Swift: Effect on other tests :)

geoffw0 · geoffw0 · commit 15b8aa197936 · 2023-02-10T14:16:48.000Z
diff --git a/swift/ql/test/query-tests/Security/CWE-311/CleartextStorageDatabase.expected b/swift/ql/test/query-tests/Security/CWE-311/CleartextStorageDatabase.expected
@@ -22,6 +22,12 @@ edges
 | testCoreData2.swift:52:41:52:41 | bankAccountNo :  | testCoreData2.swift:52:2:52:10 | [post] ...? [notStoredBankAccountNumber] :  |
 | testCoreData2.swift:57:3:57:3 | [post] obj [myBankAccountNumber] :  | testCoreData2.swift:57:3:57:3 | [post] obj |
 | testCoreData2.swift:57:29:57:29 | bankAccountNo :  | testCoreData2.swift:57:3:57:3 | [post] obj [myBankAccountNumber] :  |
+| testCoreData2.swift:60:4:60:4 | [post] obj [myBankAccountNumber] :  | testCoreData2.swift:60:4:60:4 | [post] obj |
+| testCoreData2.swift:60:30:60:30 | bankAccountNo :  | testCoreData2.swift:60:4:60:4 | [post] obj [myBankAccountNumber] :  |
+| testCoreData2.swift:62:4:62:4 | [post] obj [myBankAccountNumber] :  | testCoreData2.swift:62:4:62:4 | [post] obj |
+| testCoreData2.swift:62:30:62:30 | bankAccountNo :  | testCoreData2.swift:62:4:62:4 | [post] obj [myBankAccountNumber] :  |
+| testCoreData2.swift:65:3:65:3 | [post] obj [myBankAccountNumber] :  | testCoreData2.swift:65:3:65:3 | [post] obj |
+| testCoreData2.swift:65:29:65:29 | bankAccountNo :  | testCoreData2.swift:65:3:65:3 | [post] obj [myBankAccountNumber] :  |
 | testCoreData.swift:18:19:18:26 | value :  | testCoreData.swift:19:12:19:12 | value |
 | testCoreData.swift:31:3:31:3 | newValue :  | testCoreData.swift:32:13:32:13 | newValue |
 | testCoreData.swift:61:25:61:25 | password :  | testCoreData.swift:18:19:18:26 | value :  |
@@ -130,6 +136,15 @@ nodes
 | testCoreData2.swift:57:3:57:3 | [post] obj | semmle.label | [post] obj |
 | testCoreData2.swift:57:3:57:3 | [post] obj [myBankAccountNumber] :  | semmle.label | [post] obj [myBankAccountNumber] :  |
 | testCoreData2.swift:57:29:57:29 | bankAccountNo :  | semmle.label | bankAccountNo :  |
+| testCoreData2.swift:60:4:60:4 | [post] obj | semmle.label | [post] obj |
+| testCoreData2.swift:60:4:60:4 | [post] obj [myBankAccountNumber] :  | semmle.label | [post] obj [myBankAccountNumber] :  |
+| testCoreData2.swift:60:30:60:30 | bankAccountNo :  | semmle.label | bankAccountNo :  |
+| testCoreData2.swift:62:4:62:4 | [post] obj | semmle.label | [post] obj |
+| testCoreData2.swift:62:4:62:4 | [post] obj [myBankAccountNumber] :  | semmle.label | [post] obj [myBankAccountNumber] :  |
+| testCoreData2.swift:62:30:62:30 | bankAccountNo :  | semmle.label | bankAccountNo :  |
+| testCoreData2.swift:65:3:65:3 | [post] obj | semmle.label | [post] obj |
+| testCoreData2.swift:65:3:65:3 | [post] obj [myBankAccountNumber] :  | semmle.label | [post] obj [myBankAccountNumber] :  |
+| testCoreData2.swift:65:29:65:29 | bankAccountNo :  | semmle.label | bankAccountNo :  |
 | testCoreData.swift:18:19:18:26 | value :  | semmle.label | value :  |
 | testCoreData.swift:19:12:19:12 | value | semmle.label | value |
 | testCoreData.swift:31:3:31:3 | newValue :  | semmle.label | newValue :  |
@@ -284,6 +299,9 @@ subpaths
 | testCoreData2.swift:50:2:50:10 | ...? | testCoreData2.swift:50:35:50:35 | bankAccountNo :  | testCoreData2.swift:50:2:50:10 | [post] ...? | This operation stores '[post] ...?' in a database. It may contain unencrypted sensitive data from $@. | testCoreData2.swift:50:35:50:35 | bankAccountNo :  | bankAccountNo |
 | testCoreData2.swift:52:2:52:10 | ...? | testCoreData2.swift:52:41:52:41 | bankAccountNo :  | testCoreData2.swift:52:2:52:10 | [post] ...? | This operation stores '[post] ...?' in a database. It may contain unencrypted sensitive data from $@. | testCoreData2.swift:52:41:52:41 | bankAccountNo :  | bankAccountNo |
 | testCoreData2.swift:57:3:57:3 | obj | testCoreData2.swift:57:29:57:29 | bankAccountNo :  | testCoreData2.swift:57:3:57:3 | [post] obj | This operation stores '[post] obj' in a database. It may contain unencrypted sensitive data from $@. | testCoreData2.swift:57:29:57:29 | bankAccountNo :  | bankAccountNo |
+| testCoreData2.swift:60:4:60:4 | obj | testCoreData2.swift:60:30:60:30 | bankAccountNo :  | testCoreData2.swift:60:4:60:4 | [post] obj | This operation stores '[post] obj' in a database. It may contain unencrypted sensitive data from $@. | testCoreData2.swift:60:30:60:30 | bankAccountNo :  | bankAccountNo |
+| testCoreData2.swift:62:4:62:4 | obj | testCoreData2.swift:62:30:62:30 | bankAccountNo :  | testCoreData2.swift:62:4:62:4 | [post] obj | This operation stores '[post] obj' in a database. It may contain unencrypted sensitive data from $@. | testCoreData2.swift:62:30:62:30 | bankAccountNo :  | bankAccountNo |
+| testCoreData2.swift:65:3:65:3 | obj | testCoreData2.swift:65:29:65:29 | bankAccountNo :  | testCoreData2.swift:65:3:65:3 | [post] obj | This operation stores '[post] obj' in a database. It may contain unencrypted sensitive data from $@. | testCoreData2.swift:65:29:65:29 | bankAccountNo :  | bankAccountNo |
 | testCoreData.swift:19:12:19:12 | value | testCoreData.swift:61:25:61:25 | password :  | testCoreData.swift:19:12:19:12 | value | This operation stores 'value' in a database. It may contain unencrypted sensitive data from $@. | testCoreData.swift:61:25:61:25 | password :  | password |
 | testCoreData.swift:32:13:32:13 | newValue | testCoreData.swift:64:16:64:16 | password :  | testCoreData.swift:32:13:32:13 | newValue | This operation stores 'newValue' in a database. It may contain unencrypted sensitive data from $@. | testCoreData.swift:64:16:64:16 | password :  | password |
 | testCoreData.swift:48:15:48:15 | password | testCoreData.swift:48:15:48:15 | password | testCoreData.swift:48:15:48:15 | password | This operation stores 'password' in a database. It may contain unencrypted sensitive data from $@. | testCoreData.swift:48:15:48:15 | password | password |
diff --git a/swift/ql/test/query-tests/Security/CWE-311/testCoreData2.swift b/swift/ql/test/query-tests/Security/CWE-311/testCoreData2.swift
@@ -57,11 +57,11 @@ class testCoreData2_2 {
 		obj.myBankAccountNumber = bankAccountNo // BAD
 
