Skip to content

Commit

Permalink
Merge pull request #6529 from kandicst/xslt-target-typed-new
Browse files Browse the repository at this point in the history 
Support for target-typed new in Insecure XSLT script processing (CA3076)
  • Loading branch information
@mavasani
mavasani committed Apr 24, 2023
2 parents c017fce + 1ec06c5 commit 178ece3
Show file tree
Hide file tree
Showing 3 changed files with 184 additions and 2 deletions.
6 changes: 6 additions & 0 deletions ...NetAnalyzers/Core/Microsoft.NetFramework.Analyzers/DoNotUseInsecureXSLTScriptExecution.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -195,6 +195,12 @@ public void AnalyzeNodeForXsltSettings(IOperation lhs, IOperation rhs)
return;
}

// handle target-typed new
if (rhs is IConversionOperation { IsImplicit: true })
{
rhs = rhs.WalkDownConversion();
}

IMethodSymbol? rhsMethodSymbol = rhs.Kind switch
{
OperationKind.Invocation => ((IInvocationOperation)rhs).TargetMethod,
Expand Down
172 changes: 172 additions & 0 deletions ...UseInsecureXSLTScriptExecutionXslCompiledTransformLoadInsecureConstructedSettingsTests.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -730,6 +730,34 @@ End Class
End Namespace");
}

[Fact]
public async Task UseXslCompiledTransformLoadDefaultTargetTypedNewAndNonSecureResolverShouldNotGenerateDiagnosticAsync()
{
await VerifyCS.RunTestAsync(
new VerifyCS.Test
{
LanguageVersion = CodeAnalysis.CSharp.LanguageVersion.CSharp9,
TestCode = @"
using System.Xml;
using System.Xml.Xsl;
namespace TestNamespace
{
class TestClass
{
private static void TestMethod()
{
XslCompiledTransform xslCompiledTransform = new XslCompiledTransform();
XsltSettings settings = new();
var resolver = new XmlUrlResolver();
xslCompiledTransform.Load(""testStylesheet"", settings, resolver);
}
}
}"
}
);
}

[Fact]
public async Task UseXslCompiledTransformLoadDefaultAndSecureResolverShouldNotGenerateDiagnosticAsync()
{
Expand Down Expand Up @@ -847,6 +875,35 @@ End Class
);
}

[Fact]
public async Task UseXslCompiledTransformLoadEnableScriptTargetTypedNewAndNonSecureResolverShouldGenerateDiagnosticAsync()
{
await VerifyCS.RunTestAsync(
new VerifyCS.Test
{
LanguageVersion = CodeAnalysis.CSharp.LanguageVersion.CSharp9,
TestCode = @"
using System.Xml;
using System.Xml.Xsl;
namespace TestNamespace
{
class TestClass
{
private static void TestMethod()
{
XslCompiledTransform xslCompiledTransform = new XslCompiledTransform();
XsltSettings settings = new() { EnableScript = true };
var resolver = new XmlUrlResolver();
xslCompiledTransform.Load(""testStylesheet"", settings, resolver);
}
}
}",
},
GetCA3076LoadCSharpResultAt(14, 13, "TestMethod")
);
}

[Fact]
public async Task UseXslCompiledTransformLoadSetEnableScriptToTrueAndNonSecureResolverShouldGenerateDiagnosticAsync()
{
Expand Down Expand Up @@ -933,6 +990,35 @@ End Class
);
}

[Fact]
public async Task UseXslCompiledTransformLoadEnableDocumentFunctionTargetTypedNewAndNonSecureResolverShouldGenerateDiagnosticAsync()
{
await VerifyCS.RunTestAsync(
new VerifyCS.Test
{
LanguageVersion = CodeAnalysis.CSharp.LanguageVersion.CSharp9,
TestCode = @"
using System.Xml;
using System.Xml.Xsl;
namespace TestNamespace
{
class TestClass
{
private static void TestMethod()
{
XslCompiledTransform xslCompiledTransform = new XslCompiledTransform();
XsltSettings settings = new() { EnableDocumentFunction = true };
var resolver = new XmlUrlResolver();
xslCompiledTransform.Load(""testStylesheet"", settings, resolver);
}
}
}",
},
GetCA3076LoadCSharpResultAt(14, 13, "TestMethod")
);
}

