wip2

hvitved · hvitved · commit 9e10258574e0 · 2025-09-29T21:29:05.000+02:00
diff --git a/rust/ql/lib/codeql/rust/frameworks/stdlib/Stdlib.qll b/rust/ql/lib/codeql/rust/frameworks/stdlib/Stdlib.qll
@@ -303,5 +303,6 @@ class Vec extends Struct {
   pragma[nomagic]
   Vec() { this.getCanonicalPath() = "alloc::vec::Vec" }
 
+  /** Gets the type parameter representing the element type. */
   TypeParam getElementTypeParam() { result = this.getGenericParamList().getTypeParam(0) }
 }
diff --git a/rust/ql/lib/codeql/rust/internal/TypeInference.qll b/rust/ql/lib/codeql/rust/internal/TypeInference.qll
@@ -847,159 +847,6 @@ private predicate functionInfoBlanket(
   )
 }
 
-/**
- * A wrapper around `IsInstantiationOf` which ensures to substitute in lookup
- * traits when checking whether argument types are instantiations of function
- * types.
- */
-private module ArgIsInstantiationOf<
-  HasTypeTreeSig Arg, IsInstantiationOfInputSig<Arg, FunctionType> Input>
-{
-  final private class ArgFinal = Arg;
-
-  private class ArgSubst extends ArgFinal {
-    Type getTypeAt(TypePath path) { result = substituteLookupTraits(super.getTypeAt(path)) }
-  }
-
-  private module IsInstantiationOfInput implements IsInstantiationOfInputSig<ArgSubst, FunctionType>
-  {
-    pragma[nomagic]
-    predicate potentialInstantiationOf(ArgSubst arg, TypeAbstraction abs, FunctionType constraint) {
-      Input::potentialInstantiationOf(arg, abs, constraint)
-    }
-
-    predicate relevantTypeMention(FunctionType constraint) {
-      Input::relevantTypeMention(constraint)
-    }
-  }
-
-  predicate argIsInstantiationOf(Arg arg, ImplOrTraitItemNode i, FunctionType constraint) {
-    IsInstantiationOf<ArgSubst, FunctionType, IsInstantiationOfInput>::isInstantiationOf(arg, i,
-      constraint)
-  }
-
-  predicate argIsNotInstantiationOf(Arg arg, ImplOrTraitItemNode i, FunctionType constraint) {
-    IsInstantiationOf<ArgSubst, FunctionType, IsInstantiationOfInput>::isNotInstantiationOf(arg, i,
-      constraint)
-  }
-}
-
-signature module ArgsAreInstantiationsOfInputSig {
-  predicate toCheck(ImplOrTraitItemNode i, Function f, FunctionTypePosition pos, FunctionType t);
-
-  class Call {
-    string toString();
-
-    Location getLocation();
-
-    Type getArgType(FunctionTypePosition pos, TypePath path);
-
-    predicate hasTargetCand(ImplOrTraitItemNode i, Function f);
-  }
-}
-
-/**
- * A wrapper around `IsInstantiationOf` which ensures to substitute in lookup
- * traits when checking whether argument types are instantiations of function
- * types.
- */
-private module ArgsAreInstantiationsOf<ArgsAreInstantiationsOfInputSig Input> {
-  pragma[nomagic]
-  private predicate toCheckRanked(
-    ImplOrTraitItemNode i, Function f, FunctionTypePosition pos, int rnk
-  ) {
-    Input::toCheck(i, f, pos, _) and
-    pos =
-      rank[rnk + 1](FunctionTypePosition pos0, int j |
-        Input::toCheck(i, f, pos0, _) and
-        (
-          j = pos0.asPositional()
-          or
-          pos0.isSelf() and j = -1
-          or
-          pos0.isReturn() and j = -2
-        )
-      |
-        pos0 order by j
-      )
-  }
-
-  private newtype TCallAndPos =
-    MkCallAndPos(Input::Call call, FunctionTypePosition pos) {
-      exists(call.getArgType(pos, _))
-      // exists(ImplOrTraitItemNode i, Function f |
-      //   Input::toCheck(i, f, pos, _) and
-      //   call.hasTargetCand(i, f)
-      // )
-    }
-
-  /** A call tagged with a position. */
-  private class CallAndPos extends MkCallAndPos {
-    Input::Call call;
-    FunctionTypePosition pos;
-
-    CallAndPos() { this = MkCallAndPos(call, pos) }
-
-    Input::Call getCall() { result = call }
-
-    FunctionTypePosition getPos() { result = pos }
