Rename TrustedSource to SafeHeaderSplittingSource

rvermeulen · rvermeulen · commit fed506a12ff2 · 2020-07-09T14:36:23.000+02:00
diff --git a/java/ql/src/Security/CWE/CWE-113/ResponseSplitting.ql b/java/ql/src/Security/CWE/CWE-113/ResponseSplitting.ql
@@ -19,7 +19,7 @@ class ResponseSplittingConfig extends TaintTracking::Configuration {
 
   override predicate isSource(DataFlow::Node source) {
     source instanceof RemoteFlowSource and
-    not source instanceof TrustedSource
+    not source instanceof SafeHeaderSplittingSource
   }
 
   override predicate isSink(DataFlow::Node sink) { sink instanceof HeaderSplittingSink }
diff --git a/java/ql/src/Security/CWE/CWE-113/ServletResponseSplitting.qll b/java/ql/src/Security/CWE/CWE-113/ServletResponseSplitting.qll
@@ -31,8 +31,8 @@ class ServletHeaderSplittingSink extends HeaderSplittingSink {
   }
 }
 
-class TrustedServletSource extends TrustedSource {
-  TrustedServletSource() {
+class ServletSafeHeaderSplittingSource extends SafeHeaderSplittingSource {
+  ServletSafeHeaderSplittingSource() {
     this.asExpr().(MethodAccess).getMethod() instanceof HttpServletRequestGetHeaderMethod or
     this.asExpr().(MethodAccess).getMethod() instanceof CookieGetNameMethod
   }
diff --git a/java/ql/src/semmle/code/java/security/ResponseSplitting.qll b/java/ql/src/semmle/code/java/security/ResponseSplitting.qll
@@ -8,4 +8,4 @@ abstract class HeaderSplittingSink extends DataFlow::ExprNode { }
 /**
  * Sources that cannot be used to perform a header splitting attack.
  */
-abstract class TrustedSource extends DataFlow::ExprNode { }
+abstract class SafeHeaderSplittingSource extends DataFlow::ExprNode { }

Original file line number	Diff line number	Diff line change
`@@ -19,7 +19,7 @@ class ResponseSplittingConfig extends TaintTracking::Configuration {`
`19`	`19`
`20`	`20`	`override predicate isSource(DataFlow::Node source) {`
`21`	`21`	`source instanceof RemoteFlowSource and`
`22`		`- not source instanceof TrustedSource`
	`22`	`+ not source instanceof SafeHeaderSplittingSource`
`23`	`23`	`}`
`24`	`24`
`25`	`25`	`override predicate isSink(DataFlow::Node sink) { sink instanceof HeaderSplittingSink }`
Original file line number	Diff line number	Diff line change
`@@ -31,8 +31,8 @@ class ServletHeaderSplittingSink extends HeaderSplittingSink {`
`31`	`31`	`}`
`32`	`32`	`}`
`33`	`33`
`34`		`-class TrustedServletSource extends TrustedSource {`
`35`		`- TrustedServletSource() {`
	`34`	`+class ServletSafeHeaderSplittingSource extends SafeHeaderSplittingSource {`
	`35`	`+ ServletSafeHeaderSplittingSource() {`
`36`	`36`	`this.asExpr().(MethodAccess).getMethod() instanceof HttpServletRequestGetHeaderMethod or`
`37`	`37`	`this.asExpr().(MethodAccess).getMethod() instanceof CookieGetNameMethod`
`38`	`38`	`}`