Merge pull request #16061 from RasmusWL/js-extractor-fix

JS: More robust CommonJS/ES2015 detection logic for extractor

Author: asgerf

javascript/extractor/src/com/semmle/js/extractor/AbstractDetector.java

@@ -0,0 +1,113 @@
+package com.semmle.js.extractor;
+
+import com.semmle.js.ast.AssignmentExpression;
+import com.semmle.js.ast.BlockStatement;
+import com.semmle.js.ast.CallExpression;
+import com.semmle.js.ast.Expression;
+import com.semmle.js.ast.ExpressionStatement;
+import com.semmle.js.ast.IFunction;
+import com.semmle.js.ast.Identifier;
+import com.semmle.js.ast.IfStatement;
+import com.semmle.js.ast.MemberExpression;
+import com.semmle.js.ast.Node;
+import com.semmle.js.ast.ParenthesizedExpression;
+import com.semmle.js.ast.Program;
+import com.semmle.js.ast.Statement;
+import com.semmle.js.ast.TryStatement;
+import com.semmle.js.ast.UnaryExpression;
+import com.semmle.js.ast.VariableDeclaration;
+import com.semmle.js.ast.VariableDeclarator;
+import java.util.List;
+
+/**
+ * A utility base class for running detection logic on statements/expressions by
+ * visiting each node. It performs recursive decent into assignment expressions and
+ * callee expressions for call-expressions (to handle detection of `foo` in `foo()()`)
+ * */
+public abstract class AbstractDetector {
+  protected boolean programDetection(Node ast) {
+    if (!(ast instanceof Program)) return false;
+
+    return visitStatements(((Program) ast).getBody());
+  }
+
+  protected boolean visitStatements(List<Statement> stmts) {
+    for (Statement stmt : stmts) if (visitStatement(stmt)) return true;
+    return false;
+  }
+
+  protected boolean visitStatement(Statement stmt) {
+    if (stmt instanceof ExpressionStatement) {
+      Expression e = stripParens(((ExpressionStatement) stmt).getExpression());
+
+      // check whether `e` is an iife; if so, recursively check its body
+
+      // strip off unary operators to handle `!function(){...}()`
+      if (e instanceof UnaryExpression) e = ((UnaryExpression) e).getArgument();
+
+      if (e instanceof CallExpression && ((CallExpression) e).getArguments().isEmpty()) {
+        Expression callee = stripParens(((CallExpression) e).getCallee());
+        if (callee instanceof IFunction) {
+          Node body = ((IFunction) callee).getBody();
+          if (body instanceof BlockStatement)
+            return visitStatements(((BlockStatement) body).getBody());
+        }
+      }
+
+      if (visitExpression(e)) return true;
+
+    } else if (stmt instanceof VariableDeclaration) {
+      for (VariableDeclarator decl : ((VariableDeclaration) stmt).getDeclarations()) {
+        Expression init = stripParens(decl.getInit());
+        if (visitExpression(init)) return true;
+      }
+
+    } else if (stmt instanceof TryStatement) {
+      return visitStatement(((TryStatement) stmt).getBlock());
+
+    } else if (stmt instanceof BlockStatement) {
+      return visitStatements(((BlockStatement) stmt).getBody());
+
+    } else if (stmt instanceof IfStatement) {
+      IfStatement is = (IfStatement) stmt;
+      return visitStatement(is.getConsequent())
+          || visitStatement(is.getAlternate());
+    }
+
+    return false;
+  }
+
+  private static Expression stripParens(Expression e) {
+    if (e instanceof ParenthesizedExpression)
+      return stripParens(((ParenthesizedExpression) e).getExpression());
+    return e;
+  }
+
+  /**
+   * Recursively check {@code e} if it's a call or an assignment.
+   */
+  protected boolean visitExpression(Expression e) {
+    if (e instanceof CallExpression) {
+      CallExpression call = (CallExpression) e;
+      Expression callee = call.getCallee();
+      // recurse, to handle things like `foo()()`
+      if (visitExpression(callee)) return true;
+      return false;
+    } else if (e instanceof MemberExpression) {
+      return visitExpression(((MemberExpression) e).getObject());
+    } else if (e instanceof AssignmentExpression) {
+      AssignmentExpression assgn = (AssignmentExpression) e;
+
+      // filter out compound assignments
+      if (!"=".equals(assgn.getOperator())) return false;
+
+      return visitExpression(assgn.getRight());
+    }
+    return false;
+  }
+
+  /** Is {@code e} an identifier with name {@code name}? */
+  protected static boolean isIdentifier(Expression e, String name) {
+    return e instanceof Identifier && name.equals(((Identifier) e).getName());
+  }
+}

