Swift: fix swift compilation in QL tests

Author: redsun82

swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected

@@ -1,6 +1,6 @@
-| customurlschemes.swift:17:44:17:54 | url | external |
-| customurlschemes.swift:20:52:20:68 | url | external |
-| customurlschemes.swift:23:52:23:62 | url | external |
+| customurlschemes.swift:23:44:23:54 | url | external |
+| customurlschemes.swift:27:52:27:68 | url | external |
+| customurlschemes.swift:31:52:31:62 | url | external |
 | string.swift:27:21:27:21 | call to init(contentsOf:) | external |
 | string.swift:27:21:27:44 | call to init(contentsOf:) | external |
 | url.swift:53:15:53:19 | .resourceBytes | external |

swift/ql/test/library-tests/dataflow/flowsources/customurlschemes.swift

@@ -1,26 +1,35 @@
 // --- stubs ---
 class UIApplication {
-    struct OpenURLOptionsKey {}
+    struct OpenURLOptionsKey : Hashable {
+        static func == (lhs: OpenURLOptionsKey, rhs: OpenURLOptionsKey) -> Bool {
+            return true;
+        }
+
+        func hash(into hasher: inout Hasher) {}
+    }
 }
 
 struct URL {}
 
 protocol UIApplicationDelegate {
-    optional func application(_ app: UIApplication, open url: URL, options: [UIApplication.OpenURLOptionsKey : Any]) -> Bool
-    optional func application(_ application: UIApplication, handleOpen url: URL) -> Bool
-    optional func application(_ application: UIApplication, open url: URL, sourceApplication: String?, annotation: Any) -> Bool
+    func application(_ app: UIApplication, open url: URL, options: [UIApplication.OpenURLOptionsKey : Any]) -> Bool
+    func application(_ application: UIApplication, handleOpen url: URL) -> Bool
+    func application(_ application: UIApplication, open url: URL, sourceApplication: String?, annotation: Any) -> Bool
 }
 
 // --- tests ---
 
 class AppDelegate: UIApplicationDelegate {
     func application(_ app: UIApplication, open url: URL, options: [UIApplication.OpenURLOptionsKey : Any]) -> Bool { // SOURCE
+        return true;
     }
 
     func application(_ application: UIApplication, handleOpen url: URL) -> Bool { // SOURCE
+        return true;
     }
 
     func application(_ application: UIApplication, open url: URL, sourceApplication: String?, annotation: Any) -> Bool { // SOURCE
+        return true;
     }
 
-}
+}

swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected

@@ -123,8 +123,8 @@
 | string.swift:39:13:39:19 | ... .+(_:_:) ... | string.swift:39:13:39:29 | ... .+(_:_:) ... |
 | string.swift:39:19:39:19 | tainted | string.swift:39:13:39:19 | ... .+(_:_:) ... |
 | string.swift:39:29:39:29 | < | string.swift:39:13:39:29 | ... .+(_:_:) ... |
-| subscript.swift:13:10:13:17 | call to source() | subscript.swift:13:10:13:20 | ...[...] |
-| subscript.swift:14:10:14:18 | call to source2() | subscript.swift:14:10:14:21 | ...[...] |
+| subscript.swift:13:15:13:22 | call to source() | subscript.swift:13:15:13:25 | ...[...] |
+| subscript.swift:14:15:14:23 | call to source2() | subscript.swift:14:15:14:26 | ...[...] |
 | url.swift:64:12:64:12 | urlTainted | url.swift:64:12:64:23 | .absoluteURL |
 | url.swift:65:12:65:12 | urlTainted | url.swift:65:12:65:23 | .baseURL |
 | url.swift:66:15:66:15 | urlTainted | url.swift:66:15:66:26 | .fragment |

