hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-02 04:05:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

Generalize sanitizer using local flow

Browse Source
This commit is contained in:
Tony Torralba
2021-06-23 15:46:13 +02:00
parent 64518bf91a
commit 19d1a780ca
2 changed files with 16 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
java/ql/test/query-tests/security/CWE-273/UnsafeCertTrustTest.java
View File

@@ -116,6 +116,18 @@ public class UnsafeCertTrustTest {
sslParameters.setEndpointIdentificationAlgorithm("HTTPS");
}
public void testSSLSocketEndpointIdSafeWithConditionalSanitizer(boolean safe) throws Exception {
SSLContext sslContext = SSLContext.getInstance("TLS");
SSLSocketFactory socketFactory = sslContext.getSocketFactory();
SSLSocket socket = (SSLSocket) socketFactory.createSocket();
if (safe) {
SSLParameters sslParameters = socket.getSSLParameters();
onSetSSLParameters(sslParameters);
socket.setSSLParameters(sslParameters);
}
socket.getOutputStream(); // Safe
}
public void testSocketEndpointIdNotSet() throws Exception {
SocketFactory socketFactory = SocketFactory.getDefault();
Socket socket = socketFactory.createSocket("www.example.com", 80);