Python: Avoid duplicate modules in points-to and resulting blow-up.

2025-12-17 01:03:14 +01:00 · 2019-06-17 12:25:36 +01:00
parent 87ebc178cc
commit 62591e469e
8 changed files with 44 additions and 2 deletions
--- a/python/ql/src/semmle/python/Module.qll
+++ b/python/ql/src/semmle/python/Module.qll
@@ -195,6 +195,7 @@ class Module extends Module_, Scope, AstNode {

 }

+
 bindingset[name]
 private predicate legalDottedName(string name) {
    name.regexpMatch("(\\p{L}|_)(\\p{L}|\\d|_)*(\\.(\\p{L}|_)(\\p{L}|\\d|_)*)*")
@@ -244,3 +245,30 @@ private predicate isStubRoot(Folder f) {
    f.getAbsolutePath().matches("%/data/python/stubs")
 }

+
+/** Holds if the Container `c` should be the preferred file or folder for
+ * the given name when performing imports.
+ * Trivially true for any container if it is the only one with its name.
+ * However, if there are several modules with the same name, then
+ * this is the module most likely to be imported under that name.
+ */
+predicate isPreferredModuleForName(Container c, string name) {
+    exists(int p |
+        p = min(int x | x = priorityForName(_, name)) and
+        p = priorityForName(c, name)
+    )
+}
+
+private int priorityForName(Container c, string name) {
+    name = moduleNameFromFile(c) and
+    (
+        // In the source
+        exists(c.getRelativePath()) and result = -1
+        or
+        // On an import path
+        exists(c.getImportRoot(result))
+        or
+        // Otherwise
+        result = 10000
+    )
+}
--- a/python/ql/src/semmle/python/objects/TObject.qll
+++ b/python/ql/src/semmle/python/objects/TObject.qll
@@ -47,12 +47,13 @@ cached newtype TObject =
    or
    /* Package objects */
    TPackageObject(Folder f) {
-        exists(moduleNameFromFile(f))
+        isPreferredModuleForName(f, _)
    }
    or
    /* Python module objects */
    TPythonModule(Module m) {
-        not m.isPackage() and not exists(SyntaxError se | se.getFile() = m.getFile())
+        not m.isPackage() and isPreferredModuleForName(m.getFile(), _) and
+        not exists(SyntaxError se | se.getFile() = m.getFile())
    }
    or
    /* `True` */
--- a/python/ql/test/library-tests/modules/duplicate_name/Modules.expected
+++ b/python/ql/test/library-tests/modules/duplicate_name/Modules.expected
@@ -0,0 +1,3 @@
+| sqlite3 | 2 | 1 |
+| sqlite3.__init__ | 2 | 1 |
+| sqlite3.dump | 2 | 1 |
--- a/python/ql/test/library-tests/modules/duplicate_name/Modules.ql
+++ b/python/ql/test/library-tests/modules/duplicate_name/Modules.ql
@@ -0,0 +1,7 @@
+
+import python
+
+from string name, int mcnt
+where mcnt = strictcount(Module m | m.getName() = name) and mcnt > 1
+select name, mcnt, strictcount(ModuleValue val | val.getName() = name)
+
--- a/python/ql/test/library-tests/modules/duplicate_name/options
+++ b/python/ql/test/library-tests/modules/duplicate_name/options
@@ -0,0 +1,2 @@
+semmle-extractor-options: -R .
+optimize: true
--- a/python/ql/test/library-tests/modules/duplicate_name/test.py
+++ b/python/ql/test/library-tests/modules/duplicate_name/test.py
@@ -0,0 +1 @@
+import sqlite3.dump
--- a/python/ql/test/library-tests/modules/duplicate_name/venv/sqlite3/init.py
+++ b/python/ql/test/library-tests/modules/duplicate_name/venv/sqlite3/init.py
--- a/python/ql/test/library-tests/modules/duplicate_name/venv/sqlite3/dump.py
+++ b/python/ql/test/library-tests/modules/duplicate_name/venv/sqlite3/dump.py