c:697:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dataset[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/libzfs_input_check/libzfs_input_check.c:698:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snapbase[ZFS_MAX_DATASET_NAME_LEN + 32];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/libzfs_input_check/libzfs_input_check.c:699:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snapshot[ZFS_MAX_DATASET_NAME_LEN + 32];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/libzfs_input_check/libzfs_input_check.c:700:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bookmark[ZFS_MAX_DATASET_NAME_LEN + 32];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/libzfs_input_check/libzfs_input_check.c:701:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char backup[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/libzfs_input_check/libzfs_input_check.c:702:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char clone[ZFS_MAX_DATASET_NAME_LEN];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/libzfs_input_check/libzfs_input_check.c:722:10: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
tmpfd = mkstemp(filepath);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/libzfs_input_check/libzfs_input_check.c:944:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
zfs_fd = open(ZFS_DEV, O_RDWR);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mkbusy/mkbusy.c:163:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(fpath, flags, mode)) < 0)
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mkfile/mkfile.c:134:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(argv[1], O_CREAT|O_TRUNC|O_RDWR, FILE_MODE);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mkfiles/mkfiles.c:40:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXPATHLEN];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mkfiles/mkfiles.c:54:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(buf, O_CREAT | O_EXCL, O_RDWR)) == -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mktree/mktree.c:41:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char fdname[MAXPATHLEN] = {0};
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mktree/mktree.c:63:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nlevel = atoi(optarg);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mktree/mktree.c:66:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ndir = atoi(optarg);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mktree/mktree.c:69:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nfile = atoi(optarg);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mktree/mktree.c:97:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dname[MAXPATHLEN] = {0};
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mktree/mktree.c:98:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[MAXPATHLEN] = {0};
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mktree/mktree.c:168:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(pname, O_CREAT|O_RDWR, 0777)) < 0) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mmap_exec/mmap_exec.c:53:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(argv[1], O_RDONLY)) < 0) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mmap_libaio/mmap_libaio.c:64:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
rwfd = open(argv[1], O_RDWR | O_CREAT, S_IRUSR | S_IWUSR);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mmapwrite/mmapwrite.c:64:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(file_path, O_RDWR | O_CREAT, 0777);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mmapwrite/mmapwrite.c:99:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(file_path, O_RDWR | O_CREAT, 0777);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mmapwrite/mmapwrite.c:112:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(file_path, O_RDWR, 0777);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mmapwrite/mmapwrite.c:126:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[10] = {0, };
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mmapwrite/mmapwrite.c:127:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, s, 10);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/nvlist_to_lua/nvlist_to_lua.c:234:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *const val[2] = { "0", "1" };
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/nvlist_to_lua/nvlist_to_lua.c:259:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/randfree_file/randfree_file.c:87:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(filename, O_RDWR | O_CREAT | O_TRUNC, mode)) < 0) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/randwritecomp/randwritecomp.c:90:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(randbuf, buf, BLOCKSZ);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/randwritecomp/randwritecomp.c:137:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BLOCKSZ];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/randwritecomp/randwritecomp.c:161:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(filename, O_RDWR|O_CREAT, 0666);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/readmmap/readmmap.c:75:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(filename, O_RDWR|O_CREAT|O_TRUNC, 0666);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/rm_lnkcnt_zero_file/rm_lnkcnt_zero_file.c:62:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/rm_lnkcnt_zero_file/rm_lnkcnt_zero_file.c:82:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/rm_lnkcnt_zero_file/rm_lnkcnt_zero_file.c:108:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
*fd = open(filebase, O_APPEND | O_RDWR | O_CREAT, 0644);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/rm_lnkcnt_zero_file/rm_lnkcnt_zero_file.c:134:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(filebase, O_APPEND | O_RDWR | O_CREAT, 0644);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/threadsappend/threadsappend.c:67:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8192] = {0};
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/threadsappend/threadsappend.c:111:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
outfd = open(argv[optind++], O_RDWR|O_CREAT|O_APPEND|O_TRUNC, 0777);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/user_ns_exec/user_ns_exec.c:42:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmds[BUFSIZ] = { 0 };
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/user_ns_exec/user_ns_exec.c:94:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[PATH_MAX];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/user_ns_exec/user_ns_exec.c:98:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
mapfd = open(path, O_WRONLY);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:96:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char path[PATH_MAX] = "/tmp/xattrtest";
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:97:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char script[PATH_MAX] = "/bin/true";
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:98:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char xattrbytes[XATTR_SIZE_MAX];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:239:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(file, O_WRONLY);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:267:8: [2] (race) vfork:
On some old systems, vfork() permits race conditions, and it's very
difficult to use correctly (CWE-362). Use fork() instead.
pid = vfork();
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:269:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
devnull_fd = open("/dev/null", O_WRONLY);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:298:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[3] = { script, phase, (char *)0 };
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:390:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
rc = open(file, O_CREAT, 0644);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:425:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
rand = open("/dev/urandom", O_RDONLY);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:446:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[XATTR_NAME_MAX];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:486:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(name, "user.%d", j);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:487:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
shift = sprintf(value, "size=%d ", rnd_size);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:488:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(value + shift, xattrbytes,
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:520:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[XATTR_NAME_MAX];
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:572:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(name, "user.%d", j);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:585:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
shift = sprintf(verify_value, "size=%d ",
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:587:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(verify_value + shift, xattrbytes,
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/checksum/edonr_test.c:157:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cpu_mhz = atoi(argv[1]);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/checksum/sha2_test.c:197:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cpu_mhz = atoi(argv[1]);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/checksum/skein_test.c:273:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cpu_mhz = atoi(argv[1]);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/cp_files/cp_files.c:30:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
tfd = open(argv[2], O_DIRECTORY);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:57:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char tfile[BUFSIZ] = { 0 };
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:102:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUFSIZ] = { 0 };
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:108:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(pfile, O_RDONLY, ALL_MODE)) == -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:126:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUFSIZ] = "call function do_write()";
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:132:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(pfile, O_WRONLY, ALL_MODE)) == -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:150:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char link_file[BUFSIZ] = { 0 };
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:151:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pfile_copy[BUFSIZ] = { 0 };
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:324:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(tfile, O_WRONLY | O_CREAT | O_TRUNC, ALL_MODE)) == -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/libzfs/many_fds.c:56:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open("/dev/null", O_RDONLY);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/suid/suid_write_to_file.c:38:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fpath[1024];
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/suid/suid_write_to_file.c:79:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(fpath, O_RDWR);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_001_pos.c:45:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[BSZ], buf2[BSZ] = {};
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_001_pos.c:62:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(penv[0], O_RDWR|O_TMPFILE, 0666);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_002_pos.c:31:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spath[1024], dpath[1024];
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_002_pos.c:47:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(penv[0], O_RDWR|O_TMPFILE, 0666);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_003_pos.c:30:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spath[1024], dpath[1024];
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_003_pos.c:46:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(penv[0], O_RDWR|O_TMPFILE|O_EXCL, 0666);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_stat_mode.c:52:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spath[1024], dpath[1024];
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_stat_mode.c:68:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(penv[0], O_RDWR|O_TMPFILE, 0777);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_test.c:37:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(argv[1], O_TMPFILE | O_WRONLY, 0666);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/truncate/truncate_test.c:50:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(filename, O_RDWR|O_CREAT, 0666);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/truncate/truncate_test.c:82:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fsize = atoi(optarg);
