Refactor PathSanitizer test

egregius313 · egregius313 · commit 93bd2a940993 · 2023-04-17T23:48:06.000-04:00
diff --git a/java/ql/test/library-tests/pathsanitizer/test.ql b/java/ql/test/library-tests/pathsanitizer/test.ql
@@ -2,18 +2,20 @@ import java
 import semmle.code.java.security.PathSanitizer
 import TestUtilities.InlineFlowTest
 
-class EnableLegacy extends EnableLegacyConfiguration {
-  EnableLegacy() { exists(this) }
-}
+module PathSanitizerConfig implements DataFlow::ConfigSig {
+  predicate isSource(DataFlow::Node source) { DefaultFlowConfig::isSource(source) }
 
-class PathSanitizerConf extends DefaultTaintFlowConf {
-  override predicate isSanitizer(DataFlow::Node sanitizer) {
-    sanitizer instanceof PathInjectionSanitizer
-  }
+  predicate isSink(DataFlow::Node sink) { DefaultFlowConfig::isSink(sink) }
+
+  predicate isBarrier(DataFlow::Node sanitizer) { sanitizer instanceof PathInjectionSanitizer }
 }
 
+module PathSanitizerFlow = TaintTracking::Global<PathSanitizerConfig>;
+
 class Test extends InlineFlowTest {
-  override DataFlow::Configuration getValueFlowConfig() { none() }
+  override predicate hasValueFlow(DataFlow::Node src, DataFlow::Node sink) { none() }
 
-  override DataFlow::Configuration getTaintFlowConfig() { result = any(PathSanitizerConf config) }
+  override predicate hasTaintFlow(DataFlow::Node src, DataFlow::Node sink) {
+    PathSanitizerFlow::flow(src, sink)
+  }
 }
