More Fixes

alexet · alexet · commit d871646eabca · 2025-09-12T17:46:22.000+01:00
diff --git a/java/ql/lib/semmle/code/java/dataflow/DataFlow.qll b/java/ql/lib/semmle/code/java/dataflow/DataFlow.qll
@@ -10,6 +10,6 @@ import java
 module DataFlow {
   private import semmle.code.java.dataflow.internal.DataFlowImplSpecific
   private import codeql.dataflow.DataFlow
-  import DataFlowMake<Location, JavaDataFlow>
+  import DataFlowMakeOverlay<Location, JavaDataFlow>
   import Public
 }
diff --git a/java/ql/lib/semmle/code/java/dataflow/TaintTracking.qll b/java/ql/lib/semmle/code/java/dataflow/TaintTracking.qll
@@ -13,5 +13,5 @@ module TaintTracking {
   private import semmle.code.java.dataflow.internal.DataFlowImplSpecific
   private import semmle.code.java.dataflow.internal.TaintTrackingImplSpecific
   private import codeql.dataflow.TaintTracking
-  import TaintFlowMake<Location, JavaDataFlow, JavaTaintTracking>
+  import TaintFlowMakeOverlay<Location, JavaDataFlow, JavaTaintTracking>
 }
diff --git a/shared/dataflow/codeql/dataflow/DataFlow.qll b/shared/dataflow/codeql/dataflow/DataFlow.qll
@@ -1102,7 +1102,7 @@ module DataFlowMakeCore<LocationSig Location, InputSig<Location> Lang> {
   }
 }
 
-private module DataFlowMakeNonOverlayInformed<LocationSig Location, InputSig<Location> Lang> {
+module DataFlowMake<LocationSig Location, InputSig<Location> Lang> {
   import DataFlowMakeCore<Location, Lang>
   private import Lang
   private import internal.DataFlowImpl::MakeImpl<Location, Lang>
@@ -1162,17 +1162,9 @@ private module DataFlowMakeNonOverlayInformed<LocationSig Location, InputSig<Loc
 
     import Flow
   }
-
 }
 
-private module DataFlowMakeOverlayInformed<LocationSig Location, InputSig<Location> Lang> {
-  import DataFlowMakeCore<Location, Lang>
-  private import Lang
-  private import internal.DataFlowImpl::MakeImpl<Location, Lang>
-  private import internal.DataFlowImplStage1::MakeImplStage1<Location, Lang>
-
-
-
+module DataFlowMakeOverlay<LocationSig Location, InputSig<Location> Lang> {
   import DataFlowMakeCore<Location, Lang>
   private import Lang
   private import internal.DataFlowImpl::MakeImpl<Location, Lang>
@@ -1190,6 +1182,8 @@ private module DataFlowMakeOverlayInformed<LocationSig Location, InputSig<Locati
       predicate isAdditionalFlowStep(Node node1, Node node2, string model) {
         Config::isAdditionalFlowStep(node1, node2) and model = "Config"
       }
+
+      predicate observeOverlayInformedIncrementalMode() { not Config::observeDiffInformedIncrementalMode() }
     }
 
     private module Stage1 = ImplStage1<C>;
@@ -1219,6 +1213,8 @@ private module DataFlowMakeOverlayInformed<LocationSig Location, InputSig<Locati
       ) {
         Config::isAdditionalFlowStep(node1, state1, node2, state2) and model = "Config"
       }
+
+      predicate observeOverlayInformedIncrementalMode() { not Config::observeDiffInformedIncrementalMode() }
     }
 
     private module Stage1 = ImplStage1<C>;
diff --git a/shared/dataflow/codeql/dataflow/TaintTracking.qll b/shared/dataflow/codeql/dataflow/TaintTracking.qll
@@ -155,7 +155,7 @@ private module TaintFlowMakeCore<
   }
 }
 
