james
e25749d5de
docs: 2nd review comment
2019-08-08 15:52:22 +01:00
Tom Hvitved
5ecf680cc2
C#: Improve performance of SSA adjacent reads calculation
...
- Speedup the `varBlockReaches()` predicate, by restricting to basic blocks
in which a given SSA definition may still be live, in constrast to just
being able to reach *any* access (read or write) to the underlying source
variable.
- Account for some missing cases in the `lastRead()` predicate.
2019-08-08 16:21:57 +02:00
Geoffrey White
82bf631541
CPP: Add test cases.
2019-08-08 15:02:56 +01:00
Geoffrey White
ef37893d15
CPP: Improve the MemberFunctions test.
2019-08-08 15:02:56 +01:00
Geoffrey White
843b85c0e6
CPP: Test PureVirtualFunction.
2019-08-08 15:02:55 +01:00
Geoffrey White
44ea685bf3
CPP: Simplify the VirtualFunctions test.
2019-08-08 15:02:55 +01:00
Geoffrey White
be25338e44
CPP: QLDoc Function.qll.
2019-08-08 15:02:55 +01:00
Calum Grant
cb8544d6e4
Merge pull request #1695 from hvitved/csharp/multiple-dataflow-copies
...
C#: Add more copies of the data flow library (ODASA-8039)
2019-08-08 13:24:54 +01:00
Jonas Jensen
2c6dbacd2b
C++: Tidy up DataFlowUtil.qll
2019-08-08 14:05:03 +02:00
Jonas Jensen
0a13d7a337
C++: PartialDefNode -> PartialDefinitionNode
2019-08-08 14:05:03 +02:00
Jonas Jensen
98d6f3cada
C++: Unify partial def and def-by-ref
...
This removes a lot of flow steps, but it all seems to be flow that was
present twice: both exiting a `PartialDefNode` and a
`DefinitionByReferenceNode`. All `DefinitionByReferenceNode`s are now
`PartialDefNode`s.
2019-08-08 14:05:03 +02:00
Jonas Jensen
5370e7d693
C++: Remove TThisVar
...
There's no need to model `this` as a variable because it's never
reassigned.
2019-08-08 14:05:03 +02:00
Jonas Jensen
6a3f5efc1b
C++: Accept AST field flow test output
2019-08-08 14:05:03 +02:00
Jonas Jensen
861964337c
C++: Undo autoformat of FlowVar.qll
...
The formatting changes were good, but were tangled in with other
changes, making it hard to review this file.
2019-08-08 14:05:03 +02:00
Pavel Avgustinov
79d75d7d18
Add extra test cases
2019-08-08 14:05:03 +02:00
Pavel Avgustinov
835e495e7c
Remove unused args
2019-08-08 14:05:03 +02:00
Pavel Avgustinov
b1632587bc
Use more meaningful name
2019-08-08 14:05:03 +02:00
Pavel Avgustinov
6d4d131ad4
C++ field flow: Add test.
...
This is a fairly direct translation of the Java field flow test to
C++. Not all the `// flow` annotations are currently accurate.
2019-08-08 14:05:03 +02:00
Pavel Avgustinov
dccc0f4db1
Add handling of post-constructor-call nodes
2019-08-08 14:05:03 +02:00
Pavel Avgustinov
9e6c240ee2
Override getFunction on PostUpdateNodes
2019-08-08 14:05:03 +02:00
Pavel Avgustinov
abcaeded23
Only split BBs for var-defining partial-defs
2019-08-08 14:05:03 +02:00
Pavel Avgustinov
46e6b587bc
Exclude partial defs from ordinary SSA handling
2019-08-08 14:05:03 +02:00
Pavel Avgustinov
5fbe982084
Add missing getType override
2019-08-08 14:05:03 +02:00
Pavel Avgustinov
1b9a2d3d87
Reduce partial definition flow edge redundancy
2019-08-08 14:05:02 +02:00
Pavel Avgustinov
bb8eb235e0
Handle constructor call qualifiers
2019-08-08 14:05:02 +02:00
Pavel Avgustinov
66164eb06f
Propagate data flow through NewExprs
2019-08-08 14:05:02 +02:00
Pavel Avgustinov
623652247d
Introduce partial-definition nodes
2019-08-08 14:05:02 +02:00
Pavel Avgustinov
15b56d93bd
No implicit instances for constructor call
2019-08-08 14:05:02 +02:00
Pavel Avgustinov
04454ef184
Begin extending dataflow node model for field flow (and other stuff)
2019-08-08 14:05:02 +02:00
james
38e42edf04
docs: fix text overlap on small screen and dynamically resize images
2019-08-08 12:42:35 +01:00
semmle-qlci
6c3d1d676b
Merge pull request #1694 from asger-semmle/concatenation-operand
...
Approved by xiemaisi
2019-08-08 12:41:30 +01:00
semmle-qlci
7482233a02
Merge pull request #1693 from asger-semmle/request-response
...
Approved by esben-semmle, xiemaisi
2019-08-08 12:40:35 +01:00
Felicity Chapman
b7568a08a9
Merge pull request #1714 from jf205/typo/sd-3739
...
docs: fix typo in Java data flow exercise
2019-08-08 12:33:56 +01:00
Mark Shannon
e6b27b37b2
Python: Update incorrect comparison queries to use new API. WORK IN PROGRESS.
2019-08-08 12:06:22 +01:00
Mark Shannon
c2f9189286
Python: Make a few more expressions point-to the 'unknown' value to improve reachability by about 1%.
2019-08-08 12:01:41 +01:00
Mark Shannon
4b242ddc86
Python: Port a few queries to new API.
2019-08-08 11:58:23 +01:00
Anders Schack-Mulligen
a50ea54ff6
Java: Fix tests.
2019-08-08 12:03:01 +02:00
james
2707b2fe2b
docs: fix typos
2019-08-08 10:56:38 +01:00
Mark Shannon
562d959915
Python examples: Modernize snippets.
2019-08-08 10:55:45 +01:00
Mark Shannon
cb719a8998
Python points-to: track instances of int, float or str without a specific value, and calls to bool().
2019-08-08 10:49:58 +01:00
Anders Schack-Mulligen
b3e56d5b04
Java: Fix copy-paste typo.
2019-08-08 11:44:44 +02:00
jf205
50520e7a6e
Merge pull request #1651 from xiemaisi/js/flow-label-tutorial
...
JavaScript: Add tutorial on flow labels.
2019-08-08 10:41:20 +01:00
Mark Shannon
6bd5158f9e
Python taint-tracking: Remove 'parents' query from path-queries, as it unused by the tooling.
2019-08-08 10:15:06 +01:00
james
575b4143b7
docs: fix typo in dataflow exercise answer
2019-08-08 09:38:40 +01:00
Max Schaefer
89bdf95082
JavaScript: Address review suggestions.
2019-08-08 09:22:41 +01:00
Ziemowit Laski
1a3a2871dc
More declarations.
2019-08-07 19:37:24 -07:00
Rebecca Valentine
fc4bb028b7
Merge pull request #1636 from markshannon/python-api-odds-and-ends
...
Python: Assorted improvements to API.
2019-08-07 09:50:44 -07:00
Tom Hvitved
c1604caa31
C#: Remove two pragma[nomagic]
2019-08-07 16:04:23 +02:00
Anders Schack-Mulligen
20e6f5594f
Java: Improve barriers for the CWE-190 Arithmetic* queries.
2019-08-07 15:22:23 +02:00
jf205
4969298ad3
Merge pull request #1708 from felicity-semmle/support/add-note
...
Support: add note about compiler versions
2019-08-07 14:08:01 +01:00
