1884 Commits

Author	SHA1	Message	Date
Jeroen Ketema	d19504fca2	C++: Add cpp/unused-local-variable test case with switch initializer ... This is similar to the test case with the `if` initializer, and we should not forget about it once we support `if` initialization.	2022-04-05 18:27:53 +02:00
Geoffrey White	04b8306f06	C++: Add some more patterns.	2022-04-04 16:57:00 +01:00
Geoffrey White	d42ee7d279	C++: Extend tests.	2022-04-04 16:46:56 +01:00
Geoffrey White	b296b0150a	C++: Some enhancements to SensitiveExprs.qll as well, inspired by csharp.	2022-03-31 10:24:17 +01:00
Geoffrey White	146318dbc1	Merge pull request #8580 from geoffw0/privdata ... C++: Port PrivateData.qll from C# and use it in cpp/cleartext-transmission	2022-03-31 10:12:46 +01:00
Geoffrey White	cf5c6baadd	C++: More test cases for salary.	2022-03-29 15:05:27 +01:00
Geoffrey White	b94ade3bdd	C++: Improve the regexps.	2022-03-29 10:03:58 +01:00
Geoffrey White	18f80eb3e3	C++: Loosen a few constraints slightly.	2022-03-28 11:16:57 +01:00
Geoffrey White	3fed7bf6d0	C++: Extend cpp/cleartext-transmission using PrivateData.qll.	2022-03-28 11:16:56 +01:00
Geoffrey White	bb272003b4	C++: More test cases.	2022-03-28 10:54:54 +01:00
Geoffrey White	9f3fd57534	Merge branch 'main' into cwe497b	2022-03-25 11:57:30 +00:00
Jeroen Ketema	8b4c42dd07	C++: Add cpp/command-line-injection test using a wrapper macro	2022-03-21 11:19:54 +01:00
Jeroen Ketema	f8198c3123	C++: Use flow states in cpp/command-line-injection	2022-03-18 20:06:45 +01:00
Jeroen Ketema	d37ef1b5ca	C++: Add command line injection test that currently results in a false positive	2022-03-18 16:12:09 +01:00
Jeroen Ketema	459870ac1e	C++: Add additional command line injection tests	2022-03-18 13:42:27 +01:00
Geoffrey White	95a63a69a5	Merge branch 'main' into cwe497b	2022-03-16 11:09:46 +00:00
Jeroen Ketema	1a1c34e1be	C++: Handle C11 _Noreturn in DefaultOptions	2022-03-15 23:21:14 +01:00
Geoffrey White	92d748e006	C++: Fix ODR/dbcheck issue in test.	2022-03-15 20:00:19 +00:00
Geoffrey White	28315df405	Merge branch 'main' into cwe497b	2022-03-15 11:23:00 +00:00
Geoffrey White	d1b04b4e07	C++: Use asDefiningArgument() where appropriate.	2022-03-14 17:53:47 +00:00
Mathias Vorreiter Pedersen	3c17d90e3b	C++: Accept test changes.	2022-03-11 09:30:44 +00:00
Mathias Vorreiter Pedersen	272e096190	Merge branch 'main' into use-taint-configuration-in-three-more-queries	2022-03-11 09:24:03 +00:00
Mathias Vorreiter Pedersen	dfb20f7721	Merge pull request #8368 from MathiasVP/add-must-flow-lib ... C++: Factor must-flow predicates out of two queries	2022-03-09 17:07:23 +00:00
Mathias Vorreiter Pedersen	f2676968f0	C++: Actally convert 'cpp/overflow-destination' to a path-problem query.	2022-03-09 13:49:52 +00:00
Mathias Vorreiter Pedersen	8a8fb692a3	C++: Use a 'TaintTracking::Configuration' for 'cpp/uncontrolled-allocation-size'.	2022-03-09 12:09:32 +00:00
Mathias Vorreiter Pedersen	2328898b19	C++: Use a 'TaintTracking::Configuration' for 'cpp/unclear-array-index-validation'.	2022-03-09 12:09:27 +00:00
Mathias Vorreiter Pedersen	69417e150a	C++: Address review comments.	2022-03-08 13:15:02 +00:00
Mathias Vorreiter Pedersen	7106fe35aa	C++: Accept test changes. This is just a change in the names of the path nodes. These names are actually better as they don't refer to the name of IR instructions.	2022-03-08 11:40:56 +00:00
Mathias Vorreiter Pedersen	624795cbbf	Merge pull request #8059 from rdmarsh2/rdmarsh2/cpp/insufficient-key-strength ... C++: new query for insufficient key strength	2022-03-04 17:11:44 +00:00
Robert Marsh	280fdbfc1b	C++: accept test output from perf improvement ... The last commit removed some source nodes from the dataflow graph, which changed the test expectations slightly. No result changes occurred.	2022-03-04 11:39:10 -05:00
Mathias Vorreiter Pedersen	9a91e66714	Merge pull request #8321 from MathiasVP/improve-using-expired-address-query ... C++: More TPs from `cpp/using-expired-stack-address`	2022-03-04 12:07:55 +00:00
Mathias Vorreiter Pedersen	bf10456bf5	C++: Add a path explanation to the 'cpp/using-expired-stack-address' query.	2022-03-03 13:55:00 +00:00
Mathias Vorreiter Pedersen	9df923a7c8	C++: Catch more true positives by stepping into calls in the 'cpp/using-expired-stack-address' query.	2022-03-03 13:53:09 +00:00
Geoffrey White	88b7a085b0	C++: Make the bulk of test cases in tests.cpp more relevant.	2022-03-03 10:40:17 +00:00
Geoffrey White	07b4bf7023	C++: Use the same trick as in ExposedSystemData to catch a few more results.	2022-03-03 10:33:39 +00:00
Geoffrey White	6e5729c924	C++: Fix typo and adjust violation message wording.	2022-03-03 10:28:53 +00:00
Geoffrey White	70e4a409fd	C++: Add the new query to tests.	2022-03-02 17:56:53 +00:00
Geoffrey White	67aa1449ce	C++: Add some more test cases (moved from the private repo).	2022-03-02 17:23:07 +00:00
Geoffrey White	19718fa280	C++: Add a couple of new test cases.	2022-03-02 15:18:04 +00:00
Geoffrey White	da740cfa05	C++: Test layout.	2022-03-02 15:18:04 +00:00
Geoffrey White	5402b02fd7	Merge branch 'main' into cwe497	2022-03-01 11:58:24 +00:00
Mathias Vorreiter Pedersen	dfd30e46b0	Merge pull request #8227 from geoffw0/319improve ... C++: Promote cpp/non-https-url	2022-02-25 08:48:44 +00:00
Geoffrey White	899ae90ba4	C++: Add GVN.	2022-02-24 17:22:37 +00:00
Geoffrey White	0bb9a95563	C++: Extend tests.	2022-02-24 17:15:29 +00:00
Geoffrey White	6c40cda68d	C++: Pragmatic solution to include more sinks (plus autoformat changes).	2022-02-24 12:10:34 +00:00
Mathias Vorreiter Pedersen	e4af34253a	C++: Actually fix incorrect annotation	2022-02-24 11:06:57 +00:00
Geoffrey White	c16302be13	C++: Fix the FP.	2022-02-24 10:54:08 +00:00
Geoffrey White	326dfa5bc2	C++: Add test cases.	2022-02-23 18:37:58 +00:00
Mathias Vorreiter Pedersen	033edc24f4	C++: Respond to review comments.	2022-02-23 16:23:49 +00:00
Mathias Vorreiter Pedersen	53299d61eb	C++: Add more tests.	2022-02-23 11:38:01 +00:00