rename LDAP to Ldap

erik-krogh · erik-krogh · commit 2e912ee28ec0 · 2021-10-27T19:05:56.000+02:00
diff --git a/javascript/ql/lib/javascript.qll b/javascript/ql/lib/javascript.qll
@@ -99,7 +99,7 @@ import semmle.javascript.frameworks.History
 import semmle.javascript.frameworks.Immutable
 import semmle.javascript.frameworks.Knex
 import semmle.javascript.frameworks.LazyCache
-import semmle.javascript.frameworks.LDAPjs
+import semmle.javascript.frameworks.LdapJS
 import semmle.javascript.frameworks.LodashUnderscore
 import semmle.javascript.frameworks.Logging
 import semmle.javascript.frameworks.HttpFrameworks
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/LdapJS.qll b/javascript/ql/lib/semmle/javascript/frameworks/LdapJS.qll
@@ -7,7 +7,7 @@ import javascript
 /**
  * A module providing sinks and sanitizers for LDAP injection.
  */
-module LDAPjs {
+module LdapJS {
   /** Gets a reference to the ldapjs library. */
   API::Node ldapjs() { result = API::moduleImport("ldapjs") }
 
@@ -43,7 +43,7 @@ module LDAPjs {
     abstract DataFlow::Node getOutput();
   }
 
-  /** A call to the ldap utility method "parseFilter". */
+  /** A call to the LDAPjs utility method "parseFilter". */
   private class ParseFilter extends TaintPreservingLdapFilterStep, API::CallNode {
     ParseFilter() { this = ldapjs().getMember("parseFilter").getACall() }
 
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/SqlInjectionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/SqlInjectionCustomizations.qll
@@ -48,13 +48,13 @@ module SqlInjection {
   class LdapJSSink extends Sink {
     LdapJSSink() {
       // A distinguished name (DN) used in a call to the client API.
-      this = any(LDAPjs::ClientCall call).getArgument(0)
+      this = any(LdapJS::ClientCall call).getArgument(0)
       or
       // A search options object, which contains a filter and a baseDN.
-      this = any(LDAPjs::SearchOptions opt).getARhs()
+      this = any(LdapJS::SearchOptions opt).getARhs()
       or
       // A call to "parseDN", which parses a DN from a string.
-      this = LDAPjs::ldapjs().getMember("parseDN").getACall().getArgument(0)
+      this = LdapJS::ldapjs().getMember("parseDN").getACall().getArgument(0)
     }
   }
 
@@ -64,9 +64,9 @@ module SqlInjection {
    * A chain of replace calls that replaces all unsafe chars for ldap injection.
    * For simplicity it's used as a sanitizer for all of `js/sql-injection`.
    */
-  class LDAPStringSanitizer extends Sanitizer,
+  class LdapStringSanitizer extends Sanitizer,
     IncompleteBlacklistSanitizer::StringReplaceCallSequence {
-    LDAPStringSanitizer() {
+    LdapStringSanitizer() {
       forall(string char | char = ["*", "(", ")", "\\", "/"] |
         this.getAMember().getAReplacedString() = char
       )
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/SqlInjectionQuery.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/SqlInjectionQuery.qll
@@ -26,7 +26,7 @@ class Configuration extends TaintTracking::Configuration {
   }
 
   override predicate isAdditionalTaintStep(DataFlow::Node pred, DataFlow::Node succ) {
-    exists(LDAPjs::TaintPreservingLdapFilterStep filter |
+    exists(LdapJS::TaintPreservingLdapFilterStep filter |
       pred = filter.getInput() and
       succ = filter.getOutput()
     )

Original file line number	Diff line number	Diff line change
`@@ -26,7 +26,7 @@ class Configuration extends TaintTracking::Configuration {`
`26`	`26`	`}`
`27`	`27`
`28`	`28`	`override predicate isAdditionalTaintStep(DataFlow::Node pred, DataFlow::Node succ) {`
`29`		`- exists(LDAPjs::TaintPreservingLdapFilterStep filter \|`
	`29`	`+ exists(LdapJS::TaintPreservingLdapFilterStep filter \|`
`30`	`30`	`pred = filter.getInput() and`
`31`	`31`	`succ = filter.getOutput()`
`32`	`32`	`)`