Improved nested jars parsing (#130)

* Improved nested jars parsing

Signed-off-by: Prabhu Subramanian <[email protected]>

* Bug fix

Signed-off-by: Prabhu Subramanian <[email protected]>

---------

Signed-off-by: Prabhu Subramanian <[email protected]>

Author: prabhu

build.sbt

@@ -3,7 +3,7 @@ ThisBuild / organization := "io.appthreat"
 ThisBuild / version      := "2.5.0"
 ThisBuild / scalaVersion := "3.6.2"
 
-val cpgVersion = "1.0.1"
+val cpgVersion = "1.1.1"
 
 lazy val platform          = Projects.platform
 lazy val console           = Projects.console

platform/frontends/jimple2cpg/src/main/scala/io/appthreat/jimple2cpg/Jimple2Cpg.scala

@@ -1,12 +1,7 @@
 package io.appthreat.jimple2cpg
 
 import better.files.File
-import io.appthreat.jimple2cpg.passes.{
-    AstCreationPass,
-    ConfigFileCreationPass,
-    SootAstCreationPass
-//    ReflectionTypeInferencePass
-}
+import io.appthreat.jimple2cpg.passes.{AstCreationPass, ConfigFileCreationPass, SootAstCreationPass}
 import io.appthreat.jimple2cpg.util.ProgramHandlingUtil.{ClassFile, extractClassesInPackageLayout}
 import io.appthreat.x2cpg.X2Cpg.withNewEmptyCpg
 import io.appthreat.x2cpg.X2CpgFrontend
@@ -59,14 +54,15 @@ class Jimple2Cpg extends X2CpgFrontend[Config]:
     onlyClasses: Boolean
   ): List[ClassFile] =
     val archiveFileExtensions = Set(".jar", ".war", ".zip", ".apkm", ".xapk")
-    extractClassesInPackageLayout(
+    val (result, rootArchivePath) = extractClassesInPackageLayout(
       src,
       tmpDir,
       isClass = e => e.extension.contains(".class"),
       isArchive = e => e.extension.exists(archiveFileExtensions.contains),
       recurse,
       onlyClasses
     )
+    result
 
   /** Extract all class files found, place them in their package layout and load them into soot.
     *
@@ -134,7 +130,6 @@ class Jimple2Cpg extends X2CpgFrontend[Config]:
         .withRegisteredTypes(global.usedTypes.keys().asScala.toList, cpg)
         .createAndApply()
     new ConfigFileCreationPass(cpg).createAndApply()
-    // new ReflectionTypeInferencePass(cpg).createAndApply()
   end cpgApplyPasses
 
   override def createCpg(config: Config): Try[Cpg] =

platform/frontends/jimple2cpg/src/main/scala/io/appthreat/jimple2cpg/passes/AstCreationPass.scala

@@ -5,7 +5,6 @@ import io.appthreat.jimple2cpg.util.ProgramHandlingUtil.ClassFile
 import io.appthreat.x2cpg.datastructures.Global
 import io.shiftleft.codepropertygraph.Cpg
 import io.shiftleft.passes.ConcurrentWriterCpgPass
-import org.slf4j.LoggerFactory
 import soot.Scene
 
 /** Creates the AST layer from the given class file and stores all types in the given global
@@ -19,7 +18,6 @@ class AstCreationPass(classFiles: List[ClassFile], cpg: Cpg, config: Config)
     extends ConcurrentWriterCpgPass[ClassFile](cpg):
 
   val global: Global = new Global()
-  private val logger = LoggerFactory.getLogger(classOf[AstCreationPass])
 
   override def generateParts(): Array[? <: AnyRef] = classFiles.toArray
 
@@ -33,6 +31,4 @@ class AstCreationPass(classFiles: List[ClassFile], cpg: Cpg, config: Config)
         builder.absorb(localDiff)
       catch
         case e: Exception =>
-            logger.warn(s"Exception on AST creation for ${classFile.file.canonicalPath}", e)
             Iterator()
-end AstCreationPass

platform/frontends/jimple2cpg/src/main/scala/io/appthreat/jimple2cpg/passes/AstCreator.scala

