github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
47 379 коммитов 1 542 Ветки 132 Теги 495 MiB
Граф коммитов

8527 Коммитов

Автор SHA1 Сообщение Дата
Jeroen Ketema 53b86fd53b
Merge pull request #11428 from jketema/default-taint-tests 
C++: Add more tests that exercise the default taint barrier implementation
 2022-11-25 12:13:18 +01:00
Jeroen Ketema 4607f5990e
C++: Add more tests that exercise the default taint barrier implementation 2022-11-25 10:19:45 +01:00
Erik Krogh Kristensen 1eec067474
Merge pull request #11294 from erik-krogh/fileDoc 
QL: improve the "this block-comment should have been a QLDoc"-query
 2022-11-23 22:23:36 +01:00
Tom Hvitved 8f3731fd42 C#: Split `AutobuildOptions` into C#/C++ specific classes 2022-11-23 12:57:16 +01:00
Mathias Vorreiter Pedersen c2ac60fc34
Merge pull request #11311 from MathiasVP/repair-mustflow 
C++: Repair `MustFlow` library for use-use flow
 2022-11-21 19:13:10 +00:00
Edoardo Pirovano 6c33ddcd47
Merge pull request #11349 from github/edoardo/2.11.4-mergeback 
Merge `rc/3.8` into `main`
 2022-11-21 18:08:27 +00:00
Mathias Vorreiter Pedersen 7e80a57724 C++: Make ql-for-ql happy. 2022-11-21 15:13:19 +00:00
Mathias Vorreiter Pedersen fcd9dd0be4
Update cpp/ql/lib/change-notes/2022-11-16-must-flow.md 
Co-authored-by: Jeroen Ketema <93738568+jketema@users.noreply.github.com>
 2022-11-21 14:18:20 +00:00
Jeroen Ketema 78ad9ba60f
Merge pull request #11262 from rdmarsh2/rdmarsh2/cpp/deprecate-ast-gvn 
C++: deprecate AST-based GVN
 2022-11-21 13:38:54 +01:00
Jeroen Ketema 752bc2e980
C++: Accept test changes after AST-based GVN deprecation 2022-11-21 11:45:09 +01:00
Mathias Vorreiter Pedersen 4478ac2c17 C++: Add change note. 2022-11-18 16:43:34 +00:00
Mathias Vorreiter Pedersen ef6b85fa77 C++: Accept test changes. 2022-11-18 16:43:30 +00:00
Mathias Vorreiter Pedersen b748ed8f43 C++: Repair the 'MustFlow' library. 2022-11-18 16:41:32 +00:00
github-actions[bot] 5b14ebf22a Post-release preparation for codeql-cli-2.11.4 2022-11-18 11:26:00 +00:00
erik-krogh a5a244fc53
CPP: delete old deprecations 2022-11-17 22:12:50 +01:00
github-actions[bot] e105c13e77 Release preparation for version 2.11.4 2022-11-17 16:40:45 +00:00
Tom Hvitved 780297152c C#: Downgrade `Microsoft.Build` nuget package 
17.4.0 does not officially support .NET 6 (it supports .NET 7), so downgrade
to avoid warnings.
 2022-11-17 11:00:25 +01:00
Tom Hvitved 5ab77600b8 C++: Update auto-builder nuget packages 2022-11-17 10:44:23 +01:00
erik-krogh 20c4699478
CPP: convert some block-comments that could be QLDoc to QLDoc 2022-11-16 13:39:22 +01:00
Anders Schack-Mulligen 94bca4399a
Merge pull request #11183 from aschackmull/dataflow/groupflow 
Dataflow: Introduce support for src/sink grouping in path results.
 2022-11-16 12:59:01 +01:00
Jeroen Ketema 98176007d8
C++: Fix type in dataflow test comment 2022-11-15 17:18:08 +01:00
Robert Marsh 5bbdaad0e5 C++: deprecate AST-based GVN 2022-11-14 16:50:39 -05:00
Jeroen Ketema 5c109cdef1
Merge pull request #11234 from jketema/std-iterator-fix 
C++: Recognize `basic_string::iterator` as an iterator
 2022-11-11 17:21:42 +01:00
Rasmus Wriedt Larsen ddbcdcb4ba
Merge pull request #11160 from RasmusWL/dataflow-consistency-read-store 
DataFlow: Add read/store stepIsLocal consistency checks
 2022-11-11 14:51:45 +01:00
Jeroen Ketema 612624d241
C++: Recognize `basic_string::iterator` as an iterator 2022-11-11 14:04:50 +01:00
Jeroen Ketema ba00a0f370
C++: Share parameter logic in `std::string` model 2022-11-11 08:48:11 +01:00
Jeroen Ketema 23e29e993b
C++: Split `std::string::insert` off in a separate class 
The `insert` function has two different return types: `iterator` and
`basic_string&`.
