github
diff --git a/‎python/ql/src/semmle/python/Flow.qll‎
Lines changed: 6 additions & 1 deletion b/‎python/ql/src/semmle/python/Flow.qll‎
Lines changed: 6 additions & 1 deletion
diff --git a/‎python/ql/src/semmle/python/dataflow/SsaDefinitions.qll‎
Lines changed: 4 additions & 5 deletions b/‎python/ql/src/semmle/python/dataflow/SsaDefinitions.qll‎
Lines changed: 4 additions & 5 deletions
diff --git a/‎python/ql/src/semmle/python/objects/Callables.qll‎
Lines changed: 3 additions & 0 deletions b/‎python/ql/src/semmle/python/objects/Callables.qll‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎python/ql/src/semmle/python/objects/Classes.qll‎
Lines changed: 4 additions & 0 deletions b/‎python/ql/src/semmle/python/objects/Classes.qll‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎python/ql/src/semmle/python/objects/Constants.qll‎
Lines changed: 20 additions & 0 deletions b/‎python/ql/src/semmle/python/objects/Constants.qll‎
Lines changed: 20 additions & 0 deletions
diff --git a/‎python/ql/src/semmle/python/objects/Descriptors.qll‎
Lines changed: 9 additions & 0 deletions b/‎python/ql/src/semmle/python/objects/Descriptors.qll‎
Lines changed: 9 additions & 0 deletions
diff --git a/‎python/ql/src/semmle/python/objects/Instances.qll‎
Lines changed: 6 additions & 0 deletions b/‎python/ql/src/semmle/python/objects/Instances.qll‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎python/ql/src/semmle/python/objects/Modules.qll‎
Lines changed: 6 additions & 0 deletions b/‎python/ql/src/semmle/python/objects/Modules.qll‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎python/ql/src/semmle/python/objects/ObjectInternal.qll‎
Lines changed: 13 additions & 0 deletions b/‎python/ql/src/semmle/python/objects/ObjectInternal.qll‎
Lines changed: 13 additions & 0 deletions
diff --git a/‎python/ql/src/semmle/python/objects/Sequences.qll‎
Lines changed: 2 additions & 0 deletions b/‎python/ql/src/semmle/python/objects/Sequences.qll‎
Lines changed: 2 additions & 0 deletions
@@ -745,6 +745,8 @@ class DefinitionNode extends ControlFlowNode {
         exists(Assign a | a.getATarget().(Tuple).getAnElt().getAFlowNode() = this)
         or
         exists(Assign a | a.getATarget().(List).getAnElt().getAFlowNode() = this)
+        or
+        exists(For for | for.getTarget().getAFlowNode() = this)
     }
 
     /** flow node corresponding to the value assigned for the definition corresponding to this flow node */
@@ -864,7 +866,7 @@ class DictNode extends ControlFlowNode {
 
 }
 
-private Expr assigned_value(Expr lhs) {
+private AstNode assigned_value(Expr lhs) {
     /* lhs = result */
     exists(Assign a | a.getATarget() = lhs and result = a.getValue())
     or
@@ -881,6 +883,9 @@ private Expr assigned_value(Expr lhs) {
         lhs = target.getElt(index) and
         result = values.getElt(index)
     )
+    or
+    /* for lhs in seq: => `result` is the `for` node, representing the `iter(next(seq))` operation. */
+    result.(For).getTarget() = lhs
 }
 
 /** A flow node for a `for` statement. */
 
@@ -58,12 +58,10 @@ abstract class PythonSsaSourceVariable extends SsaSourceVariable {
         or
         SsaSource::assignment_definition(this, def, _)
         or
-        SsaSource::multi_assignment_definition(this, def)
+        SsaSource::multi_assignment_definition(this, def, _, _)
         or
         SsaSource::deletion_definition(this, def)
         or
-        SsaSource::iteration_defined_variable(this, def, _)
-        or
         SsaSource::init_module_submodule_defn(this, def)
         or
         SsaSource::parameter_definition(this, def)
@@ -381,10 +379,11 @@ cached module SsaSource {
     }
 
