Moved comment to previous line if resulting in long line

fabienpe · fabienpe · commit 9a37682851fb · 2025-02-04T09:48:34.000Z
diff --git a/java/ql/src/Security/CWE/CWE-023/PartialPathTraversalBad.java b/java/ql/src/Security/CWE/CWE-023/PartialPathTraversalBad.java
@@ -1,6 +1,7 @@
 public class PartialPathTraversalBad {
     public void example(File dir, File parent) throws IOException {
-        if (!dir.getCanonicalPath().startsWith(parent.getCanonicalPath())) { // BAD: dir.getCanonicalPath() not slash-terminated
+        // BAD: dir.getCanonicalPath() not slash-terminated
+        if (!dir.getCanonicalPath().startsWith(parent.getCanonicalPath())) {
             throw new IOException("Path traversal attempt: " + dir.getCanonicalPath());
         }
     }
diff --git a/java/ql/src/Security/CWE/CWE-023/PartialPathTraversalGood.java b/java/ql/src/Security/CWE/CWE-023/PartialPathTraversalGood.java
@@ -2,7 +2,8 @@
 
 public class PartialPathTraversalGood {
     public void example(File dir, File parent) throws IOException {
-        if (!dir.toPath().normalize().startsWith(parent.toPath())) {  // GOOD: Check if dir.Path() is normalised
+        // GOOD: Check if dir.Path() is normalised
+        if (!dir.toPath().normalize().startsWith(parent.toPath())) {
             throw new IOException("Path traversal attempt: " + dir.getCanonicalPath());
         }
     }
diff --git a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewAddJavascriptInterfaceExample.java b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewAddJavascriptInterfaceExample.java
@@ -20,4 +20,5 @@ public String studentEmail(String studentName) {
 webview.loadData("", "text/html", null);
 
 String name = "Robert'; DROP TABLE students; --";
-webview.loadUrl("javascript:alert(exposedObject.studentEmail(\""+ name +"\"))"); // BAD: Untrusted input loaded into WebView
+// BAD: Untrusted input loaded into WebView
+webview.loadUrl("javascript:alert(exposedObject.studentEmail(\""+ name +"\"))");
diff --git a/java/ql/src/Security/CWE/CWE-094/InstallApkWithFile.java b/java/ql/src/Security/CWE/CWE-094/InstallApkWithFile.java
@@ -9,6 +9,7 @@
 File file = new File(Environment.getExternalStorageDirectory(), "myapp.apk");
 Intent intent = new Intent(Intent.ACTION_VIEW);
 /* Set the mimetype to APK */
-intent.setDataAndType(Uri.fromFile(file), "application/vnd.android.package-archive"); // BAD: The file may be altered by another app
+// BAD: The file may be altered by another app
+intent.setDataAndType(Uri.fromFile(file), "application/vnd.android.package-archive");
 
 startActivity(intent);
diff --git a/java/ql/src/Security/CWE/CWE-094/InstallApkWithFileProvider.java b/java/ql/src/Security/CWE/CWE-094/InstallApkWithFileProvider.java
@@ -21,7 +21,8 @@
 
 /* Expose temporary file with FileProvider */
 File toInstall = new File(this.getFilesDir(), tempFilename);
-Uri applicationUri = FileProvider.getUriForFile(this, "com.example.apkprovider", toInstall); // GOOD: The file is protected by FileProvider
+// GOOD: The file is protected by FileProvider
+Uri applicationUri = FileProvider.getUriForFile(this, "com.example.apkprovider", toInstall);
 
 /* Create Intent and set data to APK file. */
 Intent intent = new Intent(Intent.ACTION_INSTALL_PACKAGE);
diff --git a/java/ql/src/Security/CWE/CWE-094/SSTIBad.java b/java/ql/src/Security/CWE/CWE-094/SSTIBad.java
@@ -14,6 +14,7 @@ public void bad(HttpServletRequest request) {
 
 		StringWriter w = new StringWriter();
 		// evaluate( Context context, Writer out, String logTag, String instring )
-		Velocity.evaluate(context, w, "mystring", code); // BAD: code is controlled by the user
+		// BAD: code is controlled by the user
+		Velocity.evaluate(context, w, "mystring", code);
 	}
 }
diff --git a/java/ql/src/Security/CWE/CWE-094/SaferSpelExpressionEvaluation.java b/java/ql/src/Security/CWE/CWE-094/SaferSpelExpressionEvaluation.java
@@ -4,9 +4,11 @@ public Object evaluate(Socket socket) throws IOException {
 
     String string = reader.readLine();
     ExpressionParser parser = new SpelExpressionParser();
-    Expression expression = parser.parseExpression(string); // AVOID: string is controlled by the user
+    // AVOID: string is controlled by the user
+    Expression expression = parser.parseExpression(string);
     SimpleEvaluationContext context 
         = SimpleEvaluationContext.forReadWriteDataBinding().build();
-    return expression.getValue(context); // OK: Untrusted expressions are evaluated in a restricted context
+    // OK: Untrusted expressions are evaluated in a restricted context
+    return expression.getValue(context);
   }
 }
diff --git a/java/ql/src/Security/CWE/CWE-094/UnsafeJexlExpressionEvaluation.java b/java/ql/src/Security/CWE/CWE-094/UnsafeJexlExpressionEvaluation.java
@@ -4,7 +4,8 @@ public void evaluate(Socket socket) throws IOException {
     
