Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Improved taint analysis (several bugs fixed, refactoring) #91

Merged
merged 10 commits into from
Sep 15, 2015
Merged

Improved taint analysis (several bugs fixed, refactoring) #91

merged 10 commits into from
Sep 15, 2015

Conversation

formanek
Copy link
Contributor

Analysis no longer relies on direct modifications of Taint instances in TaintFrame and the code is refactored to be more robust and clear. This pull request should fix issues #80, #82, #83, #84, #85 and #90.

There is a change in constructor summaries - now there are two mutable stack indices, since new instances are duplicated before calling a constructor.

@formanek
Not relying on modifications of taint objects, more robust code with …
9717c66 
…defensive copies and assertions, bug fixes
@formanek
No taint instances should be identical from now
8460af4
@formanek
Non-parametric taint is just state type now, new state INVALID, metho…
40c0272 
…d names (and fields) in Taint class simplified
@formanek
Last direct Taint instance changes removed, different mechanism for s…
37e85fa 
…etting variable indeces and parameter attributes
@formanek
Proper equals and hashCode methods for Taint improves analysis
f45d44b
@formanek
Unknown methods made to taint parametric taints too
65f6e8a
@formanek
Support for Arrays.asList, cleanup
8c22fa5
@formanek
Fixed BigDecimal as a safe type, added immutable types
da3c438
@formanek
Correct initial set size for immutable types
5af1123
@formanek
Merge origin/master, CommandInjectionSource and test uncommented (and…
e0ecb1c 
… passed)

Conflicts:
	plugin/src/main/java/com/h3xstream/findsecbugs/taintanalysis/Taint.java
	plugin/src/main/java/com/h3xstream/findsecbugs/taintanalysis/TaintMethodSummary.java
	plugin/src/main/resources/taint-config/methods-summaries.txt
@formanek
Copy link
Contributor Author

Merging should be easy since I have merged your changes

@h3xstream h3xstream merged commit e0ecb1c into find-sec-bugs:master Sep 15, 2015
h3xstream added a commit that referenced this pull request Sep 15, 2015
@h3xstream
Merge branch 'master' of https://github.com/formanek/find-sec-bugs
96b7f03 
Created for the pull request #91

Conflicts:
	plugin/src/main/java/com/h3xstream/findsecbugs/injection/command/CommandInjectionSource.java
	plugin/src/main/java/com/h3xstream/findsecbugs/taintanalysis/Taint.java
	plugin/src/main/resources/taint-config/methods-summaries.txt
	plugin/src/test/java/com/h3xstream/findsecbugs/injection/command/CommandInjectionDetectorAdvancedTest.java
@h3xstream
Copy link
Member

All changes were integrated.

I have added a test case for a miss LDAP injection a830a3d

@h3xstream h3xstream added the enhancement New feature or improvement to existing detector. label Sep 15, 2015
@h3xstream h3xstream added this to the version-1.4.3 milestone Sep 15, 2015
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
enhancement New feature or improvement to existing detector.
Projects
None yet
Milestone
version-1.4.3
Development

Successfully merging this pull request may close these issues.
2 participants
@formanek @h3xstream