javascript/extractor/src/com/semmle/js/extractor/ES2015Detector.java

@@ -0,0 +1,34 @@
+package com.semmle.js.extractor;
+
+import com.semmle.js.ast.DynamicImport;
+import com.semmle.js.ast.ExportDeclaration;
+import com.semmle.js.ast.Expression;
+import com.semmle.js.ast.ImportDeclaration;
+import com.semmle.js.ast.Node;
+import com.semmle.js.ast.Statement;
+
+/** A utility class for detecting Node.js code. */
+public class ES2015Detector extends AbstractDetector {
+  /**
+   * Is {@code ast} a program that uses ES2015 import/export code?
+   */
+  public static boolean looksLikeES2015(Node ast) {
+    return new ES2015Detector().programDetection(ast);
+  }
+
+  @Override
+  protected boolean visitStatement(Statement stmt) {
+    if (stmt instanceof ImportDeclaration || stmt instanceof ExportDeclaration) {
+      return true;
+    }
+    return super.visitStatement(stmt);
+  }
+
+  @Override
+  protected boolean visitExpression(Expression e) {
+    if (e instanceof DynamicImport) {
+      return true;
+    }
+    return super.visitExpression(e);
+  }
+}

javascript/extractor/src/com/semmle/js/extractor/JSExtractor.java

@@ -58,6 +58,26 @@ public Pair<Label, ParseResultInfo> extract(
 
     JSParser.Result parserRes =
         JSParser.parse(config, sourceType, source, textualExtractor.getMetrics());
+
+    // Check if we guessed wrong with the regex in `establishSourceType`, (which could
+    // happen due to a block-comment line starting with '  import').
+    if (config.getSourceType() == SourceType.AUTO && sourceType != SourceType.SCRIPT) {
+      boolean wrongGuess = false;
+
+      if (sourceType == SourceType.MODULE) {
+        // check that we did see an import/export declaration
+        wrongGuess = ES2015Detector.looksLikeES2015(parserRes.getAST()) == false;
+      } else if (sourceType == SourceType.CLOSURE_MODULE ) {
+        // TODO
+      }
+
+      if (wrongGuess) {
+        sourceType = SourceType.SCRIPT;
+        parserRes =
+          JSParser.parse(config, sourceType, source, textualExtractor.getMetrics());
+      }
+    }
+
     return extract(textualExtractor, source, toplevelKind, scopeManager, sourceType, parserRes);
   }
 

javascript/extractor/src/com/semmle/js/extractor/NodeJSDetector.java

@@ -1,132 +1,30 @@
 package com.semmle.js.extractor;
 
 import com.semmle.js.ast.AssignmentExpression;
-import com.semmle.js.ast.BlockStatement;
 import com.semmle.js.ast.CallExpression;
 import com.semmle.js.ast.Expression;
-import com.semmle.js.ast.ExpressionStatement;
-import com.semmle.js.ast.IFunction;
-import com.semmle.js.ast.Identifier;
-import com.semmle.js.ast.IfStatement;
 import com.semmle.js.ast.MemberExpression;
 import com.semmle.js.ast.Node;
-import com.semmle.js.ast.ParenthesizedExpression;
-import com.semmle.js.ast.Program;
-import com.semmle.js.ast.Statement;
-import com.semmle.js.ast.TryStatement;
-import com.semmle.js.ast.UnaryExpression;
-import com.semmle.js.ast.VariableDeclaration;
-import com.semmle.js.ast.VariableDeclarator;
-import java.util.List;
 
 /** A utility class for detecting Node.js code. */
-public class NodeJSDetector {
+public class NodeJSDetector extends AbstractDetector {
   /**
    * Is {@code ast} a program that looks like Node.js code, that is, does it contain a top-level
-   * {@code require} or an export?
+   * {@code require} or an {@code module.exports = ...}/{@code exports = ...}?
    */
   public static boolean looksLikeNodeJS(Node ast) {
-    if (!(ast instanceof Program)) return false;
-
-    return hasToplevelRequireOrExport(((Program) ast).getBody());
-  }
-
-  /**
-   * Does this program contain a statement that looks like a Node.js {@code require} or an export?
-   *
-   * <p>We recursively traverse argument-less immediately invoked function expressions (i.e., no UMD
-   * modules), but not loops or if statements.
-   */
-  private static boolean hasToplevelRequireOrExport(List<Statement> stmts) {
-    for (Statement stmt : stmts) if (hasToplevelRequireOrExport(stmt)) return true;
-    return false;
+    return new NodeJSDetector().programDetection(ast);
   }
 