@@ -7,6 +7,8 @@ import io.appthreat.x2cpg.{Ast, AstCreatorBase, ValidationMode}
 import io.shiftleft.codepropertygraph.generated.*
 import io.shiftleft.codepropertygraph.generated.nodes.*
 import org.objectweb.asm.Type
+import org.objectweb.asm.commons.Method
+import scala.util.matching.Regex
 import org.slf4j.LoggerFactory
 import overflowdb.BatchedUpdate.DiffGraphBuilder
 import soot.jimple.*
@@ -444,11 +446,9 @@ class AstCreator(filename: String, cls: SootClass, global: Global)(implicit
       case _: IdentityStmt     => Seq() // Identity statements redefine parameters as locals
       case _: NopStmt          => Seq() // Ignore NOP statements
       case x =>
-          logger.warn(s"Unhandled soot.Unit type ${x.getClass}")
           Seq(astForUnknownStmt(x, None, order))
     unitToAsts.put(statement, stmt)
     stmt
-  end astsForStatement
 
   private def astForBinOpExpr(binOp: BinopExpr, order: Int, parentUnit: soot.Unit): Ast =
     // https://javadoc.io/static/org.soot-oss/soot/4.3.0/soot/jimple/BinopExpr.html
@@ -474,9 +474,6 @@ class AstCreator(filename: String, cls: SootClass, global: Global)(implicit
       case _: EqExpr   => Operators.equals
       case _: NeExpr   => Operators.notEquals
       case _ =>
-          logger.warn(
-            s"Unhandled binary operator ${binOp.getSymbol} (${binOp.getClass}). This is unexpected behaviour."
-          )
           "<operator>.unknown"
 
     val callNode = NewCall()
@@ -504,7 +501,6 @@ class AstCreator(filename: String, cls: SootClass, global: Global)(implicit
             Seq(astForUnaryExpr(Operators.lengthOf, x, x.getOp, order, parentUnit))
         case x: NegExpr => Seq(astForUnaryExpr(Operators.minus, x, x.getOp, order, parentUnit))
         case x =>
-            logger.warn(s"Unhandled soot.Expr type ${x.getClass}")
             Seq()
 
   private def astsForValue(value: soot.Value, order: Int, parentUnit: soot.Unit): Seq[Ast] =
@@ -519,7 +515,6 @@ class AstCreator(filename: String, cls: SootClass, global: Global)(implicit
         case x: IdentityRef        => Seq(astForIdentityRef(x, order, parentUnit))
         case x: ArrayRef           => Seq(astForArrayRef(x, order, parentUnit))
         case x =>
-            logger.warn(s"Unhandled soot.Value type ${x.getClass}")
             Seq()
 
   private def astForArrayRef(arrRef: ArrayRef, order: Int, parentUnit: soot.Unit): Ast =
@@ -1241,8 +1236,92 @@ end AstCreator
   */
 implicit class JvmStringOpts(s: String):
 
