Merge pull request #22 from SpringKill-team/feature/register

feature: Problem register #5 #12

Author: springkill

.run/Run Plugin.run.xml

@@ -14,7 +14,7 @@
           <option value="runIde" />
         </list>
       </option>
-      <option name="vmOptions" value="" />
+      <option name="vmOptions" value="-Xmx10240m" />
     </ExternalSystemSettings>
     <ExternalSystemDebugServerProcess>true</ExternalSystemDebugServerProcess>
     <ExternalSystemReattachDebugProcess>true</ExternalSystemReattachDebugProcess>

src/main/kotlin/org/skgroup/securityinspector/actions/BuildCallGraphAction.kt

@@ -3,8 +3,13 @@ package org.skgroup.securityinspector.actions
 import com.intellij.openapi.actionSystem.AnAction
 import com.intellij.openapi.actionSystem.AnActionEvent
 import com.intellij.openapi.actionSystem.CommonDataKeys
+import com.intellij.openapi.application.ApplicationManager
+import com.intellij.openapi.application.readAction
 import com.intellij.openapi.project.Project
 import com.intellij.psi.PsiMethod
+import kotlinx.coroutines.CoroutineScope
+import kotlinx.coroutines.Dispatchers
+import kotlinx.coroutines.launch
 import org.skgroup.securityinspector.ui.service.CallGraphGenerator
 import org.skgroup.securityinspector.ui.service.SecurityInspectorProjectService
 
@@ -25,9 +30,19 @@ class BuildCallGraphAction : AnAction() {
     }
 
     override fun update(e: AnActionEvent) {
-        val psiElement = e.getData(CommonDataKeys.PSI_ELEMENT)
-        //当选中的是方法时，添加右键菜单
-        e.presentation.isEnabledAndVisible = psiElement is PsiMethod
+//        val project = e.project
+//        val psiElement = e.getData(CommonDataKeys.PSI_ELEMENT)
+
+        CoroutineScope(Dispatchers.Default).launch {
+            val isMethod = readAction {
+                val psiElement = e.getData(CommonDataKeys.PSI_ELEMENT)
+                psiElement is PsiMethod
+            }
+
+            ApplicationManager.getApplication().invokeLater {
+                e.presentation.isEnabledAndVisible = isMethod
+            }
+        }
     }
 
     private fun buildCallGraphForMethod(project: Project?, method: PsiMethod) {

src/main/kotlin/org/skgroup/securityinspector/actions/SearchAsSinkAction.kt

@@ -0,0 +1,66 @@
+package org.skgroup.securityinspector.actions
+
+import com.intellij.openapi.actionSystem.AnAction
+import com.intellij.openapi.actionSystem.AnActionEvent
+import com.intellij.openapi.actionSystem.CommonDataKeys
+import com.intellij.openapi.application.ApplicationManager
+import com.intellij.openapi.application.readAction
+import com.intellij.openapi.project.Project
+import com.intellij.psi.PsiMethod
+import kotlinx.coroutines.CoroutineScope
+import kotlinx.coroutines.Dispatchers
+import kotlinx.coroutines.launch
+import org.skgroup.securityinspector.ui.service.CallGraphSearcher
+import org.skgroup.securityinspector.ui.service.SecurityInspectorProjectService
+
+/**
+ * 类描述：SearchAsSinkAction 类用于增加一个右键菜单，直接显示调用链。
+ *
+ * @author springkill
+ * @version 1.0
+ * @since 2025/3/9
+ */
+class SearchAsSinkAction : AnAction() {
+    override fun actionPerformed(e: AnActionEvent) {
+        val project = e.getData(CommonDataKeys.PROJECT)
+        val psiElement = e.getData(CommonDataKeys.PSI_ELEMENT)
+
+        if (psiElement is PsiMethod) {
+            searchAsSink(project, psiElement)
+        }
+    }
+
+    override fun update(e: AnActionEvent) {
+//        val project = e.project
+//        val psiElement = e.getData(CommonDataKeys.PSI_ELEMENT)
+
+        CoroutineScope(Dispatchers.Default).launch {
+
+            val isMethod = readAction {
+                val psiElement = e.getData(CommonDataKeys.PSI_ELEMENT)
+                psiElement is PsiMethod
+            }
+
+            ApplicationManager.getApplication().invokeLater {
+                e.presentation.isEnabledAndVisible = isMethod
+            }
+        }
+    }
+
+    private fun searchAsSink(project: Project?, method: PsiMethod) {
+        val service = project?.getService(SecurityInspectorProjectService::class.java)
+
+        val mainToolWindow = service?.mainToolWindow ?: return
+        val callGraphPanel = mainToolWindow.analysisPanel
+        val uiComponents = callGraphPanel.uiComponents
+        uiComponents.sinkField.text = method.name
+        CallGraphSearcher.search(
+            uiComponents.sourceField,
+            uiComponents.sinkField,
+            uiComponents.infoArea,
+            uiComponents.searchResultRootNode,
+            uiComponents.searchResultTreeModel,
+            project
+        )
+    }
+}