     /** Holds if `v` is defined by multiple assignment at `defn`. */
-    cached predicate multi_assignment_definition(Variable v, ControlFlowNode defn) {
+    cached predicate multi_assignment_definition(Variable v, ControlFlowNode defn, int n, SequenceNode lhs) {
         defn.(NameNode).defines(v) and 
         not exists(defn.(DefinitionNode).getValue()) and
-        exists(SequenceNode s | s.getAnElement() = defn)
+        lhs.getElement(n) = defn and
+        lhs.getBasicBlock().dominates(defn.getBasicBlock())
     }
 
     /** Holds if `v` is defined by a `for` statement, the definition being `defn` */
 
@@ -48,6 +48,9 @@ abstract class CallableObjectInternal extends ObjectInternal {
 
     override string strValue() { none() }
 
+    /* Callables aren't iterable */
+    override ObjectInternal getIterNext() { none() }
+
 }
 
 /** Class representing Python functions */
 
@@ -89,6 +89,10 @@ abstract class ClassObjectInternal extends ObjectInternal {
     }
 
     override predicate subscriptUnknown() { none() }
+
+    /* Classes aren't usually iterable, but can e.g. Enums */
+    override ObjectInternal getIterNext() { result = ObjectInternal::unknown() }
+
 }
 
 /** Class representing Python source classes */
 
@@ -83,6 +83,9 @@ private abstract class BooleanObjectInternal extends ConstantObjectInternal {
         none()
     }
 
+    /* Booleans aren't iterable */
+    override ObjectInternal getIterNext() { none() }
+
 }
 
 private class TrueObjectInternal extends BooleanObjectInternal, TTrue {
@@ -165,6 +168,9 @@ private class NoneObjectInternal extends ConstantObjectInternal, TNone {
 
     override int length() { none() }
 
+    /* None isn't iterable */
+    override ObjectInternal getIterNext() { none() }
+
 }
 
 
@@ -203,6 +209,9 @@ private class IntObjectInternal extends ConstantObjectInternal, TInt {
 
     override int length() { none() }
 
+    /* ints aren't iterable */
+    override ObjectInternal getIterNext() { none() }
+
 }
 
 private class FloatObjectInternal extends ConstantObjectInternal, TFloat {
@@ -248,6 +257,9 @@ private class FloatObjectInternal extends ConstantObjectInternal, TFloat {
 
     override int length() { none() }
 
+    /* floats aren't iterable */
+    override ObjectInternal getIterNext() { none() }
+
 }
 
 
@@ -290,6 +302,10 @@ private class UnicodeObjectInternal extends ConstantObjectInternal, TUnicode {
         result = this.strValue().length()
     }
 
+    override ObjectInternal getIterNext() {
+        result = TUnknownInstance(this.getClass())
+    }
+
 }
 
 private class BytesObjectInternal extends ConstantObjectInternal, TBytes {
@@ -331,6 +347,10 @@ private class BytesObjectInternal extends ConstantObjectInternal, TBytes {
         result = this.strValue().length()
     }
 
+    override ObjectInternal getIterNext() {
+        result = TUnknownInstance(this.getClass())
+    }
+
 }
 
 
 
@@ -91,6 +91,9 @@ class PropertyInternal extends ObjectInternal, TProperty {
         )
     }
 
+    /* Properties aren't iterable */
+    override ObjectInternal getIterNext() { none() }
+
 }
 
 /** A class representing classmethods in Python */
@@ -176,6 +179,9 @@ class ClassMethodObjectInternal extends ObjectInternal, TClassMethod {
         result = this.getFunction().getName()
     }
 
