Sam Blackshear
678d0ff4e9
[quandary] don't double-report when applying summaries
...
Reviewed By: cristianoc
Differential Revision: D4103729
fbshipit-source-id: 4d51e41
8 years ago
Sam Blackshear
8f68f61ec9
[quandary] remove stripped logging sinks
...
Reviewed By: mburman
Differential Revision: D4088680
fbshipit-source-id: 606052d
8 years ago
Sam Blackshear
3ba67bac1a
[quandary] more privacy sources
...
Reviewed By: mburman
Differential Revision: D4081300
fbshipit-source-id: 08c3a3d
8 years ago
Sam Blackshear
319463b3bc
[quandary] propagating taint from unknown procedures and constructors
...
Summary:
Right now, taint gets lost if it flows into a constructor or procedure whose implementation is missing.
Since the core Java (e.g., String) and Android classes (e.g, Intent) are among these, this is bad.
We could handle this by writing a bunch of models instead, but that would be a lot of work (plus we may still miss cases).
Reviewed By: jvillard
Differential Revision: D4051591
fbshipit-source-id: 65851c8
8 years ago
Sam Blackshear
6fc1a7e20f
[quandary] reporting on array passed to sink when contents of array are tainted
...
Reviewed By: jeremydubreil
Differential Revision: D4022485
fbshipit-source-id: 87bc432
8 years ago
Sam Blackshear
08509fb2ab
[quandary] don't double-report flows
...
Summary:
Before, if I wrote code like
```
x = src()
sink(x)
sink(x)
```
we would report three times instead of two.
The first flow would be double-reported.
Reviewed By: jeremydubreil
Differential Revision: D4024678
fbshipit-source-id: fcd5b30
8 years ago
Sam Blackshear
512de69e13
[quandary] handle dynamic dispatch
...
Reviewed By: jeremydubreil
Differential Revision: D3997701
fbshipit-source-id: 085bc16
8 years ago
Sam Blackshear
715e521ead
[quandary] making summaries smaller
...
Reviewed By: jberdine
Differential Revision: D3981791
fbshipit-source-id: 8d4c839
8 years ago
Sam Blackshear
4a35862aa8
[quandary] dont add passthroughs from callee to caller
...
Summary:
We were previously leaking the passthroughs of the callee into the caller.
We definitely don't want to do this since it could make the summaries higher up in the call stack explode.
If we need to know the passthroughs of a callee, we can always read them from the callee's summary.
Reviewed By: jeremydubreil
Differential Revision: D3972679
fbshipit-source-id: 5b5903f
8 years ago
Sam Blackshear
5e2e7b88aa
[quandary] allow trace-specific rules for handling unknown code
...
Reviewed By: jeremydubreil
Differential Revision: D3962285
fbshipit-source-id: b14f3d2
8 years ago
Sam Blackshear
df8a4f6481
[quandary] tests for divergence
...
Reviewed By: dkgi
Differential Revision: D3871703
fbshipit-source-id: f11f21d
8 years ago
Sam Blackshear
fbfece20af
[quandary] using exceptional procCFG to explore exceptional control-flow
...
Reviewed By: dkgi
Differential Revision: D3871621
fbshipit-source-id: e76a274
8 years ago
Sam Blackshear
4b9899d6b2
[quandary] handling globals in function summaries
...
Reviewed By: jeremydubreil
Differential Revision: D3866616
fbshipit-source-id: 1b77bca
8 years ago
Sam Blackshear
b1039f51f8
[quandary] add summaries for footprint traces associated with locals
...
Differential Revision: D3883275
fbshipit-source-id: 651116e
8 years ago
Sam Blackshear
ae759ee21f
[quandary] fixing crashes when running on recursive code
...
Reviewed By: cristianoc
Differential Revision: D3888004
fbshipit-source-id: d432496
8 years ago
Sam Blackshear
31e6849ec0
[quandary] using summaries part 2: the relational cases
...
Differential Revision: D3861751
fbshipit-source-id: d7858e6
8 years ago
Sam Blackshear
e4beca3779
[quandary] using summaries part 1: return
...
Reviewed By: jeremydubreil
Differential Revision: D3857310
fbshipit-source-id: 29c5994
8 years ago
Sam Blackshear
cf8c957483
[quandary] use preanalysis for abstract GC
...
Reviewed By: jeremydubreil
Differential Revision: D3866919
fbshipit-source-id: 87fb380
8 years ago
Sam Blackshear
27cfb141da
richer sink specifications
...
Reviewed By: jeremydubreil
Differential Revision: D3831688
fbshipit-source-id: 199f1a5
8 years ago
Sam Blackshear
bcacd95176
tests for arrays
...
Reviewed By: jeremydubreil
Differential Revision: D3826552
fbshipit-source-id: 3b98b76
8 years ago
Josh Berdine
f3cdf87181
Sort test results by file then line
...
Summary:
For tests that have reports of the form `<file>:<line>*`, sort first by
file, then by line numerically.
Reviewed By: sblackshear
Differential Revision: D3828044
fbshipit-source-id: d10cffe
8 years ago
Sam Blackshear
1e4b4df427
fixing handling of aliasing for frontend tmp vars
...
Reviewed By: cristianoc
Differential Revision: D3824558
fbshipit-source-id: 624df00
8 years ago
Sam Blackshear
6ca990be8c
adding tests for manipulating fields
...
Reviewed By: cristianoc
Differential Revision: D3824276
fbshipit-source-id: c412f17
8 years ago
Sam Blackshear
f2487513c5
adding tests for basic var stuff, casts
...
Reviewed By: jberdine
Differential Revision: D3811191
fbshipit-source-id: 9d967f2
8 years ago
Sam Blackshear
3ff6622c9c
setup e2e test skeleton
...
Reviewed By: cristianoc
Differential Revision: D3806745
fbshipit-source-id: c73e5cb
8 years ago