Python: Rename getARhs -> asSink

asgerf · asgerf · commit 60fde3c031e4 · 2022-06-21T12:44:06.000+02:00
diff --git a/python/ql/lib/semmle/python/ApiGraphs.qll b/python/ql/lib/semmle/python/ApiGraphs.qll
@@ -128,13 +128,13 @@ module API {
      * ```
      * `x` is the right-hand side of a definition of the first parameter of `bar` from the `mypkg.foo` module.
      */
-    DataFlow::Node getARhs() { Impl::rhs(this, result) }
+    DataFlow::Node asSink() { Impl::rhs(this, result) }
 
     /**
      * Gets a data-flow node that may interprocedurally flow to the right-hand side of a definition
      * of the API component represented by this node.
      */
-    DataFlow::Node getAValueReachingRhs() { result = Impl::trackDefNode(this.getARhs()) }
+    DataFlow::Node getAValueReachingRhs() { result = Impl::trackDefNode(this.asSink()) }
 
     /**
      * Gets an immediate use of the API component represented by this node.
@@ -390,14 +390,14 @@ module API {
      * Gets an API node where a RHS of the node is the `i`th argument to this call.
      */
     pragma[noinline]
-    private Node getAParameterCandidate(int i) { result.getARhs() = this.getArg(i) }
+    private Node getAParameterCandidate(int i) { result.asSink() = this.getArg(i) }
 
     /** Gets the API node for a parameter of this invocation. */
     Node getAParameter() { result = this.getParameter(_) }
 
     /** Gets the object that this method-call is being called on, if this is a method-call */
     Node getSelfParameter() {
-      result.getARhs() = this.(DataFlow::MethodCallNode).getObject() and
+      result.asSink() = this.(DataFlow::MethodCallNode).getObject() and
       result = callee.getSelfParameter()
     }
 
@@ -417,7 +417,7 @@ module API {
 
     pragma[noinline]
     private Node getAKeywordParameterCandidate(string name) {
-      result.getARhs() = this.getArgByName(name)
+      result.asSink() = this.getArgByName(name)
     }
 
     /** Gets the API node for the return value of this call. */
diff --git a/python/ql/lib/semmle/python/frameworks/Aiomysql.qll b/python/ql/lib/semmle/python/frameworks/Aiomysql.qll
@@ -53,7 +53,7 @@ private module Aiomysql {
   class CursorExecuteCall extends SqlConstruction::Range, API::CallNode {
     CursorExecuteCall() { this = cursor().getMember("execute").getACall() }
 
-    override DataFlow::Node getSql() { result = this.getParameter(0, "operation").getARhs() }
+    override DataFlow::Node getSql() { result = this.getParameter(0, "operation").asSink() }
   }
 
   /**
@@ -94,7 +94,7 @@ private module Aiomysql {
   class SAConnectionExecuteCall extends SqlConstruction::Range, API::CallNode {
     SAConnectionExecuteCall() { this = saConnection().getMember("execute").getACall() }
 
-    override DataFlow::Node getSql() { result = this.getParameter(0, "query").getARhs() }
+    override DataFlow::Node getSql() { result = this.getParameter(0, "query").asSink() }
   }
 
   /**
diff --git a/python/ql/lib/semmle/python/frameworks/Aiopg.qll b/python/ql/lib/semmle/python/frameworks/Aiopg.qll
@@ -53,7 +53,7 @@ private module Aiopg {
   class CursorExecuteCall extends SqlConstruction::Range, API::CallNode {
     CursorExecuteCall() { this = cursor().getMember("execute").getACall() }
 
-    override DataFlow::Node getSql() { result = this.getParameter(0, "operation").getARhs() }
+    override DataFlow::Node getSql() { result = this.getParameter(0, "operation").asSink() }
   }
 
   /**
@@ -90,7 +90,7 @@ private module Aiopg {
   class SAConnectionExecuteCall extends SqlConstruction::Range, API::CallNode {
     SAConnectionExecuteCall() { this = saConnection().getMember("execute").getACall() }
 
-    override DataFlow::Node getSql() { result = this.getParameter(0, "query").getARhs() }
+    override DataFlow::Node getSql() { result = this.getParameter(0, "query").asSink() }
   }
 
