Merge pull request #7246 from tausbn/python/import-star-flow

Python: Support flow through `import *`

python/ql/test/experimental/dataflow/global-flow/known.py

@@ -1 +1 @@
-known_attr = [1000]
+known_attr = [1000] #$ writes=known_attr

python/ql/test/experimental/dataflow/import-star/deux.py

@@ -0,0 +1,2 @@
+from trois import *
+print(foo)

python/ql/test/experimental/dataflow/import-star/global.expected

@@ -0,0 +1,15 @@
+| test3.py:1:17:1:19 | ControlFlowNode for ImportMember | test3.py:2:7:2:9 | ControlFlowNode for foo |
+| three.py:1:1:1:3 | ControlFlowNode for foo | test1.py:2:7:2:9 | ControlFlowNode for foo |
+| three.py:1:1:1:3 | ControlFlowNode for foo | test3.py:1:17:1:19 | ControlFlowNode for ImportMember |
+| three.py:1:1:1:3 | ControlFlowNode for foo | test3.py:2:7:2:9 | ControlFlowNode for foo |
+| three.py:1:1:1:3 | ControlFlowNode for foo | two.py:2:7:2:9 | ControlFlowNode for foo |
+| three.py:1:7:1:7 | ControlFlowNode for IntegerLiteral | test1.py:2:7:2:9 | ControlFlowNode for foo |
+| three.py:1:7:1:7 | ControlFlowNode for IntegerLiteral | test3.py:1:17:1:19 | ControlFlowNode for ImportMember |
+| three.py:1:7:1:7 | ControlFlowNode for IntegerLiteral | test3.py:2:7:2:9 | ControlFlowNode for foo |
+| three.py:1:7:1:7 | ControlFlowNode for IntegerLiteral | two.py:2:7:2:9 | ControlFlowNode for foo |
+| trois.py:1:1:1:3 | ControlFlowNode for foo | deux.py:2:7:2:9 | ControlFlowNode for foo |
+| trois.py:1:1:1:3 | ControlFlowNode for foo | test2.py:2:7:2:9 | ControlFlowNode for foo |
+| trois.py:1:7:1:7 | ControlFlowNode for IntegerLiteral | deux.py:2:7:2:9 | ControlFlowNode for foo |
+| trois.py:1:7:1:7 | ControlFlowNode for IntegerLiteral | test2.py:2:7:2:9 | ControlFlowNode for foo |
+| two.py:2:7:2:9 | ControlFlowNode for foo | test3.py:1:17:1:19 | ControlFlowNode for ImportMember |
+| two.py:2:7:2:9 | ControlFlowNode for foo | test3.py:2:7:2:9 | ControlFlowNode for foo |

python/ql/test/experimental/dataflow/import-star/global.ql

@@ -0,0 +1,19 @@
+import semmle.python.dataflow.new.DataFlow
+
+/**
+ * A configuration to find all flows.
+ * To be used on tiny programs.
+ */
+class AllFlowsConfig extends DataFlow::Configuration {
+  AllFlowsConfig() { this = "AllFlowsConfig" }
+
+  override predicate isSource(DataFlow::Node node) { any() }
+
+  override predicate isSink(DataFlow::Node node) { any() }
+}
+
+from DataFlow::CfgNode source, DataFlow::CfgNode sink
+where
+  source != sink and
+  exists(AllFlowsConfig cfg | cfg.hasFlow(source, sink))
+select source, sink

python/ql/test/experimental/dataflow/import-star/one.py

@@ -0,0 +1 @@
+from two import *

python/ql/test/experimental/dataflow/import-star/test1.py

@@ -0,0 +1,2 @@
+from one import *
+print(foo)

python/ql/test/experimental/dataflow/import-star/test2.py

@@ -0,0 +1,2 @@
+from un import *
+print(foo)

python/ql/test/experimental/dataflow/import-star/test3.py

@@ -0,0 +1,2 @@
+from one import foo
+print(foo)

python/ql/test/experimental/dataflow/import-star/three.py

@@ -0,0 +1 @@
+foo = 5

python/ql/test/experimental/dataflow/import-star/trois.py

@@ -0,0 +1 @@
+foo = 6

python/ql/test/experimental/dataflow/import-star/two.py

@@ -0,0 +1,2 @@
+from three import *
+print(foo)

python/ql/test/experimental/dataflow/import-star/un.py

@@ -0,0 +1 @@
+from deux import *

python/ql/test/library-tests/PointsTo/new/ImpliesDataflow.expected

@@ -15,4 +15,3 @@
 | code/r_regressions.py:46:1:46:14 | ControlFlowNode for FunctionExpr | code/r_regressions.py:52:9:52:12 | ControlFlowNode for fail |
 | code/t_type.py:3:1:3:16 | ControlFlowNode for ClassExpr | code/t_type.py:6:1:6:9 | ControlFlowNode for type() |
 | code/t_type.py:3:1:3:16 | ControlFlowNode for ClassExpr | code/t_type.py:13:5:13:13 | ControlFlowNode for type() |
-| code/test_package/module2.py:5:5:5:6 | ControlFlowNode for Dict | code/j_convoluted_imports.py:25:1:25:1 | ControlFlowNode for r |