Swift: Get another SQLite.swift result.

geoffw0 · geoffw0 · commit bc9d8cc40f50 · 2023-10-06T18:26:20.000+01:00
diff --git a/swift/ql/lib/codeql/swift/frameworks/SQL/SQL.qll b/swift/ql/lib/codeql/swift/frameworks/SQL/SQL.qll
@@ -18,6 +18,8 @@ private class FilePathSummaries extends SummaryModelCsv {
         ";Expression;true;init(_:_:);;;Argument[1].CollectionElement;ReturnValue;taint",
         ";ExpressionType;true;init(_:);;;Argument[0];ReturnValue;taint",
         ";ExpressionType;true;replace(_:with:);;;Argument[1];ReturnValue;taint",
+        ";Blob;true;init(bytes:);;;Argument[0];ReturnValue;taint",
+        ";Blob;true;init(bytes:length:);;;Argument[0];ReturnValue;taint",
       ]
   }
 }
diff --git a/swift/ql/lib/codeql/swift/security/HardcodedEncryptionKeyQuery.qll b/swift/ql/lib/codeql/swift/security/HardcodedEncryptionKeyQuery.qll
@@ -17,7 +17,7 @@ abstract class KeySource extends Expr { }
  * A literal byte array is a key source.
  */
 class ByteArrayLiteralSource extends KeySource {
-  ByteArrayLiteralSource() { this = any(ArrayExpr arr | arr.getType().getName() = "Array<UInt8>") }
+  ByteArrayLiteralSource() { this = any(ArrayExpr arr | arr.getType().getName() = ["Array<UInt8>", "[UInt8]"]) }
 }
 
 /**
diff --git a/swift/ql/test/query-tests/Security/CWE-321/HardcodedEncryptionKey.expected b/swift/ql/test/query-tests/Security/CWE-321/HardcodedEncryptionKey.expected
@@ -1,4 +1,5 @@
 edges
+| SQLite.swift:54:25:54:33 | [...] | SQLite.swift:54:13:54:34 | call to Blob.init(bytes:) |
 | cryptoswift.swift:76:3:76:3 | this string is constant | cryptoswift.swift:92:18:92:36 | call to getConstantString() |
 | cryptoswift.swift:90:26:90:121 | [...] | cryptoswift.swift:117:22:117:22 | key |
 | cryptoswift.swift:90:26:90:121 | [...] | cryptoswift.swift:118:22:118:22 | key |
@@ -56,6 +57,8 @@ nodes
 | SQLite.swift:45:23:45:23 | hardcoded_key | semmle.label | hardcoded_key |
 | SQLite.swift:47:15:47:15 | hardcoded_key | semmle.label | hardcoded_key |
 | SQLite.swift:49:79:49:79 | hardcoded_key | semmle.label | hardcoded_key |
+| SQLite.swift:54:13:54:34 | call to Blob.init(bytes:) | semmle.label | call to Blob.init(bytes:) |
+| SQLite.swift:54:25:54:33 | [...] | semmle.label | [...] |
 | cryptoswift.swift:76:3:76:3 | this string is constant | semmle.label | this string is constant |
 | cryptoswift.swift:90:26:90:121 | [...] | semmle.label | [...] |
 | cryptoswift.swift:92:18:92:36 | call to getConstantString() | semmle.label | call to getConstantString() |
@@ -119,6 +122,7 @@ subpaths
 | SQLite.swift:45:23:45:23 | hardcoded_key | SQLite.swift:45:23:45:23 | hardcoded_key | SQLite.swift:45:23:45:23 | hardcoded_key | The key 'hardcoded_key' has been initialized with hard-coded values from $@. | SQLite.swift:45:23:45:23 | hardcoded_key | hardcoded_key |
 | SQLite.swift:47:15:47:15 | hardcoded_key | SQLite.swift:47:15:47:15 | hardcoded_key | SQLite.swift:47:15:47:15 | hardcoded_key | The key 'hardcoded_key' has been initialized with hard-coded values from $@. | SQLite.swift:47:15:47:15 | hardcoded_key | hardcoded_key |
 | SQLite.swift:49:79:49:79 | hardcoded_key | SQLite.swift:49:79:49:79 | hardcoded_key | SQLite.swift:49:79:49:79 | hardcoded_key | The key 'hardcoded_key' has been initialized with hard-coded values from $@. | SQLite.swift:49:79:49:79 | hardcoded_key | hardcoded_key |
+| SQLite.swift:54:13:54:34 | call to Blob.init(bytes:) | SQLite.swift:54:25:54:33 | [...] | SQLite.swift:54:13:54:34 | call to Blob.init(bytes:) | The key 'call to Blob.init(bytes:)' has been initialized with hard-coded values from $@. | SQLite.swift:54:25:54:33 | [...] | [...] |
 | cryptoswift.swift:108:21:108:21 | keyString | cryptoswift.swift:76:3:76:3 | this string is constant | cryptoswift.swift:108:21:108:21 | keyString | The key 'keyString' has been initialized with hard-coded values from $@. | cryptoswift.swift:76:3:76:3 | this string is constant | this string is constant |
 | cryptoswift.swift:109:21:109:21 | keyString | cryptoswift.swift:76:3:76:3 | this string is constant | cryptoswift.swift:109:21:109:21 | keyString | The key 'keyString' has been initialized with hard-coded values from $@. | cryptoswift.swift:76:3:76:3 | this string is constant | this string is constant |
 | cryptoswift.swift:117:22:117:22 | key | cryptoswift.swift:90:26:90:121 | [...] | cryptoswift.swift:117:22:117:22 | key | The key 'key' has been initialized with hard-coded values from $@. | cryptoswift.swift:90:26:90:121 | [...] | [...] |

Original file line number	Diff line number	Diff line change
`@@ -18,6 +18,8 @@ private class FilePathSummaries extends SummaryModelCsv {`
`18`	`18`	`";Expression;true;init(_:_:);;;Argument[1].CollectionElement;ReturnValue;taint",`
`19`	`19`	`";ExpressionType;true;init(_:);;;Argument[0];ReturnValue;taint",`
`20`	`20`	`";ExpressionType;true;replace(_:with:);;;Argument[1];ReturnValue;taint",`
	`21`	`+ ";Blob;true;init(bytes:);;;Argument[0];ReturnValue;taint",`
	`22`	`+ ";Blob;true;init(bytes:length:);;;Argument[0];ReturnValue;taint",`
`21`	`23`	`]`
`22`	`24`	`}`
`23`	`25`	`}`
Original file line number	Diff line number	Diff line change
`@@ -17,7 +17,7 @@ abstract class KeySource extends Expr { }`
`17`	`17`	`* A literal byte array is a key source.`
`18`	`18`	`*/`
`19`	`19`	`class ByteArrayLiteralSource extends KeySource {`
`20`		`- ByteArrayLiteralSource() { this = any(ArrayExpr arr \| arr.getType().getName() = "Array<UInt8>") }`
	`20`	`+ ByteArrayLiteralSource() { this = any(ArrayExpr arr \| arr.getType().getName() = ["Array<UInt8>", "[UInt8]"]) }`
`21`	`21`	`}`
`22`	`22`
`23`	`23`	`/**`