adding bundle tests

jsinglet · jsinglet · commit d883c1c8f8e7 · 2024-02-22T14:08:48.000-05:00
diff --git a/example/cpp/customizations/src/codeql-pack.lock.yml b/example/cpp/customizations/src/codeql-pack.lock.yml
@@ -0,0 +1,18 @@
+---
+lockVersion: 1.0.0
+dependencies:
+  codeql/cpp-all:
+    version: 0.12.2
+  codeql/dataflow:
+    version: 0.1.5
+  codeql/rangeanalysis:
+    version: 0.0.4
+  codeql/ssa:
+    version: 0.2.5
+  codeql/tutorial:
+    version: 0.2.5
+  codeql/typetracking:
+    version: 0.2.5
+  codeql/util:
+    version: 0.2.5
+compiled: false
diff --git a/example/cpp/customizations/src/qlpack.yml b/example/cpp/customizations/src/qlpack.yml
@@ -0,0 +1,5 @@
+library: true
+name: qlt/cpp-customizations
+version: 0.0.1
+dependencies:
+  "codeql/cpp-all": "0.12.2"
diff --git a/example/cpp/customizations/src/qlt/Customizations.qll b/example/cpp/customizations/src/qlt/Customizations.qll
@@ -0,0 +1,13 @@
+import cpp
+private import semmle.code.cpp.security.FlowSources
+
+module FooSources {
+  private class FooExternalSourceFunction extends RemoteFlowSourceFunction {
+    FooExternalSourceFunction() { this.hasName("foo") }
+
+    override predicate hasRemoteFlowSource(FunctionOutput output, string description) {
+      output.isReturnValue() and
+      description = "value returned by " + this.getName()
+    }
+  }
+}
diff --git a/example/cpp/customizations/test/codeql-pack.lock.yml b/example/cpp/customizations/test/codeql-pack.lock.yml
@@ -0,0 +1,18 @@
+---
+lockVersion: 1.0.0
+dependencies:
+  codeql/cpp-all:
+    version: 0.12.2
+  codeql/dataflow:
+    version: 0.1.5
+  codeql/rangeanalysis:
+    version: 0.0.4
+  codeql/ssa:
+    version: 0.2.5
+  codeql/tutorial:
+    version: 0.2.5
+  codeql/typetracking:
+    version: 0.2.5
+  codeql/util:
+    version: 0.2.5
+compiled: false
diff --git a/example/cpp/customizations/test/post-bundle/FooExternalSourceFunction/Foo.expected b/example/cpp/customizations/test/post-bundle/FooExternalSourceFunction/Foo.expected
@@ -0,0 +1 @@
+| test.c:4:13:4:15 | call to foo |
diff --git a/example/cpp/customizations/test/post-bundle/FooExternalSourceFunction/Foo.ql b/example/cpp/customizations/test/post-bundle/FooExternalSourceFunction/Foo.ql
@@ -0,0 +1,5 @@
+import cpp
+import qlt.Customizations
+import semmle.code.cpp.security.FlowSources
+
+select any(RemoteFlowSource s)
diff --git a/example/cpp/customizations/test/post-bundle/FooExternalSourceFunction/test.c b/example/cpp/customizations/test/post-bundle/FooExternalSourceFunction/test.c
@@ -0,0 +1,7 @@
+int foo();
+
+int main(int argc, char** argv) {
+    int i = foo();
+
+    return i;
+}
diff --git a/example/cpp/customizations/test/pre-bundle/FooExternalSourceFunction/Foo.expected b/example/cpp/customizations/test/pre-bundle/FooExternalSourceFunction/Foo.expected
diff --git a/example/cpp/customizations/test/pre-bundle/FooExternalSourceFunction/Foo.ql b/example/cpp/customizations/test/pre-bundle/FooExternalSourceFunction/Foo.ql
@@ -0,0 +1,4 @@
+import cpp
+import semmle.code.cpp.security.FlowSources
+
+select any(RemoteFlowSource s)
diff --git a/example/cpp/customizations/test/pre-bundle/FooExternalSourceFunction/test.c b/example/cpp/customizations/test/pre-bundle/FooExternalSourceFunction/test.c
@@ -0,0 +1,7 @@
+int foo();
+
+int main(int argc, char** argv) {
+    int i = foo();
+
+    return i;
+}
diff --git a/example/cpp/customizations/test/qlpack.yml b/example/cpp/customizations/test/qlpack.yml
@@ -0,0 +1,6 @@
+library: true
+name: qlt/cpp-customizations-tests
+version: 0.0.1
+dependencies:
+  "qlt/cpp-customizations": "*"
+extractor: cpp
diff --git a/example/qlt.conf.json b/example/qlt.conf.json
@@ -5,6 +5,6 @@
   "EnableCustomCodeQLBundles": true,
   "CodeQLStandardLibraryIdent": "codeql-cli_v2.15.5",
   "ExportedCustomizationPacks" : [
-    "qlt2/stuff2"
+    "qlt/cpp-customizations"
   ]
 }
diff --git a/scratch/.gitignore b/scratch/.gitignore
@@ -0,0 +1 @@
+/codeql-bundle-win64.tar.gz
