Added test cases

2026-05-04 05:05:12 +02:00 · 2022-01-12 11:06:58 +01:00
parent 715d372572
commit c2105e506b
2 changed files with 26 additions and 0 deletions
--- a/java/ql/test/library-tests/dataflow/taint/StringBuilderTests.java
+++ b/java/ql/test/library-tests/dataflow/taint/StringBuilderTests.java
@@ -63,4 +63,27 @@ public class StringBuilderTests {
    sb.insert(45, taint());
    sink(sb.toString());
  }
+
+  static void stringBuilderGetCharsBad() {
+    StringBuilder sb = new StringBuilder();
+    sb.append("from preferences select locale where user=''");
+    sb.append(taint());
+    char[] chars = null;
+    sb.getChars(0, 0, chars, 0);
+    sink(new String(chars));
+  }
+
+  static void stringBuilderSubSequenceBad() {
+    StringBuilder sb = new StringBuilder();
+    sb.append("from preferences select locale where user=''");
+    sb.append(taint());
+    sink(sb.subSequence(0, 0).toString());
+  }
+
+  static void stringBuilderSubstringBad() {
+    StringBuilder sb = new StringBuilder();
+    sb.append("from preferences select locale where user=''");
+    sb.append(taint());
+    sink(sb.substring(0, 0));
+  }
 }