Alex Eyers-Taylor
|
d0849311a6
|
CPP: Fix use after free FPs by elimnatiing freeing nodes rather than freeing expressions.
|
2023-09-20 18:47:57 +01:00 |
|
Alex Eyers-Taylor
|
9de6230bbf
|
CPP: Add use after free false positive example.
|
2023-09-20 18:34:47 +01:00 |
|
github-actions[bot]
|
3acf5244b0
|
Post-release preparation for codeql-cli-2.14.6
|
2023-09-20 10:25:10 +00:00 |
|
Mathias Vorreiter Pedersen
|
22d66b6d81
|
Update cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowUtil.qll
|
2023-09-20 09:56:10 +01:00 |
|
Mathias Vorreiter Pedersen
|
fb1ce2ab70
|
C++: Lift 'getParameter' to 'ParameterNode'.
|
2023-09-20 09:51:35 +01:00 |
|
Geoffrey White
|
a3579f6e38
|
Merge branch 'main' into typos
|
2023-09-19 16:44:13 +01:00 |
|
Geoffrey White
|
8a0e202b63
|
CPP: Fix typos.
|
2023-09-19 15:18:03 +01:00 |
|
Mathias Vorreiter Pedersen
|
7ef5971337
|
C++: Use 'size_t' explicitly in test.
|
2023-09-19 13:58:08 +01:00 |
|
Mathias Vorreiter Pedersen
|
9b35202d21
|
Merge pull request #14249 from MathiasVP/fix-malloc-decl-in-test
C++: Fix the declaration of `malloc` in test
|
2023-09-19 13:53:23 +01:00 |
|
github-actions[bot]
|
0a3670727f
|
Release preparation for version 2.14.6
|
2023-09-19 11:40:30 +00:00 |
|
Mathias Vorreiter Pedersen
|
8906a37989
|
Merge pull request #14250 from MathiasVP/reduce-dataflow-duplication-for-allocations
C++: Reduce dataflow duplication for allocations
|
2023-09-19 11:18:20 +01:00 |
|
Alexander Eyers-Taylor
|
1f4a5301cd
|
Merge pull request #14242 from alexet/simplify-ir-guards
CPP: Simplify some code in IRGuards.
|
2023-09-19 10:35:09 +01:00 |
|
Mathias Vorreiter Pedersen
|
fda52a568d
|
C++: Accept test changes.
|
2023-09-18 17:55:25 +01:00 |
|
Mathias Vorreiter Pedersen
|
d2e66a1186
|
C++: Ignore addresses of 'InitializeDynamicAllocationInstruction' in 'unique' when converting between instructions and expression in dataflow.
|
2023-09-18 17:55:19 +01:00 |
|
Mathias Vorreiter Pedersen
|
8a2d4852c6
|
C++: Add another testcase.
|
2023-09-18 16:48:03 +01:00 |
|
Mathias Vorreiter Pedersen
|
bc0b2e5318
|
C++: Fix the return type and parameter type of 'malloc' in test.
|
2023-09-18 16:40:46 +01:00 |
|
Mathias Vorreiter Pedersen
|
0e9f5f6b8e
|
C++: Accept test changes.
|
2023-09-18 11:46:19 +01:00 |
|
Mathias Vorreiter Pedersen
|
38b100531b
|
C++: Only add conversion when necessary.
|
2023-09-18 11:46:11 +01:00 |
|
Mathias Vorreiter Pedersen
|
53561b7883
|
C++: Add tests for sized allocation without a need for a synthesized conversion.
|
2023-09-18 11:45:18 +01:00 |
|
Alex Eyers-Taylor
|
c7ccfac938
|
CPP: Simplify some code in IRGuards.
|
2023-09-18 10:51:48 +01:00 |
|
Mathias Vorreiter Pedersen
|
734a91db9c
|
Merge pull request #14237 from MathiasVP/range-analysis-perf
C++: Fix order of non-linear join in range analysis
|
2023-09-18 10:38:19 +01:00 |
|
Mathias Vorreiter Pedersen
|
46b15fa6f2
|
C++: Fix join of non-linear joins.
|
2023-09-16 01:33:16 +01:00 |
|
Mathias Vorreiter Pedersen
|
cdf5872eb3
|
Merge pull request #14217 from alexet/is-trivial-built-in
CPP:Make __is_trivial a builtin operation.
|
2023-09-15 16:01:25 +01:00 |
|
Mathias Vorreiter Pedersen
|
6c7833f28c
|
Merge pull request #14223 from MathiasVP/add-explicit-dereferenced-by-operation-base-case-predicate
C++: Add a `directDereferencedByOperation` predicate
|
2023-09-15 10:19:26 +01:00 |
|
Mathias Vorreiter Pedersen
|
8aeb9b9ae0
|
Merge pull request #14219 from MathiasVP/fix-phi-flow-2
C++: Fix `phi`->`phi` flow
|
2023-09-14 17:22:51 +01:00 |
|
Mathias Vorreiter Pedersen
|
b18de9e641
|
C++: Add a named base case predicate for 'dereferencedByOperation' that can be used in queries.
