Up2Dep

Back to library list

com.android.databinding__compiler

Column Insecure: Icon yes indicates the version is insecure, otherwise no
Column CryptoMisuse: Icon yes indicates the version has cryptographic API misuse, otherwise no
Version Insecure CryptoMisuse Rule name Method Statement Details
3.0.0 no       yes MessageDigest android.databinding.repacked.apache.commons.codec.digest.DigestUtils.md2(Ljava/io/InputStream;)[B $r3 = virtualinvoke $r2.<java.security.MessageDigest: byte[] digest()>() Unexpected call to method <java.security.MessageDigest: byte[] digest()> on object of type java.security.MessageDigest. Expect a call to one of the following methods <java.security.MessageDigest: void update(byte[])>,<java.security.MessageDigest: void update(byte[],int,int)>,<java.security.MessageDigest: byte[] digest(byte[])>,<java.security.MessageDigest: void update(java.nio.ByteBuffer)>,<java.security.MessageDigest: void update(byte)>
- - yes MessageDigest android.databinding.repacked.apache.commons.codec.digest.DigestUtils.sha512(Ljava/io/InputStream;)[B $r2 = staticinvoke <android.databinding.repacked.apache.commons.codec.digest.DigestUtils: byte[] digest(java.security.MessageDigest,java.io.InputStream)>($r1, r0) Operation on object of type java.security.MessageDigest object not completed. Expected call to <java.security.MessageDigest: byte[] digest(byte[])>, update
- - yes MessageDigest android.databinding.repacked.apache.commons.codec.digest.DigestUtils.updateDigest(Ljava/security/MessageDigest;Ljava/io/InputStream;)Ljava/security/MessageDigest; virtualinvoke r0.<java.security.MessageDigest: void update(byte[],int,int)>(r2, varReplacer24508, i0) Third parameter (with value -1)Variable pre_lenmust be greater than pre_off
- - yes SecretKeySpec android.databinding.repacked.apache.commons.codec.digest.HmacUtils.getInitializedMac(Ljava/lang/String;[B)Ljavax/crypto/Mac; specialinvoke $r3.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>(r1, r0) First parameter was not properly generated as prepared Key Material
- - yes SecretKeySpec android.databinding.repacked.google.common.hash.Hashing.hmacMd5([B)Landroid/databinding/repacked/google/common/hash/HashFunction; specialinvoke $r1.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r3, varReplacer7782) First parameter was not properly generated as prepared Key Material
- - yes SecretKeySpec android.databinding.repacked.google.common.hash.Hashing.hmacSha1([B)Landroid/databinding/repacked/google/common/hash/HashFunction; specialinvoke $r1.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r3, varReplacer7785) First parameter was not properly generated as prepared Key Material
- - yes SecretKeySpec android.databinding.repacked.google.common.hash.Hashing.hmacSha256([B)Landroid/databinding/repacked/google/common/hash/HashFunction; specialinvoke $r1.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r3, varReplacer7788) First parameter was not properly generated as prepared Key Material
- - yes SecretKeySpec android.databinding.repacked.google.common.hash.Hashing.hmacSha512([B)Landroid/databinding/repacked/google/common/hash/HashFunction; specialinvoke $r1.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r3, varReplacer7791) First parameter was not properly generated as prepared Key Material
- - yes MessageDigest android.databinding.repacked.google.common.hash.MessageDigestHashFunction$SerializedForm.readResolve()Ljava/lang/Object; specialinvoke $r1.<android.databinding.repacked.google.common.hash.MessageDigestHashFunction: void <init>(java.lang.String,int,java.lang.String)>($r3, $i0, $r2) Operation on object of type java.security.MessageDigest object not completed. Expected call to digest, update
3.0.1 no       yes MessageDigest android.databinding.repacked.apache.commons.codec.digest.DigestUtils.getDigest(Ljava/lang/String;)Ljava/security/MessageDigest; $r2 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(r0) First parameter (with value "MD2") should be any of {SHA-256, SHA-384, SHA-512}
