codeql/python/ql/test/experimental/dataflow/coverage/test.py

# This should cover all the syntactical constructs that we hope to support.
# Headings refer to https://docs.python.org/3/reference/expressions.html,
# and are selected whenever they incur dataflow.
# Intended sources should be the variable `SOURCE` and intended sinks should be
# arguments to the function `SINK` (see python/ql/test/experimental/dataflow/testConfig.qll).
#
# Functions whose name ends with "_with_local_flow" will also be tested for local flow.
#
# All functions starting with "test_" should run and print `"OK"`.
# This can be checked by running validTest.py.

# These are defined so that we can evaluate the test code.
NONSOURCE = "not a source"
SOURCE = "source"


def is_source(x):
    return x == "source" or x == b"source" or x == 42 or x == 42.0 or x == 42j


def SINK(x):
    if is_source(x):
        print("OK")
    else:
        print("Unexpected flow", x)


def SINK_F(x):
    if is_source(x):
        print("Unexpected flow", x)
    else:
        print("OK")


def test_tuple_with_local_flow():
    x = (NONSOURCE, SOURCE)
    y = x[1]
    SINK(y)


def test_tuple_negative():
    x = (NONSOURCE, SOURCE)
    y = x[0]
    SINK_F(y)

# 6.2.1. Identifiers (Names)


def test_names():
    x = SOURCE
    SINK(x)

# 6.2.2. Literals


def test_string_literal():
    x = "source"
    SINK(x)


def test_bytes_literal():
    x = b"source"
    SINK(x)


def test_integer_literal():
    x = 42
    SINK(x)


def test_floatnumber_literal():
    x = 42.0
    SINK(x)


def test_imagnumber_literal():
    x = 42j
    SINK(x)  # Flow missing

# 6.2.3. Parenthesized forms


def test_parenthesized_form():
    x = (SOURCE)
    SINK(x)

# 6.2.5. List displays


def test_list_display():
    x = [SOURCE]
    SINK(x[0])


def test_list_display_negative():
    x = [SOURCE]
    SINK_F(x)


def test_list_comprehension():
    x = [SOURCE for y in [NONSOURCE]]
    SINK(x[0])


def test_list_comprehension_flow():
    x = [y for y in [SOURCE]]
    SINK(x[0])


def test_list_comprehension_inflow():
    l = [SOURCE]
    x = [y for y in l]
    SINK(x[0])


def test_nested_list_display():
    x = [* [SOURCE]]
    SINK(x[0])  # Flow missing

# 6.2.6. Set displays


def test_set_display():
    x = {SOURCE}
    SINK(x.pop())


def test_set_comprehension():
    x = {SOURCE for y in [NONSOURCE]}
    SINK(x.pop())


def test_set_comprehension_flow():
    x = {y for y in [SOURCE]}
    SINK(x.pop())


def test_set_comprehension_inflow():
    l = {SOURCE}
    x = {y for y in l}
    SINK(x.pop())


def test_nested_set_display():
    x = {* {SOURCE}}
    SINK(x.pop())  # Flow missing

# 6.2.7. Dictionary displays


def test_dict_display():
    x = {"s": SOURCE}
    SINK(x["s"])


def test_dict_display_pop():
    x = {"s": SOURCE}
    SINK(x.pop("s"))


def test_dict_comprehension():
    x = {y: SOURCE for y in ["s"]}
    SINK(x["s"])  # Flow missing


def test_dict_comprehension_pop():
    x = {y: SOURCE for y in ["s"]}
    SINK(x.pop("s"))  # Flow missing


def test_nested_dict_display():
    x = {** {"s": SOURCE}}
    SINK(x["s"])  # Flow missing


def test_nested_dict_display_pop():
    x = {** {"s": SOURCE}}
    SINK(x.pop("s"))  # Flow missing

# Nested comprehensions


def test_nested_comprehension():
    x = [y for z in [[SOURCE]] for y in z]
    SINK(x[0])  # Flow missing


def test_nested_comprehension_deep_with_local_flow():
    x = [y for v in [[[[SOURCE]]]] for u in v for z in u for y in z]
    SINK(x[0])  # Flow missing


def test_nested_comprehension_dict():
    d = {"s": [SOURCE]}
    x = [y for k, v in d.items() for y in v]
    SINK(x[0])  # Flow missing


def test_nested_comprehension_paren():
    x = [y for y in (z for z in [SOURCE])]
    SINK(x[0])  # Flow missing

# 6.2.8. Generator expressions


def test_generator():
    x = (SOURCE for y in [NONSOURCE])
    SINK([*x][0])  # Flow missing

# 6.2.9. Yield expressions


def gen(x):
    yield x


def test_yield():
    g = gen(SOURCE)
    SINK(next(g))  # Flow missing


def gen_from(x):
    yield from gen(x)


def test_yield_from():
    g = gen_from(SOURCE)
    SINK(next(g))  # Flow missing

# a statement rather than an expression, but related to generators


def test_for():
    for x in gen(SOURCE):
        SINK(x)  # Flow missing

# 6.2.9.1. Generator-iterator methods


def test___next__():
    g = gen(SOURCE)
    SINK(g.__next__())  # Flow missing


def gen2(x):
    # argument of `send` has to flow to value of `yield x` (and so to `m`)
    m = yield x
    yield m


def test_send():
    g = gen2(NONSOURCE)
    n = next(g)
    SINK(g.send(SOURCE))  # Flow missing


def gen_ex(x):
    try:
        yield NONSOURCE
    except:
        yield x  # `x` has to flow to call to `throw`


def test_throw():
    g = gen_ex(SOURCE)
    n = next(g)
    SINK(g.throw(TypeError))  # Flow missing

