hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-20 10:46:30 +01:00
Code Issues Packages Projects Releases Wiki Activity

Python: add flow from ArgumentNodes

Browse Source
This commit is contained in:
Rasmus Lerchedahl Petersen
2020-06-17 18:36:50 +02:00
parent a45b5a7d3c
commit f24dc69e1d
1 changed files with 6 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
python/ql/src/experimental/dataflow/internal/DataFlowPrivate.qll
View File

@@ -52,17 +52,17 @@ predicate simpleLocalFlowStep(Node nodeFrom, Node nodeTo) {
nodeTo.asEssaNode() = p.getVariable() and
nodeFrom.asEssaNode() = p.getShortCircuitInput()
)
// or
// exists(EssaNodeDefinition d |
// nodeTo.asEssaNode() = d.getVariable() and
// nodeFrom.asEssaNode().getDefinition().getLocation() = d.(AssignmentDefinition).getValue().getLocation() // TODO: A better way to tie these together
// )
or
// As in `taintedAssignment`
// `x = f(42)`
// nodeTo is any use of `x`
// nodeFrom is `f(42)`
// nodeTo is any use of `x`
nodeFrom.asCfgNode() = nodeTo.asEssaNode().getDefinition().(AssignmentDefinition).getValue()
or
// `def f(x):`
// nodeFrom is control flow node for `x`
// nodeTo is SSA variable for `x`
nodeFrom.asCfgNode() = nodeTo.asEssaNode().(ParameterDefinition).getDefiningNode()
}
// TODO: Make modules for these headings