-private module TaintFlowMakeNonOverlay<
+module TaintFlowMake<
   LocationSig Location, DF::InputSig<Location> DataFlowLang,
   InputSig<Location, DataFlowLang> TaintTrackingLang>
 {
@@ -174,6 +174,10 @@ private module TaintFlowMakeNonOverlay<
       ) {
         Config::isAdditionalFlowStep(node1, node2) and model = "Config"
       }
+
+      predicate observeOverlayInformedIncrementalMode() {
+        not Config::observeDiffInformedIncrementalMode()
+      }
     }
 
     private module C implements DataFlowInternal::FullStateConfigSig {
@@ -208,6 +212,8 @@ private module TaintFlowMakeNonOverlay<
       ) {
         Config::isAdditionalFlowStep(node1, state1, node2, state2) and model = "Config"
       }
+
+      predicate observeOverlayInformedIncrementalMode() { none() }
     }
 
     private module C implements DataFlowInternal::FullStateConfigSig {
@@ -279,6 +285,8 @@ private module TaintFlowMakeNonOverlay<
       ) {
         Config::isAdditionalFlowStep(node1, state1, node2, state2) and model = "Config"
       }
+
+      predicate observeOverlayInformedIncrementalMode() { none() }
     }
 
     private module C implements DataFlowInternal::FullStateConfigSig {
@@ -295,8 +303,7 @@ private module TaintFlowMakeNonOverlay<
   }
 }
 
-
-private module TaintFlowMakeOverlay<
+module TaintFlowMakeOverlay<
   LocationSig Location, DF::InputSig<Location> DataFlowLang,
   InputSig<Location, DataFlowLang> TaintTrackingLang>
 {
@@ -316,6 +323,9 @@ private module TaintFlowMakeOverlay<
         Config::isAdditionalFlowStep(node1, node2) and model = "Config"
       }
 
+      predicate observeOverlayInformedIncrementalMode() {
+        not Config::observeDiffInformedIncrementalMode()
+      }
     }
 
     private module C implements DataFlowInternal::FullStateConfigSig {
@@ -350,6 +360,10 @@ private module TaintFlowMakeOverlay<
       ) {
         Config::isAdditionalFlowStep(node1, state1, node2, state2) and model = "Config"
       }
+
+      predicate observeOverlayInformedIncrementalMode() {
+        not Config::observeDiffInformedIncrementalMode()
+      }
     }
 
     private module C implements DataFlowInternal::FullStateConfigSig {
@@ -381,6 +395,10 @@ private module TaintFlowMakeOverlay<
       ) {
         Config::isAdditionalFlowStep(node1, node2) and model = "Config"
       }
+
+      predicate observeOverlayInformedIncrementalMode() {
+        not Config::observeDiffInformedIncrementalMode()
+      }
     }
 
     private module C implements DataFlowInternal::FullStateConfigSig {
@@ -419,6 +437,10 @@ private module TaintFlowMakeOverlay<
       ) {
         Config::isAdditionalFlowStep(node1, state1, node2, state2) and model = "Config"
       }
+
+      predicate observeOverlayInformedIncrementalMode() {
+        not Config::observeDiffInformedIncrementalMode()
+      }
     }
 
     private module C implements DataFlowInternal::FullStateConfigSig {
diff --git a/shared/dataflow/codeql/dataflow/internal/DataFlowImpl.qll b/shared/dataflow/codeql/dataflow/internal/DataFlowImpl.qll
@@ -143,6 +143,13 @@ module MakeImpl<LocationSig Location, InputSig<Location> Lang> {
      */
     predicate observeDiffInformedIncrementalMode();
 
+    /**
+     * Holds if sources and sinks should be filtered to only include those that
+     * are in the overlay database. This only has an effect when running
+     * in overlay-informed incremental mode.
+     */
+    predicate observeOverlayInformedIncrementalMode();
+
     Location getASelectedSourceLocation(Node source);
 
