Extend documentation

jorgectf · jorgectf · commit dcb1da338b1a · 2021-06-18T02:03:56.000+02:00
diff --git a/python/ql/src/experimental/semmle/python/Concepts.qll b/python/ql/src/experimental/semmle/python/Concepts.qll
@@ -14,16 +14,35 @@ private import semmle.python.dataflow.new.RemoteFlowSources
 private import semmle.python.dataflow.new.TaintTracking
 private import experimental.semmle.python.Frameworks
 
+/** Provides classes for modeling HTTP Header APIs. */
 module HeaderDeclaration {
+  /**
+   * A data-flow node that collects functions setting HTTP Headers' content.
+   *
+   * Extend this class to model new APIs. If you want to refine existing API models,
+   * extend `HeaderDeclaration` instead.
+   */
   abstract class Range extends DataFlow::Node {
-    abstract DataFlow::Node getHeaderInputNode();
+    /**
+     * Gets the argument containing the header value.
+     */
+    abstract DataFlow::Node getHeaderInput();
   }
 }
 
+/**
+ * A data-flow node that collects functions setting HTTP Headers' content.
+ *
+ * Extend this class to model new APIs. If you want to refine existing API models,
+ * extend `HeaderDeclaration` instead.
+ */
 class HeaderDeclaration extends DataFlow::Node {
   HeaderDeclaration::Range range;
 
   HeaderDeclaration() { this = range }
 
-  DataFlow::Node getHeaderInputNode() { result = range.getHeaderInputNode() }
+  /**
+   * Gets the argument containing the header value.
+   */
+  DataFlow::Node getHeaderInput() { result = range.getHeaderInput() }
 }
diff --git a/python/ql/src/experimental/semmle/python/security/injection/HTTPHeaders.qll b/python/ql/src/experimental/semmle/python/security/injection/HTTPHeaders.qll
@@ -4,12 +4,15 @@ import semmle.python.dataflow.new.DataFlow
 import semmle.python.dataflow.new.TaintTracking
 import semmle.python.dataflow.new.RemoteFlowSources
 
+/**
+ * A taint-tracking configuration for detecting HTTP Header injections.
+ */
 class HeaderInjectionFlowConfig extends TaintTracking::Configuration {
   HeaderInjectionFlowConfig() { this = "HeaderInjectionFlowConfig" }
 
   override predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }
 
   override predicate isSink(DataFlow::Node sink) {
-    sink = any(HeaderDeclaration headerDeclaration).getHeaderInputNode()
+    sink = any(HeaderDeclaration headerDeclaration).getHeaderInput()
   }
 }

Original file line number	Diff line number	Diff line change
`@@ -4,12 +4,15 @@ import semmle.python.dataflow.new.DataFlow`
`4`	`4`	`import semmle.python.dataflow.new.TaintTracking`
`5`	`5`	`import semmle.python.dataflow.new.RemoteFlowSources`
`6`	`6`
	`7`	`+/**`
	`8`	`+ * A taint-tracking configuration for detecting HTTP Header injections.`
	`9`	`+ */`
`7`	`10`	`class HeaderInjectionFlowConfig extends TaintTracking::Configuration {`
`8`	`11`	`HeaderInjectionFlowConfig() { this = "HeaderInjectionFlowConfig" }`
`9`	`12`
`10`	`13`	`override predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }`
`11`	`14`
`12`	`15`	`override predicate isSink(DataFlow::Node sink) {`
`13`		`- sink = any(HeaderDeclaration headerDeclaration).getHeaderInputNode()`
	`16`	`+ sink = any(HeaderDeclaration headerDeclaration).getHeaderInput()`
`14`	`17`	`}`
`15`	`18`	`}`