src/main/kotlin/org/skgroup/securityinspector/analysis/ast/ProjectIssue.kt

@@ -0,0 +1,18 @@
+package org.skgroup.securityinspector.analysis.ast
+
+import com.intellij.openapi.vfs.VirtualFile
+import org.skgroup.securityinspector.enums.SinkCallMode
+
+/**
+ * 类描述：ProjectIssue 类用于存储SinkFinder的跳转信息。
+ *
+ * @author springkill
+ * @version 1.0
+ */
+data class ProjectIssue(
+    val file: VirtualFile,
+    val line: Int,
+    val type: String,
+    val subType: String,
+    val callMode: SinkCallMode
+)

src/main/kotlin/org/skgroup/securityinspector/enums/SinkCallMode.kt

@@ -0,0 +1,13 @@
+package org.skgroup.securityinspector.enums
+
+/**
+ * 枚举描述：SinkCallMode 枚举用于对不同的高亮显示进行判断。
+ *
+ * @author springkill
+ * @version 1.0
+ */
+enum class SinkCallMode {
+    SINGLE_SINK,
+    HAS_CALL,
+    REACH_SOURCE
+}

src/main/kotlin/org/skgroup/securityinspector/ui/IssueViewWindow.kt

@@ -0,0 +1,89 @@
+package org.skgroup.securityinspector.ui
+
+import com.intellij.openapi.application.ApplicationManager
+import com.intellij.openapi.fileEditor.OpenFileDescriptor
+import com.intellij.openapi.progress.ProgressIndicator
+import com.intellij.openapi.progress.ProgressManager
+import com.intellij.openapi.progress.Task
+import com.intellij.openapi.project.Project
+import com.intellij.openapi.vfs.VirtualFile
+import com.intellij.openapi.wm.ToolWindow
+import com.intellij.openapi.wm.ToolWindowFactory
+import com.intellij.ui.components.JBScrollPane
+import com.intellij.ui.content.ContentFactory
+import com.intellij.ui.table.JBTable
+import org.skgroup.securityinspector.ui.component.FirstColumnRenderer
+import org.skgroup.securityinspector.ui.component.HighlightRenderer
+import org.skgroup.securityinspector.utils.GraphUtils.collectProjectIssues
+import java.awt.BorderLayout
+import java.awt.event.MouseAdapter
+import java.awt.event.MouseEvent
+import javax.swing.JButton
+import javax.swing.JPanel
+import javax.swing.table.DefaultTableModel
+
+/**
+ * 类描述：IssueViewWindow 类用于创建SinkFinder。
+ *
+ * @author springkill
+ * @version 1.0
+ */
+class IssueViewWindow : ToolWindowFactory {
+
+    override fun createToolWindowContent(project: Project, toolWindow: ToolWindow) {
+        val panel = JPanel(BorderLayout())
+        val tableModel = DefaultTableModel(arrayOf("File", "Line", "Type", "SubType", "CallMode"), 0)
+        val refreshButton = JButton("Init Sink")
+        val table = object : JBTable(tableModel) {
+            override fun isCellEditable(row: Int, column: Int): Boolean {
+                return false
+            }
+        }
+
+        table.apply {
+            columnModel.getColumn(0).cellRenderer = FirstColumnRenderer()
+            columnModel.getColumn(4).cellRenderer = HighlightRenderer()
+            table.setAutoCreateRowSorter(true)
+            addMouseListener(object : MouseAdapter() {
+                override fun mouseClicked(e: MouseEvent) {
+                    if (e.clickCount == 2) {
+                        val selectedRow = table.selectedRow
+                        if (selectedRow != -1) {
+
+                            val file = tableModel.getValueAt(selectedRow, 0) as VirtualFile
+                            val line = tableModel.getValueAt(selectedRow, 1).toString().toInt()
+
+                            OpenFileDescriptor(project, file, line, 0).navigate(true)
+                        }
+                    }
+                }
+            })
+        }
+
+        refreshButton.apply {
+            addActionListener {
+                ProgressManager.getInstance().run(object : Task.Backgroundable(project, "Finding sink method", true) {
+                    override fun run(indicator: ProgressIndicator) {
+                        collectProjectIssues(project, callback = { issues ->
+
+                            ApplicationManager.getApplication().invokeLater {
+                                tableModel.rowCount = 0
+                                issues.forEach { issue ->
+                                    tableModel.addRow(arrayOf(issue.file, issue.line.toString(), issue.type, issue.subType, issue.callMode))
+                                }
+                            }
+                        })
+                    }
+                })
+            }
+        }
+
+        panel.add(JBScrollPane(table), BorderLayout.CENTER)
+        panel.add(refreshButton, BorderLayout.SOUTH)
+
+        val contentFactory = ContentFactory.getInstance()
+        val content = contentFactory.createContent(panel, "", false)
+        toolWindow.contentManager.addContent(content)
+    }
+
+}

src/main/kotlin/org/skgroup/securityinspector/ui/component/CallGraphUIComponents.kt

