JS: Rename to upward navigation

asger-semmle · asger-semmle · commit 7ed31baeeaf6 · 2019-10-25T13:07:07.000+01:00
diff --git a/javascript/ql/src/semmle/javascript/Concepts.qll b/javascript/ql/src/semmle/javascript/Concepts.qll
@@ -38,12 +38,12 @@ abstract class FileSystemAccess extends DataFlow::Node {
   DataFlow::Node getRootPathArgument() { none() }
 
   /**
-   * Holds if this file system access will reject paths containing path traversal
+   * Holds if this file system access will reject paths containing upward navigation
    * segments (`../`).
    *
    * `argument` should refer to the relevant path argument or root path argument.
    */
-  predicate isPathTraversalRejected(DataFlow::Node argument) { none() }
+  predicate isUpwardNavigationRejected(DataFlow::Node argument) { none() }
 }
 
 /**
diff --git a/javascript/ql/src/semmle/javascript/frameworks/Express.qll b/javascript/ql/src/semmle/javascript/frameworks/Express.qll
@@ -840,7 +840,7 @@ module Express {
       result = this.(DataFlow::CallNode).getOptionArgument(1, "root")
     }
 
-    override predicate isPathTraversalRejected(DataFlow::Node argument) {
+    override predicate isUpwardNavigationRejected(DataFlow::Node argument) {
       argument = getAPathArgument()
     }
   }
diff --git a/javascript/ql/src/semmle/javascript/security/dataflow/TaintedPathCustomizations.qll b/javascript/ql/src/semmle/javascript/security/dataflow/TaintedPathCustomizations.qll
@@ -393,11 +393,11 @@ module TaintedPath {
   }
 
   /**
-   * A path argument to a file system access, which disallows path traversal.
+   * A path argument to a file system access, which disallows upward navigation.
    */
-  private class FsPathSinkWithoutPathTraversal extends FsPathSink {
-    FsPathSinkWithoutPathTraversal() {
-      fileSystemAccess.isPathTraversalRejected(this)
+  private class FsPathSinkWithoutUpwardNavigation extends FsPathSink {
+    FsPathSinkWithoutUpwardNavigation() {
+      fileSystemAccess.isUpwardNavigationRejected(this)
     }
 
     override DataFlow::FlowLabel getAFlowLabel() {

Original file line number	Diff line number	Diff line change
`@@ -38,12 +38,12 @@ abstract class FileSystemAccess extends DataFlow::Node {`
`38`	`38`	`DataFlow::Node getRootPathArgument() { none() }`
`39`	`39`
`40`	`40`	`/**`
`41`		`- * Holds if this file system access will reject paths containing path traversal`
	`41`	`+ * Holds if this file system access will reject paths containing upward navigation`
`42`	`42`	* segments (`../`).
`43`	`43`	`*`
`44`	`44`	* `argument` should refer to the relevant path argument or root path argument.
`45`	`45`	`*/`
`46`		`- predicate isPathTraversalRejected(DataFlow::Node argument) { none() }`
	`46`	`+ predicate isUpwardNavigationRejected(DataFlow::Node argument) { none() }`
`47`	`47`	`}`
`48`	`48`
`49`	`49`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -840,7 +840,7 @@ module Express {`
`840`	`840`	`result = this.(DataFlow::CallNode).getOptionArgument(1, "root")`
`841`	`841`	`}`
`842`	`842`
`843`		`- override predicate isPathTraversalRejected(DataFlow::Node argument) {`
	`843`	`+ override predicate isUpwardNavigationRejected(DataFlow::Node argument) {`
`844`	`844`	`argument = getAPathArgument()`
`845`	`845`	`}`
`846`	`846`	`}`
Original file line number	Diff line number	Diff line change
`@@ -393,11 +393,11 @@ module TaintedPath {`
`393`	`393`	`}`
`394`	`394`
`395`	`395`	`/**`
`396`		`- * A path argument to a file system access, which disallows path traversal.`
	`396`	`+ * A path argument to a file system access, which disallows upward navigation.`
`397`	`397`	`*/`
`398`		`- private class FsPathSinkWithoutPathTraversal extends FsPathSink {`
`399`		`- FsPathSinkWithoutPathTraversal() {`
`400`		`- fileSystemAccess.isPathTraversalRejected(this)`
	`398`	`+ private class FsPathSinkWithoutUpwardNavigation extends FsPathSink {`
	`399`	`+ FsPathSinkWithoutUpwardNavigation() {`
	`400`	`+ fileSystemAccess.isUpwardNavigationRejected(this)`
`401`	`401`	`}`
`402`	`402`
`403`	`403`	`override DataFlow::FlowLabel getAFlowLabel() {`