hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-05 13:45:19 +02:00
Code Issues Packages Projects Releases Wiki Activity

handle FN case with simple VarAccess; add draft of dataflow config to handle complex VarAccess

Browse Source
This commit is contained in:
Jami Cogswell
2022-10-04 20:46:55 -04:00
parent 7de9c05c9d
commit d3b1a04c13
3 changed files with 104 additions and 46 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
java/ql/test/query-tests/security/CWE-326/InsufficientKeySizeTest.java
View File

@@ -97,18 +97,18 @@ public class InsufficientKeySizeTest {
// BAD: Key size is less than 128
keyGen3.init(size1); // $ hasInsufficientKeySize
// int size2 = 1024;
// KeyPairGenerator keyPairGen18 = KeyPairGenerator.getInstance("RSA");
// // BAD: Key size is less than 2048
// keyPairGen18.initialize(size2); // $ hasInsufficientKeySize
int size2 = 1024;
KeyPairGenerator keyPairGen18 = KeyPairGenerator.getInstance("RSA");
// BAD: Key size is less than 2048
keyPairGen18.initialize(size2); // $ hasInsufficientKeySize
// int keysize = 64;
// test(keysize);
int keysize = 1024;
test(keysize);
}
// public void test(int keySize) throws java.security.NoSuchAlgorithmException, java.security.InvalidAlgorithmParameterException {
// KeyGenerator keyGen4 = KeyGenerator.getInstance("AES");
// // BAD: Key size is less than 128
// keyGen4.init(keySize); // $ hasInsufficientKeySize
// }
public void test(int keySize) throws java.security.NoSuchAlgorithmException, java.security.InvalidAlgorithmParameterException {
KeyPairGenerator keyPairGen19 = KeyPairGenerator.getInstance("RSA");
// BAD: Key size is less than 128
keyPairGen19.initialize(keySize); // $ hasInsufficientKeySize
}
}