Add readStep back to local taint flow

2026-04-18 13:34:02 +02:00 · 2024-12-13 13:30:18 +00:00
parent 3a3e053f12
commit e9dcd69cc0
2 changed files with 2 additions and 2 deletions
--- a/go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll
@@ -37,8 +37,7 @@ predicate localTaintStep(DataFlow::Node src, DataFlow::Node sink) {
  or
  // Treat container flow as taint for the local taint flow relation
  exists(DataFlow::Content c | DataFlowPrivate::containerContent(c) |
-    // `DataFlowPrivate::readStep` has already been included in
-    // `localAdditionalTaintStep`.
+    DataFlowPrivate::readStep(src, c, sink) or
    DataFlowPrivate::storeStep(src, c, sink) or
    FlowSummaryImpl::Private::Steps::summaryGetterStep(src, c, sink, _) or
    FlowSummaryImpl::Private::Steps::summarySetterStep(src, c, sink, _)
--- a/go/ql/test/library-tests/semmle/go/dataflow/FlowSteps/LocalTaintStep.expected
+++ b/go/ql/test/library-tests/semmle/go/dataflow/FlowSteps/LocalTaintStep.expected
@@ -15,6 +15,7 @@
 | main.go:47:20:47:21 | next key-value pair in range | main.go:47:2:50:2 | range statement[1] |
 | main.go:47:20:47:21 | xs | main.go:47:2:50:2 | range statement[1] |
 | main.go:56:8:56:11 | true | main.go:56:2:56:3 | ch |
+| main.go:57:4:57:5 | ch | main.go:57:2:57:5 | <-... |
 | strings.go:9:24:9:24 | s | strings.go:9:8:9:38 | call to Replace |
 | strings.go:9:32:9:34 | "_" | strings.go:9:8:9:38 | call to Replace |
 | strings.go:10:27:10:27 | s | strings.go:10:8:10:42 | call to ReplaceAll |