@specs-feup/clava
Version:
A C/C++ source-to-source compiler written in Typescript
21 lines • 802 B
JavaScript
import { Call } from "../../../Joinpoints.js";
import Checker from "../Checker.js";
import CheckResult from "../CheckResult.js";
/**
* Check for the presence of exec family functions
*/
export default class ExecChecker extends Checker {
advice = " This function executes another program used as parameter and can allow an attacker to execute his own code. " +
"Be extremely cautious when using this function and check inputs for a better security (CWE-78).\n\n";
constructor() {
super("exec");
}
check($node) {
if (!($node instanceof Call) ||
!$node.name.match(/execl|execlp|execle|execv|execvp|execvpe/)) {
return;
}
return new CheckResult(this.name, $node, this.advice);
}
}
//# sourceMappingURL=ExecChecker.js.map