Skip to content

Commit

Permalink
refactor: only add taint sources if required
Browse files Browse the repository at this point in the history
  • Loading branch information
@Patrick-Remy
Patrick-Remy committed Sep 19, 2023
1 parent 2fd69f5 commit b7910ca
Show file tree
Hide file tree
Showing 12 changed files with 54 additions and 65 deletions.
22 changes: 10 additions & 12 deletions src/Psalm/Internal/Analyzer/Statements/Expression/ArrayAnalyzer.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -411,6 +411,11 @@ private static function analyzeArrayItem(
$added_taints = $codebase->config->eventDispatcher->dispatchAddTaints($event);
$removed_taints = $codebase->config->eventDispatcher->dispatchRemoveTaints($event);

if ($added_taints !== [] && $statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($new_parent_node);
$statements_analyzer->data_flow_graph->addSource($taint_source);
}

foreach ($item_value_type->parent_nodes as $parent_node) {
$data_flow_graph->addPath(
$parent_node,
Expand All @@ -423,12 +428,6 @@ private static function analyzeArrayItem(
}

$array_creation_info->parent_taint_nodes += [$new_parent_node->id => $new_parent_node];

if ($statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($new_parent_node);
$statements_analyzer->data_flow_graph->addSource($taint_source);
$item_value_type = $item_value_type->addParentNodes([$taint_source->id => $taint_source]);
}
}

if ($item_key_type
Expand All @@ -452,6 +451,11 @@ private static function analyzeArrayItem(
$added_taints = $codebase->config->eventDispatcher->dispatchAddTaints($event);
$removed_taints = $codebase->config->eventDispatcher->dispatchRemoveTaints($event);

if ($added_taints !== [] && $statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($new_parent_node);
$statements_analyzer->data_flow_graph->addSource($taint_source);
}

foreach ($item_key_type->parent_nodes as $parent_node) {
$data_flow_graph->addPath(
$parent_node,
Expand All @@ -463,12 +467,6 @@ private static function analyzeArrayItem(
}

$array_creation_info->parent_taint_nodes += [$new_parent_node->id => $new_parent_node];

if ($statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($new_parent_node);
$statements_analyzer->data_flow_graph->addSource($taint_source);
$item_value_type = $item_value_type->addParentNodes([$taint_source->id => $taint_source]);
}
}
}
}
Expand Down
26 changes: 10 additions & 16 deletions ...Internal/Analyzer/Statements/Expression/Assignment/InstancePropertyAssignmentAnalyzer.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -504,6 +504,11 @@ private static function taintProperty(
$added_taints = $codebase->config->eventDispatcher->dispatchAddTaints($event);
$removed_taints = $codebase->config->eventDispatcher->dispatchRemoveTaints($event);

if ($added_taints !== [] && $statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($property_node);
$statements_analyzer->data_flow_graph->addSource($taint_source);
}

$data_flow_graph->addPath(
$property_node,
$var_node,
Expand All @@ -519,14 +524,6 @@ private static function taintProperty(
}
}

if ($statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($property_node);
$statements_analyzer->data_flow_graph->addSource($taint_source);
$assignment_value_type = $assignment_value_type->addParentNodes([
$taint_source->id => $taint_source,
]);
}

if (isset($context->vars_in_scope[$var_id])) {
$stmt_var_type = $context->vars_in_scope[$var_id]->setParentNodes(
[$var_node->id => $var_node],
Expand Down Expand Up @@ -607,6 +604,11 @@ public static function taintUnspecializedProperty(
$added_taints = $codebase->config->eventDispatcher->dispatchAddTaints($event);
$removed_taints = $codebase->config->eventDispatcher->dispatchRemoveTaints($event);

if ($added_taints !== [] && $statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($property_node);
$statements_analyzer->data_flow_graph->addSource($taint_source);
}

$data_flow_graph->addPath(
$localized_property_node,
$property_node,
Expand All @@ -627,14 +629,6 @@ public static function taintUnspecializedProperty(
}
}

if ($statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($property_node);
$statements_analyzer->data_flow_graph->addSource($taint_source);
$assignment_value_type = $assignment_value_type->addParentNodes([
$taint_source->id => $taint_source,
]);
}

