2016-11-01 16:37:58 +01:00
|
|
|
<?php
|
2021-12-15 04:58:32 +01:00
|
|
|
|
2018-11-06 03:57:36 +01:00
|
|
|
namespace Psalm\Internal\Analyzer\Statements\Expression;
|
2016-11-01 16:37:58 +01:00
|
|
|
|
|
|
|
use PhpParser;
|
2021-06-08 04:55:21 +02:00
|
|
|
use Psalm\CodeLocation;
|
2021-12-13 17:32:49 +01:00
|
|
|
use Psalm\CodeLocation\DocblockTypeLocation;
|
2021-12-03 20:11:20 +01:00
|
|
|
use Psalm\Codebase;
|
2021-06-08 04:55:21 +02:00
|
|
|
use Psalm\Context;
|
|
|
|
use Psalm\Exception\DocblockParseException;
|
|
|
|
use Psalm\Exception\IncorrectDocblockException;
|
2021-12-03 20:11:20 +01:00
|
|
|
use Psalm\Internal\Algebra;
|
|
|
|
use Psalm\Internal\Algebra\FormulaGenerator;
|
2018-11-06 03:57:36 +01:00
|
|
|
use Psalm\Internal\Analyzer\CommentAnalyzer;
|
2021-12-03 20:11:20 +01:00
|
|
|
use Psalm\Internal\Analyzer\FunctionLikeAnalyzer;
|
2019-10-22 17:17:42 +02:00
|
|
|
use Psalm\Internal\Analyzer\Statements\Block\ForeachAnalyzer;
|
2018-11-06 03:57:36 +01:00
|
|
|
use Psalm\Internal\Analyzer\Statements\Expression\Assignment\ArrayAssignmentAnalyzer;
|
2020-06-19 07:22:51 +02:00
|
|
|
use Psalm\Internal\Analyzer\Statements\Expression\Assignment\InstancePropertyAssignmentAnalyzer;
|
|
|
|
use Psalm\Internal\Analyzer\Statements\Expression\Assignment\StaticPropertyAssignmentAnalyzer;
|
2021-06-08 04:55:21 +02:00
|
|
|
use Psalm\Internal\Analyzer\Statements\Expression\Fetch\ArrayFetchAnalyzer;
|
|
|
|
use Psalm\Internal\Analyzer\Statements\Expression\Fetch\VariableFetchAnalyzer;
|
2018-11-06 03:57:36 +01:00
|
|
|
use Psalm\Internal\Analyzer\Statements\ExpressionAnalyzer;
|
|
|
|
use Psalm\Internal\Analyzer\StatementsAnalyzer;
|
2021-12-03 20:11:20 +01:00
|
|
|
use Psalm\Internal\Analyzer\TraitAnalyzer;
|
|
|
|
use Psalm\Internal\Clause;
|
|
|
|
use Psalm\Internal\Codebase\DataFlowGraph;
|
2020-09-30 18:28:13 +02:00
|
|
|
use Psalm\Internal\Codebase\TaintFlowGraph;
|
2021-06-08 04:55:21 +02:00
|
|
|
use Psalm\Internal\Codebase\VariableUseGraph;
|
2020-10-13 22:49:03 +02:00
|
|
|
use Psalm\Internal\DataFlow\DataFlowNode;
|
2019-09-26 21:08:05 +02:00
|
|
|
use Psalm\Internal\FileManipulation\FileManipulationBuffer;
|
2021-12-03 20:11:20 +01:00
|
|
|
use Psalm\Internal\ReferenceConstraint;
|
2021-06-08 04:55:21 +02:00
|
|
|
use Psalm\Internal\Scanner\VarDocblockComment;
|
|
|
|
use Psalm\Internal\Type\Comparator\UnionTypeComparator;
|
2021-12-03 20:11:20 +01:00
|
|
|
use Psalm\Internal\Type\TypeExpander;
|
2017-11-28 06:46:41 +01:00
|
|
|
use Psalm\Issue\AssignmentToVoid;
|
2020-01-23 20:21:34 +01:00
|
|
|
use Psalm\Issue\ImpureByReferenceAssignment;
|
2019-07-18 07:31:48 +02:00
|
|
|
use Psalm\Issue\ImpurePropertyAssignment;
|
2020-05-03 02:36:41 +02:00
|
|
|
use Psalm\Issue\InvalidArrayAccess;
|
2019-10-15 19:55:30 +02:00
|
|
|
use Psalm\Issue\InvalidArrayOffset;
|
2017-11-15 03:43:31 +01:00
|
|
|
use Psalm\Issue\InvalidDocblock;
|
2016-11-02 07:29:00 +01:00
|
|
|
use Psalm\Issue\InvalidScope;
|
2017-12-17 16:58:03 +01:00
|
|
|
use Psalm\Issue\LoopInvalidation;
|
2017-11-15 03:43:31 +01:00
|
|
|
use Psalm\Issue\MissingDocblockType;
|
2020-05-03 02:36:41 +02:00
|
|
|
use Psalm\Issue\MixedArrayAccess;
|
2021-06-08 04:55:21 +02:00
|
|
|
use Psalm\Issue\MixedAssignment;
|
2019-01-02 23:05:39 +01:00
|
|
|
use Psalm\Issue\NoValue;
|
2021-12-03 20:11:20 +01:00
|
|
|
use Psalm\Issue\NullReference;
|
2020-05-03 02:36:41 +02:00
|
|
|
use Psalm\Issue\PossiblyInvalidArrayAccess;
|
|
|
|
use Psalm\Issue\PossiblyNullArrayAccess;
|
2018-11-30 19:21:08 +01:00
|
|
|
use Psalm\Issue\PossiblyUndefinedArrayOffset;
|
2017-02-23 06:25:28 +01:00
|
|
|
use Psalm\Issue\ReferenceConstraintViolation;
|
2019-09-19 17:59:43 +02:00
|
|
|
use Psalm\Issue\UnnecessaryVarAnnotation;
|
2016-11-02 07:29:00 +01:00
|
|
|
use Psalm\IssueBuffer;
|
2021-06-04 20:39:38 +02:00
|
|
|
use Psalm\Node\Expr\BinaryOp\VirtualBitwiseAnd;
|
|
|
|
use Psalm\Node\Expr\BinaryOp\VirtualBitwiseOr;
|
|
|
|
use Psalm\Node\Expr\BinaryOp\VirtualBitwiseXor;
|
2021-02-15 22:18:41 +01:00
|
|
|
use Psalm\Node\Expr\BinaryOp\VirtualCoalesce;
|
2021-06-04 20:39:38 +02:00
|
|
|
use Psalm\Node\Expr\BinaryOp\VirtualConcat;
|
|
|
|
use Psalm\Node\Expr\BinaryOp\VirtualDiv;
|
|
|
|
use Psalm\Node\Expr\BinaryOp\VirtualMinus;
|
|
|
|
use Psalm\Node\Expr\BinaryOp\VirtualMod;
|
|
|
|
use Psalm\Node\Expr\BinaryOp\VirtualMul;
|
|
|
|
use Psalm\Node\Expr\BinaryOp\VirtualPlus;
|
|
|
|
use Psalm\Node\Expr\BinaryOp\VirtualPow;
|
|
|
|
use Psalm\Node\Expr\BinaryOp\VirtualShiftLeft;
|
|
|
|
use Psalm\Node\Expr\BinaryOp\VirtualShiftRight;
|
2021-06-08 04:55:21 +02:00
|
|
|
use Psalm\Node\Expr\VirtualAssign;
|
2021-03-20 03:41:41 +01:00
|
|
|
use Psalm\Plugin\EventHandler\Event\AddRemoveTaintsEvent;
|
2022-01-20 23:33:06 +01:00
|
|
|
use Psalm\Storage\Assertion\Falsy;
|
2016-11-01 16:37:58 +01:00
|
|
|
use Psalm\Type;
|
2021-12-13 04:45:57 +01:00
|
|
|
use Psalm\Type\Atomic\TArray;
|
|
|
|
use Psalm\Type\Atomic\TFalse;
|
|
|
|
use Psalm\Type\Atomic\TKeyedArray;
|
|
|
|
use Psalm\Type\Atomic\TList;
|
|
|
|
use Psalm\Type\Atomic\TMixed;
|
|
|
|
use Psalm\Type\Atomic\TNamedObject;
|
|
|
|
use Psalm\Type\Atomic\TNonEmptyArray;
|
|
|
|
use Psalm\Type\Atomic\TNonEmptyList;
|
|
|
|
use Psalm\Type\Atomic\TNull;
|
2021-12-13 16:28:14 +01:00
|
|
|
use Psalm\Type\Union;
|
2021-12-03 21:40:18 +01:00
|
|
|
use UnexpectedValueException;
|
2021-06-08 04:55:21 +02:00
|
|
|
|
2021-12-03 21:07:25 +01:00
|
|
|
use function array_filter;
|
2021-06-08 04:55:21 +02:00
|
|
|
use function array_merge;
|
|
|
|
use function count;
|
2021-12-03 21:07:25 +01:00
|
|
|
use function in_array;
|
2019-06-26 22:52:29 +02:00
|
|
|
use function is_string;
|
2021-06-08 04:55:21 +02:00
|
|
|
use function reset;
|
2021-12-03 21:07:25 +01:00
|
|
|
use function spl_object_id;
|
2019-06-26 22:52:29 +02:00
|
|
|
use function strpos;
|
|
|
|
use function strtolower;
|
2016-11-01 16:37:58 +01:00
|
|
|
|
2018-12-02 00:37:49 +01:00
|
|
|
/**
|
|
|
|
* @internal
|
|
|
|
*/
|
2018-11-06 03:57:36 +01:00
|
|
|
class AssignmentAnalyzer
|
2016-11-01 16:37:58 +01:00
|
|
|
{
|
|
|
|
/**
|
2016-12-07 00:27:22 +01:00
|
|
|
* @param PhpParser\Node\Expr|null $assign_value This has to be null to support list destructuring
|
2017-05-27 02:16:18 +02:00
|
|
|
*
|
2021-12-13 16:28:14 +01:00
|
|
|
* @return false|Union
|
2016-11-01 16:37:58 +01:00
|
|
|
*/
|
2017-01-07 21:09:47 +01:00
|
|
|
public static function analyze(
|
2018-11-11 18:01:14 +01:00
|
|
|
StatementsAnalyzer $statements_analyzer,
|
2016-11-01 16:37:58 +01:00
|
|
|
PhpParser\Node\Expr $assign_var,
|
2020-09-07 01:36:47 +02:00
|
|
|
?PhpParser\Node\Expr $assign_value,
|
2021-12-13 16:28:14 +01:00
|
|
|
?Union $assign_value_type,
|
2016-11-01 16:37:58 +01:00
|
|
|
Context $context,
|
2020-09-30 18:28:13 +02:00
|
|
|
?PhpParser\Comment\Doc $doc_comment,
|
|
|
|
array $not_ignored_docblock_var_ids = []
|
2016-11-01 16:37:58 +01:00
|
|
|
) {
|
2020-05-18 21:13:27 +02:00
|
|
|
$var_id = ExpressionIdentifier::getVarId(
|
2016-11-01 16:37:58 +01:00
|
|
|
$assign_var,
|
2018-11-11 18:01:14 +01:00
|
|
|
$statements_analyzer->getFQCLN(),
|
|
|
|
$statements_analyzer
|
2016-11-01 16:37:58 +01:00
|
|
|
);
|
|
|
|
|
2017-08-19 05:14:38 +02:00
|
|
|
// gets a variable id that *may* contain array keys
|
2020-05-18 21:13:27 +02:00
|
|
|
$array_var_id = ExpressionIdentifier::getArrayVarId(
|
2016-11-01 16:37:58 +01:00
|
|
|
$assign_var,
|
2018-11-11 18:01:14 +01:00
|
|
|
$statements_analyzer->getFQCLN(),
|
|
|
|
$statements_analyzer
|
2016-11-01 16:37:58 +01:00
|
|
|
);
|
|
|
|
|
2018-02-08 05:33:31 +01:00
|
|
|
$var_comments = [];
|
2017-10-07 16:22:52 +02:00
|
|
|
$comment_type = null;
|
2019-09-26 21:08:05 +02:00
|
|
|
$comment_type_location = null;
|
2017-05-25 07:32:34 +02:00
|
|
|
|
2019-08-13 19:15:23 +02:00
|
|
|
$was_in_assignment = $context->inside_assignment;
|
|
|
|
|
|
|
|
$context->inside_assignment = true;
|
|
|
|
|
2018-11-11 18:01:14 +01:00
|
|
|
$codebase = $statements_analyzer->getCodebase();
|
2018-11-06 03:57:36 +01:00
|
|
|
|
2020-09-30 18:28:13 +02:00
|
|
|
$base_assign_value = $assign_value;
|
|
|
|
|
|
|
|
while ($base_assign_value instanceof PhpParser\Node\Expr\Assign) {
|
|
|
|
$base_assign_value = $base_assign_value->expr;
|
|
|
|
}
|
|
|
|
|
|
|
|
if ($base_assign_value !== $assign_value) {
|
|
|
|
ExpressionAnalyzer::analyze($statements_analyzer, $base_assign_value, $context);
|
|
|
|
|
2021-10-13 18:35:16 +02:00
|
|
|
$assign_value_type = $statements_analyzer->node_data->getType($base_assign_value) ?? $assign_value_type;
|
2020-09-30 18:28:13 +02:00
|
|
|
}
|
|
|
|
|
2020-05-22 04:47:58 +02:00
|
|
|
$removed_taints = [];
|
2019-10-15 22:25:27 +02:00
|
|
|
|
2017-03-02 04:27:52 +01:00
|
|
|
if ($doc_comment) {
|
2018-11-11 18:01:14 +01:00
|
|
|
$file_path = $statements_analyzer->getRootFilePath();
|
2018-09-24 19:08:23 +02:00
|
|
|
|
2018-11-11 18:19:53 +01:00
|
|
|
$file_storage_provider = $codebase->file_storage_provider;
|
2018-09-24 19:08:23 +02:00
|
|
|
|
|
|
|
$file_storage = $file_storage_provider->get($file_path);
|
|
|
|
|
2018-12-18 05:29:27 +01:00
|
|
|
$template_type_map = $statements_analyzer->getTemplateTypeMap();
|
|
|
|
|
2017-11-15 03:43:31 +01:00
|
|
|
try {
|
2018-11-06 03:57:36 +01:00
|
|
|
$var_comments = CommentAnalyzer::getTypeFromComment(
|
2017-11-15 03:43:31 +01:00
|
|
|
$doc_comment,
|
2018-11-11 18:01:14 +01:00
|
|
|
$statements_analyzer->getSource(),
|
|
|
|
$statements_analyzer->getAliases(),
|
2018-12-18 05:29:27 +01:00
|
|
|
$template_type_map,
|
2019-06-01 18:25:57 +02:00
|
|
|
$file_storage->type_aliases
|
2017-11-15 03:43:31 +01:00
|
|
|
);
|
|
|
|
} catch (IncorrectDocblockException $e) {
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2017-11-15 03:43:31 +01:00
|
|
|
new MissingDocblockType(
|
2020-12-02 00:26:15 +01:00
|
|
|
$e->getMessage(),
|
2018-11-11 18:01:14 +01:00
|
|
|
new CodeLocation($statements_analyzer->getSource(), $assign_var)
