Rewriting the link function to be more readable #56
AleksArt000Annotations
10 warnings
|
/src/link.c:17:5 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/link.c#L17
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
/src/link.c:29:12 [cppcoreguidelines-init-variables]:
src/link.c#L29
variable 'links' is not initialized
|
|
/src/link.c:38:12 [cppcoreguidelines-init-variables]:
src/link.c#L38
variable 'target' is not initialized
|
|
/src/link.c:45:9 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/link.c#L45
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
/src/link.c:47:9 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/link.c#L47
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
/src/link.c:49:9 [clang-analyzer-security.insecureAPI.strcpy]:
src/link.c#L49
Call to function 'strcat' is insecure as it does not provide bounding of the memory buffer. Replace unbounded copy functions with analogous functions that support length arguments such as 'strlcat'. CWE-119
|
|
/src/link.c:54:9 [clang-analyzer-security.insecureAPI.strcpy]:
src/link.c#L54
Call to function 'strcat' is insecure as it does not provide bounding of the memory buffer. Replace unbounded copy functions with analogous functions that support length arguments such as 'strlcat'. CWE-119
|
|
/src/link.c:77:21 [clang-analyzer-security.insecureAPI.strcpy]:
src/link.c#L77
Call to function 'strcpy' is insecure as it does not provide bounding of the memory buffer. Replace unbounded copy functions with analogous functions that support length arguments such as 'strlcpy'. CWE-119
|
|
/src/link.c:95:9 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/link.c#L95
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
/src/link.c:95:44 [clang-diagnostic-format]:
src/link.c#L95
format specifies type 'char *' but the argument has type 'char **'
|