13116 Commits

Author	SHA1	Message	Date
Mathias Vorreiter Pedersen	4e18cca0f4	C++: Add a way to test the behavior of 'asExpr' and 'toString' on dataflow nodes.	2024-01-24 16:12:47 +00:00
Geoffrey White	a727255a82	C++: Add a couple more test cases and correct test models again.	2024-01-24 15:18:49 +00:00
github-actions[bot]	d0b74c00fe	Post-release preparation for codeql-cli-2.16.1	2024-01-23 23:02:29 +00:00
github-actions[bot]	7ef611e6dc	Release preparation for version 2.16.1	2024-01-23 19:45:16 +00:00
Mathias Vorreiter Pedersen	145b5a30bd	Merge pull request #15343 from microsoft/38-cpp-generalize-use-after-free-libraries ... Generalization of FlowAfterFree	2024-01-23 16:49:29 +00:00
Ben Rodes	55fe8d376c	Update cpp/ql/lib/semmle/code/cpp/security/flowafterfree/UseAfterFree.qll	2024-01-23 10:49:47 -05:00
Benjamin Rodes	dfb3aec002	Removing unnecessary private modules and adding comments.	2024-01-23 10:47:38 -05:00
Mathias Vorreiter Pedersen	42fd3fc836	C++: Make more things 'private' and add QLDoc to public things. (#40)	2024-01-23 10:27:01 -05:00
Geoffrey White	c10f41b168	C++: Use getClassAndName.	2024-01-23 15:02:59 +00:00
Geoffrey White	4c1f433073	C++: Move getIndirectionIndex to ReturnKind.	2024-01-23 14:52:44 +00:00
Mathias Vorreiter Pedersen	b1b236d82d	Merge pull request #15410 from MathiasVP/less-dataflow-duplication ... C++: Remove more `asExpr` duplication	2024-01-23 14:50:01 +00:00
Erik Krogh Kristensen	f1d6f56621	Merge pull request #15393 from erik-krogh/deps-jan-2024 ... All: delete outdated deprecations	2024-01-23 13:52:38 +01:00
Mathias Vorreiter Pedersen	8b172c133d	C++: Accept test changes.	2024-01-23 12:06:42 +00:00
Mathias Vorreiter Pedersen	5bc602a208	C++: Ensure that we don't create a result for 'asExpr' on an instruction node if a result also exists for an operand node (and vice versa).	2024-01-23 12:06:35 +00:00
Alex Eyers-Taylor	891d398c3f	CPP: Fix join ordering hints	2024-01-22 19:00:18 +00:00
erik-krogh	865df920f9	add change-notes	2024-01-22 19:30:57 +01:00
Benjamin Rodes	da10e6ca5b	Moving FlowAfterFree and UseAfterFree.qll as a general purpose lib.	2024-01-22 11:18:03 -05:00
Benjamin Rodes	2181fcf284	Updating .expected to account for new free/deallocation sources.	2024-01-22 10:36:24 -05:00
erik-krogh	8be7eadace	delete outdated deprecations	2024-01-22 09:11:35 +01:00
Geoffrey White	5127542677	C++: Rename the query file.	2024-01-19 16:31:34 +00:00
Geoffrey White	01ee61e5ea	C++: Change note.	2024-01-19 15:56:54 +00:00
Geoffrey White	4691bf2cb5	C++: Be more optimistic about successfully scanned files.	2024-01-19 15:55:54 +00:00
Geoffrey White	2eba3db1cb	C++: Add a test for SuccessfullyExtractedFiles.ql and friends.	2024-01-19 15:50:28 +00:00
Geoffrey White	963e0a730d	C++: Fix some off-by-one mistakes in the test.	2024-01-18 17:38:32 +00:00
Benjamin Rodes	833ef9d6d6	Further reorg of libraries and predicates to allow for more reusable and consistent libraries.	2024-01-18 11:17:24 -05:00
Geoffrey White	42571069bf	C++: Autoformat.	2024-01-18 16:01:06 +00:00