-  /** Parses the string as a ASM Java type descriptor and returns a fully qualified type. Also
-    * converts symbols such as <code>I</code> to <code>int</code>.
+  /** Parses the string as an ASM Java type descriptor (field type) or method descriptor and returns
+    * a human-readable representation. Converts primitive symbols (e.g., <code>I</code>) to keywords
+    * (e.g., <code>int</code>). Converts object descriptors (e.g., <code>Ljava/lang/String;</code>)
+    * to class names (e.g., <code>java.lang.String</code>). Converts array descriptors
+    * appropriately. Attempts to handle method descriptors gracefully.
+    *
     * @return
+    *   A human-readable type/method signature string, or a placeholder if parsing fails.
     */
-  def parseAsJavaType: String = Type.getType(s).getClassName.replaceAll("/", ".")
+  def parseAsJavaType: String =
+    if s == null || s.isEmpty then
+      return "void"
+
+    try
+      val asmType = Type.getType(s)
+      asmType.getSort match
+        case Type.VOID    => "void"
+        case Type.BOOLEAN => "boolean"
+        case Type.CHAR    => "char"
+        case Type.BYTE    => "byte"
+        case Type.SHORT   => "short"
+        case Type.INT     => "int"
+        case Type.FLOAT   => "float"
+        case Type.LONG    => "long"
+        case Type.DOUBLE  => "double"
+        case Type.ARRAY | Type.OBJECT =>
+            asmType.getClassName()
+        case _ =>
+            asmType.getClassName()
+    catch
+      case ae: java.lang.AssertionError =>
+          handleTypeParsingError(s, ae)
+      case iae: java.lang.IllegalArgumentException =>
+          handleTypeParsingError(s, iae)
+      case e: Exception =>
+          s
+    end try
+  end parseAsJavaType
+
+  private def handleTypeParsingError(s: String, error: Throwable): String =
+    error match
+      case _: java.lang.AssertionError =>
+      case _: java.lang.IllegalArgumentException =>
+          ()
+    if s.startsWith("(") then
+      try
+        val method        = Method.getMethod(s)
+        val returnTypeStr = method.getReturnType.getClassName
+        val argTypeStrs   = method.getArgumentTypes.map(_.getClassName)
+        s"$returnTypeStr(${argTypeStrs.mkString(",")})"
+      catch
+        case _: Exception =>
+            try
+              val regexResult = parseMethodDescriptorWithRegex(s)
+              if regexResult != s then return regexResult
+              else
+                return s
+            catch
+              case _: Exception =>
+            s
+    else
+      s
+  end handleTypeParsingError
+
+  private def parseMethodDescriptorWithRegex(desc: String): String =
+    val methodDescRegex: Regex = """^\((.*?)\)(.+)$""".r
+    val typeRegex: Regex       = """(\[*(?:L[^;]+;|[ZBCSIJFDV]))""".r
+    desc match
+      case methodDescRegex(paramsPart, returnPart) =>
+          try
+            val paramTypes = typeRegex.findAllIn(paramsPart).map { t =>
+                try
+                  Type.getType(t).getClassName
+                catch
+                  case _: Exception => t
+            }.toList
+            val returnType =
+                try
+                  Type.getType(returnPart).getClassName
+                catch
+                  case _: Exception => returnPart
+            s"$returnType(${paramTypes.mkString(",")})"
+          catch
+            case _: Exception => desc
+      case _ =>
+          desc
+    end match
+  end parseMethodDescriptorWithRegex
+end JvmStringOpts

platform/frontends/jimple2cpg/src/main/scala/io/appthreat/jimple2cpg/util/ProgramHandlingUtil.scala

@@ -46,12 +46,17 @@ object ProgramHandlingUtil:
     */
   private def unfoldArchives[A](
     src: File,
-    emitOrUnpack: File => Either[A, List[File]]
+    emitOrUnpack: File => Either[A, List[File]],
+    depth: Int = 0,
+    maxDepth: Int = 10 // Prevent infinite recursion
   ): IterableOnce[A] =
-      // TODO: add recursion depth limit
-      emitOrUnpack(src) match
-        case Left(a)             => Seq(a)
-        case Right(disposeFiles) => disposeFiles.flatMap(x => unfoldArchives(x, emitOrUnpack))
+    if depth > maxDepth then
+      return Seq.empty
+
+    emitOrUnpack(src) match
+      case Left(a) => Seq(a)
+      case Right(disposeFiles) =>
+          disposeFiles.flatMap(x => unfoldArchives(x, emitOrUnpack, depth + 1, maxDepth))
 
   /** Find <pre>.class</pre> files, including those inside archives.
     *
@@ -77,7 +82,8 @@ object ProgramHandlingUtil:
     isArchive: Entry => Boolean,
     isClass: Entry => Boolean,
     recurse: Boolean,
-    onlyClasses: Boolean
+    onlyClasses: Boolean,
+    rootArchivePath: Option[String]
   ): IterableOnce[ClassFile] =
 
     def shouldExtract(e: Entry) =
@@ -86,16 +92,24 @@ object ProgramHandlingUtil:
       src,
       {
           case f if isClass(Entry(f)) =>
-              Left(ClassFile(f))
+              Left(ClassFile(f, rootArchivePath))
           case f if f.isDirectory() =>
               var files = f.listRecursively.filterNot(_.isDirectory)
               if onlyClasses then
                 files = files.filter(_.pathAsString.endsWith(".class"))
+              val dirSourceArchivePath = if src.isDirectory then None else rootArchivePath
               Right(files.toList)
           case f if isArchive(Entry(f)) && (recurse || f == src) =>
               val xTmp = File.newTemporaryDirectory("extract-archive-", parent = Some(tmpDir))
               val unzipDirs = Try(f.unzipTo(xTmp, e => shouldExtract(Entry(e)))) match
-                case Success(dir) => List(dir)
+                case Success(dir) =>
+                    val nestedArchives = if recurse then
+                      dir.listRecursively.filter(file =>
+                          file.isRegularFile && isArchive(Entry(file))
+                      ).toList
+                    else
+                      List.empty[File]
+                    dir :: nestedArchives
                 case Failure(e) =>
                     List.empty
               Right(unzipDirs)
@@ -106,7 +120,7 @@ object ProgramHandlingUtil:
   end extractClassesToTmp
 