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:142:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(name, opt->name, strlen(name)) == 0) {
data/zfs-linux-0.8.5/cmd/mount_zfs/mount_zfs.c:279:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(cwd);
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1432:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) snprintf(blkbuf + strlen(blkbuf),
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1433:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buflen - strlen(blkbuf), "%llu:%llx:%llx ",
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1439:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) snprintf(blkbuf + strlen(blkbuf),
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1440:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buflen - strlen(blkbuf),
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1445:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) snprintf(blkbuf + strlen(blkbuf),
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1446:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buflen - strlen(blkbuf),
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1453:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) snprintf(blkbuf + strlen(blkbuf),
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:1454:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buflen - strlen(blkbuf), " cksum=%llx:%llx:%llx:%llx",
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2289:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) snprintf(aux + strlen(aux), sizeof (aux) - strlen(aux),
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2289:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) snprintf(aux + strlen(aux), sizeof (aux) - strlen(aux),
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2294:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) snprintf(aux + strlen(aux), sizeof (aux) - strlen(aux),
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2294:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) snprintf(aux + strlen(aux), sizeof (aux) - strlen(aux),
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2458:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) snprintf_blkptr(blkbuf + strlen(blkbuf),
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2459:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sizeof (blkbuf) - strlen(blkbuf), os->os_rootbp);
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:2642:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(fd, buf, statbuf.st_size) != statbuf.st_size) {
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:3342:7: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
int equal;
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:3381:8: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (equal != 0) {
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:5576:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
q = &vc->vdev_path[strlen(vc->vdev_path) - 2];
data/zfs-linux-0.8.5/cmd/zdb/zdb.c:6185:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
targetlen = strlen(target);
data/zfs-linux-0.8.5/cmd/zdb/zdb_il.c:81:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
link = name + strlen(name) + 1;
data/zfs-linux-0.8.5/cmd/zdb/zdb_il.c:126:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *tnm = snm + strlen(snm) + 1;
data/zfs-linux-0.8.5/cmd/zdb/zdb_il.c:357:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
snprintf_blkptr(blkbuf + strlen(blkbuf),
data/zfs-linux-0.8.5/cmd/zdb/zdb_il.c:358:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sizeof (blkbuf) - strlen(blkbuf), bp);
data/zfs-linux-0.8.5/cmd/zed/agents/zfs_diagnosis.c:818:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(FM_EREPORT_FAILMODE_CONTINUE)) == 0) {
data/zfs-linux-0.8.5/cmd/zed/agents/zfs_diagnosis.c:823:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(FM_EREPORT_FAILMODE_WAIT)) == 0) {
data/zfs-linux-0.8.5/cmd/zed/zed.c:233:9: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
(void) umask(0);
data/zfs-linux-0.8.5/cmd/zed/zed_conf.c:487:9: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
mask = umask(0);
data/zfs-linux-0.8.5/cmd/zed/zed_conf.c:488:2: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(mask | 022);
data/zfs-linux-0.8.5/cmd/zed/zed_conf.c:490:2: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(mask);
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:181:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (p && strlen(p) == strlen(*pp))
data/zfs-linux-0.8.5/cmd/zed/zed_event.c:181:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (p && strlen(p) == strlen(*pp))
data/zfs-linux-0.8.5/cmd/zed/zed_exec.c:51:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buflen += strlen(q) + 1;
data/zfs-linux-0.8.5/cmd/zed/zed_exec.c:62:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(q) + 1;
data/zfs-linux-0.8.5/cmd/zed/zed_exec.c:109:10: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
(void) umask(022);
data/zfs-linux-0.8.5/cmd/zed/zed_exec.c:224:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(*csp);
data/zfs-linux-0.8.5/cmd/zed/zed_file.c:39:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((n_read = read(fd, p, n_left)) < 0) {
data/zfs-linux-0.8.5/cmd/zed/zed_log.c:143:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n = read(_ctx.pipe_fd[0], &c, sizeof (c));
data/zfs-linux-0.8.5/cmd/zfs/zfs_iter.c:187:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
col->sc_user_prop = safe_malloc(strlen(name) + 1);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:677:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(update);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:684:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(update);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:1092:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(tname, name, strlen(tname)) == 0 &&
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:1093:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(name[strlen(tname)] == '/' || name[strlen(tname)] == '@')) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:1093:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(name[strlen(tname)] == '/' || name[strlen(tname)] == '@')) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:1962:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fake_name.pl_width = strlen(gettext("NAME"));
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2676:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
typelen = strlen(gettext(typestr));
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2691:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namelen = strlen(name);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:2724:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sizelen = strlen(sizebuf);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:3088:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cb.cb_width[i] = strlen(gettext(us_field_hdr[i]));
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5386:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *end = curr + strlen(perms);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5482:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *end = curr + strlen(curr);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5707:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
left = 70 - strlen(buf);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:5911:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(parent, path, delim - path);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6031:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t znamelen = strlen(zname);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6052:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t taglen = strlen(tag);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6466:5: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(10 * MILLISEC);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6542:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(mntopts);
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:6545:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (len + 1 + strlen(newopts) >= MNT_LINE_MAX) {
data/zfs-linux-0.8.5/cmd/zfs/zfs_main.c:7573:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(fd, progbuf + progread, progsize - progread);
data/zfs-linux-0.8.5/cmd/zfs/zfs_project.c:54:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
zpi = safe_malloc(sizeof (zfs_project_item_t) + strlen(name) + 1);
data/zfs-linux-0.8.5/cmd/zfs/zfs_project.c:235:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(ent->d_name) + strlen(name) >=
data/zfs-linux-0.8.5/cmd/zfs/zfs_project.c:235:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(ent->d_name) + strlen(name) >=
data/zfs-linux-0.8.5/cmd/zinject/translate.c:102:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(fullpath) >= MAXPATHLEN) {
data/zfs-linux-0.8.5/cmd/zinject/translate.c:142:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(fullpath, mp.mnt_mountp, strlen(mp.mnt_mountp)) != 0) {
data/zfs-linux-0.8.5/cmd/zinject/translate.c:150:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rel = fullpath + strlen(mp.mnt_mountp);
data/zfs-linux-0.8.5/cmd/zinject/zinject.c:700:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(str) > 5 || strlen(str) == 0)
data/zfs-linux-0.8.5/cmd/zinject/zinject.c:700:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(str) > 5 || strlen(str) == 0)
data/zfs-linux-0.8.5/cmd/zpool/zpool_iter.c:372:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
uniq_cols_width[i] = strlen(uniq_cols[i]);
data/zfs-linux-0.8.5/cmd/zpool/zpool_iter.c:383:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(data->lines[k]));
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:1738:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + depth > max)
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:1739:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
max = strlen(name) + depth;
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:2684:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cb.cb_namewidth = max_width(NULL, nvroot, 0, strlen(name),
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:3602:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
unsigned int slen = strlen(name);
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:3716:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namewidth = MAX(MAX(strlen(title), cb->cb_namewidth),
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:3717:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name ? strlen(name) : 0);
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:3776:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namewidth = MAX(MAX(strlen(title), cb->cb_namewidth),
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:3777:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
histo_vdev_name ? strlen(histo_vdev_name) : 0);
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:4055:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(histo_to_title[IOS_HISTO_IDX(cb->cb_flags)]));
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:4305:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + depth > cb->cb_namewidth)
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:4309:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)(cb->cb_namewidth - strlen(name) -
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:4567:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
unsigned int poolname_len = strlen(zpool_get_name(zhp));
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:5649:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strlen(name) + depth > cb->cb_namewidth)
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:5653:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)(cb->cb_namewidth - strlen(name) - depth), "");
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:7228:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)(strlen(date) - 1), date, space_buf);
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:8896:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(opts->poolname) > 0 &&
data/zfs-linux-0.8.5/cmd/zpool/zpool_main.c:9152:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fake_name.pl_width = strlen(gettext("NAME"));
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:475:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(path, UDISK_ROOT, strlen(UDISK_ROOT)) == 0)
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:480:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
"%s%s%d", path, isdigit(path[strlen(path)-1]) ?
