psalm/src/Psalm/Internal/Analyzer/Statements/Expression/ExitAnalyzer.php

<?php

namespace Psalm\Internal\Analyzer\Statements\Expression;

use PhpParser\Node\Expr\Exit_;
use Psalm\CodeLocation;
use Psalm\Context;
use Psalm\Internal\Analyzer\FunctionLikeAnalyzer;
use Psalm\Internal\Analyzer\Statements\Expression\Call\ArgumentAnalyzer;
use Psalm\Internal\Analyzer\Statements\ExpressionAnalyzer;
use Psalm\Internal\Analyzer\StatementsAnalyzer;
use Psalm\Internal\Codebase\TaintFlowGraph;
use Psalm\Internal\DataFlow\TaintSink;
use Psalm\Issue\ForbiddenCode;
use Psalm\Issue\ImpureFunctionCall;
use Psalm\IssueBuffer;
use Psalm\Storage\FunctionLikeParameter;
use Psalm\Type;
use Psalm\Type\Atomic\TInt;
use Psalm\Type\Atomic\TString;
use Psalm\Type\TaintKind;
use Psalm\Type\Union;

/**
 * @internal
 */
class ExitAnalyzer
{
    public static function analyze(
        StatementsAnalyzer $statements_analyzer,
        Exit_ $stmt,
        Context $context
    ): bool {
        $expr_type = null;

        $config = $statements_analyzer->getProjectAnalyzer()->getConfig();

        $forbidden = null;

        if (isset($config->forbidden_functions['exit'])
            && $stmt->getAttribute('kind') === Exit_::KIND_EXIT
        ) {
            $forbidden = 'exit';
        } elseif (isset($config->forbidden_functions['die'])
            && $stmt->getAttribute('kind') === Exit_::KIND_DIE
        ) {
            $forbidden = 'die';
        }

        if ($forbidden) {
            IssueBuffer::maybeAdd(
                new ForbiddenCode(
                    'You have forbidden the use of ' . $forbidden,
                    new CodeLocation($statements_analyzer, $stmt),
                ),
                $statements_analyzer->getSuppressedIssues(),
            );
        }

        if ($stmt->expr) {
            $context->inside_call = true;

            if (ExpressionAnalyzer::analyze($statements_analyzer, $stmt->expr, $context) === false) {
                return false;
            }

            if ($statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {
                $call_location = new CodeLocation($statements_analyzer->getSource(), $stmt);

                $echo_param_sink = TaintSink::getForMethodArgument(
                    'exit',
                    'exit',
                    0,
                    null,
                    $call_location,
                );

                $echo_param_sink->taints = [
                    TaintKind::INPUT_HTML,
                    TaintKind::INPUT_HAS_QUOTES,
                    TaintKind::USER_SECRET,
                    TaintKind::SYSTEM_SECRET,
                ];

                $statements_analyzer->data_flow_graph->addSink($echo_param_sink);
            }

            if ($expr_type = $statements_analyzer->node_data->getType($stmt->expr)) {
                $exit_param = new FunctionLikeParameter(
                    'var',
                    false,
                );

                if (ArgumentAnalyzer::verifyType(
                    $statements_analyzer,
                    $expr_type,
                    new Union([new TInt(), new TString()]),
                    null,
                    'exit',
                    null,
                    0,
                    new CodeLocation($statements_analyzer->getSource(), $stmt->expr),
                    $stmt->expr,
                    $context,
                    $exit_param,
                    false,
                    null,
                    true,
                    true,
                    new CodeLocation($statements_analyzer, $stmt),
                ) === false) {
                    return false;
                }
            }

            $context->inside_call = false;
        }

        if ($expr_type
            && !$expr_type->isInt()
            && !$context->collect_mutations
            && !$context->collect_initializations
        ) {
            if ($context->mutation_free || $context->external_mutation_free) {
                $function_name = $stmt->getAttribute('kind') === Exit_::KIND_DIE ? 'die' : 'exit';

                IssueBuffer::maybeAdd(
                    new ImpureFunctionCall(
                        'Cannot call ' . $function_name . ' with a non-integer argument from a mutation-free context',
                        new CodeLocation($statements_analyzer, $stmt),
                    ),
                    $statements_analyzer->getSuppressedIssues(),
                );
            } elseif ($statements_analyzer->getSource() instanceof FunctionLikeAnalyzer
                && $statements_analyzer->getSource()->track_mutations
            ) {
                $statements_analyzer->getSource()->inferred_has_mutation = true;
                $statements_analyzer->getSource()->inferred_impure = true;
            }
        }

        $statements_analyzer->node_data->setType($stmt, Type::getNever());

