Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Dataflow: Diff informed dataflow. #20386

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 11 commits into
base: main
Choose a base branch
from
Draft

Dataflow: Diff informed dataflow. #20386

wants to merge 11 commits into from
+559 −143

Conversation

alexet
Copy link
Contributor

@alexet alexet commented Sep 8, 2025

No description provided.

github-advanced-security[bot]
github-advanced-security bot found potential problems Sep 8, 2025
View reviewed changes
github-advanced-security[bot]
github-advanced-security bot found potential problems Sep 8, 2025
View reviewed changes
@alexet alexet force-pushed the alexet/overlay-informed-dataflow branch from 4ebfdd4 to 04e8ab6 Compare September 8, 2025 16:25
github-advanced-security[bot]
github-advanced-security bot found potential problems Sep 8, 2025
View reviewed changes
@alexet alexet force-pushed the alexet/overlay-informed-dataflow branch from 04e8ab6 to 5ee86e9 Compare September 12, 2025 17:27
github-advanced-security[bot]
github-advanced-security bot found potential problems Sep 12, 2025
View reviewed changes
shared/dataflow/codeql/dataflow/DataFlow.qll
* Constructs a global data flow computation.
*/
module Global<ConfigSig Config> implements GlobalFlowSig {
private module C implements FullStateConfigSig {

Check warning

Code scanning / CodeQL

Data flow configuration module naming Warning

Modules implementing a data flow configuration should end in Config.
shared/dataflow/codeql/dataflow/DataFlow.qll
* Constructs a global data flow computation using flow state.
*/
module GlobalWithState<StateConfigSig Config> implements GlobalFlowSig {
private module C implements FullStateConfigSig {

Check warning

Code scanning / CodeQL

Data flow configuration module naming Warning

Modules implementing a data flow configuration should end in Config.
shared/dataflow/codeql/dataflow/TaintTracking.qll

private module AddTaintDefaults<DataFlowInternal::FullStateConfigSig Config> implements
module AddTaintDefaults<DataFlowInternal::FullStateConfigSig Config> implements

Check warning

Code scanning / CodeQL

Data flow configuration module naming Warning

Modules implementing a data flow configuration should end in Config.
shared/dataflow/codeql/dataflow/TaintTracking.qll
@@ -83,6 +83,84 @@
}
}

signature int speculationLimitSig();

module AddSpeculativeTaintSteps<

Check warning

Code scanning / CodeQL

Data flow configuration module naming Warning

Modules implementing a data flow configuration should end in Config.
shared/dataflow/codeql/dataflow/TaintTracking.qll
{
import Config
private module Config0 implements DataFlowInternal::FullStateConfigSig {

Check warning

Code scanning / CodeQL

Data flow configuration module naming Warning

Modules implementing a data flow configuration should end in Config.
shared/dataflow/codeql/dataflow/TaintTracking.qll
predicate isSource(DataFlowLang::Node source, FlowState state) {
Config::isSource(source, state.getState()) and state.getSpec() = 0
predicate isAdditionalFlowStep(
DataFlowLang::Node node1, DataFlowLang::Node node2, string model

Check warning

Code scanning / CodeQL

Data flow configuration module naming Warning

Modules implementing a data flow configuration should end in Config.
shared/dataflow/codeql/dataflow/TaintTracking.qll
* Constructs a global taint tracking computation.
*/
module Global<DataFlow::ConfigSig Config> implements DataFlow::GlobalFlowSig {
private module Config0 implements DataFlowInternal::FullStateConfigSig {

Check warning

Code scanning / CodeQL

Data flow configuration module naming Warning

Modules implementing a data flow configuration should end in Config.
shared/dataflow/codeql/dataflow/TaintTracking.qll
}

predicate isBarrierIn(DataFlowLang::Node node, FlowState state) {
Config::isBarrierIn(node, state.getState())
private module C implements DataFlowInternal::FullStateConfigSig {

Check warning

Code scanning / CodeQL

Data flow configuration module naming Warning

Modules implementing a data flow configuration should end in Config.
shared/dataflow/codeql/dataflow/TaintTracking.qll
* Constructs a global taint tracking computation using flow state.
*/
module GlobalWithState<DataFlow::StateConfigSig Config> implements DataFlow::GlobalFlowSig {
private module Config0 implements DataFlowInternal::FullStateConfigSig {

Check warning

Code scanning / CodeQL

Data flow configuration module naming Warning

Modules implementing a data flow configuration should end in Config.
shared/dataflow/codeql/dataflow/TaintTracking.qll
model = "Speculative" and
state1.getSpec() + 1 = state2.getSpec() and
state1.getState() = state2.getState()
private module C implements DataFlowInternal::FullStateConfigSig {

Check warning

Code scanning / CodeQL

Data flow configuration module naming Warning

Modules implementing a data flow configuration should end in Config.
jbj and others added 11 commits September 12, 2025 18:33
@jbj @alexet
DataFlow:Run overlay-informed if not diff-informed
05b779c 
To ensure good performance, always run data flow overlay-informed unless
the configuration has opted in to being diff-informed. This change
affects only databases with an overlay and therefore has no immediate
production consequences.
@jbj @alexet
DataFlow: overlay-informed flow includes the diff
68cf381
@jbj @alexet
TEMP: DataFlow: Java-only flow including base
9890470 
This won't work for other languages until we can annotate a `forceLocal`
call with `local?`.
@alexet
QL: make a fastTC overlay_caller.
21512f4
@alexet
Dataflow: Remove diff from overlay informed dataflow.
9d30dc3
@alexet
DataFlow: Don't become overlay informed if the flow is diff informed …
8d10612 
…but no diff.
@alexet
DataFlow: Remove uneeded annotation
361b4ed 
These become overlay[local] instead. This means that if dataflownode is
global, they are still global.
@alexet
Make it so obvelray infomredness doesn't always apply.
131ddcc
@alexet
More Fixes
c3d2b52
@alexet
Fix accidental extra overlay informed.
8c658a2
@alexet
Foemay
14b7523
@alexet alexet force-pushed the alexet/overlay-informed-dataflow branch from 850a45e to 14b7523 Compare September 12, 2025 17:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

Copilot code review Copilot Awaiting requested review from Copilot Copilot will automatically review once the pull request is marked ready for review

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
DataFlow Library Java
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@alexet @jbj