Merge pull request #4081 from aschackmull/java/dispatch-ctx-this-param

Approved by aibaars
2026-04-27 17:55:19 +02:00 · 2020-09-01 15:06:47 +01:00
parent caa680c72e bcad18f490
commit 311e62f21d
4 changed files with 127 additions and 11 deletions
--- a/java/ql/test/library-tests/dataflow/callctx/A.java
+++ b/java/ql/test/library-tests/dataflow/callctx/A.java
@@ -0,0 +1,63 @@
+public class A {
+  static void sink(Object x) { }
+
+  static Object source() { return null; }
+
+  static class C1 {
+    C1() { }
+
+    C1(Object x) {
+      foo(x);
+    }
+
+    void wrapFoo1(Object x) {
+      foo(x);
+    }
+
+    void wrapFoo2(Object x) {
+      this.foo(x);
+    }
+
+    void foo(Object x) {
+      Object c1 = x;
+      sink(c1);
+    }
+  }
+
+  static class C2 extends C1 {
+    C2() { }
+
+    C2(Object x) {
+      super(x);
+    }
+
+    void foo(Object x) {
+      Object c2 = x;
+      sink(c2);
+    }
+
+    void callWrapFoo2() {
+      wrapFoo2(source());
+    }
+  }
+
+  static void wrapFoo3(C1 c1, Object x) {
+    c1.foo(x);
+  }
+
+  void test(C1 c) {
+    c.wrapFoo1(source());
+    c.wrapFoo2(source());
+    wrapFoo3(c, source());
+
+    new C1(source());
+    new C1().wrapFoo1(source());
+    new C1().wrapFoo2(source());
+    wrapFoo3(new C1(), source());
+
+    new C2(source());
+    new C2().wrapFoo1(source());
+    new C2().wrapFoo2(source());
+    wrapFoo3(new C2(), source());
+  }
+}
--- a/java/ql/test/library-tests/dataflow/callctx/test.expected
+++ b/java/ql/test/library-tests/dataflow/callctx/test.expected
@@ -0,0 +1,15 @@
+| A.java:40:16:40:23 | source(...) | A.java:36:12:36:13 | c2 |
+| A.java:49:16:49:23 | source(...) | A.java:23:12:23:13 | c1 |
+| A.java:49:16:49:23 | source(...) | A.java:36:12:36:13 | c2 |
+| A.java:50:16:50:23 | source(...) | A.java:23:12:23:13 | c1 |
+| A.java:50:16:50:23 | source(...) | A.java:36:12:36:13 | c2 |
+| A.java:51:17:51:24 | source(...) | A.java:23:12:23:13 | c1 |
+| A.java:51:17:51:24 | source(...) | A.java:36:12:36:13 | c2 |
+| A.java:53:12:53:19 | source(...) | A.java:23:12:23:13 | c1 |
+| A.java:54:23:54:30 | source(...) | A.java:23:12:23:13 | c1 |
+| A.java:55:23:55:30 | source(...) | A.java:23:12:23:13 | c1 |
+| A.java:56:24:56:31 | source(...) | A.java:23:12:23:13 | c1 |
+| A.java:58:12:58:19 | source(...) | A.java:36:12:36:13 | c2 |
+| A.java:59:23:59:30 | source(...) | A.java:36:12:36:13 | c2 |
+| A.java:60:23:60:30 | source(...) | A.java:36:12:36:13 | c2 |
+| A.java:61:24:61:31 | source(...) | A.java:36:12:36:13 | c2 |
--- a/java/ql/test/library-tests/dataflow/callctx/test.ql
+++ b/java/ql/test/library-tests/dataflow/callctx/test.ql
@@ -0,0 +1,15 @@
+import java
+import semmle.code.java.dataflow.DataFlow
+import DataFlow
+
+class Conf extends Configuration {
+  Conf() { this = "qqconf" }
+
+  override predicate isSource(Node n) { n.asExpr().(MethodAccess).getMethod().hasName("source") }
+
+  override predicate isSink(Node n) { n.asExpr().(Argument).getCall().getCallee().hasName("sink") }
+}
+
+from Node src, Node sink, Conf c
+where c.hasFlow(src, sink)
+select src, sink