fix method name in tests, add one more test

nahsra · nahsra · commit 1f9774cae40a · 2024-12-12T14:53:07.000-05:00
diff --git a/core-codemods/src/test/resources/codeql-log-injection/template/Templates.java.after b/core-codemods/src/test/resources/codeql-log-injection/template/Templates.java.after
@@ -18,7 +18,7 @@
 
 package org.apache.roller.weblogger.ui.struts2.editor;
 
-import static io.github.pixee.security.Newlines.stripNewLines;
+import static io.github.pixee.security.Newlines.stripAll;
 import org.apache.commons.lang3.StringUtils;
 import org.apache.commons.logging.Log;
 import org.apache.commons.logging.LogFactory;
@@ -123,7 +123,7 @@ public class Templates extends UIAction {
 
         } catch (WebloggerException ex) {
             log.error("Error getting templates for weblog - "
-                + stripNewLines(getActionWeblog().getHandle()), ex);
+                + stripAll(getActionWeblog().getHandle()), ex);
             addError("Error getting template list - check Roller logs");
         }
 
@@ -196,7 +196,7 @@ public class Templates extends UIAction {
                 setNewTmplAction(null);
 
             } catch (WebloggerException ex) {
-                log.error("Error adding new template for weblog - " + stripNewLines(getActionWeblog().getHandle()), ex);
+                log.error("Error adding new template for weblog - " + stripAll(getActionWeblog().getHandle()), ex);
                 addError("Error adding new template - check Roller logs");
             }
         }
@@ -254,7 +254,7 @@ public class Templates extends UIAction {
                 }
 
             } catch (Exception ex) {
-                log.error("Error removing page - " + stripNewLines(getRemoveId()), ex);
+                log.error("Error removing page - " + stripAll(getRemoveId()), ex);
                 addError("editPages.remove.error");
             }
         } else {
diff --git a/core-codemods/src/test/resources/codeql-log-injection/templateedit/TemplateEdit.java.after b/core-codemods/src/test/resources/codeql-log-injection/templateedit/TemplateEdit.java.after
@@ -18,7 +18,7 @@
 
 package org.apache.roller.weblogger.ui.struts2.editor;
 
-import static io.github.pixee.security.Newlines.stripNewLines;
+import static io.github.pixee.security.Newlines.stripAll;
 import org.apache.commons.lang3.StringUtils;
 import org.apache.commons.logging.Log;
 import org.apache.commons.logging.LogFactory;
@@ -61,7 +61,7 @@ public class TemplateEdit extends UIAction {
         try {
             setTemplate(WebloggerFactory.getWeblogger().getWeblogManager().getTemplate(getBean().getId()));
         } catch (WebloggerException ex) {
-            log.error("Error looking up template - " + stripNewLines(getBean().getId()), ex);
+            log.error("Error looking up template - " + stripAll(getBean().getId()), ex);
         }
     }
 
@@ -89,7 +89,7 @@ public class TemplateEdit extends UIAction {
             }
 
         } catch (WebloggerException ex) {
-           log.error("Error updating page - " + stripNewLines(getBean().getId()), ex);
+           log.error("Error updating page - " + stripAll(getBean().getId()), ex);
            addError("Error saving template - check Roller logs");
         }
 
@@ -126,7 +126,7 @@ public class TemplateEdit extends UIAction {
 
                 // save template
                 WebloggerFactory.getWeblogger().getWeblogManager().saveTemplate(templateToSave);
-                log.debug("Saved template: " + stripNewLines(templateToSave.getId()));
+                log.debug("Saved template: " + stripAll(templateToSave.getId()));
 
                 //flush
                 WebloggerFactory.getWeblogger().flush();
@@ -138,7 +138,7 @@ public class TemplateEdit extends UIAction {
                 addMessage("pageForm.save.success", templateToSave.getName());
 
