Fix CallNeedsPermissionDetector to scan only annotated classes (#536)

* Update BUILD_TOOLS_VERSION.

* Add test for the case.

* Fix to scan only annotated classes.

#502

Author: hotchemi

gradle.properties

@@ -33,7 +33,7 @@ COMMONS_IO_VERSION      = 2.6
 
 # Android configuration
 COMPILE_SDK_VERSION     = android-28
-BUILD_TOOLS_VERSION     = 28.0.0-rc2
+BUILD_TOOLS_VERSION     = 28.0.3
 TARGET_SDK_VERSION      = 28
 MIN_SDK_VERSION         = 14
 

lint/src/main/java/permissions/dispatcher/CallNeedsPermissionDetector.java

@@ -9,6 +9,7 @@
 import com.android.tools.lint.detector.api.Scope;
 import com.android.tools.lint.detector.api.Severity;
 
+import org.jetbrains.annotations.NotNull;
 import org.jetbrains.uast.UAnnotation;
 import org.jetbrains.uast.UCallExpression;
 import org.jetbrains.uast.UClass;
@@ -33,17 +34,18 @@ public final class CallNeedsPermissionDetector extends Detector implements Detec
             Severity.ERROR,
             new Implementation(CallNeedsPermissionDetector.class, EnumSet.of(Scope.ALL_JAVA_FILES)));
 
-    static Set<String> annotatedMethods = new HashSet<String>();
+    private static Set<String> annotatedMethods = new HashSet<String>();
 
     @Override
     public List<Class<? extends UElement>> getApplicableUastTypes() {
         return Collections.<Class<? extends UElement>>singletonList(UClass.class);
     }
 
     @Override
-    public UElementHandler createUastHandler(final JavaContext context) {
+    public UElementHandler createUastHandler(@NotNull final JavaContext context) {
         return new UElementHandler() {
-            @Override public void visitClass(UClass node) {
+            @Override
+            public void visitClass(@NotNull UClass node) {
                 node.accept(new AnnotationChecker(context));
             }
         };
@@ -53,13 +55,24 @@ private static class AnnotationChecker extends AbstractUastVisitor {
 
         private final JavaContext context;
 
+        private boolean hasRuntimePermissionAnnotation;
+
         private AnnotationChecker(JavaContext context) {
             this.context = context;
         }
 
         @Override
-        public boolean visitCallExpression(UCallExpression node) {
-            if (isGeneratedFiles(context)) {
+        public boolean visitAnnotation(@NotNull UAnnotation node) {
+            if (!"permissions.dispatcher.RuntimePermissions".equals(node.getQualifiedName())) {
+                return true;
+            }
+            hasRuntimePermissionAnnotation = true;
+            return true;
+        }
+
+        @Override
+        public boolean visitCallExpression(@NotNull UCallExpression node) {
+            if (isGeneratedFiles(context) || !hasRuntimePermissionAnnotation) {
                 return true;
             }
             if (node.getReceiver() == null && annotatedMethods.contains(node.getMethodName())) {
@@ -69,7 +82,7 @@ public boolean visitCallExpression(UCallExpression node) {
         }
 
         @Override
-        public boolean visitMethod(UMethod node) {
+        public boolean visitMethod(@NotNull UMethod node) {
             if (isGeneratedFiles(context)) {
                 return super.visitMethod(node);
             }
@@ -87,13 +100,11 @@ private static boolean isGeneratedFiles(JavaContext context) {
                 return false;
             }
             List<UClass> classes = sourceFile.getClasses();
-            if (!classes.isEmpty()) {
-                String qualifiedName = classes.get(0).getName();
-                if (qualifiedName != null && qualifiedName.contains("PermissionsDispatcher")) {
-                    return true;
-                }
+            if (classes.isEmpty()) {
+                return false;
             }
-            return false;
+            String qualifiedName = classes.get(0).getName();
+            return qualifiedName != null && qualifiedName.contains("PermissionsDispatcher");
         }
     }
 }

lint/src/test/java/permissions/dispatcher/CallNeedsPermissionDetectorKtTest.kt

@@ -7,6 +7,7 @@ import com.android.tools.lint.checks.infrastructure.TestFiles.java
 import com.android.tools.lint.checks.infrastructure.TestFiles.kt
 import com.android.tools.lint.checks.infrastructure.TestLintTask.lint
 import permissions.dispatcher.Utils.onNeedsPermission
+import permissions.dispatcher.Utils.runtimePermission
 
 class CallNeedsPermissionDetectorKtTest {
 
@@ -17,7 +18,9 @@ class CallNeedsPermissionDetectorKtTest {
                 package com.example
 
                 import permissions.dispatcher.NeedsPermission
+                import permissions.dispatcher.RuntimePermissions
 
