hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-22 11:46:32 +01:00
Code Issues Packages Projects Releases Wiki Activity

CPP: Do the logic at the target, rather than the access, as there are likely fewer.

Browse Source
This commit is contained in:
Geoffrey White
2019-12-03 10:52:31 +00:00
parent 20eb39d37e
commit cc43e1116b
1 changed files with 16 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
cpp/ql/src/semmle/code/cpp/security/SensitiveExprs.qll
View File

@@ -15,16 +15,24 @@ private predicate suspicious(string s) {
)
}
abstract class SensitiveExpr extends Expr { }
class SensitiveVarAccess extends SensitiveExpr {
SensitiveVarAccess() {
suspicious(this.(VariableAccess).getTarget().getName().toLowerCase())
class SensitiveVariable extends Variable {
SensitiveVariable()
{
suspicious(getName().toLowerCase())
}
}
class SensitiveCall extends SensitiveExpr {
SensitiveCall() {
suspicious(this.(FunctionCall).getTarget().getName().toLowerCase())
class SensitiveFunction extends Function {
SensitiveFunction()
{
suspicious(getName().toLowerCase())
}
}
class SensitiveExpr extends Expr {
SensitiveExpr()
{
this.(VariableAccess).getTarget() instanceof SensitiveVariable or
this.(FunctionCall).getTarget() instanceof SensitiveFunction
}
}