For other CodeQL resources, including tutorials and examples, see the CodeQL documentation

EJBRestrictions

Module EJBRestrictions

Provides classes and predicates for modeling EJB Programming Restrictions (see EJB 3.0 specification, section 21.1.2).

Import path


                                import semmle.code.java.frameworks.javaee.ejb.EJBRestrictions

Imports

EJB	Provides classes and predicates for working with Enterprise Java Beans.
java	Provides all default Java QL imports.

Predicates

ejbCalls	Holds if there exists a call chain from an EJB-`Callable` `origin` to a `ForbiddenCallable` `target` that does not contain any intermediate EJB-`Callable` or `ForbiddenCallable`, and where `call` is the direct call site of `target`.
forbiddenStaticFieldUse	Gets an access to a non-final static field in callable `c` that is disallowed by the EJB specification.
forbiddenThisUse	Gets an access to `this` in callable `c` that is disallowed by the EJB specification.

Classes

ClassLoaderClass	The class `java.lang.ClassLoader`.
ConcurrentPackage	The package `java.util.concurrent` or a subpackage thereof.
EnableReplaceObjectMethod	A method named `enableReplaceObject` declared in the class `java.io.ObjectOutputStream` or a subclass thereof.
EnableResolveObjectMethod	A method named `enableResolveObject` declared in the class `java.io.ObjectInputStream` or a subclass thereof.
FileInputOutputClass	A class involving file input or output.
ForbiddenCallable	A method or constructor that may not be called from an EJB.
ForbiddenContainerInterferenceCallable	A method or constructor that may not be called by an EJB due to container interference.
ForbiddenContainerInterferenceMethod	A method that may cause EJB container interference.
ForbiddenFileCallable	A method or constructor involving file input or output that may not be called by an EJB.
ForbiddenGraphicsCallable	A method or constructor involving graphics operations that may not be called by an EJB.
ForbiddenNativeCallable	A method or constructor involving native code that may not be called by an EJB.
ForbiddenNativeCodeMethod	A method involving native code that may not be called by an EJB.
ForbiddenReflectionCallable	A method or constructor involving reflection that may not be called by and EJB.
ForbiddenSecurityConfigurationCallable	A method or constructor involving security configuration that may not be called by an EJB.
ForbiddenSerializationCallable	A method or constructor involving serialization that may not be called by an EJB.
ForbiddenSerializationMethod	A method involving serialization that may not be called from an EJB.
ForbiddenServerSocketCallable	A method or constructor involving server socket operations that may not be called by an EJB.
ForbiddenSetFactoryCallable	A method or constructor involving network factory operations that may not be called by an EJB.
ForbiddenSetFactoryMethod	A method involving network factory operations that may not be called from an EJB.
ForbiddenStaticFieldCallable	A method or constructor involving static field access that may not be called by an EJB.
ForbiddenSynchronizationCallable	A method or constructor involving synchronization that may not be called by an EJB.
ForbiddenThisCallable	A method or constructor referencing `this` that may not be called by an EJB.
ForbiddenThreadingCallable	A method or constructor involving thread operations that may not be called by an EJB.
GraphicsPackage	The package `java.awt` or `javax.swing` or a subpackage thereof.
ReflectionPackage	The package `java.lang.reflect` or a subpackage thereof.
ReplaceObjectMethod	A method named `replaceObject` declared in the class `java.io.ObjectOutputStream` or a subclass thereof.
ResolveClassMethod	A method named `resolveClass` declared in the class `java.io.ObjectInputStream` or a subclass thereof.
ResolveObjectMethod	A method named `resolveObject` declared in the class `java.io.ObjectInputStream` or a subclass thereof.
ResolveProxyClassMethod	A method named `resolveProxyClass` declared in the class `java.io.ObjectInputStream` or a subclass thereof.
RuntimeAddOrRemoveShutdownHookMethod	A method named `addShutdownHook` or `removeShutdownHook` declared in the class `java.lang.Runtime` or a subclass thereof.
RuntimeExecMethod	A method named `exec` declared in the class `java.lang.Runtime` or in a subclass thereof.
RuntimeExitOrHaltMethod	A method named `exit` or `halt` declared in the class `java.lang.Runtime` or a subclass thereof.
SecurityConfigClass	A class in the package `java.security` named `Policy`, `Security`, `Provider`, `Signer` or `Identity`.
SecurityManagerClass	The class `java.lang.SecurityManager`.
ServerSocketsClass	The class `java.net.ServerSocket`, `java.net.MulticastSocket` or `java.nio.channels.ServerSocketChannel`.
SetSocketFactoryMethod	A method named `setSocketFactory` declared in the class `java.net.ServerSocket` or a subclass thereof.
SetSocketImplFactoryMethod	A method named `setSocketImplFactory` declared in the class `java.net.Socket` or a subclass thereof.
SetUrlStreamHandlerFactoryMethod	A method named `setURLStreamHandlerFactory` declared in the class `java.net.URL` or a subclass thereof.
SystemExitMethod	A method named `exit` declared in the class `java.lang.System`.
SystemGetSecurityManagerMethod	A method named `getSecurityManager` declared in the class `java.lang.System`.
SystemInheritedChannelMethod	A method named `inheritedChannel` declared in the class `java.lang.System`.
SystemOrRuntimeLoadLibraryMethod	A method named `load` or `loadLibrary` declared in the class `java.lang.System` or `java.lang.Runtime` or a subclass thereof.
SystemSetInputStreamMethod	A method named `setIn` declared in the class `java.lang.System`.
SystemSetPrintStreamMethod	A method named `setErr` or `setOut` declared in the class `java.lang.System`.
SystemSetSecurityManagerMethod	A method named `setSecurityManager` declared in the class `java.lang.System`.
ThreadingClass	The class `java.lang.Thread` or `java.lang.ThreadGroup`.