CodeQL library for Java/Kotlin
codeql/java-all 7.1.3-dev (changelog, source)
Index
Search

Module EJBRestrictions

Provides classes and predicates for modeling EJB Programming Restrictions (see EJB 3.0 specification, section 21.1.2).

Import path

import semmle.code.java.frameworks.javaee.ejb.EJBRestrictions

Imports

EJB

Provides classes and predicates for working with Enterprise Java Beans.

java

Provides all default Java QL imports.

Predicates

ejbCalls

Holds if there exists a call chain from an EJB-Callable origin to a ForbiddenCallable target that does not contain any intermediate EJB-Callable or ForbiddenCallable, and where call is the direct call site of target.

forbiddenStaticFieldUse

Gets an access to a non-final static field in callable c that is disallowed by the EJB specification.

forbiddenThisUse

Gets an access to this in callable c that is disallowed by the EJB specification.

Classes

ClassLoaderClass

The class java.lang.ClassLoader.

ConcurrentPackage

The package java.util.concurrent or a subpackage thereof.

EnableReplaceObjectMethod

A method named enableReplaceObject declared in the class java.io.ObjectOutputStream or a subclass thereof.

EnableResolveObjectMethod

A method named enableResolveObject declared in the class java.io.ObjectInputStream or a subclass thereof.

FileInputOutputClass

A class involving file input or output.

ForbiddenCallable

A method or constructor that may not be called from an EJB.

ForbiddenContainerInterferenceCallable

A method or constructor that may not be called by an EJB due to container interference.

ForbiddenContainerInterferenceMethod

A method that may cause EJB container interference.

ForbiddenFileCallable

A method or constructor involving file input or output that may not be called by an EJB.

ForbiddenGraphicsCallable

A method or constructor involving graphics operations that may not be called by an EJB.

ForbiddenNativeCallable

A method or constructor involving native code that may not be called by an EJB.

ForbiddenNativeCodeMethod

A method involving native code that may not be called by an EJB.

ForbiddenReflectionCallable

A method or constructor involving reflection that may not be called by and EJB.

ForbiddenSecurityConfigurationCallable

A method or constructor involving security configuration that may not be called by an EJB.

ForbiddenSerializationCallable

A method or constructor involving serialization that may not be called by an EJB.

ForbiddenSerializationMethod

A method involving serialization that may not be called from an EJB.

ForbiddenServerSocketCallable

A method or constructor involving server socket operations that may not be called by an EJB.

ForbiddenSetFactoryCallable

A method or constructor involving network factory operations that may not be called by an EJB.

ForbiddenSetFactoryMethod

A method involving network factory operations that may not be called from an EJB.

ForbiddenStaticFieldCallable

A method or constructor involving static field access that may not be called by an EJB.

ForbiddenSynchronizationCallable

A method or constructor involving synchronization that may not be called by an EJB.

ForbiddenThisCallable

A method or constructor referencing this that may not be called by an EJB.

ForbiddenThreadingCallable

A method or constructor involving thread operations that may not be called by an EJB.

GraphicsPackage

The package java.awt or javax.swing or a subpackage thereof.

ReflectionPackage

The package java.lang.reflect or a subpackage thereof.

ReplaceObjectMethod

A method named replaceObject declared in the class java.io.ObjectOutputStream or a subclass thereof.

ResolveClassMethod

A method named resolveClass declared in the class java.io.ObjectInputStream or a subclass thereof.

ResolveObjectMethod

A method named resolveObject declared in the class java.io.ObjectInputStream or a subclass thereof.

ResolveProxyClassMethod

A method named resolveProxyClass declared in the class java.io.ObjectInputStream or a subclass thereof.

RuntimeAddOrRemoveShutdownHookMethod

A method named addShutdownHook or removeShutdownHook declared in the class java.lang.Runtime or a subclass thereof.

RuntimeExecMethod

A method named exec declared in the class java.lang.Runtime or in a subclass thereof.

RuntimeExitOrHaltMethod

A method named exit or halt declared in the class java.lang.Runtime or a subclass thereof.

SecurityConfigClass

A class in the package java.security named Policy, Security, Provider, Signer or Identity.

SecurityManagerClass

The class java.lang.SecurityManager.

ServerSocketsClass

The class java.net.ServerSocket, java.net.MulticastSocket or java.nio.channels.ServerSocketChannel.

SetSocketFactoryMethod

A method named setSocketFactory declared in the class java.net.ServerSocket or a subclass thereof.

SetSocketImplFactoryMethod

A method named setSocketImplFactory declared in the class java.net.Socket or a subclass thereof.

SetUrlStreamHandlerFactoryMethod

A method named setURLStreamHandlerFactory declared in the class java.net.URL or a subclass thereof.

SystemExitMethod

A method named exit declared in the class java.lang.System.

SystemGetSecurityManagerMethod

A method named getSecurityManager declared in the class java.lang.System.

SystemInheritedChannelMethod

A method named inheritedChannel declared in the class java.lang.System.

SystemOrRuntimeLoadLibraryMethod

A method named load or loadLibrary declared in the class java.lang.System or java.lang.Runtime or a subclass thereof.

SystemSetInputStreamMethod

A method named setIn declared in the class java.lang.System.

SystemSetPrintStreamMethod

A method named setErr or setOut declared in the class java.lang.System.

SystemSetSecurityManagerMethod

A method named setSecurityManager declared in the class java.lang.System.

ThreadingClass

The class java.lang.Thread or java.lang.ThreadGroup.