C++: Only allow implicit reads of fields that exist on the sink node's type.

2026-04-30 03:05:15 +02:00 · 2023-02-08 13:08:22 +00:00
parent ad8e82ac65
commit 825628675e
1 changed files with 1 additions and 1 deletions
--- a/cpp/ql/test/library-tests/dataflow/taint-tests/taint.ql
+++ b/cpp/ql/test/library-tests/dataflow/taint-tests/taint.ql
@@ -106,7 +106,7 @@ module IRTest {
    override predicate allowImplicitRead(DataFlow::Node node, DataFlow::ContentSet c) {
      // allow arbitrary reads at sinks
      isSink(node) and
-      c = any(DataFlow::ContentSet c_)
+      c.(DataFlow::FieldContent).getField().getDeclaringType() = node.getType().getUnspecifiedType()
    }
  }
 }