Differential Revision: D3684879 fbshipit-source-id: 1b101aemaster
Sam Blackshear
9 years ago
committed by
Facebook Github Bot 9
parent
36e2175293
commit
8f5542ed2f
@ -0,0 +1,93 @@
|
||||
(*
|
||||
* Copyright (c) 2016 - present Facebook, Inc.
|
||||
* All rights reserved.
|
||||
*
|
||||
* This source code is licensed under the BSD style license found in the
|
||||
* LICENSE file in the root directory of this source tree. An additional grant
|
||||
* of patent rights can be found in the PATENTS file in the same directory.
|
||||
*)
|
||||
|
||||
open! Utils
|
||||
|
||||
module F = Format
|
||||
module L = Logging
|
||||
|
||||
module type Spec = sig
|
||||
module Source : Source.S
|
||||
module Sink : Sink.S
|
||||
|
||||
(** should a flow originating at source and entering sink be reported? *)
|
||||
val should_report : Source.t -> Sink.t -> bool
|
||||
end
|
||||
|
||||
module type S = sig
|
||||
include Spec
|
||||
type t
|
||||
|
||||
(** get the source of the trace *)
|
||||
val source : t -> Source.t
|
||||
|
||||
(** get the sink of the trace, if any *)
|
||||
val sink : t -> Sink.t option
|
||||
|
||||
(** return true if this trace represent a dangerous flow *)
|
||||
val should_report : t -> bool
|
||||
|
||||
(** create a trace from a source *)
|
||||
val of_source : Source.t -> t
|
||||
|
||||
(** add a sink to the current trace. *)
|
||||
val add_sink : t -> Sink.t -> t
|
||||
|
||||
val compare : t -> t -> int
|
||||
val pp : F.formatter -> t -> unit
|
||||
end
|
||||
|
||||
module Make (Spec : Spec) = struct
|
||||
include Spec
|
||||
|
||||
type t =
|
||||
{
|
||||
source : Source.t; (** last function in the trace that returned tainted data *)
|
||||
sink : Sink.t option;
|
||||
(** last callee in the trace that transitively called a tainted function (if any) *)
|
||||
passthroughs : Passthrough.Set.t; (** calls that occurred between source and sink *)
|
||||
}
|
||||
|
||||
let compare t1 t2 =
|
||||
let compare_sink_opts sink1_opt sink2_opt = match sink1_opt, sink2_opt with
|
||||
| Some sink1, Some sink2 -> Sink.compare sink1 sink2
|
||||
| None, None -> 0
|
||||
| Some _, None -> (-1)
|
||||
| None, Some _ -> 1 in
|
||||
Source.compare t1.source t2.source
|
||||
|> next compare_sink_opts t1.sink t2.sink
|
||||
|> next Passthrough.Set.compare t1.passthroughs t2.passthroughs
|
||||
|
||||
let pp fmt t =
|
||||
let pp_sink_opt fmt = function
|
||||
| None -> F.fprintf fmt "?"
|
||||
| Some sink -> Sink.pp fmt sink in
|
||||
F.fprintf
|
||||
fmt
|
||||
"%a -> %a via %a"
|
||||
Source.pp t.source pp_sink_opt t.sink Passthrough.Set.pp t.passthroughs
|
||||
|
||||
let source t =
|
||||
t.source
|
||||
|
||||
let sink t =
|
||||
t.sink
|
||||
|
||||
let should_report t = match t.sink with
|
||||
| Some sink -> Spec.should_report t.source sink
|
||||
| None -> false
|
||||
|
||||
let of_source source =
|
||||
let passthroughs = Passthrough.Set.empty in
|
||||
let sink = None in
|
||||
{ source; passthroughs; sink; }
|
||||
|
||||
let add_sink t sink =
|
||||
{ t with sink = Some sink; }
|
||||
end
|
||||
Loading…
Reference in new issue