        $context->has_returned = true;

        return true;
    }
}
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`<?php`
Set number of lines before and after namespace. 2021-12-15 04:58:32 +01:00
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`namespace Psalm\Internal\Analyzer\Statements\Expression;`

Allow to forbid `exit()` and `die()` 2021-10-31 02:02:16 +02:00			`use PhpParser\Node\Expr\Exit_;`
Enforce `use` sort (#5900) 2021-06-08 04:55:21 +02:00			`use Psalm\CodeLocation;`
			`use Psalm\Context;`
Consider print, and conditionally exit / die impure 2021-07-27 14:22:06 +02:00			`use Psalm\Internal\Analyzer\FunctionLikeAnalyzer;`
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`use Psalm\Internal\Analyzer\Statements\Expression\Call\ArgumentAnalyzer;`
Enforce `use` sort (#5900) 2021-06-08 04:55:21 +02:00			`use Psalm\Internal\Analyzer\Statements\ExpressionAnalyzer;`
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`use Psalm\Internal\Analyzer\StatementsAnalyzer;`
4.x - refactor unused variable detection This turns unused variable detection into an explicit control-flow problem, where before we had a more simplistic mark-and-sweep algorithm 2020-09-30 18:28:13 +02:00			`use Psalm\Internal\Codebase\TaintFlowGraph;`
Enforce `use` sort (#5900) 2021-06-08 04:55:21 +02:00			`use Psalm\Internal\DataFlow\TaintSink;`
Allow to forbid `exit()` and `die()` 2021-10-31 02:02:16 +02:00			`use Psalm\Issue\ForbiddenCode;`
Consider print, and conditionally exit / die impure 2021-07-27 14:22:06 +02:00			`use Psalm\Issue\ImpureFunctionCall;`
			`use Psalm\IssueBuffer;`
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`use Psalm\Storage\FunctionLikeParameter;`
			`use Psalm\Type;`
			`use Psalm\Type\Atomic\TInt;`
			`use Psalm\Type\Atomic\TString;`
Conversion of Psalm\Type 2021-12-13 16:28:14 +01:00			`use Psalm\Type\TaintKind;`
			`use Psalm\Type\Union;`
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00
Mark internal classes `@internal` 2022-01-03 07:55:32 +01:00			`/**`
			`* @internal`
			`*/`
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`class ExitAnalyzer`
			`{`
			`public static function analyze(`
			`StatementsAnalyzer $statements_analyzer,`
Allow to forbid `exit()` and `die()` 2021-10-31 02:02:16 +02:00			`Exit_ $stmt,`
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`Context $context`
Return type hints (#7065) Co-authored-by: ralila <> 2021-12-05 18:51:26 +01:00			`): bool {`
Consider print, and conditionally exit / die impure 2021-07-27 14:22:06 +02:00			`$expr_type = null;`

Allow to forbid `exit()` and `die()` 2021-10-31 02:02:16 +02:00			`$config = $statements_analyzer->getProjectAnalyzer()->getConfig();`

			`$forbidden = null;`

			`if (isset($config->forbidden_functions['exit'])`
			`&& $stmt->getAttribute('kind') === Exit_::KIND_EXIT`
			`) {`
			`$forbidden = 'exit';`
			`} elseif (isset($config->forbidden_functions['die'])`
			`&& $stmt->getAttribute('kind') === Exit_::KIND_DIE`
			`) {`
			`$forbidden = 'die';`
			`}`

			`if ($forbidden) {`
Migrate most IssueBuffer::accepts calls to IssueBuffer::maybeAdd (#7020) 2021-11-29 20:54:17 +01:00			`IssueBuffer::maybeAdd(`
Allow to forbid `exit()` and `die()` 2021-10-31 02:02:16 +02:00			`new ForbiddenCode(`
			`'You have forbidden the use of ' . $forbidden,`
Require trailing commas 2022-12-18 17:15:15 +01:00			`new CodeLocation($statements_analyzer, $stmt),`
Allow to forbid `exit()` and `die()` 2021-10-31 02:02:16 +02:00			`),`
Require trailing commas 2022-12-18 17:15:15 +01:00			`$statements_analyzer->getSuppressedIssues(),`
Migrate most IssueBuffer::accepts calls to IssueBuffer::maybeAdd (#7020) 2021-11-29 20:54:17 +01:00			`);`
Allow to forbid `exit()` and `die()` 2021-10-31 02:02:16 +02:00			`}`

Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`if ($stmt->expr) {`
			`$context->inside_call = true;`

			`if (ExpressionAnalyzer::analyze($statements_analyzer, $stmt->expr, $context) === false) {`
			`return false;`
			`}`

