Python: Modernise Security/ queries

RasmusWL · RasmusWL · commit e5abfd0196a3 · 2020-02-04T11:42:11.000+01:00
diff --git a/python/ql/src/Security/CWE-022/TarSlip.ql b/python/ql/src/Security/CWE-022/TarSlip.ql
@@ -26,21 +26,21 @@ class OpenTarFile extends TaintKind {
         name = "getmembers" and result.(SequenceKind).getItem() instanceof TarFileInfo
     }
 
-    override ClassValue getType() { result = Module::named("tarfile").attr("TarFile") }
+    override ClassValue getType() { result = Value::named("tarfile.TarFile") }
 
     override TaintKind getTaintForIteration() { result instanceof TarFileInfo }
 }
 
 /** The source of open tarfile objects. That is, any call to `tarfile.open(...)` */
 class TarfileOpen extends TaintSource {
     TarfileOpen() {
-        Module::named("tarfile").attr("open").getACall() = this and
+        Value::named("tarfile.open").getACall() = this and
         /*
          * If argument refers to a string object, then it's a hardcoded path and
          * this tarfile is safe.
          */
 
-        not this.(CallNode).getAnArg().refersTo(any(StringObject str)) and
+        not this.(CallNode).getAnArg().pointsTo(Value::forString(_)) and
         /* Ignore opens within the tarfile module itself */
         not this.(ControlFlowNode).getLocation().getFile().getBaseName() = "tarfile.py"
     }
diff --git a/python/ql/src/Security/CWE-079/Jinja2WithoutEscaping.ql b/python/ql/src/Security/CWE-079/Jinja2WithoutEscaping.ql
@@ -12,36 +12,38 @@
 
 import python
 
-ClassObject jinja2EnvironmentOrTemplate() {
-    exists(ModuleObject jinja2, string name |
-        jinja2.getName() = "jinja2" and
-        jinja2.attr(name) = result
-    |
-        name = "Environment" or
-        name = "Template"
-    )
+/* Jinja 2 Docs:
+ * https://jinja.palletsprojects.com/en/2.11.x/api/#jinja2.Environment
+ * https://jinja.palletsprojects.com/en/2.11.x/api/#jinja2.Template
+ *
+ * Although the docs doesn't say very clearly, autoescape is a valid arugment when constructing
+ * a Template manually
+ *
+ * unsafe_tmpl = Template('Hello {{ name }}!')
+ * safe1_tmpl = Template('Hello {{ name }}!', autoescape=True)
+ */
+
+ClassValue jinja2EnvironmentOrTemplate() {
+
+    result = Value::named("jinja2.Environment")
+    or
+    result = Value::named("jinja2.Template")
 }
 
 ControlFlowNode getAutoEscapeParameter(CallNode call) {
-    exists(Object callable | call.getFunction().refersTo(callable) |
-        callable = jinja2EnvironmentOrTemplate() and
-        result = call.getArgByName("autoescape")
-    )
+    result = call.getArgByName("autoescape")
 }
 
 from CallNode call
 where
+    call.getFunction().pointsTo(jinja2EnvironmentOrTemplate()) and
     not exists(call.getNode().getStarargs()) and
     not exists(call.getNode().getKwargs()) and
     (
-        not exists(getAutoEscapeParameter(call)) and
-        exists(Object env |
-            call.getFunction().refersTo(env) and
-            env = jinja2EnvironmentOrTemplate()
-        )
+        not exists(getAutoEscapeParameter(call))
         or
-        exists(Object isFalse |
-            getAutoEscapeParameter(call).refersTo(isFalse) and isFalse.booleanValue() = false
+        exists(Value isFalse |
+            getAutoEscapeParameter(call).pointsTo(isFalse) and isFalse.booleanValue() = false
         )
     )
 select call, "Using jinja2 templates with autoescape=False can potentially allow XSS attacks."
diff --git a/python/ql/src/Security/CWE-089/SqlInjection.ql b/python/ql/src/Security/CWE-089/SqlInjection.ql
@@ -30,7 +30,10 @@ class SQLInjectionConfiguration extends TaintTracking::Configuration {
     override predicate isSink(TaintTracking::Sink sink) { sink instanceof SqlInjectionSink }
 }
 
