hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-27 17:55:19 +02:00
Code Issues Packages Projects Releases Wiki Activity

CPP: Include sizeof(expr) expressions in isDynamicallyAllocatedWithDifferentSize.

Browse Source
This commit is contained in:
Geoffrey White
2018-10-24 15:52:29 +01:00
parent 976e5ed80f
commit ec205e995b
1 changed files with 4 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
cpp/ql/src/semmle/code/cpp/commons/Buffer.qll
View File

@@ -16,11 +16,12 @@ import semmle.code.cpp.dataflow.DataFlow
* ```
*/
private predicate isDynamicallyAllocatedWithDifferentSize(Class s) {
exists(SizeofTypeOperator sof |
sof.getTypeOperand().getUnspecifiedType() = s |
exists(SizeofOperator so |
so.(SizeofTypeOperator).getTypeOperand().getUnspecifiedType() = s or
so.(SizeofExprOperator).getExprOperand().getType().getUnspecifiedType() = s |
// Check all ancestor nodes except the immediate parent for
// allocations.
isStdLibAllocationExpr(sof.getParent().(Expr).getParent+())
isStdLibAllocationExpr(so.getParent().(Expr).getParent+())
)
}