python: add tests for guards compared to booleans

yoff · yoff · commit d2bab389b6f7 · 2026-02-08T09:32:23.000+01:00
diff --git a/python/ql/test/library-tests/dataflow/tainttracking/customSanitizer/test_logical.py b/python/ql/test/library-tests/dataflow/tainttracking/customSanitizer/test_logical.py
@@ -192,6 +192,49 @@ def test_with_exception_neg():
 
     ensure_not_tainted(s)
 
+def test_comparison_with_bool():
+    s = TAINTED_STRING
+
+    if is_safe(s) == True:
+        ensure_not_tainted(s) # $ SPURIOUS: tainted
+    else:
+        ensure_tainted(s) # $ tainted
+
+    if is_safe(s) == False:
+        ensure_tainted(s) # $ tainted
+    else:
+        ensure_not_tainted(s) # $ SPURIOUS: tainted
+
+    if is_safe(s) != True:
+        ensure_tainted(s) # $ tainted
+    else:
+        ensure_not_tainted(s) # $ SPURIOUS: tainted
+
+    if is_safe(s) != False:
+        ensure_not_tainted(s) # $ SPURIOUS: tainted
+    else:
+        ensure_tainted(s) # $ tainted
+
+    if is_safe(s) is True:
+        ensure_not_tainted(s) # $ SPURIOUS: tainted
+    else:
+        ensure_tainted(s) # $ tainted
+
+    if is_safe(s) is False:
+        ensure_tainted(s) # $ tainted
+    else:
+        ensure_not_tainted(s) # $ SPURIOUS: tainted
+
+    if is_safe(s) is not True:
+        ensure_tainted(s) # $ tainted
+    else:
+        ensure_not_tainted(s) # $ SPURIOUS: tainted
+
+    if is_safe(s) is not False:
+        ensure_not_tainted(s) # $ SPURIOUS: tainted
+    else:
+        ensure_tainted(s) # $ tainted   
+
 # Make tests runable
 
 test_basic()
@@ -211,3 +254,4 @@ def test_with_exception_neg():
     test_with_exception_neg()
 except:
     pass
+test_comparison_with_bool()
