hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-25 03:13:43 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
f75f5ab1250dbf3a0daa78e46eb514b573f4945e
codeql/change-notes/1.26/analysis-cpp.md
Geoffrey White 498b350add Merge remote-tracking branch 'upstream/master' into plus
2020-08-13 18:21:28 +01:00

1.2 KiB
Raw Blame History

Improvements to C/C++ analysis

The following changes in version 1.26 affect C/C++ analysis in all applications.

General improvements

New queries

Query Tags Purpose

Changes to existing queries

Query Expected impact Change
Inconsistent direction of for loop (cpp/inconsistent-loop-direction) Fewer false positive results The query now accounts for intentional wrapping of an unsigned loop counter.
Comparison result is always the same (cpp/constant-comparison) More correct results Bounds on expressions involving multiplication can now be determined in more cases.

Changes to libraries

  • The models library now models more taint flows through std::string.
  • The SimpleRangeAnalysis library now supports multiplications of the form e1 * e2 when e1 and e2 are unsigned.