MDS/openide
1
0
Fork 0
mirror of https://gitflic.ru/project/openide/openide.git synced 2025-12-17 07:20:53 +07:00
Code Issues Packages Projects Releases Wiki Activity
Files
243
openide/jvm/jvm-analysis-java-tests/testData/codeInspection/sourceToSinkFlow/SinkJsr.java
Mikhail Pyltsin 4edcb035e7 [java-inspections] IDEA-282916 Improve tainted analysis, support local methods 
GitOrigin-RevId: 27871a7bbab9f093863d110711f7bb67c9b09fd9
2023-05-05 16:37:52 +00:00

49 lines
1.3 KiB
Java
Raw Permalink Blame History

import javax.annotation.Untainted;
import java.util.ArrayList;
import java.util.List;
class SinkTest {
public void test(String string) {
sink(<warning descr="Unknown string is used as safe parameter">string</warning>); //warn
}
@Untainted
public String returnDirty(String dirty) {
return <warning descr="Unknown string is returned from safe method">dirty</warning>; //warn
}
void sink(@Untainted String clear) {
}
void assignDirty(@Untainted String clear, String dirty) {
clear = <warning descr="Unknown string is used as safe parameter">dirty</warning>; //warn
}
@Untainted String dirty = <warning descr="Unknown string is used in a safe context">getFromStatic()</warning>; //warn
static List<String> list = new ArrayList<>();
private static String getFromStatic() {
return list.get(0);
}
@Untainted
static String clear = "";
static void spoil(String dirty) {
clear = <warning descr="Unknown string is used in a safe context">dirty</warning>; //warn
}
static void testLocal(String dirty) {
@Untainted String clean = <warning descr="Unknown string is assigned to safe variable">dirty</warning>; //warn
}
static void testLocal2(String dirty) {
@Untainted String clean = "";
clean = <warning descr="Unknown string is assigned to safe variable">dirty</warning>; //warn
}
}
Reference in New Issue View Git Blame Copy Permalink