[Soot-list] Flowdroid cannot identify simple password text flow
flanker017
flankerhqd017 at gmail.com
Mon Dec 15 09:16:04 EST 2014
Hi:
For the following code snippets:
final EditText passview = (EditText) findViewById(R.id.editText1);
> //password view
> Button button = (Button) findViewById(R.id.button1);
> button.setOnClickListener(new OnClickListener() {
>
> @Override
> public void onClick(View v) {
> Log.d("log", passview.getText().toString());
> }
> });
FlowDroid cannot identify the flow. DroidBench also doesn't cover this
indirect case. If I move Log.d outside the onClick directly after passview
assignment, FlowDroid would find the flow.
Command line options are: java -cp
soot-trunk.jar:soot-infoflow.jar:soot-infoflow-android.jar:slf4j-api-1.7.5.jar:slf4j-simple-1.7.5.jar:axml-2.0.jar
soot.jimple.infoflow.android.TestApps.Test sample.apk PLATFORM_DIR
No optimization options enabled.
Would someone kindly look into this? Test apk attached at
http://box.myqsc.com/-16232127
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.CS.McGill.CA/pipermail/soot-list/attachments/20141215/e3ca45fe/attachment.html
More information about the Soot-list
mailing list