get a few more queries in sync with other languages

erik-krogh · erik-krogh · commit 129cda00dbad · 2022-10-01T11:17:48.000+02:00
diff --git a/java/ql/src/Likely Bugs/Nullness/NullAlways.ql b/java/ql/src/Likely Bugs/Nullness/NullAlways.ql
@@ -17,5 +17,5 @@ private import semmle.code.java.dataflow.Nullness
 
 from VarAccess access, SsaSourceVariable var
 where alwaysNullDeref(var, access)
-select access, "Variable $@ is always null at this access.", var.getVariable(),
+select access, "Variable $@ is always null at this dereference.", var.getVariable(),
   var.getVariable().getName()
diff --git a/java/ql/src/Security/CWE/CWE-078/ExecTainted.ql b/java/ql/src/Security/CWE/CWE-078/ExecTainted.ql
@@ -20,5 +20,5 @@ import DataFlow::PathGraph
 
 from DataFlow::PathNode source, DataFlow::PathNode sink, ArgumentToExec execArg
 where execTainted(source, sink, execArg)
-select execArg, source, sink, "Command line depends on a $@.", source.getNode(),
+select execArg, source, sink, "This command line depends on a $@.", source.getNode(),
   "user-provided value"
diff --git a/java/ql/src/Security/CWE/CWE-078/ExecTaintedLocal.ql b/java/ql/src/Security/CWE/CWE-078/ExecTaintedLocal.ql
@@ -38,5 +38,5 @@ from
   DataFlow::PathNode source, DataFlow::PathNode sink, ArgumentToExec execArg,
   LocalUserInputToArgumentToExecFlowConfig conf
 where conf.hasFlowPath(source, sink) and sink.getNode().asExpr() = execArg
-select execArg, source, sink, "Command line depends on a $@.", source.getNode(),
+select execArg, source, sink, "This command line depends on a $@.", source.getNode(),
   "user-provided value"
diff --git a/java/ql/src/Security/CWE/CWE-090/LdapInjection.ql b/java/ql/src/Security/CWE/CWE-090/LdapInjection.ql
@@ -18,5 +18,5 @@ import DataFlow::PathGraph
 
 from DataFlow::PathNode source, DataFlow::PathNode sink, LdapInjectionFlowConfig conf
 where conf.hasFlowPath(source, sink)
-select sink.getNode(), source, sink, "LDAP query depends on a $@.", source.getNode(),
+select sink.getNode(), source, sink, "This LDAP query depends on a $@.", source.getNode(),
   "user-provided value"
diff --git a/java/ql/src/experimental/Security/CWE/CWE-078/ExecTainted.ql b/java/ql/src/experimental/Security/CWE/CWE-078/ExecTainted.ql
@@ -21,5 +21,5 @@ import DataFlow::PathGraph
 // This is a clone of query `java/command-line-injection` that also includes experimental sinks.
