From 407adcb3cb01bb92ca592cda89a337dce681afd9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Mario=20Vidal=20Dom=C3=ADnguez?= <mario.vidal@datadoghq.com>
Date: Fri, 20 Dec 2024 13:55:51 +0100
Subject: [PATCH] Make new tests + change to after

---
 .../iast/propagation/StringModuleImpl.java     |  2 +-
 .../iast/propagation/StringModuleTest.groovy   | 18 ++++++++++++------
 2 files changed, 13 insertions(+), 7 deletions(-)

diff --git a/dd-java-agent/agent-iast/src/main/java/com/datadog/iast/propagation/StringModuleImpl.java b/dd-java-agent/agent-iast/src/main/java/com/datadog/iast/propagation/StringModuleImpl.java
index 6758f74c6f1..2dcbc9b3c79 100644
--- a/dd-java-agent/agent-iast/src/main/java/com/datadog/iast/propagation/StringModuleImpl.java
+++ b/dd-java-agent/agent-iast/src/main/java/com/datadog/iast/propagation/StringModuleImpl.java
@@ -833,7 +833,7 @@ public void onStringValueOf(Object param, @Nonnull String result) {
 
   @Override
   public void onStringBuilderSetLength(@Nonnull CharSequence self, int length) {
-    if (self.length() <= length) {
+    if (self.length() != length) {
       return;
     }
     final IastContext ctx = IastContext.Provider.get();
diff --git a/dd-java-agent/agent-iast/src/test/groovy/com/datadog/iast/propagation/StringModuleTest.groovy b/dd-java-agent/agent-iast/src/test/groovy/com/datadog/iast/propagation/StringModuleTest.groovy
index 1d84976db2e..e631cdc3270 100644
--- a/dd-java-agent/agent-iast/src/test/groovy/com/datadog/iast/propagation/StringModuleTest.groovy
+++ b/dd-java-agent/agent-iast/src/test/groovy/com/datadog/iast/propagation/StringModuleTest.groovy
@@ -1436,26 +1436,32 @@ class StringModuleTest extends IastModuleImplTestBase {
     taintFormat(result, taintedObject.getRanges()) == "==>my_input<=="
   }
 
-  void 'onStringBuilderSetLength empty or string not changed after setLength (#self, #length)'() {
+  void 'onStringBuilderSetLength is empty or different lengths (#self, #length)'() {
     given:
-    self?.setLength(length)
+    self?.setLength(self.length())
 
     when:
     module.onStringBuilderSetLength(self, length)
 
     then:
+    mockCalls * tracer.activeSpan() >> null
     0 * _
 
     where:
-    self              | length
-    sb()              | 0
-    sb("not_changed") | 10
+    self      | length | mockCalls
+    sb("123") | 2      | 0
+    sb()      | 0      | 1
   }
 
   void 'onStringBuilderSetLength (#input, #length)'() {
     final taintedObjects = ctx.getTaintedObjects()
     def self = addFromTaintFormat(taintedObjects, input)
-    final result = self.toString().substring(0, length)
+    if (self instanceof StringBuilder) {
+      ((StringBuilder) self).setLength(length)
+    } else if (self instanceof StringBuffer) {
+      ((StringBuffer) self).setLength(length)
+    }
+    final result = self.toString()
 
     when:
     module.onStringBuilderSetLength(self, length)