mirror of
https://github.com/github/codeql.git
synced 2025-12-28 14:46:33 +01:00
130 lines
4.4 KiB
Plaintext
130 lines
4.4 KiB
Plaintext
/**
|
|
* Provides classes that represent standard annotations from the JDK.
|
|
*/
|
|
|
|
import java
|
|
|
|
/** A `@Deprecated` annotation. */
|
|
class DeprecatedAnnotation extends Annotation {
|
|
DeprecatedAnnotation() { this.getType().hasQualifiedName("java.lang", "Deprecated") }
|
|
}
|
|
|
|
/** An `@Override` annotation. */
|
|
class OverrideAnnotation extends Annotation {
|
|
OverrideAnnotation() { this.getType().hasQualifiedName("java.lang", "Override") }
|
|
}
|
|
|
|
/** A `@SuppressWarnings` annotation. */
|
|
class SuppressWarningsAnnotation extends Annotation {
|
|
SuppressWarningsAnnotation() { this.getType().hasQualifiedName("java.lang", "SuppressWarnings") }
|
|
|
|
/** Gets the `StringLiteral` of a warning suppressed by this annotation. */
|
|
StringLiteral getASuppressedWarningLiteral() {
|
|
result = this.getAValue() or
|
|
result = this.getAValue().(ArrayInit).getAnInit()
|
|
}
|
|
|
|
/** Gets the name of a warning suppressed by this annotation. */
|
|
string getASuppressedWarning() { result = this.getASuppressedWarningLiteral().getValue() }
|
|
}
|
|
|
|
/** A `@Target` annotation. */
|
|
class TargetAnnotation extends Annotation {
|
|
TargetAnnotation() { this.getType().hasQualifiedName("java.lang.annotation", "Target") }
|
|
|
|
/**
|
|
* Gets a target expression within this annotation.
|
|
*
|
|
* For example, the field access `ElementType.FIELD` is a target expression in
|
|
* `@Target({ElementType.FIELD, ElementType.METHOD})`.
|
|
*/
|
|
Expr getATargetExpression() {
|
|
not result instanceof ArrayInit and
|
|
(
|
|
result = this.getAValue() or
|
|
result = this.getAValue().(ArrayInit).getAnInit()
|
|
)
|
|
}
|
|
|
|
/**
|
|
* Gets the name of a target element type.
|
|
*
|
|
* For example, `METHOD` is the name of a target element type in
|
|
* `@Target({ElementType.FIELD, ElementType.METHOD})`.
|
|
*/
|
|
string getATargetElementType() {
|
|
exists(EnumConstant ec |
|
|
ec = this.getATargetExpression().(VarAccess).getVariable() and
|
|
ec.getDeclaringType().hasQualifiedName("java.lang.annotation", "ElementType")
|
|
|
|
|
result = ec.getName()
|
|
)
|
|
}
|
|
}
|
|
|
|
/** A `@Retention` annotation. */
|
|
class RetentionAnnotation extends Annotation {
|
|
RetentionAnnotation() { this.getType().hasQualifiedName("java.lang.annotation", "Retention") }
|
|
|
|
/**
|
|
* Gets the retention policy expression within this annotation.
|
|
*
|
|
* For example, the field access `RetentionPolicy.RUNTIME` is the
|
|
* retention policy expression in `@Retention(RetentionPolicy.RUNTIME)`.
|
|
*/
|
|
Expr getRetentionPolicyExpression() { result = this.getValue("value") }
|
|
|
|
/**
|
|
* Gets the name of the retention policy of this annotation.
|
|
*
|
|
* For example, `RUNTIME` is the name of the retention policy
|
|
* in `@Retention(RetentionPolicy.RUNTIME)`.
|
|
*/
|
|
string getRetentionPolicy() {
|
|
exists(EnumConstant ec |
|
|
ec = this.getRetentionPolicyExpression().(VarAccess).getVariable() and
|
|
ec.getDeclaringType().hasQualifiedName("java.lang.annotation", "RetentionPolicy")
|
|
|
|
|
result = ec.getName()
|
|
)
|
|
}
|
|
}
|
|
|
|
/**
|
|
* An annotation suggesting that the annotated element may be accessed reflectively.
|
|
*
|
|
* This is implemented by negation of a white-list of standard annotations that are
|
|
* known not to be reflection-related; all other annotations are assumed to potentially
|
|
* be reflection-related.
|
|
*
|
|
* A typical use-case is the exclusion of results relating to various frameworks,
|
|
* where an exhaustive list of all annotations for all frameworks that may exist
|
|
* can be difficult to obtain and maintain.
|
|
*/
|
|
class ReflectiveAccessAnnotation extends Annotation {
|
|
ReflectiveAccessAnnotation() {
|
|
// We conservatively white-list a few standard annotations that have nothing to do
|
|
// with reflection, and assume that any other annotation may be reflection-related.
|
|
not this instanceof NonReflectiveAnnotation
|
|
}
|
|
}
|
|
|
|
/**
|
|
* An annotation that does not indicate that a field may be accessed reflectively.
|
|
*
|
|
* Any annotation that is not a subclass of `NonReflectiveAnnotation` is assumed to
|
|
* allow for reflective access.
|
|
*/
|
|
abstract class NonReflectiveAnnotation extends Annotation { }
|
|
|
|
library class StandardNonReflectiveAnnotation extends NonReflectiveAnnotation {
|
|
StandardNonReflectiveAnnotation() {
|
|
exists(AnnotationType anntp | anntp = this.getType() |
|
|
anntp.hasQualifiedName("java.lang", "Override") or
|
|
anntp.hasQualifiedName("java.lang", "Deprecated") or
|
|
anntp.hasQualifiedName("java.lang", "SuppressWarnings") or
|
|
anntp.hasQualifiedName("java.lang", "SafeVarargs")
|
|
)
|
|
}
|
|
}
|