[Fact]
public async Task UseXslCompiledTransformLoadSetEnableDocumentFunctionToTrueAndNonSecureResolverShouldGenerateDiagnosticAsync()
{
Expand Down Expand Up @@ -1095,6 +1181,35 @@ End Class
);
}

[Fact]
public async Task UseXslCompiledTransformLoadConstructSettingsWithTrueParamTargetTypedNewAndNonSecureResolverShouldGenerateDiagnostic1Async()
{
await VerifyCS.RunTestAsync(
new VerifyCS.Test
{
LanguageVersion = CodeAnalysis.CSharp.LanguageVersion.CSharp9,
TestCode = @"
using System.Xml;
using System.Xml.Xsl;
namespace TestNamespace
{
class TestClass
{
private static void TestMethod()
{
XslCompiledTransform xslCompiledTransform = new XslCompiledTransform();
XsltSettings settings = new(true, false);
var resolver = new XmlUrlResolver();
xslCompiledTransform.Load(""testStylesheet"", settings, resolver);
}
}
}",
},
GetCA3076LoadCSharpResultAt(14, 13, "TestMethod")
);
}

[Fact]
public async Task UseXslCompiledTransformLoadConstructSettingsWithTrueParamAndNonSecureResolverShouldGenerateDiagnostic2Async()
{
Expand Down Expand Up @@ -1136,6 +1251,35 @@ End Class
);
}

[Fact]
public async Task UseXslCompiledTransformLoadConstructSettingsWithTrueParamTargetTypedNewAndNonSecureResolverShouldGenerateDiagnostic2Async()
{
await VerifyCS.RunTestAsync(
new VerifyCS.Test
{
LanguageVersion = CodeAnalysis.CSharp.LanguageVersion.CSharp9,
TestCode = @"
using System.Xml;
using System.Xml.Xsl;
namespace TestNamespace
{
class TestClass
{
private static void TestMethod()
{
XslCompiledTransform xslCompiledTransform = new XslCompiledTransform();
XsltSettings settings = new(false, true);
var resolver = new XmlUrlResolver();
xslCompiledTransform.Load(""testStylesheet"", settings, resolver);
}
}
}",
},
GetCA3076LoadCSharpResultAt(14, 13, "TestMethod")
);
}

[Fact]
public async Task UseXslCompiledTransformLoadConstructSettingsWithFalseParamsAndNonSecureResolverShouldNotGenerateDiagnosticAsync()
{
Expand Down Expand Up @@ -1174,6 +1318,34 @@ End Class
End Namespace");
}

[Fact]
public async Task UseXslCompiledTransformLoadConstructSettingsWithFalseParamsTargetTypedNewAndNonSecureResolverShouldNotGenerateDiagnosticAsync()
{
await VerifyCS.RunTestAsync(
new VerifyCS.Test
{
LanguageVersion = CodeAnalysis.CSharp.LanguageVersion.CSharp9,
TestCode = @"
using System.Xml;
using System.Xml.Xsl;
namespace TestNamespace
{
class TestClass
{
private static void TestMethod()
{
XslCompiledTransform xslCompiledTransform = new XslCompiledTransform();
XsltSettings settings = new(false, false);
var resolver = new XmlUrlResolver();
xslCompiledTransform.Load(""testStylesheet"", settings, resolver);
}
}
}"
}
);
}

[Fact]
public async Task UseXslCompiledTransformLoadNullSettingsAndNonSecureResolverShouldNotGenerateDiagnosticAsync()
{
Expand Down
8 changes: 6 additions & 2 deletions src/Test.Utilities/CSharpSecurityCodeFixVerifier`2.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,8 +30,7 @@ public static async Task VerifyAnalyzerAsync(string source, params DiagnosticRes
TestCode = source,
};

test.ExpectedDiagnostics.AddRange(expected);
await test.RunAsync();
await RunTestAsync(test, expected);
}

public static Task VerifyCodeFixAsync(string source, string fixedSource)
Expand All @@ -48,6 +47,11 @@ public static async Task VerifyCodeFixAsync(string source, DiagnosticResult[] ex
FixedCode = fixedSource,
};

await RunTestAsync(test, expected);
}

public static async Task RunTestAsync(Test test, params DiagnosticResult[] expected)
{
test.ExpectedDiagnostics.AddRange(expected);
await test.RunAsync();
}
Expand Down

0 comments on commit 178ece3

Please sign in to comment.