File tree Expand file tree Collapse file tree 1 file changed +9
-1
lines changed
java/ql/lib/semmle/code/java/security Expand file tree Collapse file tree 1 file changed +9
-1
lines changed Original file line number Diff line number Diff line change @@ -17,14 +17,22 @@ class JndiInjectionFlowConfig extends TaintTracking::Configuration {
1717 override predicate isSink ( DataFlow:: Node sink ) { sink instanceof JndiInjectionSink }
1818
1919 override predicate isSanitizer ( DataFlow:: Node node ) {
20- node .getType ( ) instanceof PrimitiveType or node .getType ( ) instanceof BoxedType
20+ node .getType ( ) instanceof PrimitiveType or node .getType ( ) instanceof BoxedType
21+ or
22+ node instanceof JndiInjectionSanitizer
2123 }
2224
2325 override predicate isAdditionalTaintStep ( DataFlow:: Node node1 , DataFlow:: Node node2 ) {
2426 any ( JndiInjectionAdditionalTaintStep c ) .step ( node1 , node2 )
2527 }
2628}
2729
30+ /**
31+ * A Class to be extended for Sanitizer Customizations
32+ */
33+
34+ abstract class JndiInjectionSanitizer extends DataFlow:: Node { }
35+
2836/**
2937 * A method that does a JNDI lookup when it receives a `SearchControls` argument with `setReturningObjFlag` = `true`
3038 */
You can’t perform that action at this time.
0 commit comments