gitlab.flawfinder.EVP_des_ecb-1.EVP_des_cbc-1.EVP_des_cfb-1.EVP_des_ofb-1.EVP_desx_cbc-1

137
Download Count*
MIT
License

Use a different patent-free encryption algorithm with a larger keysize, such as 3DES or AES.

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit RuleView Source
Open in Playground 
rules:
  - id: flawfinder.EVP_des_ecb-1.EVP_des_cbc-1.EVP_des_cfb-1.EVP_des_ofb-1.EVP_desx_cbc-1
    languages:
      - c
    message: >
      Use a different patent-free encryption algorithm with a larger keysize,
      such as 3DES or AES.
    metadata:
      cwe: "CWE-327: DES only supports a 56-bit keysize, which is too small given
        today's computers (CWE-327)"
      primary_identifier: flawfinder.EVP_des_ecb-1.EVP_des_cbc-1.EVP_des_cfb-1.EVP_des_ofb-1.EVP_desx_cbc-1
      secondary_identifiers:
        - name: Flawfinder - EVP_des_ecb
          type: flawfinder_func_name
          value: EVP_des_ecb
        - name: Flawfinder - EVP_des_cbc
          type: flawfinder_func_name
          value: EVP_des_cbc
        - name: Flawfinder - EVP_des_cfb
          type: flawfinder_func_name
          value: EVP_des_cfb
        - name: Flawfinder - EVP_des_ofb
          type: flawfinder_func_name
          value: EVP_des_ofb
        - name: Flawfinder - EVP_desx_cbc
          type: flawfinder_func_name
          value: EVP_desx_cbc
      license: MIT
    pattern-either:
      - pattern: EVP_des_ecb(...)
      - pattern: EVP_des_cbc(...)
      - pattern: EVP_des_cfb(...)
      - pattern: EVP_des_ofb(...)
      - pattern: EVP_desx_cbc(...)
    severity: ERROR