C++: Add test to show missing taint steps for std::vector::emplace/_back

2026-05-05 21:55:19 +02:00 · 2020-11-02 11:47:25 +01:00
parent 081ab1e2bb
commit 62a02cde73
2 changed files with 28 additions and 0 deletions
--- a/cpp/ql/test/library-tests/dataflow/taint-tests/vector.cpp
+++ b/cpp/ql/test/library-tests/dataflow/taint-tests/vector.cpp
@@ -486,3 +486,13 @@ void test_vector_memcpy()
 		sink(cs); // tainted [NOT DETECTED by IR]
 	}
 }
+
+void test_vector_emplace() {
+	std::vector<int> v1(10), v2(10);
+
+	v1.emplace_back(source());
+	sink(v1); // tainted
+
+	v2.emplace(v2.begin(), source());
+	sink(v2); // tainted
+}