MDS/openide
1
0
Fork 0
mirror of https://gitflic.ru/project/openide/openide.git synced 2025-12-23 07:50:55 +07:00
Code Issues Packages Projects Releases Wiki Activity
Files
23f293db0609bb1defdf372e901b04d4e7ceece8
openide/jvm/jvm-analysis-kotlin-tests/testData/codeInspection/sourceToSinkFlow/MethodPropagation.kt
Mikhail Pyltsin 0fde0c0521 [java-inspections] IDEA-271540 general improvements for tainted analysis 
GitOrigin-RevId: b6b84c387f260a3de7615ddff6d8ac1072849bcf
2023-05-09 13:35:42 +00:00

63 lines
2.3 KiB
Kotlin
Raw Blame History

import org.checkerframework.checker.tainting.qual.Untainted
open class MethodPropagation {
fun test1(dirty: String?, clean: @Untainted String?) {
sink(<warning descr="Unknown string is used as safe parameter">dirty</warning>) //warn
sink(clean)
}
private fun recursive(dirty: String?, clean: @Untainted String?): String {
if (clean === "") {
val a = recursive(dirty, clean)
sink(<weak_warning descr="Too complex to check that the string is safe in a safe context">a</weak_warning>) //warn
return recursive(dirty, clean)
}
return recursive(clean, clean)
}
fun test2(dirty: String?, clean: @Untainted String?) {
sink(<warning descr="Unknown string is used as safe parameter">next(dirty)</warning>) //warn
sink(next(clean))
sink(<warning descr="Unknown string is used as safe parameter">nextPublic(dirty)</warning>) //warn
sink(<warning descr="Unknown string is used as safe parameter">nextPublic(clean)</warning>) //warn (public)
sink(alwaysClean(dirty))
sink(alwaysClean(clean))
sink(<warning descr="Unknown string is used as safe parameter">staticNext(dirty)</warning>) //warn
sink(staticNext(clean))
sink(next(next(clean)))
sink(next(next(next(next(next(clean))))))
sink(<warning descr="Unknown string is used as safe parameter">next(next(next(next(dirty))))</warning>) //warn
sink(alwaysClean(next(next(next(next(clean))))))
sink(alwaysClean(next(next(next(next(dirty))))))
sink(next(next(next(next(alwaysClean(clean))))))
sink(next(next(next(next(alwaysClean(dirty))))))
sink(next(alwaysClean(clean)))
sink(next(alwaysClean(dirty)))
val alwaysClean = alwaysClean(next(next(next(clean))))
sink(alwaysClean)
val alwaysClean2 = alwaysClean(next(next(next(dirty))))
sink(alwaysClean2)
}
private fun next(next: String?): String? {
return next
}
private fun alwaysClean(<warning descr="[UNUSED_PARAMETER] Parameter 'next' is never used">next</warning>: String?): String {
return "next"
}
open fun nextPublic(next: String?): String? {
return next
}
companion object {
fun staticNext(next: String?): String? {
return next
}
fun sink(<warning descr="[UNUSED_PARAMETER] Parameter 'string' is never used">string</warning>: @Untainted String?) {}
}
}
Reference in New Issue View Git Blame Copy Permalink