Python: Inline LDAPImproperAuth.qll

Since having it inlined makes the query a bit easier to read. We obviously need to share it if we want to share this predicate, but for now that does not seem to be the case.
2026-04-30 03:05:15 +02:00 · 2021-06-28 10:51:31 +02:00
parent b33f6a315c
commit 4a2c99a021
2 changed files with 14 additions and 22 deletions
--- a/python/ql/src/experimental/Security/CWE-287/ImproperLdapAuth.ql
+++ b/python/ql/src/experimental/Security/CWE-287/ImproperLdapAuth.ql
@@ -11,7 +11,20 @@

 // Determine precision above
 import python
-import experimental.semmle.python.security.LDAPImproperAuth
+import experimental.semmle.python.Concepts
+import semmle.python.dataflow.new.DataFlow
+
+predicate authenticatesImproperly(LDAPBind ldapBind) {
+  (
+    DataFlow::localFlow(DataFlow::exprNode(any(None noneName)), ldapBind.getPassword()) or
+    not exists(ldapBind.getPassword())
+  )
+  or
+  exists(StrConst emptyString |
+    emptyString.getText() = "" and
+    DataFlow::localFlow(DataFlow::exprNode(emptyString), ldapBind.getPassword())
+  )
+}

 from LDAPBind ldapBind
 where authenticatesImproperly(ldapBind)
--- a/python/ql/src/experimental/semmle/python/security/LDAPImproperAuth.qll
+++ b/python/ql/src/experimental/semmle/python/security/LDAPImproperAuth.qll
@@ -1,21 +0,0 @@
-/**
- * Provides a taint-tracking configuration for detecting LDAP improper authentication vulnerabilities
- */
-
-import python
-import experimental.semmle.python.Concepts
-import semmle.python.dataflow.new.DataFlow
-import semmle.python.dataflow.new.TaintTracking
-import semmle.python.dataflow.new.RemoteFlowSources
-
-predicate authenticatesImproperly(LDAPBind ldapBind) {
-  (
-    DataFlow::localFlow(DataFlow::exprNode(any(None noneName)), ldapBind.getPassword()) or
-    not exists(ldapBind.getPassword())
-  )
-  or
-  exists(StrConst emptyString |
-    emptyString.getText() = "" and
-    DataFlow::localFlow(DataFlow::exprNode(emptyString), ldapBind.getPassword())
-  )
-}