Mathias Vorreiter Pedersen
|
a082172422
|
C++: Add testcase demonstrating missing local flow out of fields that are defined by reference.
|
2021-07-29 14:46:32 +02:00 |
|
Geoffrey White
|
ae35ae10e6
|
C++: Fix readlink FPs.
|
2021-07-28 17:45:18 +01:00 |
|
ihsinme
|
2d5a263799
|
Update FindIncorrectlyUsedExceptions.ql
|
2021-07-28 18:46:49 +03:00 |
|
Geoffrey White
|
c2ef58d29d
|
C++: Support 'readlinkat'.
|
2021-07-28 16:15:28 +01:00 |
|
Geoffrey White
|
358d89f3ce
|
C++: Add tests.
|
2021-07-28 16:15:16 +01:00 |
|
Geoffrey White
|
5ac6b38380
|
C++: Change note.
|
2021-07-27 14:27:16 +01:00 |
|
Geoffrey White
|
e7842b9625
|
C++: Autoformat.
|
2021-07-27 14:19:30 +01:00 |
|
Geoffrey White
|
00f6f668cc
|
C++: Don't report underflowing multiplication.
|
2021-07-27 14:02:40 +01:00 |
|
Geoffrey White
|
40f0658e8a
|
C++: Exclude unintended results on pointers.
|
2021-07-27 13:39:20 +01:00 |
|
Geoffrey White
|
503c5c9e33
|
C++: Add more test cases.
|
2021-07-27 13:38:00 +01:00 |
|
Robert Marsh
|
b6200e5b23
|
Merge pull request #6369 from geoffw0/toctou3
C++: Increase cpp/toctou-race-condition query precision.
|
2021-07-26 13:16:28 -07:00 |
|
Robert Marsh
|
fbb3f2e506
|
Merge pull request #6273 from geoffw0/cleartext-storage-file
C++: Improve the CleartextFileWrite query
|
2021-07-26 12:46:51 -07:00 |
|
Geoffrey White
|
f65c5cfb70
|
C++: Increase query precision.
|
2021-07-26 15:15:12 +01:00 |
|
Robert Marsh
|
0e9d36b922
|
Merge pull request #6335 from geoffw0/toctou2
C++: Improvements to the cpp/toctou-race-condition query
|
2021-07-22 12:49:32 -07:00 |
|
Geoffrey White
|
d9682aa440
|
C++: Autoformat.
|
2021-07-22 18:32:40 +01:00 |
|
Geoffrey White
|
e9b96adf24
|
C++: Exclude results formatted with a character other than %s.
|
2021-07-22 17:40:32 +01:00 |
|
Geoffrey White
|
f8fed263e6
|
C++: Exclude results that are used as file names.
|
2021-07-22 17:40:25 +01:00 |
|
Geoffrey White
|
1d582182b0
|
C++: Exclude 'path'.
|
2021-07-22 15:49:30 +01:00 |
|
Geoffrey White
|
86ee5fea40
|
C++: More test cases and correct an existing one.
|
2021-07-22 15:47:06 +01:00 |
|
Mathias Vorreiter Pedersen
|
e34261accf
|
Merge branch 'rc/3.2' into mergeback-2021-07-22
|
2021-07-22 14:40:22 +02:00 |
|
Geoffrey White
|
a4c137fae5
|
C++: Add '_fsopen' as well.
|
2021-07-22 11:31:41 +01:00 |
|
Mathias Vorreiter Pedersen
|
39144ee02b
|
C++: Import 'GVN' in 'Overflow.qll' to prevent IR reevaluation.
|
2021-07-22 11:35:16 +02:00 |
|
Geoffrey White
|
fa0f5d08a2
|
Merge branch 'main' into toctou2
|
2021-07-21 16:21:29 +01:00 |
|
Mathias Vorreiter Pedersen
|
73ee7409f6
|
Merge pull request #6342 from MathiasVP/fix-fp-in-uninitialized-local
C++: Fix FP in `cpp/uninitialized-local`
|
2021-07-21 14:46:57 +02:00 |
|
Mathias Vorreiter Pedersen
|
e536cecefe
|
C++: Fix FP caused by a variable missing type information.