|
2017-11-15 03:43:31 +01:00
|
|
|
)
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2017-11-15 03:43:31 +01:00
|
|
|
} catch (DocblockParseException $e) {
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2017-11-15 03:43:31 +01:00
|
|
|
new InvalidDocblock(
|
2020-12-02 00:26:15 +01:00
|
|
|
$e->getMessage(),
|
2018-11-11 18:01:14 +01:00
|
|
|
new CodeLocation($statements_analyzer->getSource(), $assign_var)
|
2017-11-15 03:43:31 +01:00
|
|
|
)
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2017-11-15 03:43:31 +01:00
|
|
|
}
|
2017-05-25 07:32:34 +02:00
|
|
|
|
2018-02-08 05:33:31 +01:00
|
|
|
foreach ($var_comments as $var_comment) {
|
2020-05-22 04:47:58 +02:00
|
|
|
if ($var_comment->removed_taints) {
|
|
|
|
$removed_taints = $var_comment->removed_taints;
|
2019-10-15 22:25:27 +02:00
|
|
|
}
|
|
|
|
|
2020-07-26 19:23:21 +02:00
|
|
|
self::assignTypeFromVarDocblock(
|
|
|
|
$statements_analyzer,
|
|
|
|
$assign_var,
|
|
|
|
$var_comment,
|
|
|
|
$context,
|
|
|
|
$var_id,
|
|
|
|
$comment_type,
|
2020-09-30 18:28:13 +02:00
|
|
|
$comment_type_location,
|
|
|
|
$not_ignored_docblock_var_ids
|
2020-07-26 19:23:21 +02:00
|
|
|
);
|
2021-04-25 21:11:23 +02:00
|
|
|
|
|
|
|
if ($var_id === $var_comment->var_id && $assign_value_type && $comment_type) {
|
|
|
|
$comment_type->by_ref = $assign_value_type->by_ref;
|
|
|
|
}
|
2017-05-25 07:32:34 +02:00
|
|
|
}
|
2017-03-02 04:27:52 +01:00
|
|
|
}
|
2016-11-01 16:37:58 +01:00
|
|
|
|
2019-07-04 23:35:33 +02:00
|
|
|
if ($array_var_id) {
|
|
|
|
unset($context->referenced_var_ids[$array_var_id]);
|
2020-11-01 17:26:42 +01:00
|
|
|
$context->assigned_var_ids[$array_var_id] = (int) $assign_var->getAttribute('startFilePos');
|
2019-12-22 13:36:16 +01:00
|
|
|
$context->possibly_assigned_var_ids[$array_var_id] = true;
|
2019-07-04 23:35:33 +02:00
|
|
|
}
|
|
|
|
|
2018-10-04 22:42:40 +02:00
|
|
|
if ($assign_value) {
|
|
|
|
if ($var_id && $assign_value instanceof PhpParser\Node\Expr\Closure) {
|
|
|
|
foreach ($assign_value->uses as $closure_use) {
|
|
|
|
if ($closure_use->byRef
|
|
|
|
&& is_string($closure_use->var->name)
|
|
|
|
&& $var_id === '$' . $closure_use->var->name
|
|
|
|
) {
|
|
|
|
$context->vars_in_scope[$var_id] = Type::getClosure();
|
|
|
|
$context->vars_possibly_in_scope[$var_id] = true;
|
|
|
|
}
|
2017-04-02 01:04:49 +02:00
|
|
|
}
|
2017-02-24 01:36:51 +01:00
|
|
|
}
|
2016-11-01 16:37:58 +01:00
|
|
|
|
2021-06-25 15:54:39 +02:00
|
|
|
$was_inside_general_use = $context->inside_general_use;
|
2020-09-30 18:28:13 +02:00
|
|
|
|
|
|
|
$root_expr = $assign_var;
|
|
|
|
|
|
|
|
while ($root_expr instanceof PhpParser\Node\Expr\ArrayDimFetch) {
|
|
|
|
$root_expr = $root_expr->var;
|
|
|
|
}
|
|
|
|
|
|
|
|
// if we don't know where this data is going, treat as a dead-end usage
|
|
|
|
if (!$root_expr instanceof PhpParser\Node\Expr\Variable
|
2021-12-03 21:07:25 +01:00
|
|
|
|| (is_string($root_expr->name)
|
|
|
|
&& in_array('$' . $root_expr->name, VariableFetchAnalyzer::SUPER_GLOBALS, true))
|
2020-09-30 18:28:13 +02:00
|
|
|
) {
|
2021-06-25 15:54:39 +02:00
|
|
|
$context->inside_general_use = true;
|
2020-09-30 18:28:13 +02:00
|
|
|
}
|
|
|
|
|
2018-11-11 18:01:14 +01:00
|
|
|
if (ExpressionAnalyzer::analyze($statements_analyzer, $assign_value, $context) === false) {
|
2021-12-20 23:58:49 +01:00
|
|
|
$context->inside_general_use = $was_inside_general_use;
|
|
|
|
|
2018-10-04 22:42:40 +02:00
|
|
|
if ($var_id) {
|
2022-01-24 16:34:48 +01:00
|
|
|
if ($array_var_id && isset($context->vars_in_scope[$array_var_id])) {
|
|
|
|
$context->removeDescendents(
|
|
|
|
$array_var_id,
|
|
|
|
$context->vars_in_scope[$array_var_id],
|
|
|
|
$assign_value_type
|
|
|
|
);
|
2018-10-04 22:42:40 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
// if we're not exiting immediately, make everything mixed
|
2021-10-13 18:35:16 +02:00
|
|
|
$context->vars_in_scope[$var_id] = $comment_type ?? Type::getMixed();
|
2018-10-04 22:42:40 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
return false;
|
|
|
|
}
|
2020-09-30 18:28:13 +02:00
|
|
|
|
2021-06-25 15:54:39 +02:00
|
|
|
$context->inside_general_use = $was_inside_general_use;
|
2016-11-01 16:37:58 +01:00
|
|
|
}
|
|
|
|
|
2019-09-26 21:08:05 +02:00
|
|
|
if ($comment_type && $comment_type_location) {
|
2019-11-25 17:44:54 +01:00
|
|
|
$temp_assign_value_type = $assign_value_type
|
2021-09-26 21:49:00 +02:00
|
|
|
?? ($assign_value ? $statements_analyzer->node_data->getType($assign_value) : null);
|
2019-09-19 17:59:43 +02:00
|
|
|
|
|
|
|
if ($codebase->find_unused_variables
|
|
|
|
&& $temp_assign_value_type
|
|
|
|
&& $array_var_id
|
2020-09-30 18:28:13 +02:00
|
|
|
&& (!$not_ignored_docblock_var_ids || isset($not_ignored_docblock_var_ids[$array_var_id]))
|
2019-09-19 17:59:43 +02:00
|
|
|
&& $temp_assign_value_type->getId() === $comment_type->getId()
|
2019-12-01 16:19:36 +01:00
|
|
|
&& !$comment_type->isMixed()
|
2019-09-19 17:59:43 +02:00
|
|
|
) {
|
2019-09-26 21:08:05 +02:00
|
|
|
if ($codebase->alter_code
|
|
|
|
&& isset($statements_analyzer->getProjectAnalyzer()->getIssuesToFix()['UnnecessaryVarAnnotation'])
|
|
|
|
) {
|
|
|
|
FileManipulationBuffer::addVarAnnotationToRemove($comment_type_location);
|
|
|
|
} elseif (IssueBuffer::accepts(
|
2019-09-19 17:59:43 +02:00
|
|
|
new UnnecessaryVarAnnotation(
|
2019-12-01 16:19:36 +01:00
|
|
|
'The @var ' . $comment_type . ' annotation for '
|
|
|
|
. $array_var_id . ' is unnecessary',
|
2019-09-26 21:08:05 +02:00
|
|
|
$comment_type_location
|
2021-08-04 22:07:04 +02:00
|
|
|
),
|
|
|
|
$statements_analyzer->getSuppressedIssues(),
|
|
|
|
true
|
2019-09-19 17:59:43 +02:00
|
|
|
)) {
|
|
|
|
// fall through
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2020-09-28 06:45:02 +02:00
|
|
|
$parent_nodes = $temp_assign_value_type->parent_nodes ?? [];
|
|
|
|
|
2017-10-07 16:22:52 +02:00
|
|
|
$assign_value_type = $comment_type;
|
2020-09-28 06:45:02 +02:00
|
|
|
$assign_value_type->parent_nodes = $parent_nodes;
|
2016-12-17 01:22:30 +01:00
|
|
|
} elseif (!$assign_value_type) {
|
2020-09-28 06:45:02 +02:00
|
|
|
if ($assign_value) {
|
|
|
|
$assign_value_type = $statements_analyzer->node_data->getType($assign_value);
|
|
|
|
}
|
|
|
|
|
|
|
|
if ($assign_value_type) {
|
|
|
|
$assign_value_type = clone $assign_value_type;
|
2020-11-29 17:57:20 +01:00
|
|
|
$assign_value_type->from_property = false;
|
2021-03-30 17:56:08 +02:00
|
|
|
$assign_value_type->from_static_property = false;
|
2020-11-29 15:26:39 +01:00
|
|
|
$assign_value_type->ignore_isset = false;
|
2020-09-28 06:45:02 +02:00
|
|
|
} else {
|
|
|
|
$assign_value_type = Type::getMixed();
|
|
|
|
}
|
2016-11-01 16:37:58 +01:00
|
|
|
}
|
|
|
|
|
2020-10-13 23:28:12 +02:00
|
|
|
if ($statements_analyzer->data_flow_graph instanceof VariableUseGraph
|
2020-09-30 18:28:13 +02:00
|
|
|
&& !$assign_value_type->parent_nodes
|
|
|
|
) {
|
|
|
|
if ($array_var_id) {
|
2020-10-13 22:49:03 +02:00
|
|
|
$assignment_node = DataFlowNode::getForAssignment(
|
2020-09-30 18:28:13 +02:00
|
|
|
$array_var_id,
|
|
|
|
new CodeLocation($statements_analyzer->getSource(), $assign_var)
|
|
|
|
);
|
|
|
|
} else {
|
2020-10-13 22:49:03 +02:00
|
|
|
$assignment_node = new DataFlowNode('unknown-origin', 'unknown origin', null);
|
2020-09-30 18:28:13 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
$assign_value_type->parent_nodes = [
|
|
|
|
$assignment_node->id => $assignment_node
|
|
|
|
];
|
|
|
|
}
|
|
|
|
|
2017-04-02 01:04:49 +02:00
|
|
|
if ($array_var_id && isset($context->vars_in_scope[$array_var_id])) {
|
2019-12-05 19:37:03 +01:00
|
|
|
if ($context->vars_in_scope[$array_var_id]->by_ref) {
|
2020-01-23 20:21:34 +01:00
|
|
|
if ($context->mutation_free) {
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2020-01-23 20:21:34 +01:00
|
|
|
new ImpureByReferenceAssignment(
|
|
|
|
'Variable ' . $array_var_id . ' cannot be assigned to as it is passed by reference',
|
|
|
|
new CodeLocation($statements_analyzer->getSource(), $assign_var)
|
|
|
|
)
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2021-12-03 20:11:20 +01:00
|
|
|
} elseif ($statements_analyzer->getSource() instanceof FunctionLikeAnalyzer
|
2020-08-28 18:42:55 +02:00
|
|
|
&& $statements_analyzer->getSource()->track_mutations
|
2020-08-23 16:28:26 +02:00
|
|
|
) {
|
|
|
|
$statements_analyzer->getSource()->inferred_impure = true;
|
2020-08-25 01:24:27 +02:00
|
|
|
$statements_analyzer->getSource()->inferred_has_mutation = true;
|
2020-01-23 20:21:34 +01:00
|
|
|
}
|
|
|
|
|
2019-12-05 19:37:03 +01:00
|
|
|
$assign_value_type->by_ref = true;
|
|
|
|
}
|
|
|
|
|
2020-01-09 17:51:49 +01:00
|
|
|
// removes dependent vars from $context
|
2017-04-02 21:26:10 +02:00
|
|
|
$context->removeDescendents(
|
|
|
|
$array_var_id,
|
|
|
|
$context->vars_in_scope[$array_var_id],
|
|
|
|
$assign_value_type,
|
2018-11-11 18:01:14 +01:00
|
|
|
$statements_analyzer
|
2017-04-02 21:26:10 +02:00
|
|
|
);
|
2017-10-11 05:01:52 +02:00
|
|
|
} else {
|
2020-05-18 21:13:27 +02:00
|
|
|
$root_var_id = ExpressionIdentifier::getRootVarId(
|
2017-10-11 05:01:52 +02:00
|
|
|
$assign_var,
|
2018-11-11 18:01:14 +01:00
|
|
|
$statements_analyzer->getFQCLN(),
|
|
|
|
$statements_analyzer
|
2017-10-11 05:01:52 +02:00
|
|
|
);
|
|
|
|
|
|
|
|
if ($root_var_id && isset($context->vars_in_scope[$root_var_id])) {
|
|
|
|
$context->removeVarFromConflictingClauses(
|
|
|
|
$root_var_id,
|
|
|
|
$context->vars_in_scope[$root_var_id],
|
2018-11-11 18:01:14 +01:00
|
|
|
$statements_analyzer
|
2017-10-11 05:01:52 +02:00
|
|
|
);
|
|
|
|
}
|
2017-04-02 01:04:49 +02:00
|
|
|
}
|
|
|
|
|
2018-11-11 18:01:14 +01:00
|
|
|
$codebase = $statements_analyzer->getCodebase();
|
2018-01-31 22:08:52 +01:00
|
|
|
|
2018-12-08 19:18:55 +01:00
|
|
|
if ($assign_value_type->hasMixed()) {
|
2020-05-18 21:13:27 +02:00
|
|
|
$root_var_id = ExpressionIdentifier::getRootVarId(
|
