hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-04 13:15:21 +02:00
Code Issues Packages Projects Releases Wiki Activity

Java: Add tests for ExecTainted

Browse Source
This commit is contained in:
Joe
2020-09-17 16:47:55 +01:00
parent b6cf1cce20
commit fcfc836720
7 changed files with 97 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

64
java/ql/test/query-tests/security/CWE-078/Test.java Normal file
View File

@@ -0,0 +1,64 @@
import java.lang.ProcessBuilder;
import java.util.List;
import java.util.ArrayList;
class Test {
public static void shellCommand(String arg) {
ProcessBuilder pb = new ProcessBuilder("/bin/bash -c echo " + arg);
pb.start();
pb = new ProcessBuilder(new String[]{"/bin/bash", "-c", "echo " + arg});
pb.start();
List<String> cmd = new ArrayList<String>();
cmd.add("/bin/bash");
cmd.add("-c");
cmd.add("echo " + arg);
pb = new ProcessBuilder(cmd);
pb.start();
String[] cmd1 = new String[]{"/bin/bash", "-c", "<cmd>"};
cmd1[1] = "echo " + arg;
pb = new ProcessBuilder(cmd1);
pb.start();
}
public static void nonShellCommand(String arg) {
ProcessBuilder pb = new ProcessBuilder("./customTool " + arg);
pb.start();
pb = new ProcessBuilder(new String[]{"./customTool", arg});
pb.start();
List<String> cmd = new ArrayList<String>();
cmd.add("./customTool");
cmd.add(arg);
pb = new ProcessBuilder(cmd);
pb.start();
String[] cmd1 = new String[]{"./customTool", "<arg>"};
cmd1[1] = arg;
pb = new ProcessBuilder(cmd1);
pb.start();
}
public static void relativeCommand() {
ProcessBuilder pb = new ProcessBuilder("ls");
pb.start();
pb = new ProcessBuilder("/bin/ls");
pb.start();
}
public static void main(String[] args) {
String arg = args.length > 1 ? args[1] : "default";
shellCommand(arg);
nonShellCommand(arg);
relativeCommand();
}
}