cbmc/taint__parser_8cpp_source.html

/*******************************************************************\


Module: Taint Parser


Author: Daniel Kroening, kroening@kroening.com


\*******************************************************************/


#include "taint_parser.h"


#include <ostream>


#include <util/string2int.h>


#include <json/json_parser.h>


bool taint_parser(

  const std::string &file_name,

  taint_parse_treet &dest,

  message_handlert &message_handler)

{

  jsont json;


  if(parse_json(file_name, message_handler, json))

  {

    messaget message(message_handler);

    message.error() << "taint file is not a valid json file"

                    << messaget::eom;

    return true;

  }


  if(!json.is_array())

  {

    messaget message(message_handler);

    message.error() << "expecting an array in the taint file, but got "

                    << json << messaget::eom;

    return true;

  }


  for(const auto &taint_spec : to_json_array(json))

  {

    if(!taint_spec.is_object())

    {

      messaget message(message_handler);

      message.error() << "expecting an array of objects "

                      << "in the taint file, but got " << taint_spec

                      << messaget::eom;

      return true;

    }


    taint_parse_treet::rulet rule;


    const std::string kind = taint_spec["kind"].value;


    if(kind=="source")

      rule.kind=taint_parse_treet::rulet::SOURCE;

    else if(kind=="sink")

      rule.kind=taint_parse_treet::rulet::SINK;

    else if(kind=="sanitizer")

      rule.kind=taint_parse_treet::rulet::SANITIZER;

    else

    {

      messaget message(message_handler);

      message.error() << "taint rule must have " << messaget::quote_begin

                      << "kind" << messaget::quote_end << " which is "

                      << messaget::quote_begin << "source"

                      << messaget::quote_end << " or " << messaget::quote_begin

                      << "sink" << messaget::quote_end << " or "

                      << messaget::quote_begin << "sanitizer"

                      << messaget::quote_end << messaget::eom;

      return true;

    }


    const std::string function = taint_spec["function"].value;


    if(function.empty())

    {

      messaget message(message_handler);

      message.error() << "taint rule must have " << messaget::quote_begin

                      << "function" << messaget::quote_end << messaget::eom;

      return true;

    }

    else

      rule.function_identifier=function;


    const std::string where = taint_spec["where"].value;


    if(where=="return_value")

    {

      rule.where=taint_parse_treet::rulet::RETURN_VALUE;

    }

    else if(where == id2string(ID_this))

    {

      rule.where=taint_parse_treet::rulet::THIS;

    }

    else if(std::string(where, 0, 9)=="parameter")

    {

      rule.where=taint_parse_treet::rulet::PARAMETER;

      rule.parameter_number =

        safe_string2unsigned(std::string_view{where}.substr(9));

    }

    else

    {

      messaget message(message_handler);

      message.error() << "taint rule must have " << messaget::quote_begin

                      << "where" << messaget::quote_end << " which is "

                      << messaget::quote_begin << "return_value"

                      << messaget::quote_end << " or " << messaget::quote_begin

                      << "this" << messaget::quote_end << " or "

                      << messaget::quote_begin << "parameter1"

                      << messaget::quote_end << "..." << messaget::eom;

      return true;

    }


    rule.taint = taint_spec["taint"].value;

    rule.message = taint_spec["message"].value;

    rule.id = taint_spec["id"].value;


    dest.rules.push_back(rule);

  }


  return false;

}


void taint_parse_treet::rulet::output(std::ostream &out) const

{

  if(!id.empty())

    out << id << ": ";


  switch(kind)

  {

  case SOURCE: out << "SOURCE "; break;

  case SINK: out << "SINK "; break;

  case SANITIZER: out << "SANITIZER "; break;

  }


  out << taint << " on ";


  switch(where)

  {

  case THIS: out << "this in " << function_identifier; break;

  case PARAMETER: out << "parameter " << parameter_number << " of "

                      << function_identifier; break;

  case RETURN_VALUE: out << "return value of " << function_identifier; break;

  }


  out << '\n';

}


void taint_parse_treet::output(std::ostream &out) const

{

  for(const auto &rule : rules)

    rule.output(out);

}


ai_baset::output
virtual void output(const namespacet &ns, const irep_idt &function_id, const goto_programt &goto_program, std::ostream &out) const
Output the abstract states for a single function.
Definition ai.cpp:39

ait
ait supplies three of the four components needed: an abstract interpreter (in this case handling func...
Definition ai.h:566

jsont
Definition json.h:27

message_handlert
Definition message.h:27

messaget
Class that provides messages with a built-in verbosity 'level'.
Definition message.h:154

messaget::quote_begin
static const commandt quote_begin
Start quoted text.
Definition message.h:389

messaget::error
mstreamt & error() const
Definition message.h:401

messaget::quote_end
static const commandt quote_end
End quoted text.
Definition message.h:393

messaget::eom
static eomt eom
Definition message.h:289

taint_parse_treet::rulet
Definition taint_parser.h:27

taint_parse_treet::rulet::taint
irep_idt taint
Definition taint_parser.h:49

taint_parse_treet::rulet::PARAMETER
@ PARAMETER
Definition taint_parser.h:30

taint_parse_treet::rulet::THIS
@ THIS
Definition taint_parser.h:30

taint_parse_treet::rulet::RETURN_VALUE
@ RETURN_VALUE
Definition taint_parser.h:30

taint_parse_treet::rulet::SANITIZER
@ SANITIZER
Definition taint_parser.h:29

taint_parse_treet::rulet::SINK
@ SINK
Definition taint_parser.h:29

taint_parse_treet::rulet::SOURCE
@ SOURCE
Definition taint_parser.h:29

taint_parse_treet::rulet::where
enum taint_parse_treet::rulet::@2 where

taint_parse_treet::rulet::output
void output(std::ostream &) const
Definition taint_parser.cpp:128

taint_parse_treet::rulet::function_identifier
irep_idt function_identifier
Definition taint_parser.h:48

taint_parse_treet::rulet::kind
enum taint_parse_treet::rulet::@1 kind

taint_parse_treet::rulet::parameter_number
unsigned parameter_number
Definition taint_parser.h:50

taint_parse_treet
Definition taint_parser.h:24

taint_parse_treet::output
void output(std::ostream &) const
Definition taint_parser.cpp:153

taint_parse_treet::rules
rulest rules
Definition taint_parser.h:63

id2string
const std::string & id2string(const irep_idt &d)
Definition irep.h:44

to_json_array
json_arrayt & to_json_array(jsont &json)
Definition json.h:424

parse_json
bool parse_json(std::istream &in, const std::string &filename, message_handlert &message_handler, jsont &dest)
Definition json_parser.cpp:27

json_parser.h

json
static void json(json_objectT &result, const irep_idt &property_id, const property_infot &property_info)
Definition properties.cpp:120

safe_string2unsigned
unsigned safe_string2unsigned(std::string_view str, int base)
Definition string2int.cpp:16

string2int.h

taint_parser
bool taint_parser(const std::string &file_name, taint_parse_treet &dest, message_handlert &message_handler)
Definition taint_parser.cpp:20

taint_parser.h
Taint Parser.