hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-18 18:10:39 +01:00
Code Issues Packages Projects Releases Wiki Activity

Java: Convert HttpServletRequest.get* methods to CSV based flow source

Browse Source
This commit is contained in:
Tamas Vajk
2021-03-01 11:25:25 +01:00
parent f2448cc921
commit 09bcf878f7
2 changed files with 9 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
java/ql/src/semmle/code/java/dataflow/ExternalFlow.qll
View File

@@ -111,7 +111,15 @@ private predicate sourceModelCsv(string row) {
"org.springframework.web.multipart;MultipartFile;true;getOriginalFilename;();;ReturnValue;remote", "org.springframework.web.multipart;MultipartFile;true;getOriginalFilename;();;ReturnValue;remote",
"org.springframework.web.multipart;MultipartFile;true;getResource;();;ReturnValue;remote", "org.springframework.web.multipart;MultipartFile;true;getResource;();;ReturnValue;remote",
"org.springframework.web.multipart;MultipartFile;true;getSize;();;ReturnValue;remote", "org.springframework.web.multipart;MultipartFile;true;getSize;();;ReturnValue;remote",
"org.springframework.web.multipart;MultipartFile;true;isEmpty;();;ReturnValue;remote" "org.springframework.web.multipart;MultipartFile;true;isEmpty;();;ReturnValue;remote",
// HttpServletRequest.get*
"javax.servlet.http;HttpServletRequest;false;getHeader;(String);;ReturnValue;remote",
"javax.servlet.http;HttpServletRequest;false;getHeaders;(String);;ReturnValue;remote",
"javax.servlet.http;HttpServletRequest;false;getHeaderNames;();;ReturnValue;remote",
"javax.servlet.http;HttpServletRequest;false;getPathInfo;();;ReturnValue;remote",
"javax.servlet.http;HttpServletRequest;false;getRequestURI;();;ReturnValue;remote",
"javax.servlet.http;HttpServletRequest;false;getRequestURL;();;ReturnValue;remote",
"javax.servlet.http;HttpServletRequest;false;getRemoteUser;();;ReturnValue;remote"
] ]
} }

7
java/ql/src/semmle/code/java/dataflow/FlowSources.qll
View File

@@ -214,13 +214,6 @@ class DatabaseInput extends LocalUserInput {
private class RemoteTaintedMethod extends Method { private class RemoteTaintedMethod extends Method {
RemoteTaintedMethod() { RemoteTaintedMethod() {
this instanceof HttpServletRequestGetHeaderMethod or
this instanceof HttpServletRequestGetPathMethod or
this instanceof HttpServletRequestGetHeadersMethod or
this instanceof HttpServletRequestGetHeaderNamesMethod or
this instanceof HttpServletRequestGetRequestURIMethod or
this instanceof HttpServletRequestGetRequestURLMethod or
this instanceof HttpServletRequestGetRemoteUserMethod or
this instanceof PlayRequestGetMethod or this instanceof PlayRequestGetMethod or
this instanceof SpringWebRequestGetMethod or this instanceof SpringWebRequestGetMethod or
this instanceof SpringRestTemplateResponseEntityMethod or this instanceof SpringRestTemplateResponseEntityMethod or