Add missing qldoc

joefarebrother · joefarebrother · commit 03c2a0e8187e · 2022-08-05T12:56:20.000+01:00
diff --git a/java/ql/lib/semmle/code/java/security/AndroidWebViewCertificateValidationQuery.qll b/java/ql/lib/semmle/code/java/security/AndroidWebViewCertificateValidationQuery.qll
@@ -1,27 +1,34 @@
+/** Defintions for the web view certificate validation query */
+
 import java
 
+/** A method that overrides `WebViewClient.onReceivedSslError` */
 class OnReceivedSslErrorMethod extends Method {
   OnReceivedSslErrorMethod() {
     this.overrides*(any(Method m |
         m.hasQualifiedName("android.webkit", "WebViewClient", "onReceivedSslError")
       ))
   }
 
+  /** Gets the `SslErrorHandler` argument to this method. */
   Parameter handlerArg() { result = this.getParameter(1) }
 }
 
+/** A call to `SslErrorHandler.cancel` */
 private class SslCancelCall extends MethodAccess {
   SslCancelCall() {
     this.getMethod().hasQualifiedName("android.webkit", "SslErrorHandler", "cancel")
   }
 }
 
+/** A call to `SslErrorHandler.proceed` */
 private class SslProceedCall extends MethodAccess {
   SslProceedCall() {
     this.getMethod().hasQualifiedName("android.webkit", "SslErrorHandler", "proceed")
   }
 }
 
+/** Holds if `m` trusts all certifiates by calling `SslErrorHandler.proceed` unconditionally. */
 predicate trustsAllCerts(OnReceivedSslErrorMethod m) {
   exists(SslProceedCall pr | pr.getQualifier().(VarAccess).getVariable() = m.handlerArg()) and
   not exists(SslCancelCall ca | ca.getQualifier().(VarAccess).getVariable() = m.handlerArg())

Original file line number	Diff line number	Diff line change
`@@ -1,27 +1,34 @@`
	`1`	`+/** Defintions for the web view certificate validation query */`
	`2`	`+`
`1`	`3`	`import java`
`2`	`4`
	`5`	+/** A method that overrides `WebViewClient.onReceivedSslError` */
`3`	`6`	`class OnReceivedSslErrorMethod extends Method {`
`4`	`7`	`OnReceivedSslErrorMethod() {`
`5`	`8`	`this.overrides*(any(Method m \|`
`6`	`9`	`m.hasQualifiedName("android.webkit", "WebViewClient", "onReceivedSslError")`
`7`	`10`	`))`
`8`	`11`	`}`
`9`	`12`
	`13`	+ /** Gets the `SslErrorHandler` argument to this method. */
`10`	`14`	`Parameter handlerArg() { result = this.getParameter(1) }`
`11`	`15`	`}`
`12`	`16`
	`17`	+/** A call to `SslErrorHandler.cancel` */
`13`	`18`	`private class SslCancelCall extends MethodAccess {`
`14`	`19`	`SslCancelCall() {`
`15`	`20`	`this.getMethod().hasQualifiedName("android.webkit", "SslErrorHandler", "cancel")`
`16`	`21`	`}`
`17`	`22`	`}`
`18`	`23`
	`24`	+/** A call to `SslErrorHandler.proceed` */
`19`	`25`	`private class SslProceedCall extends MethodAccess {`
`20`	`26`	`SslProceedCall() {`
`21`	`27`	`this.getMethod().hasQualifiedName("android.webkit", "SslErrorHandler", "proceed")`
`22`	`28`	`}`
`23`	`29`	`}`
`24`	`30`
	`31`	+/** Holds if `m` trusts all certifiates by calling `SslErrorHandler.proceed` unconditionally. */
`25`	`32`	`predicate trustsAllCerts(OnReceivedSslErrorMethod m) {`
`26`	`33`	`exists(SslProceedCall pr \| pr.getQualifier().(VarAccess).getVariable() = m.handlerArg()) and`
`27`	`34`	`not exists(SslCancelCall ca \| ca.getQualifier().(VarAccess).getVariable() = m.handlerArg())`