hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-19 08:23:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

Fix type-tracking load/store steps

Browse Source
This commit is contained in:
Nick Rolfe
2021-05-05 12:12:45 +01:00
parent 647c108c0b
commit b16b95e2f7
2 changed files with 11 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
ql/src/codeql_ruby/controlflow/CfgNodes.qll
View File

@@ -247,6 +247,11 @@ module ExprNodes {
override predicate relevantChild(Expr e) { e = this.getValue() or e = this.getBranch(_) }
}
/** A control-flow node that wraps a `MethodCall` AST expression. */
class MethodCallCfgNode extends CallCfgNode {
MethodCallCfgNode() { this.getExpr() instanceof MethodCall }
}
/** A control-flow node that wraps a `CaseExpr` AST expression. */
class CaseExprCfgNode extends ExprCfgNode {
override CaseExprChildMapping e;

15
ql/src/codeql_ruby/typetracking/TypeTrackerSpecific.qll
View File

@@ -72,15 +72,12 @@ predicate returnStep(DataFlowPrivate::ReturnNode nodeFrom, Node nodeTo) {
*/
predicate basicStoreStep(Node nodeFrom, LocalSourceNode nodeTo, string content) {
// TODO: support SetterMethodCall inside TuplePattern
exists(
ExprNodes::AssignmentCfgNode assignment, ExprNodes::CallCfgNode call,
DataFlowPublic::ExprNode receiver
|
exists(ExprNodes::AssignmentCfgNode assignment, ExprNodes::CallCfgNode call |
assignment.getLhs() = call and
content = getSetterCallAttributeName(call.getExpr()) and
receiver.getExprNode().getNode() = call.getExpr().(AST::SetterMethodCall).getReceiver() and
assignment.getRhs() = nodeFrom.(DataFlowPublic::ExprNode).getExprNode() and
nodeTo = receiver
nodeTo.(DataFlowPublic::ExprNode).getExprNode() = call.getReceiver() and
call.getExpr() instanceof AST::SetterMethodCall and
assignment.getRhs() = nodeFrom.(DataFlowPublic::ExprNode).getExprNode()
)
}
@@ -105,10 +102,10 @@ private string getSetterCallAttributeName(AST::SetterMethodCall call) {
* Holds if `nodeTo` is the result of accessing the `content` content of `nodeFrom`.
*/
predicate basicLoadStep(Node nodeFrom, Node nodeTo, string content) {
exists(ExprNodes::CallCfgNode call |
exists(ExprNodes::MethodCallCfgNode call |
call.getExpr().getNumberOfArguments() = 0 and
content = call.getExpr().(AST::MethodCall).getMethodName() and
nodeFrom.asExpr().getNode() = call.getExpr().(AST::MethodCall).getReceiver() and
nodeFrom.asExpr() = call.getReceiver() and
nodeTo.asExpr() = call
)
}