+    /* Classmethods aren't iterable */
+    override ObjectInternal getIterNext() { none() }
+
 }
 
 class StaticMethodObjectInternal extends ObjectInternal, TStaticMethod {
@@ -247,4 +253,7 @@ class StaticMethodObjectInternal extends ObjectInternal, TStaticMethod {
         result = this.getFunction().getName()
     }
 
+    /* Staticmethods aren't iterable */
+    override ObjectInternal getIterNext() { none() }
+
 }
@@ -51,6 +51,8 @@ abstract class InstanceObject extends ObjectInternal {
 
     override string getName() { none() }
 
+    override ObjectInternal getIterNext() { result = ObjectInternal::unknown() }
+
 }
 
 private predicate self_variable_reaching_init_exit(EssaVariable self) {
@@ -366,6 +368,8 @@ class UnknownInstanceInternal extends TUnknownInstance, ObjectInternal {
 
     override string getName() { none() }
 
+    override ObjectInternal getIterNext() { result = ObjectInternal::unknown() }
+
 }
 
 private int lengthFromClass(ClassObjectInternal cls) {
@@ -472,5 +476,7 @@ class SuperInstance extends TSuperInstance, ObjectInternal {
 
     override string getName() { none() }
 
+    override ObjectInternal getIterNext() { result = ObjectInternal::unknown() }
+
 }
 
@@ -52,6 +52,9 @@ abstract class ModuleObjectInternal extends ObjectInternal {
         any(PackageObjectInternal package).getInitModule() = this
     }
 
+    /* Modules aren't iterable */
+    override ObjectInternal getIterNext() { none() }
+
 }
 
 /** A class representing built-in modules */
@@ -408,5 +411,8 @@ class AbsentModuleAttributeObjectInternal extends ObjectInternal, TAbsentModuleA
     /* We know what this is called, but not its innate name */
     override string getName() { none() }
 
+    /* Modules aren't iterable */
+    override ObjectInternal getIterNext() { none() }
+
 }
 
@@ -167,6 +167,12 @@ class ObjectInternal extends TObject {
      */
     abstract string getName();
 
+    /** Gets the 'object' resulting from iterating over this object.
+     * Used in the context `for i in this:`. The result is the 'object'
+     * assigned to `i`.
+     */
+    abstract ObjectInternal getIterNext();
+
 }
 
 
@@ -249,6 +255,9 @@ class BuiltinOpaqueObjectInternal extends ObjectInternal, TBuiltinOpaqueObject {
     override string getName() {
         result = this.getBuiltin().getName()
     }
+
+    override ObjectInternal getIterNext() { result = ObjectInternal::unknown() }
+
 }
 
 
@@ -326,6 +335,8 @@ class UnknownInternal extends ObjectInternal, TUnknown {
 
     override string getName() { none() }
 
+    override ObjectInternal getIterNext() { result = ObjectInternal::unknown() }
+
 }
 
 class UndefinedInternal extends ObjectInternal, TUndefined {
@@ -404,6 +415,8 @@ class UndefinedInternal extends ObjectInternal, TUndefined {
 