     String input = reader.readLine();
     JexlEngine jexl = new JexlBuilder().create();
-    JexlExpression expression = jexl.createExpression(input); // BAD: input is controlled by the user
+    // BAD: input is controlled by the user
+    JexlExpression expression = jexl.createExpression(input);
     JexlContext context = new MapContext();
     expression.evaluate(context);
   }
diff --git a/java/ql/src/Security/CWE/CWE-094/UnsafeSpelExpressionEvaluation.java b/java/ql/src/Security/CWE/CWE-094/UnsafeSpelExpressionEvaluation.java
@@ -4,7 +4,8 @@ public Object evaluate(Socket socket) throws IOException {
 
     String string = reader.readLine();
     ExpressionParser parser = new SpelExpressionParser();
-    Expression expression = parser.parseExpression(string); // BAD: string is controlled by the user
+    // BAD: string is controlled by the user
+    Expression expression = parser.parseExpression(string);
     return expression.getValue();
   }
 }

Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,7 @@`
`1`	`1`	`public class PartialPathTraversalBad {`
`2`	`2`	`public void example(File dir, File parent) throws IOException {`
`3`		`- if (!dir.getCanonicalPath().startsWith(parent.getCanonicalPath())) { // BAD: dir.getCanonicalPath() not slash-terminated`
	`3`	`+ // BAD: dir.getCanonicalPath() not slash-terminated`
	`4`	`+ if (!dir.getCanonicalPath().startsWith(parent.getCanonicalPath())) {`
`4`	`5`	`throw new IOException("Path traversal attempt: " + dir.getCanonicalPath());`
`5`	`6`	`}`
`6`	`7`	`}`
Original file line number	Diff line number	Diff line change
`@@ -2,7 +2,8 @@`
`2`	`2`
`3`	`3`	`public class PartialPathTraversalGood {`
`4`	`4`	`public void example(File dir, File parent) throws IOException {`
`5`		`- if (!dir.toPath().normalize().startsWith(parent.toPath())) { // GOOD: Check if dir.Path() is normalised`
	`5`	`+ // GOOD: Check if dir.Path() is normalised`
	`6`	`+ if (!dir.toPath().normalize().startsWith(parent.toPath())) {`
`6`	`7`	`throw new IOException("Path traversal attempt: " + dir.getCanonicalPath());`
`7`	`8`	`}`
`8`	`9`	`}`
Original file line number	Diff line number	Diff line change
`@@ -14,6 +14,7 @@ public void bad(HttpServletRequest request) {`
`14`	`14`
`15`	`15`	`StringWriter w = new StringWriter();`
`16`	`16`	`// evaluate( Context context, Writer out, String logTag, String instring )`
`17`		`- Velocity.evaluate(context, w, "mystring", code); // BAD: code is controlled by the user`
	`17`	`+ // BAD: code is controlled by the user`
	`18`	`+ Velocity.evaluate(context, w, "mystring", code);`
`18`	`19`	`}`
`19`	`20`	`}`
Original file line number	Diff line number	Diff line change
`@@ -4,9 +4,11 @@ public Object evaluate(Socket socket) throws IOException {`
`4`	`4`
`5`	`5`	`String string = reader.readLine();`
`6`	`6`	`ExpressionParser parser = new SpelExpressionParser();`
`7`		`- Expression expression = parser.parseExpression(string); // AVOID: string is controlled by the user`
	`7`	`+ // AVOID: string is controlled by the user`
	`8`	`+ Expression expression = parser.parseExpression(string);`
`8`	`9`	`SimpleEvaluationContext context`
`9`	`10`	`= SimpleEvaluationContext.forReadWriteDataBinding().build();`
`10`		`- return expression.getValue(context); // OK: Untrusted expressions are evaluated in a restricted context`
	`11`	`+ // OK: Untrusted expressions are evaluated in a restricted context`
	`12`	`+ return expression.getValue(context);`
`11`	`13`	`}`
`12`	`14`	`}`
Original file line number	Diff line number	Diff line change
`@@ -4,7 +4,8 @@ public void evaluate(Socket socket) throws IOException {`
`4`	`4`
`5`	`5`	`String input = reader.readLine();`
`6`	`6`	`JexlEngine jexl = new JexlBuilder().create();`
`7`		`- JexlExpression expression = jexl.createExpression(input); // BAD: input is controlled by the user`
	`7`	`+ // BAD: input is controlled by the user`
	`8`	`+ JexlExpression expression = jexl.createExpression(input);`
`8`	`9`	`JexlContext context = new MapContext();`
`9`	`10`	`expression.evaluate(context);`
`10`	`11`	`}`
Original file line number	Diff line number	Diff line change
`@@ -4,7 +4,8 @@ public Object evaluate(Socket socket) throws IOException {`
`4`	`4`
`5`	`5`	`String string = reader.readLine();`
`6`	`6`	`ExpressionParser parser = new SpelExpressionParser();`
`7`		`- Expression expression = parser.parseExpression(string); // BAD: string is controlled by the user`
	`7`	`+ // BAD: string is controlled by the user`
	`8`	`+ Expression expression = parser.parseExpression(string);`
`8`	`9`	`return expression.getValue();`
`9`	`10`	`}`
`10`	`11`	`}`