checker(java): Add miscellaneous checkers for Java (#202)

* checker: add CBC padding oracle vuln checker

* chore: modify test comments

* add checker for rsa instance creation without padding

* detect cipher using ecb mode

* detect custom message digest implementation

* detect usage of insecure DES and 3DES

* detect NullCipher and DefaultHttpClient

* detect weak ssl context

* detect insecure sha224 usage

Author: MashyBasker

checkers/java/cbc-padding-oracle.test.java

@@ -0,0 +1,31 @@
+package servlets;
+
+import java.io.File;
+import java.io.IOException;
+import java.io.PrintWriter;
+
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServlet;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.servlet.http.HttpSession;
+
+public class Cls extends HttpServlet
+{
+    private static org.apache.log4j.Logger log = Logger.getLogger(Register.class);
+
+    // cf. https://find-sec-bugs.github.io/bugs.htm#TDES_USAGE
+    protected void danger(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
+        // <expect-error>
+        Cipher c = Cipher.getInstance("AES/CBC/PKCS5Padding");
+        c.init(Cipher.ENCRYPT_MODE, k, iv);
+        byte[] cipherText = c.doFinal(plainText);
+    }
+
+    protected void ok(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
+        // <no-error>
+        Cipher c = Cipher.getInstance("AES/GCM/NoPadding");
+        c.init(Cipher.ENCRYPT_MODE, k, iv);
+        byte[] cipherText = c.doFinal(plainText);
+    }
+}

checkers/java/cbc-padding-oracle.yml

@@ -0,0 +1,26 @@
+language: java
+name: cbc-padding-oracle
+message: "Using CBC mode with PKCS5Padding can cause padding oracle attacks"
+category: security
+severity: critical
+
+pattern: >
+  (method_invocation
+    object: (identifier) @cipherClass
+    name: (identifier) @instanceMethod
+    arguments: (argument_list
+      (string_literal
+        (string_fragment) @str))
+    (#match? @str ".*CBC.*PKCS5Padding")
+    (#eq? @cipherClass "Cipher")
+    (#eq? @instanceMethod "getInstance")) @cbc-padding-oracle
+
+  
+exclude:
+  - "tests/**"
+  - "vendor/**"
+  - "**/Test_*.java"
+  - "**/*Test.java"
+
+description: >
+  Java applications using CBC mode with PKCS5Padding for encryption are vulnerable to padding oracle attacks, where attackers can distinguish between valid and invalid padding to potentially decrypt sensitive data without knowing the encryption key. This vulnerability is compounded by CBC mode's lack of built-in integrity checks. The recommended approach is using AES/GCM/NoPadding instead, which provides both confidentiality and integrity protection through authenticated encryption.

checkers/java/custom-digests.test.java

@@ -0,0 +1,15 @@
+// <expect-error>
+public class MyProprietaryMessageDigest extends MessageDigest {
+
+    @Override
+    protected byte[] engineDigest() {
+        return "";
+    }
+}
+
+// <no-error>
+public class NotMessageDigest {
+    public NotMessageDigest() {
+        System.out.println("");
+    }
+}

checkers/java/custom-digests.yml

@@ -0,0 +1,18 @@
+language: java
+name: custom-digests
+message: "Implementing custom digests can lead to security issues"
+category: security
+severity: warning
+
+pattern: >
+  (class_declaration
+    superclass: (superclass) @extension (#eq? @extension "extends MessageDigest")) @custom-digests
+
+exclude:
+  - "tests/**"
+  - "vendor/**"
+  - "**/Test_*.java"
+  - "**/*Test.java"
+
+description: >
+  A custom message digest implementation risks introducing serious security vulnerabilities, as cryptographic algorithms require precise implementation to be secure. Instead, leverage the established and well-tested message digest implementations already available, such as SHA-256 through Java's MessageDigest API.

checkers/java/deprecated-default-httpclient.test.java

@@ -0,0 +1,31 @@
+// cf. https://mkyong.com/java/the-type-defaulthttpclient-is-deprecated/
+
+package com.exampleweb.controller;
+
+import org.apache.http.Header;
+import org.apache.http.HttpResponse;
+import org.apache.http.client.HttpClient;
+import org.apache.http.client.methods.HttpGet;
+import org.apache.http.impl.client.DefaultHttpClient;
+
+public class WebCrawler {
+
+    public void crawl(String[] args) throws Exception {
+        // <expect-error>
+        HttpClient client = new DefaultHttpClient();
+        HttpGet request = new HttpGet("http://google.com");
+        HttpResponse response = client.execute(request);
+    }
+
+}
+
+public class SecureWebCrawler {
+
+    public void crawl(String[] args) throws Exception {
+        // <no-error>
+        HttpClient client = new SystemDefaultHttpClient();
+        HttpGet request = new HttpGet("http://google.com");
+        HttpResponse response = client.execute(request);
+    }
+
+}

