hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 17:23:36 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
codeql-cli-2.23.0
codeql/java/ql/test/query-tests/security/CWE-780/RsaWithoutOaepTest.java
Nora Dimitrijević cadfd0dcaa Java: convert RsaWithoutOaep test to .qlref
2025-06-24 16:42:28 +02:00

18 lines
495 B
Java
Raw Permalink Blame History

import javax.crypto.Cipher;
class RsaWithoutOaep {
public void test() throws Exception {
Cipher rsaBad = Cipher.getInstance("RSA/ECB/NoPadding"); // $ Alert
Cipher rsaGood = Cipher.getInstance("RSA/ECB/OAEPWithSHA-1AndMGF1Padding");
}
public Cipher getCipher(String spec) throws Exception {
return Cipher.getInstance(spec); // $ Sink
}
public void test2() throws Exception {
Cipher rsa = getCipher("RSA/ECB/NoPadding"); // $ Alert
}
}
Reference in New Issue View Git Blame Copy Permalink