Java: Cleanup threat model taxanomy to align with the EDR.

michaelnebel · michaelnebel · commit 5b949b19f779 · 2023-10-03T09:16:39.000+02:00
diff --git a/java/ql/lib/ext/threatmodels/threat-model-grouping.model.yml b/java/ql/lib/ext/threatmodels/threat-model-grouping.model.yml
@@ -6,18 +6,17 @@ extensions:
     data:
       # Default threat model
       - ["remote", "default"]
-      - ["uri-path", "default"]
-
-      # Android threat models
-      - ["android-external-storage-dir", "android"]
-      - ["contentprovider", "android"]
 
       # Remote threat models
       - ["request", "remote"]
       - ["response", "remote"]
 
       # Local threat models
       - ["database", "local"]
-      - ["cli", "local"]
+      - ["commandargs", "local"]
       - ["environment", "local"]
       - ["file", "local"]
+
+      # Android threat models
+      - ["android-external-storage-dir", "android"]
+      - ["contentprovider", "android"]
diff --git a/java/ql/lib/semmle/code/java/dataflow/FlowSources.qll b/java/ql/lib/semmle/code/java/dataflow/FlowSources.qll
@@ -259,7 +259,7 @@ private class CliInput extends LocalUserInput {
     exists(Field f | this.asExpr() = f.getAnAccess() | f instanceof SystemIn)
   }
 
-  override string getThreatModel() { result = "cli" }
+  override string getThreatModel() { result = "commandargs" }
 }
 
 /**
diff --git a/java/ql/test/library-tests/dataflow/threat-models/Test.java b/java/ql/test/library-tests/dataflow/threat-models/Test.java
@@ -59,7 +59,7 @@ public void M4(Statement handle) throws Exception {
   }
 
   public void M5(Statement handle) throws Exception {
-    // Only a source if "cli" is a selected threat model.
+    // Only a source if "commandargs" is a selected threat model.
     byte[] data = new byte[1024];
     System.in.read(data);
 
diff --git a/java/ql/test/library-tests/dataflow/threat-models/threat-models-flowtest5.ext.yml b/java/ql/test/library-tests/dataflow/threat-models/threat-models-flowtest5.ext.yml
@@ -5,7 +5,7 @@ extensions:
       extensible: supportedThreatModels
     data:
       - ["environment"]
-      - ["cli"]
+      - ["commandargs"]
 
   - addsTo:
       pack: codeql/java-all
diff --git a/java/ql/test/library-tests/dataflow/threat-models/threat-models-flowtest5.ql b/java/ql/test/library-tests/dataflow/threat-models/threat-models-flowtest5.ql
@@ -1,6 +1,6 @@
 /**
  * This is a dataflow test using the "default" threat model with the
- * addition of "environment" and "cli".
+ * addition of "environment" and "commandargs".
  */
 
 import Test
diff --git a/java/ql/test/library-tests/dataflow/threat-models/threat-models1.expected b/java/ql/test/library-tests/dataflow/threat-models/threat-models1.expected
@@ -2,4 +2,3 @@
 | remote |
 | request |
 | response |
-| uri-path |
diff --git a/java/ql/test/library-tests/dataflow/threat-models/threat-models2.expected b/java/ql/test/library-tests/dataflow/threat-models/threat-models2.expected
@@ -1,4 +1,4 @@
-| cli |
+| commandargs |
 | database |
 | default |
 | environment |
@@ -7,4 +7,3 @@
 | remote |
 | request |
 | response |
-| uri-path |

Original file line number	Diff line number	Diff line change
`@@ -259,7 +259,7 @@ private class CliInput extends LocalUserInput {`
`259`	`259`	`exists(Field f \| this.asExpr() = f.getAnAccess() \| f instanceof SystemIn)`
`260`	`260`	`}`
`261`	`261`
`262`		`- override string getThreatModel() { result = "cli" }`
	`262`	`+ override string getThreatModel() { result = "commandargs" }`
`263`	`263`	`}`
`264`	`264`
`265`	`265`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -59,7 +59,7 @@ public void M4(Statement handle) throws Exception {`
`59`	`59`	`}`
`60`	`60`
`61`	`61`	`public void M5(Statement handle) throws Exception {`
`62`		`- // Only a source if "cli" is a selected threat model.`
	`62`	`+ // Only a source if "commandargs" is a selected threat model.`
`63`	`63`	`byte[] data = new byte[1024];`
`64`	`64`	`System.in.read(data);`
`65`	`65`