The following issues were found
t/helper/test-genrandom.c
1 issues
Line: 20
Column: 16
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
return 1;
}
c = (unsigned char *) argv[1];
do {
next = next * 11 + *c;
} while (*c++);
count = (argc == 3) ? strtoul(argv[2], NULL, 0) : -1L;
Reported by FlawFinder.
t/helper/test-hash-speed.c
1 issues
Line: 16
Column: 11
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
int cmd__hash_speed(int ac, const char **av)
{
git_hash_ctx ctx;
unsigned char hash[GIT_MAX_RAWSZ];
clock_t initial, start, end;
unsigned bufsizes[] = { 64, 256, 1024, 8192, 16384 };
int i;
void *p;
const struct git_hash_algo *algo = NULL;
Reported by FlawFinder.
t/helper/test-hash.c
1 issues
Line: 7
Column: 11
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
int cmd_hash_impl(int ac, const char **av, int algo)
{
git_hash_ctx ctx;
unsigned char hash[GIT_MAX_HEXSZ];
unsigned bufsz = 8192;
int binary = 0;
char *buffer;
const struct git_hash_algo *algop = &hash_algos[algo];
Reported by FlawFinder.
builtin/describe.c
1 issues
Line: 447
Column: 9
CWE codes:
126
if (label_width < 0) {
int i, w;
for (i = 0; i < ARRAY_SIZE(prio_names); i++) {
w = strlen(_(prio_names[i]));
if (label_width < w)
label_width = w;
}
}
for (cur_match = 0; cur_match < match_cnt; cur_match++) {
Reported by FlawFinder.
t/helper/test-index-version.c
1 issues
Line: 10
Column: 6
CWE codes:
120
20
int version;
memset(&hdr,0,sizeof(hdr));
if (read(0, &hdr, sizeof(hdr)) != sizeof(hdr))
return 0;
version = ntohl(hdr.hdr_version);
printf("%d\n", version);
return 0;
}
Reported by FlawFinder.
t/helper/test-lazy-init-name-hash.c
1 issues
Line: 29
Column: 3
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
struct dir_entry *parent;
int nr;
unsigned int namelen;
char name[FLEX_ARRAY];
};
struct dir_entry *dir;
struct cache_entry *ce;
Reported by FlawFinder.
t/helper/test-oidmap.c
1 issues
Line: 9
Column: 2
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
/* key is an oid and value is a name (could be a refname for example) */
struct test_entry {
struct oidmap_entry entry;
char name[FLEX_ARRAY];
};
#define DELIM " \t\r\n"
/*
Reported by FlawFinder.
t/helper/test-prio-queue.c
1 issues
Line: 44
Column: 9
CWE codes:
190
Suggestion:
If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended)
pq.compare = NULL;
} else {
int *v = xmalloc(sizeof(*v));
*v = atoi(*argv);
prio_queue_put(&pq, v);
}
}
return 0;
Reported by FlawFinder.
t/helper/test-read-cache.c
1 issues
Line: 70
Column: 41
CWE codes:
126
refresh_index(r->index, REFRESH_QUIET,
NULL, NULL, NULL);
pos = index_name_pos(r->index, name, strlen(name));
if (pos < 0)
die("%s not in index", name);
printf("%s is%s up to date\n", name,
ce_uptodate(r->index->cache[pos]) ? "" : " not");
write_file(name, "%d\n", i);
Reported by FlawFinder.
t/helper/test-regex.c
1 issues
Line: 47
Column: 2
CWE codes:
119
120
Suggestion:
Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length
int ret, silent = 0, flags = 0;
regex_t r;
regmatch_t m[1];
char errbuf[64];
argv++;
argc--;
if (!argc)
Reported by FlawFinder.