hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 17:23:36 +01:00
Code Issues Packages Projects Releases Wiki Activity
82,920 Commits 1,671 Branches 157 Tags
codeql-cli-2.23.2
Commit Graph

13732 Commits

Author SHA1 Message Date
Mathias Vorreiter Pedersen
f6231a37e1 Merge pull request #19627 from MathiasVP/generalize-bulk-generation 
Bulk MAD generator: Support databases from DCA runs
 2025-05-30 14:46:36 +01:00
REDMOND\brodes
69e3a20e24 Crypto: Update crypto stubs location under 'crypto' and associate codeowners on any test/stubs/crypto. Minor fix to HashAlgorithmValueConsumer (remove library detector logic). 2025-05-30 09:35:33 -04:00
Mathias Vorreiter Pedersen
7cb9024cc6 Bulk generator: Flip default values for summaries, sources, and sinks. 2025-05-30 13:33:24 +01:00
Mathias Vorreiter Pedersen
3444c986ec Bulk generator: Fix field name. 2025-05-30 13:25:12 +01:00
Mathias Vorreiter Pedersen
1228080914 Bulk generator: Specify 'language' in the config file. 2025-05-30 12:40:21 +01:00
Mathias Vorreiter Pedersen
fc165db8ac Bulk generator: Specify 'with-summaries', 'with-sources', and 'with-sinks' in the config file. 2025-05-30 12:40:20 +01:00
Mathias Vorreiter Pedersen
5051790e24 Bulk generator: Add DCA support. 2025-05-29 18:14:22 +01:00
Mathias Vorreiter Pedersen
cb0b566588 C++: Put autogenerated models in the same folder structure as Rust. 2025-05-29 18:14:15 +01:00
REDMOND\brodes
b1ce44e434 Crypto: Move openssl stubs to a shared stubs location. Include openssl apache license and a readme for future stub creation. Modify existing test case to reference stubs location. 2025-05-28 12:05:18 -04:00
Jeroen Ketema
0796184573 C++: Specify GNU version on min/max test 
The `<?` and `>?` operators where removed in g++ in version 4.3, and the
latest version of our our frontend enforces this through a version check.
Hence, to keep the test working, we not to explicitly specify a version.
 2025-05-28 14:16:47 +02:00
REDMOND\brodes
41f008d4f3 Crypto: Adding initial openssl tests, fixing a bug in hash modeling found through tests, and updating CODEOWNERS for quantum tests 2025-05-27 15:23:53 -04:00
github-actions[bot]
d2c6875eac Post-release preparation for codeql-cli-2.21.4 2025-05-27 18:16:21 +00:00
github-actions[bot]
bfb91e95e3 Release preparation for version 2.21.4 2025-05-27 17:22:05 +00:00
Jeroen Ketema
ae266546a6 C++: Minor test clean up 2025-05-27 16:57:23 +02:00
Jeroen Ketema
ae67948a67 C++: Fix formatting in model files 2025-05-27 16:55:26 +02:00
Mathias Vorreiter Pedersen
76c2d24a7e C++: Add summary for ReadFileEx and accept test changes. 2025-05-27 12:41:22 +01:00
Mathias Vorreiter Pedersen
c1ee56e4c1 C++: Add ReadFileEx tests with missing flow. 2025-05-27 12:41:20 +01:00
Mathias Vorreiter Pedersen
a05ddca9c9 Update cpp/ql/lib/ext/Windows.model.yml 
Co-authored-by: Jeroen Ketema <93738568+jketema@users.noreply.github.com>
 2025-05-27 11:45:35 +01:00
Mathias Vorreiter Pedersen
80229644b8 Update cpp/ql/lib/ext/Windows.model.yml 
Co-authored-by: Jeroen Ketema <93738568+jketema@users.noreply.github.com>
 2025-05-27 11:45:27 +01:00
Mathias Vorreiter Pedersen
e406f27bb3 Update cpp/ql/lib/ext/Windows.model.yml 
Co-authored-by: Jeroen Ketema <93738568+jketema@users.noreply.github.com>
 2025-05-27 11:45:18 +01:00
Mathias Vorreiter Pedersen
fd9adc43c2 C++: Add change note. 2025-05-27 11:38:02 +01:00
Mathias Vorreiter Pedersen
5d8bb1b5b0 C++: Add more Windows sources. 2025-05-27 11:38:00 +01:00
Jeroen Ketema
b071a462f3 Merge pull request #19563 from jketema/jketema/win-flow 
C++: Add Windows command line and environment models
 2025-05-27 12:32:51 +02:00
Anders Schack-Mulligen
a519eabd4d Merge pull request #19571 from aschackmull/rangeanalysis/guards 
Rangeanalysis: Simplify Guards integration.
 2025-05-26 10:36:22 +02:00
Jeroen Ketema
10f6e1ceb8 C++: Add change note 2025-05-23 19:17:17 +02:00
Jeroen Ketema
fbc9615287 C++: Update expected test results 2025-05-23 16:03:47 +02:00
Jeroen Ketema
a77ddd7532 C++: Add Windows command line and environment models 2025-05-23 15:56:09 +02:00
Jeroen Ketema
b800040c73 C++: Add tests for various local Windows dataflow sources 2025-05-23 15:55:02 +02:00
Mathias Vorreiter Pedersen
0822ded899 Merge pull request #19569 from MathiasVP/fix-return-value-surces-in-mad 
Shared/C++: Handle non-standard return values in MaD flow sources/sinks
 2025-05-23 13:58:26 +01:00
Anders Schack-Mulligen
62000319fe Rangeanalysis: Simplify Guards integration. 2025-05-23 13:39:53 +02:00
Mathias Vorreiter Pedersen
cf39103df3 C++: Accept test changes. 2025-05-23 11:19:25 +01:00
Mathias Vorreiter Pedersen
07c4eca4d8 C++: Implement the new predicate for C++. 2025-05-23 11:16:49 +01:00
Anders Schack-Mulligen
1d30103559 SSA: Distinguish between has and controls branch edge. 2025-05-23 09:56:22 +02:00
REDMOND\brodes
007683f06a Crypto: Simplifying constant comparisons. 2025-05-22 14:06:13 -04:00
REDMOND\brodes
28f48246fc Crypto: Adding signature constant support, and fixing key exchange and signature mapping for ED and X elliptic curve variants. 2025-05-22 13:13:35 -04:00
REDMOND\brodes
ca1d4e270a Crypto: Separating out an IntLiteral class so it is clearer that some constraints for generic input sources are heuristics to filter sources, and other constraints narrow the literals to a general type (ints). Also adding fixes in KnownAlgorithmConstants to classify some algorithms as key exchange and signature correctly, and added support for a signature constant wrapper. 2025-05-22 12:53:11 -04:00
REDMOND\brodes
570fdeb254 Crypto: Code Cleanup (+1 squashed commits) 
Squashed commits:

