(* * Copyright (c) Meta Platforms, Inc. and affiliates. * * This source code is licensed under the MIT license found in the * LICENSE file in the root directory of this source tree. *) open Core open Ast open Statement open Domains open Interprocedural module Flow : sig type t = { source_taint: ForwardTaint.t; sink_taint: BackwardTaint.t; } [@@deriving show] val bottom : t val is_bottom : t -> bool val join : t -> t -> t end (* A unique identifier that represents the first sink of an issue. *) module SinkHandle : sig type t = | Call of { callee: Target.t; index: int; parameter: AccessPath.Root.t; } | Global of { callee: Target.t; index: int; } | Return | LiteralStringSink of Sinks.t | ConditionalTestSink of Sinks.t val make_call : call_target:CallGraph.CallTarget.t -> root:AccessPath.Root.t -> t val make_global : call_target:CallGraph.CallTarget.t -> t end module SinkTreeWithHandle : sig type t = { sink_tree: BackwardState.Tree.t; handle: SinkHandle.t; } val filter_bottom : t list -> t list (* Discard handles, join sink trees into a single tree. *) val join : t list -> BackwardState.Tree.t end module Handle : sig type t = { code: int; callable: Target.t; sink: SinkHandle.t; } [@@deriving compare] end module LocationSet : Stdlib.Set.S with type elt = Location.WithModule.t type t = { flow: Flow.t; handle: Handle.t; locations: LocationSet.t; (* Only used to create the Pyre errors. *) define: Ast.Statement.Define.t Ast.Node.t; } type issue = t val canonical_location : t -> Location.WithModule.t val to_json : filename_lookup:(Reference.t -> string option) -> t -> Yojson.Safe.json val to_error : t -> Error.t module TriggeredSinks : sig type t = String.Hash_set.t end (* Accumulate flows and generate issues. *) module Candidates : sig type t val create : unit -> t val check_flow : t -> location:Location.WithModule.t -> sink_handle:SinkHandle.t -> source_tree:ForwardState.Tree.t -> sink_tree:BackwardState.Tree.t -> unit (* Will modify the triggered_sinks data structure, adding the newly triggered sinks. *) val check_triggered_flows : t -> triggered_sinks:TriggeredSinks.t -> location:Location.WithModule.t -> sink_handle:SinkHandle.t -> source_tree:ForwardState.Tree.t -> sink_tree:BackwardState.Tree.t -> unit val generate_issues : t -> define:Define.t Node.t -> issue list end val code_metadata : unit -> Yojson.Safe.json val source_can_match_rule : Sources.t -> bool val sink_can_match_rule : Sinks.t -> bool