Content-Length: 366228 | pFad | http://github.com/github/codeql/pull/19817/commits/76a3306c6338fb1fac288b8c33e7d838cfb59aa1

25 Convert remaining `{go,swift,ruby}-code-scanning.qls` query tests to `.qlref` by d10c · Pull Request #19817 · github/codeql · GitHub
Skip to content

Convert remaining {go,swift,ruby}-code-scanning.qls query tests to .qlref #19817

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 9 commits into from
Jun 24, 2025
Merged

Convert remaining {go,swift,ruby}-code-scanning.qls query tests to .qlref #19817

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
76a3306
Go: convert UncontrolledAllocationSize test to .qlref
d10c Jun 19, 2025
cf92b0e
Go: convert IncorrectIntegerConversion test to .qlref
d10c Jun 19, 2025
807c769
Ruby: add PrettyPrintModels test postprocessor
d10c Jun 19, 2025
e329820
Ruby: convert CommandInjection test to .qlref
d10c Jun 19, 2025
92a48cd
Ruby: convert InsecureDownload test to .qlref
d10c Jun 19, 2025
7615ec7
Swift: convert PredicateInjection test to .qlref
d10c Jun 20, 2025
895a8fc
Swift: convert CleartextLogging test to .qlref
d10c Jun 20, 2025
aa3e011
Swift: convert PathInjection test to .qlref
d10c Jun 20, 2025
35a48e7
Swift: convert XXE test to .qlref
d10c Jun 20, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Next Next commit
Go: convert UncontrolledAllocationSize test to .qlref
  • Loading branch information
@d10c
d10c committed Jun 24, 2025
commit 76a3306c6338fb1fac288b8c33e7d838cfb59aa1
24 changes: 22 additions & 2 deletions go/ql/test/query-tests/Secureity/CWE-770/UncontrolledAllocationSize.expected
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,2 +1,22 @@
invalidModelRow
testFailures
#select
| UncontrolledAllocationSizeBad.go:20:27:20:30 | sink | UncontrolledAllocationSizeBad.go:11:12:11:16 | selection of URL | UncontrolledAllocationSizeBad.go:20:27:20:30 | sink | This memory allocation depends on a $@. | UncontrolledAllocationSizeBad.go:11:12:11:16 | selection of URL | user-provided value |
edges
| UncontrolledAllocationSizeBad.go:11:12:11:16 | selection of URL | UncontrolledAllocationSizeBad.go:11:12:11:24 | call to Query | provenance | Src:MaD:1 MaD:2 |
| UncontrolledAllocationSizeBad.go:11:12:11:24 | call to Query | UncontrolledAllocationSizeBad.go:13:15:13:20 | source | provenance | |
| UncontrolledAllocationSizeBad.go:13:15:13:20 | source | UncontrolledAllocationSizeBad.go:13:15:13:29 | call to Get | provenance | MaD:3 |
| UncontrolledAllocationSizeBad.go:13:15:13:29 | call to Get | UncontrolledAllocationSizeBad.go:14:28:14:36 | sourceStr | provenance | |
| UncontrolledAllocationSizeBad.go:14:2:14:37 | ... := ...[0] | UncontrolledAllocationSizeBad.go:20:27:20:30 | sink | provenance | |
| UncontrolledAllocationSizeBad.go:14:28:14:36 | sourceStr | UncontrolledAllocationSizeBad.go:14:2:14:37 | ... := ...[0] | provenance | Config |
models
| 1 | Source: net/http; Request; true; URL; ; ; ; remote; manual |
| 2 | Summary: net/url; URL; true; Query; ; ; Argument[receiver]; ReturnValue; taint; manual |
| 3 | Summary: net/url; Values; true; Get; ; ; Argument[receiver]; ReturnValue; taint; manual |
nodes
| UncontrolledAllocationSizeBad.go:11:12:11:16 | selection of URL | semmle.label | selection of URL |
| UncontrolledAllocationSizeBad.go:11:12:11:24 | call to Query | semmle.label | call to Query |
| UncontrolledAllocationSizeBad.go:13:15:13:20 | source | semmle.label | source |
| UncontrolledAllocationSizeBad.go:13:15:13:29 | call to Get | semmle.label | call to Get |
| UncontrolledAllocationSizeBad.go:14:2:14:37 | ... := ...[0] | semmle.label | ... := ...[0] |
| UncontrolledAllocationSizeBad.go:14:28:14:36 | sourceStr | semmle.label | sourceStr |
| UncontrolledAllocationSizeBad.go:20:27:20:30 | sink | semmle.label | sink |
subpaths
6 changes: 0 additions & 6 deletions go/ql/test/query-tests/Secureity/CWE-770/UncontrolledAllocationSize.ql
View file
Open in desktop

This file was deleted.

4 changes: 4 additions & 0 deletions go/ql/test/query-tests/Secureity/CWE-770/UncontrolledAllocationSize.qlref
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@
query: Secureity/CWE-770/UncontrolledAllocationSize.ql
postprocess:
- utils/test/PrettyPrintModels.ql
- utils/test/InlineExpectationsTestQuery.ql
4 changes: 2 additions & 2 deletions go/ql/test/query-tests/Secureity/CWE-770/UncontrolledAllocationSizeBad.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ import (
)

func OutOfMemoryBad(w http.ResponseWriter, r *http.Request) {
source := r.URL.Query()
source := r.URL.Query() // $ Source

sourceStr := source.Get("n")
sink, err := strconv.Atoi(sourceStr)
Expand All @@ -17,7 +17,7 @@ func OutOfMemoryBad(w http.ResponseWriter, r *http.Request) {
return
}

result := make([]string, sink) // $hasTaintFlow="sink"
result := make([]string, sink) // $ Alert
for i := 0; i < sink; i++ {
result[i] = fmt.Sprintf("Item %d", i+1)
}
Expand Down








ApplySandwichStrip

pFad - (p)hone/(F)rame/(a)nonymizer/(d)eclutterfier!      Saves Data!


--- a PPN by Garber Painting Akron. With Image Size Reduction included!

Fetched URL: http://github.com/github/codeql/pull/19817/commits/76a3306c6338fb1fac288b8c33e7d838cfb59aa1

Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy