Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Improve try-catch parsing #1862

Merged
merged 6 commits into from
Jun 9, 2023
Merged

Improve try-catch parsing #1862

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
b26f8da
Improve try-catch parsing
smonicas Apr 24, 2023
d7b0d61
Improve handling of multiple return variables
smonicas Apr 27, 2023
50876cf
Handle when there aren't return variables
smonicas Apr 27, 2023
6eb296c
Test catch variables not detected as uninitialized
smonicas Apr 27, 2023
2da5ee4
Fix multiple try catch with same return var name
smonicas May 10, 2023
e2d91fc
Merge branch 'dev' into dev-try-catch-parsing
0xalpharush Jun 7, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
118 changes: 105 additions & 13 deletions slither/solc_parsing/declarations/function.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -660,6 +660,70 @@ def _parse_dowhile(self, do_while_statement: Dict, node: NodeSolc) -> NodeSolc:
link_underlying_nodes(node_condition, node_endDoWhile)
return node_endDoWhile

# pylint: disable=no-self-use
def _construct_try_expression(self, externalCall: Dict, parameters_list: Dict) -> Dict:
# if the parameters are more than 1 we make the leftHandSide of the Assignment node
# a TupleExpression otherwise an Identifier

# case when there isn't returns(...)
# e.g. external call that doesn't have any return variable
if not parameters_list:
return externalCall

ret: Dict = {"nodeType": "Assignment", "operator": "=", "src": parameters_list["src"]}

parameters = parameters_list.get("parameters", None)

# if the name is "" it means the return variable is not used
if len(parameters) == 1:
if parameters[0]["name"] != "":
self._add_param(parameters[0])
ret["typeDescriptions"] = {
"typeString": parameters[0]["typeName"]["typeDescriptions"]["typeString"]
}
leftHandSide = {
"name": parameters[0]["name"],
"nodeType": "Identifier",
"src": parameters[0]["src"],
"referencedDeclaration": parameters[0]["id"],
"typeDescriptions": parameters[0]["typeDescriptions"],
}
else:
# we don't need an Assignment so we return only the external call
return externalCall
else:
ret["typeDescriptions"] = {"typeString": "tuple()"}
leftHandSide = {
"components": [],
"nodeType": "TupleExpression",
"src": parameters_list["src"],
}

for i, p in enumerate(parameters):
if p["name"] == "":
continue

new_statement = {
"nodeType": "VariableDefinitionStatement",
"src": p["src"],
"declarations": [p],
}
self._add_param_init_tuple(new_statement, i)

ident = {
"name": p["name"],
"nodeType": "Identifier",
"src": p["src"],
"referencedDeclaration": p["id"],
"typeDescriptions": p["typeDescriptions"],
}
leftHandSide["components"].append(ident)

ret["leftHandSide"] = leftHandSide
ret["rightHandSide"] = externalCall

return ret

def _parse_try_catch(self, statement: Dict, node: NodeSolc) -> NodeSolc:
externalCall = statement.get("externalCall", None)

Expand All @@ -669,15 +733,28 @@ def _parse_try_catch(self, statement: Dict, node: NodeSolc) -> NodeSolc:
node.underlying_node.scope.is_checked, False, node.underlying_node.scope
)
new_node = self._new_node(NodeType.TRY, statement["src"], catch_scope)
new_node.add_unparsed_expression(externalCall)
clauses = statement.get("clauses", [])
# the first clause is the try scope
returned_variables = clauses[0].get("parameters", None)
constructed_try_expression = self._construct_try_expression(
externalCall, returned_variables
)
new_node.add_unparsed_expression(constructed_try_expression)
link_underlying_nodes(node, new_node)
node = new_node

for clause in statement.get("clauses", []):
self._parse_catch(clause, node)
for index, clause in enumerate(clauses):
# clauses after the first one are related to catch cases
# we set the parameters (e.g. data in this case. catch(string memory data) ...)
# to be initialized so they are not reported by the uninitialized-local-variables detector
if index >= 1:
self._parse_catch(clause, node, True)
else:
# the parameters for the try scope were already added in _construct_try_expression
self._parse_catch(clause, node, False)
return node

def _parse_catch(self, statement: Dict, node: NodeSolc) -> NodeSolc:
def _parse_catch(self, statement: Dict, node: NodeSolc, add_param: bool) -> NodeSolc:
block = statement.get("block", None)

if block is None:
Expand All @@ -687,15 +764,16 @@ def _parse_catch(self, statement: Dict, node: NodeSolc) -> NodeSolc:
try_node = self._new_node(NodeType.CATCH, statement["src"], try_scope)
link_underlying_nodes(node, try_node)

if self.is_compact_ast:
params = statement.get("parameters", None)
else:
params = statement[self.get_children("children")]
if add_param:
if self.is_compact_ast:
params = statement.get("parameters", None)
else:
params = statement[self.get_children("children")]

if params:
for param in params.get("parameters", []):
assert param[self.get_key()] == "VariableDeclaration"
self._add_param(param)
if params:
for param in params.get("parameters", []):
assert param[self.get_key()] == "VariableDeclaration"
self._add_param(param, True)

return self._parse_statement(block, try_node, try_scope)

