hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-03 20:58:03 +02:00
Code Issues Packages Projects Releases Wiki Activity

Restrict field access to same type

Browse Source
This commit is contained in:
Benjamin Muskalla
2021-11-09 11:52:59 +01:00
parent 8740e879b4
commit 74ac234f1c
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
java/ql/src/utils/model-generator/CaptureSummaryModels.ql
View File

@@ -64,8 +64,8 @@ string captureQualifierFlow(Callable api) {
string captureFieldFlow(Callable api) {
exists(FieldAccess fa, ReturnNodeExt returnNode |
not (fa.getField().isStatic() and fa.getField().isFinal()) and
fa.getField().getDeclaringType() = api.getDeclaringType() and
returnNode.getEnclosingCallable() = api and
fa.getCompilationUnit() = api.getCompilationUnit() and
isRelevantType(api.getReturnType()) and
not api.getDeclaringType() instanceof EnumType and
TaintTracking::localTaint(DataFlow::exprNode(fa), returnNode)