MDS/openide
1
0
Fork 0
mirror of https://gitflic.ru/project/openide/openide.git synced 2025-12-17 07:20:53 +07:00
Code Issues Packages Projects Releases Wiki Activity
Files
243
openide/jvm/jvm-analysis-java-tests/testData/codeInspection/sourceToSinkFlow/Call.java
Mikhail Pyltsin 4edcb035e7 [java-inspections] IDEA-282916 Improve tainted analysis, support local methods 
GitOrigin-RevId: 27871a7bbab9f093863d110711f7bb67c9b09fd9
2023-05-05 16:37:52 +00:00

38 lines
1.2 KiB
Java
Raw Permalink Blame History

import org.checkerframework.checker.tainting.qual.Untainted;
class CallsCheck {
public void testCall(String dirty, @Untainted String clean) {
sink(<warning descr="Unknown string is used as safe parameter">dirty</warning>); //warn
sink("");
sink(cleanMethod());
sink(<warning descr="Unknown string is used as safe parameter">publicMethod()</warning>); //warn
sink(publicFinalMethod());
sink(<warning descr="Unknown string is used as safe parameter">privateDirty(dirty)</warning>); //warn
sink(<warning descr="Unknown string is used as safe parameter">dirty.toLowerCase()</warning>); //warn
sink(dirty.getClass().getName());
sink(<warning descr="Unknown string is used as safe parameter">dirty.replace("1", "2")</warning>); //warn
sink(clean);
sink(<warning descr="Unknown string is used as safe parameter">clean.replace("1", dirty)</warning>); //warn
}
private String privateDirty(String dirty) {
return dirty;
}
public String publicMethod() {
return "1";
}
public final String publicFinalMethod() {
return "1";
}
private String cleanMethod() {
return "null";
}
public void sink(@Untainted String clean) {
}
}
Reference in New Issue View Git Blame Copy Permalink