Merge pull request #376 from CoinFabrik/375-fix-unsafe-unwrap-detector

Fix `unsafe-unwrap` detector

.github/workflows/general-rust.yml

@@ -67,13 +67,13 @@ jobs:
         run: rustup update
 
       - name: Install Rust nightly
-        run: rustup install nightly-2023-12-16 --profile minimal
+        run: rustup install nightly-2024-07-11 --profile minimal
 
       - name: Install dylint-link
         run: cargo install dylint-link
 
       - name: Install clippy
-        run: rustup component add clippy --toolchain nightly-2023-12-16
+        run: rustup component add clippy --toolchain nightly-2024-07-11
 
       - name: Lint with Clippy
         run: python scripts/run-clippy.py --dir test-cases detectors

.gitignore

@@ -14,7 +14,6 @@ target/
 *.pdb
 
 # Ignore Cargo.lock of library files
-test-cases/**/Cargo.lock
 detectors/**/Cargo.lock
 scout-audit-internal/Cargo.lock
 

detectors/unsafe-unwrap/src/lib.rs

@@ -11,12 +11,13 @@ use rustc_hir::{
     def::Res,
     def_id::LocalDefId,
     intravisit::{walk_expr, FnKind, Visitor},
-    BinOpKind, Body, Expr, ExprKind, FnDecl, HirId, LetStmt, PathSegment, QPath, UnOp,
+    BinOpKind, Body, Expr, ExprKind, FnDecl, HirId, LangItem, MatchSource, PathSegment, QPath,
+    UnOp,
 };
 use rustc_lint::{LateContext, LateLintPass};
 use rustc_span::{sym, Span, Symbol};
 use std::{collections::HashSet, hash::Hash};
-use utils::{fn_returns, get_node_type_opt, match_type_to_str};
+use utils::{fn_returns, get_node_type_opt, match_type_to_str, ConstantAnalyzer};
 
 const LINT_MESSAGE: &str = "Unsafe usage of `unwrap`";
 const PANIC_INDUCING_FUNCTIONS: [&str; 2] = ["panic", "bail"];
@@ -154,13 +155,14 @@ impl ConditionalChecker {
 /// Main unsafe-unwrap visitor
 struct UnsafeUnwrapVisitor<'a, 'tcx> {
     cx: &'a LateContext<'tcx>,
+    constant_analyzer: ConstantAnalyzer<'a, 'tcx>,
     conditional_checker: HashSet<ConditionalChecker>,
     checked_exprs: HashSet<HirId>,
     linted_spans: HashSet<Span>,
     returns_result_or_option: bool,
 }
 
-impl UnsafeUnwrapVisitor<'_, '_> {
+impl<'a, 'tcx> UnsafeUnwrapVisitor<'a, 'tcx> {
     fn get_help_message(&self, unwrap_type: UnwrapType) -> &'static str {
         match (self.returns_result_or_option, unwrap_type) {
             (true, UnwrapType::Option) => "Consider using `ok_or` to convert Option to Result",
@@ -174,7 +176,7 @@ impl UnsafeUnwrapVisitor<'_, '_> {
         }
     }
 
-    fn determine_unwrap_type(&self, receiver: &Expr<'_>) -> UnwrapType {
+    fn determine_unwrap_type(&self, receiver: &Expr<'tcx>) -> UnwrapType {
         let type_opt = get_node_type_opt(self.cx, &receiver.hir_id);
         if let Some(type_) = type_opt {
             if match_type_to_str(self.cx, type_, "Result") {
@@ -184,7 +186,7 @@ impl UnsafeUnwrapVisitor<'_, '_> {
         UnwrapType::Option
     }
 
-    fn is_panic_inducing_call(&self, func: &Expr<'_>) -> bool {
+    fn is_panic_inducing_call(&self, func: &Expr<'tcx>) -> bool {
         if let ExprKind::Path(QPath::Resolved(_, path)) = &func.kind {
             return PANIC_INDUCING_FUNCTIONS.iter().any(|&func| {
                 path.segments
@@ -195,7 +197,7 @@ impl UnsafeUnwrapVisitor<'_, '_> {
         false
     }
 
-    fn get_unwrap_info(&self, receiver: &Expr<'_>) -> Option<HirId> {
+    fn get_unwrap_info(&self, receiver: &Expr<'tcx>) -> Option<HirId> {
         if_chain! {
             if let ExprKind::Path(QPath::Resolved(_, path)) = &receiver.kind;
             if let Res::Local(hir_id) = path.res;
@@ -235,111 +237,63 @@ impl UnsafeUnwrapVisitor<'_, '_> {
         });
     }
 
-    fn is_literal_or_composed_of_literals(&self, expr: &Expr<'_>) -> bool {
-        let mut stack = vec![expr];
-
-        while let Some(current_expr) = stack.pop() {
-            match current_expr.kind {
-                ExprKind::Lit(_) => continue, // A literal is fine, continue processing.
-                ExprKind::Tup(elements) | ExprKind::Array(elements) => {
-                    stack.extend(elements);
-                }
-                ExprKind::Struct(_, fields, _) => {
-                    for field in fields {
-                        stack.push(field.expr);
-                    }
-                }
-                ExprKind::Repeat(element, _) => {
-                    stack.push(element);
-                }
-                _ => return false, // If any element is not a literal or a compound of literals, return false.
+    fn is_method_call_unsafe(&mut self, path_segment: &PathSegment, receiver: &Expr<'tcx>) -> bool {
+        if path_segment.ident.name == sym::unwrap {
+            if self.constant_analyzer.is_constant(receiver) {
+                return false;
             }
-        }
 