-/* Additional configuration to support tracking of DB objects. Connections, cursors, etc. */
+/* Additional configuration to support tracking of DB objects. Connections, cursors, etc.
+ * Without this configuration (or the LegacyConfiguration), the pattern of
+ * `any(MyTaintKind k).tains(control_flow_node)` used in DbConnectionExecuteArgument would not work.
+ */
 class DbConfiguration extends TaintTracking::Configuration {
     DbConfiguration() { this = "DB configuration" }
 
diff --git a/python/ql/src/Security/CWE-215/FlaskDebug.ql b/python/ql/src/Security/CWE-215/FlaskDebug.ql
@@ -13,10 +13,10 @@
 import python
 import semmle.python.web.flask.General
 
-from CallNode call, Object isTrue
+from CallNode call, Value isTrue
 where
     call = theFlaskClass().declaredAttribute("run").(FunctionValue).getACall() and
-    call.getArgByName("debug").refersTo(isTrue) and
+    call.getArgByName("debug").pointsTo(isTrue) and
     isTrue.booleanValue() = true
 select call,
     "A Flask app appears to be run in debug mode. This may allow an attacker to run arbitrary code through the debugger."
diff --git a/python/ql/src/Security/CWE-295/MissingHostKeyValidation.ql b/python/ql/src/Security/CWE-295/MissingHostKeyValidation.ql
@@ -11,26 +11,26 @@
 
 import python
 
-private ModuleObject theParamikoClientModule() { result = ModuleObject::named("paramiko.client") }
+private ModuleValue theParamikoClientModule() { result = Value::named("paramiko.client") }
 
-private ClassObject theParamikoSSHClientClass() {
+private ClassValue theParamikoSSHClientClass() {
     result = theParamikoClientModule().attr("SSHClient")
 }
 
-private ClassObject unsafe_paramiko_policy(string name) {
+private ClassValue unsafe_paramiko_policy(string name) {
     (name = "AutoAddPolicy" or name = "WarningPolicy") and
     result = theParamikoClientModule().attr(name)
 }
 
 from CallNode call, ControlFlowNode arg, string name
 where
     call = theParamikoSSHClientClass()
-                .lookupAttribute("set_missing_host_key_policy")
-                .(FunctionObject)
+                .lookup("set_missing_host_key_policy")
+                .(FunctionValue)
                 .getACall() and
     arg = call.getAnArg() and
     (
-        arg.refersTo(unsafe_paramiko_policy(name)) or
-        arg.refersTo(_, unsafe_paramiko_policy(name), _)
+        arg.pointsTo(unsafe_paramiko_policy(name)) or
+        arg.pointsTo().getClass() = unsafe_paramiko_policy(name)
     )
 select call, "Setting missing host key policy to " + name + " may be unsafe."
diff --git a/python/ql/src/Security/CWE-295/RequestWithoutValidation.ql b/python/ql/src/Security/CWE-295/RequestWithoutValidation.ql
@@ -12,15 +12,15 @@
 import python
 import semmle.python.web.Http
 
-FunctionObject requestFunction() { result = ModuleObject::named("requests").attr(httpVerbLower()) }
+FunctionValue requestFunction() { result = Module::named("requests").attr(httpVerbLower()) }
 
 /** requests treats None as the default and all other "falsey" values as False */
-predicate falseNotNone(Object o) { o.booleanValue() = false and not o = theNoneObject() }
+predicate falseNotNone(Value v) { v.booleanValue() = false and not v = Value::none_() }
 
-from CallNode call, FunctionObject func, Object falsey, ControlFlowNode origin
+from CallNode call, FunctionValue func, Value falsey, ControlFlowNode origin
 where
     func = requestFunction() and
     func.getACall() = call and
     falseNotNone(falsey) and
-    call.getArgByName("verify").refersTo(falsey, origin)
+    call.getArgByName("verify").pointsTo(falsey, origin)
 select call, "Call to $@ with verify=$@", func, "requests." + func.getName(), origin, "False"
diff --git a/python/ql/src/Security/CWE-326/WeakCrypto.ql b/python/ql/src/Security/CWE-326/WeakCrypto.ql
@@ -19,60 +19,60 @@ int minimumSecureKeySize(string algo) {
     algo = "ECC" and result = 224
 }
 
