Swift: Create proper models for JavaScriptCore.

geoffw0 · geoffw0 · commit 317757b7aea3 · 2023-08-21T18:24:26.000+01:00
diff --git a/swift/ql/lib/codeql/swift/frameworks/Frameworks.qll b/swift/ql/lib/codeql/swift/frameworks/Frameworks.qll
@@ -3,6 +3,7 @@
  */
 
 private import Alamofire.Alamofire
+private import JavaScriptCore.JavaScriptCore
 private import StandardLibrary.StandardLibrary
 private import UIKit.UIKit
 private import Xml.Xml
diff --git a/swift/ql/lib/codeql/swift/frameworks/JavaScriptCore/JavaScriptCore.qll b/swift/ql/lib/codeql/swift/frameworks/JavaScriptCore/JavaScriptCore.qll
@@ -0,0 +1,20 @@
+/**
+ * Provides models for the `JavaScriptCore` library.
+ */
+
+import swift
+private import codeql.swift.dataflow.ExternalFlow
+
+/**
+ * A model for `JavaScriptCore` functions and class members that permit taint flow.
+ */
+private class JSStringSummaries extends SummaryModelCsv {
+  override predicate row(string row) {
+    row =
+      [
+        ";;false;JSStringCreateWithUTF8CString(_:);;;Argument[0];ReturnValue;taint",
+        ";;false;JSStringCreateWithCharacters(_:_:);;;Argument[0];ReturnValue;taint",
+        ";;false;JSStringRetain(_:);;;Argument[0];ReturnValue;taint",
+      ]
+  }
+}