2019-02-05 06:36:57 +01:00
|
|
|
$assign_var,
|
|
|
|
$statements_analyzer->getFQCLN(),
|
|
|
|
$statements_analyzer
|
|
|
|
);
|
|
|
|
|
2019-03-23 14:50:47 +01:00
|
|
|
if (!$context->collect_initializations
|
|
|
|
&& !$context->collect_mutations
|
|
|
|
&& $statements_analyzer->getFilePath() === $statements_analyzer->getRootFilePath()
|
|
|
|
&& (!(($parent_source = $statements_analyzer->getSource())
|
2021-12-03 20:11:20 +01:00
|
|
|
instanceof FunctionLikeAnalyzer)
|
|
|
|
|| !$parent_source->getSource() instanceof TraitAnalyzer)
|
2019-03-23 14:50:47 +01:00
|
|
|
) {
|
|
|
|
$codebase->analyzer->incrementMixedCount($statements_analyzer->getFilePath());
|
|
|
|
}
|
2018-01-31 22:08:52 +01:00
|
|
|
|
2019-02-05 06:36:57 +01:00
|
|
|
if (!$assign_var instanceof PhpParser\Node\Expr\PropertyFetch
|
|
|
|
&& !strpos($root_var_id ?? '', '->')
|
2019-08-17 17:22:43 +02:00
|
|
|
&& !$comment_type
|
2021-09-26 22:51:44 +02:00
|
|
|
&& strpos($var_id ?? '', '$_') !== 0
|
2019-02-05 06:36:57 +01:00
|
|
|
) {
|
2021-03-17 06:10:42 +01:00
|
|
|
$origin_locations = [];
|
|
|
|
|
|
|
|
if ($statements_analyzer->data_flow_graph instanceof VariableUseGraph) {
|
|
|
|
foreach ($assign_value_type->parent_nodes as $parent_node) {
|
|
|
|
$origin_locations = array_merge(
|
|
|
|
$origin_locations,
|
|
|
|
$statements_analyzer->data_flow_graph->getOriginLocations($parent_node)
|
|
|
|
);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
$origin_location = count($origin_locations) === 1 ? reset($origin_locations) : null;
|
|
|
|
|
|
|
|
$message = $var_id
|
|
|
|
? 'Unable to determine the type that ' . $var_id . ' is being assigned to'
|
|
|
|
: 'Unable to determine the type of this assignment';
|
|
|
|
|
2021-03-21 02:45:38 +01:00
|
|
|
$issue_location = new CodeLocation($statements_analyzer->getSource(), $assign_var);
|
|
|
|
|
|
|
|
if ($origin_location && $origin_location->getHash() === $issue_location->getHash()) {
|
2021-03-17 06:10:42 +01:00
|
|
|
$origin_location = null;
|
|
|
|
}
|
|
|
|
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2018-04-07 18:13:30 +02:00
|
|
|
new MixedAssignment(
|
2021-03-17 06:10:42 +01:00
|
|
|
$message,
|
2021-03-21 02:45:38 +01:00
|
|
|
$issue_location,
|
2021-03-17 06:10:42 +01:00
|
|
|
$origin_location
|
2018-04-07 18:13:30 +02:00
|
|
|
),
|
2018-11-11 18:01:14 +01:00
|
|
|
$statements_analyzer->getSuppressedIssues()
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2016-12-17 00:56:23 +01:00
|
|
|
}
|
2018-01-31 22:08:52 +01:00
|
|
|
} else {
|
2019-03-23 14:50:47 +01:00
|
|
|
if (!$context->collect_initializations
|
|
|
|
&& !$context->collect_mutations
|
|
|
|
&& $statements_analyzer->getFilePath() === $statements_analyzer->getRootFilePath()
|
|
|
|
&& (!(($parent_source = $statements_analyzer->getSource())
|
2021-12-03 20:11:20 +01:00
|
|
|
instanceof FunctionLikeAnalyzer)
|
|
|
|
|| !$parent_source->getSource() instanceof TraitAnalyzer)
|
2019-03-23 14:50:47 +01:00
|
|
|
) {
|
|
|
|
$codebase->analyzer->incrementNonMixedCount($statements_analyzer->getFilePath());
|
|
|
|
}
|
2018-01-31 22:08:52 +01:00
|
|
|
|
|
|
|
if ($var_id
|
|
|
|
&& isset($context->byref_constraints[$var_id])
|
|
|
|
&& ($outer_constraint_type = $context->byref_constraints[$var_id]->type)
|
2017-02-23 06:25:28 +01:00
|
|
|
) {
|
2020-07-22 01:40:35 +02:00
|
|
|
if (!UnionTypeComparator::isContainedBy(
|
2018-02-01 06:50:01 +01:00
|
|
|
$codebase,
|
2018-01-31 22:08:52 +01:00
|
|
|
$assign_value_type,
|
|
|
|
$outer_constraint_type,
|
|
|
|
$assign_value_type->ignore_nullable_issues,
|
|
|
|
$assign_value_type->ignore_falsable_issues
|
|
|
|
)
|
|
|
|
) {
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2018-01-31 22:08:52 +01:00
|
|
|
new ReferenceConstraintViolation(
|
|
|
|
'Variable ' . $var_id . ' is limited to values of type '
|
|
|
|
. $context->byref_constraints[$var_id]->type
|
2019-02-10 21:01:10 +01:00
|
|
|
. ' because it is passed by reference, '
|
|
|
|
. $assign_value_type->getId() . ' type found',
|
2018-11-11 18:01:14 +01:00
|
|
|
new CodeLocation($statements_analyzer->getSource(), $assign_var)
|
2018-01-31 22:08:52 +01:00
|
|
|
),
|
2018-11-11 18:01:14 +01:00
|
|
|
$statements_analyzer->getSuppressedIssues()
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2017-02-23 06:25:28 +01:00
|
|
|
}
|
|
|
|
}
|
2016-12-17 00:56:23 +01:00
|
|
|
}
|
|
|
|
|
2016-12-12 05:40:46 +01:00
|
|
|
if ($var_id === '$this' && IssueBuffer::accepts(
|
|
|
|
new InvalidScope(
|
|
|
|
'Cannot re-assign ' . $var_id,
|
2018-11-11 18:01:14 +01:00
|
|
|
new CodeLocation($statements_analyzer->getSource(), $assign_var)
|
2016-12-12 05:40:46 +01:00
|
|
|
),
|
2018-11-11 18:01:14 +01:00
|
|
|
$statements_analyzer->getSuppressedIssues()
|
2016-12-12 05:40:46 +01:00
|
|
|
)) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
2020-07-31 17:26:54 +02:00
|
|
|
if (isset($context->protected_var_ids[$var_id])
|
|
|
|
&& $assign_value_type->hasLiteralInt()
|
|
|
|
) {
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2017-12-17 16:58:03 +01:00
|
|
|
new LoopInvalidation(
|
|
|
|
'Variable ' . $var_id . ' has already been assigned in a for/foreach loop',
|
2018-11-11 18:01:14 +01:00
|
|
|
new CodeLocation($statements_analyzer->getSource(), $assign_var)
|
2017-12-17 16:58:03 +01:00
|
|
|
),
|
2018-11-11 18:01:14 +01:00
|
|
|
$statements_analyzer->getSuppressedIssues()
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2017-12-17 16:58:03 +01:00
|
|
|
}
|
|
|
|
|
2020-01-02 20:07:02 +01:00
|
|
|
if ($assign_var instanceof PhpParser\Node\Expr\Variable) {
|
2020-11-30 20:57:35 +01:00
|
|
|
self::analyzeAssignmentToVariable(
|
|
|
|
$statements_analyzer,
|
|
|
|
$codebase,
|
|
|
|
$assign_var,
|
|
|
|
$assign_value,
|
|
|
|
$assign_value_type,
|
|
|
|
$var_id,
|
|
|
|
$context
|
|
|
|
);
|
|
|
|
} elseif ($assign_var instanceof PhpParser\Node\Expr\List_
|
|
|
|
|| $assign_var instanceof PhpParser\Node\Expr\Array_
|
|
|
|
) {
|
|
|
|
self::analyzeDestructuringAssignment(
|
|
|
|
$statements_analyzer,
|
|
|
|
$codebase,
|
|
|
|
$assign_var,
|
|
|
|
$assign_value,
|
|
|
|
$assign_value_type,
|
|
|
|
$context,
|
|
|
|
$doc_comment,
|
|
|
|
$array_var_id,
|
|
|
|
$var_comments,
|
|
|
|
$removed_taints
|
|
|
|
);
|
|
|
|
} elseif ($assign_var instanceof PhpParser\Node\Expr\ArrayDimFetch) {
|
|
|
|
ArrayAssignmentAnalyzer::analyze(
|
|
|
|
$statements_analyzer,
|
|
|
|
$assign_var,
|
|
|
|
$context,
|
|
|
|
$assign_value,
|
|
|
|
$assign_value_type
|
|
|
|
);
|
|
|
|
} elseif ($assign_var instanceof PhpParser\Node\Expr\PropertyFetch) {
|
|
|
|
self::analyzePropertyAssignment(
|
|
|
|
$statements_analyzer,
|
|
|
|
$codebase,
|
|
|
|
$assign_var,
|
|
|
|
$context,
|
|
|
|
$assign_value,
|
|
|
|
$assign_value_type,
|
|
|
|
$var_id
|
|
|
|
);
|
|
|
|
} elseif ($assign_var instanceof PhpParser\Node\Expr\StaticPropertyFetch &&
|
|
|
|
$assign_var->class instanceof PhpParser\Node\Name
|
|
|
|
) {
|
|
|
|
if (ExpressionAnalyzer::analyze($statements_analyzer, $assign_var, $context) === false) {
|
|
|
|
return false;
|
|
|
|
}
|
2020-11-24 20:50:35 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($context->check_classes) {
|
2021-10-11 17:23:21 +02:00
|
|
|
if (StaticPropertyAssignmentAnalyzer::analyze(
|
2020-11-30 20:57:35 +01:00
|
|
|
$statements_analyzer,
|
|
|
|
$assign_var,
|
|
|
|
$assign_value,
|
|
|
|
$assign_value_type,
|
|
|
|
$context
|
2021-10-11 17:23:21 +02:00
|
|
|
) === false) {
|
|
|
|
return false;
|
|
|
|
}
|
2020-11-30 20:57:35 +01:00
|
|
|
}
|
2020-11-24 20:50:35 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($var_id) {
|
|
|
|
$context->vars_possibly_in_scope[$var_id] = true;
|
|
|
|
}
|
|
|
|
}
|
2020-09-30 18:28:13 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($var_id && isset($context->vars_in_scope[$var_id])) {
|
|
|
|
if ($context->vars_in_scope[$var_id]->isVoid()) {
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2020-11-30 20:57:35 +01:00
|
|
|
new AssignmentToVoid(
|
|
|
|
'Cannot assign ' . $var_id . ' to type void',
|
|
|
|
new CodeLocation($statements_analyzer->getSource(), $assign_var)
|
|
|
|
),
|
|
|
|
$statements_analyzer->getSuppressedIssues()
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2020-09-30 18:28:13 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$context->vars_in_scope[$var_id] = Type::getNull();
|
2020-09-30 18:28:13 +02:00
|
|
|
|
2021-12-20 23:51:17 +01:00
|
|
|
$context->inside_assignment = $was_in_assignment;
|
2020-11-30 20:57:35 +01:00
|
|
|
|
|
|
|
return $context->vars_in_scope[$var_id];
|
2017-02-08 00:09:12 +01:00
|
|
|
}
|
2020-11-30 20:57:35 +01:00
|
|
|
|
|
|
|
if ($context->vars_in_scope[$var_id]->isNever()) {
|
2019-10-15 19:55:30 +02:00
|
|
|
if (IssueBuffer::accepts(
|
2020-11-30 20:57:35 +01:00
|
|
|
new NoValue(
|
|
|
|
'This function or method call never returns output',
|
2019-10-15 19:55:30 +02:00
|
|
|
new CodeLocation($statements_analyzer->getSource(), $assign_var)
|
|
|
|
),
|
|
|
|
$statements_analyzer->getSuppressedIssues()
|
|
|
|
)) {
|
2020-11-30 20:57:35 +01:00
|
|
|
return false;
|
2019-10-15 19:55:30 +02:00
|
|
|
}
|
|
|
|
|
2021-10-13 19:37:47 +02:00
|
|
|
$context->vars_in_scope[$var_id] = Type::getNever();
|
2019-11-25 21:38:54 +01:00
|
|
|
|
2021-12-20 23:51:17 +01:00
|
|
|
$context->inside_assignment = $was_in_assignment;
|
2016-11-01 16:37:58 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
return $context->vars_in_scope[$var_id];
|
|
|
|
}
|
2017-01-02 21:31:18 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($statements_analyzer->data_flow_graph) {
|
|
|
|
$data_flow_graph = $statements_analyzer->data_flow_graph;
|
2016-11-02 07:29:00 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($context->vars_in_scope[$var_id]->parent_nodes) {
|
|
|
|
$context->vars_in_scope[$var_id] = clone $context->vars_in_scope[$var_id];
|
2017-11-28 06:46:41 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($data_flow_graph instanceof TaintFlowGraph
