[Soot-list] Question about how Flowdroid should handle multiple path

Arzt, Steven steven.arzt at sit.fraunhofer.de
Thu Sep 24 08:06:30 EDT 2020 

Dear Jordan,

 

You can configure FlowDroid to inspect sinks. Have a look at “inspectSinks” in the “InfoflowConfiguration” class.

 

Best regards,

  Steven

 

From: Soot-list <soot-list-bounces at CS.McGill.CA> On Behalf Of Jordan Samhi
Sent: Freitag, 18. September 2020 17:15
To: soot-list at CS.McGill.CA
Subject: [Soot-list] Question about how Flowdroid should handle multiple path

 

Hi there,

This is just a question I have about how Flowdroid handle multiple common paths when a path is detected between a source and multiple sinks.

I am experiencing a behavior with Flowdroid that I am not sure it is expected :

This is a simplified structure of the program I am analyzing : 

a() {
  s = source();
  b(s);
}

b(s){
  c(s);
}

In this program, there is a leak from source() to c().
When I only use method b() as a sink, a leak is detected between source() and b() -> this is normal.
When I only use method c() as a sink, a leak is detected between source() and c() through b() -> this is normal.
But when I use b() and c() as sinks, only one leak between source() and b() is found, not the one between source() and c() -> I have to remove b() as sink to find the path from source() to c() -> I do not think this is normal behavior, can someone confirm ?

Thank you in advance,

-- 



Jordan Samhi
Doctoral Researcher
Interdisciplinary Centre for Security, Reliability and Trust
 
UNIVERSITY OF LUXEMBOURG
 
Kirchberg Campus
6, rue Richard Coudenhove-Kalergi
L-1359 Luxembourg
T: +352 466 644 9465
F: +352 466 644 39465
 
jordan.samhi at uni.lu <mailto:jordan.samhi at uni.lu>  / www.uni.lu <https://www.uni.lu/> 
 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.CS.McGill.CA/pipermail/soot-list/attachments/20200924/dcc72b9e/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 7847 bytes
Desc: not available
URL: <https://mailman.CS.McGill.CA/pipermail/soot-list/attachments/20200924/dcc72b9e/attachment-0001.p7s>

More information about the Soot-list mailing list