+                @RuntimePermissions
                 class Foo {
                     @NeedsPermission("Test")
                     fun fooBar() {
@@ -30,14 +33,15 @@ class CallNeedsPermissionDetectorKtTest {
                 """.trimMargin()
 
         val expectedText = """
-            |src/com/example/Foo.kt:11: Error: Trying to access permission-protected method directly [CallNeedsPermission]
+            |src/com/example/Foo.kt:13: Error: Trying to access permission-protected method directly [CallNeedsPermission]
             |                        fooBar()
             |                        ~~~~~~~~
             |1 errors, 0 warnings
             """.trimMargin()
 
         lint()
                 .files(
+                        java(runtimePermission),
                         java(onNeedsPermission),
                         kt(foo))
                 .issues(CallNeedsPermissionDetector.ISSUE)
@@ -65,7 +69,9 @@ class CallNeedsPermissionDetectorKtTest {
                 package com.example
 
                 import permissions.dispatcher.NeedsPermission
+                import permissions.dispatcher.RuntimePermissions
 
+                @RuntimePermissions
                 class Baz {
                     @NeedsPermission("Test")
                     fun fooBar() {
@@ -78,11 +84,48 @@ class CallNeedsPermissionDetectorKtTest {
 
         lint()
                 .files(
+                        java(runtimePermission),
                         java(onNeedsPermission),
                         kt(foo),
                         kt(baz))
                 .issues(CallNeedsPermissionDetector.ISSUE)
                 .run()
                 .expectClean()
     }
+
+    @Test
+    @Throws(Exception::class)
+    fun issues502() {
+        @Language("kotlin") val foo = """
+            package com.example
+
+            import permissions.dispatcher.NeedsPermission
+            import permissions.dispatcher.RuntimePermissions
+
+            @RuntimePermissions
+            class Foo: AppCompatActivity  {
+                @NeedsPermission(Manifest.permission.READ_SMS)
+                fun requestOTP() {
+                    PhoneVerificationInputFragment().requestOTP()
+                }
+            }
+
+            class FooFragment: Fragment {
+                fun resendOTP() {
+                    requestOTP()
+                }
+                private fun requestOTP() {
+                }
+            }
+        """.trimMargin()
+
+        lint()
+                .files(
+                        java(runtimePermission),
+                        java(onNeedsPermission),
+                        kt(foo))
+                .issues(CallNeedsPermissionDetector.ISSUE)
+                .run()
+                .expectClean()
+    }
 }

lint/src/test/java/permissions/dispatcher/CallNeedsPermissionDetectorTest.kt

@@ -6,6 +6,7 @@ import org.junit.Test
 import com.android.tools.lint.checks.infrastructure.TestFiles.java
 import com.android.tools.lint.checks.infrastructure.TestLintTask.lint
 import permissions.dispatcher.Utils.onNeedsPermission
+import permissions.dispatcher.Utils.runtimePermission
 
 class CallNeedsPermissionDetectorTest {
 
@@ -16,7 +17,9 @@ class CallNeedsPermissionDetectorTest {
                 package com.example;
 
                 import permissions.dispatcher.NeedsPermission;
+                import permissions.dispatcher.RuntimePermissions;
 
+                @RuntimePermissions
                 public class Foo {
                     @NeedsPermission("Test")
                     void fooBar() {
@@ -29,14 +32,15 @@ class CallNeedsPermissionDetectorTest {
                 """.trimMargin()
 
         val expectedText = """
-            |src/com/example/Foo.java:11: Error: Trying to access permission-protected method directly [CallNeedsPermission]
+            |src/com/example/Foo.java:13: Error: Trying to access permission-protected method directly [CallNeedsPermission]
             |                        fooBar();
             |                        ~~~~~~~~
             |1 errors, 0 warnings
             """.trimMargin()
 
         lint()
                 .files(
+                        java(runtimePermission),
                         java(onNeedsPermission),
                         java(foo))
                 .issues(CallNeedsPermissionDetector.ISSUE)
@@ -64,7 +68,9 @@ class CallNeedsPermissionDetectorTest {
                 package com.example;
 
                 import permissions.dispatcher.NeedsPermission;
+                import permissions.dispatcher.RuntimePermissions;
 
+                @RuntimePermissions
                 public class Baz {
                     @NeedsPermission("Test")
                     void fooBar() {
@@ -84,4 +90,40 @@ class CallNeedsPermissionDetectorTest {
                 .run()
                 .expectClean()
     }
+
+    @Test
+    @Throws(Exception::class)
+    fun issues502() {
+        @Language("JAVA") val foo = """
+            package com.example;
+
+            import permissions.dispatcher.NeedsPermission;
+            import permissions.dispatcher.RuntimePermissions;
+
+            @RuntimePermissions
+            public class Foo extends AppCompatActivity  {
+                @NeedsPermission({Manifest.permission.READ_SMS})
+                void requestOTP() {
+                    new PhoneVerificationInputFragment().requestOTP();
+                }
+            }
+
+            class FooFragment extends Fragment {
+                public void resendOTP() {
+                    requestOTP();
+                }
+                private void requestOTP() {
+                }
+            }
+        """.trimMargin()
+
+        lint()
+                .files(
+                        java(runtimePermission),
+                        java(onNeedsPermission),
+                        java(foo))
+                .issues(CallNeedsPermissionDetector.ISSUE)
+                .run()
+                .expectClean()
+    }
 }