|
2021-12-03 21:07:25 +01:00
|
|
|
&& in_array('TaintedInput', $statements_analyzer->getSuppressedIssues())
|
2020-11-30 20:57:35 +01:00
|
|
|
) {
|
|
|
|
$context->vars_in_scope[$var_id]->parent_nodes = [];
|
|
|
|
} else {
|
|
|
|
$var_location = new CodeLocation($statements_analyzer->getSource(), $assign_var);
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2021-03-20 03:41:41 +01:00
|
|
|
$event = new AddRemoveTaintsEvent($assign_var, $context, $statements_analyzer, $codebase);
|
|
|
|
|
|
|
|
$added_taints = $codebase->config->eventDispatcher->dispatchAddTaints($event);
|
2021-12-03 21:07:25 +01:00
|
|
|
$removed_taints = array_merge(
|
2021-03-20 03:41:41 +01:00
|
|
|
$removed_taints,
|
|
|
|
$codebase->config->eventDispatcher->dispatchRemoveTaints($event)
|
|
|
|
);
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
self::taintAssignment(
|
|
|
|
$context->vars_in_scope[$var_id],
|
|
|
|
$data_flow_graph,
|
|
|
|
$var_id,
|
|
|
|
$var_location,
|
2021-03-20 03:41:41 +01:00
|
|
|
$removed_taints,
|
|
|
|
$added_taints
|
2020-11-30 20:57:35 +01:00
|
|
|
);
|
|
|
|
}
|
2020-09-28 06:45:02 +02:00
|
|
|
}
|
2020-11-30 20:57:35 +01:00
|
|
|
}
|
|
|
|
}
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2021-12-20 23:51:17 +01:00
|
|
|
$context->inside_assignment = $was_in_assignment;
|
2019-10-15 19:55:30 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
return $assign_value_type;
|
|
|
|
}
|
2020-05-08 20:36:06 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
public static function assignTypeFromVarDocblock(
|
|
|
|
StatementsAnalyzer $statements_analyzer,
|
|
|
|
PhpParser\Node $stmt,
|
|
|
|
VarDocblockComment $var_comment,
|
|
|
|
Context $context,
|
|
|
|
?string $var_id = null,
|
2021-12-13 16:28:14 +01:00
|
|
|
?Union &$comment_type = null,
|
2021-12-13 17:32:49 +01:00
|
|
|
?DocblockTypeLocation &$comment_type_location = null,
|
2020-11-30 20:57:35 +01:00
|
|
|
array $not_ignored_docblock_var_ids = []
|
2021-12-05 18:51:26 +01:00
|
|
|
): void {
|
2020-11-30 20:57:35 +01:00
|
|
|
if (!$var_comment->type) {
|
|
|
|
return;
|
|
|
|
}
|
2020-05-08 20:36:06 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$codebase = $statements_analyzer->getCodebase();
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
try {
|
2021-12-03 20:11:20 +01:00
|
|
|
$var_comment_type = TypeExpander::expandUnion(
|
2020-11-30 20:57:35 +01:00
|
|
|
$codebase,
|
|
|
|
$var_comment->type,
|
|
|
|
$context->self,
|
|
|
|
$context->self,
|
|
|
|
$statements_analyzer->getParentFQCLN()
|
|
|
|
);
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$var_comment_type->setFromDocblock();
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$var_comment_type->check(
|
|
|
|
$statements_analyzer,
|
|
|
|
new CodeLocation($statements_analyzer->getSource(), $stmt),
|
|
|
|
$statements_analyzer->getSuppressedIssues(),
|
|
|
|
[],
|
|
|
|
false,
|
|
|
|
false,
|
|
|
|
false,
|
|
|
|
$context->calling_method_id
|
|
|
|
);
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$type_location = null;
|
2020-05-08 20:36:06 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($var_comment->type_start
|
|
|
|
&& $var_comment->type_end
|
|
|
|
&& $var_comment->line_number
|
|
|
|
) {
|
2021-12-13 17:32:49 +01:00
|
|
|
$type_location = new DocblockTypeLocation(
|
2020-11-30 20:57:35 +01:00
|
|
|
$statements_analyzer,
|
|
|
|
$var_comment->type_start,
|
|
|
|
$var_comment->type_end,
|
|
|
|
$var_comment->line_number
|
|
|
|
);
|
2020-05-08 20:36:06 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($codebase->alter_code) {
|
|
|
|
$codebase->classlikes->handleDocblockTypeInMigration(
|
|
|
|
$codebase,
|
|
|
|
$statements_analyzer,
|
|
|
|
$var_comment_type,
|
|
|
|
$type_location,
|
|
|
|
$context->calling_method_id
|
|
|
|
);
|
|
|
|
}
|
|
|
|
}
|
2020-05-08 20:36:06 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if (!$var_comment->var_id || $var_comment->var_id === $var_id) {
|
|
|
|
$comment_type = $var_comment_type;
|
|
|
|
$comment_type_location = $type_location;
|
|
|
|
return;
|
|
|
|
}
|
2018-11-30 19:21:08 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$project_analyzer = $statements_analyzer->getProjectAnalyzer();
|
2020-05-03 02:36:41 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($codebase->find_unused_variables
|
|
|
|
&& $type_location
|
|
|
|
&& (!$not_ignored_docblock_var_ids || isset($not_ignored_docblock_var_ids[$var_comment->var_id]))
|
|
|
|
&& isset($context->vars_in_scope[$var_comment->var_id])
|
|
|
|
&& $context->vars_in_scope[$var_comment->var_id]->getId() === $var_comment_type->getId()
|
|
|
|
&& !$var_comment_type->isMixed()
|
|
|
|
) {
|
|
|
|
if ($codebase->alter_code
|
|
|
|
&& isset($project_analyzer->getIssuesToFix()['UnnecessaryVarAnnotation'])
|
|
|
|
) {
|
|
|
|
FileManipulationBuffer::addVarAnnotationToRemove($type_location);
|
|
|
|
} elseif (IssueBuffer::accepts(
|
|
|
|
new UnnecessaryVarAnnotation(
|
|
|
|
'The @var ' . $var_comment_type . ' annotation for '
|
|
|
|
. $var_comment->var_id . ' is unnecessary',
|
|
|
|
$type_location
|
|
|
|
),
|
|
|
|
$statements_analyzer->getSuppressedIssues(),
|
|
|
|
true
|
|
|
|
)) {
|
|
|
|
// fall through
|
|
|
|
}
|
|
|
|
}
|
2020-07-05 15:12:00 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$parent_nodes = $context->vars_in_scope[$var_comment->var_id]->parent_nodes ?? [];
|
|
|
|
$var_comment_type->parent_nodes = $parent_nodes;
|
2018-11-30 19:21:08 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$context->vars_in_scope[$var_comment->var_id] = $var_comment_type;
|
2021-12-03 21:40:18 +01:00
|
|
|
} catch (UnexpectedValueException $e) {
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2020-11-30 20:57:35 +01:00
|
|
|
new InvalidDocblock(
|
2020-12-02 00:26:15 +01:00
|
|
|
$e->getMessage(),
|
2020-11-30 20:57:35 +01:00
|
|
|
new CodeLocation($statements_analyzer->getSource(), $stmt)
|
|
|
|
)
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2020-11-30 20:57:35 +01:00
|
|
|
}
|
|
|
|
}
|
2017-01-25 08:11:24 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
/**
|
|
|
|
* @param array<string> $removed_taints
|
2021-03-20 03:41:41 +01:00
|
|
|
* @param array<string> $added_taints
|
2020-11-30 20:57:35 +01:00
|
|
|
*/
|
|
|
|
private static function taintAssignment(
|
2021-12-13 16:28:14 +01:00
|
|
|
Union $type,
|
2021-12-03 20:11:20 +01:00
|
|
|
DataFlowGraph $data_flow_graph,
|
2020-11-30 20:57:35 +01:00
|
|
|
string $var_id,
|
|
|
|
CodeLocation $var_location,
|
2021-03-20 03:41:41 +01:00
|
|
|
array $removed_taints,
|
|
|
|
array $added_taints
|
2021-12-05 18:51:26 +01:00
|
|
|
): void {
|
2020-11-30 20:57:35 +01:00
|
|
|
$parent_nodes = $type->parent_nodes;
|
2016-11-01 19:32:19 +01:00
|
|
|
|
2021-12-03 21:07:25 +01:00
|
|
|
$unspecialized_parent_nodes = array_filter(
|
2020-11-30 20:57:35 +01:00
|
|
|
$parent_nodes,
|
2022-01-05 23:45:11 +01:00
|
|
|
fn($parent_node) => !$parent_node->specialization_key
|
2020-11-30 20:57:35 +01:00
|
|
|
);
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2021-12-03 21:07:25 +01:00
|
|
|
$specialized_parent_nodes = array_filter(
|
2020-11-30 20:57:35 +01:00
|
|
|
$parent_nodes,
|
2022-01-05 23:45:11 +01:00
|
|
|
fn($parent_node) => (bool) $parent_node->specialization_key
|
2020-11-30 20:57:35 +01:00
|
|
|
);
|
2020-05-03 02:36:41 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$new_parent_nodes = [];
|
2018-03-21 13:48:30 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
foreach ($specialized_parent_nodes as $parent_node) {
|
|
|
|
$new_parent_node = DataFlowNode::getForAssignment($var_id, $var_location);
|
|
|
|
$new_parent_node->specialization_key = $parent_node->specialization_key;
|
2019-10-09 00:44:46 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$data_flow_graph->addNode($new_parent_node);
|
|
|
|
$new_parent_nodes += [$new_parent_node->id => $new_parent_node];
|
|
|
|
$data_flow_graph->addPath(
|
|
|
|
$parent_node,
|
|
|
|
$new_parent_node,
|
|
|
|
'=',
|
2021-03-20 03:41:41 +01:00
|
|
|
$added_taints,
|
2020-11-30 20:57:35 +01:00
|
|
|
$removed_taints
|
|
|
|
);
|
|
|
|
}
|
2017-12-19 05:13:18 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($unspecialized_parent_nodes) {
|
|
|
|
$new_parent_node = DataFlowNode::getForAssignment($var_id, $var_location);
|
|
|
|
$data_flow_graph->addNode($new_parent_node);
|
|
|
|
$new_parent_nodes += [$new_parent_node->id => $new_parent_node];
|
2016-11-01 16:37:58 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
foreach ($unspecialized_parent_nodes as $parent_node) {
|
|
|
|
$data_flow_graph->addPath(
|
|
|
|
$parent_node,
|
|
|
|
$new_parent_node,
|
|
|
|
'=',
|
2021-03-20 03:41:41 +01:00
|
|
|
$added_taints,
|
2020-11-30 20:57:35 +01:00
|
|
|
$removed_taints
|
|
|
|
);
|
|
|
|
}
|
|
|
|
}
|
2018-01-28 23:28:34 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$type->parent_nodes = $new_parent_nodes;
|
|
|
|
}
|
2018-01-28 23:28:34 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
public static function analyzeAssignmentOperation(
|
|
|
|
StatementsAnalyzer $statements_analyzer,
|
|
|
|
PhpParser\Node\Expr\AssignOp $stmt,
|
|
|
|
Context $context
|
|
|
|
): bool {
|
2021-06-04 20:39:38 +02:00
|
|
|
if ($stmt instanceof PhpParser\Node\Expr\AssignOp\BitwiseAnd) {
|
|
|
|
$operation = new VirtualBitwiseAnd($stmt->var, $stmt->expr, $stmt->getAttributes());
|
|
|
|
} elseif ($stmt instanceof PhpParser\Node\Expr\AssignOp\BitwiseOr) {
|
|
|
|
$operation = new VirtualBitwiseOr($stmt->var, $stmt->expr, $stmt->getAttributes());
|
|
|
|
} elseif ($stmt instanceof PhpParser\Node\Expr\AssignOp\BitwiseXor) {
|
|
|
|
$operation = new VirtualBitwiseXor($stmt->var, $stmt->expr, $stmt->getAttributes());
|
|
|
|
} elseif ($stmt instanceof PhpParser\Node\Expr\AssignOp\Coalesce) {
|
|
|
|
$operation = new VirtualCoalesce($stmt->var, $stmt->expr, $stmt->getAttributes());