data/zfs-linux-0.8.5/cmd/zpool/zpool_vdev.c:1293:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = strncmp(udevpath, UDISK_ROOT, strlen(UDISK_ROOT));
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:599:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) vsprintf(buf + strlen(buf), message, args);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:602:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) snprintf(buf + strlen(buf), FATAL_MSG_SZ - strlen(buf),
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:602:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) snprintf(buf + strlen(buf), FATAL_MSG_SZ - strlen(buf),
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:624:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(ends); i++) {
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:628:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (i == strlen(ends)) {
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:902:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(altdir) > 0) {
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:977:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(ztest_fd_rand, &r, sizeof (r)) != sizeof (r))
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:1656:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namesize = strlen(name) + 1;
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:1673:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namesize = strlen(name) + 1;
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:2275:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namesize = name ? strlen(name) + 1 : 0;
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:2288:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namesize = name ? strlen(name) + 1 : 0;
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:3491:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newpath[strlen(newpath) - 1] = 'b';
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7819:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hasalt = (strlen(ztest_opts.zo_alt_ztest) != 0);
data/zfs-linux-0.8.5/cmd/ztest/ztest.c:7834:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(ztest_opts.zo_alt_ztest) != 0) {
data/zfs-linux-0.8.5/cmd/zvol_id/zvol_id_main.c:100:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(zvol_name_part); i++) {
data/zfs-linux-0.8.5/include/spl/sys/sid.h:45:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(dom);
data/zfs-linux-0.8.5/include/spl/sys/sid.h:57:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
kmem_free(ksid->kd_name, strlen(ksid->kd_name) + 1);
data/zfs-linux-0.8.5/include/sys/dmu.h:599:32: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
uint64_t length, boolean_t read, void *tag,
data/zfs-linux-0.8.5/include/sys/zfs_context.h:713:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define strfree(str) kmem_free((str), strlen(str) + 1)
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:310:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t controller_length = strlen(
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:312:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(dki_info->dki_dname + controller_length,
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:516:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
error = read(fd, data, dk_ioc->dki_length);
data/zfs-linux-0.8.5/lib/libefi/rdwr_efi.c:603:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(50000);
data/zfs-linux-0.8.5/lib/libshare/libshare.c:123:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
eol = line + strlen(line) - 1;
data/zfs-linux-0.8.5/lib/libshare/nfs.c:247:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hostpath = malloc(strlen(linuxhost) + 1 + strlen(sharepath) + 1);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:247:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hostpath = malloc(strlen(linuxhost) + 1 + strlen(sharepath) + 1);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:262:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
opts = malloc(4 + strlen(security) + 4 + strlen(linux_opts) + 1);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:262:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
opts = malloc(4 + strlen(security) + 4 + strlen(linux_opts) + 1);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:301:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(*plinux_opts);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:303:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_linux_opts = realloc(*plinux_opts, len + 1 + strlen(key) +
data/zfs-linux-0.8.5/lib/libshare/nfs.c:304:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(value ? 1 + strlen(value) : 0) + 1);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:312:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(new_linux_opts, ",");
data/zfs-linux-0.8.5/lib/libshare/nfs.c:317:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(new_linux_opts, "=");
data/zfs-linux-0.8.5/lib/libshare/nfs.c:453:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hostpath = malloc(strlen(linuxhost) + 1 + strlen(sharepath) + 1);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:453:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hostpath = malloc(strlen(linuxhost) + 1 + strlen(sharepath) + 1);
data/zfs-linux-0.8.5/lib/libshare/nfs.c:568:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cur = line + strlen(line) - 1;
data/zfs-linux-0.8.5/lib/libshare/smb.c:123:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
while (line[strlen(line) - 1] == '\r' ||
data/zfs-linux-0.8.5/lib/libshare/smb.c:124:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line) - 1] == '\n')
data/zfs-linux-0.8.5/lib/libshare/smb.c:125:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line) - 1] = '\0';
data/zfs-linux-0.8.5/lib/libspl/getexecname.c:43:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(execname) == 0) {
data/zfs-linux-0.8.5/lib/libspl/gethostid.c:79:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read(fd, &hostid, hostid_size);
data/zfs-linux-0.8.5/lib/libspl/mkdirp.c:167:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mbPathlen = strlen(mbPath);
data/zfs-linux-0.8.5/lib/libspl/strlcat.c:44:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t l2 = strlen(src);
data/zfs-linux-0.8.5/lib/libspl/strlcpy.c:41:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t slen = strlen(src);
data/zfs-linux-0.8.5/lib/libspl/zone.c:56:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ssize_t ret = strlen(GLOBAL_ZONEID_NAME) + 1;
data/zfs-linux-0.8.5/lib/libspl/zone.c:61:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, GLOBAL_ZONEID_NAME, buflen);
data/zfs-linux-0.8.5/lib/libuutil/uu_alloc.c:61:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sz = strlen(str) + 1;
data/zfs-linux-0.8.5/lib/libuutil/uu_ident.c:95:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *end = name + strlen(name);
data/zfs-linux-0.8.5/lib/libuutil/uu_string.c:55:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return (strncmp(a, b, strlen(b)) == 0);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_changelist.c:286:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(parent);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_changelist.c:327:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) strlcat(newname, cn->cn_handle->zfs_name + strlen(src),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_config.c:348:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int namelen = strlen(poolname);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_config.c:360:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = (NULL == end) ? strlen(cur) : (end - cur);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_config.c:373:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = (NULL == end) ? strlen(cur) : (end - cur);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:77:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ssize_t rc = read(rand, buf + bytes_read, bytes - bytes_read);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:93:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strlen(str) > 8 && strncmp("file:///", str, 8) == 0)
data/zfs-linux-0.8.5/lib/libzfs/libzfs_crypto.c:471:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen((char *)key_material), ((uint8_t *)&salt),
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:726:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(dsname, path, bookp - path);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:1039:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(nvpair_name(elem)) >= ZAP_MAXNAMELEN) {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:2778:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
relpath = zhp->zfs_name + strlen(source);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3182:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(zfs_userquota_prop_prefixes[type])) == 0)
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3439:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t d1len = strlen(ds1);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3442:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(ds2) < d1len)
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3505:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slash = parent + strlen(parent);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3506:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(zc.zc_name, parent, slash - parent);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:3556:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*prefixlen = strlen(parent);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4769:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
entry->pl_width = strlen(nvpair_name(elem));
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4786:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buf) > entry->pl_width)
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4787:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
entry->pl_width = strlen(buf);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4792:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buf) > entry->pl_recvd_width)
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4793:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
entry->pl_recvd_width = strlen(buf);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4799:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(strval) > entry->pl_width)
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4800:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
entry->pl_width = strlen(strval);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4805:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buf) > entry->pl_recvd_width)