 2022-11-11 08:48:01 +01:00
Rasmus Wriedt Larsen 88f703af1f
DataFlow: Accept changes to `.expected` 2022-11-10 22:13:34 +01:00
Jeroen Ketema 62f5d10d03
C++: Fix `localTaint` expected results 2022-11-10 16:08:07 +01:00
Jeroen Ketema 62a0bcddd9
C++: Fix the `accept` prototype in the dataflow taint tests 2022-11-10 14:23:26 +01:00
Jeroen Ketema e7576fdd1a
Merge pull request #11197 from jketema/simplify-taint-test 
C++: Simplify dataflow taint test query
 2022-11-10 11:58:50 +01:00
Jeroen Ketema 4d7aeced3f
C++: Simplify dataflow taint test query 
The complexity seems a left-over from before these tests were turned into
inline expectation tests, where the aim seems to have been to have exactly
one sink node for each `sink` call. Multiple sink nodes for the same `sink`
call are not made visible in the inline expecation tests, and I am not
conviced this was very useful before, so remove the complexity.
 2022-11-10 10:38:22 +01:00
Anders Schack-Mulligen b3b7711149 Dataflow: Sync. 2022-11-09 14:23:15 +01:00
Jeroen Ketema 6a5f37b1b7
Merge pull request #11149 from geoffw0/wrong-number-msg 
C++: Clearer messages for the format args queries
 2022-11-08 20:44:10 +01:00
Jeroen Ketema 2bef82babc
Merge pull request #11163 from jketema/missing-return 
C++: Add dataflow test that deliberately omits the return of a non-void function
 2022-11-08 16:00:36 +01:00
Geoffrey White c8426776fc Merge branch 'main' into wrong-number-msg 2022-11-08 14:47:19 +00:00
Jeroen Ketema fa2d58adff
C++: Add dataflow test that deliberately omits the return of a non-void function 2022-11-08 15:12:34 +01:00
Rasmus Wriedt Larsen 4895daba85
DataFlow: Add read/store stepIsLocal consistency checks 2022-11-08 13:32:49 +01:00
Jeroen Ketema c61a9c5911
C++: Also taint the return value dereference in the `strcat` model 2022-11-08 12:08:44 +01:00
Jeroen Ketema 0d4a2239fc
C++: Fix wrong return types and missing statement in dataflow test 2022-11-08 09:55:10 +01:00
Geoffrey White d72ea52f68 C++: More accurate test tags. 2022-11-07 16:32:46 +00:00
Geoffrey White 55a7adff20 C++: Make the message clearer. 2022-11-07 16:32:45 +00:00
Geoffrey White b911556896 C++: Add a test showing the motivation. 2022-11-07 16:17:32 +00:00
Jeroen Ketema d62e3f6bc2
Merge pull request #11137 from jketema/dataflow-test-fixes 
C++: Small fixes for the dataflow tests
 2022-11-07 11:07:09 +01:00
Anders Schack-Mulligen 99ca28ea9b
Merge pull request #10886 from aschackmull/dataflow/joinorders 
Dataflow: Fix a couple of join-orders.
 2022-11-07 11:05:29 +01:00
Jeroen Ketema 291027ad82
C++: Fix return type in dataflow test 2022-11-07 09:42:54 +01:00
Jeroen Ketema 3b1feeef6d
C++: Remove unneeded `isAdditionalFlowStep` from dataflow test 
Since the introduction of flow through global variables these additional
steps are no longer needed.
 2022-11-07 09:40:57 +01:00
github-actions[bot] fca754bddd Post-release preparation for codeql-cli-2.11.3 2022-11-05 14:30:48 +00:00
github-actions[bot] 508327235a Release preparation for version 2.11.3 2022-11-04 20:16:23 +00:00
Tom Hvitved 05bf86acb6
Merge pull request #11126 from hvitved/cpp/position-overrides 
C++: Let `(Indirect|Direct)Position` be sub classes of `Position`
 2022-11-04 15:35:27 +01:00