 		if #available(iOS 10.0, *) {
-			obj.myBankAccountNumber = bankAccountNo // BAD [NOT DETECTED]
+			obj.myBankAccountNumber = bankAccountNo // BAD
 		} else {
-			obj.myBankAccountNumber = bankAccountNo // BAD [NOT DETECTED]
+			obj.myBankAccountNumber = bankAccountNo // BAD
 		}
 
-		obj.myBankAccountNumber = bankAccountNo // BAD [NOT DETECTED]
+		obj.myBankAccountNumber = bankAccountNo // BAD
 	}
 }

Original file line number	Diff line number	Diff line change
`@@ -57,11 +57,11 @@ class testCoreData2_2 {`
`57`	`57`	`obj.myBankAccountNumber = bankAccountNo // BAD`
`58`	`58`
`59`	`59`	`if #available(iOS 10.0, *) {`
`60`		`- obj.myBankAccountNumber = bankAccountNo // BAD [NOT DETECTED]`
	`60`	`+ obj.myBankAccountNumber = bankAccountNo // BAD`
`61`	`61`	`} else {`
`62`		`- obj.myBankAccountNumber = bankAccountNo // BAD [NOT DETECTED]`
	`62`	`+ obj.myBankAccountNumber = bankAccountNo // BAD`
`63`	`63`	`}`
`64`	`64`
`65`		`- obj.myBankAccountNumber = bankAccountNo // BAD [NOT DETECTED]`
	`65`	`+ obj.myBankAccountNumber = bankAccountNo // BAD`
`66`	`66`	`}`
`67`	`67`	`}`