data/zfs-linux-0.8.5/lib/libzfs/libzfs_dataset.c:4806:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
entry->pl_recvd_width = strlen(buf);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:447:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rv = read(di->datafd, cp, len);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:604:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fdslen = atptrf ? atptrf - fromsnap : strlen(fromsnap);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:605:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tdslen = atptrt ? atptrt - tosnap : strlen(tosnap);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:606:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fsnlen = strlen(fromsnap) - fdslen; /* includes @ sign */
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:607:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tsnlen = strlen(tosnap) - tdslen; /* includes @ sign */
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:622:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(di->ds, tosnap, tdslen);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:660:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(di->ds, fdslen ? fromsnap : tosnap, dslen);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:797:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) strlcpy(zc.zc_value, di.fromsnap, strlen(di.fromsnap) + 1);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_diff.c:798:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) strlcpy(zc.zc_name, di.tosnap, strlen(di.tosnap) + 1);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_iter.c:562:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namelen = strlen(zhp->zfs_name);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:1312:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(strstr(path2, path1) == path2 && path2[strlen(path1)] == '/'));
data/zfs-linux-0.8.5/lib/libzfs/libzfs_mount.c:1622:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namelen = strlen(zhp->zpool_name);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:437:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(pool);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:699:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(strval) > ZPROP_MAX_COMMENT) {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:835:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
entry->pl_width = strlen(entry->pl_user_prop);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:878:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
entry->pl_width = strlen(entry->pl_user_prop);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:893:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buf) > entry->pl_width)
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:894:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
entry->pl_width = strlen(buf);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:1841:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(desc) > 0)
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2479:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(val, type, strlen(val)) != 0) {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2602:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(name, VDEV_TYPE_RAIDZ, strlen(VDEV_TYPE_RAIDZ)) == 0 ||
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2603:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncmp(name, VDEV_TYPE_SPARE, strlen(VDEV_TYPE_SPARE)) == 0 ||
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2605:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
VDEV_TYPE_REPLACING, strlen(VDEV_TYPE_REPLACING)) == 0 ||
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:2606:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncmp(name, VDEV_TYPE_MIRROR, strlen(VDEV_TYPE_MIRROR)) == 0)
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3931:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(zc.zc_name, zhp->zpool_name, sizeof (zc.zc_name));
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:3932:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(zc.zc_value, path, sizeof (zc.zc_value));
data/zfs-linux-0.8.5/lib/libzfs/libzfs_pool.c:4643:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(fd, &id, sizeof (id)) != sizeof (id))
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:1708:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(token) / 2;
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:2334:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rv = read(fd, cp, len);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3035:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(fsname)+1, newname, flags);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3076:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(fsname)+1, newname, flags);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3092:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
error = recv_destroy(hdl, fsname, strlen(tofs)+1,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3181:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(tofs)+1, newname, flags);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3906:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(drrb->drr_toname);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3935:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
chopprefix = drrb->drr_toname + strlen(sendfs);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3945:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
chopprefix = drrb->drr_toname + strlen(drrb->drr_toname);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:3950:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ASSERT(chopprefix <= drrb->drr_toname + strlen(drrb->drr_toname) ||
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4062:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(sendfs)) != '\0' && *chopprefix != '@')) &&
data/zfs-linux-0.8.5/lib/libzfs/libzfs_sendrecv.c:4246:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
create_parents(hdl, destsnap, strlen(tosnap)) != 0) {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:937:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strncasecmp(load_str, "YES", strlen("YES")) ||
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:938:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
!strncasecmp(load_str, "ON", strlen("ON")))
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:978:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(10 * MILLISEC);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1108:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (path[0] != '/' && strncmp(path, "./", strlen("./")) != 0) {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1266:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cbp->cb_colwidths[GET_COL_NAME] = strlen(dgettext(TEXT_DOMAIN, "NAME"));
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1267:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cbp->cb_colwidths[GET_COL_PROPERTY] = strlen(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1269:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cbp->cb_colwidths[GET_COL_VALUE] = strlen(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1271:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cbp->cb_colwidths[GET_COL_RECVD] = strlen(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1273:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cbp->cb_colwidths[GET_COL_SOURCE] = strlen(dgettext(TEXT_DOMAIN,
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1297:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(propname);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1301:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(pl->pl_user_prop);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1330:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(dgettext(TEXT_DOMAIN, "inherited from"));
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1474:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(ends); i++) {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1478:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (i == strlen(ends)) {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1627:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(*svalp) >= ZFS_MAXPROPLEN) {
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1778:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
entry->pl_width = strlen(propname);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1827:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(props);
data/zfs-linux-0.8.5/lib/libzfs/libzfs_util.c:1985:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((rlen = read(fd, version, len)) == -1) {
data/zfs-linux-0.8.5/lib/libzfs_core/libzfs_core.c:716:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rv = read(fd, cp, len);
data/zfs-linux-0.8.5/lib/libzfs_core/libzfs_core.c:809:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (origin != NULL && strlen(origin))
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:561:15: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
old_umask = umask(0);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:575:10: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
(void) umask(old_umask);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:620:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *realpath = umem_alloc(strlen(path) + 2, UMEM_NOFAIL);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:629:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
umem_free(realpath, strlen(path) + 2);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:729:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(string);
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:760:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen("debug=");
data/zfs-linux-0.8.5/lib/libzpool/kernel.c:1032:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bytes = read(fd, ptr, resid);
data/zfs-linux-0.8.5/lib/libzpool/taskq.c:272:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(tq->tq_name, name, TASKQ_NAMELEN);
data/zfs-linux-0.8.5/lib/libzpool/util.c:102:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)(indent+strlen(desc)-25-(vs->vs_space ? 0 : 12)),
data/zfs-linux-0.8.5/lib/libzpool/util.c:121:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(cname) + 2;
data/zfs-linux-0.8.5/lib/libzpool/util.c:125:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tname[strlen(tname)] = '0' + np;
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:50:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(path);