$declaring_property_class = $codebase->properties->getDeclaringClassForProperty(
$property_id,
false,
Expand Down
11 changes: 5 additions & 6 deletions src/Psalm/Internal/Analyzer/Statements/Expression/AssignmentAnalyzer.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -822,6 +822,11 @@ private static function taintAssignment(
$data_flow_graph->addNode($new_parent_node);
$new_parent_nodes = [$new_parent_node->id => $new_parent_node];

if ($added_taints !== [] && $data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($new_parent_node);
$data_flow_graph->addSource($taint_source);
}

foreach ($parent_nodes as $parent_node) {
$data_flow_graph->addPath(
$parent_node,
Expand All @@ -833,12 +838,6 @@ private static function taintAssignment(
}

$type = $type->setParentNodes($new_parent_nodes, false);

if ($data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($new_parent_node);
$data_flow_graph->addSource($taint_source);
$type = $type->addParentNodes([$taint_source->id => $taint_source]);
}
}

public static function analyzeAssignmentOperation(
Expand Down
3 changes: 1 addition & 2 deletions src/Psalm/Internal/Analyzer/Statements/Expression/BinaryOpAnalyzer.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -170,10 +170,9 @@ public static function analyze(
$added_taints = $codebase->config->eventDispatcher->dispatchAddTaints($event);
$removed_taints = $codebase->config->eventDispatcher->dispatchRemoveTaints($event);

if ($statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
if ($added_taints !== [] && $statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($new_parent_node);
$statements_analyzer->data_flow_graph->addSource($taint_source);
$stmt_type = $stmt_type->addParentNodes([$taint_source->id => $taint_source]);
}

if ($stmt_left_type && $stmt_left_type->parent_nodes) {
Expand Down
3 changes: 1 addition & 2 deletions src/Psalm/Internal/Analyzer/Statements/Expression/Call/ArgumentAnalyzer.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1619,10 +1619,9 @@ private static function processTaintedness(
);
}

if ($statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
if ($added_taints !== [] && $statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($argument_value_node);
$statements_analyzer->data_flow_graph->addSource($taint_source);
$input_type = $input_type->addParentNodes([$taint_source->id => $taint_source]);
}
}
}
7 changes: 4 additions & 3 deletions src/Psalm/Internal/Analyzer/Statements/Expression/Call/FunctionCallAnalyzer.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -873,9 +873,10 @@ private static function getAnalyzeNamedExpression(
);
}

$taint_source = TaintSource::fromNode($custom_call_sink);
$statements_analyzer->data_flow_graph->addSource($taint_source);
$stmt_name_type = $stmt_name_type->addParentNodes([$taint_source->id => $taint_source]);
if ($added_taints !== []) {
$taint_source = TaintSource::fromNode($custom_call_sink);
$statements_analyzer->data_flow_graph->addSource($taint_source);
}
}
}

Expand Down
9 changes: 5 additions & 4 deletions src/Psalm/Internal/Analyzer/Statements/Expression/Call/NewAnalyzer.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -678,6 +678,11 @@ private static function analyzeConstructorExpression(
$added_taints = $codebase->config->eventDispatcher->dispatchAddTaints($event);
$removed_taints = $codebase->config->eventDispatcher->dispatchRemoveTaints($event);

if ($added_taints !== []) {
$taint_source = TaintSource::fromNode($custom_call_sink);
$statements_analyzer->data_flow_graph->addSource($taint_source);
}

foreach ($stmt_class_type->parent_nodes as $parent_node) {
$statements_analyzer->data_flow_graph->addPath(
$parent_node,
Expand All @@ -687,10 +692,6 @@ private static function analyzeConstructorExpression(
$removed_taints,
);
}

$taint_source = TaintSource::fromNode($custom_call_sink);
$statements_analyzer->data_flow_graph->addSource($taint_source);
$stmt_class_type = $stmt_class_type->addParentNodes([$taint_source->id => $taint_source]);
}

if (self::checkMethodArgs(
Expand Down
11 changes: 5 additions & 6 deletions src/Psalm/Internal/Analyzer/Statements/Expression/EncapsulatedStringAnalyzer.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -100,6 +100,11 @@ public static function analyze(
$added_taints = $codebase->config->eventDispatcher->dispatchAddTaints($event);
$removed_taints = $codebase->config->eventDispatcher->dispatchRemoveTaints($event);

if ($added_taints !== [] && $statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($new_parent_node);
$statements_analyzer->data_flow_graph->addSource($taint_source);
}

if ($casted_part_type->parent_nodes) {
foreach ($casted_part_type->parent_nodes as $parent_node) {
$statements_analyzer->data_flow_graph->addPath(
Expand All @@ -111,12 +116,6 @@ public static function analyze(
);
}
}

