hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-02 20:25:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #12101 from owen-mc/go/gofmt-remove-confusing-error-message

Browse Source 
Fix files that gofmt can't parse
This commit is contained in:
Chris Smowton
2023-02-06 10:58:54 +00:00
committed by GitHub
parent 00fe448e3a 9ed7836367
commit cd2fc6566f
5 changed files with 39 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
go/ql/src/experimental/CWE-285/PamAuthBad.go
View File

@@ -1,4 +1,9 @@
func bad() error {
package main
import "fmt"
func bad() (string, error) {
// ...
t, err := pam.StartFunc("", "username", func(s pam.Style, msg string) (string, error) {
switch s {
case pam.PromptEchoOff:

6
go/ql/src/experimental/CWE-285/PamAuthGood.go
View File

@@ -1,4 +1,8 @@
func good() error {
package main
import "fmt"
func good() (string, error) {
t, err := pam.StartFunc("", "username", func(s pam.Style, msg string) (string, error) {
switch s {
case pam.PromptEchoOff:

20
go/ql/src/experimental/CWE-321/HardcodedKeysBad.go
View File

@@ -1,9 +1,15 @@
mySigningKey := []byte("AllYourBase")
package main
claims := &jwt.RegisteredClaims{
ExpiresAt: jwt.NewNumericDate(time.Unix(1516239022, 0)),
Issuer: "test",
import "time"
func bad() {
mySigningKey := []byte("AllYourBase")
claims := &jwt.RegisteredClaims{
ExpiresAt: jwt.NewNumericDate(time.Unix(1516239022, 0)),
Issuer: "test",
}
token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
ss, err := token.SignedString(mySigningKey)
}
token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
ss, err := token.SignedString(mySigningKey)

22
go/ql/src/experimental/CWE-321/HardcodedKeysGood.go
View File

@@ -1,3 +1,10 @@
package main
import (
"math/big"
"time"
)
func GenerateCryptoString(n int) (string, error) {
const chars = "123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz-"
ret := make([]byte, n)
@@ -11,13 +18,14 @@ func GenerateCryptoString(n int) (string, error) {
return string(ret), nil
}
mySigningKey := GenerateCryptoString(64)
func good() {
mySigningKey := GenerateCryptoString(64)
claims := &jwt.RegisteredClaims{
ExpiresAt: jwt.NewNumericDate(time.Unix(1516239022, 0)),
Issuer: "test",
}
claims := &jwt.RegisteredClaims{
ExpiresAt: jwt.NewNumericDate(time.Unix(1516239022, 0)),
Issuer: "test",
token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
ss, err := token.SignedString(mySigningKey)
}
token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
ss, err := token.SignedString(mySigningKey)