     Location getASelectedSinkLocation(Node sink);
@@ -195,7 +202,7 @@ module MakeImpl<LocationSig Location, InputSig<Location> Lang> {
       or
       // If we are overlay informed (i.e. we are not diff-informed), we
       // merge in the local results which includes the base database results.
-      flowLocal(source, sink) and not Config::observeDiffInformedIncrementalMode()
+      flowLocal(source, sink) and Config::observeOverlayInformedIncrementalMode()
     }
 
     /**
@@ -212,13 +219,36 @@ module MakeImpl<LocationSig Location, InputSig<Location> Lang> {
       or
       // If we are overlay informed (i.e. we are not diff-informed), we
       // merge in the local results which includes the base database results.
-      flowToLocal(sink) and not Config::observeDiffInformedIncrementalMode()
+      flowToLocal(sink) and not Config::observeOverlayInformedIncrementalMode()
     }
 
     /**
      * Holds if data can flow from some source to `sink`.
      */
     predicate flowToExpr(Lang::DataFlowExpr sink) { flowTo(exprNode(sink)) }
+
+    /**
+     * Holds if data can flow to some sink from `source`.
+     *
+     * This is a local predicate that only has results local to the overlay/base database.
+     */
+    predicate flowFromLocal(Node source) = forceLocal(Base::flowFrom/1)(source)
+
+    /**
+     * Holds if data can flow to some sink from `source`.
+     */
+    predicate flowFrom(Node source) {
+      Base::flowFrom(source)
+      or
+      // If we are overlay informed (i.e. we are not diff-informed), we
+      // merge in the local results which includes the base database results.
+      flowFromLocal(source) and not Config::observeOverlayInformedIncrementalMode()
+    }
+
+    /**
+     * Holds if data can flow from some source to `sink`.
+     */
+    predicate flowFromExpr(Lang::DataFlowExpr sink) { flowFrom(exprNode(sink)) }
   }
 
   /**
@@ -3447,9 +3477,7 @@ module MakeImpl<LocationSig Location, InputSig<Location> Lang> {
     /**
      * Holds if data can flow from `source` to some sink.
      */
-    private predicate flowFrom(Node source) {
-      exists(PathNode n | n.isSource() and n.getNode() = source)
-    }
+    predicate flowFrom(Node source) { exists(PathNode n | n.isSource() and n.getNode() = source) }
 
     /**
      * Holds if data can flow from `source` to some sink.