   /**
diff --git a/python/ql/lib/semmle/python/frameworks/Asyncpg.qll b/python/ql/lib/semmle/python/frameworks/Asyncpg.qll
@@ -61,7 +61,7 @@ private module Asyncpg {
         this = ModelOutput::getATypeNode("asyncpg", "Connection").getMember("cursor").getACall()
       }
 
-      override DataFlow::Node getSql() { result = this.getParameter(0, "query").getARhs() }
+      override DataFlow::Node getSql() { result = this.getParameter(0, "query").asSink() }
     }
 
     /** The creation of a `Cursor` executes the associated query. */
@@ -78,7 +78,7 @@ private module Asyncpg {
           prepareCall =
             ModelOutput::getATypeNode("asyncpg", "Connection").getMember("prepare").getACall()
         |
-          sql = prepareCall.getParameter(0, "query").getARhs() and
+          sql = prepareCall.getParameter(0, "query").asSink() and
           this =
             prepareCall
                 .getReturn()
diff --git a/python/ql/lib/semmle/python/frameworks/Requests.qll b/python/ql/lib/semmle/python/frameworks/Requests.qll
@@ -61,7 +61,7 @@ private module Requests {
     override predicate disablesCertificateValidation(
       DataFlow::Node disablingNode, DataFlow::Node argumentOrigin
     ) {
-      disablingNode = this.getKeywordParameter("verify").getARhs() and
+      disablingNode = this.getKeywordParameter("verify").asSink() and
       argumentOrigin = this.getKeywordParameter("verify").getAValueReachingRhs() and
       // requests treats `None` as the default and all other "falsey" values as `False`.
       argumentOrigin.asExpr().(ImmutableLiteral).booleanValue() = false and
diff --git a/python/ql/lib/semmle/python/frameworks/Stdlib.qll b/python/ql/lib/semmle/python/frameworks/Stdlib.qll
@@ -2553,7 +2553,7 @@ private module StdlibPrivate {
     override DataFlow::Node getAPathArgument() {
       result = super.getAPathArgument()
       or
-      result = this.getParameter(0, "target").getARhs()
+      result = this.getParameter(0, "target").asSink()
     }
   }
 
@@ -2570,7 +2570,7 @@ private module StdlibPrivate {
     override DataFlow::Node getAPathArgument() {
       result = super.getAPathArgument()
       or
-      result = this.getParameter(0, "target").getARhs()
+      result = this.getParameter(0, "target").asSink()
     }
   }
 
@@ -2585,7 +2585,7 @@ private module StdlibPrivate {
     override DataFlow::Node getAPathArgument() {
       result = super.getAPathArgument()
       or
-      result = this.getParameter(0, "other_path").getARhs()
+      result = this.getParameter(0, "other_path").asSink()
     }
   }
 
@@ -2670,7 +2670,7 @@ private module StdlibPrivate {
 
     override Cryptography::CryptographicAlgorithm getAlgorithm() { result.matchesName(hashName) }
 
-    override DataFlow::Node getAnInput() { result = this.getParameter(1, "data").getARhs() }
+    override DataFlow::Node getAnInput() { result = this.getParameter(1, "data").asSink() }
 
     override Cryptography::BlockMode getBlockMode() { none() }
   }
@@ -3433,7 +3433,7 @@ private module StdlibPrivate {
   private DataFlow::Node saxParserWithFeatureExternalGesTurnedOn(DataFlow::TypeTracker t) {
     t.start() and
     exists(SaxParserSetFeatureCall call |
-      call.getFeatureArg().getARhs() =
+      call.getFeatureArg().asSink() =
         API::moduleImport("xml")
             .getMember("sax")
             .getMember("handler")
@@ -3449,7 +3449,7 @@ private module StdlibPrivate {
     // take account of that we can set the feature to False, which makes the parser safe again
     not exists(SaxParserSetFeatureCall call |
       call.getObject() = result and
-      call.getFeatureArg().getARhs() =
+      call.getFeatureArg().asSink() =
         API::moduleImport("xml")
             .getMember("sax")
             .getMember("handler")
diff --git a/python/ql/lib/semmle/python/frameworks/data/ModelsAsData.qll b/python/ql/lib/semmle/python/frameworks/data/ModelsAsData.qll
@@ -34,7 +34,7 @@ private class RemoteFlowSourceFromCsv extends RemoteFlowSource {
 private predicate summaryStepNodes(DataFlow::Node pred, DataFlow::Node succ, string kind) {
   exists(API::Node predNode, API::Node succNode |
     Specific::summaryStep(predNode, succNode, kind) and
-    pred = predNode.getARhs() and
+    pred = predNode.asSink() and
     succ = succNode.getAnImmediateUse()
   )
 }
diff --git a/python/ql/lib/semmle/python/security/dataflow/PathInjectionCustomizations.qll b/python/ql/lib/semmle/python/security/dataflow/PathInjectionCustomizations.qll
@@ -62,7 +62,7 @@ module PathInjection {
   private import semmle.python.frameworks.data.ModelsAsData
 
