Skip to content

Commit 3316d61

Browse files
committed
Ctx flow comments.
1 parent d99812a commit 3316d61

1 file changed

Lines changed: 18 additions & 0 deletions

File tree

cpp/ql/lib/experimental/Quantum/OpenSSL/CtxFlow.qll

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,21 @@
1+
/**
2+
* In OpenSSL, flow between 'context' parameters is often used to
3+
* store state/config of how an operation will eventually be performed.
4+
* Tracing algorithms and configurations to operations therefore
5+
* requires tracing context parameters for many OpenSSL apis.
6+
*
7+
* This library provides a dataflow analysis to track context parameters
8+
* between any two functions accepting openssl context parameters.
9+
* The dataflow takes into consideration flowing through duplication and copy calls
10+
* as well as flow through flow killers (free/reset calls).
11+
*
12+
* TODO: we may need to revisit 'free' as a dataflow killer, depending on how
13+
* we want to model use after frees.
14+
*
15+
* This library also provides classes to represent context Types and relevant
16+
* arguments/expressions.
17+
*/
18+
119
import semmle.code.cpp.dataflow.new.DataFlow
220

321
class CTXType extends Type {

0 commit comments

Comments
 (0)