Zandronum Chat @
Get the latest version: 3.0
Source Code

View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0003498Doomseeker[All Projects] Securitypublic2018-09-19 13:292018-12-17 08:49
Assigned To 
Platformamd64OSOpenBSDOS Version6.4-current
Product Version1.1 
Target VersionFixed in Version 
Summary0003498: GCC compiler warns of unsafe C/C++ string functions used instead of safer alternatives
DescriptionDuring source compile on OpenBSD, the gcc compiler prints warnings about use of unsafe functions and suggests to replace them (irregardless of if their use is safe or unsafe in this scenario).

[ 83%] Linking CXX executable ../../doomseeker
CMakeFiles/doomseeker.dir/scanner.cpp.o: In function `Scanner::scriptMessage(Scanner::MessageLevel, char 
const*, ...) const':
scanner.cpp:(.text+0x3b63): warning: sprintf() is often misused, please use snprintf()
/usr/local/lib/qt5/./ warning: rand_r() is not random, it is deterministic.
CMakeFiles/doomseeker.dir/random.cpp.o: In function `Random::nextUShort(unsigned short)':
random.cpp:(.text+0x14f): warning: rand() may return deterministic values, is that what you want?
/usr/X11R6/lib/ warning: random() may return deterministic values, is that what you want?

/usr/local/lib/ warning: stpcpy() is dangerous; do not use it
/usr/local/lib/ warning: strcpy() is almost always misused, please use strlcpy()

/usr/local/lib/ warning: vsprintf() is often misused, please use vsnprintf()
/usr/local/lib/ warning: strcat() is almost always misused, please use strlcat()
Steps To Reproducegcc 4.2.1 on OpenBSD (with gcc-local(1) patches). Something like this:

pkg_add cmake mercurial qt5 # as superuser privileges
mkdir -p $HOME/.local/src/ && cd $HOME/.local/src/
hg clone [^]
mkdir -p /tmp/doomseeker && cd /tmp/doomseeker
export Qt5Widgets_DIR Qt5LinguistTools_DIR Qt5Multimedia_DIR Qt5Xml_DIR
export CPATH=$CPATH:/usr/local/include
cmake $HOME/.local/src/doomseeker/
CC=gcc CXX=g++ make -j4
Additional InformationThe following files create warnings in Doomseeker:

  • src/core/scanner.cpp
  • src/core/random.cpp
Attached Files

- Relationships

-  Notes
User avatar (0019575)
WubTheCaptain (developer)
2018-09-19 17:49

Might've been clang, actually. Anyway...
User avatar (0019607)
WubTheCaptain (developer)
2018-09-22 01:21

Also tools/updaterevision/updaterevision.c's main function, strcpy().
User avatar (0020267)
Filystea (reporter)
2018-12-17 08:49

clang is default openbsd compiler.

Glad there are people using my fav sys ;-)


This is not that important. The problem is:

You still can only compile servers because of fmod crap.
Most times you will be dealing with malloc.h changing to stdlib.h;-)

I had a rage topic about it once. Did compile for sake of compiling but never used.

openbsd for life <3

Issue Community Support
Only registered users can voice their support. Click here to register, or here to log in.
Supporters: No one explicitly supports this issue yet.
Opponents: No one explicitly opposes this issue yet.

- Issue History
Date Modified Username Field Change
2018-09-19 13:29 WubTheCaptain New Issue
2018-09-19 13:29 WubTheCaptain OS => OpenBSD
2018-09-19 13:29 WubTheCaptain OS Version => 6.4-current
2018-09-19 13:29 WubTheCaptain Platform => amd64
2018-09-19 17:49 WubTheCaptain Note Added: 0019575
2018-09-22 01:21 WubTheCaptain Note Added: 0019607
2018-09-29 15:07 WubTheCaptain Severity minor => tweak
2018-10-05 06:44 WubTheCaptain Target Version => 1.2
2018-10-09 14:27 WubTheCaptain Target Version 1.2 =>
2018-12-17 05:21 WubTheCaptain Category Bug => Security
2018-12-17 08:49 Filystea Note Added: 0020267

Questions or other issues? Contact Us.


Copyright © 2000 - 2018 MantisBT Team
Powered by Mantis Bugtracker