-predicate dsaRsaKeySizeArg(FunctionObject obj, string algorithm, string arg) {
-    exists(ModuleObject mod | mod.attr(_) = obj |
+predicate dsaRsaKeySizeArg(FunctionValue func, string algorithm, string arg) {
+    exists(ModuleValue mod | func = mod.attr(_) |
         algorithm = "DSA" and
         (
-            mod.getName() = "cryptography.hazmat.primitives.asymmetric.dsa" and arg = "key_size"
+            mod = Module::named("cryptography.hazmat.primitives.asymmetric.dsa") and arg = "key_size"
             or
-            mod.getName() = "Crypto.PublicKey.DSA" and arg = "bits"
+            mod = Module::named("Crypto.PublicKey.DSA") and arg = "bits"
             or
-            mod.getName() = "Cryptodome.PublicKey.DSA" and arg = "bits"
+            mod = Module::named("Cryptodome.PublicKey.DSA") and arg = "bits"
         )
         or
         algorithm = "RSA" and
         (
-            mod.getName() = "cryptography.hazmat.primitives.asymmetric.rsa" and arg = "key_size"
+            mod = Module::named("cryptography.hazmat.primitives.asymmetric.rsa") and arg = "key_size"
             or
-            mod.getName() = "Crypto.PublicKey.RSA" and arg = "bits"
+            mod = Module::named("Crypto.PublicKey.RSA") and arg = "bits"
             or
-            mod.getName() = "Cryptodome.PublicKey.RSA" and arg = "bits"
+            mod = Module::named("Cryptodome.PublicKey.RSA") and arg = "bits"
         )
     )
 }
 
-predicate ecKeySizeArg(FunctionObject obj, string arg) {
-    exists(ModuleObject mod | mod.attr(_) = obj |
-        mod.getName() = "cryptography.hazmat.primitives.asymmetric.ec" and arg = "curve"
+predicate ecKeySizeArg(FunctionValue func, string arg) {
+    exists(ModuleValue mod | func = mod.attr(_) |
+        mod = Module::named("cryptography.hazmat.primitives.asymmetric.ec") and arg = "curve"
     )
 }
 
-int keySizeFromCurve(ClassObject curveClass) {
-    result = curveClass.declaredAttribute("key_size").(NumericObject).intValue()
+int keySizeFromCurve(ClassValue curveClass) {
+    result = curveClass.declaredAttribute("key_size").(NumericValue).getIntValue()
 }
 
 predicate algorithmAndKeysizeForCall(
     CallNode call, string algorithm, int keySize, ControlFlowNode keyOrigin
 ) {
-    exists(FunctionObject func, string argname, ControlFlowNode arg |
+    exists(FunctionValue func, string argname, ControlFlowNode arg |
         arg = func.getNamedArgumentForCall(call, argname)
     |
-        exists(NumericObject key |
-            arg.refersTo(key, keyOrigin) and
+        exists(NumericValue key |
+            arg.pointsTo(key, keyOrigin) and
             dsaRsaKeySizeArg(func, algorithm, argname) and
-            keySize = key.intValue()
+            keySize = key.getIntValue()
         )
         or
-        exists(ClassObject curve |
-            arg.refersTo(_, curve, keyOrigin) and
-            ecKeySizeArg(func, argname) and
+        exists(ClassValue curveClass |
             algorithm = "ECC" and
-            keySize = keySizeFromCurve(curve)
+            ecKeySizeArg(func, argname) and
+            arg.pointsTo(_, curveClass, keyOrigin) and
+            keySize = keySizeFromCurve(curveClass)
         )
     )
 }
 
-from CallNode call, ControlFlowNode origin, string algo, int keySize
+from CallNode call, string algo, int keySize, ControlFlowNode origin
 where
     algorithmAndKeysizeForCall(call, algo, keySize, origin) and
     keySize < minimumSecureKeySize(algo)
diff --git a/python/ql/src/Security/CWE-327/InsecureDefaultProtocol.ql b/python/ql/src/Security/CWE-327/InsecureDefaultProtocol.ql
@@ -12,9 +12,9 @@
 
 import python
 
-FunctionObject ssl_wrap_socket() { result = ModuleObject::named("ssl").attr("wrap_socket") }
+FunctionValue ssl_wrap_socket() { result = Value::named("ssl.wrap_socket") }
 
-ClassObject ssl_Context_class() { result = ModuleObject::named("ssl").attr("SSLContext") }
+ClassValue ssl_Context_class() { result = Value::named("ssl.SSLContext") }
 
