mirror of
https://github.com/github/codeql.git
synced 2026-04-22 07:15:15 +02:00
ba19f95d3e
This is important to model mixins correctly, for example when they help handle incoming requests, and therefore need to know that `self.kwargs` contains data controlled by a user.
40 lines
1.2 KiB
Plaintext
40 lines
1.2 KiB
Plaintext
/**
|
|
* INTERNAL: Do not use.
|
|
*
|
|
* Provides the `SelfRefMixin` class.
|
|
*/
|
|
|
|
private import python
|
|
private import semmle.python.dataflow.new.DataFlow
|
|
private import semmle.python.dataflow.new.internal.DataFlowDispatch
|
|
|
|
/**
|
|
* INTERNAL: Do not use.
|
|
*
|
|
* Adds the `getASelfRef` member predicate when modeling a class.
|
|
*/
|
|
abstract class SelfRefMixin extends Class {
|
|
/**
|
|
* Gets a reference to instances of this class, originating from a self parameter of
|
|
* a method defined on this class.
|
|
*/
|
|
private DataFlow::TypeTrackingNode getASelfRef(DataFlow::TypeTracker t) {
|
|
t.start() and
|
|
exists(Class cls, Function meth |
|
|
cls = getADirectSuperclass*(this) and
|
|
meth = cls.getAMethod() and
|
|
not isStaticmethod(meth) and
|
|
not isClassmethod(meth) and
|
|
result.(DataFlow::ParameterNode).getParameter() = meth.getArg(0)
|
|
)
|
|
or
|
|
exists(DataFlow::TypeTracker t2 | result = this.getASelfRef(t2).track(t2, t))
|
|
}
|
|
|
|
/**
|
|
* Gets a reference to instances of this class, originating from a self parameter of
|
|
* a method defined on this class.
|
|
*/
|
|
DataFlow::Node getASelfRef() { this.getASelfRef(DataFlow::TypeTracker::end()).flowsTo(result) }
|
|
}
|