Original file line number	Diff line number	Diff line change
`@@ -10,6 +10,6 @@ import java`
`10`	`10`	`module DataFlow {`
`11`	`11`	`private import semmle.code.java.dataflow.internal.DataFlowImplSpecific`
`12`	`12`	`private import codeql.dataflow.DataFlow`
`13`		`- import DataFlowMake<Location, JavaDataFlow>`
	`13`	`+ import DataFlowMakeOverlay<Location, JavaDataFlow>`
`14`	`14`	`import Public`
`15`	`15`	`}`
Original file line number	Diff line number	Diff line change
`@@ -13,5 +13,5 @@ module TaintTracking {`
`13`	`13`	`private import semmle.code.java.dataflow.internal.DataFlowImplSpecific`
`14`	`14`	`private import semmle.code.java.dataflow.internal.TaintTrackingImplSpecific`
`15`	`15`	`private import codeql.dataflow.TaintTracking`
`16`		`- import TaintFlowMake<Location, JavaDataFlow, JavaTaintTracking>`
	`16`	`+ import TaintFlowMakeOverlay<Location, JavaDataFlow, JavaTaintTracking>`
`17`	`17`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1102,7 +1102,7 @@ module DataFlowMakeCore<LocationSig Location, InputSig<Location> Lang> {`
`1102`	`1102`	`}`
`1103`	`1103`	`}`
`1104`	`1104`
`1105`		`-private module DataFlowMakeNonOverlayInformed<LocationSig Location, InputSig<Location> Lang> {`
	`1105`	`+module DataFlowMake<LocationSig Location, InputSig<Location> Lang> {`
`1106`	`1106`	`import DataFlowMakeCore<Location, Lang>`
`1107`	`1107`	`private import Lang`
`1108`	`1108`	`private import internal.DataFlowImpl::MakeImpl<Location, Lang>`
`@@ -1162,17 +1162,9 @@ private module DataFlowMakeNonOverlayInformed<LocationSig Location, InputSig<Loc`
`1162`	`1162`
`1163`	`1163`	`import Flow`
`1164`	`1164`	`}`
`1165`		`-`
`1166`	`1165`	`}`
`1167`	`1166`
`1168`		`-private module DataFlowMakeOverlayInformed<LocationSig Location, InputSig<Location> Lang> {`
`1169`		`- import DataFlowMakeCore<Location, Lang>`
`1170`		`- private import Lang`
`1171`		`- private import internal.DataFlowImpl::MakeImpl<Location, Lang>`
`1172`		`- private import internal.DataFlowImplStage1::MakeImplStage1<Location, Lang>`
`1173`		`-`
`1174`		`-`
`1175`		`-`
	`1167`	`+module DataFlowMakeOverlay<LocationSig Location, InputSig<Location> Lang> {`
`1176`	`1168`	`import DataFlowMakeCore<Location, Lang>`
`1177`	`1169`	`private import Lang`
`1178`	`1170`	`private import internal.DataFlowImpl::MakeImpl<Location, Lang>`
`@@ -1190,6 +1182,8 @@ private module DataFlowMakeOverlayInformed<LocationSig Location, InputSig<Locati`
`1190`	`1182`	`predicate isAdditionalFlowStep(Node node1, Node node2, string model) {`
`1191`	`1183`	`Config::isAdditionalFlowStep(node1, node2) and model = "Config"`
`1192`	`1184`	`}`
	`1185`	`+`
	`1186`	`+ predicate observeOverlayInformedIncrementalMode() { not Config::observeDiffInformedIncrementalMode() }`
`1193`	`1187`	`}`
`1194`	`1188`
`1195`	`1189`	`private module Stage1 = ImplStage1<C>;`
`@@ -1219,6 +1213,8 @@ private module DataFlowMakeOverlayInformed<LocationSig Location, InputSig<Locati`
`1219`	`1213`	`) {`
`1220`	`1214`	`Config::isAdditionalFlowStep(node1, state1, node2, state2) and model = "Config"`
`1221`	`1215`	`}`
	`1216`	`+`
	`1217`	`+ predicate observeOverlayInformedIncrementalMode() { not Config::observeDiffInformedIncrementalMode() }`
`1222`	`1218`	`}`
`1223`	`1219`
`1224`	`1220`	`private module Stage1 = ImplStage1<C>;`
Original file line number	Diff line number	Diff line change
`@@ -155,7 +155,7 @@ private module TaintFlowMakeCore<`
`155`	`155`	`}`
`156`	`156`	`}`
`157`	`157`
`158`		`-private module TaintFlowMakeNonOverlay<`
