mikros/rust
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
a61019b290
rust/compiler/rustc_lint/src/hidden_unicode_codepoints.rs

115 lines
4.3 KiB
Rust
Raw Normal View History

migrate: `hidden_unicode_codepoints.rs`
2022-11-11 21:39:37 -06:00
use crate::{
lints::{
HiddenUnicodeCodepointsDiag, HiddenUnicodeCodepointsDiagLabels,
HiddenUnicodeCodepointsDiagSub,
},
EarlyContext, EarlyLintPass, LintContext,
};
Optimize literal, doc comment lint as well, extract function.
2021-11-04 17:31:42 -05:00
use ast::util::unicode::{contains_text_flow_control_chars, TEXT_FLOW_CONTROL_CHARS};
Lint against RTL unicode codepoints in literals and comments Address CVE-2021-42574.
2021-08-19 13:40:00 -05:00
use rustc_ast as ast;
use rustc_span::{BytePos, Span, Symbol};
declare_lint! {
/// The `text_direction_codepoint_in_literal` lint detects Unicode codepoints that change the
/// visual representation of text on screen in a way that does not correspond to their on
/// memory representation.
///
/// ### Explanation
///
/// The unicode characters `\u{202A}`, `\u{202B}`, `\u{202D}`, `\u{202E}`, `\u{2066}`,
/// `\u{2067}`, `\u{2068}`, `\u{202C}` and `\u{2069}` make the flow of text on screen change
/// its direction on software that supports these codepoints. This makes the text "abc" display
/// as "cba" on screen. By leveraging software that supports these, people can write specially
/// crafted literals that make the surrounding code seem like it's performing one action, when
/// in reality it is performing another. Because of this, we proactively lint against their
/// presence to avoid surprises.
///
/// ### Example
///
/// ```rust,compile_fail
/// #![deny(text_direction_codepoint_in_literal)]
/// fn main() {
/// println!("{:?}", '');
/// }
/// ```
///
/// {{produces}}
///
pub TEXT_DIRECTION_CODEPOINT_IN_LITERAL,
Deny,
"detect special Unicode codepoints that affect the visual representation of text on screen, \
changing the direction in which text flows",
}
declare_lint_pass!(HiddenUnicodeCodepoints => [TEXT_DIRECTION_CODEPOINT_IN_LITERAL]);
impl HiddenUnicodeCodepoints {
fn lint_text_direction_codepoint(
&self,
cx: &EarlyContext<'_>,
text: Symbol,
span: Span,
padding: u32,
point_at_inner_spans: bool,
label: &str,
) {
// Obtain the `Span`s for each of the forbidden chars.
let spans: Vec<_> = text
.as_str()
.char_indices()
.filter_map(|(i, c)| {
Optimize literal, doc comment lint as well, extract function.
2021-11-04 17:31:42 -05:00
TEXT_FLOW_CONTROL_CHARS.contains(&c).then(|| {
Lint against RTL unicode codepoints in literals and comments Address CVE-2021-42574.
2021-08-19 13:40:00 -05:00
let lo = span.lo() + BytePos(i as u32 + padding);
(c, span.with_lo(lo).with_hi(lo + BytePos(c.len_utf8() as u32)))
})
})
.collect();
migrate: `hidden_unicode_codepoints.rs`
2022-11-11 21:39:37 -06:00
let count = spans.len();
let labels = point_at_inner_spans
.then_some(HiddenUnicodeCodepointsDiagLabels { spans: spans.clone() });
let sub = if point_at_inner_spans && !spans.is_empty() {
HiddenUnicodeCodepointsDiagSub::Escape { spans }
} else {
HiddenUnicodeCodepointsDiagSub::NoEscape { spans }
};
Rename `LintContext::emit_spanned_lint` as `LintContext::emit_span_lint`.
2024-01-15 21:40:39 -06:00
cx.emit_span_lint(
Refactor rustc lint API
2022-09-16 02:01:02 -05:00
TEXT_DIRECTION_CODEPOINT_IN_LITERAL,
span,
migrate: `hidden_unicode_codepoints.rs`
2022-11-11 21:39:37 -06:00
HiddenUnicodeCodepointsDiag { label, count, span_label: span, labels, sub },
Refactor rustc lint API
2022-09-16 02:01:02 -05:00
);
Lint against RTL unicode codepoints in literals and comments Address CVE-2021-42574.
2021-08-19 13:40:00 -05:00
}
}
impl EarlyLintPass for HiddenUnicodeCodepoints {
fn check_attribute(&mut self, cx: &EarlyContext<'_>, attr: &ast::Attribute) {
if let ast::AttrKind::DocComment(_, comment) = attr.kind {
Remove unnecessary sigils around `Symbol::as_str()` calls.
2021-12-14 21:39:23 -06:00
if contains_text_flow_control_chars(comment.as_str()) {
Lint against RTL unicode codepoints in literals and comments Address CVE-2021-42574.
2021-08-19 13:40:00 -05:00
self.lint_text_direction_codepoint(cx, comment, attr.span, 0, false, "doc comment");
}
}
}
Inline some hot lint pass functions. These each have a single call site, due to being called from a "combined" lint pass.
2022-12-06 21:52:28 -06:00
#[inline]
Lint against RTL unicode codepoints in literals and comments Address CVE-2021-42574.
