hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-22 23:35:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #14364 from owen-mc/go/improve-output-of-check-formatting-in-makefile

Browse Source 
Go: improve output of check formatting in makefile
This commit is contained in:
Owen Mansel-Chan
2023-10-04 11:54:40 +01:00
committed by GitHub
parent 9c02b4f21c bd2c49fcf0
commit 3703c5626f
5 changed files with 42 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
go/Makefile
View File

@@ -32,7 +32,12 @@ autoformat:
find . -path '**/vendor' -prune -or -type f -iname '*.go' ! -empty -print0 | xargs -0 grep -L "//\s*autoformat-ignore" | xargs gofmt -w
check-formatting:
test -z "$$(find . -path '**/vendor' -prune -or -type f -iname '*.go' ! -empty -print0 | xargs -0 grep -L "//\s*autoformat-ignore" | xargs gofmt -l)"
@output=$$(find . -path '**/vendor' -prune -or -type f -iname '*.go' ! -empty -print0 | xargs -0 grep -L "//\s*autoformat-ignore" | xargs gofmt -l 2>&1); \
if [ -n "$$output" ]; then \
echo "The following files need to be reformatted using gofmt or have compilation errors:"; \
echo "$$output"; \
fi; \
test -z "$$output"
ifeq ($(QHELP_OUT_DIR),)
# If not otherwise specified, compile qhelp to markdown in place

11
go/ql/src/experimental/CWE-203/timingBad.go
View File

@@ -1,4 +1,11 @@
func bad(w http.ResponseWriter, req *http.Request, []byte secret) (interface{}, error) {
package main
import (
"fmt"
"net/http"
)
func bad(w http.ResponseWriter, req *http.Request, secret []byte) (interface{}, error) {
secretHeader := "X-Secret"
@@ -8,4 +15,4 @@ func bad(w http.ResponseWriter, req *http.Request, []byte secret) (interface{},
return nil, fmt.Errorf("header %s=%s did not match expected secret", secretHeader, headerSecret)
}
return nil, nil
}
}

12
go/ql/src/experimental/CWE-203/timingGood.go
View File

@@ -1,4 +1,12 @@
func good(w http.ResponseWriter, req *http.Request, []byte secret) (interface{}, error) {
package main
import (
"crypto/subtle"
"fmt"
"net/http"
)
func good(w http.ResponseWriter, req *http.Request, secret []byte) (interface{}, error) {
secretHeader := "X-Secret"
@@ -7,4 +15,4 @@ func good(w http.ResponseWriter, req *http.Request, []byte secret) (interface{},
return nil, fmt.Errorf("header %s=%s did not match expected secret", secretHeader, headerSecret)
}
return nil, nil
}
}

7
go/ql/src/experimental/CWE-74/DsnBad.go
View File

@@ -1,3 +1,10 @@
package main
import (
"database/sql"
"fmt"
"os"
)
func bad() interface{} {
name := os.Args[1:]

10
go/ql/src/experimental/CWE-74/DsnGood.go
View File

@@ -1,3 +1,13 @@
package main
import (
"database/sql"
"errors"
"fmt"
"os"
"regexp"
)
func good() (interface{}, error) {
name := os.Args[1]
hasBadChar, _ := regexp.MatchString(".*[?].*", name)