hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
78e1879c9e476f4e6cfd6937aad5f1d05d72ff59
codeql/javascript/ql/test/library-tests/FlowSummary/test.ql
Anders Schack-Mulligen 78e1879c9e Use more flowTo.
2025-12-03 14:12:08 +01:00

37 lines
1.1 KiB
Plaintext
Raw Blame History

import javascript
deprecated import utils.test.ConsistencyChecking
import utils.test.InlineSummaries
DataFlow::CallNode getACall(string name) {
result.getCalleeName() = name
or
result.getCalleeNode().getALocalSource() = DataFlow::globalVarRef(name)
}
module FlowConfig implements DataFlow::ConfigSig {
predicate isSource(DataFlow::Node node) { node = getACall("source") }
predicate isSink(DataFlow::Node node) { node = getACall("sink").getAnArgument() }
predicate isBarrier(DataFlow::Node node) {
node.(DataFlow::InvokeNode).getCalleeName().matches("sanitizer_%") or
node = DataFlow::MakeBarrierGuard<BasicBarrierGuard>::getABarrierNode()
}
}
module Flow = DataFlow::Global<FlowConfig>;
class BasicBarrierGuard extends DataFlow::CallNode {
BasicBarrierGuard() { this = getACall("isSafe") }
predicate blocksExpr(boolean outcome, Expr e) {
outcome = true and e = this.getArgument(0).asExpr()
}
}
deprecated class ConsistencyConfig extends ConsistencyConfiguration {
ConsistencyConfig() { this = "ConsistencyConfig" }
override DataFlow::Node getAnAlert() { Flow::flowTo(result) }
}
Reference in New Issue View Git Blame Copy Permalink