 from DataFlow::PathNode source, DataFlow::PathNode sink, ArgumentToExec execArg
 where execTainted(source, sink, execArg)
-select execArg, source, sink, "Command line depends on a $@.", source.getNode(),
+select execArg, source, sink, "This command line depends on a $@.", source.getNode(),
   "user-provided value"
diff --git a/java/ql/test/experimental/query-tests/security/CWE-078/ExecTainted.expected b/java/ql/test/experimental/query-tests/security/CWE-078/ExecTainted.expected
@@ -8,5 +8,5 @@ nodes
 | JSchOSInjectionTest.java:53:36:53:52 | ... + ... | semmle.label | ... + ... |
 subpaths
 #select
-| JSchOSInjectionTest.java:27:52:27:68 | ... + ... | JSchOSInjectionTest.java:14:30:14:60 | getParameter(...) : String | JSchOSInjectionTest.java:27:52:27:68 | ... + ... | Command line depends on a $@. | JSchOSInjectionTest.java:14:30:14:60 | getParameter(...) | user-provided value |
-| JSchOSInjectionTest.java:53:36:53:52 | ... + ... | JSchOSInjectionTest.java:40:30:40:60 | getParameter(...) : String | JSchOSInjectionTest.java:53:36:53:52 | ... + ... | Command line depends on a $@. | JSchOSInjectionTest.java:40:30:40:60 | getParameter(...) | user-provided value |
+| JSchOSInjectionTest.java:27:52:27:68 | ... + ... | JSchOSInjectionTest.java:14:30:14:60 | getParameter(...) : String | JSchOSInjectionTest.java:27:52:27:68 | ... + ... | This command line depends on a $@. | JSchOSInjectionTest.java:14:30:14:60 | getParameter(...) | user-provided value |
+| JSchOSInjectionTest.java:53:36:53:52 | ... + ... | JSchOSInjectionTest.java:40:30:40:60 | getParameter(...) : String | JSchOSInjectionTest.java:53:36:53:52 | ... + ... | This command line depends on a $@. | JSchOSInjectionTest.java:40:30:40:60 | getParameter(...) | user-provided value |
diff --git a/java/ql/test/query-tests/Nullness/NullAlways.expected b/java/ql/test/query-tests/Nullness/NullAlways.expected
@@ -1,16 +1,16 @@
-| A.java:15:7:15:9 | not | Variable $@ is always null at this access. | A.java:13:5:13:22 | Object not | not |
-| A.java:97:18:97:36 | synchronized_always | Variable $@ is always null at this access. | A.java:96:5:96:38 | Object synchronized_always | synchronized_always |
-| A.java:161:26:161:34 | do_always | Variable $@ is always null at this access. | A.java:159:5:159:28 | String do_always | do_always |
-| A.java:167:26:167:34 | do_maybe1 | Variable $@ is always null at this access. | A.java:165:5:165:28 | String do_maybe1 | do_maybe1 |
-| A.java:187:26:187:37 | while_always | Variable $@ is always null at this access. | A.java:185:5:185:31 | String while_always | while_always |
-| A.java:207:26:207:34 | if_always | Variable $@ is always null at this access. | A.java:205:5:205:28 | String if_always | if_always |
-| A.java:223:24:223:29 | for_ok | Variable $@ is always null at this access. | A.java:219:5:219:19 | String for_ok | for_ok |
-| A.java:226:26:226:35 | for_always | Variable $@ is always null at this access. | A.java:225:10:225:33 | String for_always | for_always |
-| A.java:236:5:236:14 | array_null | Variable $@ is always null at this access. | A.java:235:5:235:28 | int[] array_null | array_null |
-| A.java:248:24:248:34 | arrayaccess | Variable $@ is always null at this access. | A.java:244:5:244:29 | int[] arrayaccess | arrayaccess |
-| A.java:249:24:249:34 | fieldaccess | Variable $@ is always null at this access. | A.java:245:5:245:32 | String[] fieldaccess | fieldaccess |
-| A.java:250:24:250:35 | methodaccess | Variable $@ is always null at this access. | A.java:246:5:246:31 | Object methodaccess | methodaccess |
-| A.java:264:21:264:30 | for_always | Variable $@ is always null at this access. | A.java:263:5:263:35 | List<String> for_always | for_always |
-| A.java:266:24:266:33 | for_always | Variable $@ is always null at this access. | A.java:263:5:263:35 | List<String> for_always | for_always |
-| A.java:293:5:293:5 | s | Variable $@ is always null at this access. | A.java:291:5:291:33 | Object s | s |
-| B.java:304:7:304:9 | ioe | Variable $@ is always null at this access. | B.java:297:5:297:25 | Exception ioe | ioe |
+| A.java:15:7:15:9 | not | Variable $@ is always null at this dereference. | A.java:13:5:13:22 | Object not | not |
