Python: Fix naming style guide violations

RasmusWL · RasmusWL · commit 996364d6ee4d · 2023-08-28T15:31:08.000+02:00
diff --git a/python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstHash/PossibleTimingAttackAgainstHash.ql b/python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstHash/PossibleTimingAttackAgainstHash.ql
@@ -22,13 +22,14 @@ import experimental.semmle.python.security.TimingAttack
  * A configuration that tracks data flow from cryptographic operations
  * to equality test
  */
-private module PossibleTimingAttackAgainstHash implements DataFlow::ConfigSig {
+private module PossibleTimingAttackAgainstHashConfig implements DataFlow::ConfigSig {
   predicate isSource(DataFlow::Node source) { source instanceof ProduceCryptoCall }
 
   predicate isSink(DataFlow::Node sink) { sink instanceof NonConstantTimeComparisonSink }
 }
 
-module PossibleTimingAttackAgainstHashFlow = TaintTracking::Global<PossibleTimingAttackAgainstHash>;
+module PossibleTimingAttackAgainstHashFlow =
+  TaintTracking::Global<PossibleTimingAttackAgainstHashConfig>;
 
 import PossibleTimingAttackAgainstHashFlow::PathGraph
 
diff --git a/python/ql/src/experimental/Security/CWE-340/TokenBuiltFromUUID.ql b/python/ql/src/experimental/Security/CWE-340/TokenBuiltFromUUID.ql
@@ -39,7 +39,7 @@ class TokenAssignmentValueSink extends DataFlow::Node {
   }
 }
 
-private module TokenBuiltFromUUIDConfig implements DataFlow::ConfigSig {
+private module TokenBuiltFromUuidConfig implements DataFlow::ConfigSig {
   predicate isSource(DataFlow::Node source) { source instanceof PredictableResultSource }
 
   predicate isSink(DataFlow::Node sink) { sink instanceof TokenAssignmentValueSink }
@@ -54,10 +54,10 @@ private module TokenBuiltFromUUIDConfig implements DataFlow::ConfigSig {
 }
 
 /** Global taint-tracking for detecting "TokenBuiltFromUUID" vulnerabilities. */
-module TokenBuiltFromUUIDFlow = TaintTracking::Global<TokenBuiltFromUUIDConfig>;
+module TokenBuiltFromUuidFlow = TaintTracking::Global<TokenBuiltFromUuidConfig>;
 
-import TokenBuiltFromUUIDFlow::PathGraph
+import TokenBuiltFromUuidFlow::PathGraph
 
-from TokenBuiltFromUUIDFlow::PathNode source, TokenBuiltFromUUIDFlow::PathNode sink
-where TokenBuiltFromUUIDFlow::flowPath(source, sink)
+from TokenBuiltFromUuidFlow::PathNode source, TokenBuiltFromUuidFlow::PathNode sink
+where TokenBuiltFromUuidFlow::flowPath(source, sink)
 select sink.getNode(), source, sink, "Token built from $@.", source.getNode(), "predictable value"
diff --git a/python/ql/src/experimental/Security/CWE-522/LDAPInsecureAuth.ql b/python/ql/src/experimental/Security/CWE-522/LDAPInsecureAuth.ql
@@ -12,9 +12,9 @@
 
 // determine precision above
 import python
-import LDAPInsecureAuthFlow::PathGraph
 import experimental.semmle.python.security.LDAPInsecureAuth
+import LdapInsecureAuthFlow::PathGraph
 
-from LDAPInsecureAuthFlow::PathNode source, LDAPInsecureAuthFlow::PathNode sink
-where LDAPInsecureAuthFlow::flowPath(source, sink)
+from LdapInsecureAuthFlow::PathNode source, LdapInsecureAuthFlow::PathNode sink
+where LdapInsecureAuthFlow::flowPath(source, sink)
 select sink.getNode(), source, sink, "This LDAP host is authenticated insecurely."
diff --git a/python/ql/src/experimental/semmle/python/security/InsecureRandomness.qll b/python/ql/src/experimental/semmle/python/security/InsecureRandomness.qll
@@ -21,7 +21,7 @@ module InsecureRandomness {
    * A taint-tracking configuration for reasoning about random values that are
    * not cryptographically secure.
    */
-  private module Configuration implements DataFlow::ConfigSig {
+  private module Config implements DataFlow::ConfigSig {
     predicate isSource(DataFlow::Node source) { source instanceof Source }
 
     predicate isSink(DataFlow::Node sink) { sink instanceof Sink }
@@ -30,5 +30,5 @@ module InsecureRandomness {
   }
 