|
2020-11-30 20:57:35 +01:00
|
|
|
} elseif ($stmt instanceof PhpParser\Node\Expr\AssignOp\Concat) {
|
2021-06-04 20:39:38 +02:00
|
|
|
$operation = new VirtualConcat($stmt->var, $stmt->expr, $stmt->getAttributes());
|
|
|
|
} elseif ($stmt instanceof PhpParser\Node\Expr\AssignOp\Div) {
|
|
|
|
$operation = new VirtualDiv($stmt->var, $stmt->expr, $stmt->getAttributes());
|
|
|
|
} elseif ($stmt instanceof PhpParser\Node\Expr\AssignOp\Minus) {
|
|
|
|
$operation = new VirtualMinus($stmt->var, $stmt->expr, $stmt->getAttributes());
|
|
|
|
} elseif ($stmt instanceof PhpParser\Node\Expr\AssignOp\Mod) {
|
|
|
|
$operation = new VirtualMod($stmt->var, $stmt->expr, $stmt->getAttributes());
|
|
|
|
} elseif ($stmt instanceof PhpParser\Node\Expr\AssignOp\Mul) {
|
|
|
|
$operation = new VirtualMul($stmt->var, $stmt->expr, $stmt->getAttributes());
|
|
|
|
} elseif ($stmt instanceof PhpParser\Node\Expr\AssignOp\Plus) {
|
|
|
|
$operation = new VirtualPlus($stmt->var, $stmt->expr, $stmt->getAttributes());
|
|
|
|
} elseif ($stmt instanceof PhpParser\Node\Expr\AssignOp\Pow) {
|
|
|
|
$operation = new VirtualPow($stmt->var, $stmt->expr, $stmt->getAttributes());
|
|
|
|
} elseif ($stmt instanceof PhpParser\Node\Expr\AssignOp\ShiftLeft) {
|
|
|
|
$operation = new VirtualShiftLeft($stmt->var, $stmt->expr, $stmt->getAttributes());
|
|
|
|
} elseif ($stmt instanceof PhpParser\Node\Expr\AssignOp\ShiftRight) {
|
|
|
|
$operation = new VirtualShiftRight($stmt->var, $stmt->expr, $stmt->getAttributes());
|
|
|
|
} else {
|
2021-12-03 21:40:18 +01:00
|
|
|
throw new UnexpectedValueException('Unknown assign op');
|
2019-08-13 19:15:23 +02:00
|
|
|
}
|
|
|
|
|
2021-06-04 20:39:38 +02:00
|
|
|
$fake_assignment = new VirtualAssign(
|
|
|
|
$stmt->var,
|
|
|
|
$operation,
|
|
|
|
$stmt->getAttributes()
|
|
|
|
);
|
2020-07-26 19:23:21 +02:00
|
|
|
|
2021-06-04 20:39:38 +02:00
|
|
|
$old_node_data = $statements_analyzer->node_data;
|
2020-07-26 19:23:21 +02:00
|
|
|
|
2021-06-04 20:39:38 +02:00
|
|
|
$statements_analyzer->node_data = clone $statements_analyzer->node_data;
|
2020-07-26 19:23:21 +02:00
|
|
|
|
2021-06-04 20:39:38 +02:00
|
|
|
if (ExpressionAnalyzer::analyze($statements_analyzer, $fake_assignment, $context) === false) {
|
|
|
|
return false;
|
2020-07-26 19:23:21 +02:00
|
|
|
}
|
2020-11-19 07:38:20 +01:00
|
|
|
|
2021-06-04 20:39:38 +02:00
|
|
|
$old_node_data->setType(
|
|
|
|
$stmt,
|
2021-10-13 18:35:16 +02:00
|
|
|
$statements_analyzer->node_data->getType($operation) ?? Type::getMixed()
|
2021-06-04 20:39:38 +02:00
|
|
|
);
|
2020-11-19 07:38:20 +01:00
|
|
|
|
2021-06-04 20:39:38 +02:00
|
|
|
$statements_analyzer->node_data = $old_node_data;
|
2020-11-19 07:38:20 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
return true;
|
2020-11-19 07:38:20 +01:00
|
|
|
}
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
public static function analyzeAssignmentRef(
|
2018-11-11 18:01:14 +01:00
|
|
|
StatementsAnalyzer $statements_analyzer,
|
2020-11-30 20:57:35 +01:00
|
|
|
PhpParser\Node\Expr\AssignRef $stmt,
|
2016-11-01 16:37:58 +01:00
|
|
|
Context $context
|
2021-12-05 18:51:26 +01:00
|
|
|
): bool {
|
2020-11-30 20:57:35 +01:00
|
|
|
$assignment_type = self::analyze(
|
|
|
|
$statements_analyzer,
|
2020-03-09 19:09:41 +01:00
|
|
|
$stmt->var,
|
2020-11-30 20:57:35 +01:00
|
|
|
$stmt->expr,
|
|
|
|
null,
|
|
|
|
$context,
|
|
|
|
$stmt->getDocComment()
|
2020-03-09 19:09:41 +01:00
|
|
|
);
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($assignment_type === false) {
|
|
|
|
return false;
|
|
|
|
}
|
2020-03-09 19:09:41 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$assignment_type->by_ref = true;
|
2020-03-09 19:09:41 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$lhs_var_id = ExpressionIdentifier::getArrayVarId(
|
|
|
|
$stmt->var,
|
|
|
|
$statements_analyzer->getFQCLN(),
|
|
|
|
$statements_analyzer
|
|
|
|
);
|
2020-03-09 19:09:41 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$rhs_var_id = ExpressionIdentifier::getArrayVarId(
|
|
|
|
$stmt->expr,
|
|
|
|
$statements_analyzer->getFQCLN(),
|
|
|
|
$statements_analyzer
|
|
|
|
);
|
2020-03-09 19:09:41 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($lhs_var_id) {
|
|
|
|
$context->vars_in_scope[$lhs_var_id] = $assignment_type;
|
|
|
|
$context->hasVariable($lhs_var_id);
|
2021-12-03 20:11:20 +01:00
|
|
|
$context->byref_constraints[$lhs_var_id] = new ReferenceConstraint();
|
2020-03-09 19:09:41 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($statements_analyzer->data_flow_graph instanceof VariableUseGraph) {
|
|
|
|
foreach ($context->vars_in_scope[$lhs_var_id]->parent_nodes as $parent_node) {
|
|
|
|
$statements_analyzer->data_flow_graph->addPath(
|
|
|
|
$parent_node,
|
|
|
|
new DataFlowNode('variable-use', 'variable use', null),
|
|
|
|
'variable-use'
|
|
|
|
);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if ($rhs_var_id) {
|
|
|
|
if (!isset($context->vars_in_scope[$rhs_var_id])) {
|
|
|
|
$context->vars_in_scope[$rhs_var_id] = Type::getMixed();
|
2020-03-09 19:09:41 +01:00
|
|
|
}
|
|
|
|
|
2021-12-03 20:11:20 +01:00
|
|
|
$context->byref_constraints[$rhs_var_id] = new ReferenceConstraint();
|
2020-03-09 19:09:41 +01:00
|
|
|
}
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($statements_analyzer->data_flow_graph
|
|
|
|
&& $lhs_var_id
|
|
|
|
&& $rhs_var_id
|
|
|
|
&& isset($context->vars_in_scope[$rhs_var_id])
|
|
|
|
) {
|
|
|
|
$rhs_type = $context->vars_in_scope[$rhs_var_id];
|
2019-08-13 19:15:23 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$data_flow_graph = $statements_analyzer->data_flow_graph;
|
2019-08-13 19:15:23 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$lhs_location = new CodeLocation($statements_analyzer->getSource(), $stmt->var);
|
2020-09-30 18:28:13 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$lhs_node = DataFlowNode::getForAssignment($lhs_var_id, $lhs_location);
|
2020-09-30 18:28:13 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
foreach ($rhs_type->parent_nodes as $byref_destination_node) {
|
|
|
|
$data_flow_graph->addPath($lhs_node, $byref_destination_node, '=');
|
|
|
|
}
|
2016-11-01 16:37:58 +01:00
|
|
|
}
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
return true;
|
|
|
|
}
|
2020-09-30 18:28:13 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
public static function assignByRefParam(
|
|
|
|
StatementsAnalyzer $statements_analyzer,
|
|
|
|
PhpParser\Node\Expr $stmt,
|
2021-12-13 16:28:14 +01:00
|
|
|
Union $by_ref_type,
|
|
|
|
Union $by_ref_out_type,
|
2020-11-30 20:57:35 +01:00
|
|
|
Context $context,
|
|
|
|
bool $constrain_type = true,
|
|
|
|
bool $prevent_null = false
|
|
|
|
): void {
|
|
|
|
if ($stmt instanceof PhpParser\Node\Expr\PropertyFetch && $stmt->name instanceof PhpParser\Node\Identifier) {
|
|
|
|
$prop_name = $stmt->name->name;
|
2020-09-30 18:28:13 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
InstancePropertyAssignmentAnalyzer::analyze(
|
|
|
|
$statements_analyzer,
|
|
|
|
$stmt,
|
|
|
|
$prop_name,
|
|
|
|
null,
|
|
|
|
$by_ref_out_type,
|
|
|
|
$context
|
|
|
|
);
|
|
|
|
|
|
|
|
return;
|
2016-11-13 21:39:16 +01:00
|
|
|
}
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$var_id = ExpressionIdentifier::getVarId(
|
|
|
|
$stmt,
|
|
|
|
$statements_analyzer->getFQCLN(),
|
|
|
|
$statements_analyzer
|
|
|
|
);
|
2020-09-30 18:28:13 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($var_id) {
|
|
|
|
$var_not_in_scope = false;
|
2020-07-24 22:01:45 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if (!$by_ref_type->hasMixed() && $constrain_type) {
|
2021-12-03 20:11:20 +01:00
|
|
|
$context->byref_constraints[$var_id] = new ReferenceConstraint($by_ref_type);
|
2020-07-24 22:01:45 +02:00
|
|
|
}
|
2019-07-18 07:31:48 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if (!$context->hasVariable($var_id)) {
|
|
|
|
$context->vars_possibly_in_scope[$var_id] = true;
|
2020-03-28 21:30:56 +01:00
|
|
|
|
2020-12-14 22:57:48 +01:00
|
|
|
$location = new CodeLocation($statements_analyzer->getSource(), $stmt);
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if (!$statements_analyzer->hasVariable($var_id)) {
|
|
|
|
if ($constrain_type
|
|
|
|
&& $prevent_null
|
|
|
|
&& !$by_ref_type->isMixed()
|
|
|
|
&& !$by_ref_type->isNullable()
|
|
|
|
&& !strpos($var_id, '->')
|
|
|
|
&& !strpos($var_id, '::')
|
|
|
|
) {
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2021-12-03 20:11:20 +01:00
|
|
|
new NullReference(
|
2020-11-30 20:57:35 +01:00
|
|
|
'Not expecting null argument passed by reference',
|
2020-12-14 22:57:48 +01:00
|
|
|
$location
|
2020-11-30 20:57:35 +01:00
|
|
|
),
|
|
|
|
$statements_analyzer->getSuppressedIssues()
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2020-11-30 20:57:35 +01:00
|
|
|
}
|
2019-12-22 13:36:16 +01:00
|
|
|
|
2020-12-14 22:57:48 +01:00
|
|
|
if ($stmt instanceof PhpParser\Node\Expr\Variable) {
|
|
|
|
$statements_analyzer->registerVariable(
|
|
|
|
$var_id,
|
|
|
|
$location,
|
|
|
|
$context->branch_point
|
|
|
|
);
|
|
|
|
|
|
|
|
if ($statements_analyzer->data_flow_graph instanceof VariableUseGraph) {
|
|
|
|
$byref_node = DataFlowNode::getForAssignment($var_id, $location);
|
|
|
|
|
|
|
|
$statements_analyzer->data_flow_graph->addPath(
|
|
|
|
$byref_node,
|
|
|
|
new DataFlowNode('variable-use', 'variable use', null),
|
|
|
|
'variable-use'
|
|
|
|
);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$context->hasVariable($var_id);
|
|
|
|
} else {
|
|
|
|
$var_not_in_scope = true;
|
|
|
|
}
|
|
|
|
} elseif ($var_id === '$this') {
|
|
|
|
// don't allow changing $this
|
|
|
|
return;
|
|
|
|
} else {
|
|
|
|
$existing_type = $context->vars_in_scope[$var_id];
|
|
|
|
|
|
|
|
// removes dependent vars from $context
|
|
|
|
$context->removeDescendents(
|
|
|
|
$var_id,
|
|
|
|
$existing_type,
|
|
|
|
$by_ref_type,
|
|
|
|
$statements_analyzer
|