 CallNode unsafe_call(string method_name) {
     result = ssl_wrap_socket().getACall() and
diff --git a/python/ql/src/Security/CWE-327/InsecureProtocol.ql b/python/ql/src/Security/CWE-327/InsecureProtocol.ql
@@ -11,9 +11,17 @@
 
 import python
 
-FunctionObject ssl_wrap_socket() { result = the_ssl_module().attr("wrap_socket") }
+private ModuleValue the_ssl_module() { result = Module::named("ssl") }
 
-ClassObject ssl_Context_class() { result = the_ssl_module().attr("SSLContext") }
+FunctionValue ssl_wrap_socket() { result = the_ssl_module().attr("wrap_socket") }
+
+ClassValue ssl_Context_class() { result = the_ssl_module().attr("SSLContext") }
+
+private ModuleValue the_pyOpenSSL_module() { result = Value::named("pyOpenSSL.SSL") }
+
+ClassValue the_pyOpenSSL_Context_class() {
+    result = Value::named("pyOpenSSL.SSL.Context")
+}
 
 string insecure_version_name() {
     // For `pyOpenSSL.SSL`
@@ -29,10 +37,6 @@ string insecure_version_name() {
     result = "PROTOCOL_TLSv1"
 }
 
-private ModuleObject the_ssl_module() { result = ModuleObject::named("ssl") }
-
-private ModuleObject the_pyOpenSSL_module() { result = ModuleObject::named("pyOpenSSL.SSL") }
-
 /*
  * A syntactic check for cases where points-to analysis cannot infer the presence of
  * a protocol constant, e.g. if it has been removed in later versions of the `ssl`
@@ -47,7 +51,7 @@ predicate probable_insecure_ssl_constant(
         arg = call.getArgByName(named_argument) or
         arg = call.getArg(0)
     |
-        arg.(AttrNode).getObject(insecure_version).refersTo(the_ssl_module())
+        arg.(AttrNode).getObject(insecure_version).pointsTo(the_ssl_module())
         or
         arg.(NameNode).getId() = insecure_version and
         exists(Import imp |
@@ -71,20 +75,16 @@ predicate unsafe_ssl_wrap_socket_call(
     ) and
     insecure_version = insecure_version_name() and
     (
-        call.getArgByName(named_argument).refersTo(the_ssl_module().attr(insecure_version))
+        call.getArgByName(named_argument).pointsTo(the_ssl_module().attr(insecure_version))
         or
         probable_insecure_ssl_constant(call, insecure_version, named_argument)
     )
 }
 
-ClassObject the_pyOpenSSL_Context_class() {
-    result = ModuleObject::named("pyOpenSSL.SSL").attr("Context")
-}
-
 predicate unsafe_pyOpenSSL_Context_call(CallNode call, string insecure_version) {
     call = the_pyOpenSSL_Context_class().getACall() and
     insecure_version = insecure_version_name() and
-    call.getArg(0).refersTo(the_pyOpenSSL_module().attr(insecure_version))
+    call.getArg(0).pointsTo(the_pyOpenSSL_module().attr(insecure_version))
 }
 
 from CallNode call, string method_name, string insecure_version
diff --git a/python/ql/src/Security/CWE-377/InsecureTemporaryFile.ql b/python/ql/src/Security/CWE-377/InsecureTemporaryFile.ql
@@ -12,7 +12,7 @@
 
 import python
 
-FunctionObject temporary_name_function(string mod, string function) {
+FunctionValue temporary_name_function(string mod, string function) {
     (
         mod = "tempfile" and function = "mktemp"
         or
@@ -23,7 +23,7 @@ FunctionObject temporary_name_function(string mod, string function) {
             function = "tempnam"
         )
     ) and
-    result = ModuleObject::named(mod).attr(function)
+    result = Module::named(mod).attr(function)
 }
 
 from Call c, string mod, string function
diff --git a/python/ql/src/Security/CWE-502/UnsafeDeserialization.ql b/python/ql/src/Security/CWE-502/UnsafeDeserialization.ql
@@ -12,9 +12,9 @@
  */
 
 import python
+import semmle.python.security.Paths
 // Sources -- Any untrusted input
 import semmle.python.web.HttpRequest
-import semmle.python.security.Paths
 // Flow -- untrusted string
 import semmle.python.security.strings.Untrusted
 // Sink -- Unpickling and other deserialization formats.
diff --git a/python/ql/src/Security/CWE-732/WeakFilePermissions.qhelp b/python/ql/src/Security/CWE-732/WeakFilePermissions.qhelp
@@ -3,7 +3,7 @@
 
