Powershell: Fix dataflow/SSA consistency errors.

MathiasVP · MathiasVP · commit 7eac06611807 · 2024-10-03T11:11:44.000+01:00
diff --git a/powershell/ql/consistency-queries/DataFlowConsistency.ql b/powershell/ql/consistency-queries/DataFlowConsistency.ql
@@ -0,0 +1,11 @@
+import semmle.code.powershell.dataflow.DataFlow::DataFlow as DataFlow
+private import powershell
+private import semmle.code.powershell.dataflow.internal.DataFlowImplSpecific
+private import semmle.code.powershell.dataflow.internal.TaintTrackingImplSpecific
+private import codeql.dataflow.internal.DataFlowImplConsistency
+
+private module Input implements InputSig<Location, PowershellDataFlow> {
+  private import PowershellDataFlow
+}
+
+import MakeConsistency<Location, PowershellDataFlow, PowershellTaintTracking, Input>
diff --git a/powershell/ql/lib/semmle/code/powershell/dataflow/internal/DataFlowPrivate.qll b/powershell/ql/lib/semmle/code/powershell/dataflow/internal/DataFlowPrivate.qll
@@ -34,15 +34,15 @@ abstract class NodeImpl extends Node {
 }
 
 private class ExprNodeImpl extends ExprNode, NodeImpl {
-  override CfgScope getCfgScope() { none() /* TODO */ }
+  override CfgScope getCfgScope() { result = this.getExprNode().getExpr().getEnclosingScope() }
 
   override Location getLocationImpl() { result = this.getExprNode().getLocation() }
 
   override string toStringImpl() { result = this.getExprNode().toString() }
 }
 
 private class StmtNodeImpl extends StmtNode, NodeImpl {
-  override CfgScope getCfgScope() { none() /* TODO */ }
+  override CfgScope getCfgScope() { result = this.getStmtNode().getStmt().getEnclosingScope() }
 
   override Location getLocationImpl() { result = this.getStmtNode().getLocation() }
 
@@ -69,7 +69,9 @@ module SsaFlow {
   Impl::Node asNode(Node n) {
     n = TSsaNode(result)
     or
-    result.(Impl::ExprNode).getExpr() = n.asExpr() // TODO: Statement nodes?
+    result.(Impl::ExprNode).getExpr() = n.asExpr()
+    or
+    result.(Impl::ExprNode).getExpr() = n.asStmt()
     or
     result.(Impl::ExprPostUpdateNode).getExpr() = n.(PostUpdateNode).getPreUpdateNode().asExpr()
     or
@@ -371,7 +373,8 @@ private module ParameterNodes {
     override Parameter getParameter() { result = parameter }
 
     override predicate isParameterOf(DataFlowCallable c, ParameterPosition pos) {
-      exists(CfgScope callable | callable = c.asCfgScope() |
+      parameter.getDeclaringScope() = c.asCfgScope() and
+      (
         pos.isKeyword(parameter.getName())
         or
         // Given a function f with parameters x, y we map
diff --git a/powershell/ql/lib/semmle/code/powershell/dataflow/internal/SsaImpl.qll b/powershell/ql/lib/semmle/code/powershell/dataflow/internal/SsaImpl.qll
@@ -344,7 +344,7 @@ class ParameterExt extends TParameterExt {
 private module DataFlowIntegrationInput implements Impl::DataFlowIntegrationInputSig {
   class Parameter = ParameterExt;
 
-  class Expr extends Cfg::CfgNodes::ExprCfgNode {
+  class Expr extends Cfg::CfgNodes::AstCfgNode {
     predicate hasCfgNode(SsaInput::BasicBlock bb, int i) { this = bb.getNode(i) }
   }
 

Original file line number	Diff line number	Diff line change
`@@ -344,7 +344,7 @@ class ParameterExt extends TParameterExt {`
`344`	`344`	`private module DataFlowIntegrationInput implements Impl::DataFlowIntegrationInputSig {`
`345`	`345`	`class Parameter = ParameterExt;`
`346`	`346`
`347`		`- class Expr extends Cfg::CfgNodes::ExprCfgNode {`
	`347`	`+ class Expr extends Cfg::CfgNodes::AstCfgNode {`
`348`	`348`	`predicate hasCfgNode(SsaInput::BasicBlock bb, int i) { this = bb.getNode(i) }`
`349`	`349`	`}`
`350`	`350`