Skip to content

Overlay: Fix Java overlay compilation regressions#19962

Merged
kaspersv merged 2 commits intogithub:mainfrom
kaspersv:kaspersv/overlay-java-local-TC-fixes
Jul 3, 2025
Merged

Overlay: Fix Java overlay compilation regressions#19962
kaspersv merged 2 commits intogithub:mainfrom
kaspersv:kaspersv/overlay-java-local-TC-fixes

Conversation

@kaspersv
Copy link
Copy Markdown
Contributor

@kaspersv kaspersv commented Jul 3, 2025
edited
Loading

This PR adds overlay[local?] annotations to two Java queries to fix regressions under non-overlay analysis when overlay compilation is enabled. Both queries use DataFlow::localExprFlow and rely on the FastTCBounder to bound the TC within localExprFlow to support efficient evaluation. This is hampered when the queries use localExprFlow across the overlay frontier.

Overlay compilation is currently disabled for Java and the annotations therefore have no effect on compilation or evaluation.

@github-actions github-actions Bot added the Java label Jul 3, 2025
@kaspersv kaspersv requested a review from ginsbach July 3, 2025 08:28
@kaspersv kaspersv marked this pull request as ready for review July 3, 2025 08:28
Copilot AI review requested due to automatic review settings July 3, 2025 08:28
@kaspersv kaspersv requested a review from a team as a code owner July 3, 2025 08:28
Copilot AI reviewed Jul 3, 2025
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot wasn't able to review any files in this pull request.

Files not reviewed (2)
  • java/ql/lib/semmle/code/java/security/TempDirLocalInformationDisclosureQuery.qll: Language not supported
  • java/ql/src/Security/CWE/CWE-113/NettyResponseSplitting.ql: Language not supported

@kaspersv kaspersv added the no-change-note-required This PR does not need a change note label Jul 3, 2025
ginsbach
ginsbach reviewed Jul 3, 2025
View reviewed changes
Comment thread java/ql/src/Security/CWE/CWE-113/NettyResponseSplitting.ql Outdated
@kaspersv kaspersv force-pushed the kaspersv/overlay-java-local-TC-fixes branch from dd862ee to 649091c Compare July 3, 2025 08:48
@ginsbach ginsbach self-requested a review July 3, 2025 09:10
@kaspersv kaspersv merged commit de71758 into github:main Jul 3, 2025
17 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

+1 more reviewer

@ginsbach ginsbach ginsbach approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@ginsbach ginsbach

Labels

Java no-change-note-required This PR does not need a change note

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@kaspersv @ginsbach