-
-    Location getLocation() { result = call.getLocation() }
-
-    Type getTypeAt(TypePath path) { result = call.getArgType(pos, path) }
-
-    string toString() { result = call.toString() + " [arg " + pos + "]" }
-  }
-
-  private module ArgIsIsInstantiationOfInput implements
-    IsInstantiationOfInputSig<CallAndPos, FunctionType>
-  {
-    pragma[nomagic]
-    private predicate potentialInstantiationOf0(
-      CallAndPos cp, Input::Call call, FunctionTypePosition pos, int rnk, Function f,
-      TypeAbstraction abs, FunctionType constraint
-    ) {
-      cp = MkCallAndPos(call, pos) and
-      call.hasTargetCand(abs, f) and
-      toCheckRanked(abs, f, pos, rnk) and
-      Input::toCheck(abs, f, pos, constraint)
-    }
-
-    pragma[nomagic]
-    predicate potentialInstantiationOf(CallAndPos cp, TypeAbstraction abs, FunctionType constraint) {
-      exists(Input::Call call, FunctionTypePosition pos, int rnk, Function f |
-        potentialInstantiationOf0(cp, call, pos, rnk, f, abs, constraint)
-      |
-        rnk = 0
-        or
-        argsAreInstantiationsOfFromIndex(call, abs, f, rnk - 1)
-      )
-    }
-
-    predicate relevantTypeMention(FunctionType constraint) { Input::toCheck(_, _, _, constraint) }
-  }
-
-  pragma[nomagic]
-  private predicate argsAreInstantiationsOfFromIndex(
-    Input::Call call, ImplOrTraitItemNode i, Function f, int rnk
-  ) {
-    exists(FunctionTypePosition pos |
-      ArgIsInstantiationOf<CallAndPos, ArgIsIsInstantiationOfInput>::argIsInstantiationOf(MkCallAndPos(call,
-          pos), i, _) and
-      call.hasTargetCand(i, f) and
-      toCheckRanked(i, f, pos, rnk)
-    )
-  }
-
-  pragma[nomagic]
-  predicate argsAreInstantiationsOf(Input::Call call, ImplOrTraitItemNode i, Function f) {
-    exists(int rnk |
-      argsAreInstantiationsOfFromIndex(call, i, f, rnk) and
-      rnk = max(int r | toCheckRanked(i, f, _, r))
-    )
-  }
-}
-
 /**
  * Holds if the type path `path` pointing to `type` is stripped of any leading
  * complex root type allowed for `self` parameters, such as `&`, `Box`, `Rc`,
diff --git a/rust/ql/lib/codeql/rust/internal/typeinference/FunctionType.qll b/rust/ql/lib/codeql/rust/internal/typeinference/FunctionType.qll
@@ -241,3 +241,157 @@ Type substituteLookupTraits(Type t) {
   or
   result = TTrait(getALookupTrait(t))
 }
+
+/**
+ * A wrapper around `IsInstantiationOf` which ensures to substitute in lookup
+ * traits when checking whether argument types are instantiations of function
+ * types.
+ */
+module ArgIsInstantiationOf<HasTypeTreeSig Arg, IsInstantiationOfInputSig<Arg, FunctionType> Input> {
+  final private class ArgFinal = Arg;
+
+  private class ArgSubst extends ArgFinal {
+    Type getTypeAt(TypePath path) { result = substituteLookupTraits(super.getTypeAt(path)) }
+  }
+
+  private module IsInstantiationOfInput implements IsInstantiationOfInputSig<ArgSubst, FunctionType>
+  {
+    pragma[nomagic]
+    predicate potentialInstantiationOf(ArgSubst arg, TypeAbstraction abs, FunctionType constraint) {
+      Input::potentialInstantiationOf(arg, abs, constraint)
+    }
+
+    predicate relevantTypeMention(FunctionType constraint) {
+      Input::relevantTypeMention(constraint)
+    }
+  }
+
+  predicate argIsInstantiationOf(Arg arg, ImplOrTraitItemNode i, FunctionType constraint) {
+    IsInstantiationOf<ArgSubst, FunctionType, IsInstantiationOfInput>::isInstantiationOf(arg, i,
+      constraint)
+  }
+
+  predicate argIsNotInstantiationOf(Arg arg, ImplOrTraitItemNode i, FunctionType constraint) {
+    IsInstantiationOf<ArgSubst, FunctionType, IsInstantiationOfInput>::isNotInstantiationOf(arg, i,
+      constraint)
+  }
+}
+
+/**
+ * Provides the input for `ArgsAreInstantiationsOf`.
