samples: Added sample int overflow query

2023-02-17 14:27:28 -08:00 · 2023-02-17 14:27:28 -08:00 · 830306ecb0
commit 830306ecb0
parent b37960c8b7
1 changed files with 12 additions and 0 deletions
--- a/codeql/samples/integer_overflow/findIntegerOverflow.ql
+++ b/codeql/samples/integer_overflow/findIntegerOverflow.ql
@ -0,0 +1,12 @@
+import cpp
+import semmle.code.cpp.security.FlowSources
+import semmle.code.cpp.rangeanalysis.SimpleRangeAnalysis
+import semmle.code.cpp.valuenumbering.GlobalValueNumbering
+
+from RelationalOperation ro, AddExpr add, Expr exprOne, Expr exprTwo
+where 
+  add.getAnOperand() = exprOne and
+  add.getAnOperand() = exprTwo and
+  globalValueNumber(exprOne) = globalValueNumber(exprTwo) and
+  exprMightOverflowPositively(add) or exprMightOverflowNegatively(add)
+select add