             } catch (Exception ex) {
-                log.error("Error updating page - " + stripNewLines(getBean().getId()), ex);
+                log.error("Error updating page - " + stripAll(getBean().getId()), ex);
                 addError("Error updating template - check Roller logs");
             }
         }
diff --git a/framework/codemodder-base/src/test/java/io/codemodder/remediation/loginjection/LogInjectionRemediatorTest.java b/framework/codemodder-base/src/test/java/io/codemodder/remediation/loginjection/LogInjectionRemediatorTest.java
@@ -32,6 +32,23 @@ void setup() throws IOException {
 
   private static Stream<Arguments> fixableSamples() {
     return Stream.of(
+        Arguments.of(
+            """
+                            class Foo {
+                              void foo(String msg) {
+                                 log.info("hi" + msg);
+                              }
+                            }
+                            """,
+            """
+                            import static io.github.pixee.security.Newlines.stripAll;
+                            class Foo {
+                              void foo(String msg) {
+                                log.info("hi" + stripAll(msg));
+                              }
+                            }
+                            """,
+            3),
         Arguments.of(
             """
                     class Foo {
@@ -41,10 +58,10 @@ void foo(String msg) {
                     }
                     """,
             """
-                    import static io.github.pixee.security.Newlines.stripNewLines;
+                    import static io.github.pixee.security.Newlines.stripAll;
                     class Foo {
                       void foo(String msg) {
-                        log.info(stripNewLines(msg));
+                        log.info(stripAll(msg));
                       }
                     }
                     """,
@@ -58,11 +75,11 @@ void foo(String msg, MyException ex) {
                             }
                             """,
             """
-                        import static io.github.pixee.security.Newlines.stripNewLines;
+                        import static io.github.pixee.security.Newlines.stripAll;
 
                         class Foo {
                           void foo(String msg, MyException ex) {
-                            log.info(stripNewLines(msg), ex);
+                            log.info(stripAll(msg), ex);
                           }
                         }
                         """,
@@ -77,12 +94,12 @@ void foo(String msg) {
                             }
                             """,
             """
-                        import static io.github.pixee.security.Newlines.stripNewLines;
+                        import static io.github.pixee.security.Newlines.stripAll;
 
                         class Foo {
                           void foo(String msg) {
                             MyException ex = null;
-                            log.info(stripNewLines(msg), ex);
+                            log.info(stripAll(msg), ex);
                           }
                         }
                         """,
@@ -100,14 +117,14 @@ void foo(String msg) {
                             }
                             """,
             """
-                        import static io.github.pixee.security.Newlines.stripNewLines;
+                        import static io.github.pixee.security.Newlines.stripAll;
 
                         class Foo {
                               void foo(String msg) {
                                 try {
                                   doThing();
                                 } catch(MyException e) {
-                                  log.info(stripNewLines(msg), e);
+                                  log.info(stripAll(msg), e);
                                 }
                               }
                             }
@@ -122,11 +139,11 @@ void foo(String user, MyException ex) {
                             }
                             """,
             """
-                        import static io.github.pixee.security.Newlines.stripNewLines;
+                        import static io.github.pixee.security.Newlines.stripAll;
 
                         class Foo {
                           void foo(String user, MyException ex) {
-                            log.info("hi " + stripNewLines(user), ex);
+                            log.info("hi " + stripAll(user), ex);
                           }
                         }
                         """,
@@ -140,11 +157,11 @@ void foo(String user, MyException ex) {
                             }
                             """,
             """
-                        import static io.github.pixee.security.Newlines.stripNewLines;
+                        import static io.github.pixee.security.Newlines.stripAll;
 
                         class Foo {
                           void foo(String user, MyException ex) {
-                            log.info("hi " + stripNewLines(user) + " its me!", ex);
+                            log.info("hi " + stripAll(user) + " its me!", ex);
                           }
                         }
                         """,
@@ -158,11 +175,11 @@ void foo(String user, MyException ex) {
                             }
                             """,
             """
-                        import static io.github.pixee.security.Newlines.stripNewLines;
+                        import static io.github.pixee.security.Newlines.stripAll;
 
                         class Foo {
                           void foo(String user, MyException ex) {
-                            log.info("hi {}", stripNewLines(user), ex);
+                            log.info("hi {}", stripAll(user), ex);
                           }
                         }
                         """,