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:52:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strncmp(path, UDISK_ROOT, strlen(UDISK_ROOT)) == 0) ||
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:53:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(strncmp(path, ZVOL_ROOT, strlen(ZVOL_ROOT)) == 0)) {
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:67:11: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
(void) strcat(path, "1");
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:133:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmp_len = strlen(cmp_name);
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:146:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
while (dir[strlen(dir)-1] == '/')
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:147:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dir[strlen(dir)-1] = '\0';
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:202:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
path_len = strlen(path_name);
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:203:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmp_len = strlen(cmp_name);
data/zfs-linux-0.8.5/lib/libzutil/zutil_device_path.c:561:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlcpy(sd_offset, new_sd, strlen(sd_offset) + 1);
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:265:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(name, ZVOL_ROOT, strlen(ZVOL_ROOT)) == 0) {
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:294:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(name, devbyid, strlen(devbyid)) == 0) {
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:295:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name += strlen(DEV_BYID_PATH);
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:320:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (physpath != NULL && strlen(physpath) > 0) {
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:333:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (physpath != NULL && strlen(physpath) > 0) {
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:344:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(physpath, ZVOL_ROOT, strlen(ZVOL_ROOT)) == 0) {
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:436:12: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
(void) usleep(sleep_ms * MILLISEC);
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:475:10: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
(void) usleep(sleep_ms * MILLISEC);
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:502:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(sleep_ms * MILLISEC);
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:552:11: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
(void) usleep(10 * MILLISEC);
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:724:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(path) == strlen(ne->ne_name)) &&
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:724:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(path) == strlen(ne->ne_name)) &&
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:725:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncmp(path, ne->ne_name, strlen(path)) == 0) {
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:1933:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(name, dir, strlen(dir)) == 0) {
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:1945:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(zpool_default_import_path[i])) == 0) {
data/zfs-linux-0.8.5/lib/libzutil/zutil_import.c:2223:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(fd, buf, statbuf.st_size) != statbuf.st_size) {
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:180:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_digest_mechs_tab[0].me_name, SUN_CKM_MD5,
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:184:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_digest_mechs_tab[1].me_name, SUN_CKM_SHA1,
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:189:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_cipher_mechs_tab[0].me_name, SUN_CKM_DES_CBC,
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:193:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_cipher_mechs_tab[1].me_name, SUN_CKM_DES3_CBC,
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:197:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_cipher_mechs_tab[2].me_name, SUN_CKM_DES_ECB,
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:201:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_cipher_mechs_tab[3].me_name, SUN_CKM_DES3_ECB,
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:205:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_cipher_mechs_tab[4].me_name, SUN_CKM_BLOWFISH_CBC,
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:209:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_cipher_mechs_tab[5].me_name, SUN_CKM_BLOWFISH_ECB,
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:213:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_cipher_mechs_tab[6].me_name, SUN_CKM_AES_CBC,
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:217:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_cipher_mechs_tab[7].me_name, SUN_CKM_AES_ECB,
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:221:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_cipher_mechs_tab[8].me_name, SUN_CKM_RC4,
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:227:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_mac_mechs_tab[0].me_name, SUN_CKM_MD5_HMAC,
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:231:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_mac_mechs_tab[1].me_name, SUN_CKM_MD5_HMAC_GENERAL,
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:235:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_mac_mechs_tab[2].me_name, SUN_CKM_SHA1_HMAC,
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:239:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_mac_mechs_tab[3].me_name, SUN_CKM_SHA1_HMAC_GENERAL,
data/zfs-linux-0.8.5/module/icp/core/kcf_mech_tabs.c:245:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(kcf_misc_mechs_tab[0].me_name, SUN_RANDOM,
data/zfs-linux-0.8.5/module/icp/os/modhash.c:230:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
kmem_free(c, strlen(c) + 1);
data/zfs-linux-0.8.5/module/icp/os/modhash.c:237:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
kmem_free(c, strlen(c) + 1);
data/zfs-linux-0.8.5/module/icp/os/modhash.c:462:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size = strlen(hname) + 1;
data/zfs-linux-0.8.5/module/icp/os/modhash.c:528:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
kmem_free(hash->mh_name, strlen(hash->mh_name) + 1);
data/zfs-linux-0.8.5/module/icp/spi/kcf_spi.c:153:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
MIN(strlen(info->pi_provider_description),
data/zfs-linux-0.8.5/module/icp/spi/kcf_spi.c:609:11: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(rand_mi->cm_mech_name, SUN_RANDOM,
data/zfs-linux-0.8.5/module/lua/lauxlib.c:328:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*len = (def ? strlen(def) : 0);
data/zfs-linux-0.8.5/module/lua/lauxlib.c:427:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
luaL_addlstring(B, s, strlen(s));
data/zfs-linux-0.8.5/module/lua/lauxlib.c:548:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return luaL_loadbuffer(L, s, strlen(s), s);
data/zfs-linux-0.8.5/module/lua/lauxlib.c:629:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (e == NULL) e = fname + strlen(fname);
data/zfs-linux-0.8.5/module/lua/lauxlib.c:761:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t l = strlen(p);
data/zfs-linux-0.8.5/module/lua/lobject.c:185:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pushstr(L, s, strlen(s));
data/zfs-linux-0.8.5/module/lua/lobject.c:222:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pushstr(L, fmt, strlen(fmt));
data/zfs-linux-0.8.5/module/lua/lobject.c:248:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t l = strlen(source);
data/zfs-linux-0.8.5/module/lua/lstring.c:172:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return luaS_newlstr(L, str, strlen(str));
data/zfs-linux-0.8.5/module/lua/lstrlib.c:582:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
upto += strlen(p + upto) + 1; /* may have more after \0 */
data/zfs-linux-0.8.5/module/lua/lstrlib.c:894:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t l = strlen(form);
data/zfs-linux-0.8.5/module/lua/lstrlib.c:895:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lm = strlen(lenmod);
data/zfs-linux-0.8.5/module/lua/lvm.c:219:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(l); /* index of first `\0' in both strings */
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:747:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return (strlen(NVP_NAME(nvp)) == nvp->nvp_name_sz - 1 ? 0 : EFAULT);
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:1042:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
value_sz = strlen(data) + 1;
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:1085:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
value_sz += strlen(strs[i]) + 1;
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:1179:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name_sz = strlen(name) + 1;
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:1205:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int slen = strlen(strs[i]) + 1;
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:1967:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(np);
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:1998:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(strlen(nvpair_name(nvp)) != n))
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:2939:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf += strlen(buf) + 1;
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:3227:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nvp->nvp_name_sz = strlen(buf) + 1;
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:3379:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(buf) + 1;
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:3399:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
uint64_t nvp_sz = 4 + 4 + 4 + NV_ALIGN4(strlen(NVP_NAME(nvp))) + 4 + 4;
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:3426:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nvp_sz += 4 + NV_ALIGN4(strlen((char *)NVP_VALUE(nvp)));
data/zfs-linux-0.8.5/module/nvpair/nvpair.c:3453:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nvp_sz += 4 + NV_ALIGN4(strlen(strs[i]));
