C#: Re-factor to avoid multiple explicit casts.

michaelnebel · michaelnebel · commit d160890aca0f · 2023-12-04T12:02:34.000+01:00
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/UrlRedirectQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/UrlRedirectQuery.qll
@@ -115,17 +115,21 @@ class HttpServerTransferSink extends Sink {
   }
 }
 
-private predicate isLocalUrlSanitizer(Guard g, Expr e, AbstractValue v) {
-  (
-    g.(MethodCall).getTarget().hasName("IsLocalUrl") and
-    e = g.(MethodCall).getArgument(0)
+private predicate isLocalUrlSanitizerMethodCall(MethodCall guard, Expr e, AbstractValue v) {
+  exists(Method m | m = guard.getTarget() |
+    m.hasName("IsLocalUrl") and
+    e = guard.getArgument(0)
     or
-    g.(MethodCall).getTarget().hasName("IsUrlLocalToHost") and
-    e = g.(MethodCall).getArgument(1)
+    m.hasName("IsUrlLocalToHost") and
+    e = guard.getArgument(1)
   ) and
   v.(AbstractValues::BooleanValue).getValue() = true
 }
 
+private predicate isLocalUrlSanitizer(Guard g, Expr e, AbstractValue v) {
+  isLocalUrlSanitizerMethodCall(g, e, v)
+}
+
 /**
  * A URL argument to a call to `UrlHelper.IsLocalUrl()` or `HttpRequestBase.IsUrlLocalToHost()` that
  * is a sanitizer for URL redirects.