checkers/java/deprecated-default-httpclient.yml

@@ -0,0 +1,18 @@
+language: java
+name: deprecated-default-httpclient
+message: "Detected usage of deprecated `DefaultHttpClient`. Use `HttpClientBuilder` instead"
+category: security
+severity: warning
+
+pattern: >
+  (object_creation_expression
+    type: (type_identifier) @httpclient (#eq? @httpclient "DefaultHttpClient")) @deprecated-default-httpclient
+
+exclude:
+  - "tests/**"
+  - "vendor/**"
+  - "**/Test_*.java"
+  - "**/*Test.java"
+
+description: >
+  DefaultHttpClient is deprecated and does not support TLS1.2 connections, creating a significant security vulnerability. Use HttpClientBuilder instead for secure HTTP communications.

checkers/java/deprecated-des.test.java

@@ -0,0 +1,140 @@
+package servlets;
+
+import java.io.File;
+import java.io.IOException;
+import java.io.PrintWriter;
+
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServlet;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.servlet.http.HttpSession;
+
+public class Cls extends HttpServlet
+{
+    private static org.apache.log4j.Logger log = Logger.getLogger(Register.class);
+
+    // cf. https://find-sec-bugs.github.io/bugs.htm#TDES_USAGE
+    protected void danger(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
+        // <expect-error>
+        Cipher c = Cipher.getInstance("DES/ECB/PKCS5Padding");
+        c.init(Cipher.ENCRYPT_MODE, k, iv);
+        byte[] cipherText = c.doFinal(plainText);
+    }
+
+    protected void danger2(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
+        // <expect-error>
+        Cipher c = Cipher.getInstance("DES");
+        c.init(Cipher.ENCRYPT_MODE, k, iv);
+        byte[] cipherText = c.doFinal(plainText);
+    }
+
+    protected void ok(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
+        // <no-error>
+        Cipher c = Cipher.getInstance("AES/GCM/NoPadding");
+        c.init(Cipher.ENCRYPT_MODE, k, iv);
+        byte[] cipherText = c.doFinal(plainText);
+    }
+}
+
+public class Cls extends HttpServlet
+{
+    private static org.apache.log4j.Logger log = Logger.getLogger(Register.class);
+
+    // cf. https://find-sec-bugs.github.io/bugs.htm#TDES_USAGE
+    protected void danger(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
+        // <expect-error>
+        Cipher c = Cipher.getInstance("DESede/ECB/PKCS5Padding");
+        c.init(Cipher.ENCRYPT_MODE, k, iv);
+        byte[] cipherText = c.doFinal(plainText);
+    }
+
+    protected void ok(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
+        // <no-error>
+        Cipher c = Cipher.getInstance("AES/GCM/NoPadding");
+        c.init(Cipher.ENCRYPT_MODE, k, iv);
+        byte[] cipherText = c.doFinal(plainText);
+    }
+}
+
+@WebServlet(value = "/crypto-00/BenchmarkTest00019")
+public class BenchmarkTest00019 extends HttpServlet {
+
+    private static final long serialVersionUID = 1L;
+
+    @Override
+    public void doGet(HttpServletRequest request, HttpServletResponse response)
+            throws ServletException, IOException {
+        doPost(request, response);
+    }
+
+    @Override
+    public void doPost(HttpServletRequest request, HttpServletResponse response)
+            throws ServletException, IOException {
+        response.setContentType("text/html;charset=UTF-8");
+
+        java.io.InputStream param = request.getInputStream();
+
+        try {
+            java.util.Properties benchmarkprops = new java.util.Properties();
+            benchmarkprops.load(
+                    this.getClass().getClassLoader().getResourceAsStream("benchmark.properties"));
+            String algorithm = benchmarkprops.getProperty("cryptoAlg1", "DESede/ECB/PKCS5Padding");
+            javax.crypto.Cipher c = javax.crypto.Cipher.getInstance(algorithm);
+
+            // Prepare the cipher to encrypt
+            // <expect-error>
+            javax.crypto.SecretKey key = javax.crypto.KeyGenerator.getInstance("DES").generateKey();
+            c.init(javax.crypto.Cipher.ENCRYPT_MODE, key);
+
+            // encrypt and store the results
+            byte[] input = {(byte) '?'};
+            Object inputParam = param;
+            if (inputParam instanceof String) input = ((String) inputParam).getBytes();
+            if (inputParam instanceof java.io.InputStream) {
+                byte[] strInput = new byte[1000];
+                int i = ((java.io.InputStream) inputParam).read(strInput);
+                if (i == -1) {
+                    response.getWriter()
+                            .println(
+                                    "This input source requires a POST, not a GET. Incompatible UI for the InputStream source.");
+                    return;
+                }
+                input = java.util.Arrays.copyOf(strInput, i);
+            }
+            byte[] result = c.doFinal(input);
+
+            java.io.File fileTarget =
+                    new java.io.File(
+                            new java.io.File(org.owasp.benchmark.helpers.Utils.TESTFILES_DIR),
+                            "passwordFile.txt");
+            java.io.FileWriter fw =
+                    new java.io.FileWriter(fileTarget, true); // the true will append the new data
+            fw.write(
+                    "secret_value="
+                            + org.owasp.esapi.ESAPI.encoder().encodeForBase64(result, true)
+                            + "\n");
+            fw.close();
+            response.getWriter()
+                    .println(
+                            "Sensitive value: '"
+                                    + org.owasp
+                                            .esapi
+                                            .ESAPI
+                                            .encoder()
+                                            .encodeForHTML(new String(input))
+                                    + "' encrypted and stored<br/>");
+
+        } catch (java.security.NoSuchAlgorithmException
+                | javax.crypto.NoSuchPaddingException
+                | javax.crypto.IllegalBlockSizeException
+                | javax.crypto.BadPaddingException
+                | java.security.InvalidKeyException e) {
+            response.getWriter()
+                    .println(
+                            "Problem executing crypto - javax.crypto.Cipher.getInstance(java.lang.String,java.security.Provider) Test Case");
+            e.printStackTrace(response.getWriter());
+            throw new ServletException(e);
+        }
+    }
+}

