Java: Add HttpRequestHandler as a remote flow source

java/ql/src/semmle/code/java/dataflow/FlowSources.qll

@@ -163,6 +163,14 @@ private class GuiceRequestParameterSource extends RemoteFlowSource {
   override string getSourceType() { result = "Guice request parameter" }
 }
 
+private class ApacheHttpRequestParameterSource extends RemoteFlowSource {
+  ApacheHttpRequestParameterSource() {
+    this.asParameter() instanceof ApacheHttpRequestHandlerParameter
+  }
+
+  override string getSourceType() { result = "Apache HTTP request parameter" }
+}
+
 private class Struts2ActionSupportClassFieldReadSource extends RemoteFlowSource {
   Struts2ActionSupportClassFieldReadSource() {
     exists(Struts2ActionSupportClass c |

java/ql/src/semmle/code/java/frameworks/ApacheHttp.qll

@@ -39,3 +39,17 @@ class TypeApacheHttpRequestBuilder extends Class {
     this.hasQualifiedName("org.apache.http.client.methods", "RequestBuilder")
   }
 }
+
+/**
+ * The `request` parameter of an implementation of `org.apache.http.protocol.HttpRequestHandler.handle`
+ */
+class ApacheHttpRequestHandlerParameter extends Parameter {
+  ApacheHttpRequestHandlerParameter() {
+    exists(Method m, Interface i |
+      i.hasQualifiedName("org.apache.http.protocol", "HttpRequestHandler") and
+      m.getDeclaringType().extendsOrImplements+(i) and
+      m.hasName("handle") and
+      this = m.getParameter(0)
+    )
+  }
+}