Java: add remote user input for Apache Thrift framework

2026-03-05 15:16:47 +01:00 · 2019-02-05 21:20:29 -05:00
parent 751bbbf583
commit fc4aa16905
2 changed files with 36 additions and 0 deletions
--- a/java/ql/src/semmle/code/java/dataflow/FlowSources.qll
+++ b/java/ql/src/semmle/code/java/dataflow/FlowSources.qll
@@ -19,6 +19,7 @@ import semmle.code.java.frameworks.android.Intent
 import semmle.code.java.frameworks.SpringWeb
 import semmle.code.java.frameworks.Guice
 import semmle.code.java.frameworks.struts.StrutsActions
+import semmle.code.java.frameworks.Thrift

 /** Class for `tainted` user input. */
 abstract class UserInput extends DataFlow::Node { }
@@ -78,6 +79,8 @@ class RemoteUserInput extends UserInput {
    )
    or
    exists(Struts2ActionSupportClass c | c.getASetterMethod().getField() = this.asExpr().(FieldRead).getField())
+    or
+    exists(ThriftIface i | i.getAnImplementingMethod().getAParameter() = this.asParameter())
  }

  /**