Swift: Add some failing data flow test cases.

geoffw0 · geoffw0 · commit 33f83a2089a7 · 2023-10-13T12:24:43.000+01:00
diff --git a/swift/ql/test/library-tests/dataflow/taint/core/LocalTaint.expected b/swift/ql/test/library-tests/dataflow/taint/core/LocalTaint.expected
@@ -354,6 +354,40 @@
 | simple.swift:85:13:85:20 | call to source() | simple.swift:85:13:85:26 | ... .&>>(_:_:) ... |
 | simple.swift:85:26:85:26 | 1 | simple.swift:85:13:85:26 | ... .&>>(_:_:) ... |
 | simple.swift:87:14:87:21 | call to source() | simple.swift:87:13:87:21 | call to ~(_:) |
+| simple.swift:97:7:97:7 | SSA def(self) | simple.swift:97:7:97:7 | self[return] |
+| simple.swift:97:7:97:7 | SSA def(self) | simple.swift:97:7:97:7 | self[return] |
+| simple.swift:97:7:97:7 | self | simple.swift:97:7:97:7 | SSA def(self) |
+| simple.swift:97:7:97:7 | self | simple.swift:97:7:97:7 | SSA def(self) |
+| simple.swift:98:6:98:6 | self | simple.swift:98:6:98:6 | SSA def(self) |
+| simple.swift:99:6:99:6 | self | simple.swift:99:6:99:6 | SSA def(self) |
+| simple.swift:100:7:100:7 | self | simple.swift:100:7:100:7 | SSA def(self) |
+| simple.swift:101:6:101:6 | self | simple.swift:101:6:101:6 | SSA def(self) |
+| simple.swift:101:6:101:6 | self | simple.swift:101:6:101:6 | SSA def(self) |
+| simple.swift:101:6:101:6 | self | simple.swift:101:6:101:6 | SSA def(self) |
+| simple.swift:101:6:101:6 | value | simple.swift:101:6:101:6 | SSA def(value) |
+| simple.swift:103:13:103:13 | self | simple.swift:103:13:103:13 | SSA def(self) |
+| simple.swift:104:13:104:13 | self | simple.swift:104:13:104:13 | SSA def(self) |
+| simple.swift:105:14:105:14 | self | simple.swift:105:14:105:14 | SSA def(self) |
+| simple.swift:106:13:106:13 | self | simple.swift:106:13:106:13 | SSA def(self) |
+| simple.swift:106:13:106:13 | self | simple.swift:106:13:106:13 | SSA def(self) |
+| simple.swift:106:13:106:13 | self | simple.swift:106:13:106:13 | SSA def(self) |
+| simple.swift:106:13:106:13 | value | simple.swift:106:13:106:13 | SSA def(value) |
+| simple.swift:108:7:108:7 | SSA def(self) | simple.swift:116:13:116:13 | self |
+| simple.swift:108:7:108:7 | self | simple.swift:108:7:108:7 | SSA def(self) |
+| simple.swift:113:5:113:10 | SSA def(gv) | simple.swift:114:13:114:13 | gv |
+| simple.swift:113:10:113:10 | 0 | simple.swift:113:5:113:10 | SSA def(gv) |
+| simple.swift:116:13:116:13 | [post] self | simple.swift:117:13:117:13 | self |
+| simple.swift:116:13:116:13 | self | simple.swift:117:13:117:13 | self |
+| simple.swift:117:13:117:13 | [post] self | simple.swift:118:13:118:13 | self |
+| simple.swift:117:13:117:13 | self | simple.swift:118:13:118:13 | self |
+| simple.swift:118:13:118:13 | [post] self | simple.swift:119:13:119:13 | self |
+| simple.swift:118:13:118:13 | self | simple.swift:119:13:119:13 | self |
+| simple.swift:119:13:119:13 | [post] self | simple.swift:120:5:120:5 | self |
+| simple.swift:119:13:119:13 | self | simple.swift:120:5:120:5 | self |
+| simple.swift:120:5:120:5 | [post] self | simple.swift:121:13:121:13 | self |
+| simple.swift:120:5:120:5 | self | simple.swift:121:13:121:13 | self |
+| simple.swift:121:13:121:13 | [post] self | simple.swift:108:2:129:2 | self[return] |
+| simple.swift:121:13:121:13 | self | simple.swift:108:2:129:2 | self[return] |
 | stringinterpolation.swift:5:7:5:7 | SSA def(self) | stringinterpolation.swift:5:7:5:7 | self[return] |
 | stringinterpolation.swift:5:7:5:7 | SSA def(self) | stringinterpolation.swift:5:7:5:7 | self[return] |
 | stringinterpolation.swift:5:7:5:7 | self | stringinterpolation.swift:5:7:5:7 | SSA def(self) |
diff --git a/swift/ql/test/library-tests/dataflow/taint/core/simple.swift b/swift/ql/test/library-tests/dataflow/taint/core/simple.swift
@@ -86,3 +86,45 @@ func taintThroughBitwiseOperators() {
 
   sink(arg: ~source()) // $ tainted=87
 }
+
+// --- globals and class member variables ---
+
+let g1 = source()
+let g2 = source() + 1
+let g3 = g1
+var gv = source()
+
+class MyClass {
+	let m1 = source()
+	let m2 = source() + 1
+	let m3 = g1
+	var mv = source()
+
+	static let s1 = source()
+	static let s2 = source() + 1
+	static let s3 = s1
+	static var sv = source()
+
+	func test() {
+		sink(arg: g1) // $ MISSING: tainted=92
+		sink(arg: g2) // $ MISSING: tainted=93
+		sink(arg: g3) // $ MISSING: tainted=94
+		sink(arg: gv)
+		gv = 0
+		sink(arg: gv)
+
+		sink(arg: m1) // $ MISSING: tainted=98
+		sink(arg: m2) // $ MISSING: tainted=99
+		sink(arg: m3) // $ MISSING: tainted=100
+		sink(arg: mv)
+		mv = 0
+		sink(arg: mv)
+
+		sink(arg: MyClass.s1) // $ MISSING: tainted=103
+		sink(arg: MyClass.s2) // $ MISSING: tainted=104
+		sink(arg: MyClass.s3) // $ MISSING: tainted=105
+		sink(arg: MyClass.sv)
+		MyClass.sv = 0
+		sink(arg: MyClass.sv)
+	}
+}
