hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-05 05:35:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

add ECC dataflow config; passes all test cases; still don't have algo name tracking

Browse Source
This commit is contained in:
Jami Cogswell
2022-10-06 01:32:10 -04:00
parent 5e2ef66014
commit c414ee0e25
4 changed files with 74 additions and 296 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
java/ql/test/query-tests/security/CWE-326/InsufficientKeySizeTest.ql
View File

@@ -9,9 +9,13 @@ class InsufficientKeySizeTest extends InlineExpectationsTest {
override predicate hasActualResult(Location location, string element, string tag, string value) {
tag = "hasInsufficientKeySize" and
exists(Expr e, string msg | hasInsufficientKeySize(e, msg) |
e.getLocation() = location and
element = e.toString() and
exists(DataFlow::PathNode source, DataFlow::PathNode sink |
exists(AsymmetricKeyTrackingConfiguration config1 | config1.hasFlowPath(source, sink)) or
exists(AsymmetricECCKeyTrackingConfiguration config2 | config2.hasFlowPath(source, sink)) or
exists(SymmetricKeyTrackingConfiguration config2 | config2.hasFlowPath(source, sink))
|
sink.getNode().getLocation() = location and
element = sink.getNode().toString() and
value = ""
)
}