hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-22 19:56:32 +01:00
Code Issues Packages Projects Releases Wiki Activity

CPP: Do the logic at the target, rather than the access, as there are likely fewer.

Browse Source
This commit is contained in:
Geoffrey White
2019-12-03 10:52:31 +00:00
parent 20eb39d37e
commit cc43e1116b
1 changed files with 16 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
cpp/ql/src/semmle/code/cpp/security/SensitiveExprs.qll
View File

@@ -15,16 +15,24 @@ private predicate suspicious(string s) {
) )
} }
abstract class SensitiveExpr extends Expr { } class SensitiveVariable extends Variable {
SensitiveVariable()
class SensitiveVarAccess extends SensitiveExpr { {
SensitiveVarAccess() { suspicious(getName().toLowerCase())
suspicious(this.(VariableAccess).getTarget().getName().toLowerCase())
} }
} }
class SensitiveCall extends SensitiveExpr { class SensitiveFunction extends Function {
SensitiveCall() { SensitiveFunction()
suspicious(this.(FunctionCall).getTarget().getName().toLowerCase()) {
suspicious(getName().toLowerCase())
}
}
class SensitiveExpr extends Expr {
SensitiveExpr()
{
this.(VariableAccess).getTarget() instanceof SensitiveVariable or
this.(FunctionCall).getTarget() instanceof SensitiveFunction
} }
} }