hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-27 17:55:19 +02:00
Code Issues Packages Projects Releases Wiki Activity

Java: Model System.in as stdin threat-model

Browse Source
This commit is contained in:
Rasmus Wriedt Larsen
2024-08-13 12:04:56 +02:00
parent 7395223410
commit 1e12c11adc
1 changed files with 13 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
java/ql/lib/semmle/code/java/dataflow/FlowSources.qll
View File

@@ -207,7 +207,8 @@ deprecated class EnvInput extends DataFlow::Node {
EnvInput() {
this instanceof EnvironmentInput or
this instanceof CliInput or
this instanceof FileInput
this instanceof FileInput or
this instanceof StdinInput
}
}
@@ -234,12 +235,21 @@ private class CliInput extends LocalUserInput {
exists(Field f | this.asExpr() = f.getAnAccess() |
f.getAnAnnotation().getType().getQualifiedName() = "org.kohsuke.args4j.Argument"
)
or
}
override string getThreatModel() { result = "commandargs" }
}
/**
* A node with input from stdin.
*/
private class StdinInput extends LocalUserInput {
StdinInput() {
// Access to `System.in`.
exists(Field f | this.asExpr() = f.getAnAccess() | f instanceof SystemIn)
}
override string getThreatModel() { result = "commandargs" }
override string getThreatModel() { result = "stdin" }
}
/**