	`158`	`+module TaintFlowMake<`
`159`	`159`	`LocationSig Location, DF::InputSig<Location> DataFlowLang,`
`160`	`160`	`InputSig<Location, DataFlowLang> TaintTrackingLang>`
`161`	`161`	`{`
`@@ -174,6 +174,10 @@ private module TaintFlowMakeNonOverlay<`
`174`	`174`	`) {`
`175`	`175`	`Config::isAdditionalFlowStep(node1, node2) and model = "Config"`
`176`	`176`	`}`
	`177`	`+`
	`178`	`+ predicate observeOverlayInformedIncrementalMode() {`
	`179`	`+ not Config::observeDiffInformedIncrementalMode()`
	`180`	`+ }`
`177`	`181`	`}`
`178`	`182`
`179`	`183`	`private module C implements DataFlowInternal::FullStateConfigSig {`
`@@ -208,6 +212,8 @@ private module TaintFlowMakeNonOverlay<`
`208`	`212`	`) {`
`209`	`213`	`Config::isAdditionalFlowStep(node1, state1, node2, state2) and model = "Config"`
`210`	`214`	`}`
	`215`	`+`
	`216`	`+ predicate observeOverlayInformedIncrementalMode() { none() }`
`211`	`217`	`}`
`212`	`218`
`213`	`219`	`private module C implements DataFlowInternal::FullStateConfigSig {`
`@@ -279,6 +285,8 @@ private module TaintFlowMakeNonOverlay<`
`279`	`285`	`) {`
`280`	`286`	`Config::isAdditionalFlowStep(node1, state1, node2, state2) and model = "Config"`
`281`	`287`	`}`
	`288`	`+`
	`289`	`+ predicate observeOverlayInformedIncrementalMode() { none() }`
`282`	`290`	`}`
`283`	`291`
`284`	`292`	`private module C implements DataFlowInternal::FullStateConfigSig {`
`@@ -295,8 +303,7 @@ private module TaintFlowMakeNonOverlay<`
`295`	`303`	`}`
`296`	`304`	`}`
`297`	`305`
`298`		`-`
`299`		`-private module TaintFlowMakeOverlay<`
	`306`	`+module TaintFlowMakeOverlay<`
`300`	`307`	`LocationSig Location, DF::InputSig<Location> DataFlowLang,`
`301`	`308`	`InputSig<Location, DataFlowLang> TaintTrackingLang>`
`302`	`309`	`{`
`@@ -316,6 +323,9 @@ private module TaintFlowMakeOverlay<`
`316`	`323`	`Config::isAdditionalFlowStep(node1, node2) and model = "Config"`
`317`	`324`	`}`
`318`	`325`
	`326`	`+ predicate observeOverlayInformedIncrementalMode() {`
	`327`	`+ not Config::observeDiffInformedIncrementalMode()`
	`328`	`+ }`
`319`	`329`	`}`
`320`	`330`
`321`	`331`	`private module C implements DataFlowInternal::FullStateConfigSig {`
`@@ -350,6 +360,10 @@ private module TaintFlowMakeOverlay<`
`350`	`360`	`) {`
`351`	`361`	`Config::isAdditionalFlowStep(node1, state1, node2, state2) and model = "Config"`
`352`	`362`	`}`
	`363`	`+`
	`364`	`+ predicate observeOverlayInformedIncrementalMode() {`
	`365`	`+ not Config::observeDiffInformedIncrementalMode()`
	`366`	`+ }`
`353`	`367`	`}`
`354`	`368`
`355`	`369`	`private module C implements DataFlowInternal::FullStateConfigSig {`
`@@ -381,6 +395,10 @@ private module TaintFlowMakeOverlay<`
`381`	`395`	`) {`
`382`	`396`	`Config::isAdditionalFlowStep(node1, node2) and model = "Config"`
`383`	`397`	`}`
	`398`	`+`
	`399`	`+ predicate observeOverlayInformedIncrementalMode() {`
	`400`	`+ not Config::observeDiffInformedIncrementalMode()`
	`401`	`+ }`
`384`	`402`	`}`
`385`	`403`
`386`	`404`	`private module C implements DataFlowInternal::FullStateConfigSig {`
`@@ -419,6 +437,10 @@ private module TaintFlowMakeOverlay<`
`419`	`437`	`) {`
`420`	`438`	`Config::isAdditionalFlowStep(node1, state1, node2, state2) and model = "Config"`
`421`	`439`	`}`
	`440`	`+`
	`441`	`+ predicate observeOverlayInformedIncrementalMode() {`
	`442`	`+ not Config::observeDiffInformedIncrementalMode()`
	`443`	`+ }`
`422`	`444`	`}`
`423`	`445`
`424`	`446`	`private module C implements DataFlowInternal::FullStateConfigSig {`