2019-12-22 13:36:16 +01:00
|
|
|
);
|
2018-06-17 05:40:25 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$by_ref_out_type = clone $by_ref_out_type;
|
2019-11-25 17:44:54 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($existing_type->parent_nodes) {
|
|
|
|
$by_ref_out_type->parent_nodes += $existing_type->parent_nodes;
|
|
|
|
}
|
2016-11-13 21:39:16 +01:00
|
|
|
|
2022-01-05 23:14:54 +01:00
|
|
|
if (!$existing_type->isEmptyArray()) {
|
2020-11-30 20:57:35 +01:00
|
|
|
$context->vars_in_scope[$var_id] = $by_ref_out_type;
|
2016-11-13 21:39:16 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if (!($stmt_type = $statements_analyzer->node_data->getType($stmt))
|
2021-12-17 00:42:14 +01:00
|
|
|
|| $stmt_type->isNever()
|
2020-11-30 20:57:35 +01:00
|
|
|
) {
|
|
|
|
$statements_analyzer->node_data->setType($stmt, clone $by_ref_type);
|
|
|
|
}
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
return;
|
|
|
|
}
|
2020-09-28 06:45:02 +02:00
|
|
|
}
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$context->assigned_var_ids[$var_id] = (int) $stmt->getAttribute('startFilePos');
|
|
|
|
|
|
|
|
$context->vars_in_scope[$var_id] = $by_ref_out_type;
|
|
|
|
|
|
|
|
$stmt_type = $statements_analyzer->node_data->getType($stmt);
|
|
|
|
|
2021-12-17 00:42:14 +01:00
|
|
|
if (!$stmt_type || $stmt_type->isNever()) {
|
2020-11-30 20:57:35 +01:00
|
|
|
$statements_analyzer->node_data->setType($stmt, clone $by_ref_type);
|
2020-09-28 06:45:02 +02:00
|
|
|
}
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($var_not_in_scope && $stmt instanceof PhpParser\Node\Expr\Variable) {
|
|
|
|
$statements_analyzer->registerPossiblyUndefinedVariable($var_id, $stmt);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
2020-09-30 18:28:13 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
/**
|
|
|
|
* @param PhpParser\Node\Expr\List_|PhpParser\Node\Expr\Array_ $assign_var
|
|
|
|
* @param list<VarDocblockComment> $var_comments
|
|
|
|
* @param list<string> $removed_taints
|
|
|
|
*/
|
|
|
|
private static function analyzeDestructuringAssignment(
|
|
|
|
StatementsAnalyzer $statements_analyzer,
|
2021-12-03 20:11:20 +01:00
|
|
|
Codebase $codebase,
|
2020-11-30 20:57:35 +01:00
|
|
|
PhpParser\Node\Expr $assign_var,
|
|
|
|
?PhpParser\Node\Expr $assign_value,
|
2021-12-13 16:28:14 +01:00
|
|
|
Union $assign_value_type,
|
2020-11-30 20:57:35 +01:00
|
|
|
Context $context,
|
|
|
|
?PhpParser\Comment\Doc $doc_comment,
|
|
|
|
?string $array_var_id,
|
|
|
|
array $var_comments,
|
|
|
|
array $removed_taints
|
|
|
|
): void {
|
|
|
|
if (!$assign_value_type->hasArray()
|
|
|
|
&& !$assign_value_type->isMixed()
|
|
|
|
&& !$assign_value_type->hasArrayAccessInterface($codebase)
|
|
|
|
) {
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2020-11-30 20:57:35 +01:00
|
|
|
new InvalidArrayOffset(
|
|
|
|
'Cannot destructure non-array of type ' . $assign_value_type->getId(),
|
|
|
|
new CodeLocation($statements_analyzer->getSource(), $assign_var)
|
|
|
|
),
|
|
|
|
$statements_analyzer->getSuppressedIssues()
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2020-11-30 20:57:35 +01:00
|
|
|
}
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$can_be_empty = true;
|
2016-12-24 03:30:32 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
foreach ($assign_var->items as $offset => $assign_var_item) {
|
|
|
|
// $assign_var_item can be null e.g. list($a, ) = ['a', 'b']
|
|
|
|
if (!$assign_var_item) {
|
|
|
|
continue;
|
|
|
|
}
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$var = $assign_var_item->value;
|
|
|
|
|
|
|
|
if ($assign_value instanceof PhpParser\Node\Expr\Array_
|
|
|
|
&& $statements_analyzer->node_data->getType($assign_var_item->value)
|
|
|
|
) {
|
|
|
|
self::analyze(
|
2020-09-30 18:28:13 +02:00
|
|
|
$statements_analyzer,
|
2020-11-30 20:57:35 +01:00
|
|
|
$var,
|
|
|
|
$assign_var_item->value,
|
|
|
|
null,
|
|
|
|
$context,
|
|
|
|
$doc_comment
|
2020-09-30 18:28:13 +02:00
|
|
|
);
|
2020-11-30 20:57:35 +01:00
|
|
|
|
|
|
|
continue;
|
2020-09-30 18:28:13 +02:00
|
|
|
}
|
2019-02-18 18:53:55 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$offset_value = null;
|
|
|
|
|
|
|
|
if (!$assign_var_item->key) {
|
|
|
|
$offset_value = $offset;
|
|
|
|
} elseif ($assign_var_item->key instanceof PhpParser\Node\Scalar\String_) {
|
|
|
|
$offset_value = $assign_var_item->key->value;
|
2020-09-28 06:45:02 +02:00
|
|
|
}
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$list_var_id = ExpressionIdentifier::getArrayVarId(
|
|
|
|
$var,
|
|
|
|
$statements_analyzer->getFQCLN(),
|
|
|
|
$statements_analyzer
|
2020-09-28 06:45:02 +02:00
|
|
|
);
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$new_assign_type = null;
|
|
|
|
$assigned = false;
|
|
|
|
$has_null = false;
|
|
|
|
|
|
|
|
foreach ($assign_value_type->getAtomicTypes() as $assign_value_atomic_type) {
|
2021-12-13 04:45:57 +01:00
|
|
|
if ($assign_value_atomic_type instanceof TKeyedArray
|
2020-11-30 20:57:35 +01:00
|
|
|
&& !$assign_var_item->key
|
2020-09-30 18:28:13 +02:00
|
|
|
) {
|
2020-11-30 20:57:35 +01:00
|
|
|
// if object-like has int offsets
|
|
|
|
if ($offset_value !== null
|
|
|
|
&& isset($assign_value_atomic_type->properties[$offset_value])
|
|
|
|
) {
|
|
|
|
$value_type = $assign_value_atomic_type->properties[$offset_value];
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($value_type->possibly_undefined) {
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2020-11-30 20:57:35 +01:00
|
|
|
new PossiblyUndefinedArrayOffset(
|
|
|
|
'Possibly undefined array key',
|
|
|
|
new CodeLocation($statements_analyzer->getSource(), $var)
|
|
|
|
),
|
|
|
|
$statements_analyzer->getSuppressedIssues()
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$value_type = clone $value_type;
|
|
|
|
$value_type->possibly_undefined = false;
|
|
|
|
}
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($statements_analyzer->data_flow_graph
|
|
|
|
&& $assign_value
|
|
|
|
) {
|
|
|
|
$assign_value_id = ExpressionIdentifier::getArrayVarId(
|
|
|
|
$assign_value,
|
|
|
|
$statements_analyzer->getFQCLN(),
|
|
|
|
$statements_analyzer
|
|
|
|
);
|
2020-11-17 21:30:46 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$keyed_array_var_id = null;
|
|
|
|
|
|
|
|
if ($assign_value_id) {
|
|
|
|
$keyed_array_var_id = $assign_value_id . '[\'' . $offset_value . '\']';
|
|
|
|
}
|
|
|
|
|
|
|
|
ArrayFetchAnalyzer::taintArrayFetch(
|
|
|
|
$statements_analyzer,
|
|
|
|
$assign_value,
|
|
|
|
$keyed_array_var_id,
|
|
|
|
$value_type,
|
|
|
|
Type::getString((string)$offset_value)
|
2020-11-17 21:30:46 +01:00
|
|
|
);
|
|
|
|
}
|
2020-11-30 20:57:35 +01:00
|
|
|
|
|
|
|
self::analyze(
|
|
|
|
$statements_analyzer,
|
|
|
|
$var,
|
|
|
|
null,
|
|
|
|
$value_type,
|
|
|
|
$context,
|
|
|
|
$doc_comment
|
|
|
|
);
|
|
|
|
|
|
|
|
$assigned = true;
|
|
|
|
|
|
|
|
continue;
|
2020-09-28 06:45:02 +02:00
|
|
|
}
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($assign_value_atomic_type->sealed) {
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2020-11-30 20:57:35 +01:00
|
|
|
new InvalidArrayOffset(
|
|
|
|
'Cannot access value with offset ' . $offset,
|
|
|
|
new CodeLocation($statements_analyzer->getSource(), $var)
|
|
|
|
),
|
|
|
|
$statements_analyzer->getSuppressedIssues()
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2020-11-30 20:57:35 +01:00
|
|
|
}
|
2020-09-28 06:45:02 +02:00
|
|
|
}
|
2016-11-13 21:39:16 +01:00
|
|
|
|
2021-12-13 04:45:57 +01:00
|
|
|
if ($assign_value_atomic_type instanceof TMixed) {
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2020-11-30 20:57:35 +01:00
|
|
|
new MixedArrayAccess(
|
|
|
|
'Cannot access array value on mixed variable ' . $array_var_id,
|
|
|
|
new CodeLocation($statements_analyzer->getSource(), $var)
|
|
|
|
),
|
|
|
|
$statements_analyzer->getSuppressedIssues()
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2021-12-13 04:45:57 +01:00
|
|
|
} elseif ($assign_value_atomic_type instanceof TNull) {
|
2020-11-30 20:57:35 +01:00
|
|
|
$has_null = true;
|
2021-12-13 04:45:57 +01:00
|
|
|
} elseif (!$assign_value_atomic_type instanceof TArray
|
|
|
|
&& !$assign_value_atomic_type instanceof TKeyedArray
|
|
|
|
&& !$assign_value_atomic_type instanceof TList
|
2020-11-30 20:57:35 +01:00
|
|
|
&& !$assign_value_type->hasArrayAccessInterface($codebase)
|
|
|
|
) {
|
|
|
|
if ($assign_value_type->hasArray()) {
|
2021-12-27 19:59:11 +01:00
|
|
|
if ($assign_value_atomic_type instanceof TFalse && $assign_value_type->ignore_falsable_issues) {
|
2020-11-30 20:57:35 +01:00
|
|
|
// do nothing
|
|
|
|
} elseif (IssueBuffer::accepts(
|
|
|
|
new PossiblyInvalidArrayAccess(
|
|
|
|
'Cannot access array value on non-array variable '
|
|
|
|
. $array_var_id . ' of type ' . $assign_value_atomic_type->getId(),
|
|
|
|
new CodeLocation($statements_analyzer->getSource(), $var)
|
|
|
|
),
|
|
|
|
$statements_analyzer->getSuppressedIssues()
|
|
|
|
)
|
|
|
|
) {
|
|
|
|
// do nothing
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
if (IssueBuffer::accepts(
|
|
|
|
new InvalidArrayAccess(
|
|
|
|
'Cannot access array value on non-array variable '
|
|
|
|
. $array_var_id . ' of type ' . $assign_value_atomic_type->getId(),
|
|
|
|
new CodeLocation($statements_analyzer->getSource(), $var)
|
|
|
|
),
|
|
|
|
$statements_analyzer->getSuppressedIssues()
|
|
|
|
)
|
|
|
|
) {
|
|
|
|
// do nothing
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
2020-01-09 17:51:49 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($var instanceof PhpParser\Node\Expr\List_
|
|
|
|
|| $var instanceof PhpParser\Node\Expr\Array_
|
|
|
|
) {
|
2021-12-13 04:45:57 +01:00
|
|
|
if ($assign_value_atomic_type instanceof TKeyedArray) {
|
2020-11-30 20:57:35 +01:00
|
|
|
$assign_value_atomic_type = $assign_value_atomic_type->getGenericArrayType();
|
|
|
|
}
|
2020-01-09 17:51:49 +01:00
|
|
|
|
2021-12-13 04:45:57 +01:00