Original file line number	Diff line number	Diff line change
`@@ -18,7 +18,7 @@`
`18`	`18`
`19`	`19`	`package org.apache.roller.weblogger.ui.struts2.editor;`
`20`	`20`
`21`		`-import static io.github.pixee.security.Newlines.stripNewLines;`
	`21`	`+import static io.github.pixee.security.Newlines.stripAll;`
`22`	`22`	`import org.apache.commons.lang3.StringUtils;`
`23`	`23`	`import org.apache.commons.logging.Log;`
`24`	`24`	`import org.apache.commons.logging.LogFactory;`
`@@ -123,7 +123,7 @@ public class Templates extends UIAction {`
`123`	`123`
`124`	`124`	`} catch (WebloggerException ex) {`
`125`	`125`	`log.error("Error getting templates for weblog - "`
`126`		`- + stripNewLines(getActionWeblog().getHandle()), ex);`
	`126`	`+ + stripAll(getActionWeblog().getHandle()), ex);`
`127`	`127`	`addError("Error getting template list - check Roller logs");`
`128`	`128`	`}`
`129`	`129`
`@@ -196,7 +196,7 @@ public class Templates extends UIAction {`
`196`	`196`	`setNewTmplAction(null);`
`197`	`197`
`198`	`198`	`} catch (WebloggerException ex) {`
`199`		`- log.error("Error adding new template for weblog - " + stripNewLines(getActionWeblog().getHandle()), ex);`
	`199`	`+ log.error("Error adding new template for weblog - " + stripAll(getActionWeblog().getHandle()), ex);`
`200`	`200`	`addError("Error adding new template - check Roller logs");`
`201`	`201`	`}`
`202`	`202`	`}`
`@@ -254,7 +254,7 @@ public class Templates extends UIAction {`
`254`	`254`	`}`
`255`	`255`
`256`	`256`	`} catch (Exception ex) {`
`257`		`- log.error("Error removing page - " + stripNewLines(getRemoveId()), ex);`
	`257`	`+ log.error("Error removing page - " + stripAll(getRemoveId()), ex);`
`258`	`258`	`addError("editPages.remove.error");`
`259`	`259`	`}`
`260`	`260`	`} else {`
Original file line number	Diff line number	Diff line change
`@@ -32,6 +32,23 @@ void setup() throws IOException {`
`32`	`32`
`33`	`33`	`private static Stream<Arguments> fixableSamples() {`
`34`	`34`	`return Stream.of(`
	`35`	`+ Arguments.of(`
	`36`	`+ """`
	`37`	`+ class Foo {`
	`38`	`+ void foo(String msg) {`
	`39`	`+ log.info("hi" + msg);`
	`40`	`+ }`
	`41`	`+ }`
	`42`	`+ """,`
	`43`	`+ """`
	`44`	`+ import static io.github.pixee.security.Newlines.stripAll;`
	`45`	`+ class Foo {`
	`46`	`+ void foo(String msg) {`
	`47`	`+ log.info("hi" + stripAll(msg));`
	`48`	`+ }`
	`49`	`+ }`
	`50`	`+ """,`
	`51`	`+ 3),`
`35`	`52`	`Arguments.of(`
`36`	`53`	`"""`
`37`	`54`	`class Foo {`
`@@ -41,10 +58,10 @@ void foo(String msg) {`
`41`	`58`	`}`
`42`	`59`	`""",`
`43`	`60`	`"""`
`44`		`- import static io.github.pixee.security.Newlines.stripNewLines;`
	`61`	`+ import static io.github.pixee.security.Newlines.stripAll;`
`45`	`62`	`class Foo {`
`46`	`63`	`void foo(String msg) {`
`47`		`- log.info(stripNewLines(msg));`
	`64`	`+ log.info(stripAll(msg));`
`48`	`65`	`}`
`49`	`66`	`}`
`50`	`67`	`""",`
`@@ -58,11 +75,11 @@ void foo(String msg, MyException ex) {`
`58`	`75`	`}`
