hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-25 16:55:19 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
51243454c890c3c58c0d9ba767dfec8a030ba2ed
codeql/java/ql/test/library-tests/dataflow/taintgettersetter/taintgettersetter.ql
Anders Schack-Mulligen bca79cd4d6 Java/C++/C#: Add support for taint-getter/setter summaries.
2019-12-16 16:15:48 +01:00

26 lines
686 B
Plaintext
Raw Blame History

import java
import semmle.code.java.dataflow.DataFlow
import DataFlow
class Conf extends Configuration {
Conf() { this = "taintgettersetter" }
override predicate isSource(Node n) { n.asExpr().(MethodAccess).getMethod().hasName("taint") }
override predicate isSink(Node n) {
exists(MethodAccess sink |
sink.getAnArgument() = n.asExpr() and sink.getMethod().hasName("sink")
)
}
override predicate isAdditionalFlowStep(Node n1, Node n2) {
exists(AddExpr add |
add.getType() instanceof TypeString and add.getAnOperand() = n1.asExpr() and n2.asExpr() = add
)
}
}
from Node src, Node sink, Conf conf
where conf.hasFlow(src, sink)
select src, sink
Reference in New Issue View Git Blame Copy Permalink