/* * Copyright (c) Meta Platforms, Inc. and affiliates. * * This source code is licensed under the MIT license found in the * LICENSE file in the root directory of this source tree. */ #include <boost/algorithm/string.hpp> #include <mariana-trench/model-generator/ModelGenerator.h> #include <mariana-trench/model-generator/TaintInTaintThisGenerator.h> namespace marianatrench { namespace { const std::vector<std::string> k_skip_setter_class_suffixes{ "Activity;", "Service;", "Context;", "ContextWrapper;" "Webview;", "Fragment;", "WebViewClient;", "ContentProvider;", "BroadcastReceiver;"}; const std::vector<std::string> k_allowlist_setter_method_prefixes{ "<init>", "add", "update", "push" "replace", "set", "put", "append", "unmarshall", "write"}; } // namespace std::vector<Model> TaintInTaintThisGenerator::visit_method( const Method* method) const { if (method->get_code() || method->is_static()) { return {}; } const auto class_name = generator::get_class_name(method); if (boost::starts_with(class_name, "Landroid") && std::any_of( k_skip_setter_class_suffixes.begin(), k_skip_setter_class_suffixes.end(), [class_name](const auto& denied_class) { return boost::ends_with(class_name, denied_class); })) { return {}; } const auto method_name = generator::get_method_name(method); if (boost::ends_with(class_name, "$Builder;") || std::any_of( k_allowlist_setter_method_prefixes.begin(), k_allowlist_setter_method_prefixes.end(), [method_name](const auto& prefix) { return boost::starts_with(method_name, prefix); })) { auto model = Model(method, context_, Model::Mode::TaintInTaintThis); for (ParameterPosition parameter_position = 1; parameter_position < method->number_of_parameters(); parameter_position++) { generator::add_propagation_to_self( context_, model, parameter_position, {"via-obscure-taint-in-taint-this"}); } return {model}; } return {}; } } // namespace marianatrench