Skip to content

Swift: Replace two additional taint steps with implicit reads#14357

Merged
geoffw0 merged 3 commits intogithub:mainfrom
geoffw0:commandinject3
Oct 3, 2023
Merged

Swift: Replace two additional taint steps with implicit reads#14357
geoffw0 merged 3 commits intogithub:mainfrom
geoffw0:commandinject3

Conversation

@geoffw0
Copy link
Copy Markdown
Contributor

@geoffw0 geoffw0 commented Oct 2, 2023

Replace additional taint steps in swift/command-line-injection and swift/cleartext-storage-database with implicit reads instead. Implicit reads are a more principled / accurate way of doing data flow out from array elements at the sink (now that we model array content and it can work).

Note that in the test changes, the #select parts are unaffected.

@geoffw0 geoffw0 added no-change-note-required This PR does not need a change note Swift labels Oct 2, 2023
@geoffw0 geoffw0 requested a review from a team as a code owner October 2, 2023 19:36
@geoffw0 geoffw0 mentioned this pull request Oct 2, 2023
Merged
MathiasVP
MathiasVP approved these changes Oct 3, 2023
View reviewed changes
Copy link
Copy Markdown
Contributor

@MathiasVP MathiasVP left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The changes LGTM! We should probably run DCA before we merge this, though

@geoffw0
Copy link
Copy Markdown
Contributor Author

geoffw0 commented Oct 3, 2023

DCA LGTM. Merging.

@geoffw0 geoffw0 merged commit c518f39 into github:main Oct 3, 2023
@geoffw0 geoffw0 mentioned this pull request Nov 6, 2023
Merged
3 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@MathiasVP MathiasVP MathiasVP approved these changes

Assignees

No one assigned

Labels

no-change-note-required This PR does not need a change note Swift

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@geoffw0 @MathiasVP