hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-28 04:43:42 +01:00
Code Issues Packages Projects Releases Wiki Activity

Java: Tighter model of HostnameVerifier#verify

Browse Source 
This more tightly models `HostnameVerifier#verify` previously it
was possible to accidentally match other methods called `verify`.
This commit is contained in:
intrigus
2020-12-09 23:37:29 +01:00
parent 0a9df07df7
commit e021158b5f
1 changed files with 8 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
java/ql/src/semmle/code/java/security/Encryption.qll
View File

@@ -29,13 +29,20 @@ class SSLContext extends RefType {
SSLContext() { hasQualifiedName("javax.net.ssl", "SSLContext") }
}
class SSLSession extends RefType {
SSLSession() { hasQualifiedName("javax.net.ssl", "SSLSession") }
}
class HostnameVerifier extends RefType {
HostnameVerifier() { hasQualifiedName("javax.net.ssl", "HostnameVerifier") }
}
class HostnameVerifierVerify extends Method {
HostnameVerifierVerify() {
hasName("verify") and getDeclaringType().getASupertype*() instanceof HostnameVerifier
hasName("verify") and
getDeclaringType().getASupertype*() instanceof HostnameVerifier and
getParameterType(0) instanceof TypeString and
getParameterType(1) instanceof SSLSession
}
}