swift/ql/test/library-tests/dataflow/taint/Taint.expected

@@ -10,8 +10,8 @@ edges
 | string.swift:28:17:28:25 | call to source2() :  | string.swift:35:13:35:23 | ... .+(_:_:) ... |
 | string.swift:28:17:28:25 | call to source2() :  | string.swift:36:13:36:23 | ... .+(_:_:) ... |
 | string.swift:28:17:28:25 | call to source2() :  | string.swift:39:13:39:29 | ... .+(_:_:) ... |
-| subscript.swift:13:10:13:17 | call to source() :  | subscript.swift:13:10:13:20 | ...[...] |
-| subscript.swift:14:10:14:18 | call to source2() :  | subscript.swift:14:10:14:21 | ...[...] |
+| subscript.swift:13:15:13:22 | call to source() :  | subscript.swift:13:15:13:25 | ...[...] |
+| subscript.swift:14:15:14:23 | call to source2() :  | subscript.swift:14:15:14:26 | ...[...] |
 | try.swift:9:17:9:24 | call to source() :  | try.swift:9:13:9:24 | try ... |
 | try.swift:15:17:15:24 | call to source() :  | try.swift:15:12:15:24 | try! ... |
 | try.swift:18:18:18:25 | call to source() :  | try.swift:18:12:18:27 | ...! |
@@ -164,10 +164,10 @@ nodes
 | string.swift:35:13:35:23 | ... .+(_:_:) ... | semmle.label | ... .+(_:_:) ... |
 | string.swift:36:13:36:23 | ... .+(_:_:) ... | semmle.label | ... .+(_:_:) ... |
 | string.swift:39:13:39:29 | ... .+(_:_:) ... | semmle.label | ... .+(_:_:) ... |
-| subscript.swift:13:10:13:17 | call to source() :  | semmle.label | call to source() :  |
-| subscript.swift:13:10:13:20 | ...[...] | semmle.label | ...[...] |
-| subscript.swift:14:10:14:18 | call to source2() :  | semmle.label | call to source2() :  |
-| subscript.swift:14:10:14:21 | ...[...] | semmle.label | ...[...] |
+| subscript.swift:13:15:13:22 | call to source() :  | semmle.label | call to source() :  |
+| subscript.swift:13:15:13:25 | ...[...] | semmle.label | ...[...] |
+| subscript.swift:14:15:14:23 | call to source2() :  | semmle.label | call to source2() :  |
+| subscript.swift:14:15:14:26 | ...[...] | semmle.label | ...[...] |
 | try.swift:9:13:9:24 | try ... | semmle.label | try ... |
 | try.swift:9:17:9:24 | call to source() :  | semmle.label | call to source() :  |
 | try.swift:15:12:15:24 | try! ... | semmle.label | try! ... |
@@ -315,8 +315,8 @@ subpaths
 | string.swift:35:13:35:23 | ... .+(_:_:) ... | string.swift:28:17:28:25 | call to source2() :  | string.swift:35:13:35:23 | ... .+(_:_:) ... | result |
 | string.swift:36:13:36:23 | ... .+(_:_:) ... | string.swift:28:17:28:25 | call to source2() :  | string.swift:36:13:36:23 | ... .+(_:_:) ... | result |
 | string.swift:39:13:39:29 | ... .+(_:_:) ... | string.swift:28:17:28:25 | call to source2() :  | string.swift:39:13:39:29 | ... .+(_:_:) ... | result |
-| subscript.swift:13:10:13:20 | ...[...] | subscript.swift:13:10:13:17 | call to source() :  | subscript.swift:13:10:13:20 | ...[...] | result |
-| subscript.swift:14:10:14:21 | ...[...] | subscript.swift:14:10:14:18 | call to source2() :  | subscript.swift:14:10:14:21 | ...[...] | result |
+| subscript.swift:13:15:13:25 | ...[...] | subscript.swift:13:15:13:22 | call to source() :  | subscript.swift:13:15:13:25 | ...[...] | result |
+| subscript.swift:14:15:14:26 | ...[...] | subscript.swift:14:15:14:23 | call to source2() :  | subscript.swift:14:15:14:26 | ...[...] | result |
 | try.swift:9:13:9:24 | try ... | try.swift:9:17:9:24 | call to source() :  | try.swift:9:13:9:24 | try ... | result |
 | try.swift:15:12:15:24 | try! ... | try.swift:15:17:15:24 | call to source() :  | try.swift:15:12:15:24 | try! ... | result |
 | try.swift:18:12:18:27 | ...! | try.swift:18:18:18:25 | call to source() :  | try.swift:18:12:18:27 | ...! | result |