 <overview>
 <p>
-When creating a file POSIX systems allow permissions to be specified
+When creating a file, POSIX systems allow permissions to be specified
 for owner, group and others separately. Permissions should be kept as
 strict as possible, preventing access to the files contents by other users.
 </p>
diff --git a/python/ql/src/Security/CWE-732/WeakFilePermissions.ql b/python/ql/src/Security/CWE-732/WeakFilePermissions.ql
@@ -32,20 +32,20 @@ string permissive_permission(int p) {
     world_permission(p) = 0 and result = "group " + access(group_permission(p))
 }
 
-predicate chmod_call(CallNode call, FunctionObject chmod, NumericObject num) {
-    ModuleObject::named("os").attr("chmod") = chmod and
+predicate chmod_call(CallNode call, FunctionValue chmod, NumericValue num) {
+    Value::named("os.chmod") = chmod and
     chmod.getACall() = call and
-    call.getArg(1).refersTo(num)
+    call.getArg(1).pointsTo(num)
 }
 
-predicate open_call(CallNode call, FunctionObject open, NumericObject num) {
-    ModuleObject::named("os").attr("open") = open and
+predicate open_call(CallNode call, FunctionValue open, NumericValue num) {
+    Value::named("os.open") = open and
     open.getACall() = call and
-    call.getArg(2).refersTo(num)
+    call.getArg(2).pointsTo(num)
 }
 
-from CallNode call, FunctionObject func, NumericObject num, string permission
+from CallNode call, FunctionValue func, NumericValue num, string permission
 where
     (chmod_call(call, func, num) or open_call(call, func, num)) and
-    permission = permissive_permission(num.intValue())
+    permission = permissive_permission(num.getIntValue())
 select call, "Overly permissive mask in " + func.getName() + " sets file to " + permission + "."
diff --git a/python/ql/src/Security/CWE-798/HardcodedCredentials.ql b/python/ql/src/Security/CWE-798/HardcodedCredentials.ql
diff --git a/python/ql/test/query-tests/Security/CWE-079/Jinja2WithoutEscaping.expected b/python/ql/test/query-tests/Security/CWE-079/Jinja2WithoutEscaping.expected
diff --git a/python/ql/test/query-tests/Security/CWE-326/WeakCrypto.expected b/python/ql/test/query-tests/Security/CWE-326/WeakCrypto.expected

