hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00
Code Issues Packages Projects Releases Wiki Activity

make ATM anti sink model for dojo.require

Browse Source
This commit is contained in:
Esben Sparre Andreasen
2021-12-08 14:36:51 +01:00
parent 55c35659b5
commit 3248fc2e1b
2 changed files with 11 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/CoreKnowledge.qll
View File

@@ -204,5 +204,8 @@ predicate isOtherModeledArgument(DataFlow::Node n, FilteringReason reason) {
call.getCalleeName() = "next" and call.getCalleeName() = "next" and
exists(DataFlow::FunctionNode f | call = f.getLastParameter().getACall()) and exists(DataFlow::FunctionNode f | call = f.getLastParameter().getACall()) and
reason instanceof NextFunctionCallReason reason instanceof NextFunctionCallReason
or
call = DataFlow::globalVarRef("dojo").getAPropertyRead("require").getACall() and
reason instanceof DojoRequireReason
) )
} }

9
javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/FilteringReasons.qll
View File

@@ -29,7 +29,8 @@ newtype TFilteringReason =
TArgumentToArrayReason() or TArgumentToArrayReason() or
TArgumentToBuiltinGlobalVarRefReason() or TArgumentToBuiltinGlobalVarRefReason() or
TConstantReceiverReason() or TConstantReceiverReason() or
TBuiltinCallNameReason() TBuiltinCallNameReason() or
TDojoRequireReason()
/** A reason why a particular endpoint was filtered out by the endpoint filters. */ /** A reason why a particular endpoint was filtered out by the endpoint filters. */
abstract class FilteringReason extends TFilteringReason { abstract class FilteringReason extends TFilteringReason {
@@ -194,3 +195,9 @@ class BuiltinCallNameReason extends NotASinkReason, TBuiltinCallNameReason {
override int getEncoding() { result = 27 } override int getEncoding() { result = 27 }
} }
class DojoRequireReason extends NotASinkReason, TDojoRequireReason {
override string getDescription() { result = "DojoRequire" }
override int getEncoding() { result = 28 }
}