Change control_flow_graph to data_flow_graph 2020-10-13 23:28:12 +02:00			`if ($statements_analyzer->data_flow_graph instanceof TaintFlowGraph) {`
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`$call_location = new CodeLocation($statements_analyzer->getSource(), $stmt);`

Rename TaintGraph to ControlFlowGraph because it’s about to do more 2020-09-21 05:59:52 +02:00			`$echo_param_sink = TaintSink::getForMethodArgument(`
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`'exit',`
			`'exit',`
			`0,`
			`null,`
Require trailing commas 2022-12-18 17:15:15 +01:00			`$call_location,`
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`);`

			`$echo_param_sink->taints = [`
Conversion of Psalm\Type 2021-12-13 16:28:14 +01:00			`TaintKind::INPUT_HTML,`
			`TaintKind::INPUT_HAS_QUOTES,`
			`TaintKind::USER_SECRET,`
Require trailing commas 2022-12-18 17:15:15 +01:00			`TaintKind::SYSTEM_SECRET,`
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`];`

Change control_flow_graph to data_flow_graph 2020-10-13 23:28:12 +02:00			`$statements_analyzer->data_flow_graph->addSink($echo_param_sink);`
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`}`

			`if ($expr_type = $statements_analyzer->node_data->getType($stmt->expr)) {`
			`$exit_param = new FunctionLikeParameter(`
			`'var',`
Require trailing commas 2022-12-18 17:15:15 +01:00			`false,`
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`);`

			`if (ArgumentAnalyzer::verifyType(`
			`$statements_analyzer,`
			`$expr_type,`
Conversion of Psalm\Type 2021-12-13 16:28:14 +01:00			`new Union([new TInt(), new TString()]),`
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`null,`
			`'exit',`
Fix #4599 - propagate taints to parent callers where necessary 2020-11-18 15:59:54 +01:00			`null,`
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`0,`
			`new CodeLocation($statements_analyzer->getSource(), $stmt->expr),`
			`$stmt->expr,`
			`$context,`
			`$exit_param,`
			`false,`
			`null,`
			`true,`
			`true,`
Require trailing commas 2022-12-18 17:15:15 +01:00			`new CodeLocation($statements_analyzer, $stmt),`
Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`) === false) {`
			`return false;`
			`}`
			`}`

			`$context->inside_call = false;`
			`}`

Consider print, and conditionally exit / die impure 2021-07-27 14:22:06 +02:00			`if ($expr_type`
			`&& !$expr_type->isInt()`
			`&& !$context->collect_mutations`
			`&& !$context->collect_initializations`
			`) {`
			`if ($context->mutation_free \|\| $context->external_mutation_free) {`
Allow to forbid `exit()` and `die()` 2021-10-31 02:02:16 +02:00			`$function_name = $stmt->getAttribute('kind') === Exit_::KIND_DIE ? 'die' : 'exit';`
Consider print, and conditionally exit / die impure 2021-07-27 14:22:06 +02:00
Migrate most IssueBuffer::accepts calls to IssueBuffer::maybeAdd (#7020) 2021-11-29 20:54:17 +01:00			`IssueBuffer::maybeAdd(`
Consider print, and conditionally exit / die impure 2021-07-27 14:22:06 +02:00			`new ImpureFunctionCall(`
			`'Cannot call ' . $function_name . ' with a non-integer argument from a mutation-free context',`
Require trailing commas 2022-12-18 17:15:15 +01:00			`new CodeLocation($statements_analyzer, $stmt),`
Consider print, and conditionally exit / die impure 2021-07-27 14:22:06 +02:00			`),`
Require trailing commas 2022-12-18 17:15:15 +01:00			`$statements_analyzer->getSuppressedIssues(),`
Migrate most IssueBuffer::accepts calls to IssueBuffer::maybeAdd (#7020) 2021-11-29 20:54:17 +01:00			`);`
Consider print, and conditionally exit / die impure 2021-07-27 14:22:06 +02:00			`} elseif ($statements_analyzer->getSource() instanceof FunctionLikeAnalyzer`
			`&& $statements_analyzer->getSource()->track_mutations`
			`) {`
			`$statements_analyzer->getSource()->inferred_has_mutation = true;`
			`$statements_analyzer->getSource()->inferred_impure = true;`
			`}`
			`}`

remove TEmpty 2021-10-13 19:37:47 +02:00			`$statements_analyzer->node_data->setType($stmt, Type::getNever());`
Fix #4516 - treat exit() as the empty type 2020-11-09 14:44:03 +01:00
emit UnevaluatedCode after exit or never returning functionlike 2021-11-01 22:13:29 +01:00			`$context->has_returned = true;`

Fix #3681 - taint exit like echo 2020-06-25 23:17:08 +02:00			`return true;`
			`}`
			`}`