     override string getName() { none() }
 
+    override ObjectInternal getIterNext() { none() }
+
 }
 
 module ObjectInternal {
 
@@ -32,6 +32,8 @@ abstract class SequenceObjectInternal extends ObjectInternal {
 
     override string getName() { none() }
 
+    override ObjectInternal getIterNext() { result = this.getItem(_) }
+
 }
 
 abstract class TupleObjectInternal extends SequenceObjectInternal {
Original file line number	Diff line number	Diff line change
`@@ -745,6 +745,8 @@ class DefinitionNode extends ControlFlowNode {`
`745`	`745`	`exists(Assign a \| a.getATarget().(Tuple).getAnElt().getAFlowNode() = this)`
`746`	`746`	`or`
`747`	`747`	`exists(Assign a \| a.getATarget().(List).getAnElt().getAFlowNode() = this)`
	`748`	`+ or`
	`749`	`+ exists(For for \| for.getTarget().getAFlowNode() = this)`
`748`	`750`	`}`
`749`	`751`
`750`	`752`	`/** flow node corresponding to the value assigned for the definition corresponding to this flow node */`
`@@ -864,7 +866,7 @@ class DictNode extends ControlFlowNode {`
`864`	`866`
`865`	`867`	`}`
`866`	`868`
`867`		`-private Expr assigned_value(Expr lhs) {`
	`869`	`+private AstNode assigned_value(Expr lhs) {`
`868`	`870`	`/* lhs = result */`
`869`	`871`	`exists(Assign a \| a.getATarget() = lhs and result = a.getValue())`
`870`	`872`	`or`
`@@ -881,6 +883,9 @@ private Expr assigned_value(Expr lhs) {`
`881`	`883`	`lhs = target.getElt(index) and`
`882`	`884`	`result = values.getElt(index)`
`883`	`885`	`)`
	`886`	`+ or`
	`887`	+ /* for lhs in seq: => `result` is the `for` node, representing the `iter(next(seq))` operation. */
	`888`	`+ result.(For).getTarget() = lhs`
`884`	`889`	`}`
`885`	`890`
`886`	`891`	/** A flow node for a `for` statement. */
Original file line number	Diff line number	Diff line change
`@@ -48,6 +48,9 @@ abstract class CallableObjectInternal extends ObjectInternal {`
`48`	`48`
`49`	`49`	`override string strValue() { none() }`
`50`	`50`
	`51`	`+ /* Callables aren't iterable */`
	`52`	`+ override ObjectInternal getIterNext() { none() }`
	`53`	`+`
`51`	`54`	`}`
`52`	`55`
`53`	`56`	`/** Class representing Python functions */`
Original file line number	Diff line number	Diff line change
`@@ -89,6 +89,10 @@ abstract class ClassObjectInternal extends ObjectInternal {`
`89`	`89`	`}`
`90`	`90`
`91`	`91`	`override predicate subscriptUnknown() { none() }`
	`92`	`+`
	`93`	`+ /* Classes aren't usually iterable, but can e.g. Enums */`
	`94`	`+ override ObjectInternal getIterNext() { result = ObjectInternal::unknown() }`
	`95`	`+`
`92`	`96`	`}`
`93`	`97`
`94`	`98`	`/** Class representing Python source classes */`
Original file line number	Diff line number	Diff line change
`@@ -83,6 +83,9 @@ private abstract class BooleanObjectInternal extends ConstantObjectInternal {`
`83`	`83`	`none()`
`84`	`84`	`}`
`85`	`85`
	`86`	`+ /* Booleans aren't iterable */`
	`87`	`+ override ObjectInternal getIterNext() { none() }`
	`88`	`+`
`86`	`89`	`}`
`87`	`90`
`88`	`91`	`private class TrueObjectInternal extends BooleanObjectInternal, TTrue {`
`@@ -165,6 +168,9 @@ private class NoneObjectInternal extends ConstantObjectInternal, TNone {`
`165`	`168`
`166`	`169`	`override int length() { none() }`
`167`	`170`
	`171`	`+ /* None isn't iterable */`
