mirror of
https://github.com/github/codeql.git
synced 2025-12-17 01:03:14 +01:00
33 lines
1005 B
Plaintext
33 lines
1005 B
Plaintext
/** This tests that we are able to detect local flow sources. */
|
|
|
|
import cpp
|
|
import TestUtilities.InlineExpectationsTest
|
|
import semmle.code.cpp.security.FlowSources
|
|
|
|
module LocalFlowSourceTest implements TestSig {
|
|
string getARelevantTag() { result = "local_source" }
|
|
|
|
predicate hasActualResult(Location location, string element, string tag, string value) {
|
|
tag = "local_source" and
|
|
exists(LocalFlowSource node, int n |
|
|
n =
|
|
strictcount(LocalFlowSource otherNode |
|
|
node.getLocation().getStartLine() = otherNode.getLocation().getStartLine()
|
|
) and
|
|
(
|
|
n = 1 and value = ""
|
|
or
|
|
// If there is more than one node on this line
|
|
// we specify the location explicitly.
|
|
n > 1 and
|
|
value =
|
|
node.getLocation().getStartLine().toString() + ":" + node.getLocation().getStartColumn()
|
|
) and
|
|
location = node.getLocation() and
|
|
element = node.toString()
|
|
)
|
|
}
|
|
}
|
|
|
|
import MakeTest<LocalFlowSourceTest>
|