minor fixes

dilanbhalla · dilanbhalla · commit 48e540fa9a15 · 2020-07-13T01:25:42.000-07:00
diff --git a/cpp/ql/src/experimental/Security/CWE/CWE-359/PrivateCleartextWrite.ql b/cpp/ql/src/experimental/Security/CWE/CWE-359/PrivateCleartextWrite.ql
@@ -4,13 +4,11 @@
  *              unauthorized persons.
  * @kind path-problem
  * @problem.severity error
- * @precision high
- * @id cpp/exposure-of-sensitive-information
+ * @id cpp/private-cleartext-write
  * @tags security
  *       external/cwe/cwe-359
  */
 
-
 import cpp
 import experimental.semmle.code.cpp.security.PrivateCleartextWrite
 import experimental.semmle.code.cpp.security.PrivateCleartextWrite::PrivateCleartextWrite
diff --git a/cpp/ql/src/experimental/semmle/code/cpp/security/ExternalLocationSink.qll b/cpp/ql/src/experimental/semmle/code/cpp/security/ExternalLocationSink.qll
diff --git a/cpp/ql/src/experimental/semmle/code/cpp/security/PrivateCleartextWrite.qll b/cpp/ql/src/experimental/semmle/code/cpp/security/PrivateCleartextWrite.qll
@@ -6,8 +6,8 @@ import cpp
 import semmle.code.cpp.dataflow.TaintTracking
 import experimental.semmle.code.cpp.security.PrivateData
 import semmle.code.cpp.security.FileWrite
+import semmle.code.cpp.security.BufferWrite
 import semmle.code.cpp.dataflow.TaintTracking
-import experimental.semmle.code.cpp.security.ExternalLocationSink
 
 module PrivateCleartextWrite {
   /**
@@ -60,7 +60,4 @@ module PrivateCleartextWrite {
       )
     }
   }
-  // class ExternalLocation extends Sink {
-  //   ExternalLocation() { this instanceof ExternalLocationSink }
-  // }
 }
diff --git a/cpp/ql/src/experimental/semmle/code/cpp/security/PrivateData.qll b/cpp/ql/src/experimental/semmle/code/cpp/security/PrivateData.qll
@@ -19,7 +19,7 @@ private string privateNames() {
   // Contact information, such as home addresses and telephone numbers
   result = "%postcode%" or
   result = "%zipcode%" or
-  result = "%telephone%" or
+  // result = "%telephone%" or
   // Geographic location - where the user is (or was)
   result = "%latitude%" or
   result = "%longitude%" or
@@ -28,8 +28,8 @@ private string privateNames() {
   result = "%salary%" or
   result = "%bankaccount%" or
   // Communications - e-mail addresses, private e-mail messages, SMS text messages, chat logs, etc.
-  result = "%email%" or
-  result = "%mobile%" or
+  // result = "%email%" or
+  // result = "%mobile%" or
   result = "%employer%" or
   // Health - medical conditions, insurance status, prescription records
   result = "%medical%"
diff --git a/cpp/ql/test/experimental/query-tests/Security/CWE/CWE-359/semmle/tests/PrivateCleartextWrite.expected b/cpp/ql/test/experimental/query-tests/Security/CWE/CWE-359/semmle/tests/PrivateCleartextWrite.expected
@@ -1,6 +1,6 @@
-| test.cpp:50:9:50:16 | theEmail | This write may contain unencrypted data |
+| test.cpp:50:9:50:18 | theZipcode | This write may contain unencrypted data |
 | test.cpp:66:24:66:30 | medical | This write may contain unencrypted data |
 | test.cpp:70:24:70:27 | temp | This write may contain unencrypted data |
 | test.cpp:74:24:74:28 | buff5 | This write may contain unencrypted data |
-| test.cpp:87:35:87:42 | theEmail | This write may contain unencrypted data |
-| test.cpp:90:40:90:47 | theEmail | This write may contain unencrypted data |
+| test.cpp:87:37:87:46 | theZipcode | This write may contain unencrypted data |
+| test.cpp:90:42:90:51 | theZipcode | This write may contain unencrypted data |
diff --git a/cpp/ql/test/experimental/query-tests/Security/CWE/CWE-359/semmle/tests/test.cpp b/cpp/ql/test/experimental/query-tests/Security/CWE/CWE-359/semmle/tests/test.cpp
@@ -43,14 +43,14 @@ char *func(char *buffer) {
 
 // test for CleartextFileWrite
 void file() {
-  char *theEmail = "cleartext email!";
+  char *theZipcode = "cleartext zipcode!";
   FILE *file;
 
-  // BAD: write email to file in cleartext
-  fputs(theEmail, file);
+  // BAD: write zipcode to file in cleartext
+  fputs(theZipcode, file);
 
   // GOOD: encrypt first
-  char *encrypted = encrypt(theEmail);
+  char *encrypted = encrypt(theZipcode);
   fwrite(encrypted, sizeof(encrypted), 1, file);
 }
 
@@ -80,17 +80,17 @@ int main(int argc, char** argv) {
 
 // test for CleartextFileWrite
 void stream() {
-  char *theEmail = "cleartext email!";
+  char *theZipcode = "cleartext zipcode!";
   ofstream mystream;
 
-  // BAD: write email to file in cleartext
-  mystream << "the email is: " << theEmail;
+  // BAD: write zipcode to file in cleartext
+  mystream << "the zipcode is: " << theZipcode;
 
-  // BAD: write email to file in cleartext
-  (mystream << "the email is: ").write(theEmail, strlen(theEmail));
+  // BAD: write zipcode to file in cleartext
+  (mystream << "the zipcode is: ").write(theZipcode, strlen(theZipcode));
 
   // GOOD: encrypt first
-  char *encrypted = encrypt(theEmail);
-  mystream << "the email is: " << encrypted;
-  (mystream << "the email is: ").write(encrypted, strlen(encrypted));
+  char *encrypted = encrypt(theZipcode);
+  mystream << "the zipcode is: " << encrypted;
+  (mystream << "the zipcode is: ").write(encrypted, strlen(encrypted));
 }

Original file line number	Diff line number	Diff line change
`@@ -6,8 +6,8 @@ import cpp`
`6`	`6`	`import semmle.code.cpp.dataflow.TaintTracking`
`7`	`7`	`import experimental.semmle.code.cpp.security.PrivateData`
`8`	`8`	`import semmle.code.cpp.security.FileWrite`
	`9`	`+import semmle.code.cpp.security.BufferWrite`
`9`	`10`	`import semmle.code.cpp.dataflow.TaintTracking`
`10`		`-import experimental.semmle.code.cpp.security.ExternalLocationSink`
`11`	`11`
`12`	`12`	`module PrivateCleartextWrite {`
`13`	`13`	`/**`
`@@ -60,7 +60,4 @@ module PrivateCleartextWrite {`
`60`	`60`	`)`
`61`	`61`	`}`
`62`	`62`	`}`
`63`		`- // class ExternalLocation extends Sink {`
`64`		`- // ExternalLocation() { this instanceof ExternalLocationSink }`
`65`		`- // }`
`66`	`63`	`}`