Module TaintTrackingUtil
Provides Go-specific definitions for use in the taint-tracking library.
Import path
import semmle.go.dataflow.internal.TaintTrackingUtil
Imports
Predicates
defaultAdditionalTaintStep | Holds if the additional step from |
defaultImplicitTaintRead | Holds if default |
defaultTaintSanitizer | Holds if |
elementStep | Holds if taint flows from |
elementWriteStep | Holds if there is an assignment of the form |
fieldReadStep | Holds if taint flows from |
functionEnsuresInputIsConstant | Holds if whenever |
inputIsConstantIfOutputHasProperty | Holds if whenever |
localAdditionalTaintStep | Holds if the additional step from |
localExprTaint | Holds if taint can flow from |
localTaint | Holds if taint can flow from |
localTaintStep | Holds if taint can flow in one local step from |
referenceStep | Holds if taint flows from |
sliceStep | Holds if taint flows from |
stringConcatStep | Holds if taint flows from |
tupleStep | Holds if taint flows from |
Classes
AdditionalTaintStep | A unit class for adding additional taint steps. |
DefaultTaintSanitizer | A sanitizer in all global taint flow configurations but not in local taint. |
EqualityTestBarrier | An equality test acting as a sanitizer guard for |
FunctionModel | A model of a function specifying that the function propagates taint from a parameter or qualifier to a result. |
ListOfConstantsComparisonSanitizerGuard | A comparison against a list of constants, acting as a sanitizer guard for |