Python: Add syntactic support for yield in contextlib.contextmanager

2025-12-21 11:16:30 +01:00 · 2023-10-17 09:51:20 +02:00
parent 2399793c8a
commit 2bf4c32433
3 changed files with 31 additions and 4 deletions
--- a/python/ql/lib/change-notes/2023-10-17-contextmanager.md
+++ b/python/ql/lib/change-notes/2023-10-17-contextmanager.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Added support for functions decorated with `contextlib.contextmanager`.
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowDispatch.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowDispatch.qll
@@ -240,6 +240,19 @@ predicate hasPropertyDecorator(Function func) {
  )
 }

+/**
+ * Holds if the function `func` has a `contextlib.contextmanager`.
+ */
+predicate hasContextmanagerDecorator(Function func) {
+  exists(ControlFlowNode contextmanager |
+    contextmanager.(NameNode).getId() = "contextmanager" and contextmanager.(NameNode).isGlobal()
+    or
+    contextmanager.(AttrNode).getObject("contextmanager").(NameNode).getId() = "contextlib"
+  |
+    func.getADecorator() = contextmanager.getNode()
+  )
+}
+
 // =============================================================================
 // Callables
 // =============================================================================
@@ -1604,6 +1617,16 @@ class ExtractedReturnNode extends ReturnNode, CfgNode {
  override ReturnKind getKind() { any() }
 }

+/** A data flow node that represents a value returned by a callable. */
+class YieldNodeInContextManagerFunction extends ReturnNode, CfgNode {
+  YieldNodeInContextManagerFunction() {
+    hasContextmanagerDecorator(node.getScope()) and
+    node = any(Yield yield).getValue().getAFlowNode()
+  }
+
+  override ReturnKind getKind() { any() }
+}
+
 /** A data-flow node that represents the output of a call. */
 abstract class OutNode extends Node {
  /** Gets the underlying call, where this node is a corresponding output of kind `kind`. */
--- a/python/ql/test/experimental/dataflow/typetracking/test.py
+++ b/python/ql/test/experimental/dataflow/typetracking/test.py
@@ -223,8 +223,8 @@ def managed_resource():
    yield x # $ tracked

 def test_context_manager():
-    with managed_resource() as x: # $ MISSING: tracked
-        print(x) # $ MISSING: tracked
+    with managed_resource() as x: # $ tracked
+        print(x) # $ tracked

@contextlib.contextmanager
 def managed_resource2():
@@ -232,5 +232,5 @@ def managed_resource2():
    yield x # $ tracked

 def test_context_manager2():
-    with managed_resource2() as x: # $ MISSING: tracked
-        print(x) # $ MISSING: tracked
+    with managed_resource2() as x: # $ tracked
+        print(x) # $ tracked