hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-21 03:06:31 +01:00
Code Issues Packages Projects Releases Wiki Activity

Cleanup Jackson logic after code review

Browse Source
This commit is contained in:
Jonathan Leitschuh
2021-05-11 10:48:22 -04:00
parent bacc3ef5b3
commit 5a68ac88ef
5 changed files with 11 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
java/ql/src/semmle/code/java/frameworks/jackson/JacksonSerializability.qll
View File

@@ -72,18 +72,6 @@ private class ExplicitlyWrittenJacksonSerializableType extends JacksonSerializab
} }
} }
/** A type whose values are explicitly deserialized in a call to a Jackson method. */
private class ExplicitlyReadJacksonSerializableType extends JacksonDeserializableType {
ExplicitlyReadJacksonSerializableType() {
exists(MethodAccess ma |
// A call to a Jackson read method...
ma.getMethod() instanceof JacksonReadValueMethod and
// ...where `this` is used in the final argument, indicating that this type will be deserialized.
usesType(ma.getArgument(ma.getNumArgument() - 1).getType(), this)
)
}
}
/** A type used in a `JacksonSerializableField` declaration. */ /** A type used in a `JacksonSerializableField` declaration. */
private class FieldReferencedJacksonSerializableType extends JacksonSerializableType { private class FieldReferencedJacksonSerializableType extends JacksonSerializableType {
FieldReferencedJacksonSerializableType() { FieldReferencedJacksonSerializableType() {
@@ -123,6 +111,13 @@ private class ExplicitlyReadJacksonDeserializableType extends JacksonDeserializa
exists(TypeLiteralToJacksonDatabindFlowConfiguration conf | exists(TypeLiteralToJacksonDatabindFlowConfiguration conf |
usesType(conf.getSourceWithFlowToJacksonDatabind().getTypeName().getType(), this) usesType(conf.getSourceWithFlowToJacksonDatabind().getTypeName().getType(), this)
) )
or
exists(MethodAccess ma |
// A call to a Jackson read method...
ma.getMethod() instanceof JacksonReadValueMethod and
// ...where `this` is used in the final argument, indicating that this type will be deserialized.
usesType(ma.getArgument(ma.getNumArgument() - 1).getType(), this)
)
} }
} }

2
java/ql/test/library-tests/dataflow/taint-jackson/dataFlow.ql
View File

@@ -31,4 +31,4 @@ class HasFlowTest extends InlineExpectationsTest {
value = "" value = ""
) )
} }
} }

2
java/ql/test/stubs/jackson-databind-2.10/com/fasterxml/jackson/databind/JsonNode.java
View File

@@ -5,4 +5,4 @@ import java.util.*;
public abstract class JsonNode implements Iterable<JsonNode> { public abstract class JsonNode implements Iterable<JsonNode> {
public JsonNode() { public JsonNode() {
} }
} }

2
java/ql/test/stubs/jackson-databind-2.10/com/fasterxml/jackson/databind/MappingIterator.java
View File

@@ -25,4 +25,4 @@ public class MappingIterator<T> implements Iterator<T>, Closeable {
public void close() throws IOException { public void close() throws IOException {
} }
} }

2
java/ql/test/stubs/jackson-databind-2.10/com/fasterxml/jackson/databind/ObjectReader.java
View File

@@ -79,4 +79,4 @@ public class ObjectReader {
return null; return null;
} }
} }