hasJsonTypeInfoAnnotation() should check fields recursively

artem-smotrakov · aschackmull · artem-smotrakov · commit 1d3eb570bf1d · 2021-07-30T08:30:40.000+02:00
Co-authored-by: Anders Schack-Mulligen &lt;aschackmull@users.noreply.github.com&gt;
diff --git a/java/ql/src/semmle/code/java/frameworks/Jackson.qll b/java/ql/src/semmle/code/java/frameworks/Jackson.qll
@@ -27,7 +27,7 @@ private class JsonParser extends RefType {
   JsonParser() { hasQualifiedName("com.fasterxml.jackson.core", "JsonParser") }
 }
 
-/** A type descriptor in Jackson libraries. */
+/** A type descriptor in Jackson libraries. For example, `java.lang.Class`. */
 class JacksonTypeDescriptorType extends RefType {
   JacksonTypeDescriptorType() {
     this instanceof TypeClass or
@@ -128,7 +128,7 @@ predicate createJacksonTreeNodeStep(DataFlow::Node fromNode, DataFlow::Node toNo
  */
 private predicate hasJsonTypeInfoAnnotation(RefType type) {
   hasFieldWithJsonTypeAnnotation(type.getASupertype*()) or
-  hasFieldWithJsonTypeAnnotation(type.getAField().getType())
+  hasJsonTypeInfoAnnotation(type.getAField().getType())
 }
 
 /**