swift/ql/test/library-tests/dataflow/taint/data.swift

@@ -4,6 +4,14 @@ class Data
     init<S>(_ elements: S) {}
 }
 
+extension String {
+	struct Encoding {
+		static let utf8 = Encoding()
+	}
+
+	init?(data: Data, encoding: Encoding) { self.init() }
+}
+
 func source() -> String { return "" }
 func sink(arg: Data) {}
 func sink2(arg: String) {}

swift/ql/test/library-tests/dataflow/taint/subscript.swift

@@ -10,6 +10,6 @@ func source2() -> SubscriptTest { return SubscriptTest() }
 func sink(arg: String) {}
 
 func test() {
-    sink(source()[0]) // $ tainted=13
-    sink(source2()[0]) // $ tainted=14
+    sink(arg: source()[0]) // $ tainted=13
+    sink(arg: source2()[0]) // $ tainted=14
 }

swift/ql/test/query-tests/Security/CWE-089/SQLite.swift

@@ -26,13 +26,13 @@ class Statement {
 
 	init(_ connection: Connection, _ SQL: String) throws { self.connection = connection}
 
-	public func bind(_ values: Binding?...) -> Statement { return Statement(connection, "") }
-	public func bind(_ values: [Binding?]) -> Statement { return Statement(connection, "") }
-	public func bind(_ values: [String: Binding?]) -> Statement { return Statement(connection, "") }
+	public func bind(_ values: Binding?...) -> Statement { return self }
+	public func bind(_ values: [Binding?]) -> Statement { return self }
+	public func bind(_ values: [String: Binding?]) -> Statement { return self }
 
-	@discardableResult public func run(_ bindings: Binding?...) throws -> Statement { return Statement(connection, "") }
-	@discardableResult public func run(_ bindings: [Binding?]) throws -> Statement { return Statement(connection, "") }
-	@discardableResult public func run(_ bindings: [String: Binding?]) throws -> Statement { return Statement(connection, "") }
+	@discardableResult public func run(_ bindings: Binding?...) throws -> Statement { return self }
+	@discardableResult public func run(_ bindings: [Binding?]) throws -> Statement { return self }
+	@discardableResult public func run(_ bindings: [String: Binding?]) throws -> Statement { return self }
 
 	public func scalar(_ bindings: Binding?...) throws -> Binding? { return nil }
 	public func scalar(_ bindings: [Binding?]) throws -> Binding? { return nil }
@@ -42,13 +42,13 @@ class Statement {
 class Connection {
 	public func execute(_ SQL: String) throws { }
 
-	public func prepare(_ statement: String, _ bindings: Binding?...) throws -> Statement { return Statement(self, "") }
-	public func prepare(_ statement: String, _ bindings: [Binding?]) throws -> Statement { return Statement(self, "") }
-	public func prepare(_ statement: String, _ bindings: [String: Binding?]) throws -> Statement { return Statement(self, "") }
+	public func prepare(_ statement: String, _ bindings: Binding?...) throws -> Statement { return try Statement(self, "") }
+	public func prepare(_ statement: String, _ bindings: [Binding?]) throws -> Statement { return try Statement(self, "") }
+	public func prepare(_ statement: String, _ bindings: [String: Binding?]) throws -> Statement { return try Statement(self, "") }
 