	`172`	`+ override ObjectInternal getIterNext() { none() }`
	`173`	`+`
`168`	`174`	`}`
`169`	`175`
`170`	`176`
`@@ -203,6 +209,9 @@ private class IntObjectInternal extends ConstantObjectInternal, TInt {`
`203`	`209`
`204`	`210`	`override int length() { none() }`
`205`	`211`
	`212`	`+ /* ints aren't iterable */`
	`213`	`+ override ObjectInternal getIterNext() { none() }`
	`214`	`+`
`206`	`215`	`}`
`207`	`216`
`208`	`217`	`private class FloatObjectInternal extends ConstantObjectInternal, TFloat {`
`@@ -248,6 +257,9 @@ private class FloatObjectInternal extends ConstantObjectInternal, TFloat {`
`248`	`257`
`249`	`258`	`override int length() { none() }`
`250`	`259`
	`260`	`+ /* floats aren't iterable */`
	`261`	`+ override ObjectInternal getIterNext() { none() }`
	`262`	`+`
`251`	`263`	`}`
`252`	`264`
`253`	`265`
`@@ -290,6 +302,10 @@ private class UnicodeObjectInternal extends ConstantObjectInternal, TUnicode {`
`290`	`302`	`result = this.strValue().length()`
`291`	`303`	`}`
`292`	`304`
	`305`	`+ override ObjectInternal getIterNext() {`
	`306`	`+ result = TUnknownInstance(this.getClass())`
	`307`	`+ }`
	`308`	`+`
`293`	`309`	`}`
`294`	`310`
`295`	`311`	`private class BytesObjectInternal extends ConstantObjectInternal, TBytes {`
`@@ -331,6 +347,10 @@ private class BytesObjectInternal extends ConstantObjectInternal, TBytes {`
`331`	`347`	`result = this.strValue().length()`
`332`	`348`	`}`
`333`	`349`
	`350`	`+ override ObjectInternal getIterNext() {`
	`351`	`+ result = TUnknownInstance(this.getClass())`
	`352`	`+ }`
	`353`	`+`
`334`	`354`	`}`
`335`	`355`
`336`	`356`
Original file line number	Diff line number	Diff line change
`@@ -91,6 +91,9 @@ class PropertyInternal extends ObjectInternal, TProperty {`
`91`	`91`	`)`
`92`	`92`	`}`
`93`	`93`
	`94`	`+ /* Properties aren't iterable */`
	`95`	`+ override ObjectInternal getIterNext() { none() }`
	`96`	`+`
`94`	`97`	`}`
`95`	`98`
`96`	`99`	`/** A class representing classmethods in Python */`
`@@ -176,6 +179,9 @@ class ClassMethodObjectInternal extends ObjectInternal, TClassMethod {`
`176`	`179`	`result = this.getFunction().getName()`
`177`	`180`	`}`
`178`	`181`
	`182`	`+ /* Classmethods aren't iterable */`
	`183`	`+ override ObjectInternal getIterNext() { none() }`
	`184`	`+`
`179`	`185`	`}`
`180`	`186`
`181`	`187`	`class StaticMethodObjectInternal extends ObjectInternal, TStaticMethod {`
`@@ -247,4 +253,7 @@ class StaticMethodObjectInternal extends ObjectInternal, TStaticMethod {`
`247`	`253`	`result = this.getFunction().getName()`
`248`	`254`	`}`
`249`	`255`
	`256`	`+ /* Staticmethods aren't iterable */`
	`257`	`+ override ObjectInternal getIterNext() { none() }`
	`258`	`+`
`250`	`259`	`}`
Original file line number	Diff line number	Diff line change
`@@ -51,6 +51,8 @@ abstract class InstanceObject extends ObjectInternal {`
`51`	`51`
`52`	`52`	`override string getName() { none() }`
`53`	`53`
	`54`	`+ override ObjectInternal getIterNext() { result = ObjectInternal::unknown() }`
	`55`	`+`
`54`	`56`	`}`
`55`	`57`
`56`	`58`	`private predicate self_variable_reaching_init_exit(EssaVariable self) {`
`@@ -366,6 +368,8 @@ class UnknownInstanceInternal extends TUnknownInstance, ObjectInternal {`
`366`	`368`
`367`	`369`	`override string getName() { none() }`
