clean up android query and tests

2026-05-02 20:25:13 +02:00 · 2022-07-29 01:10:15 -04:00
parent cf39cc0909
commit fdb437552c
9 changed files with 70 additions and 21 deletions
--- a/java/ql/test/query-tests/security/CWE-489/DebuggableAttributeTrue.expected
+++ b/java/ql/test/query-tests/security/CWE-489/DebuggableAttributeTrue.expected
@@ -1 +1 @@
-| TestTrue.xml:7:5:17:30 | debuggable=true | Warning: debuggable attribute enabled |
+| TestTrue.xml:7:5:17:30 | debuggable=true | The 'debuggable' attribute is enabled. |
--- a/java/ql/test/query-tests/security/CWE-489/Test.java
+++ b/java/ql/test/query-tests/security/CWE-489/Test.java
@@ -1,2 +1,39 @@
-// No need for Java code since only testing XML files
-public class Test { }
+package com.example.myapp;
+
+import android.app.Fragment;
+import android.os.Bundle;
+import android.view.LayoutInflater;
+import android.view.View;
+import android.view.ViewGroup;
+import android.widget.Button;
+import androidx.fragment.app.FragmentActivity;
+import androidx.fragment.app.FragmentTransaction;
+
+public class Test extends FragmentActivity {
+
+    @Override
+    public void onCreate(Bundle savedInstance) {
+        try {
+            super.onCreate(savedInstance);
+            final String fname = getIntent().getStringExtra("fname");
+            FragmentTransaction ft = getSupportFragmentManager().beginTransaction();
+            Class<Fragment> fClass = (Class<Fragment>) Class.forName(fname);
+            ft.add(fClass.newInstance(), ""); // hasTaintFlow
+            ft.add(0, Fragment.instantiate(this, fname), null); // hasTaintFlow
+            ft.add(0, Fragment.instantiate(this, fname, null)); // hasTaintFlow
+            ft.add(0, fClass, null, ""); // hasTaintFlow
+            ft.add(0, fClass.newInstance(), ""); // hasTaintFlow
+            ft.attach(fClass.newInstance()); // hasTaintFlow
+            ft.replace(0, fClass, null); // hasTaintFlow
+            ft.replace(0, fClass.newInstance()); // hasTaintFlow
+            ft.replace(0, fClass, null, ""); // hasTaintFlow
+            ft.replace(0, fClass.newInstance(), ""); // hasTaintFlow
+
+            ft.add(Fragment.class.newInstance(), ""); // Safe
+            ft.attach(Fragment.class.newInstance()); // Safe
+            ft.replace(0, Fragment.class.newInstance(), ""); // Safe
+        } catch (Exception e) {
+        }
+    }
+
+}
--- a/java/ql/test/query-tests/security/CWE-489/TestFalse.xml
+++ b/java/ql/test/query-tests/security/CWE-489/TestFalse.xml
@@ -3,7 +3,7 @@
    xmlns:tools="http://schemas.android.com/tools"
    package="com.example.happybirthday">

-    <!-- Safe: 'debuggable' set to false -->
+    <!-- Safe: 'android:debuggable' set to false -->
    <application
        android:debuggable="false"
        android:allowBackup="true"
--- a/java/ql/test/query-tests/security/CWE-489/TestNotSet.xml
+++ b/java/ql/test/query-tests/security/CWE-489/TestNotSet.xml
@@ -3,7 +3,7 @@
    xmlns:tools="http://schemas.android.com/tools"
    package="com.example.happybirthday">

-    <!-- Safe: 'debuggable' not set at all -->
+    <!-- Safe: 'android:debuggable' not set at all -->
    <application
        android:allowBackup="true"
        android:dataExtractionRules="@xml/data_extraction_rules"
--- a/java/ql/test/query-tests/security/CWE-489/TestTrue.xml
+++ b/java/ql/test/query-tests/security/CWE-489/TestTrue.xml
@@ -3,7 +3,7 @@
    xmlns:tools="http://schemas.android.com/tools"
    package="com.example.happybirthday">

-    <!-- Not Safe: 'debuggable' set to true -->
+    <!-- Not Safe: 'android:debuggable' set to true -->
    <application
        android:debuggable="true"
        android:allowBackup="true"