5096 Commits

Author	SHA1	Message	Date
Anders Schack-Mulligen	38319a4832	C/C++: Make Content public as DataFlow::Content.	2021-06-21 14:42:47 +02:00
Anders Schack-Mulligen	80880320d5	Dataflow: Sync.	2021-06-21 14:42:47 +02:00
Mathias Vorreiter Pedersen	238c483e5b	C++: Make any non-overflowing arithmetic operation a barrier.	2021-06-21 14:05:34 +02:00
Geoffrey White	79198974dc	Merge branch 'main' into weak-crypto3	2021-06-21 11:55:29 +01:00
Anders Schack-Mulligen	9110dfaeb3	Merge pull request #6095 from hvitved/dataflow/local-cc-join ... Data flow: Fix `getLocalCallContext` join-order	2021-06-21 12:53:38 +02:00
Mathias Vorreiter Pedersen	17df8e44d0	C++: Convert 'cpp/tainted-arithmetic' to a 'path-problem' query.	2021-06-18 14:56:17 +02:00
Calum Grant	32f6a465b0	Merge pull request #6080 from github/calumgrant/security-severities ... Update security-severity scores	2021-06-18 09:40:40 +01:00
Tom Hvitved	eb86bceb4d	Address review comments	2021-06-18 10:18:47 +02:00
Geoffrey White	b4cbe6dce8	C++: Increase query precision to high.	2021-06-17 14:33:17 +01:00
Geoffrey White	b5c71fd1d7	C++: Repair funcion call in a function call.	2021-06-17 14:33:16 +01:00
Geoffrey White	e5147c2a1f	C++: Exclude functions that don't involve buffers.	2021-06-17 14:33:16 +01:00
Geoffrey White	a481e5c292	C++: Exclude template code.	2021-06-17 12:36:14 +01:00
ihsinme	1cabaec0c3	Update cpp/ql/src/experimental/Security/CWE/CWE-561/FindIncorrectlyUsedSwitch.qhelp ... Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>	2021-06-17 11:09:36 +03:00
Tom Hvitved	ffb2350a54	Data flow: Fix getLocalCallContext join-order	2021-06-17 10:02:31 +02:00
Tom Hvitved	cc383e0f6a	Data flow: Workaround for too clever compiler in consistency queries	2021-06-17 09:43:36 +02:00
ihsinme	f5008d31f5	Add files via upload	2021-06-15 16:51:38 +03:00
ihsinme	bdab785bef	Add files via upload	2021-06-15 16:42:38 +03:00
Calum Grant	771e686946	Update security-severity scores	2021-06-15 13:25:17 +01:00
Cornelius Riemenschneider	0ebf53b9df	Merge pull request #6073 from geoffw0/loc ... C++: Add lines of user code query	2021-06-15 09:18:46 +02:00
Mathias Vorreiter Pedersen	cc6ae7f8b8	Merge branch 'main' into path-sensitive-stack-variable-reachability-analysis	2021-06-14 22:02:46 +02:00
Mathias Vorreiter Pedersen	79926788d1	C++: Fix non-monotonic recursion problems in 'StackVariableReachabilityWithReassignment' by using the old StackVariableReachability predicates that don't care about paths.	2021-06-14 22:00:17 +02:00
Mathias Vorreiter Pedersen	c32f72063f	C++: Add path sensitivity to StackVariableReachability.	2021-06-14 21:59:13 +02:00
Geoffrey White	e71264d1d2	C++: Lines of user code query.	2021-06-14 16:03:16 +01:00
Jonas Jensen	e23b88b7f1	Merge pull request #6052 from jsinglet/jsinglet/stdtypes ... Implementation of standard C/C++ fixed width, minimum width, and maximum width types	2021-06-11 17:03:01 +02:00
John L. Singleton	8c6c011be2	Formatting fixes, comment moving.	2021-06-11 10:17:05 -04:00
John L. Singleton	cd61fb4753	this should be abstract	2021-06-10 19:54:58 -04:00
