• Home
• com.ibm.wala
• com.ibm.wala.scandroid
• 1.6.6
• source code
• EntryArgSourceSpec.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.scandroid.spec.EntryArgSourceSpec Maven / Gradle / Ivy

/*
 * This program and the accompanying materials
 * are made available under the terms of the Eclipse Public License v1.0
 * which accompanies this distribution, and is available at
 * http://www.eclipse.org/legal/epl-v10.html.
 *
 * This file is a derivative of code released under the terms listed below.
 *
 */
/*
 *
 * Copyright (c) 2009-2012,
 *
 *  Galois, Inc. (Aaron Tomb )
 *  Steve Suh           
 *
 * All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions are met:
 *
 * 1. Redistributions of source code must retain the above copyright notice,
 * this list of conditions and the following disclaimer.
 *
 * 2. Redistributions in binary form must reproduce the above copyright notice,
 * this list of conditions and the following disclaimer in the documentation
 * and/or other materials provided with the distribution.
 *
 * 3. The names of the contributors may not be used to endorse or promote
 * products derived from this software without specific prior written
 * permission.
 *
 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
 * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
 * POSSIBILITY OF SUCH DAMAGE.
 *
 *
 */

package org.scandroid.spec;

import com.ibm.wala.classLoader.IClass;
import com.ibm.wala.classLoader.IMethod;
import com.ibm.wala.dataflow.IFDS.ISupergraph;
import com.ibm.wala.ipa.callgraph.CGNode;
import com.ibm.wala.ipa.callgraph.CallGraph;
import com.ibm.wala.ipa.callgraph.propagation.ConcreteTypeKey;
import com.ibm.wala.ipa.callgraph.propagation.InstanceKey;
import com.ibm.wala.ipa.callgraph.propagation.PointerAnalysis;
import com.ibm.wala.ipa.callgraph.propagation.PointerKey;
import com.ibm.wala.ipa.cfg.BasicBlockInContext;
import com.ibm.wala.ssa.ISSABasicBlock;
import com.ibm.wala.ssa.SSAInvokeInstruction;
import com.ibm.wala.types.TypeReference;
import com.ibm.wala.util.intset.OrdinalSet;
import java.util.Arrays;
import java.util.Map;
import java.util.Set;
import org.scandroid.domain.CodeElement;
import org.scandroid.flow.InflowAnalysis;
import org.scandroid.flow.types.FlowType;
import org.scandroid.flow.types.ParameterFlow;
import org.scandroid.util.CGAnalysisContext;

/**
 * Entry arg source specs represent sources that are arguments to methods that are entry points.
 *
 * 
For example, the command line arguments to a {@code main(String[] args)} are entry arg
 * sources.
 */
public class EntryArgSourceSpec extends SourceSpec {

  public EntryArgSourceSpec(MethodNamePattern name, int[] args) {
    namePattern = name;
    argNums = args;
  }

  @Override
  public  void addDomainElements(
      CGAnalysisContext ctx,
      Map, Map, Set>> taintMap,
      IMethod im,
      BasicBlockInContext block,
      SSAInvokeInstruction invInst,
      int[] newArgNums,
      ISupergraph, CGNode> graph,
      PointerAnalysis pa,
      CallGraph cg) {

    for (CGNode node : cg.getNodes(im.getReference())) {
      for (int i : newArgNums) {
        FlowType flow = new ParameterFlow<>(block, i, true);
        final int ssaVal = node.getIR().getParameter(i);
        final Set valueElements = CodeElement.valueElements(ssaVal);

        PointerKey pk = pa.getHeapModel().getPointerKeyForLocal(node, ssaVal);
        final OrdinalSet pointsToSet = pa.getPointsToSet(pk);

        if (pointsToSet.isEmpty()) {
          TypeReference typeRef = node.getMethod().getParameterType(i);
          IClass clazz = node.getMethod().getClassHierarchy().lookupClass(typeRef);
          if (null == clazz) {

          } else if (clazz.isInterface()) {
            for (IClass impl : pa.getClassHierarchy().getImplementors(typeRef)) {

              InstanceKey ik = new ConcreteTypeKey(impl);
              valueElements.addAll(ctx.codeElementsForInstanceKey(ik));
            }
          } else {
            InstanceKey ik = new ConcreteTypeKey(clazz);
            valueElements.addAll(ctx.codeElementsForInstanceKey(ik));
          }
        }

        for (InstanceKey ik : pointsToSet) {
          valueElements.addAll(ctx.codeElementsForInstanceKey(ik));
        }
        InflowAnalysis.addDomainElements(taintMap, block, flow, valueElements);
      }
    }
  }

  @Override
  public String toString() {
    return String.format("EntryArgSourceSpec(%s, %s)", namePattern, Arrays.toString(argNums));
  }
}