Skip to content

Commit 3d270bb

Browse files
smowtonsmowton
committed
Drop models for stringifying functions
Per default stringification isn't taint-propagating in Java
1 parent 0441098 commit 3d270bb

File tree

2 files changed

+0
-87
lines changed

2 files changed

+0
-87
lines changed

java/ql/src/semmle/code/java/frameworks/spring/SpringUtil.qll

Lines changed: 0 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -75,9 +75,6 @@ private class FlowSummaries extends SummaryModelCsv {
7575
"org.springframework.util;MultiValueMapAdapter;false;MultiValueMapAdapter;;;Element of MapValue of Argument[0];Element of MapValue of Argument[-1];value",
7676
"org.springframework.util;ObjectUtils;false;addObjectToArray;;;ArrayElement of Argument[0];ArrayElement of ReturnValue;value",
7777
"org.springframework.util;ObjectUtils;false;addObjectToArray;;;Argument[1];ArrayElement of ReturnValue;value",
78-
"org.springframework.util;ObjectUtils;false;getDisplayString;;;Argument[0];ReturnValue;taint",
79-
"org.springframework.util;ObjectUtils;false;identityToString;;;Argument[0];ReturnValue;taint",
80-
"org.springframework.util;ObjectUtils;false;nullSafeToString;;;Argument[0];ReturnValue;taint",
8178
"org.springframework.util;ObjectUtils;false;toObjectArray;;;ArrayElement of Argument[0];ArrayElement of ReturnValue;value",
8279
"org.springframework.util;ObjectUtils;false;unwrapOptional;;;Element of Argument[0];ReturnValue;value",
8380
"org.springframework.util;PropertiesPersister;true;load;;;Argument[1];Argument[0];taint",

java/ql/test/library-tests/frameworks/spring/util/Test.java

Lines changed: 0 additions & 84 deletions
Original file line numberDiff line numberDiff line change
@@ -720,90 +720,6 @@ public void test() throws Exception {
720720
out = new MultiValueMapAdapter(in);
721721
sink(getMapKey(out)); // $hasValueFlow
722722
}
723-
{
724-
// "org.springframework.util;ObjectUtils;false;getDisplayString;;;Argument[0];ReturnValue;taint"
725-
String out = null;
726-
Object in = (Object)source();
727-
out = ObjectUtils.getDisplayString(in);
728-
sink(out); // $hasTaintFlow
729-
}
730-
{
731-
// "org.springframework.util;ObjectUtils;false;identityToString;;;Argument[0];ReturnValue;taint"
732-
String out = null;
733-
Object in = (Object)source();
734-
out = ObjectUtils.identityToString(in);
735-
sink(out); // $hasTaintFlow
736-
}
737-
{
738-
// "org.springframework.util;ObjectUtils;false;nullSafeToString;;;Argument[0];ReturnValue;taint"
739-
String out = null;
740-
short[] in = (short[])source();
741-
out = ObjectUtils.nullSafeToString(in);
742-
sink(out); // $hasTaintFlow
743-
}
744-
{
745-
// "org.springframework.util;ObjectUtils;false;nullSafeToString;;;Argument[0];ReturnValue;taint"
746-
String out = null;
747-
long[] in = (long[])source();
748-
out = ObjectUtils.nullSafeToString(in);
749-
sink(out); // $hasTaintFlow
750-
}
751-
{
752-
// "org.springframework.util;ObjectUtils;false;nullSafeToString;;;Argument[0];ReturnValue;taint"
753-
String out = null;
754-
int[] in = (int[])source();
755-
out = ObjectUtils.nullSafeToString(in);
756-
sink(out); // $hasTaintFlow
757-
}
758-
{
759-
// "org.springframework.util;ObjectUtils;false;nullSafeToString;;;Argument[0];ReturnValue;taint"
760-
String out = null;
761-
float[] in = (float[])source();
762-
out = ObjectUtils.nullSafeToString(in);
763-
sink(out); // $hasTaintFlow
764-
}
765-
{
766-
// "org.springframework.util;ObjectUtils;false;nullSafeToString;;;Argument[0];ReturnValue;taint"
767-
String out = null;
768-
double[] in = (double[])source();
769-
out = ObjectUtils.nullSafeToString(in);
770-
sink(out); // $hasTaintFlow
771-
}
772-
{
773-
// "org.springframework.util;ObjectUtils;false;nullSafeToString;;;Argument[0];ReturnValue;taint"
774-
String out = null;
775-
char[] in = (char[])source();
776-
out = ObjectUtils.nullSafeToString(in);
777-
sink(out); // $hasTaintFlow
778-
}
779-
{
780-
// "org.springframework.util;ObjectUtils;false;nullSafeToString;;;Argument[0];ReturnValue;taint"
781-
String out = null;
782-
byte[] in = (byte[])source();
783-
out = ObjectUtils.nullSafeToString(in);
784-
sink(out); // $hasTaintFlow
785-
}
786-
{
787-
// "org.springframework.util;ObjectUtils;false;nullSafeToString;;;Argument[0];ReturnValue;taint"
788-
String out = null;
789-
boolean[] in = (boolean[])source();
790-
out = ObjectUtils.nullSafeToString(in);
791-
sink(out); // $hasTaintFlow
792-
}
793-
{
794-
// "org.springframework.util;ObjectUtils;false;nullSafeToString;;;Argument[0];ReturnValue;taint"
795-
String out = null;
796-
Object[] in = (Object[])source();
797-
out = ObjectUtils.nullSafeToString(in);
798-
sink(out); // $hasTaintFlow
799-
}
800-
{
801-
// "org.springframework.util;ObjectUtils;false;nullSafeToString;;;Argument[0];ReturnValue;taint"
802-
String out = null;
803-
Object in = (Object)source();
804-
out = ObjectUtils.nullSafeToString(in);
805-
sink(out); // $hasTaintFlow
806-
}
807723
{
808724
// "org.springframework.util;ObjectUtils;false;toObjectArray;;;ArrayElement of Argument[0];ArrayElement of ReturnValue;value"
809725
Object[] out = null;

0 commit comments

Comments
 (0)