hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 19:26:02 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #10241 from joefarebrother/android-webview-dubugging

Browse Source 
Java: Add query for WebView debugging enabled
This commit is contained in:
Joe Farebrother
2022-09-28 10:50:51 +01:00
committed by GitHub
parent 22946b176f af41f2b903
commit 6cb26d5129
17 changed files with 143 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

0
java/ql/test/query-tests/security/CWE-489/AndroidManifest.xml → java/ql/test/query-tests/security/CWE-489/debuggable-attribute/AndroidManifest.xml
View File

0
java/ql/test/query-tests/security/CWE-489/DebuggableAttributeEnabledTest.expected → java/ql/test/query-tests/security/CWE-489/debuggable-attribute/DebuggableAttributeEnabledTest.expected
View File

0
java/ql/test/query-tests/security/CWE-489/DebuggableAttributeEnabledTest.ql → java/ql/test/query-tests/security/CWE-489/debuggable-attribute/DebuggableAttributeEnabledTest.ql
View File

0
java/ql/test/query-tests/security/CWE-489/Test.java → java/ql/test/query-tests/security/CWE-489/debuggable-attribute/Test.java
View File

0
java/ql/test/query-tests/security/CWE-489/TestFalse/AndroidManifest.xml → java/ql/test/query-tests/security/CWE-489/debuggable-attribute/TestFalse/AndroidManifest.xml
View File

0
java/ql/test/query-tests/security/CWE-489/TestNotSet/AndroidManifest.xml → java/ql/test/query-tests/security/CWE-489/debuggable-attribute/TestNotSet/AndroidManifest.xml
View File

0
java/ql/test/query-tests/security/CWE-489/Testbuild/AndroidManifest.xml → java/ql/test/query-tests/security/CWE-489/debuggable-attribute/Testbuild/AndroidManifest.xml
View File

1
java/ql/test/query-tests/security/CWE-489/debuggable-attribute/options Normal file
View File

@@ -0,0 +1 @@
//semmle-extractor-options: --javac-args -cp ${testdir}/../../../../stubs/google-android-9.0.0

23
java/ql/test/query-tests/security/CWE-489/webview-debugging/Test.java Normal file
View File

@@ -0,0 +1,23 @@
import android.webkit.WebView;
class Test {
boolean DEBUG_BUILD;
void test1() {
WebView.setWebContentsDebuggingEnabled(true); // $hasValueFlow
}
void test2(){
if (DEBUG_BUILD) {
WebView.setWebContentsDebuggingEnabled(true);
}
}
void test3(boolean enabled){
WebView.setWebContentsDebuggingEnabled(enabled); // $hasValueFlow
}
void test4(){
test3(true);
}
}

0
java/ql/test/query-tests/security/CWE-489/webview-debugging/WebviewDebuggingEnabled.expected Normal file
View File

11
java/ql/test/query-tests/security/CWE-489/webview-debugging/WebviewDebuggingEnabled.ql Normal file
View File

@@ -0,0 +1,11 @@
import java
import TestUtilities.InlineFlowTest
import semmle.code.java.security.WebviewDubuggingEnabledQuery
class HasFlowTest extends InlineFlowTest {
override DataFlow::Configuration getTaintFlowConfig() { none() }
override DataFlow::Configuration getValueFlowConfig() {
result = any(WebviewDebugEnabledConfig c)
}
}

2
java/ql/test/query-tests/security/CWE-489/options → java/ql/test/query-tests/security/CWE-489/webview-debugging/options
View File

@@ -1 +1 @@
//semmle-extractor-options: --javac-args -cp ${testdir}/../../../stubs/google-android-9.0.0
//semmle-extractor-options: --javac-args -cp ${testdir}/../../../../stubs/google-android-9.0.0