diff --git a/correct-results.html b/correct-results.html index 49c2340..7f7ba23 100644 --- a/correct-results.html +++ b/correct-results.html @@ -11,7 +11,7 @@ Here are the security scan results from Flawfinder version 2.0.0, (C) 2001-2017 David A. Wheeler. -Number of rules (primarily dangerous function names) in C/C++ ruleset: 209 +Number of rules (primarily dangerous function names) in C/C++ ruleset: 219
Examining test.c
Examining test2.c
diff --git a/correct-results.txt b/correct-results.txt
index 7792e64..ef80173 100644
--- a/correct-results.txt
+++ b/correct-results.txt
@@ -1,5 +1,5 @@
Flawfinder version 2.0.0, (C) 2001-2017 David A. Wheeler.
-Number of rules (primarily dangerous function names) in C/C++ ruleset: 209
+Number of rules (primarily dangerous function names) in C/C++ ruleset: 219
Examining test.c
Examining test2.c
diff --git a/flawfinder b/flawfinder
index ac8f880..5c8595d 100755
--- a/flawfinder
+++ b/flawfinder
@@ -1084,10 +1084,10 @@ c_ruleset = {
"integer", "dangers-c", {}),
# Random values. Don't trigger on "initstate", it's too common a term.
- "drand48|erand48|jrand48|lcong48|lrand48|mrand48|nrand48|random|seed48|setstate|srand|strfry|srandom":
+ "drand48|erand48|jrand48|lcong48|lrand48|mrand48|nrand48|random|seed48|setstate|srand|strfry|srandom|g_rand_boolean|g_rand_int|g_rand_int_range|g_rand_double|g_rand_double_range|g_random_boolean|g_random_int|g_random_int_range|g_random_double|g_random_double_range":
(normal, 3,
"This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327)",
- "use a more secure technique for acquiring random values",
+ "Use a more secure technique for acquiring random values",
"random", "", {}),
"crypt":