Skip to content

Commit c7ef8a5

Browse files
nicolaswillnicolaswill
authored
Merge pull request #20605 from bdrodes/santander-java-crypto-check
Crypto: Add Java Cryptographic Analysis Queries
2 parents c84cec9 + bdad95d commit c7ef8a5

File tree

68 files changed

+2654
-555
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

68 files changed

+2654
-555
lines changed

cpp/ql/lib/experimental/quantum/OpenSSL/AlgorithmInstances/EllipticCurveAlgorithmInstance.qll

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -40,7 +40,7 @@ class KnownOpenSslEllipticCurveConstantAlgorithmInstance extends OpenSslAlgorith
4040
result = this.(Call).getTarget().getName()
4141
}
4242

43-
override Crypto::EllipticCurveFamilyType getEllipticCurveFamilyType() {
43+
override Crypto::EllipticCurveType getEllipticCurveType() {
4444
if
4545
Crypto::ellipticCurveNameToKnownKeySizeAndFamilyMapping(this.getParsedEllipticCurveName(), _,
4646
_)

cpp/ql/lib/experimental/quantum/OpenSSL/AlgorithmInstances/HashAlgorithmInstance.qll

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -72,7 +72,7 @@ class KnownOpenSslHashConstantAlgorithmInstance extends OpenSslAlgorithmInstance
7272

7373
override OpenSslAlgorithmValueConsumer getAvc() { result = getterCall }
7474

75-
override Crypto::THashType getHashFamily() {
75+
override Crypto::THashType getHashType() {
7676
knownOpenSslConstantToHashFamilyType(this, result)
7777
or
7878
not knownOpenSslConstantToHashFamilyType(this, _) and result = Crypto::OtherHashType()

java/ql/integration-tests/java/query-suite/not_included_in_qls.expected

Lines changed: 14 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -228,14 +228,24 @@ ql/java/ql/src/experimental/Security/CWE/CWE-665/InsecureRmiJmxEnvironmentConfig
228228
ql/java/ql/src/experimental/Security/CWE/CWE-755/NFEAndroidDoS.ql
229229
ql/java/ql/src/experimental/Security/CWE/CWE-759/HashWithoutSalt.ql
230230
ql/java/ql/src/experimental/Security/CWE/CWE-939/IncorrectURLVerification.ql
231-
ql/java/ql/src/experimental/quantum/Analysis/InsecureNonceSource.ql
232-
ql/java/ql/src/experimental/quantum/Analysis/KnownWeakKDFIterationCount.ql
233-
ql/java/ql/src/experimental/quantum/Analysis/ReusedNonce.ql
234-
ql/java/ql/src/experimental/quantum/Analysis/UnknownKDFIterationCount.ql
231+
ql/java/ql/src/experimental/quantum/Examples/BadMacOrderDecryptToMac.ql
232+
ql/java/ql/src/experimental/quantum/Examples/BadMacOrderMacOnEncryptPlaintext.ql
235233
ql/java/ql/src/experimental/quantum/Examples/BrokenCrypto.ql
234+
ql/java/ql/src/experimental/quantum/Examples/InsecureIVorNonceSource.ql
235+
ql/java/ql/src/experimental/quantum/Examples/NonAESGCMCipher.ql
236+
ql/java/ql/src/experimental/quantum/Examples/ReusedNonce.ql
236237
ql/java/ql/src/experimental/quantum/Examples/TestAESGCMNonce.ql
237238
ql/java/ql/src/experimental/quantum/Examples/TestCipher.ql
238239
ql/java/ql/src/experimental/quantum/Examples/TestHash.ql
240+
ql/java/ql/src/experimental/quantum/Examples/UnknownHash.ql
241+
ql/java/ql/src/experimental/quantum/Examples/UnknownIVorNonceSource.ql
242+
ql/java/ql/src/experimental/quantum/Examples/UnknownKDFIterationCount.ql
243+
ql/java/ql/src/experimental/quantum/Examples/WeakAsymmetricKeyGenSize.ql
244+
ql/java/ql/src/experimental/quantum/Examples/WeakBlockModes.ql
245+
ql/java/ql/src/experimental/quantum/Examples/WeakHash.ql
246+
ql/java/ql/src/experimental/quantum/Examples/WeakKDFIterationCount.ql
247+
ql/java/ql/src/experimental/quantum/Examples/WeakKDFKeySize.ql
248+
ql/java/ql/src/experimental/quantum/Examples/WeakSymmetricCipher.ql
239249
ql/java/ql/src/experimental/quantum/InventorySlices/KnownAsymmetricAlgorithm.ql
240250
ql/java/ql/src/experimental/quantum/InventorySlices/KnownAsymmetricCipherAlgorithm.ql
241251
ql/java/ql/src/experimental/quantum/InventorySlices/KnownAsymmetricOperationAlgorithm.ql

0 commit comments

Comments
 (0)