@@ -3,6 +3,7 @@ package org.skgroup.securityinspector.ui.component
 import com.intellij.openapi.fileEditor.OpenFileDescriptor
 import com.intellij.openapi.project.Project
 import com.intellij.openapi.ui.ComboBox
+import com.intellij.ui.Gray
 import com.intellij.ui.JBSplitter
 import com.intellij.ui.components.*
 import com.intellij.ui.treeStructure.Tree
@@ -52,7 +53,7 @@ class CallGraphUIComponents(val project: Project) {
 
     private fun createProgressBar() = JProgressBar().apply {
         isStringPainted = true
-        background = Color(240, 240, 240)
+        background = Gray._240
         font = Font("SansSerif", Font.BOLD, 12)
         border = BorderFactory.createEmptyBorder(2, 10, 2, 10)
         preferredSize = Dimension(300, 20)
@@ -187,14 +188,6 @@ class CallGraphUIComponents(val project: Project) {
                     // 假设这里存了一个 MethodNode或字符串
                     val userObject = node.userObject
 
-                    // 如果 userObject 是个 MethodNode，就取 node.name
-                    // 如果只是字符串，就直接复制它
-                    val textToCopy = when (userObject) {
-                        is MethodNode -> userObject.name
-                        is String -> userObject
-                        else -> return
-                    }
-
                     if(userObject is MethodNode){
                         val offset = userObject.sourceSpan
                         // TODO 优化跳转到源码/Class的位置
@@ -204,14 +197,6 @@ class CallGraphUIComponents(val project: Project) {
                         }
                     }
 
-                    // 把 textToCopy 写进剪贴板
-                    val clipboard = Toolkit.getDefaultToolkit().systemClipboard
-                    val selection = java.awt.datatransfer.StringSelection(textToCopy)
-                    clipboard.setContents(selection, selection)
-
-                    // 如果想给个提示，可以在这里加日志或弹窗
-                    infoArea.append("Copied $textToCopy\n")
-//                     Messages.showInfoMessage("Copied $textToCopy", "Clipboard")
                 }
             }
         })

src/main/kotlin/org/skgroup/securityinspector/ui/component/FirstColumnRenderer.kt

@@ -0,0 +1,29 @@
+package org.skgroup.securityinspector.ui.component
+
+import com.intellij.openapi.vfs.VirtualFile
+import java.awt.Component
+import javax.swing.JTable
+import javax.swing.table.DefaultTableCellRenderer
+
+/**
+ * 类描述：FirstColumnRenderer 类用于创建一个渲染器，渲染sinkfinder第一列的内容。
+ *
+ * @author springkill
+ * @version 1.0
+ */
+class FirstColumnRenderer : DefaultTableCellRenderer() {
+    override fun getTableCellRendererComponent(
+        table: JTable?, value: Any?, isSelected: Boolean, hasFocus: Boolean, row: Int, column: Int
+    ): Component {
+        val component = super.getTableCellRendererComponent(table, value, isSelected, hasFocus, row, column)
+
+        if (column == 0) {
+            val file = value as? VirtualFile
+            if (file != null) {
+                text = file.name
+            }
+        }
+
+        return component
+    }
+}

src/main/kotlin/org/skgroup/securityinspector/ui/component/HighlightRenderer.kt

@@ -0,0 +1,49 @@
+package org.skgroup.securityinspector.ui.component
+
+import com.intellij.ui.JBColor
+import org.skgroup.securityinspector.enums.SinkCallMode
+import org.skgroup.securityinspector.enums.SinkCallMode.*
+import java.awt.Color
+import java.awt.Component
+import javax.swing.JTable
+import javax.swing.table.DefaultTableCellRenderer
+import javax.swing.table.DefaultTableModel
+
+/**
+ * 类描述：HighlightRenderer 类用于创建一个渲染器，用于高亮显示。
+ *
+ * @author springkill
+ * @version 1.0
+ */
+class HighlightRenderer : DefaultTableCellRenderer() {
+    override fun getTableCellRendererComponent(
+        table: JTable?, value: Any?, isSelected: Boolean, hasFocus: Boolean, row: Int, column: Int
+    ): Component {
+        val component = super.getTableCellRendererComponent(table, value, isSelected, hasFocus, row, column)
+
+        // 获取当前行的数据
+        val model = table?.model as? DefaultTableModel
+        val rowData = model?.getValueAt(row, column) as? SinkCallMode
+
+        when (rowData) {
+            SINGLE_SINK -> {
+                background = JBColor(Color(204, 255, 204), Color(102, 153, 102))
+                foreground = JBColor.BLACK
+            }
+            REACH_SOURCE -> {
+                background = JBColor(Color(255, 204, 204), Color(232, 108, 108))
+                foreground = JBColor.BLACK
+            }
+            HAS_CALL -> {
+                background = JBColor(Color(225, 229, 160), Color(240, 255, 96))
+                foreground = JBColor.BLACK
+            }
+            null -> {
+                background = table?.background ?: JBColor.WHITE
+                foreground = table?.foreground ?: JBColor.BLACK
+            }
+        }
+
+        return component
+    }
+}