Geoffrey White	017369c6f2	C++: Remove redundant import (identified by QL-for-QL).	2024-01-18 15:59:32 +00:00
Benjamin Rodes	967526b285	Separating out use after free logic into a library and a ql so the query can be expanded easily.	2024-01-18 10:59:17 -05:00
Benjamin Rodes	8bd682b3f2	Deallocation.qll formatting.	2024-01-18 10:49:23 -05:00
Benjamin Rodes	7e70b30772	Adding missing windows library free functions to deallocation set	2024-01-18 09:59:28 -05:00
Geoffrey White	cc2b61186e	C++: Document TReturnKind, NormalReturnKind and IndirectReturnKind better.	2024-01-18 13:24:57 +00:00
Geoffrey White	dd27ef7d3c	C++: Add MAD source definitions for the new taint sources and update the (real) test.	2024-01-18 13:24:57 +00:00
Geoffrey White	833165f86c	C++: Update the (synthetic) test.	2024-01-18 13:24:57 +00:00
Geoffrey White	c85262cfd0	C++: Add the shared MAD pack to CPP.	2024-01-18 13:24:57 +00:00
Geoffrey White	a8863e44db	C++: Port implementation to CPP.	2024-01-18 13:24:57 +00:00
Geoffrey White	3aacc5ffde	C++: Copy FlowSummaryImpl.qll from Swift.	2024-01-18 13:01:16 +00:00
Geoffrey White	fbf9545338	C++: Copy ExternalFlow.qll from Swift.	2024-01-18 13:01:16 +00:00
Geoffrey White	303882350b	C++: Add some test cases for new (real) taint sources to be defined using models-as-data.	2024-01-18 13:01:16 +00:00
Geoffrey White	9611e4ce19	C++: Add tests for (synthetic) models-as-data sources and sinks.	2024-01-18 13:01:16 +00:00
Ben Rodes	67e43ecc44	Merge branch 'main' into 38-cpp-generalize-use-after-free-libraries	2024-01-17 08:05:41 -08:00
Mathias Vorreiter Pedersen	39dafd6f6a	C++: Suggestions to #15343 (#39) ... * C++: Change the interface of 'FlowAfterFree' so that the module it takes a single module as a parameter. * C++: Add another predicate to the module signature. * C++: Convert the use-after-free and double-free libraries to use new interface. * C++: Accept test changes.	2024-01-17 11:02:46 -05:00
Alex Denisov	f1049a4431	C++: update tests to pick up destructor changes	2024-01-17 12:05:30 +01:00
Benjamin Rodes	9a0e2e57ba	Updating .expected	2024-01-16 13:18:25 -05:00
Benjamin Rodes	a0ef7955b1	Updating FlowAfterFree to not enforce dominance of source/sink. DoubleFree and UseAfterFree queries now enforce dominance.	2024-01-16 13:15:36 -05:00
Alexander Eyers-Taylor	934474681d	Merge pull request #15254 from github/post-release-prep/codeql-cli-2.16.0 ... Post-release preparation for codeql-cli-2.16.0	2024-01-16 14:50:40 +00:00
github-actions[bot]	57df8b92df	Post-release preparation for codeql-cli-2.16.0	2024-01-15 15:00:50 +00:00
Ian Lynagh	ff2b40a53d	Merge pull request #15315 from igfoo/igfoo/typo ... C++: Fix typo	2024-01-12 18:28:32 +00:00
Ian Lynagh	e357d18d35	C++: Fix typo	2024-01-12 17:57:34 +00:00
Mathias Vorreiter Pedersen	6bd31deb00	Merge pull request #15282 from MathiasVP/fix-duplicate-final-global-value ... C++: Fix duplicate "final global value" nodes	2024-01-12 11:05:19 +00:00
Mathias Vorreiter Pedersen	8f36584bd9	C++: Fix Code Scanning errors.	2024-01-12 10:20:20 +00:00