hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-05 05:35:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

Add self-verifying type-tracking tests.

Browse Source
This commit is contained in:
Max Schaefer
2020-06-26 09:56:02 +01:00
parent 941177ee25
commit 712a216461
4 changed files with 52 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
javascript/ql/test/library-tests/TypeTracking/TypeTracking.expected Normal file
View File

@@ -0,0 +1 @@
| client2.js:3:6:3:16 | // track: f | Failed to track f here. |

43
javascript/ql/test/library-tests/TypeTracking/TypeTracking.ql Normal file
View File

@@ -0,0 +1,43 @@
import javascript
/** Gets a node to which the source node annotated with `name` is tracked under state `t`. */
DataFlow::SourceNode trackNamedNode(DataFlow::TypeTracker t, string name) {
t.start() and
exists(Comment c, string f, int l |
f = c.getFile().getAbsolutePath() and
l = c.getLocation().getStartLine() and
result.hasLocationInfo(f, l, _, _, _) and
name = c.getText().regexpFind("(?<=name: )\\S+", _, _)
)
or
exists(DataFlow::TypeTracker t2 | result = trackNamedNode(t2, name).track(t2, t))
}
/** Holds if `name` is tracked to expression `e` starting on line `l` of file `f`. */
predicate actual(Expr e, File f, int l, string name) {
trackNamedNode(DataFlow::TypeTracker::end(), name).flowsToExpr(e) and
f = e.getFile() and
l = e.getLocation().getStartLine()
}
/**
* Holds if there is an annotation comment expecting `name` to be tracked to an expression
* on line `l` of file `f`.
*/
predicate expected(Comment c, File f, int l, string name) {
f = c.getFile() and
l = c.getLocation().getStartLine() and
name = c.getText().regexpFind("(?<=track: )\\S+", _, _)
}
from Locatable loc, File f, int l, string name, string msg
where
expected(loc, f, l, name) and
not actual(_, f, l, name) and
msg = "Failed to track " + name + " here."
or
actual(loc, f, l, name) and
not expected(_, f, l, name) and
expected(_, f, l, _) and
msg = "Unexpectedly tracked " + name + " here."
select loc, msg

3
javascript/ql/test/library-tests/TypeTracking/client2.js Normal file
View File

@@ -0,0 +1,3 @@
const g = require("./deprecated");
g(); // track: f

5
javascript/ql/test/library-tests/TypeTracking/deprecated.js Normal file
View File

@@ -0,0 +1,5 @@
const util = require("util");
function f() {} // name: f
module.exports = util.deprecate(f, "don't use this function");