-	@discardableResult public func run(_ statement: String, _ bindings: Binding?...) throws -> Statement { return Statement(self, "") }
-	@discardableResult public func run(_ statement: String, _ bindings: [Binding?]) throws -> Statement { return Statement(self, "") }
-	@discardableResult public func run(_ statement: String, _ bindings: [String: Binding?]) throws -> Statement { return Statement(self, "") }
+	@discardableResult public func run(_ statement: String, _ bindings: Binding?...) throws -> Statement { return try Statement(self, "") }
+	@discardableResult public func run(_ statement: String, _ bindings: [Binding?]) throws -> Statement { return try Statement(self, "") }
+	@discardableResult public func run(_ statement: String, _ bindings: [String: Binding?]) throws -> Statement { return try Statement(self, "") }
 
 	public func scalar(_ statement: String, _ bindings: Binding?...) throws -> Binding? { return nil }
 	public func scalar(_ statement: String, _ bindings: [Binding?]) throws -> Binding? { return nil }
@@ -57,9 +57,9 @@ class Connection {
 
 // --- tests ---
 
-func test_sqlite_swift_api(db: Connection) {
+func test_sqlite_swift_api(db: Connection) throws {
 	let localString = "user"
-	let remoteString = try! String(contentsOf: URL(string: "http://example.com/")!)
+	let remoteString = try String(contentsOf: URL(string: "http://example.com/")!)
 	let remoteNumber = Int(remoteString) ?? 0
 
 	let unsafeQuery1 = remoteString
@@ -89,11 +89,11 @@ func test_sqlite_swift_api(db: Connection) {
 	let stmt3 = try db.prepare(varQuery, remoteString) // GOOD
 	try stmt3.run()
 
-	let stmt4 = Statement(db, localString) // GOOD
-	stmt4.run()
+	let stmt4 = try Statement(db, localString) // GOOD
+	try stmt4.run()
 
-	let stmt5 = Statement(db, remoteString) // BAD
-	stmt5.run()
+	let stmt5 = try Statement(db, remoteString) // BAD
+	try stmt5.run()
 
 	// --- more variants ---
 
@@ -106,28 +106,28 @@ func test_sqlite_swift_api(db: Connection) {
 	let stmt8 = try db.prepare(unsafeQuery1, ["username": ""]) // BAD
 	try stmt8.run()
 
-	db.run(unsafeQuery1, "") // BAD
+	try db.run(unsafeQuery1, "") // BAD
 
-	db.run(unsafeQuery1, [""]) // BAD
+	try db.run(unsafeQuery1, [""]) // BAD
 
-	db.run(unsafeQuery1, ["username": ""]) // BAD
+	try db.run(unsafeQuery1, ["username": ""]) // BAD
 
-	db.scalar(unsafeQuery1, "") // BAD
+	try db.scalar(unsafeQuery1, "") // BAD
 
-	db.scalar(unsafeQuery1, [""]) // BAD
+	try db.scalar(unsafeQuery1, [""]) // BAD
 
-	db.scalar(unsafeQuery1, ["username": ""]) // BAD
+	try db.scalar(unsafeQuery1, ["username": ""]) // BAD
 
 	let stmt9 = try db.prepare(varQuery) // GOOD
-	stmt9.bind(remoteString) // GOOD
-	stmt9.bind([remoteString]) // GOOD
-	stmt9.bind(["username": remoteString]) // GOOD
+	try stmt9.bind(remoteString) // GOOD
+	try stmt9.bind([remoteString]) // GOOD
+	try stmt9.bind(["username": remoteString]) // GOOD
 	try stmt9.run(remoteString) // GOOD
 	try stmt9.run([remoteString]) // GOOD
 	try stmt9.run(["username": remoteString]) // GOOD
 	try stmt9.scalar(remoteString) // GOOD
 	try stmt9.scalar([remoteString]) // GOOD
 	try stmt9.scalar(["username": remoteString]) // GOOD
 
-	Statement(db, remoteString).run() // BAD
+	try Statement(db, remoteString).run() // BAD
 }