-  private static boolean hasToplevelRequireOrExport(Statement stmt) {
-    if (stmt instanceof ExpressionStatement) {
-      Expression e = stripParens(((ExpressionStatement) stmt).getExpression());
-
-      // check whether `e` is an iife; if so, recursively check its body
-
-      // strip off unary operators to handle `!function(){...}()`
-      if (e instanceof UnaryExpression) e = ((UnaryExpression) e).getArgument();
-
-      if (e instanceof CallExpression && ((CallExpression) e).getArguments().isEmpty()) {
-        Expression callee = stripParens(((CallExpression) e).getCallee());
-        if (callee instanceof IFunction) {
-          Node body = ((IFunction) callee).getBody();
-          if (body instanceof BlockStatement)
-            return hasToplevelRequireOrExport(((BlockStatement) body).getBody());
-        }
-      }
-
-      if (isRequireCall(e) || isExport(e)) return true;
-
-    } else if (stmt instanceof VariableDeclaration) {
-      for (VariableDeclarator decl : ((VariableDeclaration) stmt).getDeclarations()) {
-        Expression init = stripParens(decl.getInit());
-        if (isRequireCall(init) || isExport(init)) return true;
-      }
-
-    } else if (stmt instanceof TryStatement) {
-      return hasToplevelRequireOrExport(((TryStatement) stmt).getBlock());
-
-    } else if (stmt instanceof BlockStatement) {
-      return hasToplevelRequireOrExport(((BlockStatement) stmt).getBody());
-
-    } else if (stmt instanceof IfStatement) {
-      IfStatement is = (IfStatement) stmt;
-      return hasToplevelRequireOrExport(is.getConsequent())
-          || hasToplevelRequireOrExport(is.getAlternate());
-    }
-
-    return false;
-  }
-
-  private static Expression stripParens(Expression e) {
-    if (e instanceof ParenthesizedExpression)
-      return stripParens(((ParenthesizedExpression) e).getExpression());
-    return e;
-  }
-
-  /**
-   * Is {@code e} a call to a function named {@code require} with one argument, or an assignment
-   * whose right hand side is the result of such a call?
-   */
-  private static boolean isRequireCall(Expression e) {
+  @Override
+  protected boolean visitExpression(Expression e) {
+    // require('...')
     if (e instanceof CallExpression) {
       CallExpression call = (CallExpression) e;
       Expression callee = call.getCallee();
       if (isIdentifier(callee, "require") && call.getArguments().size() == 1) return true;
-      if (isRequireCall(callee)) return true;
-      return false;
-    } else if (e instanceof MemberExpression) {
-      return isRequireCall(((MemberExpression) e).getObject());
-    } else if (e instanceof AssignmentExpression) {
-      AssignmentExpression assgn = (AssignmentExpression) e;
-
-      // filter out compound assignments
-      if (!"=".equals(assgn.getOperator())) return false;
-
-      return isRequireCall(assgn.getRight());
     }
-    return false;
-  }
 
-  /**
-   * Does {@code e} look like a Node.js export?
-   *
-   * <p>Currently, three kinds of exports are recognised:
-   *
-   * <ul>
-   *   <li><code>exports.foo = ...</code>
-   *   <li><code>module.exports = ...</code>
-   *   <li><code>module.exports.foo = ...</code>
-   * </ul>
-   *
-   * Detection is done recursively, so <code>foo = exports.foo = ...</code> is handled correctly.
-   */
-  private static boolean isExport(Expression e) {
     if (e instanceof AssignmentExpression) {
       AssignmentExpression assgn = (AssignmentExpression) e;
 
@@ -149,12 +47,9 @@ private static boolean isExport(Expression e) {
           if (isModuleExports(targetBase)) return true;
         }
       }
-
-      // recursively check right hand side
-      return isExport(assgn.getRight());
     }
 
-    return false;
+    return super.visitExpression(e);
   }
 
   /** Is {@code me} a member expression {@code module.exports}? */
@@ -163,9 +58,4 @@ private static boolean isModuleExports(MemberExpression me) {
         && isIdentifier(me.getObject(), "module")
         && isIdentifier(me.getProperty(), "exports");
   }
-
-  /** Is {@code e} an identifier with name {@code name}? */
-  private static boolean isIdentifier(Expression e, String name) {
-    return e instanceof Identifier && name.equals(((Identifier) e).getName());
-  }
 }

javascript/extractor/test/com/semmle/js/extractor/test/AllTests.java

@@ -18,6 +18,7 @@
 @SuiteClasses({
   JSXTests.class,
   NodeJSDetectorTests.class,
+  ES2015DetectorTests.class,
   TrapTests.class,
   ObjectRestSpreadTests.class,
   ClassPropertiesTests.class,

javascript/extractor/test/com/semmle/js/extractor/test/BUILD.bazel

@@ -12,6 +12,9 @@ java_test(
         "TS_WRAPPER_ZIP": "$(rlocationpath //javascript/extractor/lib/typescript)",
     },
     test_class = "com.semmle.js.extractor.test.AllTests",
+    # To use `replaceExpectedOutput` you need to uncomment the following line
+    # (to be allowed to override the .trap files on disk)
+    # tags = ["no-sandbox"],
     deps = [
         "//javascript/extractor",
         "//javascript/extractor:deps",