|
|
|
if ($assign_value_atomic_type instanceof TList) {
|
|
|
|
$assign_value_atomic_type = new TArray([
|
2020-11-30 20:57:35 +01:00
|
|
|
Type::getInt(),
|
|
|
|
$assign_value_atomic_type->type_param
|
|
|
|
]);
|
|
|
|
}
|
2019-12-29 14:36:38 +01:00
|
|
|
|
2021-12-13 04:45:57 +01:00
|
|
|
$array_value_type = $assign_value_atomic_type instanceof TArray
|
2020-11-30 20:57:35 +01:00
|
|
|
? clone $assign_value_atomic_type->type_params[1]
|
|
|
|
: Type::getMixed();
|
2019-08-13 20:07:45 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
self::analyze(
|
|
|
|
$statements_analyzer,
|
|
|
|
$var,
|
|
|
|
null,
|
|
|
|
$array_value_type,
|
|
|
|
$context,
|
|
|
|
$doc_comment
|
|
|
|
);
|
2016-11-01 16:37:58 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
continue;
|
|
|
|
}
|
2020-05-18 21:13:27 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($list_var_id) {
|
|
|
|
$context->vars_possibly_in_scope[$list_var_id] = true;
|
|
|
|
$context->assigned_var_ids[$list_var_id] = (int)$var->getAttribute('startFilePos');
|
|
|
|
$context->possibly_assigned_var_ids[$list_var_id] = true;
|
|
|
|
|
|
|
|
$already_in_scope = isset($context->vars_in_scope[$list_var_id]);
|
|
|
|
|
|
|
|
if (strpos($list_var_id, '-') === false && strpos($list_var_id, '[') === false) {
|
|
|
|
$location = new CodeLocation($statements_analyzer, $var);
|
|
|
|
|
|
|
|
if (!$statements_analyzer->hasVariable($list_var_id)) {
|
|
|
|
$statements_analyzer->registerVariable(
|
|
|
|
$list_var_id,
|
|
|
|
$location,
|
|
|
|
$context->branch_point
|
|
|
|
);
|
|
|
|
} else {
|
|
|
|
$statements_analyzer->registerVariableAssignment(
|
|
|
|
$list_var_id,
|
|
|
|
$location
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
|
|
|
if (isset($context->byref_constraints[$list_var_id])) {
|
|
|
|
// something
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2021-12-13 04:45:57 +01:00
|
|
|
if ($assign_value_atomic_type instanceof TArray) {
|
2020-11-30 20:57:35 +01:00
|
|
|
$new_assign_type = clone $assign_value_atomic_type->type_params[1];
|
|
|
|
|
|
|
|
if ($statements_analyzer->data_flow_graph
|
|
|
|
&& $assign_value
|
|
|
|
) {
|
|
|
|
ArrayFetchAnalyzer::taintArrayFetch(
|
|
|
|
$statements_analyzer,
|
|
|
|
$assign_value,
|
|
|
|
null,
|
|
|
|
$new_assign_type,
|
|
|
|
Type::getArrayKey()
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
2021-12-13 04:45:57 +01:00
|
|
|
$can_be_empty = !$assign_value_atomic_type instanceof TNonEmptyArray;
|
|
|
|
} elseif ($assign_value_atomic_type instanceof TList) {
|
2020-11-30 20:57:35 +01:00
|
|
|
$new_assign_type = clone $assign_value_atomic_type->type_param;
|
|
|
|
|
|
|
|
if ($statements_analyzer->data_flow_graph && $assign_value) {
|
|
|
|
ArrayFetchAnalyzer::taintArrayFetch(
|
|
|
|
$statements_analyzer,
|
|
|
|
$assign_value,
|
|
|
|
null,
|
|
|
|
$new_assign_type,
|
|
|
|
Type::getArrayKey()
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
2021-12-13 04:45:57 +01:00
|
|
|
$can_be_empty = !$assign_value_atomic_type instanceof TNonEmptyList;
|
|
|
|
} elseif ($assign_value_atomic_type instanceof TKeyedArray) {
|
2021-09-26 22:25:15 +02:00
|
|
|
if (($assign_var_item->key instanceof PhpParser\Node\Scalar\String_
|
|
|
|
|| $assign_var_item->key instanceof PhpParser\Node\Scalar\LNumber)
|
2020-11-30 20:57:35 +01:00
|
|
|
&& isset($assign_value_atomic_type->properties[$assign_var_item->key->value])
|
|
|
|
) {
|
|
|
|
$new_assign_type =
|
|
|
|
clone $assign_value_atomic_type->properties[$assign_var_item->key->value];
|
2018-02-11 16:39:21 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($new_assign_type->possibly_undefined) {
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2020-11-30 20:57:35 +01:00
|
|
|
new PossiblyUndefinedArrayOffset(
|
|
|
|
'Possibly undefined array key',
|
|
|
|
new CodeLocation($statements_analyzer->getSource(), $var)
|
|
|
|
),
|
|
|
|
$statements_analyzer->getSuppressedIssues()
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2019-12-05 19:37:03 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$new_assign_type->possibly_undefined = false;
|
|
|
|
}
|
|
|
|
}
|
2018-02-11 16:39:21 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($statements_analyzer->data_flow_graph && $assign_value && $new_assign_type) {
|
|
|
|
ArrayFetchAnalyzer::taintArrayFetch(
|
|
|
|
$statements_analyzer,
|
|
|
|
$assign_value,
|
|
|
|
null,
|
|
|
|
$new_assign_type,
|
|
|
|
Type::getArrayKey()
|
|
|
|
);
|
|
|
|
}
|
2018-02-11 16:39:21 +01:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$can_be_empty = !$assign_value_atomic_type->sealed;
|
|
|
|
} elseif ($assign_value_atomic_type->hasArrayAccessInterface($codebase)) {
|
|
|
|
ForeachAnalyzer::getKeyValueParamsForTraversableObject(
|
|
|
|
$assign_value_atomic_type,
|
|
|
|
$codebase,
|
|
|
|
$array_access_key_type,
|
|
|
|
$array_access_value_type
|
|
|
|
);
|
2020-09-30 18:28:13 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$new_assign_type = $array_access_value_type;
|
|
|
|
}
|
|
|
|
|
|
|
|
if ($already_in_scope) {
|
2021-07-29 20:59:52 +02:00
|
|
|
// removes dependent vars from $context
|
2020-11-30 20:57:35 +01:00
|
|
|
$context->removeDescendents(
|
|
|
|
$list_var_id,
|
|
|
|
$context->vars_in_scope[$list_var_id],
|
|
|
|
$new_assign_type,
|
|
|
|
$statements_analyzer
|
|
|
|
);
|
|
|
|
}
|
2020-09-30 18:28:13 +02:00
|
|
|
}
|
|
|
|
}
|
2018-02-11 16:39:21 +01:00
|
|
|
|
2021-12-20 22:36:56 +01:00
|
|
|
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if (!$assigned) {
|
2021-12-20 22:44:37 +01:00
|
|
|
if ($has_null) {
|
|
|
|
IssueBuffer::maybeAdd(
|
|
|
|
new PossiblyNullArrayAccess(
|
|
|
|
'Cannot access array value on null variable ' . $array_var_id,
|
|
|
|
new CodeLocation($statements_analyzer->getSource(), $var)
|
|
|
|
),
|
|
|
|
$statements_analyzer->getSuppressedIssues()
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
foreach ($var_comments as $var_comment) {
|
|
|
|
if (!$var_comment->type) {
|
|
|
|
continue;
|
|
|
|
}
|
2020-09-30 18:28:13 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
try {
|
|
|
|
if ($var_comment->var_id === $list_var_id) {
|
2021-12-03 20:11:20 +01:00
|
|
|
$var_comment_type = TypeExpander::expandUnion(
|
2020-11-30 20:57:35 +01:00
|
|
|
$codebase,
|
|
|
|
$var_comment->type,
|
|
|
|
$context->self,
|
|
|
|
$context->self,
|
|
|
|
$statements_analyzer->getParentFQCLN()
|
|
|
|
);
|
2020-05-18 21:13:27 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$var_comment_type->setFromDocblock();
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$new_assign_type = $var_comment_type;
|
|
|
|
break;
|
|
|
|
}
|
2021-12-03 21:40:18 +01:00
|
|
|
} catch (UnexpectedValueException $e) {
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2020-11-30 20:57:35 +01:00
|
|
|
new InvalidDocblock(
|
2020-12-02 00:26:15 +01:00
|
|
|
$e->getMessage(),
|
2020-11-30 20:57:35 +01:00
|
|
|
new CodeLocation($statements_analyzer->getSource(), $assign_var)
|
|
|
|
)
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2020-11-30 20:57:35 +01:00
|
|
|
}
|
|
|
|
}
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($list_var_id) {
|
|
|
|
$context->vars_in_scope[$list_var_id] = $new_assign_type ?: Type::getMixed();
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($statements_analyzer->data_flow_graph) {
|
|
|
|
$data_flow_graph = $statements_analyzer->data_flow_graph;
|
|
|
|
|
|
|
|
$var_location = new CodeLocation($statements_analyzer->getSource(), $var);
|
|
|
|
|
|
|
|
if (!$context->vars_in_scope[$list_var_id]->parent_nodes) {
|
|
|
|
$assignment_node = DataFlowNode::getForAssignment(
|
|
|
|
$list_var_id,
|
|
|
|
$var_location
|
|
|
|
);
|
|
|
|
|
|
|
|
$context->vars_in_scope[$list_var_id]->parent_nodes = [
|
|
|
|
$assignment_node->id => $assignment_node
|
|
|
|
];
|
|
|
|
} else {
|
|
|
|
if ($statements_analyzer->data_flow_graph instanceof TaintFlowGraph
|
2021-12-03 21:07:25 +01:00
|
|
|
&& in_array('TaintedInput', $statements_analyzer->getSuppressedIssues())
|
2020-11-30 20:57:35 +01:00
|
|
|
) {
|
|
|
|
$context->vars_in_scope[$list_var_id]->parent_nodes = [];
|
|
|
|
} else {
|
2021-03-20 03:41:41 +01:00
|
|
|
$event = new AddRemoveTaintsEvent($var, $context, $statements_analyzer, $codebase);
|
|
|
|
|
|
|
|
$added_taints = $codebase->config->eventDispatcher->dispatchAddTaints($event);
|
2021-12-03 21:07:25 +01:00
|
|
|
$removed_taints = array_merge(
|
2021-03-20 03:41:41 +01:00
|
|
|
$removed_taints,
|
|
|
|
$codebase->config->eventDispatcher->dispatchRemoveTaints($event)
|
|
|
|
);
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
self::taintAssignment(
|
|
|
|
$context->vars_in_scope[$list_var_id],
|
|
|
|
$data_flow_graph,
|
|
|
|
$list_var_id,
|
|
|
|
$var_location,
|
2021-03-20 03:41:41 +01:00
|
|
|
$removed_taints,
|
|
|
|
$added_taints
|
2020-11-30 20:57:35 +01:00
|
|
|
);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
2020-09-28 06:45:02 +02:00
|
|
|
}
|
2021-12-20 22:36:56 +01:00
|
|
|
|
|
|
|
if ($list_var_id) {
|
|
|
|
if (($context->error_suppressing && ($offset || $can_be_empty))
|
|
|
|
|| $has_null
|
|
|
|
) {
|
|
|
|
$context->vars_in_scope[$list_var_id]->addType(new TNull);
|
|
|
|
}
|
|
|
|
}
|
2020-09-28 06:45:02 +02:00
|
|
|
}
|
2020-05-18 21:13:27 +02:00
|
|
|
}
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
private static function analyzePropertyAssignment(
|
2020-05-18 21:13:27 +02:00
|
|
|
StatementsAnalyzer $statements_analyzer,
|
2021-12-03 20:11:20 +01:00
|
|
|
Codebase $codebase,
|
2020-11-30 20:57:35 +01:00
|
|
|
PhpParser\Node\Expr\PropertyFetch $assign_var,
|
2020-05-18 21:13:27 +02:00
|
|
|
Context $context,
|
2020-11-30 20:57:35 +01:00
|
|
|
?PhpParser\Node\Expr $assign_value,
|
2021-12-13 16:28:14 +01:00
|
|
|
Union $assign_value_type,
|
2020-11-30 20:57:35 +01:00
|
|
|
?string $var_id
|
2020-10-12 21:02:52 +02:00
|
|
|
): void {
|
2020-11-30 20:57:35 +01:00
|
|
|
