pghs975uc
/
infer_clone
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '101574e9d0'
${ noResults }
infer_clone/infer/tests/codetoanalyze/java/quandary/Exceptions.java

132 lines
3.1 KiB
Raw Normal View History Unescape

[quandary] using exceptional procCFG to explore exceptional control-flow Reviewed By: dkgi Differential Revision: D3871621 fbshipit-source-id: e76a274
8 years ago
/*
Change license to MIT Summary: Change the license of the source code from BSD + PATENTS to MIT. Change `checkCopyright` to reflect the new license and learn some new file types. Generated with: ``` git grep BSD | xargs -n 1 ./scripts/checkCopyright -i ``` Reviewed By: jeremydubreil, mbouaziz, jberdine Differential Revision: D8071249 fbshipit-source-id: 97ca23a
7 years ago
* Copyright (c) 2016-present, Facebook, Inc.
[quandary] using exceptional procCFG to explore exceptional control-flow Reviewed By: dkgi Differential Revision: D3871621 fbshipit-source-id: e76a274
8 years ago
*
Change license to MIT Summary: Change the license of the source code from BSD + PATENTS to MIT. Change `checkCopyright` to reflect the new license and learn some new file types. Generated with: ``` git grep BSD | xargs -n 1 ./scripts/checkCopyright -i ``` Reviewed By: jeremydubreil, mbouaziz, jberdine Differential Revision: D8071249 fbshipit-source-id: 97ca23a
7 years ago
* This source code is licensed under the MIT license found in the
* LICENSE file in the root directory of this source tree.
[quandary] using exceptional procCFG to explore exceptional control-flow Reviewed By: dkgi Differential Revision: D3871621 fbshipit-source-id: e76a274
8 years ago
*/
package codetoanalyze.java.quandary;
[infer][java] Separate the builtins from the other models for a better modularity Summary: The Infer builtins can be used in the e2e tests, but those tests should not depend on the Infer models to avoid cyclic dependencies. This diff separates the models and the Infer builtins in two directories so that the test can depend on the builtins without depending on the models Reviewed By: sblackshear Differential Revision: D3929478 fbshipit-source-id: 7d0ab79
8 years ago
import com.facebook.infer.builtins.InferTaint;
[quandary] using exceptional procCFG to explore exceptional control-flow Reviewed By: dkgi Differential Revision: D3871621 fbshipit-source-id: e76a274
8 years ago
class Exceptions {
native static void mayExcept() throws Exception;
public static void sinkInCatchBad1() {
Object source = InferTaint.inferSecretSource();
try {
mayExcept();
} catch (Exception e) {
InferTaint.inferSensitiveSink(source);
}
}
public static void sinkInCatchBad2() {
Object source = null;
try {
source = InferTaint.inferSecretSource();
mayExcept();
} catch (Exception e) {
InferTaint.inferSensitiveSink(source);
}
}
public static void sinkAfterCatchBad() {
Object source = InferTaint.inferSecretSource();
try {
mayExcept();
source = null;
} catch (Exception e) {
}
InferTaint.inferSensitiveSink(source);
}
public static void sinkAfterCatchOk() {
Object source = InferTaint.inferSecretSource();
try {
mayExcept();
source = null;
} catch (Exception e) {
source = null;
}
InferTaint.inferSensitiveSink(source);
}
public static void sinkInFinallyBad1() throws Exception{
Object source = InferTaint.inferSecretSource();
try {
mayExcept();
} finally {
InferTaint.inferSensitiveSink(source);
}
}
public static void sinkInFinallyBad2() throws Exception {
Object source = null;
try {
mayExcept();
source = InferTaint.inferSecretSource();
} finally {
InferTaint.inferSensitiveSink(source);
}
}
public static void sinkInFinallyBad3() {
Object source = null;
try {
mayExcept();
} catch (Exception e) {
source = InferTaint.inferSecretSource();
} finally {
InferTaint.inferSensitiveSink(source);
}
}
public static void sinkAfterFinallyOk1() throws Exception {
Object source = InferTaint.inferSecretSource();
try {
mayExcept();
} finally {
source = null;
}
InferTaint.inferSensitiveSink(source);
}
public static void sinkAfterFinallyOk2() {
Object source = null;
try {
mayExcept();
source = InferTaint.inferSecretSource();
} catch (Exception e) {
source = InferTaint.inferSecretSource();
} finally {
source = null;
}
InferTaint.inferSensitiveSink(source);
}
public static void callSinkThenThrow(Object param) throws Exception {
InferTaint.inferSensitiveSink(param);
throw new Exception();
}
public static void callSinkThenThrowBad() throws Exception {
callSinkThenThrow(InferTaint.inferSecretSource());
}
[quandary] fix crash from returning exceptions that read from the environment Summary: See code comment about `throw exn` being translated as `return exn`. This problem was revealed by D4081279, which started grabbing access paths from exceptions. Reviewed By: jvillard Differential Revision: D4096391 fbshipit-source-id: 9d91513
8 years ago
public static void doThrow(Object param) throws RuntimeException {
throw new RuntimeException(param.toString());
}
// false negative; need to track flow into and out of exceptions to get this (t14159157)
public static void FN_callSink() {
try {
doThrow(InferTaint.inferSecretSource());
} catch (RuntimeException e) {
InferTaint.inferSensitiveSink(e);
}
}
[quandary] using exceptional procCFG to explore exceptional control-flow Reviewed By: dkgi Differential Revision: D3871621 fbshipit-source-id: e76a274
8 years ago
}