Expand Down Expand Up @@ -1162,7 +1240,7 @@ def _fix_catch(self, node: Node, end_node: Node, visited: Set[Node]) -> None:
visited.add(son)
self._fix_catch(son, end_node, visited)

def _add_param(self, param: Dict) -> LocalVariableSolc:
def _add_param(self, param: Dict, initialized: bool = False) -> LocalVariableSolc:

local_var = LocalVariable()
local_var.set_function(self._function)
Expand All @@ -1172,13 +1250,27 @@ def _add_param(self, param: Dict) -> LocalVariableSolc:

local_var_parser.analyze(self)

if initialized:
local_var.initialized = True

# see https://solidity.readthedocs.io/en/v0.4.24/types.html?highlight=storage%20location#data-location
if local_var.location == "default":
local_var.set_location("memory")

self._add_local_variable(local_var_parser)
return local_var_parser

def _add_param_init_tuple(self, statement: Dict, index: int) -> LocalVariableInitFromTupleSolc:

local_var = LocalVariableInitFromTuple()
local_var.set_function(self._function)
local_var.set_offset(statement["src"], self._function.compilation_unit)

local_var_parser = LocalVariableInitFromTupleSolc(local_var, statement, index)

self._add_local_variable(local_var_parser)
return local_var_parser

def _parse_params(self, params: Dict):
assert params[self.get_key()] == "ParameterList"

Expand Down
2 changes: 1 addition & 1 deletion ...detectors__detector_UninitializedLocalVars_0_6_11_uninitialized_local_variable_sol__0.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,2 +1,2 @@
Uninitialized.func().uint_not_init (tests/e2e/detectors/test_data/uninitialized-local/0.6.11/uninitialized_local_variable.sol#4) is a local variable never initialized
Uninitialized.func().uint_not_init (tests/e2e/detectors/test_data/uninitialized-local/0.6.11/uninitialized_local_variable.sol#8) is a local variable never initialized

2 changes: 1 addition & 1 deletion .../detectors__detector_UninitializedLocalVars_0_7_6_uninitialized_local_variable_sol__0.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,2 +1,2 @@
Uninitialized.func().uint_not_init (tests/e2e/detectors/test_data/uninitialized-local/0.7.6/uninitialized_local_variable.sol#4) is a local variable never initialized
Uninitialized.func().uint_not_init (tests/e2e/detectors/test_data/uninitialized-local/0.7.6/uninitialized_local_variable.sol#8) is a local variable never initialized

14 changes: 13 additions & 1 deletion tests/e2e/detectors/test_data/uninitialized-local/0.6.11/uninitialized_local_variable.sol
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,10 +1,22 @@
interface I {
function a() external;
}

contract Uninitialized{

function func() external returns(uint){
uint uint_not_init;
uint uint_init = 1;
return uint_not_init + uint_init;
}
}

function func_try_catch(I i) external returns(uint) {
try i.a() {
return 1;
} catch (bytes memory data) {
data;
}
}

function noreportfor() public {
for(uint i; i < 6; i++) {
Expand Down
Binary file modified ...etectors/test_data/uninitialized-local/0.6.11/uninitialized_local_variable.sol-0.6.11.zip
View file
Open in desktop
Binary file not shown.
14 changes: 13 additions & 1 deletion tests/e2e/detectors/test_data/uninitialized-local/0.7.6/uninitialized_local_variable.sol
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,10 +1,22 @@
interface I {
function a() external;
}

contract Uninitialized{

function func() external returns(uint){
uint uint_not_init;
uint uint_init = 1;
return uint_not_init + uint_init;
}
}

function func_try_catch(I i) external returns(uint) {
try i.a() {
return 1;
} catch (bytes memory data) {
data;
}
}

function noreportfor() public {
for(uint i; i < 6; i++) {
Expand Down
Binary file modified .../detectors/test_data/uninitialized-local/0.7.6/uninitialized_local_variable.sol-0.7.6.zip
View file
Open in desktop
Binary file not shown.