if (!$assign_var->name instanceof PhpParser\Node\Identifier) {
|
2021-06-25 15:54:39 +02:00
|
|
|
$was_inside_general_use = $context->inside_general_use;
|
|
|
|
$context->inside_general_use = true;
|
2020-11-30 20:57:35 +01:00
|
|
|
|
|
|
|
// this can happen when the user actually means to type $this-><autocompleted>, but there's
|
|
|
|
// a variable on the next line
|
|
|
|
if (ExpressionAnalyzer::analyze($statements_analyzer, $assign_var->var, $context) === false) {
|
2021-12-20 23:58:49 +01:00
|
|
|
$context->inside_general_use = $was_inside_general_use;
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (ExpressionAnalyzer::analyze($statements_analyzer, $assign_var->name, $context) === false) {
|
2021-12-20 23:58:49 +01:00
|
|
|
$context->inside_general_use = $was_inside_general_use;
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
2021-06-25 15:54:39 +02:00
|
|
|
$context->inside_general_use = $was_inside_general_use;
|
2020-11-30 20:57:35 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
if ($assign_var->name instanceof PhpParser\Node\Identifier) {
|
|
|
|
$prop_name = $assign_var->name->name;
|
|
|
|
} elseif (($assign_var_name_type = $statements_analyzer->node_data->getType($assign_var->name))
|
|
|
|
&& $assign_var_name_type->isSingleStringLiteral()
|
|
|
|
) {
|
|
|
|
$prop_name = $assign_var_name_type->getSingleStringLiteral()->value;
|
|
|
|
} else {
|
|
|
|
$prop_name = null;
|
|
|
|
}
|
2020-05-18 21:13:27 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($prop_name) {
|
2020-06-19 07:22:51 +02:00
|
|
|
InstancePropertyAssignmentAnalyzer::analyze(
|
2020-05-18 21:13:27 +02:00
|
|
|
$statements_analyzer,
|
2020-11-30 20:57:35 +01:00
|
|
|
$assign_var,
|
2020-05-18 21:13:27 +02:00
|
|
|
$prop_name,
|
2020-11-30 20:57:35 +01:00
|
|
|
$assign_value,
|
|
|
|
$assign_value_type,
|
2020-05-18 21:13:27 +02:00
|
|
|
$context
|
|
|
|
);
|
2020-11-30 20:57:35 +01:00
|
|
|
} else {
|
|
|
|
if (ExpressionAnalyzer::analyze($statements_analyzer, $assign_var->var, $context) === false) {
|
|
|
|
return;
|
|
|
|
}
|
2020-05-18 21:13:27 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if (($assign_var_type = $statements_analyzer->node_data->getType($assign_var->var))
|
|
|
|
&& !$context->ignore_variable_property
|
|
|
|
) {
|
|
|
|
$stmt_var_type = $assign_var_type;
|
|
|
|
|
|
|
|
if ($stmt_var_type->hasObjectType()) {
|
|
|
|
foreach ($stmt_var_type->getAtomicTypes() as $type) {
|
2021-12-13 04:45:57 +01:00
|
|
|
if ($type instanceof TNamedObject) {
|
2020-11-30 20:57:35 +01:00
|
|
|
$codebase->analyzer->addMixedMemberName(
|
|
|
|
strtolower($type->value) . '::$',
|
|
|
|
$context->calling_method_id ?: $statements_analyzer->getFileName()
|
|
|
|
);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
2020-05-18 21:13:27 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
if ($var_id) {
|
2020-11-30 20:57:35 +01:00
|
|
|
$context->vars_possibly_in_scope[$var_id] = true;
|
|
|
|
}
|
2020-09-30 18:28:13 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$property_var_pure_compatible = $statements_analyzer->node_data->isPureCompatible($assign_var->var);
|
|
|
|
|
|
|
|
// prevents writing to any properties in a mutation-free context
|
|
|
|
if (!$property_var_pure_compatible
|
|
|
|
&& !$context->collect_mutations
|
|
|
|
&& !$context->collect_initializations
|
|
|
|
) {
|
|
|
|
if ($context->mutation_free || $context->external_mutation_free) {
|
2021-11-29 20:54:17 +01:00
|
|
|
IssueBuffer::maybeAdd(
|
2020-11-30 20:57:35 +01:00
|
|
|
new ImpurePropertyAssignment(
|
|
|
|
'Cannot assign to a property from a mutation-free context',
|
|
|
|
new CodeLocation($statements_analyzer, $assign_var)
|
|
|
|
),
|
|
|
|
$statements_analyzer->getSuppressedIssues()
|
2021-11-29 20:54:17 +01:00
|
|
|
);
|
2021-12-03 20:11:20 +01:00
|
|
|
} elseif ($statements_analyzer->getSource() instanceof FunctionLikeAnalyzer
|
2020-11-30 20:57:35 +01:00
|
|
|
&& $statements_analyzer->getSource()->track_mutations
|
|
|
|
) {
|
|
|
|
if (!$assign_var->var instanceof PhpParser\Node\Expr\Variable
|
|
|
|
|| $assign_var->var->name !== 'this'
|
|
|
|
) {
|
|
|
|
$statements_analyzer->getSource()->inferred_has_mutation = true;
|
|
|
|
}
|
|
|
|
|
|
|
|
$statements_analyzer->getSource()->inferred_impure = true;
|
2020-05-18 21:13:27 +02:00
|
|
|
}
|
2020-11-30 20:57:35 +01:00
|
|
|
}
|
|
|
|
}
|
2020-05-18 21:13:27 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
private static function analyzeAssignmentToVariable(
|
|
|
|
StatementsAnalyzer $statements_analyzer,
|
2021-12-03 20:11:20 +01:00
|
|
|
Codebase $codebase,
|
2020-11-30 20:57:35 +01:00
|
|
|
PhpParser\Node\Expr\Variable $assign_var,
|
|
|
|
?PhpParser\Node\Expr $assign_value,
|
2021-12-13 16:28:14 +01:00
|
|
|
Union $assign_value_type,
|
2020-11-30 20:57:35 +01:00
|
|
|
?string $var_id,
|
|
|
|
Context $context
|
|
|
|
): void {
|
|
|
|
if (is_string($assign_var->name)) {
|
|
|
|
if ($var_id) {
|
|
|
|
$context->vars_in_scope[$var_id] = $assign_value_type;
|
2020-05-18 21:13:27 +02:00
|
|
|
$context->vars_possibly_in_scope[$var_id] = true;
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$location = new CodeLocation($statements_analyzer, $assign_var);
|
|
|
|
|
2020-05-18 21:13:27 +02:00
|
|
|
if (!$statements_analyzer->hasVariable($var_id)) {
|
2020-11-30 20:57:35 +01:00
|
|
|
$statements_analyzer->registerVariable(
|
|
|
|
$var_id,
|
|
|
|
$location,
|
|
|
|
$context->branch_point
|
|
|
|
);
|
|
|
|
} elseif (!$context->inside_isset) {
|
|
|
|
$statements_analyzer->registerVariableAssignment(
|
|
|
|
$var_id,
|
|
|
|
$location
|
|
|
|
);
|
|
|
|
}
|
2020-05-18 21:13:27 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($codebase->store_node_types
|
|
|
|
&& !$context->collect_initializations
|
|
|
|
&& !$context->collect_mutations
|
|
|
|
) {
|
|
|
|
$location = new CodeLocation($statements_analyzer, $assign_var);
|
|
|
|
$codebase->analyzer->addNodeReference(
|
|
|
|
$statements_analyzer->getFilePath(),
|
|
|
|
$assign_var,
|
|
|
|
$location->raw_file_start
|
|
|
|
. '-' . $location->raw_file_end
|
|
|
|
. ':' . $assign_value_type->getId()
|
|
|
|
);
|
2020-05-18 21:13:27 +02:00
|
|
|
}
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if (isset($context->byref_constraints[$var_id])) {
|
|
|
|
$assign_value_type->by_ref = true;
|
|
|
|
}
|
2020-05-18 21:13:27 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($assign_value_type->by_ref) {
|
|
|
|
if ($statements_analyzer->data_flow_graph instanceof VariableUseGraph
|
|
|
|
&& $assign_value_type->parent_nodes
|
|
|
|
) {
|
|
|
|
$location = new CodeLocation($statements_analyzer, $assign_var);
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$byref_node = DataFlowNode::getForAssignment($var_id, $location);
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
foreach ($assign_value_type->parent_nodes as $parent_node) {
|
|
|
|
$statements_analyzer->data_flow_graph->addPath(
|
|
|
|
$parent_node,
|
|
|
|
new DataFlowNode('variable-use', 'variable use', null),
|
|
|
|
'variable-use'
|
|
|
|
);
|
2020-05-18 21:13:27 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
$statements_analyzer->data_flow_graph->addPath(
|
|
|
|
$byref_node,
|
|
|
|
$parent_node,
|
|
|
|
'byref-assignment'
|
|
|
|
);
|
|
|
|
}
|
2020-05-18 21:13:27 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if ($assign_value_type->getId() === 'bool'
|
|
|
|
&& ($assign_value instanceof PhpParser\Node\Expr\BinaryOp
|
|
|
|
|| ($assign_value instanceof PhpParser\Node\Expr\BooleanNot
|
|
|
|
&& $assign_value->expr instanceof PhpParser\Node\Expr\BinaryOp))
|
|
|
|
) {
|
2021-12-03 21:07:25 +01:00
|
|
|
$var_object_id = spl_object_id($assign_var);
|
|
|
|
$cond_object_id = spl_object_id($assign_value);
|
2020-11-30 20:57:35 +01:00
|
|
|
|
2021-12-03 20:11:20 +01:00
|
|
|
$right_clauses = FormulaGenerator::getFormula(
|
2020-11-30 20:57:35 +01:00
|
|
|
$cond_object_id,
|
|
|
|
$cond_object_id,
|
|
|
|
$assign_value,
|
|
|
|
$context->self,
|
|
|
|
$statements_analyzer,
|
|
|
|
$codebase
|
|
|
|
);
|
2020-05-18 21:13:27 +02:00
|
|
|
|
2020-12-03 15:42:20 +01:00
|
|
|
$right_clauses = Context::filterClauses(
|
|
|
|
$var_id,
|
|
|
|
$right_clauses
|
|
|
|
);
|
|
|
|
|
2021-12-03 20:11:20 +01:00
|
|
|
$assignment_clauses = Algebra::combineOredClauses(
|
2022-01-20 23:33:06 +01:00
|
|
|
[new Clause([$var_id => [new Falsy()]], $var_object_id, $var_object_id)],
|
2020-11-30 20:57:35 +01:00
|
|
|
$right_clauses,
|
|
|
|
$cond_object_id
|
|
|
|
);
|
2020-05-18 21:13:27 +02:00
|
|
|
|
2021-12-03 21:07:25 +01:00
|
|
|
$context->clauses = array_merge($context->clauses, $assignment_clauses);
|
2020-11-30 20:57:35 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
} else {
|
2021-06-25 15:54:39 +02:00
|
|
|
$was_inside_general_use = $context->inside_general_use;
|
|
|
|
$context->inside_general_use = true;
|
2020-09-28 06:45:02 +02:00
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
if (ExpressionAnalyzer::analyze($statements_analyzer, $assign_var->name, $context) === false) {
|
2021-12-20 23:58:49 +01:00
|
|
|
$context->inside_general_use = $was_inside_general_use;
|
|
|
|
|
2020-11-30 20:57:35 +01:00
|
|
|
return;
|
2020-05-18 21:13:27 +02:00
|
|
|
}
|
2020-09-30 18:28:13 +02:00
|
|
|
|
2021-06-25 15:54:39 +02:00
|
|
|
$context->inside_general_use = $was_inside_general_use;
|
2020-11-30 20:57:35 +01:00
|
|
|
|
|
|
|
if ($statements_analyzer->data_flow_graph instanceof VariableUseGraph
|
|
|
|
&& $assign_value_type->parent_nodes
|
|
|
|
) {
|
|
|
|
foreach ($assign_value_type->parent_nodes as $parent_node) {
|
|
|
|
$statements_analyzer->data_flow_graph->addPath(
|
|
|
|
$parent_node,
|
|
|
|
new DataFlowNode('variable-use', 'variable use', null),
|
|
|
|
'variable-use'
|
|
|
|
);
|
|
|
|
}
|
2020-09-30 18:28:13 +02:00
|
|
|
}
|
2020-05-18 21:13:27 +02:00
|
|
|
}
|
2017-02-04 04:07:14 +01:00
|
|
|
}
|
2016-11-01 16:37:58 +01:00
|
|
|
}
|