hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-06-02 20:30:15 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
7c4695b8975e26eb9ade033e99dc47488828f40e
codeql/java/ql/lib/semmle/code/java/frameworks/RabbitMQ.qll

59 lines
3.3 KiB
Plaintext
Raw Blame History

/**
* Provides classes and predicates related to RabbitMQ.
*/
import java
private import semmle.code.java.dataflow.ExternalFlow
/**
* Defines remote sources in RabbitMQ.
*/
private class RabbitMQSource extends SourceModelCsv {
override predicate row(string row) {
row =
[
// soruces for RabbitMQ 4.x
"com.rabbitmq.client;Command;true;getContentHeader;();;ReturnValue;remote;manual",
"com.rabbitmq.client;Command;true;getContentBody;();;ReturnValue;remote;manual",
"com.rabbitmq.client;Consumer;true;handleDelivery;(String,Envelope,BasicProperties,byte[]);;Parameter[3];remote;manual",
"com.rabbitmq.client;QueueingConsumer;true;nextDelivery;;;ReturnValue;remote;manual",
"com.rabbitmq.client;RpcServer;true;handleCall;(Delivery,BasicProperties);;Parameter[0];remote;manual",
"com.rabbitmq.client;RpcServer;true;handleCall;(BasicProperties,byte[],BasicProperties);;Parameter[1];remote;manual",
"com.rabbitmq.client;RpcServer;true;handleCall;(byte[],BasicProperties);;Parameter[0];remote;manual",
"com.rabbitmq.client;RpcServer;true;preprocessReplyProperties;(Delivery,Builder);;Parameter[0];remote;manual",
"com.rabbitmq.client;RpcServer;true;postprocessReplyProperties;(Delivery,Builder);;Parameter[0];remote;manual",
"com.rabbitmq.client;RpcServer;true;handleCast;(Delivery);;Parameter[0];remote;manual",
"com.rabbitmq.client;RpcServer;true;handleCast;(BasicProperties,byte[]);;Parameter[1];remote;manual",
"com.rabbitmq.client;RpcServer;true;handleCast;(byte[]);;Parameter[0];remote;manual",
"com.rabbitmq.client;StringRpcServer;true;handleStringCall;;;Parameter[0];remote;manual",
"com.rabbitmq.client;RpcClient;true;doCall;;;ReturnValue;remote;manual",
"com.rabbitmq.client;RpcClient;true;primitiveCall;;;ReturnValue;remote;manual",
"com.rabbitmq.client;RpcClient;true;responseCall;;;ReturnValue;remote;manual",
"com.rabbitmq.client;RpcClient;true;stringCall;(String);;ReturnValue;remote;manual",
"com.rabbitmq.client;RpcClient;true;mapCall;;;ReturnValue;remote;manual",
"com.rabbitmq.client.impl;Frame;true;getInputStream;();;ReturnValue;remote;manual",
"com.rabbitmq.client.impl;Frame;true;getPayload;();;ReturnValue;remote;manual",
"com.rabbitmq.client.impl;FrameHandler;true;readFrame;();;ReturnValue;remote;manual",
]
}
}
/**
* Defines flow steps in RabbitMQ.
*/
private class RabbitMQSummaryCsv extends SummaryModelCsv {
override predicate row(string row) {
row =
[
// flow steps for RabbitMQ 4.x
"com.rabbitmq.client;GetResponse;true;GetResponse;;;Argument[2];Argument[-1];taint;manual",
"com.rabbitmq.client;GetResponse;true;getBody;();;Argument[-1];ReturnValue;taint;manual",
"com.rabbitmq.client;RpcClient$Response;true;getBody;();;Argument[-1];ReturnValue;taint;manual",
"com.rabbitmq.client;QueueingConsumer$Delivery;true;getBody;();;Argument[-1];ReturnValue;taint;manual",
"com.rabbitmq.client.impl;Frame;false;fromBodyFragment;(int,byte[],int,int);;Argument[1];ReturnValue;taint;manual",
"com.rabbitmq.client.impl;Frame;false;readFrom;(DataInputStream);;Argument[0];ReturnValue;taint;manual",
"com.rabbitmq.client.impl;Frame;true;writeTo;(DataOutputStream);;Argument[-1];Argument[0];taint;manual",
]
}
}
Reference in New Issue View Git Blame Copy Permalink