MDS/openide
1
0
Fork 0
mirror of https://gitflic.ru/project/openide/openide.git synced 2025-12-24 09:20:53 +07:00
Code Issues Packages Projects Releases Wiki Activity
Files
4c26f710ffa92f0141f4bd82fb3a667f35437c8b
openide/jvm/jvm-analysis-java-tests/testData/codeInspection/sourceToSinkFlow/Simple.java
Artemiy Sartakov 4c26f710ff SourceToSinkFlowInspection: cr fixes (IJ-CR-10092): 
1. RestrictionInfoBuilder -> RestrictionInfoFactory
2. removed redundant extends from wildcards for RestrictionInfoFactory
3. specified package for Untainted annotation in description
4. replaced 'sink' with 'safe method' in inspection descriptions
5. TaintValue#getName -> TaintValue#getAnnotationName
6. formatting

GitOrigin-RevId: d87b8aa8b39653fa18bb96efe8cd90db81764b56
2021-06-23 09:27:39 +00:00

116 lines
2.5 KiB
Java
Raw Blame History

package org.checkerframework.checker.tainting.qual;
import java.lang.annotation.ElementType;
import java.lang.annotation.Target;
public class Simple {
void simple() {
String s = source();
sink(<warning descr="Unsafe string is passed to safe method">s</warning>);
}
void alias() {
String s1 = source();
String s = s1;
sink(<warning descr="Unsafe string is passed to safe method">s</warning>);
}
void unknown() {
String s = foo();
sink(<warning descr="Unknown string is passed to safe method">s</warning>);
}
void literalOnly() {
String s = null;
s = "safe";
sink(s);
}
void safeCall() {
String s = "safe";
s = safe();
sink(s);
}
void sourceCallToSink() {
sink(<warning descr="Unsafe string is passed to safe method">source()</warning>);
}
void safeCallToSink() {
sink(safe());
}
void sourceFromClass() {
String s = (new WithSourceParent()).source();
sink(<warning descr="Unsafe string is passed to safe method">s</warning>);
}
void sourceFromChildClass() {
WithSourceChild child = new WithSourceChild();
String s = child.source();
sink(<warning descr="Unsafe string is passed to safe method">s</warning>);
}
void withParenthesis() {
String s1 = (source());
s1 = (foo());
String s = (s1);
sink((<warning descr="Unsafe string is passed to safe method">s</warning>));
}
@Untainted String unsafeReturn() {
return <warning descr="Unsafe string is passed to safe method">source()</warning>;
}
void sourceToSafeString() {
@Untainted String s = "safe";
s = <warning descr="Unsafe string is passed to safe method">source()</warning>;
}
void unsafeConcat() {
@Tainted String s = source();
String s1 = "safe";
String s2 = "safe2";
sink(s1 + <warning descr="Unsafe string is passed to safe method">s</warning> + s2);
}
void unsafeTernary(boolean b) {
@Tainted String s = source();
sink(b ? <warning descr="Unsafe string is passed to safe method">s</warning> : null);
}
String callSource() {
return source();
}
String foo() {
return "some";
}
@Untainted
String safe() {
return "safe";
}
@Tainted
String source() {
return "tainted";
}
void sink(@Untainted String s1) {}
class WithSourceParent {
@Tainted
String source() {
return "tainted";
}
}
class WithSourceChild extends WithSourceParent {
@Override
String source() {
return super.source();
}
}
}
Reference in New Issue View Git Blame Copy Permalink