Original file line number	Diff line number	Diff line change
`@@ -19,60 +19,60 @@ int minimumSecureKeySize(string algo) {`
`19`	`19`	`algo = "ECC" and result = 224`
`20`	`20`	`}`
`21`	`21`
`22`		`-predicate dsaRsaKeySizeArg(FunctionObject obj, string algorithm, string arg) {`
`23`		`- exists(ModuleObject mod \| mod.attr(_) = obj \|`
	`22`	`+predicate dsaRsaKeySizeArg(FunctionValue func, string algorithm, string arg) {`
	`23`	`+ exists(ModuleValue mod \| func = mod.attr(_) \|`
`24`	`24`	`algorithm = "DSA" and`
`25`	`25`	`(`
`26`		`- mod.getName() = "cryptography.hazmat.primitives.asymmetric.dsa" and arg = "key_size"`
	`26`	`+ mod = Module::named("cryptography.hazmat.primitives.asymmetric.dsa") and arg = "key_size"`
`27`	`27`	`or`
`28`		`- mod.getName() = "Crypto.PublicKey.DSA" and arg = "bits"`
	`28`	`+ mod = Module::named("Crypto.PublicKey.DSA") and arg = "bits"`
`29`	`29`	`or`
`30`		`- mod.getName() = "Cryptodome.PublicKey.DSA" and arg = "bits"`
	`30`	`+ mod = Module::named("Cryptodome.PublicKey.DSA") and arg = "bits"`
`31`	`31`	`)`
`32`	`32`	`or`
`33`	`33`	`algorithm = "RSA" and`
`34`	`34`	`(`
`35`		`- mod.getName() = "cryptography.hazmat.primitives.asymmetric.rsa" and arg = "key_size"`
	`35`	`+ mod = Module::named("cryptography.hazmat.primitives.asymmetric.rsa") and arg = "key_size"`
`36`	`36`	`or`
`37`		`- mod.getName() = "Crypto.PublicKey.RSA" and arg = "bits"`
	`37`	`+ mod = Module::named("Crypto.PublicKey.RSA") and arg = "bits"`
`38`	`38`	`or`
`39`		`- mod.getName() = "Cryptodome.PublicKey.RSA" and arg = "bits"`
	`39`	`+ mod = Module::named("Cryptodome.PublicKey.RSA") and arg = "bits"`
`40`	`40`	`)`
`41`	`41`	`)`
`42`	`42`	`}`
`43`	`43`
`44`		`-predicate ecKeySizeArg(FunctionObject obj, string arg) {`
`45`		`- exists(ModuleObject mod \| mod.attr(_) = obj \|`
`46`		`- mod.getName() = "cryptography.hazmat.primitives.asymmetric.ec" and arg = "curve"`
	`44`	`+predicate ecKeySizeArg(FunctionValue func, string arg) {`
	`45`	`+ exists(ModuleValue mod \| func = mod.attr(_) \|`
	`46`	`+ mod = Module::named("cryptography.hazmat.primitives.asymmetric.ec") and arg = "curve"`
`47`	`47`	`)`
`48`	`48`	`}`
`49`	`49`
`50`		`-int keySizeFromCurve(ClassObject curveClass) {`
`51`		`- result = curveClass.declaredAttribute("key_size").(NumericObject).intValue()`
	`50`	`+int keySizeFromCurve(ClassValue curveClass) {`
	`51`	`+ result = curveClass.declaredAttribute("key_size").(NumericValue).getIntValue()`
`52`	`52`	`}`
`53`	`53`
`54`	`54`	`predicate algorithmAndKeysizeForCall(`
`55`	`55`	`CallNode call, string algorithm, int keySize, ControlFlowNode keyOrigin`
`56`	`56`	`) {`
`57`		`- exists(FunctionObject func, string argname, ControlFlowNode arg \|`
	`57`	`+ exists(FunctionValue func, string argname, ControlFlowNode arg \|`
`58`	`58`	`arg = func.getNamedArgumentForCall(call, argname)`
`59`	`59`	`\|`
`60`		`- exists(NumericObject key \|`
`61`		`- arg.refersTo(key, keyOrigin) and`
	`60`	`+ exists(NumericValue key \|`
	`61`	`+ arg.pointsTo(key, keyOrigin) and`
`62`	`62`	`dsaRsaKeySizeArg(func, algorithm, argname) and`
`63`		`- keySize = key.intValue()`
	`63`	`+ keySize = key.getIntValue()`
`64`	`64`	`)`
`65`	`65`	`or`
`66`		`- exists(ClassObject curve \|`
`67`		`- arg.refersTo(_, curve, keyOrigin) and`
`68`		`- ecKeySizeArg(func, argname) and`
	`66`	`+ exists(ClassValue curveClass \|`
`69`	`67`	`algorithm = "ECC" and`
`70`		`- keySize = keySizeFromCurve(curve)`
	`68`	`+ ecKeySizeArg(func, argname) and`
	`69`	`+ arg.pointsTo(_, curveClass, keyOrigin) and`
	`70`	`+ keySize = keySizeFromCurve(curveClass)`
`71`	`71`	`)`
`72`	`72`	`)`
`73`	`73`	`}`
`74`	`74`
`75`		`-from CallNode call, ControlFlowNode origin, string algo, int keySize`
	`75`	`+from CallNode call, string algo, int keySize, ControlFlowNode origin`
`76`	`76`	`where`
`77`	`77`	`algorithmAndKeysizeForCall(call, algo, keySize, origin) and`
`78`	`78`	`keySize < minimumSecureKeySize(algo)`
Original file line number	Diff line number	Diff line change
`@@ -12,7 +12,7 @@`
`12`	`12`
`13`	`13`	`import python`
`14`	`14`
`15`		`-FunctionObject temporary_name_function(string mod, string function) {`
	`15`	`+FunctionValue temporary_name_function(string mod, string function) {`
`16`	`16`	`(`
`17`	`17`	`mod = "tempfile" and function = "mktemp"`
`18`	`18`	`or`
`@@ -23,7 +23,7 @@ FunctionObject temporary_name_function(string mod, string function) {`
`23`	`23`	`function = "tempnam"`
`24`	`24`	`)`
`25`	`25`	`) and`
`26`		`- result = ModuleObject::named(mod).attr(function)`
	`26`	`+ result = Module::named(mod).attr(function)`
`27`	`27`	`}`
`28`	`28`
`29`	`29`	`from Call c, string mod, string function`