-        true // If the stack is emptied without finding a non-literal, all elements are literals.
-    }
-
-    fn is_method_call_unsafe(
-        &self,
-        path_segment: &PathSegment,
-        receiver: &Expr,
-        args: &[Expr],
-    ) -> bool {
-        if path_segment.ident.name == sym::unwrap {
             return self
                 .get_unwrap_info(receiver)
                 .map_or(true, |id| !self.checked_exprs.contains(&id));
         }
 
-        args.iter().any(|arg| self.contains_unsafe_method_call(arg))
-            || self.contains_unsafe_method_call(receiver)
+        false
     }
 
-    fn contains_unsafe_method_call(&self, expr: &Expr) -> bool {
-        match &expr.kind {
-            ExprKind::MethodCall(path_segment, receiver, args, _) => {
-                self.is_method_call_unsafe(path_segment, receiver, args)
+    fn check_expr_for_unsafe_unwrap(&mut self, expr: &Expr<'tcx>) {
+        if let ExprKind::MethodCall(path_segment, receiver, _, _) = &expr.kind {
+            if self.is_method_call_unsafe(path_segment, receiver)
+                && !self.linted_spans.contains(&expr.span)
+            {
+                let unwrap_type = self.determine_unwrap_type(receiver);
+                let help_message = self.get_help_message(unwrap_type);
+
+                span_lint_and_help(
+                    self.cx,
+                    UNSAFE_UNWRAP,
+                    expr.span,
+                    LINT_MESSAGE,
+                    None,
+                    help_message,
+                );
+                self.linted_spans.insert(expr.span);
             }
-            _ => false,
         }
     }
 
-    fn check_expr_for_unsafe_unwrap(&mut self, expr: &Expr) {
-        match &expr.kind {
-            ExprKind::MethodCall(path_segment, receiver, args, _) => {
-                if self.is_method_call_unsafe(path_segment, receiver, args)
-                    && !self.linted_spans.contains(&expr.span)
-                {
-                    let unwrap_type = self.determine_unwrap_type(receiver);
-                    let help_message = self.get_help_message(unwrap_type);
-                    span_lint_and_help(
-                        self.cx,
-                        UNSAFE_UNWRAP,
-                        expr.span,
-                        LINT_MESSAGE,
-                        None,
-                        help_message,
-                    );
-                    self.linted_spans.insert(expr.span);
-                }
-            }
-            ExprKind::Call(func, args) => {
-                if let ExprKind::Path(QPath::Resolved(_, path)) = &func.kind {
-                    let is_some_or_ok = path
-                        .segments
-                        .iter()
-                        .any(|segment| matches!(segment.ident.name, sym::Some | sym::Ok));
-                    let all_literals = args
-                        .iter()
-                        .all(|arg| self.is_literal_or_composed_of_literals(arg));
-                    if is_some_or_ok && all_literals {
-                        self.checked_exprs.insert(expr.hir_id);
-                        return;
-                    }
-                }
-                // Check arguments for unsafe expect
-                for arg in args.iter() {
-                    self.check_expr_for_unsafe_unwrap(arg);
-                }
-            }
-            ExprKind::Tup(exprs) | ExprKind::Array(exprs) => {
-                for expr in exprs.iter() {
-                    self.check_expr_for_unsafe_unwrap(expr);
-                }
+    fn check_for_try(&mut self, expr: &Expr<'tcx>) {
+        if_chain! {
+            // Check for match expressions desugared from try
+            if let ExprKind::Match(expr, _, MatchSource::TryDesugar(_)) = &expr.kind;
+            if let ExprKind::Call(func, args) = &expr.kind;
+            // Check for the try trait branch lang item
+            if let ExprKind::Path(QPath::LangItem(LangItem::TryTraitBranch, _)) = &func.kind;
+            if let ExprKind::Path(QPath::Resolved(_, path)) = &args[0].kind;
+            // Get the HirId of the expression that is being checked
+            if let Res::Local(hir_id) = path.res;
+            then {
+                self.checked_exprs.insert(hir_id);
             }
-            _ => {}
         }
     }
 }
 
 impl<'a, 'tcx> Visitor<'tcx> for UnsafeUnwrapVisitor<'a, 'tcx> {
-    fn visit_local(&mut self, local: &'tcx LetStmt<'tcx>) -> Self::Result {
-        if let Some(init) = local.init {
-            self.check_expr_for_unsafe_unwrap(init);
-        }
-    }
-
     fn visit_expr(&mut self, expr: &'tcx Expr<'_>) {
+        // Check for try expressions (desugared from `?`)
+        self.check_for_try(expr);
+
         // If we are inside an `if` or `if let` expression, we analyze its body
         if !self.conditional_checker.is_empty() {
             match &expr.kind {
@@ -388,8 +342,15 @@ impl<'tcx> LateLintPass<'tcx> for UnsafeUnwrap {
             return;
         }
 
+        let mut constant_analyzer = ConstantAnalyzer {
+            cx,
+            constants: HashSet::new(),
+        };
+        constant_analyzer.visit_body(body);
+
         let mut visitor = UnsafeUnwrapVisitor {
             cx,
+            constant_analyzer,
             checked_exprs: HashSet::new(),
             conditional_checker: HashSet::new(),
             linted_spans: HashSet::new(),