+| A.java:97:18:97:36 | synchronized_always | Variable $@ is always null at this dereference. | A.java:96:5:96:38 | Object synchronized_always | synchronized_always |
+| A.java:161:26:161:34 | do_always | Variable $@ is always null at this dereference. | A.java:159:5:159:28 | String do_always | do_always |
+| A.java:167:26:167:34 | do_maybe1 | Variable $@ is always null at this dereference. | A.java:165:5:165:28 | String do_maybe1 | do_maybe1 |
+| A.java:187:26:187:37 | while_always | Variable $@ is always null at this dereference. | A.java:185:5:185:31 | String while_always | while_always |
+| A.java:207:26:207:34 | if_always | Variable $@ is always null at this dereference. | A.java:205:5:205:28 | String if_always | if_always |
+| A.java:223:24:223:29 | for_ok | Variable $@ is always null at this dereference. | A.java:219:5:219:19 | String for_ok | for_ok |
+| A.java:226:26:226:35 | for_always | Variable $@ is always null at this dereference. | A.java:225:10:225:33 | String for_always | for_always |
+| A.java:236:5:236:14 | array_null | Variable $@ is always null at this dereference. | A.java:235:5:235:28 | int[] array_null | array_null |
+| A.java:248:24:248:34 | arrayaccess | Variable $@ is always null at this dereference. | A.java:244:5:244:29 | int[] arrayaccess | arrayaccess |
+| A.java:249:24:249:34 | fieldaccess | Variable $@ is always null at this dereference. | A.java:245:5:245:32 | String[] fieldaccess | fieldaccess |
+| A.java:250:24:250:35 | methodaccess | Variable $@ is always null at this dereference. | A.java:246:5:246:31 | Object methodaccess | methodaccess |
+| A.java:264:21:264:30 | for_always | Variable $@ is always null at this dereference. | A.java:263:5:263:35 | List<String> for_always | for_always |
+| A.java:266:24:266:33 | for_always | Variable $@ is always null at this dereference. | A.java:263:5:263:35 | List<String> for_always | for_always |
+| A.java:293:5:293:5 | s | Variable $@ is always null at this dereference. | A.java:291:5:291:33 | Object s | s |
+| B.java:304:7:304:9 | ioe | Variable $@ is always null at this dereference. | B.java:297:5:297:25 | Exception ioe | ioe |
diff --git a/java/ql/test/query-tests/security/CWE-078/ExecTaintedLocal.expected b/java/ql/test/query-tests/security/CWE-078/ExecTaintedLocal.expected
@@ -33,8 +33,8 @@ nodes
 | Test.java:61:23:61:25 | arg : String | semmle.label | arg : String |
 subpaths
 #select
-| Test.java:7:44:7:69 | ... + ... | Test.java:57:27:57:39 | args : String[] | Test.java:7:44:7:69 | ... + ... | Command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
-| Test.java:10:29:10:74 | new String[] | Test.java:57:27:57:39 | args : String[] | Test.java:10:29:10:74 | new String[] | Command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
-| Test.java:18:29:18:31 | cmd | Test.java:57:27:57:39 | args : String[] | Test.java:18:29:18:31 | cmd | Command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
-| Test.java:24:29:24:32 | cmd1 | Test.java:57:27:57:39 | args : String[] | Test.java:24:29:24:32 | cmd1 | Command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
-| Test.java:29:44:29:64 | ... + ... | Test.java:57:27:57:39 | args : String[] | Test.java:29:44:29:64 | ... + ... | Command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
+| Test.java:7:44:7:69 | ... + ... | Test.java:57:27:57:39 | args : String[] | Test.java:7:44:7:69 | ... + ... | This command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
+| Test.java:10:29:10:74 | new String[] | Test.java:57:27:57:39 | args : String[] | Test.java:10:29:10:74 | new String[] | This command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
+| Test.java:18:29:18:31 | cmd | Test.java:57:27:57:39 | args : String[] | Test.java:18:29:18:31 | cmd | This command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
+| Test.java:24:29:24:32 | cmd1 | Test.java:57:27:57:39 | args : String[] | Test.java:24:29:24:32 | cmd1 | This command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
+| Test.java:29:44:29:64 | ... + ... | Test.java:57:27:57:39 | args : String[] | Test.java:29:44:29:64 | ... + ... | This command line depends on a $@. | Test.java:57:27:57:39 | args | user-provided value |
diff --git a/java/ql/test/query-tests/security/CWE-090/LdapInjection.expected b/java/ql/test/query-tests/security/CWE-090/LdapInjection.expected