|
2023-09-14 17:12:58 +01:00 |
|
AlexDenisov
|
ff7ff6dcfa
|
Merge pull request #14201 from MathiasVP/add-ast-consistency-query
C++: Add AST consistency query
|
2023-09-14 16:34:20 +02:00 |
|
Mathias Vorreiter Pedersen
|
b0566af938
|
C++: Accept test changes.
|
2023-09-14 14:04:12 +01:00 |
|
Mathias Vorreiter Pedersen
|
36b7b6cffe
|
C++: Fix phi-phi flow.
|
2023-09-14 14:02:03 +01:00 |
|
Mathias Vorreiter Pedersen
|
2a55034e55
|
C++: Add failing test.
|
2023-09-14 14:01:48 +01:00 |
|
Alex Eyers-Taylor
|
d79a2c7674
|
CPP:Make __is_trivial a builtin operation.
|
2023-09-14 12:50:36 +01:00 |
|
Mathias Vorreiter Pedersen
|
18fa6f5d64
|
Merge pull request #14202 from alexet/translated-element-location
CPP: Add a location to TranslatedElement to help with debugging IR creation
|
2023-09-13 15:19:24 +01:00 |
|
Anders Schack-Mulligen
|
f5a4b792bd
|
C++/Go/Python/Ruby/Swift: Add dummy localMustFlowStep.
|
2023-09-13 15:43:46 +02:00 |
|
Mathias Vorreiter Pedersen
|
177fcacf38
|
Merge pull request #14134 from MathiasVP/add-surprising-lifetimes-to-experimental
C++: Copy the Coding Standards' use-after-lifetime-ended query to Experimental
|
2023-09-13 13:06:18 +01:00 |
|
Mathias Vorreiter Pedersen
|
a0018c92e1
|
Merge pull request #14193 from MathiasVP/fully-converted-expressions-for-flow-after-free
C++: Use fully converted expressions for `cpp/use-after-free` and `cpp/double-free`
|
2023-09-13 12:24:23 +01:00 |
|
Alex Eyers-Taylor
|
0c10fa0c87
|
CPP: Add a location to TranslatedElement to help with debugging IR creation
|
2023-09-13 12:21:30 +01:00 |
|
Mathias Vorreiter Pedersen
|
0cd4e32ed8
|
C++: Add AST consistency query.
|
2023-09-13 12:15:40 +01:00 |
|
Mathias Vorreiter Pedersen
|
af51a0a9ca
|
C++: Respond to review comments.
|
2023-09-13 11:43:12 +01:00 |
|
Mathias Vorreiter Pedersen
|
81d20be1ee
|
Update cpp/ql/src/experimental/Security/CWE/CWE-416/UseAfterExpiredLifetime.qhelp
Co-authored-by: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
|
2023-09-13 11:37:32 +01:00 |
|
Tom Hvitved
|
7400b4741e
|
Merge pull request #14108 from hvitved/dataflow/more-consistency-checks
Data flow: Add `ArgumentNode` consistency checks
|
2023-09-13 11:30:51 +02:00 |
|
Mathias Vorreiter Pedersen
|
05080924de
|
C++: Don't use converted expressions in 'LeapYear.qll'.
|
2023-09-12 19:48:52 +01:00 |
|
Mathias Vorreiter Pedersen
|
b03054b1ed
|
C++: Make sure some instruction also gives back the 'ParenthesisExpr's.
|
2023-09-12 19:46:42 +01:00 |
|
Mathias Vorreiter Pedersen
|
71fe6f5d4b
|
C++: Use fully converted expressions in 'cpp/use-after-free' and 'cpp/double-free'.
|
2023-09-12 19:28:57 +01:00 |
|
Tom Hvitved
|
c9910f5464
|
C++: Update expected test output
|
2023-09-12 20:05:12 +02:00 |
|
Henning Makholm
|
bac175e881
|
C++ tests: fix output of bug-stricken test
The expected output was incorrect and the result of an evaluator bug.
This change should go together with the internal PR that fixes this bug.
|
2023-09-12 16:28:59 +02:00 |
|
Mathias Vorreiter Pedersen
|
ff28f45058
|
C++: Accept test changes.
|
2023-09-12 10:28:46 +01:00 |
|
Mathias Vorreiter Pedersen
|
7d2c12e63d
|
C++: Handle the extent of 'new[]' in 'getConvertedResultExpressionImpl0' and add a few more comments.
|
2023-09-12 10:28:36 +01:00 |
|
Mathias Vorreiter Pedersen
|
becb469477
|
Merge branch 'main' into deduplicate-dataflow-results-take-3
|
2023-09-11 09:55:11 +01:00 |
|
Mathias Vorreiter Pedersen
|
7ff4ebd912
|
Merge pull request #14102 from alexet/alexet/remove-unreachable-ir
CPP: Remove sucessors of non-returning IR calls transitively.
|
2023-09-09 14:48:26 +01:00 |
|
github-actions[bot]
|
d699880c86
|
Post-release preparation for codeql-cli-2.14.4
|
2023-09-08 21:17:52 +00:00 |
|