hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-18 18:10:39 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
ginsbach/NewOverlayLocalJava
codeql/swift/ql/test/query-tests/Security/CWE-321/grdb.swift
Geoffrey White c492b5f2dd Swift: Model sinks.
2023-10-07 23:19:09 +01:00

35 lines
924 B
Swift
Raw Permalink Blame History

// --- stubs ---
class Data {
init<S>(_ elements: S) {}
}
class Database {
}
extension Database {
func usePassphrase(_ passphrase: String) throws { }
func usePassphrase(_ passphrase: Data) throws { }
func changePassphrase(_ passphrase: String) throws { }
func changePassphrase(_ passphrase: Data) throws { }
}
// --- tests ---
func test(db: Database, varString: String, varArray: Array<UInt8>, varData: Data) throws {
let constString = "abc123"
let constArray: Array<UInt8> = [1, 2, 3, 4, 5, 6]
let constData = Data(constArray)
// GRDB
try db.usePassphrase(varString)
try db.usePassphrase(constString) // BAD: constant key
try db.usePassphrase(varData)
try db.usePassphrase(constData) // BAD: constant key
try db.changePassphrase(varString)
try db.changePassphrase(constString) // BAD: constant key
try db.changePassphrase(Data(varArray))
try db.changePassphrase(constData) // BAD: constant key
}
Reference in New Issue View Git Blame Copy Permalink