[417734cc3c] Crypto: Fixing typo (+1 squashed commits)

Squashed commits:

[1ac3d5c7d4] Crypto: Fixing typo caused by AI auto complete.
 2025-05-22 10:52:19 -04:00
REDMOND\brodes
a5b57d3694 Merge branch 'main' into generic_constant_filtering 
# Conflicts:
#	cpp/ql/lib/experimental/quantum/Language.qll
#	cpp/ql/lib/experimental/quantum/OpenSSL/AlgorithmInstances/KnownAlgorithmConstants.qll
#	cpp/ql/lib/experimental/quantum/OpenSSL/OpenSSL.qll
 2025-05-22 10:37:10 -04:00
REDMOND\brodes
09170e598c Crypto: Making generic literal filter more explicit that it is for filtering all constants, not just for algorithms. 2025-05-22 10:31:58 -04:00
REDMOND\brodes
100045d4cb Crypto: optimizing out the "getPossibleNidFromLiteral" predicate, and now relying on the charpred of OpenSSLAlgorithmCandidateLiteral. 2025-05-21 18:25:29 -04:00
REDMOND\brodes
a36fd2cb31 Crypto: Advanced literal filtering for OpenSSL, used for both unknown and known algorithm literals to improve dataflow performance. 2025-05-21 18:15:44 -04:00
REDMOND\brodes
d75fc2e8ec Crypto: Further code cleanup 2025-05-21 15:25:04 -04:00
Ben Rodes
5370bb4e45 Merge branch 'main' into ben_refactoring 2025-05-21 15:07:53 -04:00
REDMOND\brodes
bbee2c9bdf Crypto: Misc. refactoring and code clean up. 2025-05-21 15:06:46 -04:00
Nicolas Will
9cc121f414 Merge pull request #19545 from bdrodes/missing_openssl_hash_algorithm_consumers 
Quantum: Model missing OpenSSL EVP digest consumers
 2025-05-21 19:03:06 +02:00
Nicolas Will
9637aeca5e Merge pull request #19547 from bdrodes/openssl_pkey_alg_value_consumers 
Quantum: Add OpenSSL PKEY algorithm value consumers.
 2025-05-21 19:00:36 +02:00
Nicolas Will
acb19627d6 Merge branch 'main' into missing_openssl_hash_algorithm_consumers 2025-05-21 18:01:28 +02:00
REDMOND\brodes
9f65cb8c4c Comment/doc cleanup 2025-05-21 11:51:25 -04:00
Nicolas Will
48e484b438 Apply suggestions from code review 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-05-21 16:26:11 +02:00
Nicolas Will
7ee1bd61fb Merge pull request #19541 from bdrodes/openssl_ec_key_gen 
Openssl ec key gen
 2025-05-21 16:13:05 +02:00