hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-26 01:05:15 +02:00
Code Issues Packages Projects Releases Wiki Activity

Include changes from review

Browse Source
This commit is contained in:
Porcupiney Hairs
2024-10-21 03:28:19 +05:30
parent e2dd126962
commit 7ef2d79b3f
1 changed files with 7 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
python/ql/lib/semmle/python/frameworks/Pycurl.qll
View File

@@ -90,17 +90,13 @@ module Pycurl {
override predicate disablesCertificateValidation(
DataFlow::Node disablingNode, DataFlow::Node argumentOrigin
) {
exists(API::CallNode c |
c = setopt().getACall() and
sslverifypeer().getAValueReachableFromSource() = c.getArg(0) and
(
exists(IntegerLiteral i | i.getValue() = 0 and c.getArg(1).asExpr() = i)
or
exists(BooleanLiteral b | b.booleanValue() = false)
)
|
disablingNode = c and argumentOrigin = c.getArg(1)
)
sslverifypeer().getAValueReachableFromSource() = this.getArg(0) and
(
exists(IntegerLiteral i | i.getValue() = 0 and this.getArg(1).asExpr() = i)
or
exists(BooleanLiteral b | b.booleanValue() = false and this.getArg(_).asExpr() = b)
) and
(disablingNode = this and argumentOrigin = this.getArg(1))
}
}
}