   private class DataAsFileSink extends Sink {
-    DataAsFileSink() { this = ModelOutput::getASinkNode("path-injection").getARhs() }
+    DataAsFileSink() { this = ModelOutput::getASinkNode("path-injection").asSink() }
   }
 
   /**
diff --git a/python/ql/lib/semmle/python/security/dataflow/SqlInjectionCustomizations.qll b/python/ql/lib/semmle/python/security/dataflow/SqlInjectionCustomizations.qll
@@ -65,6 +65,6 @@ module SqlInjection {
 
   /** A sink for sql-injection from model data. */
   private class DataAsSqlSink extends Sink {
-    DataAsSqlSink() { this = ModelOutput::getASinkNode("sql-injection").getARhs() }
+    DataAsSqlSink() { this = ModelOutput::getASinkNode("sql-injection").asSink() }
   }
 }
diff --git a/python/ql/test/TestUtilities/VerifyApiGraphs.qll b/python/ql/test/TestUtilities/VerifyApiGraphs.qll
@@ -21,7 +21,7 @@ import semmle.python.ApiGraphs
 
 private DataFlow::Node getNode(API::Node nd, string kind) {
   kind = "def" and
-  result = nd.getARhs()
+  result = nd.asSink()
   or
   kind = "use" and
   result = nd.getAUse()
diff --git a/python/ql/test/experimental/meta/MaDTest.qll b/python/ql/test/experimental/meta/MaDTest.qll
@@ -19,7 +19,7 @@ class MadSinkTest extends InlineExpectationsTest {
   override predicate hasActualResult(Location location, string element, string tag, string value) {
     exists(location.getFile().getRelativePath()) and
     exists(DataFlow::Node sink, string kind |
-      sink = ModelOutput::getASinkNode(kind).getARhs() and
+      sink = ModelOutput::getASinkNode(kind).asSink() and
       location = sink.getLocation() and
       element = sink.toString() and
       value = prettyNodeForInlineTest(sink) and
diff --git a/python/ql/test/library-tests/frameworks/data/test.ql b/python/ql/test/library-tests/frameworks/data/test.ql
@@ -91,7 +91,7 @@ class BasicTaintTracking extends TaintTracking::Configuration {
   }
 
   override predicate isSink(DataFlow::Node sink) {
-    sink = ModelOutput::getASinkNode("test-sink").getARhs()
+    sink = ModelOutput::getASinkNode("test-sink").asSink()
   }
 }
 
@@ -100,7 +100,7 @@ query predicate taintFlow(DataFlow::Node source, DataFlow::Node sink) {
 }
 
 query predicate isSink(DataFlow::Node node, string kind) {
-  node = ModelOutput::getASinkNode(kind).getARhs()
+  node = ModelOutput::getASinkNode(kind).asSink()
 }
 
