Module Encryption
Provides predicates and classes relating to encryption in Java.
Import path
import semmle.code.java.security.EncryptionImports
| java | Provides all default Java QL imports. |
Predicates
| getASecureAlgorithmName | Gets the name of an algorithm that is known to be secure. |
| getAnInsecureAlgorithmName | Gets the name of an algorithm that is known to be insecure. |
| getAnInsecureHashAlgorithmName | Gets the name of a hash algorithm that is insecure if it is being used for encryption. |
| getInsecureAlgorithmRegex | Gets the regular expression used for matching strings that look like they contain an algorithm that is known to be insecure. |
| getSecureAlgorithmRegex | Gets a regular expression for matching strings that look like they contain an algorithm that is known to be secure. |
Classes
| BeginHandshakeMethod | The |
| CreateSocket | |
| CreateSslEngineMethod | The |
| CryptoAlgoSpec | Any use of a cryptographic element that specifies an encryption algorithm. For example, methods returning ciphers, decryption methods, constructors of cipher classes, etc. |
| GetSocketFactory | |
| GetSslSessionMethod | The |
| HostnameVerifier | |
| HostnameVerifierVerify | The |
| HttpsUrlConnection | The |
| JavaSecurityAlgoSpec | |
| JavaSecurityKeyPairGenerator | A method call to the Java class |
| JavaSecurityMessageDigest | |
| JavaSecuritySignature | |
| JavaxCryptoAlgoSpec | |
| JavaxCryptoCipher | |
| JavaxCryptoKeyAgreement | |
| JavaxCryptoKeyFactory | |
| JavaxCryptoKeyGenerator | |
| JavaxCryptoSecretKey | |
| KeyGenerator | The Java class |
| KeyPairGenerator | The Java class |
| SSLClass | |
| SSLContext | |
| SSLEngine | The |
| SSLParameters | The |
| SSLSession | The |
| SSLSocket | The |
| SSLSocketFactory | |
| SetConnectionFactoryMethod | |
| SetDefaultHostnameVerifierMethod | The |
| SetHostnameVerifierMethod | |
| SslUnwrapMethod | The |
| SslWrapMethod | The |
| TrustManagerCheckMethod | |
| X509TrustManager |
Aliases
| HttpsURLConnection | DEPRECATED: Alias for HttpsUrlConnection |