hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-10 17:29:26 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
4d7401a07479624d1ec593db664d4539954fe1b0
codeql/java/ql/lib/semmle/code/java/security/HardcodedCredentialsComparison.qll
Chris Smowton e8c9708282 Autoformat
2023-10-24 11:06:19 +01:00

28 lines
763 B
Plaintext
Raw Blame History

/**
* Provides classes and predicates to detect comparing a parameter to a hard-coded credential.
*/
import java
import HardcodedCredentials
/**
* A call to a method that is or overrides `java.lang.Object.equals`.
*/
class EqualsCall extends MethodCall {
EqualsCall() { this.getMethod() instanceof EqualsMethod }
}
/** DEPRECATED: Alias for `EqualsCall`. */
deprecated class EqualsAccess = EqualsCall;
/**
* Holds if `sink` compares password `p` against a hardcoded expression `source`.
*/
predicate isHardcodedCredentialsComparison(EqualsCall sink, HardcodedExpr source, PasswordVariable p) {
source = sink.getQualifier() and
p.getAnAccess() = sink.getArgument(0)
or
source = sink.getArgument(0) and
p.getAnAccess() = sink.getQualifier()
}
Reference in New Issue View Git Blame Copy Permalink