data/zfs-linux-0.8.5/module/spl/spl-generic.c:450:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(ptr) == 0) \
data/zfs-linux-0.8.5/module/spl/spl-kmem-cache.c:896:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
skc->skc_name_size = strlen(name) + 1;
data/zfs-linux-0.8.5/module/spl/spl-kmem-cache.c:902:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(skc->skc_name, name, skc->skc_name_size);
data/zfs-linux-0.8.5/module/spl/spl-kmem.c:114:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(str);
data/zfs-linux-0.8.5/module/spl/spl-kstat.c:545:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(kpep->kpe_module, module, KSTAT_STRLEN);
data/zfs-linux-0.8.5/module/spl/spl-kstat.c:546:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(kpep->kpe_name, name, KSTAT_STRLEN);
data/zfs-linux-0.8.5/module/spl/spl-kstat.c:580:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ksp->ks_class, ks_class, KSTAT_STRLEN);
data/zfs-linux-0.8.5/module/spl/spl-proc.c:96:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int size = MIN(strlen(kbuffer), ubuffer_size);
data/zfs-linux-0.8.5/module/spl/spl-thread.c:97:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tp->tp_name_size = strlen(name) + 1;
data/zfs-linux-0.8.5/module/spl/spl-thread.c:105:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tp->tp_name, name, tp->tp_name_size);
data/zfs-linux-0.8.5/module/spl/spl-vnode.c:221:36: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
saved_umask = xchg(¤t->fs->umask, 0);
data/zfs-linux-0.8.5/module/spl/spl-vnode.c:226:29: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
(void) xchg(¤t->fs->umask, saved_umask);
data/zfs-linux-0.8.5/module/spl/spl-vnode.c:272:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(path) + 2;
data/zfs-linux-0.8.5/module/spl/spl-xdr.c:436:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t slen = strlen(*sp);
data/zfs-linux-0.8.5/module/unicode/u8_textprep.c:1882:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n1 = strlen(s1);
data/zfs-linux-0.8.5/module/unicode/u8_textprep.c:1883:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n2 = strlen(s2);
data/zfs-linux-0.8.5/module/zcommon/zfs_fletcher.c:372:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
val_len = strlen(val);
data/zfs-linux-0.8.5/module/zcommon/zfs_fletcher.c:380:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (val_len == strlen(name) &&
data/zfs-linux-0.8.5/module/zcommon/zfs_fletcher.c:393:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (val_len == strlen(name) &&
data/zfs-linux-0.8.5/module/zcommon/zfs_namecheck.c:102:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(path) >= ZFS_MAX_DATASET_NAME_LEN) {
data/zfs-linux-0.8.5/module/zcommon/zfs_namecheck.c:137:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(path) >= ZFS_PERMSET_MAXLEN) {
data/zfs-linux-0.8.5/module/zcommon/zfs_namecheck.c:189:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(path) >= ZFS_MAX_DATASET_NAME_LEN) {
data/zfs-linux-0.8.5/module/zcommon/zfs_namecheck.c:379:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(pool) >= (ZFS_MAX_DATASET_NAME_LEN - 2 -
data/zfs-linux-0.8.5/module/zcommon/zfs_namecheck.c:380:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(ORIGIN_DIR_NAME) * 2)) {
data/zfs-linux-0.8.5/module/zcommon/zfs_prop.c:629:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(name); i++) {
data/zfs-linux-0.8.5/module/zcommon/zfs_prop.c:655:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(zfs_userquota_prop_prefixes[prop])) == 0) {
data/zfs-linux-0.8.5/module/zcommon/zfs_prop.c:672:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return (strncmp(name, prefix, strlen(prefix)) == 0);
data/zfs-linux-0.8.5/module/zcommon/zfs_prop.c:802:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strlen(str) > 8 && strncmp("file:///", str, 8) == 0)
data/zfs-linux-0.8.5/module/zcommon/zpool_prop.c:204:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return (strncmp(name, prefix, strlen(prefix)) == 0);
data/zfs-linux-0.8.5/module/zcommon/zpool_prop.c:214:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return (strncmp(name, prefix, strlen(prefix)) == 0);
data/zfs-linux-0.8.5/module/zcommon/zprop_common.c:239:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (len == strlen(propname) &&
data/zfs-linux-0.8.5/module/zcommon/zprop_common.c:244:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (colname == NULL || len != strlen(colname))
data/zfs-linux-0.8.5/module/zcommon/zprop_common.c:267:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (propname_match(data->propname, strlen(data->propname),
data/zfs-linux-0.8.5/module/zcommon/zprop_common.c:420:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = strlen(pd->pd_colname);
data/zfs-linux-0.8.5/module/zcommon/zprop_common.c:450:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(idx[i].pi_name) > ret)
data/zfs-linux-0.8.5/module/zcommon/zprop_common.c:451:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = strlen(idx[i].pi_name);
data/zfs-linux-0.8.5/module/zfs/dmu.c:501:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
boolean_t read, void *tag, int *numbufsp, dmu_buf_t ***dbpp, uint32_t flags)
data/zfs-linux-0.8.5/module/zfs/dmu.c:551:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read)
data/zfs-linux-0.8.5/module/zfs/dmu.c:559:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read && DNODE_IS_CACHEABLE(dn));
data/zfs-linux-0.8.5/module/zfs/dmu.c:571:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read) {
data/zfs-linux-0.8.5/module/zfs/dmu.c:595:26: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
uint64_t length, int read, void *tag, int *numbufsp, dmu_buf_t ***dbpp)
data/zfs-linux-0.8.5/module/zfs/dmu.c:604:56: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
err = dmu_buf_hold_array_by_dnode(dn, offset, length, read, tag,
data/zfs-linux-0.8.5/module/zfs/dmu.c:614:32: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
uint64_t length, boolean_t read, void *tag, int *numbufsp,
data/zfs-linux-0.8.5/module/zfs/dmu.c:623:56: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
err = dmu_buf_hold_array_by_dnode(dn, offset, length, read, tag,
data/zfs-linux-0.8.5/module/zfs/dmu_objset.c:1130:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(doca->doca_name) >= ZFS_MAX_DATASET_NAME_LEN)
data/zfs-linux-0.8.5/module/zfs/dmu_objset.c:1320:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(doca->doca_clone) >= ZFS_MAX_DATASET_NAME_LEN)
data/zfs-linux-0.8.5/module/zfs/dmu_objset.c:1943:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ASSERT(strlen(id) < sizeof (uqn->uqn_id));
data/zfs-linux-0.8.5/module/zfs/dmu_objset.c:2536:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(attr.za_name) + 1 > namelen) {
data/zfs-linux-0.8.5/module/zfs/dmu_objset.c:2581:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(attr.za_name) + 1 > namelen) {
data/zfs-linux-0.8.5/module/zfs/dmu_recv.c:332:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ASSERT3U(strlen(tofs), <, sizeof (buf));
data/zfs-linux-0.8.5/module/zfs/dmu_recv.c:517:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
1, strlen(drrb->drr_toname) + 1, drrb->drr_toname, tx));
data/zfs-linux-0.8.5/module/zfs/dsl_bookmark.c:42:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(fullname) >= ZFS_MAX_DATASET_NAME_LEN)
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:1563:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ZPROP_SRC_LOCAL, 1, strlen(keylocation) + 1,
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:1769:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ZPROP_SRC_LOCAL, 1, strlen(keylocation) + 1, keylocation, tx);
data/zfs-linux-0.8.5/module/zfs/dsl_crypt.c:2317:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ZPROP_SRC_LOCAL, 1, strlen(keylocation) + 1,
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:880:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(ds->ds_snapname);
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:1553:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) >= ZFS_MAX_DATASET_NAME_LEN)
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:2436:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ASSERT0(strncmp(dsname, source, strlen(source)));
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:2437:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
relpath = dsname + strlen(source);
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:2678:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(ddrsa->ddrsa_newsnapname) >= ZFS_MAX_DATASET_NAME_LEN)
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:3043:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
max_snap_len = MAXNAMELEN - strlen(ddpa->ddpa_clonename) - 1;
data/zfs-linux-0.8.5/module/zfs/dsl_dataset.c:3123:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(ds->ds_snapname) >= max_snap_len) {
data/zfs-linux-0.8.5/module/zfs/dsl_dir.c:365:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result += strlen(dd->dd_myname);
data/zfs-linux-0.8.5/module/zfs/dsl_dir.c:368:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result += strlen(dd->dd_myname);
data/zfs-linux-0.8.5/module/zfs/dsl_dir.c:396:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(path) >= ZFS_MAX_DATASET_NAME_LEN)
data/zfs-linux-0.8.5/module/zfs/dsl_dir.c:403:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(component, path, p - path);
data/zfs-linux-0.8.5/module/zfs/dsl_dir.c:415:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(component, path, p - path);
data/zfs-linux-0.8.5/module/zfs/dsl_dir.c:1876:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int namelen = strlen(namebuf) + dvra->char_delta;
data/zfs-linux-0.8.5/module/zfs/dsl_dir.c:1952:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dvra.char_delta = strlen(ddra->ddra_newname)
data/zfs-linux-0.8.5/module/zfs/dsl_dir.c:1953:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
- strlen(ddra->ddra_oldname);
data/zfs-linux-0.8.5/module/zfs/dsl_prop.c:60:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(buf, zfs_prop_default_string(prop),
data/zfs-linux-0.8.5/module/zfs/dsl_prop.c:883:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(nvpair_name(elem)) >= ZAP_MAXNAMELEN) {
data/zfs-linux-0.8.5/module/zfs/dsl_prop.c:889:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(valstr) >= (version <
data/zfs-linux-0.8.5/module/zfs/dsl_prop.c:931:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
source, 1, strlen(value) + 1, value, tx);
data/zfs-linux-0.8.5/module/zfs/dsl_prop.c:1026:11: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(buf, za.za_name, (suffix - za.za_name));
data/zfs-linux-0.8.5/module/zfs/dsl_scan.c:3718:7: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