+ */
+signature module ArgsAreInstantiationsOfInputSig {
+  predicate toCheck(ImplOrTraitItemNode i, Function f, FunctionTypePosition pos, FunctionType t);
+
+  class Call {
+    string toString();
+
+    Location getLocation();
+
+    Type getArgType(FunctionTypePosition pos, TypePath path);
+
+    predicate hasTargetCand(ImplOrTraitItemNode i, Function f);
+  }
+}
+
+/**
+ * A wrapper around `IsInstantiationOf` which ensures to substitute in lookup
+ * traits when checking whether argument types are instantiations of function
+ * types.
+ */
+module ArgsAreInstantiationsOf<ArgsAreInstantiationsOfInputSig Input> {
+  pragma[nomagic]
+  private predicate toCheckRanked(
+    ImplOrTraitItemNode i, Function f, FunctionTypePosition pos, int rnk
+  ) {
+    Input::toCheck(i, f, pos, _) and
+    pos =
+      rank[rnk + 1](FunctionTypePosition pos0, int j |
+        Input::toCheck(i, f, pos0, _) and
+        (
+          j = pos0.asPositional()
+          or
+          pos0.isSelf() and j = -1
+          or
+          pos0.isReturn() and j = -2
+        )
+      |
+        pos0 order by j
+      )
+  }
+
+  private newtype TCallAndPos =
+    MkCallAndPos(Input::Call call, FunctionTypePosition pos) {
+      exists(call.getArgType(pos, _))
+      // exists(ImplOrTraitItemNode i, Function f |
+      //   Input::toCheck(i, f, pos, _) and
+      //   call.hasTargetCand(i, f)
+      // )
+    }
+
+  /** A call tagged with a position. */
+  private class CallAndPos extends MkCallAndPos {
+    Input::Call call;
+    FunctionTypePosition pos;
+
+    CallAndPos() { this = MkCallAndPos(call, pos) }
+
+    Input::Call getCall() { result = call }
+
+    FunctionTypePosition getPos() { result = pos }
+
+    Location getLocation() { result = call.getLocation() }
+
+    Type getTypeAt(TypePath path) { result = call.getArgType(pos, path) }
+
+    string toString() { result = call.toString() + " [arg " + pos + "]" }
+  }
+
+  private module ArgIsIsInstantiationOfInput implements
+    IsInstantiationOfInputSig<CallAndPos, FunctionType>
+  {
+    pragma[nomagic]
+    private predicate potentialInstantiationOf0(
+      CallAndPos cp, Input::Call call, FunctionTypePosition pos, int rnk, Function f,
+      TypeAbstraction abs, FunctionType constraint
+    ) {
+      cp = MkCallAndPos(call, pos) and
+      call.hasTargetCand(abs, f) and
+      toCheckRanked(abs, f, pos, rnk) and
+      Input::toCheck(abs, f, pos, constraint)
+    }
+
+    pragma[nomagic]
+    predicate potentialInstantiationOf(CallAndPos cp, TypeAbstraction abs, FunctionType constraint) {
+      exists(Input::Call call, FunctionTypePosition pos, int rnk, Function f |
+        potentialInstantiationOf0(cp, call, pos, rnk, f, abs, constraint)
+      |
+        rnk = 0
+        or
+        argsAreInstantiationsOfFromIndex(call, abs, f, rnk - 1)
+      )
+    }
+
+    predicate relevantTypeMention(FunctionType constraint) { Input::toCheck(_, _, _, constraint) }
+  }
+
+  pragma[nomagic]
+  private predicate argsAreInstantiationsOfFromIndex(
+    Input::Call call, ImplOrTraitItemNode i, Function f, int rnk
+  ) {
+    exists(FunctionTypePosition pos |
+      ArgIsInstantiationOf<CallAndPos, ArgIsIsInstantiationOfInput>::argIsInstantiationOf(MkCallAndPos(call,
+          pos), i, _) and
+      call.hasTargetCand(i, f) and
+      toCheckRanked(i, f, pos, rnk)
+    )
+  }
+
+  pragma[nomagic]
+  predicate argsAreInstantiationsOf(Input::Call call, ImplOrTraitItemNode i, Function f) {
+    exists(int rnk |
+      argsAreInstantiationsOfFromIndex(call, i, f, rnk) and
+      rnk = max(int r | toCheckRanked(i, f, _, r))
+    )
+  }
+}

Original file line number	Diff line number	Diff line change
`@@ -303,5 +303,6 @@ class Vec extends Struct {`
`303`	`303`	`pragma[nomagic]`
`304`	`304`	`Vec() { this.getCanonicalPath() = "alloc::vec::Vec" }`
`305`	`305`
	`306`	`+ /** Gets the type parameter representing the element type. */`
`306`	`307`	`TypeParam getElementTypeParam() { result = this.getGenericParamList().getTypeParam(0) }`
`307`	`308`	`}`