- - yes MessageDigest android.databinding.repacked.apache.commons.codec.digest.DigestUtils.md2(Ljava/io/InputStream;)[B $r3 = virtualinvoke $r2.<java.security.MessageDigest: byte[] digest()>() Unexpected call to method <java.security.MessageDigest: byte[] digest()> on object of type java.security.MessageDigest. Expect a call to one of the following methods <java.security.MessageDigest: void update(byte[])>,<java.security.MessageDigest: void update(byte[],int,int)>,<java.security.MessageDigest: byte[] digest(byte[])>,<java.security.MessageDigest: void update(java.nio.ByteBuffer)>,<java.security.MessageDigest: void update(byte)>
- - yes MessageDigest android.databinding.repacked.apache.commons.codec.digest.DigestUtils.sha384(Ljava/io/InputStream;)[B $r2 = staticinvoke <android.databinding.repacked.apache.commons.codec.digest.DigestUtils: byte[] digest(java.security.MessageDigest,java.io.InputStream)>($r1, r0) Operation on object of type java.security.MessageDigest object not completed. Expected call to <java.security.MessageDigest: byte[] digest(byte[])>, update
- - yes MessageDigest android.databinding.repacked.apache.commons.codec.digest.DigestUtils.updateDigest(Ljava/security/MessageDigest;Ljava/io/InputStream;)Ljava/security/MessageDigest; virtualinvoke r0.<java.security.MessageDigest: void update(byte[],int,int)>(r2, varReplacer24510, i0) Third parameter (with value -1)Variable pre_lenmust be greater than pre_off
- - yes SecretKeySpec android.databinding.repacked.apache.commons.codec.digest.HmacUtils.getInitializedMac(Ljava/lang/String;[B)Ljavax/crypto/Mac; specialinvoke $r3.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>(r1, r0) First parameter was not properly generated as prepared Key Material
- - yes Mac android.databinding.repacked.apache.commons.codec.digest.HmacUtils.updateHmac(Ljavax/crypto/Mac;Ljava/io/InputStream;)Ljavax/crypto/Mac; virtualinvoke r0.<javax.crypto.Mac: void update(byte[],int,int)>(r2, varReplacer24531, i0) Second parameter (with value 0)Variable offsetmust be lesser than len
- - yes SecretKeySpec android.databinding.repacked.google.common.hash.Hashing.hmacMd5([B)Landroid/databinding/repacked/google/common/hash/HashFunction; specialinvoke $r1.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r3, varReplacer7782) First parameter was not properly generated as prepared Key Material
- - yes SecretKeySpec android.databinding.repacked.google.common.hash.Hashing.hmacSha1([B)Landroid/databinding/repacked/google/common/hash/HashFunction; specialinvoke $r1.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r3, varReplacer7785) First parameter was not properly generated as prepared Key Material
- - yes SecretKeySpec android.databinding.repacked.google.common.hash.Hashing.hmacSha256([B)Landroid/databinding/repacked/google/common/hash/HashFunction; specialinvoke $r1.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r3, varReplacer7788) First parameter was not properly generated as prepared Key Material
- - yes SecretKeySpec android.databinding.repacked.google.common.hash.Hashing.hmacSha512([B)Landroid/databinding/repacked/google/common/hash/HashFunction; specialinvoke $r1.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r3, varReplacer7791) First parameter was not properly generated as prepared Key Material
- - yes MessageDigest android.databinding.repacked.google.common.hash.MessageDigestHashFunction.newHasher()Landroid/databinding/repacked/google/common/hash/Hasher; $r2 = staticinvoke <java.security.MessageDigest: java.security.MessageDigest getInstance(java.lang.String)>(r0) First parameter (with value "SHA-512") should be any of {SHA-256, SHA-384, SHA-512}
3.1.0 no       no
3.1.1 no       no
3.1.2 no       no
3.1.3 no       no
3.1.4 no       no