2021-08-19 13:40:00 -05:00
fn check_expr(&mut self, cx: &EarlyContext<'_>, expr: &ast::Expr) {
// byte strings are already handled well enough by `EscapeError::NonAsciiCharInByteString`
Use `token::Lit` in `ast::ExprKind::Lit`. Instead of `ast::Lit`. Literal lowering now happens at two different times. Expression literals are lowered when HIR is crated. Attribute literals are lowered during parsing. This commit changes the language very slightly. Some programs that used to not compile now will compile. This is because some invalid literals that are removed by `cfg` or attribute macros will no longer trigger errors. See this comment for more details: https://github.com/rust-lang/rust/pull/102944#issuecomment-1277476773
2022-10-09 21:40:56 -05:00
match &expr.kind {
ast::ExprKind::Lit(token_lit) => {
Rename some things related to literals. - Rename `ast::Lit::token` as `ast::Lit::token_lit`, because its type is `token::Lit`, which is not a token. (This has been confusing me for a long time.) reasonable because we have an `ast::token::Lit` inside an `ast::Lit`. - Rename `LitKind::{from,to}_lit_token` as `LitKind::{from,to}_token_lit`, to match the above change and `token::Lit`.
2022-08-01 01:46:08 -05:00
let text = token_lit.symbol;
Remove unnecessary sigils around `Symbol::as_str()` calls.
2021-12-14 21:39:23 -06:00
if !contains_text_flow_control_chars(text.as_str()) {
Lint against RTL unicode codepoints in literals and comments Address CVE-2021-42574.
2021-08-19 13:40:00 -05:00
return;
}
Use `token::Lit` in `ast::ExprKind::Lit`. Instead of `ast::Lit`. Literal lowering now happens at two different times. Expression literals are lowered when HIR is crated. Attribute literals are lowered during parsing. This commit changes the language very slightly. Some programs that used to not compile now will compile. This is because some invalid literals that are removed by `cfg` or attribute macros will no longer trigger errors. See this comment for more details: https://github.com/rust-lang/rust/pull/102944#issuecomment-1277476773
2022-10-09 21:40:56 -05:00
let padding = match token_lit.kind {
Lint against RTL unicode codepoints in literals and comments Address CVE-2021-42574.
2021-08-19 13:40:00 -05:00
// account for `"` or `'`
Use `token::Lit` in `ast::ExprKind::Lit`. Instead of `ast::Lit`. Literal lowering now happens at two different times. Expression literals are lowered when HIR is crated. Attribute literals are lowered during parsing. This commit changes the language very slightly. Some programs that used to not compile now will compile. This is because some invalid literals that are removed by `cfg` or attribute macros will no longer trigger errors. See this comment for more details: https://github.com/rust-lang/rust/pull/102944#issuecomment-1277476773
2022-10-09 21:40:56 -05:00
ast::token::LitKind::Str | ast::token::LitKind::Char => 1,
Lint against RTL unicode codepoints in literals and comments Address CVE-2021-42574.
2021-08-19 13:40:00 -05:00
// account for `r###"`
Use `token::Lit` in `ast::ExprKind::Lit`. Instead of `ast::Lit`. Literal lowering now happens at two different times. Expression literals are lowered when HIR is crated. Attribute literals are lowered during parsing. This commit changes the language very slightly. Some programs that used to not compile now will compile. This is because some invalid literals that are removed by `cfg` or attribute macros will no longer trigger errors. See this comment for more details: https://github.com/rust-lang/rust/pull/102944#issuecomment-1277476773
2022-10-09 21:40:56 -05:00
ast::token::LitKind::StrRaw(n) => n as u32 + 2,
Lint against RTL unicode codepoints in literals and comments Address CVE-2021-42574.
2021-08-19 13:40:00 -05:00
_ => return,
};
Use `token::Lit` in `ast::ExprKind::Lit`. Instead of `ast::Lit`. Literal lowering now happens at two different times. Expression literals are lowered when HIR is crated. Attribute literals are lowered during parsing. This commit changes the language very slightly. Some programs that used to not compile now will compile. This is because some invalid literals that are removed by `cfg` or attribute macros will no longer trigger errors. See this comment for more details: https://github.com/rust-lang/rust/pull/102944#issuecomment-1277476773
2022-10-09 21:40:56 -05:00
self.lint_text_direction_codepoint(cx, text, expr.span, padding, true, "literal");
Lint against RTL unicode codepoints in literals and comments Address CVE-2021-42574.
2021-08-19 13:40:00 -05:00
}
Use `token::Lit` in `ast::ExprKind::Lit`. Instead of `ast::Lit`. Literal lowering now happens at two different times. Expression literals are lowered when HIR is crated. Attribute literals are lowered during parsing. This commit changes the language very slightly. Some programs that used to not compile now will compile. This is because some invalid literals that are removed by `cfg` or attribute macros will no longer trigger errors. See this comment for more details: https://github.com/rust-lang/rust/pull/102944#issuecomment-1277476773
2022-10-09 21:40:56 -05:00
_ => {}
Lint against RTL unicode codepoints in literals and comments Address CVE-2021-42574.
2021-08-19 13:40:00 -05:00
};
}
}
Reference in New Issue Copy Permalink