Module KeySizeConfig

A data flow configuration for tracking key sizes used in cryptographic algorithms.

Import path

import semmle.code.java.security.InsufficientKeySizeQuery

Predicates

isSink	Holds if `sink` is a relevant data flow sink accepting `state`.
isSource	Holds if `source` is a relevant data flow source with the given initial `state`.
observeDiffInformedIncrementalMode	Holds if sources and sinks should be filtered to only include those that may lead to a flow path with either a source or a sink in the location range given by `AlertFiltering`. This only has an effect when running in diff-informed incremental mode.

Aliases

FlowState

A key size that is greater than the tracked value and equal to the minimum recommended key size for some algorithm, or a kind of algorithm for which the tracked string indicates a too small key size.