|
2021-07-21 11:04:23 +02:00 |
|
Mathias Vorreiter Pedersen
|
6d0290809d
|
Merge branch 'rc/3.2' into mergeback-2021-07-21
|
2021-07-21 10:23:58 +02:00 |
|
ihsinme
|
8aac5b339e
|
Update FindIncorrectlyUsedExceptions.expected
|
2021-07-21 09:49:19 +03:00 |
|
ihsinme
|
4202759bcc
|
Update test.cpp
|
2021-07-21 09:48:36 +03:00 |
|
ihsinme
|
2d1924ac0e
|
Update test.cpp
|
2021-07-21 08:32:18 +03:00 |
|
ihsinme
|
cf689b83a9
|
Apply suggestions from code review
Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>
|
2021-07-21 08:29:42 +03:00 |
|
Geoffrey White
|
473198a6ef
|
C++: Accept any check followed by a 'sensitive' use such as 'chmod'.
|
2021-07-20 18:11:05 +01:00 |
|
Geoffrey White
|
c6d8abc9b1
|
C++: Add a couple more testcases.
|
2021-07-20 17:52:59 +01:00 |
|
Mathias Vorreiter Pedersen
|
a006a7fb24
|
Revert "Merge pull request #6004 from MathiasVP/path-sensitive-stack-variable-reachability-analysis"
This reverts commit e3e7b00986, reversing
changes made to 8ccdd4fb9f.
|
2021-07-20 18:06:49 +02:00 |
|
Geoffrey White
|
5d1c7841a6
|
C++: Change note.
|
2021-07-20 14:14:01 +01:00 |
|
Geoffrey White
|
ae944b268a
|
C++: Restrict the 'check' to stat / access only as these are by far the more reliable results.
|
2021-07-20 11:18:00 +01:00 |
|
Geoffrey White
|
ab4b2c2342
|
C++: Fix 'rename'.
|
2021-07-19 18:58:39 +01:00 |
|
Geoffrey White
|
95ec8f5394
|
C++: Add support for '_wfsopen'.
|
2021-07-19 18:36:09 +01:00 |
|
Geoffrey White
|
c85edb6c03
|
C++: Use [, ] in the query.
|
2021-07-19 15:24:25 +01:00 |
|
Geoffrey White
|
7684796d63
|
C++: Fix handling of the 'stat' pointer argument.
|
2021-07-19 15:13:19 +01:00 |
|
Mathias Vorreiter Pedersen
|
7bc18abbb0
|
Merge pull request #6150 from geoffw0/toctou
C++: Tests for cpp/toctou-race-condition
|
2021-07-19 15:51:35 +02:00 |
|
Geoffrey White
|
0c029898bb
|
C++: Autoformat.
|
2021-07-19 13:58:25 +01:00 |
|
Geoffrey White
|
49bbfefb4d
|
C++: Fix uses of 'rename' in tests.
|
2021-07-19 13:57:16 +01:00 |
|
Robert Marsh
|
e0ff1d949b
|
Merge pull request #6315 from MathiasVP/fix-off-by-one-in-rem-expr-range-analysis
C++: Fix off–by-one in range analysis for `RemExpr`.
|
2021-07-16 15:22:03 -07:00 |
|
ihsinme
|
4083da3218
|
Update cpp/ql/src/experimental/Security/CWE/CWE-561/FindIncorrectlyUsedSwitch.ql
Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>
|
2021-07-16 23:18:58 +03:00 |
|
Mathias Vorreiter Pedersen
|
39d9395bc3
|
C++: Fix off-by-one in range analysis for 'RemExpr'.
|
2021-07-16 16:35:19 +02:00 |
|
Mathias Vorreiter Pedersen
|
81aa115838
|
C++: Fix range analysis bug for 'RemExpr'.
|
2021-07-16 16:28:08 +02:00 |
|
Mathias Vorreiter Pedersen
|
dc2eea59a3
|
C++: Add buggy testcase with 'RemExpr'.
|
2021-07-16 16:27:09 +02:00 |
|
Robert Marsh
|
59855de0ac
|
Merge pull request #6301 from github/aibaars/drop-opaque-id
CPP: drop opaque-id properties
|
2021-07-15 16:36:11 -07:00 |
|
Geoffrey White
|
c5ed859cf5
|
C++: Update test comments to my best understanding.
|
2021-07-15 16:36:21 +01:00 |
|
Geoffrey White
|
c4322fdcd2
|
Merge pull request #6231 from ihsinme/ihsinme-patch-277
Add query for CWE-758: Reliance on Undefined, Unspecified, or Implementation-Defined Behavior
|
2021-07-15 15:52:48 +01:00 |
|