   /** Global taint-tracking for detecting "random values that are not cryptographically secure" vulnerabilities. */
-  module Flow = TaintTracking::Global<Configuration>;
+  module Flow = TaintTracking::Global<Config>;
 }
diff --git a/python/ql/src/experimental/semmle/python/security/LDAPInsecureAuth.qll b/python/ql/src/experimental/semmle/python/security/LDAPInsecureAuth.qll
@@ -88,7 +88,7 @@ class LdapStringVar extends BinaryExpr {
 /**
  * A taint-tracking configuration for detecting LDAP insecure authentications.
  */
-private module LDAPInsecureAuthConfig implements DataFlow::ConfigSig {
+private module LdapInsecureAuthConfig implements DataFlow::ConfigSig {
   predicate isSource(DataFlow::Node source) {
     source instanceof RemoteFlowSource or
     source.asExpr() instanceof LdapFullHost or
@@ -104,4 +104,4 @@ private module LDAPInsecureAuthConfig implements DataFlow::ConfigSig {
 }
 
 /** Global taint-tracking for detecting "LDAP insecure authentications" vulnerabilities. */
-module LDAPInsecureAuthFlow = TaintTracking::Global<LDAPInsecureAuthConfig>;
+module LdapInsecureAuthFlow = TaintTracking::Global<LdapInsecureAuthConfig>;

Original file line number	Diff line number	Diff line change
`@@ -39,7 +39,7 @@ class TokenAssignmentValueSink extends DataFlow::Node {`
`39`	`39`	`}`
`40`	`40`	`}`
`41`	`41`
`42`		`-private module TokenBuiltFromUUIDConfig implements DataFlow::ConfigSig {`
	`42`	`+private module TokenBuiltFromUuidConfig implements DataFlow::ConfigSig {`
`43`	`43`	`predicate isSource(DataFlow::Node source) { source instanceof PredictableResultSource }`
`44`	`44`
`45`	`45`	`predicate isSink(DataFlow::Node sink) { sink instanceof TokenAssignmentValueSink }`
`@@ -54,10 +54,10 @@ private module TokenBuiltFromUUIDConfig implements DataFlow::ConfigSig {`
`54`	`54`	`}`
`55`	`55`
`56`	`56`	`/** Global taint-tracking for detecting "TokenBuiltFromUUID" vulnerabilities. */`
`57`		`-module TokenBuiltFromUUIDFlow = TaintTracking::Global<TokenBuiltFromUUIDConfig>;`
	`57`	`+module TokenBuiltFromUuidFlow = TaintTracking::Global<TokenBuiltFromUuidConfig>;`
`58`	`58`
`59`		`-import TokenBuiltFromUUIDFlow::PathGraph`
	`59`	`+import TokenBuiltFromUuidFlow::PathGraph`
`60`	`60`
`61`		`-from TokenBuiltFromUUIDFlow::PathNode source, TokenBuiltFromUUIDFlow::PathNode sink`
`62`		`-where TokenBuiltFromUUIDFlow::flowPath(source, sink)`
	`61`	`+from TokenBuiltFromUuidFlow::PathNode source, TokenBuiltFromUuidFlow::PathNode sink`
	`62`	`+where TokenBuiltFromUuidFlow::flowPath(source, sink)`
`63`	`63`	`select sink.getNode(), source, sink, "Token built from $@.", source.getNode(), "predictable value"`
Original file line number	Diff line number	Diff line change
`@@ -21,7 +21,7 @@ module InsecureRandomness {`
`21`	`21`	`* A taint-tracking configuration for reasoning about random values that are`
`22`	`22`	`* not cryptographically secure.`
`23`	`23`	`*/`
`24`		`- private module Configuration implements DataFlow::ConfigSig {`
	`24`	`+ private module Config implements DataFlow::ConfigSig {`
`25`	`25`	`predicate isSource(DataFlow::Node source) { source instanceof Source }`
`26`	`26`
`27`	`27`	`predicate isSink(DataFlow::Node sink) { sink instanceof Sink }`
`@@ -30,5 +30,5 @@ module InsecureRandomness {`
`30`	`30`	`}`
`31`	`31`
`32`	`32`	`/** Global taint-tracking for detecting "random values that are not cryptographically secure" vulnerabilities. */`
`33`		`- module Flow = TaintTracking::Global<Configuration>;`
	`33`	`+ module Flow = TaintTracking::Global<Config>;`
`34`	`34`	`}`