int equal;
data/zfs-linux-0.8.5/module/zfs/dsl_userhold.c:60:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(htag) > MAXNAMELEN)
data/zfs-linux-0.8.5/module/zfs/dsl_userhold.c:63:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (temphold && strlen(htag) + MAX_TAG_PREFIX_LEN >= MAXNAMELEN)
data/zfs-linux-0.8.5/module/zfs/dsl_userhold.c:101:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(nvpair_name(pair)) +
data/zfs-linux-0.8.5/module/zfs/dsl_userhold.c:102:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(fnvpair_value_string(pair));
data/zfs-linux-0.8.5/module/zfs/sa.c:825:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(sa->sa_attr_table[i].sa_name) + 1);
data/zfs-linux-0.8.5/module/zfs/sa.c:934:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
kmem_zalloc(strlen(za.za_name) +1, KM_SLEEP);
data/zfs-linux-0.8.5/module/zfs/sa.c:936:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(za.za_name) +1);
data/zfs-linux-0.8.5/module/zfs/sa.c:959:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
kmem_zalloc(strlen(sa_legacy_attrs[i].sa_name) +1,
data/zfs-linux-0.8.5/module/zfs/sa.c:963:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(sa_legacy_attrs[i].sa_name) + 1);
data/zfs-linux-0.8.5/module/zfs/sa.c:978:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
kmem_zalloc(strlen(reg_attrs[i].sa_name) + 1, KM_SLEEP);
data/zfs-linux-0.8.5/module/zfs/sa.c:980:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(reg_attrs[i].sa_name) + 1);
data/zfs-linux-0.8.5/module/zfs/spa.c:699:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(strval) > ZPROP_MAX_COMMENT)
data/zfs-linux-0.8.5/module/zfs/spa.c:6170:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
oldvd->vdev_path = kmem_alloc(strlen(newvd->vdev_path) + 5,
data/zfs-linux-0.8.5/module/zfs/spa.c:6172:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) snprintf(oldvd->vdev_path, strlen(newvd->vdev_path) + 5,
data/zfs-linux-0.8.5/module/zfs/spa.c:6373:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(vd->vdev_path);
data/zfs-linux-0.8.5/module/zfs/spa.c:7983:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
1, strlen(strval) + 1, strval, tx));
data/zfs-linux-0.8.5/module/zfs/spa_errlog.c:321:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*obj, buf, 1, strlen(name) + 1, name, tx);
data/zfs-linux-0.8.5/module/zfs/spa_misc.c:1418:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(s);
data/zfs-linux-0.8.5/module/zfs/spa_misc.c:1429:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
kmem_free(s, strlen(s) + 1);
data/zfs-linux-0.8.5/module/zfs/spa_misc.c:1607:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(buf, spa->spa_root, buflen);
data/zfs-linux-0.8.5/module/zfs/vdev.c:2021:7: [1] (buffer) mismatch:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (mismatch) {
data/zfs-linux-0.8.5/module/zfs/vdev.c:2792:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
1, strlen(string) + 1, string, tx));
data/zfs-linux-0.8.5/module/zfs/zap_micro.c:139:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t inlen = strlen(name) + 1;
data/zfs-linux-0.8.5/module/zfs/zap_micro.c:182:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
zn->zn_key_orig_numints = strlen(zn->zn_key_orig) + 1;
data/zfs-linux-0.8.5/module/zfs/zap_micro.c:205:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
zn->zn_key_norm_numints = strlen(zn->zn_key_norm) + 1;
data/zfs-linux-0.8.5/module/zfs/zap_micro.c:227:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
zn->zn_key_norm_numints = strlen(zn->zn_key_norm) + 1;
data/zfs-linux-0.8.5/module/zfs/zap_micro.c:1242:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(key) >= MZAP_NAME_LEN ||
data/zfs-linux-0.8.5/module/zfs/zap_micro.c:1341:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(name) >= MZAP_NAME_LEN) {
data/zfs-linux-0.8.5/module/zfs/zcp.c:264:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
parselen == strlen(key)) ||
data/zfs-linux-0.8.5/module/zfs/zcp.c:1122:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
err = luaL_loadbufferx(state, program, strlen(program),
data/zfs-linux-0.8.5/module/zfs/zcp.c:1244:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msglen = strlen(errmsg);
data/zfs-linux-0.8.5/module/zfs/zcp.c:1245:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msglen += strlen(fname) + 4; /* : + {} + null terminator */
data/zfs-linux-0.8.5/module/zfs/zcp.c:1247:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msglen += strlen(pargs[i].za_name);
data/zfs-linux-0.8.5/module/zfs/zcp.c:1248:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msglen += strlen(lua_typename(state, pargs[i].za_lua_type));
data/zfs-linux-0.8.5/module/zfs/zcp.c:1255:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msglen += strlen(kwargs[i].za_name);
data/zfs-linux-0.8.5/module/zfs/zcp.c:1256:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msglen += strlen(lua_typename(state, kwargs[i].za_lua_type));
data/zfs-linux-0.8.5/module/zfs/zcp_get.c:654:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(zfs_userquota_prop_prefixes[type])) == 0)
data/zfs-linux-0.8.5/module/zfs/zcp_get.c:686:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(domain_val, cp, domain_len);
data/zfs-linux-0.8.5/module/zfs/zfeature.c:359:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
feature->fi_guid, 1, strlen(feature->fi_desc) + 1,
data/zfs-linux-0.8.5/module/zfs/zfs_ctldir.c:699:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(full_name) + 1 + strlen(snap_name)) >= len)
data/zfs-linux-0.8.5/module/zfs/zfs_ctldir.c:699:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(full_name) + 1 + strlen(snap_name)) >= len)
data/zfs-linux-0.8.5/module/zfs/zfs_ctldir.c:702:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
(void) strcat(full_name, "@");
data/zfs-linux-0.8.5/module/zfs/zfs_debug.c:134:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int size = sizeof (zfs_dbgmsg_t) + strlen(buf);
data/zfs-linux-0.8.5/module/zfs/zfs_debug.c:186:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nl = &buf[strlen(buf) - 1];
data/zfs-linux-0.8.5/module/zfs/zfs_debug.c:228:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = write(STDOUT_FILENO, tag, strlen(tag));
data/zfs-linux-0.8.5/module/zfs/zfs_debug.c:235:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(zdm->zdm_msg));
data/zfs-linux-0.8.5/module/zfs/zfs_debug.c:240:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = write(STDOUT_FILENO, tag, strlen(tag));
data/zfs-linux-0.8.5/module/zfs/zfs_dir.c:296:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dl->dl_namesize = strlen(dl->dl_name) + 1;
data/zfs-linux-0.8.5/module/zfs/zfs_fuid.c:463:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fuidp->z_domain_str_sz += strlen(domain) + 1;
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:689:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!zoned || strlen(dsname) <= strlen(setpoint))
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:689:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!zoned || strlen(dsname) <= strlen(setpoint))
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:800:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(parent, datasetname, parentsize);
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:2274:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t orig_len = strlen(zc->zc_name);
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:2286:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = zc->zc_name + strlen(zc->zc_name);
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:2368:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sizeof (zc->zc_name) - strlen(zc->zc_name),
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:2369:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
zc->zc_name + strlen(zc->zc_name), &zc->zc_obj,
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:2759:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(propname) >= ZAP_MAXNAMELEN)
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:2762:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(fnvpair_value_string(pair)) >= ZAP_MAXVALUELEN)
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:3479:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
poollen = strlen(poolname);
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:3736:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
poollen = strlen(poolname);
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:4212:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(uq_prefix)) == 0) {
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:4215:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(uiq_prefix)) == 0) {
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:4218:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(gq_prefix)) == 0) {
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:4221:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(giq_prefix)) == 0) {
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:4224:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(pq_prefix)) == 0) {
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:4227:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(piq_prefix)) == 0) {
data/zfs-linux-0.8.5/module/zfs/zfs_ioctl.c:5840:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(htag) == 0)
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:218:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(zdomain->z_domain) + 1);
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:220:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(zdomain->z_domain) + 1;
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:287:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namesize = strlen(name) + 1;
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:395:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namesize = strlen(name) + 1;
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:430:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namesize = strlen(name) + 1;
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:453:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namesize = strlen(name) + 1;
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:454:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t linksize = strlen(link) + 1;
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:485:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t snamesize = strlen(sname) + 1;
data/zfs-linux-0.8.5/module/zfs/zfs_log.c:486:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dnamesize = strlen(dname) + 1;
data/zfs-linux-0.8.5/module/zfs/zfs_replay.c:176:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
