Restrict the reach for an additional taint step

Sim4n6 · Sim4n6 · commit 9163cbec094a · 2022-10-19T16:08:49.000+01:00
diff --git a/python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.ql b/python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.ql
@@ -97,6 +97,7 @@ class Configuration extends TaintTracking::Configuration {
     exists(AttrRead attr, MethodCallNode call |
       attr.accesses(nodeFrom, "getmembers") and
       nodeFrom = call.getObject() and
+      nodeFrom instanceof AllTarfileOpens and
       nodeTo = call
     )
     or

Original file line number	Diff line number	Diff line change
`@@ -97,6 +97,7 @@ class Configuration extends TaintTracking::Configuration {`
`97`	`97`	`exists(AttrRead attr, MethodCallNode call \|`
`98`	`98`	`attr.accesses(nodeFrom, "getmembers") and`
`99`	`99`	`nodeFrom = call.getObject() and`
	`100`	`+ nodeFrom instanceof AllTarfileOpens and`
`100`	`101`	`nodeTo = call`
`101`	`102`	`)`
`102`	`103`	`or`