infer_clone

Commit Graph

Author	SHA1	Message	Date
Sam Blackshear	3b56b93ae5	[quandary] apply summary for sinks Summary: A function can both be a sink and propagate source info, but we currently ignore the summary for any function that is also a sink. This will cause us to under-report for (e.g.) `src1 = source(); src2 = strcpy(dest, src1); exec(src2)`. This is both a potential buffer overflow and a potential shell injection, but we won't report the second issue. Reviewed By: jberdine Differential Revision: D5676167 fbshipit-source-id: 232ab2f	7 years ago
Sam Blackshear	3024d9aed2	[quandary] more IPC sources Summary: Adding `Service` and `BroadcastReceiver` endpoints. Reviewed By: helios175 Differential Revision: D4915329 fbshipit-source-id: efbec38	8 years ago
Sam Blackshear	52dbd129cd	[quandary] don't complain about transferring extras between intents Reviewed By: AmarBhosale Differential Revision: D4806571 fbshipit-source-id: cf138e9	8 years ago
Sam Blackshear	c255823673	[quandary] clean up `Intent` sinks Reviewed By: jeremydubreil Differential Revision: D4782315 fbshipit-source-id: 50c5b4d	8 years ago
Sam Blackshear	919b35f50a	[quandary] better taint propagation for Intent's Reviewed By: mburman Differential Revision: D4491864 fbshipit-source-id: 059b204	8 years ago
Sam Blackshear	e5ef592f11	[quandary] add a few missing Intent sinks Reviewed By: mburman Differential Revision: D4399440 fbshipit-source-id: 54fba49	8 years ago
Sam Blackshear	ee2d0c9226	[quandary] add Intent's passed to onActivityResult/onNewIntent as sources Reviewed By: mburman Differential Revision: D4399245 fbshipit-source-id: f196e4c	8 years ago
Sam Blackshear	2a4b29fedb	[quandary] Warn on reusing result returned from getIntent Reviewed By: mburman Differential Revision: D4388824 fbshipit-source-id: ebb13cc	8 years ago
Sam Blackshear	d86f777132	[quandary] considering methods of subclasses of Activity, SharedPreferences etc. as sources/sinks too Reviewed By: mburman Differential Revision: D4388426 fbshipit-source-id: 50ec829	8 years ago
Sam Blackshear	1403e9c898	[quandary][java] Intent.parseIntent/Intent.parseUri should propagate taint, not create it Reviewed By: dkgi Differential Revision: D4377669 fbshipit-source-id: 393e4f5	8 years ago
Sam Blackshear	901786e0c5	[quandary] detect intents configured with external values Reviewed By: mburman Differential Revision: D4285186 fbshipit-source-id: 12a3e4c	8 years ago
Sam Blackshear	d7ae77c7c2	[quandary] make intent/logging private data tests intraprocedural Summary: Needed to support upcoming diff(s) that change the nature of sources/sinks in a trace. Today they are the original source/sink, but in the future they will be the transitive source/sink (last procedure to return a source/call a sink). This new convention will make the `returnAllSources`/`callAllSinks` form of these tests not so useful, since `returnAllSources`/`callAllSinks` will now show up as a single source/sink in the trace (at least without expanding the trace). By making these tests intraprocedural, we can make sure that we're still testing everything that we want to. Reviewed By: cristianoc Differential Revision: D4103754 fbshipit-source-id: 1733ecf	8 years ago
Sam Blackshear	af9f34bb60	[quandary] checking for flows from Intents parsed via Uris -> startActivity (and similar) Reviewed By: mburman Differential Revision: D3905877 fbshipit-source-id: 03fe2f6	8 years ago

13 Commits (c2c1679a5f10ffd9be902c35c73613b7d5964bea)