Java: Convert WebSocketMessageParameterSource to CSV based flow source

Author: tamasvajk

java/ql/src/semmle/code/java/dataflow/ExternalFlow.qll

@@ -170,7 +170,9 @@ private predicate sourceModelCsv(string row) {
       // SpringRestTemplateResponseEntityMethod
       "org.springframework.web.client;RestTemplate;false;exchange;;;ReturnValue;remote",
       "org.springframework.web.client;RestTemplate;false;getForEntity;;;ReturnValue;remote",
-      "org.springframework.web.client;RestTemplate;false;postForEntity;;;ReturnValue;remote"
+      "org.springframework.web.client;RestTemplate;false;postForEntity;;;ReturnValue;remote",
+      // WebSocketMessageParameterSource
+      "java.net.http;WebSocket$Listener;true;onText;(WebSocket,CharSequence,boolean);;Parameter[1];remote"
     ]
 }
 

java/ql/src/semmle/code/java/dataflow/FlowSources.qll

@@ -158,14 +158,6 @@ private class ThriftIfaceParameterSource extends RemoteFlowSource {
   override string getSourceType() { result = "Thrift Iface parameter" }
 }
 
-private class WebSocketMessageParameterSource extends RemoteFlowSource {
-  WebSocketMessageParameterSource() {
-    exists(WebsocketOnText t | t.getParameter(1) = this.asParameter())
-  }
-
-  override string getSourceType() { result = "Websocket onText parameter" }
-}
-
 /** Class for `tainted` user input. */
 abstract class UserInput extends DataFlow::Node { }