John L. Singleton	2a01324172	more maintainable pattern for class abstractions	2021-06-10 17:09:32 -04:00
Calum Grant	a594afb828	Add security-severity metadata	2021-06-10 20:11:08 +01:00
John L. Singleton	bd7c416356	comment change	2021-06-10 11:21:11 -04:00
John L. Singleton	0d3f53b013	Changes to structure per feedback of @jbj	2021-06-10 11:16:58 -04:00
John L. Singleton	f174d7a0e0	Comment changes	2021-06-10 09:52:22 -04:00
John L. Singleton	14c419a75f	autoformatting	2021-06-10 09:39:43 -04:00
John L. Singleton	28e2cdb54e	adding standard C/C++ fixed width, minimum width, and maximum width types	2021-06-09 16:12:58 -04:00
Mathias Vorreiter Pedersen	879bfbbd4e	C++: Match the join order from before #5522.	2021-06-09 15:02:31 +02:00
Mathias Vorreiter Pedersen	8fb15666ee	Merge pull request #6041 from geoffw0/uncontrolled-allocation-size ... C++: Add CWE-789 tag to cpp/uncontrolled-allocation-size.	2021-06-08 17:44:02 +02:00
Geoffrey White	32545a1346	C++: Add CWE-789 tag to cpp/uncontrolled-allocation-size.	2021-06-08 10:59:03 +01:00
Mathias Vorreiter Pedersen	025043afca	Merge pull request #6010 from geoffw0/charloc ... C++: Test and fix maxCols / charLoc	2021-06-08 11:15:04 +02:00
Geoffrey White	6f05fd4839	C++: Autoformat.	2021-06-07 11:01:00 +01:00
Dave Bartolomeo	e276e2684e	Merge pull request #5986 from MathiasVP/side-effects-for-nonconst-smart-pointers ... C++: Fix `hasDefaultSideEffect` for non-const smart pointers	2021-06-04 13:57:44 -04:00
Mathias Vorreiter Pedersen	27586d77f8	C++: Copy isDeeplyConst{Below} into SideEffects and modify it so that it works for smart pointers.	2021-06-04 18:46:52 +02:00
Geoffrey White	3c6a1f165b	Update cpp/ql/src/semmle/code/cpp/Location.qll ... Co-authored-by: Jonas Jensen <jbj@github.com>	2021-06-04 16:19:11 +01:00
Geoffrey White	b24dc810c9	C++: Combine results from cpp/weak-cryptographic-algorithm that are in the same file.	2021-06-04 14:04:02 +01:00
Geoffrey White	a93246d28b	C++: Fix maxCols.	2021-06-04 13:05:13 +01:00
Jonas Jensen	7282ad90d0	Merge pull request #5854 from dbartol/dbartol/smart-pointers/side-effects ... C++: Generate side effect instructions for smart pointer indirections	2021-06-01 16:57:05 +02:00
Dave Bartolomeo	da14647e5a	Merge pull request #5522 from github/rdmarsh2/cpp/ssa-reuse ... C++: reuse unaliased SSA results when computing aliased SSA	2021-06-01 10:17:54 -04:00
Anders Schack-Mulligen	ce509eb7e1	Merge pull request #5927 from aschackmull/dataflow/flowthrough-dispatch-perf ... Dataflow: Improve performance in flow-through pruning	2021-06-01 11:46:22 +02:00
Anders Schack-Mulligen	5d21c64247	Dataflow: qldoc fix.	2021-06-01 10:49:47 +02:00
Jonas Jensen	2261085cfe	Merge pull request #5973 from MathiasVP/more-uncontrolled-arith-improvements ... C++: More `cpp/uncontrolled-arithmetic` improvements	2021-06-01 10:44:29 +02:00
Anders Schack-Mulligen	4f9a6c151b	Dataflow: Code review fixes.	2021-06-01 10:29:17 +02:00
Mathias Vorreiter Pedersen	8765c33847	C++: Also check the number of parameters to keep the tests happy.	2021-06-01 10:17:57 +02:00