hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-29 02:35:15 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fix bug in sink detection

Browse Source
This commit is contained in:
Benjamin Muskalla
2021-09-30 12:48:27 +02:00
parent c616eb1473
commit 2b2ac82fb7
2 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
java/ql/src/utils/model-generator/CaptureSinkModels.ql
View File

@@ -28,7 +28,7 @@ class PropagateToSinkConfiguration extends TaintTracking::Configuration {
string asInputArgument(Expr source) {
result = "Argument[" + source.(Argument).getPosition() + "]"
or
result = source.(VarAccess).getVariable().toString()
result = "Argument[" + source.(VarAccess).getVariable().(Parameter).getPosition() + "]"
}
string captureSink(Callable api) {

4
java/ql/test/utils/model-generator/CaptureSinkModels.expected
View File

@@ -1,3 +1,3 @@
| p;Sinks;true;copyFileToDirectory;(Path,Path,CopyOption[]);;Argument[1];create-file; |
| p;Sinks;true;readUrl;(URL,Charset);;url;open-url; |
| p;Sources;true;readUrl;(URL);;url;open-url; |
| p;Sinks;true;readUrl;(URL,Charset);;Argument[0];open-url; |
| p;Sources;true;readUrl;(URL);;Argument[0];open-url; |