`59`	`76`	`""",`
`60`	`77`	`"""`
`61`		`- import static io.github.pixee.security.Newlines.stripNewLines;`
	`78`	`+ import static io.github.pixee.security.Newlines.stripAll;`
`62`	`79`
`63`	`80`	`class Foo {`
`64`	`81`	`void foo(String msg, MyException ex) {`
`65`		`- log.info(stripNewLines(msg), ex);`
	`82`	`+ log.info(stripAll(msg), ex);`
`66`	`83`	`}`
`67`	`84`	`}`
`68`	`85`	`""",`
`@@ -77,12 +94,12 @@ void foo(String msg) {`
`77`	`94`	`}`
`78`	`95`	`""",`
`79`	`96`	`"""`
`80`		`- import static io.github.pixee.security.Newlines.stripNewLines;`
	`97`	`+ import static io.github.pixee.security.Newlines.stripAll;`
`81`	`98`
`82`	`99`	`class Foo {`
`83`	`100`	`void foo(String msg) {`
`84`	`101`	`MyException ex = null;`
`85`		`- log.info(stripNewLines(msg), ex);`
	`102`	`+ log.info(stripAll(msg), ex);`
`86`	`103`	`}`
`87`	`104`	`}`
`88`	`105`	`""",`
`@@ -100,14 +117,14 @@ void foo(String msg) {`
`100`	`117`	`}`
`101`	`118`	`""",`
`102`	`119`	`"""`
`103`		`- import static io.github.pixee.security.Newlines.stripNewLines;`
	`120`	`+ import static io.github.pixee.security.Newlines.stripAll;`
`104`	`121`
`105`	`122`	`class Foo {`
`106`	`123`	`void foo(String msg) {`
`107`	`124`	`try {`
`108`	`125`	`doThing();`
`109`	`126`	`} catch(MyException e) {`
`110`		`- log.info(stripNewLines(msg), e);`
	`127`	`+ log.info(stripAll(msg), e);`
`111`	`128`	`}`
`112`	`129`	`}`
`113`	`130`	`}`
`@@ -122,11 +139,11 @@ void foo(String user, MyException ex) {`
`122`	`139`	`}`
`123`	`140`	`""",`
`124`	`141`	`"""`
`125`		`- import static io.github.pixee.security.Newlines.stripNewLines;`
	`142`	`+ import static io.github.pixee.security.Newlines.stripAll;`
`126`	`143`
`127`	`144`	`class Foo {`
`128`	`145`	`void foo(String user, MyException ex) {`
`129`		`- log.info("hi " + stripNewLines(user), ex);`
	`146`	`+ log.info("hi " + stripAll(user), ex);`
`130`	`147`	`}`
`131`	`148`	`}`
`132`	`149`	`""",`
`@@ -140,11 +157,11 @@ void foo(String user, MyException ex) {`
`140`	`157`	`}`
`141`	`158`	`""",`
`142`	`159`	`"""`
`143`		`- import static io.github.pixee.security.Newlines.stripNewLines;`
	`160`	`+ import static io.github.pixee.security.Newlines.stripAll;`
`144`	`161`
`145`	`162`	`class Foo {`
`146`	`163`	`void foo(String user, MyException ex) {`
`147`		`- log.info("hi " + stripNewLines(user) + " its me!", ex);`
	`164`	`+ log.info("hi " + stripAll(user) + " its me!", ex);`
`148`	`165`	`}`
`149`	`166`	`}`
`150`	`167`	`""",`
`@@ -158,11 +175,11 @@ void foo(String user, MyException ex) {`
`158`	`175`	`}`
`159`	`176`	`""",`
`160`	`177`	`"""`
`161`		`- import static io.github.pixee.security.Newlines.stripNewLines;`
	`178`	`+ import static io.github.pixee.security.Newlines.stripAll;`
`162`	`179`
`163`	`180`	`class Foo {`
`164`	`181`	`void foo(String user, MyException ex) {`
`165`		`- log.info("hi {}", stripNewLines(user), ex);`
	`182`	`+ log.info("hi {}", stripAll(user), ex);`
`166`	`183`	`}`
`167`	`184`	`}`
`168`	`185`	`""",`