hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
7e4e872430ee70a9c0ff3cd5a2296ef0aaaee87d
codeql/csharp/ql/test/library-tests/dataflow/threat-models/Test.cs
Ed Minnix 975327648c Remove commented-out code
2024-01-22 11:09:50 -05:00

68 lines
2.2 KiB
C#
Raw Blame History

using System.Net.Sockets;
using System.Data.SqlClient;
namespace My.Qltest
{
public class Test
{
private TestSources Sources = new TestSources();
private SqlConnection Connection => throw null;
private string BytesToString(byte[] bytes)
{
// Encode bytes to a UTF8 string.
return System.Text.Encoding.UTF8.GetString(bytes);
}
public void M1()
{
// Only a source if "remote" is a selected threat model.
// This is included in the "default" threat model.
using TcpClient client = new TcpClient("localhost", 1234);
using NetworkStream stream = client.GetStream();
byte[] buffer = new byte[1024];
int bytesRead = stream.Read(buffer, 0, buffer.Length);
// SQL sink
var command = new SqlCommand("SELECT * FROM Users WHERE Username = '" + BytesToString(buffer) + "'", Connection);
}
public void M2()
{
// Only a source if "database" is a selected threat model.
string result = Sources.ExecuteQuery("SELECT * FROM foo");
// SQL sink
var command = new SqlCommand("SELECT * FROM Users WHERE Username = '" + result + "'", Connection);
}
public void M3()
{
// Only a source if "environment" is a selected threat model.
string result = Sources.ReadEnv("foo");
// SQL sink
var command = new SqlCommand("SELECT * FROM Users WHERE Username = '" + result + "'", Connection);
}
public void M4()
{
// Only a source if "custom" is a selected threat model.
string result = Sources.GetCustom("foo");
// SQL sink
var command = new SqlCommand("SELECT * FROM Users WHERE Username = '" + result + "'", Connection);
}
public void M5()
{
// Only a source if "commandargs" is a selected threat model.
string result = Sources.GetCliArg(0);
// SQL sink
var command = new SqlCommand("SELECT * FROM Users WHERE Username = '" + result + "'", Connection);
}
}
}
Reference in New Issue View Git Blame Copy Permalink