Python: support user defined taint source

yoff · yoff · commit 07d5086b0792 · 2021-11-02T15:00:23.000+01:00
diff --git a/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep/test_async.py b/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep/test_async.py
@@ -45,7 +45,7 @@ async def test_async_for():
     iter = AsyncIter()
     taint(iter)
     async for tainted in iter:
-        ensure_tainted(tainted) # $ MISSING: tainted
+        ensure_tainted(tainted) # $ tainted
 
 
 
diff --git a/python/ql/test/experimental/meta/InlineTaintTest.qll b/python/ql/test/experimental/meta/InlineTaintTest.qll
@@ -38,6 +38,12 @@ class TestTaintTrackingConfiguration extends TaintTracking::Configuration {
         "TAINTED_STRING", "TAINTED_BYTES", "TAINTED_LIST", "TAINTED_DICT"
       ]
     or
+    // User defined sources
+    exists(CallNode call |
+      call.getFunction().(NameNode).getId() = "taint" and
+      source.(DataFlow::CfgNode).getNode() = call.getAnArg()
+    )
+    or
     source instanceof RemoteFlowSource
   }
 

Original file line number	Diff line number	Diff line change
`@@ -38,6 +38,12 @@ class TestTaintTrackingConfiguration extends TaintTracking::Configuration {`
`38`	`38`	`"TAINTED_STRING", "TAINTED_BYTES", "TAINTED_LIST", "TAINTED_DICT"`
`39`	`39`	`]`
`40`	`40`	`or`
	`41`	`+ // User defined sources`
	`42`	`+ exists(CallNode call \|`
	`43`	`+ call.getFunction().(NameNode).getId() = "taint" and`
	`44`	`+ source.(DataFlow::CfgNode).getNode() = call.getAnArg()`
	`45`	`+ )`
	`46`	`+ or`
`41`	`47`	`source instanceof RemoteFlowSource`
`42`	`48`	`}`
`43`	`49`