Add more source of crypto call

ahmed-farid-dev · web-flow · commit cf83b07aae34 · 2022-08-31T17:04:02.000+01:00
diff --git a/python/ql/src/experimental/semmle/python/security/TimingAttack.qll b/python/ql/src/experimental/semmle/python/security/TimingAttack.qll
@@ -10,7 +10,7 @@ private import semmle.python.frameworks.Django
 
 /** A method call that produces cryptographic result. */
 abstract class ProduceCryptoCall extends API::CallNode {
-  /** Gets a type of cryptographic operation such as HMAC, signature or Hash. */
+  /** Gets a type of cryptographic operation such as MAC, signature, Hash or ciphertext. */
   abstract string getResultType();
 }
 
@@ -113,6 +113,21 @@ private class ProduceHashCall extends ProduceCryptoCall {
   override string getResultType() { result = "Hash" }
 }
 
+/** A method call that produces a ciphertext. */
+private class ProduceCiphertextCall extends ProduceCryptoCall {
+  ProduceCiphertextCall() {
+    this =
+      cryptodome()
+          .getMember("Cipher")
+          .getMember(["DES", "DES3", "ARC2", "ARC4", "Blowfish", "PKCS1_v1_5"])
+          .getMember(["ARC4Cipher", "new", "PKCS115_Cipher"])
+          .getMember("encrypt")
+          .getACall()
+  }
+
+  override string getResultType() { result = "ciphertext" }
+}
+
 /** A data flow sink for comparison. */
 private predicate existsFailFastCheck(Expr firstInput, Expr secondInput) {
   exists(Compare compare |
