hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-22 03:36:30 +01:00
Code Issues Packages Projects Releases Wiki Activity

JS: Port Arrays test

Browse Source
This commit is contained in:
Asger F
2023-10-05 14:48:34 +02:00
parent d35959a098
commit ff086377cb
4 changed files with 36 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
javascript/ql/test/library-tests/Arrays/DataFlow.expected
View File

@@ -1,3 +1,5 @@
legacyDataFlowDifference
flow
| arrays.js:2:16:2:23 | "source" | arrays.js:5:8:5:14 | obj.foo | | arrays.js:2:16:2:23 | "source" | arrays.js:5:8:5:14 | obj.foo |
| arrays.js:2:16:2:23 | "source" | arrays.js:11:10:11:15 | arr[i] | | arrays.js:2:16:2:23 | "source" | arrays.js:11:10:11:15 | arr[i] |
| arrays.js:2:16:2:23 | "source" | arrays.js:15:27:15:27 | e | | arrays.js:2:16:2:23 | "source" | arrays.js:15:27:15:27 | e |

24
javascript/ql/test/library-tests/Arrays/DataFlow.ql
View File

@@ -1,15 +1,23 @@
import javascript import javascript
class ArrayFlowConfig extends DataFlow::Configuration { module TestConfig implements DataFlow::ConfigSig {
ArrayFlowConfig() { this = "ArrayFlowConfig" } predicate isSource(DataFlow::Node source) { source.asExpr().getStringValue() = "source" }
override predicate isSource(DataFlow::Node source) { source.asExpr().getStringValue() = "source" } predicate isSink(DataFlow::Node sink) {
override predicate isSink(DataFlow::Node sink) {
sink = any(DataFlow::CallNode call | call.getCalleeName() = "sink").getAnArgument() sink = any(DataFlow::CallNode call | call.getCalleeName() = "sink").getAnArgument()
} }
} }
from ArrayFlowConfig config, DataFlow::Node src, DataFlow::Node snk module TestFlow = DataFlow::Global<TestConfig>;
where config.hasFlow(src, snk)
select src, snk class LegacyConfig extends DataFlow::Configuration {
LegacyConfig() { this = "LegacyConfig" }
override predicate isSource(DataFlow::Node source) { TestConfig::isSource(source) }
override predicate isSink(DataFlow::Node sink) { TestConfig::isSink(sink) }
}
import testUtilities.LegacyDataFlowDiff::DataFlowDiff<TestFlow, LegacyConfig>
query predicate flow = TestFlow::flow/2;

2
javascript/ql/test/library-tests/Arrays/TaintFlow.expected
View File

@@ -1,3 +1,5 @@
legacyDataFlowDifference
flow
| arrays.js:2:16:2:23 | "source" | arrays.js:5:8:5:14 | obj.foo | | arrays.js:2:16:2:23 | "source" | arrays.js:5:8:5:14 | obj.foo |
| arrays.js:2:16:2:23 | "source" | arrays.js:11:10:11:15 | arr[i] | | arrays.js:2:16:2:23 | "source" | arrays.js:11:10:11:15 | arr[i] |
| arrays.js:2:16:2:23 | "source" | arrays.js:15:27:15:27 | e | | arrays.js:2:16:2:23 | "source" | arrays.js:15:27:15:27 | e |

24
javascript/ql/test/library-tests/Arrays/TaintFlow.ql
View File

@@ -1,15 +1,23 @@
import javascript import javascript
class ArrayTaintFlowConfig extends TaintTracking::Configuration { module TestConfig implements DataFlow::ConfigSig {
ArrayTaintFlowConfig() { this = "ArrayTaintFlowConfig" } predicate isSource(DataFlow::Node source) { source.asExpr().getStringValue() = "source" }
override predicate isSource(DataFlow::Node source) { source.asExpr().getStringValue() = "source" } predicate isSink(DataFlow::Node sink) {
override predicate isSink(DataFlow::Node sink) {
sink = any(DataFlow::CallNode call | call.getCalleeName() = "sink").getAnArgument() sink = any(DataFlow::CallNode call | call.getCalleeName() = "sink").getAnArgument()
} }
} }
from ArrayTaintFlowConfig config, DataFlow::Node src, DataFlow::Node snk module TestFlow = TaintTracking::Global<TestConfig>;
where config.hasFlow(src, snk)
select src, snk class LegacyConfig extends TaintTracking::Configuration {
LegacyConfig() { this = "LegacyConfig" }
override predicate isSource(DataFlow::Node source) { TestConfig::isSource(source) }
override predicate isSink(DataFlow::Node sink) { TestConfig::isSink(sink) }
}
import testUtilities.LegacyDataFlowDiff::DataFlowDiff<TestFlow, LegacyConfig>
query predicate flow = TestFlow::flow/2;