java.lang.Object
- com.h3xstream.findsecbugs.injection.AbstractTaintDetector
- - com.h3xstream.findsecbugs.injection.AbstractInjectionDetector
  - - com.h3xstream.findsecbugs.injection.BasicInjectionDetector
    - - com.h3xstream.findsecbugs.injection.LegacyInjectionDetector

All Implemented Interfaces:

edu.umd.cs.findbugs.Detector, edu.umd.cs.findbugs.Priorities

Direct Known Subclasses:

UnvalidatedRedirectDetector
```
public abstract class LegacyInjectionDetector
extends BasicInjectionDetector
```
Detector designed for extension to detect injection vulnerabilities using the original mechanism with InjectionSource class

Author:

David Formanek (Y Soft Corporation, a.s.)

Field Summary
- Fields inherited from class com.h3xstream.findsecbugs.injection.AbstractInjectionDetector
  injectionSinks
- Fields inherited from class com.h3xstream.findsecbugs.injection.AbstractTaintDetector
  bugReporter
- Fields inherited from interface edu.umd.cs.findbugs.Priorities
  EXP_PRIORITY, HIGH_PRIORITY, IGNORE_PRIORITY, LOW_PRIORITY, NORMAL_PRIORITY

Constructor Summary

Constructors
Modifier Constructor Description

protected LegacyInjectionDetector(edu.umd.cs.findbugs.BugReporter bugReporter)

Method Summary

All Methods Instance Methods Abstract Methods Concrete Methods
Modifier and Type	Method	Description
`protected InjectionPoint`	`getInjectionPoint(org.apache.bcel.generic.InvokeInstruction invoke, org.apache.bcel.generic.ConstantPoolGen cpg, org.apache.bcel.generic.InstructionHandle handle)`
`abstract InjectionSource[]`	`getInjectionSource()`

Methods inherited from class com.h3xstream.findsecbugs.injection.BasicInjectionDetector
addParsedInjectionPoint, loadConfiguredSinks, loadConfiguredSinks, loadCustomSinks, loadCustomSinksConfigFiles, loadSink, registerVisitor

Methods inherited from class com.h3xstream.findsecbugs.injection.AbstractInjectionDetector
analyzeLocation, getPriority, getPriorityFromTaintFrame, report

Methods inherited from class com.h3xstream.findsecbugs.injection.AbstractTaintDetector
analyzeMethod, shouldAnalyzeClass, visitClassContext

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

LegacyInjectionDetector

protected LegacyInjectionDetector(edu.umd.cs.findbugs.BugReporter bugReporter)

Method Detail

getInjectionPoint

protected InjectionPoint getInjectionPoint(org.apache.bcel.generic.InvokeInstruction invoke,
                                           org.apache.bcel.generic.ConstantPoolGen cpg,
                                           org.apache.bcel.generic.InstructionHandle handle)

Overrides:: getInjectionPoint in class BasicInjectionDetector

getInjectionSource

public abstract InjectionSource[] getInjectionSource()

Class LegacyInjectionDetector

Field Summary

Fields inherited from class com.h3xstream.findsecbugs.injection.AbstractInjectionDetector

Fields inherited from class com.h3xstream.findsecbugs.injection.AbstractTaintDetector

Fields inherited from interface edu.umd.cs.findbugs.Priorities

Constructor Summary

Method Summary

Methods inherited from class com.h3xstream.findsecbugs.injection.BasicInjectionDetector

Methods inherited from class com.h3xstream.findsecbugs.injection.AbstractInjectionDetector

Methods inherited from class com.h3xstream.findsecbugs.injection.AbstractTaintDetector

Methods inherited from class java.lang.Object

Constructor Detail

LegacyInjectionDetector

Method Detail

getInjectionPoint

getInjectionSource