Add explicitly safe test cases

atorralba · atorralba · commit fe138dc0a176 · 2022-11-03T12:01:42.000+01:00
diff --git a/swift/ql/test/query-tests/Security/CWE-611/testXXE.swift b/swift/ql/test/query-tests/Security/CWE-611/testXXE.swift
@@ -50,9 +50,25 @@ func testDataSafe() {
     let _ = XMLParser(data: remoteData) // NO XXE: parser doesn't enable external entities
 }
 
+func testDataSafeExplicit() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    let parser = XMLParser(data: remoteData) // NO XXE: parser disables external entities
+    parser.shouldResolveExternalEntities = false
+
+}
+
 func testInputStreamSafe() {
     let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
     let remoteData = Data(remoteString)
     let remoteStream = InputStream(data: remoteData)
     let _ = XMLParser(stream: remoteStream) // NO XXE: parser doesn't enable external entities
+}
+
+func testInputStreamSafeExplicit() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    let remoteStream = InputStream(data: remoteData)
+    let parser = XMLParser(stream: remoteStream) // NO XXE: parser disables external entities
+    parser.shouldResolveExternalEntities = false
 }