 query predicate isSource(DataFlow::Node node, string kind) {

Original file line number	Diff line number	Diff line change
`@@ -53,7 +53,7 @@ private module Aiomysql {`
`53`	`53`	`class CursorExecuteCall extends SqlConstruction::Range, API::CallNode {`
`54`	`54`	`CursorExecuteCall() { this = cursor().getMember("execute").getACall() }`
`55`	`55`
`56`		`- override DataFlow::Node getSql() { result = this.getParameter(0, "operation").getARhs() }`
	`56`	`+ override DataFlow::Node getSql() { result = this.getParameter(0, "operation").asSink() }`
`57`	`57`	`}`
`58`	`58`
`59`	`59`	`/**`
`@@ -94,7 +94,7 @@ private module Aiomysql {`
`94`	`94`	`class SAConnectionExecuteCall extends SqlConstruction::Range, API::CallNode {`
`95`	`95`	`SAConnectionExecuteCall() { this = saConnection().getMember("execute").getACall() }`
`96`	`96`
`97`		`- override DataFlow::Node getSql() { result = this.getParameter(0, "query").getARhs() }`
	`97`	`+ override DataFlow::Node getSql() { result = this.getParameter(0, "query").asSink() }`
`98`	`98`	`}`
`99`	`99`
`100`	`100`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -53,7 +53,7 @@ private module Aiopg {`
`53`	`53`	`class CursorExecuteCall extends SqlConstruction::Range, API::CallNode {`
`54`	`54`	`CursorExecuteCall() { this = cursor().getMember("execute").getACall() }`
`55`	`55`
`56`		`- override DataFlow::Node getSql() { result = this.getParameter(0, "operation").getARhs() }`
	`56`	`+ override DataFlow::Node getSql() { result = this.getParameter(0, "operation").asSink() }`
`57`	`57`	`}`
`58`	`58`
`59`	`59`	`/**`
`@@ -90,7 +90,7 @@ private module Aiopg {`
`90`	`90`	`class SAConnectionExecuteCall extends SqlConstruction::Range, API::CallNode {`
`91`	`91`	`SAConnectionExecuteCall() { this = saConnection().getMember("execute").getACall() }`
`92`	`92`
`93`		`- override DataFlow::Node getSql() { result = this.getParameter(0, "query").getARhs() }`
	`93`	`+ override DataFlow::Node getSql() { result = this.getParameter(0, "query").asSink() }`
`94`	`94`	`}`
`95`	`95`
`96`	`96`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -61,7 +61,7 @@ private module Asyncpg {`
`61`	`61`	`this = ModelOutput::getATypeNode("asyncpg", "Connection").getMember("cursor").getACall()`
`62`	`62`	`}`
`63`	`63`
`64`		`- override DataFlow::Node getSql() { result = this.getParameter(0, "query").getARhs() }`
	`64`	`+ override DataFlow::Node getSql() { result = this.getParameter(0, "query").asSink() }`
`65`	`65`	`}`
`66`	`66`
`67`	`67`	/** The creation of a `Cursor` executes the associated query. */
`@@ -78,7 +78,7 @@ private module Asyncpg {`
`78`	`78`	`prepareCall =`
`79`	`79`	`ModelOutput::getATypeNode("asyncpg", "Connection").getMember("prepare").getACall()`
`80`	`80`	`\|`
`81`		`- sql = prepareCall.getParameter(0, "query").getARhs() and`
	`81`	`+ sql = prepareCall.getParameter(0, "query").asSink() and`
`82`	`82`	`this =`
`83`	`83`	`prepareCall`
`84`	`84`	`.getReturn()`
Original file line number	Diff line number	Diff line change
`@@ -34,7 +34,7 @@ private class RemoteFlowSourceFromCsv extends RemoteFlowSource {`
`34`	`34`	`private predicate summaryStepNodes(DataFlow::Node pred, DataFlow::Node succ, string kind) {`
`35`	`35`	`exists(API::Node predNode, API::Node succNode \|`
`36`	`36`	`Specific::summaryStep(predNode, succNode, kind) and`
`37`		`- pred = predNode.getARhs() and`
	`37`	`+ pred = predNode.asSink() and`
`38`	`38`	`succ = succNode.getAnImmediateUse()`
`39`	`39`	`)`
`40`	`40`	`}`
Original file line number	Diff line number	Diff line change
`@@ -62,7 +62,7 @@ module PathInjection {`
`62`	`62`	`private import semmle.python.frameworks.data.ModelsAsData`
`63`	`63`
`64`	`64`	`private class DataAsFileSink extends Sink {`
`65`		`- DataAsFileSink() { this = ModelOutput::getASinkNode("path-injection").getARhs() }`
	`65`	`+ DataAsFileSink() { this = ModelOutput::getASinkNode("path-injection").asSink() }`
`66`	`66`	`}`
`67`	`67`
`68`	`68`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -65,6 +65,6 @@ module SqlInjection {`
`65`	`65`
`66`	`66`	`/** A sink for sql-injection from model data. */`
`67`	`67`	`private class DataAsSqlSink extends Sink {`
`68`		`- DataAsSqlSink() { this = ModelOutput::getASinkNode("sql-injection").getARhs() }`
	`68`	`+ DataAsSqlSink() { this = ModelOutput::getASinkNode("sql-injection").asSink() }`
`69`	`69`	`}`
`70`	`70`	`}`