checkers/java/deprecated-des.yml

@@ -0,0 +1,29 @@
+language: java
+name: deprecated-des
+message: "The DES encryption algorithm is considered insecure. AES is recommended."
+category: security
+severity: warning
+
+pattern: >
+  (method_invocation
+    object: (identifier) @cipher (#eq? @cipher "Cipher")
+    name: (identifier) @instanceMethod (#eq? @instanceMethod "getInstance")
+    arguments: (argument_list
+      (string_literal
+        (string_fragment) @string (#match? @string "^(DES/.*|DESede/.*|DES)$")))) @deprecated-des
+
+  (method_invocation
+    object: (method_invocation) @method
+    (#match? @method "\\.[Kk]eyGenerator\\.getInstance")
+    (#match? @method "\"DES\"")) @deprecated-des
+
+exclude:
+  - "tests/**"
+  - "vendor/**"
+  - "**/Test_*.java"
+  - "**/*Test.java"
+
+description: >
+  DES and Triple DES (3DES/DESede) are considered deprecated encryption standards. AES is the recommended cipher for both cases. Organizations should upgrade their systems to use AES instead. For more information about the deprecation of DES, see https://www.nist.gov/news-events/news/2005/06/nist-withdraws-outdated-data-encryption-standard.
+
+  

checkers/java/ecb-cipher.test.java

@@ -0,0 +1,15 @@
+class ECBCipher {
+
+  public void ecbCipher() {
+    // <expect-error>
+    Cipher c = Cipher.getInstance("AES/ECB/NoPadding");
+    c.init(Cipher.ENCRYPT_MODE, k, iv);
+    byte[] cipherText = c.doFinal(plainText);
+  }
+  public void noEcbCipher() {
+    // <no-error>
+    Cipher c = Cipher.getInstance("AES/GCM/NoPadding");
+    c.init(Cipher.ENCRYPT_MODE, k, iv);
+    byte[] cipherText = c.doFinal(plainText);
+  }
+}

checkers/java/ecb-cipher.yml

@@ -0,0 +1,22 @@
+language: java
+name: ecb-cipher
+message: "Using Cipher with ECB mode gives deterministic output"
+category: security
+severity: warning
+
+pattern: >
+  (method_invocation
+    object: (identifier) @cipher (#eq? @cipher "Cipher")
+    name: (identifier) @instanceMethod (#eq? @instanceMethod "getInstance")
+    arguments: (argument_list
+      (string_literal
+        (string_fragment) @str (#match? @str ".*ECB.*")))) @ecb-cipher
+
+exclude:
+  - "tests/**"
+  - "vendor/**"
+  - "**/Test_*.java"
+  - "**/*Test.java"
+
+description: >
+  Cipher in ECB mode produces identical output for identical input blocks, making it vulnerable to replay attacks where attackers can intercept and reuse encrypted data. Additionally, ECB mode lacks integrity checking mechanisms, which means there's no way to verify if the encrypted data has been tampered with during transmission.