Java: Add support for data flow through thrown exceptions.

Open aschackmull opened this issue 1 month ago • 2 comments

A fresh port of https://github.com/github/codeql/pull/9914 to present-day main. I haven't included negative types for now.

Nov 19 '25 08:11 aschackmull

I suppose we have to redo the performance testing to verify all is well.

All is not well - I know that. So I'm not going to merge this until I have more time to dig into the performance problems.

Nov 19 '25 10:11 aschackmull

One thing is that all summaries can now throw

Uhm, no?

As I understand it, the new CatchParameterNode will be followed in the CFG by CatchTypeTestNode

No. They're data flow nodes - not CFG nodes, they're not anywhere in the CFG. And the order is the other way round.

Nov 19 '25 10:11 aschackmull