RAND_egd_bytes

API 概述

RAND_egd_bytes 是 openssl 中的一个API。该规属于return value check 类型。该规则是使用 AURC 生成的。

规则描述

提示

RAND_egd() and RAND_egd_bytes() return the number of bytes read from the daemon on success, or -1 if the connection failed or the daemon did not return enough data to fully seed the PRNG.

信息

标签：return value check

参数下标：N/A

CWE类别：CWE-253

规则代码

import cpp

class OpenSSLFunctionCall extends FunctionCall {
  OpenSSLFunctionCall() {
    this.getTarget().hasName("RAND_egd_bytes")
  }
}

from OpenSSLFunctionCall call, UnaryOperation uop
where
  uop.getOperator() = "!" and
  uop.getOperand() = call.getAnAccess()
select uop, "This negation checks the return value of RAND_egd_bytes."