Use EqualityTest for either value or ref comparions, and ReferenceEqualityTest for strictly ref comparison.

2026-06-18 19:31:11 +02:00 · 2022-02-07 16:56:45 +00:00
parent f95effcf82
commit 7dec3f4835
26 changed files with 47 additions and 47 deletions
--- a/java/ql/src/Security/CWE/CWE-022/TaintedPathCommon.qll
+++ b/java/ql/src/Security/CWE/CWE-022/TaintedPathCommon.qll
@@ -16,7 +16,7 @@ private predicate inWeakCheck(Expr e) {
  )
  or
  // Checking against `null` has no bearing on path traversal.
-  exists(AnyEqualityTest b | b.getAnOperand() = e | b.getAnOperand() instanceof NullLiteral)
+  exists(EqualityTest b | b.getAnOperand() = e | b.getAnOperand() instanceof NullLiteral)
 }

 // Ignore cases where the variable has been checked somehow,
--- a/java/ql/src/Security/CWE/CWE-681/NumericCastCommon.qll
+++ b/java/ql/src/Security/CWE/CWE-681/NumericCastCommon.qll
@@ -46,7 +46,7 @@ predicate boundedRead(RValue read) {
 }

 predicate castCheck(RValue read) {
-  exists(AnyEqualityTest eq, CastExpr cast |
+  exists(EqualityTest eq, CastExpr cast |
    cast.getExpr() = read and
    eq.hasOperands(cast, read.getVariable().getAnAccess())
  )