`368`	`370`
	`371`	`+ override ObjectInternal getIterNext() { result = ObjectInternal::unknown() }`
	`372`	`+`
`369`	`373`	`}`
`370`	`374`
`371`	`375`	`private int lengthFromClass(ClassObjectInternal cls) {`
`@@ -472,5 +476,7 @@ class SuperInstance extends TSuperInstance, ObjectInternal {`
`472`	`476`
`473`	`477`	`override string getName() { none() }`
`474`	`478`
	`479`	`+ override ObjectInternal getIterNext() { result = ObjectInternal::unknown() }`
	`480`	`+`
`475`	`481`	`}`
`476`	`482`
Original file line number	Diff line number	Diff line change
`@@ -52,6 +52,9 @@ abstract class ModuleObjectInternal extends ObjectInternal {`
`52`	`52`	`any(PackageObjectInternal package).getInitModule() = this`
`53`	`53`	`}`
`54`	`54`
	`55`	`+ /* Modules aren't iterable */`
	`56`	`+ override ObjectInternal getIterNext() { none() }`
	`57`	`+`
`55`	`58`	`}`
`56`	`59`
`57`	`60`	`/** A class representing built-in modules */`
`@@ -408,5 +411,8 @@ class AbsentModuleAttributeObjectInternal extends ObjectInternal, TAbsentModuleA`
`408`	`411`	`/* We know what this is called, but not its innate name */`
`409`	`412`	`override string getName() { none() }`
`410`	`413`
	`414`	`+ /* Modules aren't iterable */`
	`415`	`+ override ObjectInternal getIterNext() { none() }`
	`416`	`+`
`411`	`417`	`}`
`412`	`418`
Original file line number	Diff line number	Diff line change
`@@ -167,6 +167,12 @@ class ObjectInternal extends TObject {`
`167`	`167`	`*/`
`168`	`168`	`abstract string getName();`
`169`	`169`
	`170`	`+ /** Gets the 'object' resulting from iterating over this object.`
	`171`	+ * Used in the context `for i in this:`. The result is the 'object'
	`172`	+ * assigned to `i`.
	`173`	`+ */`
	`174`	`+ abstract ObjectInternal getIterNext();`
	`175`	`+`
`170`	`176`	`}`
`171`	`177`
`172`	`178`
`@@ -249,6 +255,9 @@ class BuiltinOpaqueObjectInternal extends ObjectInternal, TBuiltinOpaqueObject {`
`249`	`255`	`override string getName() {`
`250`	`256`	`result = this.getBuiltin().getName()`
`251`	`257`	`}`
	`258`	`+`
	`259`	`+ override ObjectInternal getIterNext() { result = ObjectInternal::unknown() }`
	`260`	`+`
`252`	`261`	`}`
`253`	`262`
`254`	`263`
`@@ -326,6 +335,8 @@ class UnknownInternal extends ObjectInternal, TUnknown {`
`326`	`335`
`327`	`336`	`override string getName() { none() }`
`328`	`337`
	`338`	`+ override ObjectInternal getIterNext() { result = ObjectInternal::unknown() }`
	`339`	`+`
`329`	`340`	`}`
`330`	`341`
`331`	`342`	`class UndefinedInternal extends ObjectInternal, TUndefined {`
`@@ -404,6 +415,8 @@ class UndefinedInternal extends ObjectInternal, TUndefined {`
`404`	`415`
`405`	`416`	`override string getName() { none() }`
`406`	`417`
	`418`	`+ override ObjectInternal getIterNext() { none() }`
	`419`	`+`
`407`	`420`	`}`
`408`	`421`
`409`	`422`	`module ObjectInternal {`
Original file line number	Diff line number	Diff line change
`@@ -32,6 +32,8 @@ abstract class SequenceObjectInternal extends ObjectInternal {`
`32`	`32`
`33`	`33`	`override string getName() { none() }`
`34`	`34`
	`35`	`+ override ObjectInternal getIterNext() { result = this.getItem(_) }`
	`36`	`+`
`35`	`37`	`}`
`36`	`38`
`37`	`39`	`abstract class TupleObjectInternal extends SequenceObjectInternal {`