# no `test_close` as `close` involves no data flow

# 6.2.9.3. Asynchronous generator functions


async def agen(x):
    yield x

# 6.2.9.4. Asynchronous generator-iterator methods

# helper to run async test functions


def runa(a):
    import asyncio
    asyncio.run(a)


async def atest___anext__():
    g = agen(SOURCE)
    SINK(await g.__anext__())  # Flow missing


def test___anext__():
    runa(atest___anext__())


async def agen2(x):
    # argument of `send` has to flow to value of `yield x` (and so to `m`)
    m = yield x
    yield m


async def atest_asend():
    g = agen2(NONSOURCE)
    n = await g.__anext__()
    SINK(await g.asend(SOURCE))  # Flow missing


def test_asend():
    runa(atest_asend())


async def agen_ex(x):
    try:
        yield NONSOURCE
    except:
        yield x  # `x` has to flow to call to `athrow`


async def atest_athrow():
    g = agen_ex(SOURCE)
    n = await g.__anext__()
    SINK(await g.athrow(TypeError))  # Flow missing


def test_athrow():
    runa(atest_athrow())

# 6.3.1. Attribute references


class C:
    a = SOURCE


def test_attribute_reference():
    SINK(C.a)  # Flow missing

# overriding __getattr__ should be tested by the class coverage tests

# 6.3.2. Subscriptions


def test_subscription_tuple():
    SINK((SOURCE,)[0])


def test_subscription_list():
    SINK([SOURCE][0])


def test_subscription_mapping():
    SINK({"s": SOURCE}["s"])

# overriding __getitem__ should be tested by the class coverage tests


# 6.3.3. Slicings
l = [SOURCE]


def test_slicing():
    s = l[0:1:1]
    SINK(s[0])  # Flow missing

# The grammar seems to allow `l[0:1:1, 0:1]`, but the interpreter does not like it

# 6.3.4. Calls


def second(a, b):
    return b


def test_call_positional():
    SINK(second(NONSOURCE, SOURCE))


def test_call_positional_negative():
    SINK_F(second(SOURCE, NONSOURCE))


def test_call_keyword():
    SINK(second(NONSOURCE, b=SOURCE))  # Flow missing


def test_call_unpack_iterable():
    SINK(second(NONSOURCE, *[SOURCE]))  # Flow missing


def test_call_unpack_mapping():
    SINK(second(NONSOURCE, **{"b": SOURCE}))  # Flow missing


def f_extra_pos(a, *b):
    return b[0]


def test_call_extra_pos():
    SINK(f_extra_pos(NONSOURCE, SOURCE))  # Flow missing


def f_extra_keyword(a, **b):
    return b["b"]


def test_call_extra_keyword():
    SINK(f_extra_keyword(NONSOURCE, b=SOURCE))  # Flow missing

# return the name of the first extra keyword argument


def f_extra_keyword_flow(**a):
    return [*a][0]

# call the function with our source as the name of the keyword arguemnt


def test_call_extra_keyword_flow():
    SINK(f_extra_keyword_flow(**{SOURCE: None}))  # Flow missing

# 6.12. Assignment expressions


def test_assignment_expression():
    x = NONSOURCE
    SINK(x := SOURCE)  # Flow missing

# 6.13. Conditional expressions


def test_conditional_true():
    SINK(SOURCE if True else NONSOURCE)  # Flow missing


def test_conditional_false():
    SINK(NONSOURCE if False else SOURCE)  # Flow missing

# Condition is evaluated first, so x is SOURCE once chosen


def test_conditional_evaluation_true():
    x = NONSOURCE
    SINK(x if (SOURCE == (x := SOURCE)) else NONSOURCE)  # Flow missing

# Condition is evaluated first, so x is SOURCE once chosen


def test_conditional_evaluation_false():
    x = NONSOURCE
    SINK(NONSOURCE if (NONSOURCE == (x := SOURCE)) else x)  # Flow missing

# 6.14. Lambdas


def test_lambda():
    def f(x): return x
    SINK(f(SOURCE))


def test_lambda_positional():
    def second(a, b): return b
    SINK(second(NONSOURCE, SOURCE))


def test_lambda_positional_negative():
    def second(a, b): return b
    SINK_F(second(SOURCE, NONSOURCE))


def test_lambda_keyword():
    def second(a, b): return b
    SINK(second(NONSOURCE, b=SOURCE))  # Flow missing


def test_lambda_unpack_iterable():
    def second(a, b): return b
    SINK(second(NONSOURCE, *[SOURCE]))  # Flow missing


def test_lambda_unpack_mapping():
    def second(a, b): return b
    SINK(second(NONSOURCE, **{"b": SOURCE}))  # Flow missing


def test_lambda_extra_pos():
    f_extra_pos = lambda a, *b: b[0]
    SINK(f_extra_pos(NONSOURCE, SOURCE))  # Flow missing


def test_lambda_extra_keyword():
    f_extra_keyword = lambda a, **b: b["b"]
    SINK(f_extra_keyword(NONSOURCE, b=SOURCE))  # Flow missing

# call the function with our source as the name of the keyword arguemnt


def test_lambda_extra_keyword_flow():
    # return the name of the first extra keyword argument
    f_extra_keyword_flow = lambda **a: [*a][0]
    SINK(f_extra_keyword_flow(**{SOURCE: None}))  # Flow missing