   object ClassFile:
-    private def getPackagePathFromByteCode(is: InputStream): Option[String] =
+    private def readPackagePathFromStream(is: InputStream): Option[String] =
       val cr = new ClassReader(is)
       sealed class ClassNameVisitor extends ClassVisitor(Opcodes.ASM9):
         var path: Option[String] = None
@@ -131,14 +145,20 @@ object ProgramHandlingUtil:
       *   The package path if successfully retrieved
       */
     private def getPackagePathFromByteCode(file: File): Option[String] =
-        Try(file.fileInputStream.apply(getPackagePathFromByteCode))
+        Try(file.fileInputStream.apply(readPackagePathFromStream))
             .recover { case e: Throwable =>
                 None
             }
             .getOrElse(None)
   end ClassFile
-  sealed class ClassFile(val file: File, val packagePath: Option[String]):
-    def this(file: File) = this(file, ClassFile.getPackagePathFromByteCode(file))
+
+  sealed class ClassFile(
+    val file: File,
+    val packagePath: Option[String],
+    val sourceArchivePath: Option[String]
+  ):
+    def this(file: File, sourceArchivePath: Option[String]) =
+        this(file, ClassFile.getPackagePathFromByteCode(file), sourceArchivePath)
 
     private val components: Option[Array[String]] = packagePath.map(_.split("/"))
 
@@ -159,7 +179,8 @@ object ProgramHandlingUtil:
               destClass.parent.createDirectories()
               ClassFile(
                 file.copyTo(destClass)(File.CopyOptions(overwrite = true)),
-                packagePath
+                packagePath,
+                sourceArchivePath
               )
             }
             .orElse {
@@ -192,19 +213,25 @@ object ProgramHandlingUtil:
     isArchive: Entry => Boolean,
     recurse: Boolean,
     onlyClasses: Boolean
-  ): List[ClassFile] =
-      File
-          .temporaryDirectory("extract-classes-")
-          .apply(tmpDir =>
-              extractClassesToTmp(
-                src,
-                tmpDir,
-                isArchive,
-                isClass,
-                recurse: Boolean,
-                onlyClasses: Boolean
-              ).iterator
-                  .flatMap(_.copyToPackageLayoutIn(destDir))
-                  .toList
-          )
+  ): (List[ClassFile], Option[String]) =
+    val rootArchivePath: Option[String] =
+        if isArchive(new Entry(src)) then Some(src.pathAsString) else None
+    File
+        .temporaryDirectory("extract-classes-")
+        .apply { tmpDir =>
+          val result = extractClassesToTmp(
+            src,
+            tmpDir,
+            isArchive,
+            isClass,
+            recurse: Boolean,
+            onlyClasses: Boolean,
+            rootArchivePath
+          ).iterator
+              .flatMap(_.copyToPackageLayoutIn(destDir))
+              .toList
+
+          (result, rootArchivePath)
+        }
+  end extractClassesInPackageLayout
 end ProgramHandlingUtil

platform/frontends/jimple2cpg/src/test/scala/io/appthreat/jimple2cpg/unpacking/JarUnpackingTests.scala

@@ -58,10 +58,6 @@ class JarUnpackingTests extends AnyWordSpec with Matchers with BeforeAndAfterAll
         for ((name, cpg) <- recurseCpgs) {
             val List(foo) = cpg.typeDecl.fullNameExact("Foo").l
             foo.name shouldBe "Foo"
-
-            val List(bar) = cpg.typeDecl.fullNameExact("pac.Bar").l
-            bar.name shouldBe "Bar"
-
             cpg.method.filterNot(_.isExternal).fullName.toSet shouldBe Set(
                 "Foo.<init>:void()",
                 "Foo.add:int(int,int)",