start = (caddr_t)start + strlen(start) + 1;
data/zfs-linux-0.8.5/module/zfs/zfs_replay.c:540:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
link = name + strlen(name) + 1;
data/zfs-linux-0.8.5/module/zfs/zfs_replay.c:633:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *tname = sname + strlen(sname) + 1;
data/zfs-linux-0.8.5/module/zfs/zfs_vnops.c:1283:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (zfsvfs->z_utf8 && u8_validate(nm, strlen(nm),
data/zfs-linux-0.8.5/module/zfs/zfs_vnops.c:1359:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (zfsvfs->z_utf8 && u8_validate(name, strlen(name),
data/zfs-linux-0.8.5/module/zfs/zfs_vnops.c:1990:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(dirname), NULL, U8_VALIDATE_ENTIRE, &error) < 0) {
data/zfs-linux-0.8.5/module/zfs/zfs_vnops.c:2330:11: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
(void) strcpy(zap.za_name, ".");
data/zfs-linux-0.8.5/module/zfs/zfs_vnops.c:2379:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
done = !zpl_dir_emit(ctx, zap.za_name, strlen(zap.za_name),
data/zfs-linux-0.8.5/module/zfs/zfs_vnops.c:3705:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(tnm), NULL, U8_VALIDATE_ENTIRE, &error) < 0) {
data/zfs-linux-0.8.5/module/zfs/zfs_vnops.c:4047:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
uint64_t len = strlen(link);
data/zfs-linux-0.8.5/module/zfs/zfs_vnops.c:4064:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (zfsvfs->z_utf8 && u8_validate(name, strlen(name),
data/zfs-linux-0.8.5/module/zfs/zfs_vnops.c:4320:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(name), NULL, U8_VALIDATE_ENTIRE, &error) < 0) {
data/zfs-linux-0.8.5/module/zfs/zfs_znode.c:2150:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
complen = strlen(component);
data/zfs-linux-0.8.5/module/zfs/zio_inject.c:884:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(name, spa_name(handler->zi_spa), buflen);
data/zfs-linux-0.8.5/module/zfs/zpl_ctldir.c:65:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(ZFS_SNAPDIR_NAME), ZFSCTL_INO_SNAPDIR, DT_DIR))
data/zfs-linux-0.8.5/module/zfs/zpl_ctldir.c:73:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(ZFS_SHAREDIR_NAME), ZFSCTL_INO_SHARES, DT_DIR))
data/zfs-linux-0.8.5/module/zfs/zpl_ctldir.c:276:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!zpl_dir_emit(ctx, snapname, strlen(snapname),
data/zfs-linux-0.8.5/module/zfs/zpl_file.c:248:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ssize_t read;
data/zfs-linux-0.8.5/module/zfs/zpl_file.c:268:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
*ppos += read;
data/zfs-linux-0.8.5/module/zfs/zpl_file.c:270:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return (read);
data/zfs-linux-0.8.5/module/zfs/zpl_file.c:294:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ssize_t read;
data/zfs-linux-0.8.5/module/zfs/zpl_file.c:317:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return (read);
data/zfs-linux-0.8.5/module/zfs/zpl_inode.c:108:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ci_name.len = strlen(pn.pn_buf);
data/zfs-linux-0.8.5/module/zfs/zpl_xattr.c:170:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
error = zpl_xattr_filldir(xf, zap.za_name, strlen(zap.za_name));
data/zfs-linux-0.8.5/module/zfs/zpl_xattr.c:228:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(nvpair_name(nvp)));
data/zfs-linux-0.8.5/module/zfs/zvol.c:2177:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int namelen = ((name) ? strlen(name) : 0);
data/zfs-linux-0.8.5/module/zfs/zvol.c:2304:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
oldnamelen = strlen(oldname);
data/zfs-linux-0.8.5/module/zfs/zvol.c:2305:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newnamelen = strlen(newname);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/chg_usr_exec/chg_usr_exec.c:45:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (argc < 3 || strlen(argv[1]) == 0) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/chg_usr_exec/chg_usr_exec.c:55:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len += strlen(argv[i]) + strlen(sep);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/chg_usr_exec/chg_usr_exec.c:55:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len += strlen(argv[i]) + strlen(sep);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/devname2devid/devname2devid.c:84:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(name, devbyid, strlen(devbyid)) == 0) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/devname2devid/devname2devid.c:85:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name += strlen(DEV_BYID_PATH);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/dir_rd_update/dir_rd_update.c:66:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(cp1) >= (sizeof (dirpath) - strlen("TMP_DIR"))) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/dir_rd_update/dir_rd_update.c:66:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(cp1) >= (sizeof (dirpath) - strlen("TMP_DIR"))) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/dir_rd_update/dir_rd_update.c:72:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(void) strcat(&dirpath[strlen(dirpath)], "TMP_DIR");
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/dir_rd_update/dir_rd_update.c:105:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rdret = read(fd, buf, 16);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_check/file_check.c:69:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((n = read(bigfd, &bigbuffer, bigbuffersize)) == -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_trunc/file_trunc.c:201:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(fd, rbuf, bsize) < bsize) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_write/file_write.c:178:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strncmp(operation, "create", strlen(operation) + 1)) == 0 ||
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_write/file_write.c:179:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(strncmp(operation, "overwrite", strlen(operation) + 1)) == 0) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/file_write/file_write.c:181:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
} else if ((strncmp(operation, "append", strlen(operation) + 1)) == 0) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mkbusy/mkbusy.c:111:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
arglen = strlen(arg);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mkfile/mkfile.c:89:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(argv[1]);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mktree/mktree.c:163:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < size / strlen(context); i++) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/mktree/mktree.c:164:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int offset = i * strlen(context);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/rm_lnkcnt_zero_file/rm_lnkcnt_zero_file.c:65:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(filebase) + 5;
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/rm_lnkcnt_zero_file/rm_lnkcnt_zero_file.c:85:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(filebase) + 5;
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/user_ns_exec/user_ns_exec.c:58:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(sync_pipe, &sync_buf, 1) != 1) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/user_ns_exec/user_ns_exec.c:78:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len += strlen(argv[i]) + strlen(sep);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/user_ns_exec/user_ns_exec.c:78:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len += strlen(argv[i]) + strlen(sep);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/user_ns_exec/user_ns_exec.c:123:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (argc < 2 || strlen(argv[1]) == 0) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/user_ns_exec/user_ns_exec.c:148:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(syncfd[0], &sync_buf, 1) != 1) {
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:166:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(path, optarg, PATH_MAX);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:176:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(script, optarg, PATH_MAX);
data/zfs-linux-0.8.5/tests/zfs-tests/cmd/xattrtest/xattrtest.c:431:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ssize_t rc = read(rand, buf + bytes_read, bytes - bytes_read);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/checksum/edonr_test.c:164:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
EdonRUpdate(&ctx, (const uint8_t *) _m, strlen(_m) * 8);\
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/checksum/sha2_test.c:204:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
SHA2Update(&ctx, _m, strlen(_m)); \
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/cli_root/zfs_diff/socket.c:40:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(sock.sun_path, (char *)path, size - 1);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:111:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(fd, buf, sizeof (buf)) == -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:135:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (write(fd, buf, strlen(buf)) == -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:137:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
"%d\n", fd, (int)strlen(buf), errno);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:158:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(pfile_copy, pfile, sizeof (pfile_copy)-1);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:264:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (setxattr(pfile, "user.x", value, strlen(value), 0) == -1) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/ctime/ctime.c:275:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(tfile) != 0) && (access(tfile, F_OK) == 0)) {
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/suid/suid_write_to_file.c:54:2: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(0);
data/zfs-linux-0.8.5/tests/zfs-tests/tests/functional/tmpfile/tmpfile_stat_mode.c:67:2: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(mask);
ANALYSIS SUMMARY:
Hits = 2495
Lines analyzed = 431185 in approximately 11.41 seconds (37782 lines/second)
Physical Source Lines of Code (SLOC) = 294126
Hits@level = [0] 2480 [1] 528 [2] 1402 [3] 167 [4] 393 [5] 5
Hits@level+ = [0+] 4975 [1+] 2495 [2+] 1967 [3+] 565 [4+] 398 [5+] 5
Hits/KSLOC@level+ = [0+] 16.9145 [1+] 8.48276 [2+] 6.68761 [3+] 1.92095 [4+] 1.35316 [5+] 0.0169995
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.