Merge pull request #10558 from aschackmull/java/static-init-vector-perf

aschackmull · web-flow · commit f4ef4342c28a · 2022-09-26T10:50:49.000+02:00
Java: Improve performance of StaticInitializationVector.
diff --git a/java/ql/lib/semmle/code/java/security/StaticInitializationVectorQuery.qll b/java/ql/lib/semmle/code/java/security/StaticInitializationVectorQuery.qll
@@ -2,7 +2,7 @@
 
 import java
 import semmle.code.java.dataflow.TaintTracking
-import semmle.code.java.dataflow.TaintTracking2
+import semmle.code.java.dataflow.DataFlow2
 
 /**
  * Holds if `array` is initialized only with constants.
@@ -83,14 +83,16 @@ private class ArrayUpdate extends Expr {
 /**
  * A config that tracks dataflow from creating an array to an operation that updates it.
  */
-private class ArrayUpdateConfig extends TaintTracking2::Configuration {
+private class ArrayUpdateConfig extends DataFlow2::Configuration {
   ArrayUpdateConfig() { this = "ArrayUpdateConfig" }
 
   override predicate isSource(DataFlow::Node source) {
     source.asExpr() instanceof StaticByteArrayCreation
   }
 
   override predicate isSink(DataFlow::Node sink) { sink.asExpr() = any(ArrayUpdate upd).getArray() }
+
+  override predicate isBarrierOut(DataFlow::Node node) { this.isSink(node) }
 }
 
 /**
