C++: Replace placeholder key in the example for cpp/cleartext-storage-database.

geoffw0 · geoffw0 · commit b00e312569c1 · 2024-07-22T11:17:34.000+01:00
diff --git a/cpp/ql/src/Security/CWE/CWE-313/CleartextSqliteDatabase.c b/cpp/ql/src/Security/CWE/CWE-313/CleartextSqliteDatabase.c
@@ -1,6 +1,6 @@
 
 void bad(void) {
-  char *password = "cleartext password";
+  const char *password = "cleartext password";
   sqlite3 *credentialsDB;
   sqlite3_stmt *stmt;
 
@@ -16,14 +16,15 @@ void bad(void) {
   }
 }
 
-void good(void) {
-  char *password = "cleartext password";
+void good(const char *secretKey) {
+  const char *password = "cleartext password";
   sqlite3 *credentialsDB;
   sqlite3_stmt *stmt;
 
   if (sqlite3_open("credentials.db", &credentialsDB) == SQLITE_OK) {
     // GOOD: database encryption enabled:
-    sqlite3_exec(credentialsDB, "PRAGMA key = 'secretKey!'", NULL, NULL, NULL);
+    std::string setKeyString = std::string("PRAGMA key = '") + secretKey + "'";
+    sqlite3_exec(credentialsDB, setKeyString.c_str(), NULL, NULL, NULL);
     sqlite3_exec(credentialsDB, "CREATE TABLE IF NOT EXISTS creds (password TEXT);", NULL, NULL, NULL);
     if (sqlite3_prepare_v2(credentialsDB, "INSERT INTO creds(password) VALUES(?)", -1, &stmt, NULL) == SQLITE_OK) {
       sqlite3_bind_text(stmt, 1, password, -1, SQLITE_TRANSIENT);
@@ -33,4 +34,3 @@ void good(void) {
     }
   }
 }
-
diff --git a/cpp/ql/src/Security/CWE/CWE-313/CleartextSqliteDatabase.qhelp b/cpp/ql/src/Security/CWE/CWE-313/CleartextSqliteDatabase.qhelp
@@ -20,10 +20,12 @@ In the 'GOOD' case, the database (and thus the credentials) are encrypted.</p>
 
 <sample src="CleartextSqliteDatabase.c" />
 
+<p>Note that for the good example to work we need to provide a secret key. Secure key generation and storage is required.</p>
+
 </example>
 <references>
 
-<li>M. Dowd, J. McDonald and J. Schuhm, <i>The Art of Software Security Assessment</i>, 1st Edition, Chapter 2 - 'Common Vulnerabilities of Encryption', p. 43. Addison Wesley, 2006.</li> 
+<li>M. Dowd, J. McDonald and J. Schuhm, <i>The Art of Software Security Assessment</i>, 1st Edition, Chapter 2 - 'Common Vulnerabilities of Encryption', p. 43. Addison Wesley, 2006.</li>
 <li>M. Howard and D. LeBlanc, <i>Writing Secure Code</i>, 2nd Edition, Chapter 9 - 'Protecting Secret Data', p. 299. Microsoft, 2002.</li>
 
 

Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`
`2`	`2`	`void bad(void) {`
`3`		`- char *password = "cleartext password";`
	`3`	`+ const char *password = "cleartext password";`
`4`	`4`	`sqlite3 *credentialsDB;`
`5`	`5`	`sqlite3_stmt *stmt;`
`6`	`6`
`@@ -16,14 +16,15 @@ void bad(void) {`
`16`	`16`	`}`
`17`	`17`	`}`
`18`	`18`
`19`		`-void good(void) {`
`20`		`- char *password = "cleartext password";`
	`19`	`+void good(const char *secretKey) {`
	`20`	`+ const char *password = "cleartext password";`
`21`	`21`	`sqlite3 *credentialsDB;`
`22`	`22`	`sqlite3_stmt *stmt;`
`23`	`23`
`24`	`24`	`if (sqlite3_open("credentials.db", &credentialsDB) == SQLITE_OK) {`
`25`	`25`	`// GOOD: database encryption enabled:`
`26`		`- sqlite3_exec(credentialsDB, "PRAGMA key = 'secretKey!'", NULL, NULL, NULL);`
	`26`	`+ std::string setKeyString = std::string("PRAGMA key = '") + secretKey + "'";`
	`27`	`+ sqlite3_exec(credentialsDB, setKeyString.c_str(), NULL, NULL, NULL);`
`27`	`28`	`sqlite3_exec(credentialsDB, "CREATE TABLE IF NOT EXISTS creds (password TEXT);", NULL, NULL, NULL);`
`28`	`29`	`if (sqlite3_prepare_v2(credentialsDB, "INSERT INTO creds(password) VALUES(?)", -1, &stmt, NULL) == SQLITE_OK) {`
`29`	`30`	`sqlite3_bind_text(stmt, 1, password, -1, SQLITE_TRANSIENT);`
`@@ -33,4 +34,3 @@ void good(void) {`
`33`	`34`	`}`
`34`	`35`	`}`
`35`	`36`	`}`
`36`		`-`