mirror of
https://github.com/github/codeql.git
synced 2026-03-21 15:06:46 +01:00
46 lines
1.3 KiB
Plaintext
46 lines
1.3 KiB
Plaintext
/**
|
|
* Configuration to test selected data flow
|
|
* Sources in the source code are denoted by the special name `SOURCE`,
|
|
* and sinks are denoted by arguments to the special function `SINK`.
|
|
* For example, given the test code
|
|
* ```python
|
|
* def test():
|
|
* s = SOURCE
|
|
* SINK(s)
|
|
* ```
|
|
* `SOURCE` will be a source and the second occurance of `s` will be a sink.
|
|
*
|
|
* In order to test literals, alternative sources are defined for each type:
|
|
*
|
|
* for | use
|
|
* ----------
|
|
* string | `"source"`
|
|
* integer | `42`
|
|
* float | `42.0`
|
|
* complex | `42j` (not supported yet)
|
|
*/
|
|
|
|
import experimental.dataflow.DataFlow
|
|
|
|
class TestConfiguration extends DataFlow::Configuration {
|
|
TestConfiguration() { this = "TestConfiguration" }
|
|
|
|
override predicate isSource(DataFlow::Node node) {
|
|
node.asCfgNode().(NameNode).getId() = "SOURCE"
|
|
or
|
|
node.asCfgNode().getNode().(StrConst).getS() = "source"
|
|
or
|
|
node.asCfgNode().getNode().(IntegerLiteral).getN() = "42"
|
|
or
|
|
node.asCfgNode().getNode().(FloatLiteral).getN() = "42.0"
|
|
// No support for complex numbers
|
|
}
|
|
|
|
override predicate isSink(DataFlow::Node node) {
|
|
exists(CallNode call |
|
|
call.getFunction().(NameNode).getId() = "SINK" and
|
|
node.asCfgNode() = call.getAnArg()
|
|
)
|
|
}
|
|
}
|