if ($statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($new_parent_node);
$statements_analyzer->data_flow_graph->addSource($taint_source);
$casted_part_type = $casted_part_type->addParentNodes([$taint_source->id => $taint_source]);
}
}
} elseif ($part instanceof EncapsedStringPart) {
if ($literal_string !== null) {
Expand Down
9 changes: 5 additions & 4 deletions src/Psalm/Internal/Analyzer/Statements/Expression/EvalAnalyzer.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -61,6 +61,11 @@ public static function analyze(
$added_taints = $codebase->config->eventDispatcher->dispatchAddTaints($event);
$removed_taints = $codebase->config->eventDispatcher->dispatchRemoveTaints($event);

if ($added_taints !== []) {
$taint_source = TaintSource::fromNode($eval_param_sink);
$statements_analyzer->data_flow_graph->addSource($taint_source);
}

foreach ($expr_type->parent_nodes as $parent_node) {
$statements_analyzer->data_flow_graph->addPath(
$parent_node,
Expand All @@ -70,10 +75,6 @@ public static function analyze(
$removed_taints,
);
}

$taint_source = TaintSource::fromNode($eval_param_sink);
$statements_analyzer->data_flow_graph->addSource($taint_source);
$expr_type = $expr_type->addParentNodes([$taint_source->id => $taint_source]);
}
}

Expand Down
3 changes: 1 addition & 2 deletions src/Psalm/Internal/Analyzer/Statements/Expression/Fetch/ArrayFetchAnalyzer.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -448,10 +448,9 @@ public static function taintArrayFetch(

$stmt_type = $stmt_type->setParentNodes([$new_parent_node->id => $new_parent_node]);

if ($statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
if ($added_taints !== [] && $statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($new_parent_node);
$statements_analyzer->data_flow_graph->addSource($taint_source);
$stmt_type = $stmt_type->addParentNodes([$taint_source->id => $taint_source]);
}

if ($array_key_node) {
Expand Down
6 changes: 2 additions & 4 deletions src/Psalm/Internal/Analyzer/Statements/Expression/Fetch/AtomicPropertyFetchAnalyzer.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -900,10 +900,9 @@ public static function processTaints(

$type = $type->setParentNodes([$property_node->id => $property_node], true);

if ($statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
if ($added_taints !== [] && $statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($var_node);
$statements_analyzer->data_flow_graph->addSource($taint_source);
$type = $type->addParentNodes([$taint_source->id => $taint_source]);
}
}
} else {
Expand Down Expand Up @@ -982,10 +981,9 @@ public static function processUnspecialTaints(

$type = $type->setParentNodes([$localized_property_node->id => $localized_property_node], true);

if ($statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
if ($added_taints !== [] && $statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
$taint_source = TaintSource::fromNode($localized_property_node);
$statements_analyzer->data_flow_graph->addSource($taint_source);
$type = $type->addParentNodes([$taint_source->id => $taint_source]);
}
}

Expand Down
9 changes: 5 additions & 4 deletions src/Psalm/Internal/Analyzer/Statements/Expression/IncludeAnalyzer.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -138,6 +138,11 @@ public static function analyze(
$added_taints = $codebase->config->eventDispatcher->dispatchAddTaints($event);
$removed_taints = $codebase->config->eventDispatcher->dispatchRemoveTaints($event);

if (!$added_taints !== []) {

Check failure on line 141 in src/Psalm/Internal/Analyzer/Statements/Expression/IncludeAnalyzer.php

View workflow job for this annotation

GitHub Actions / build

RedundantCondition 

src/Psalm/Internal/Analyzer/Statements/Expression/IncludeAnalyzer.php:141:17: RedundantCondition: bool can never contain null (see https://psalm.dev/122)
$taint_source = TaintSource::fromNode($include_param_sink);
$statements_analyzer->data_flow_graph->addSource($taint_source);
}

foreach ($stmt_expr_type->parent_nodes as $parent_node) {
$statements_analyzer->data_flow_graph->addPath(
$parent_node,
Expand All @@ -147,10 +152,6 @@ public static function analyze(
$removed_taints,
);
}

$taint_source = TaintSource::fromNode($include_param_sink);
$statements_analyzer->data_flow_graph->addSource($taint_source);
$stmt_expr_type = $stmt_expr_type->addParentNodes([$taint_source->id => $taint_source]);
}

if ($path_to_file) {
Expand Down

0 comments on commit b7910ca

Please sign in to comment.