arkanalyzer 1.0.42 → 1.0.44

package/lib/callgraph/pointerAnalysis/PagBuilder.js

@@ -49,10 +49,10 @@ const Constant_1 = require("../../core/base/Constant");
 const Statistics_1 = require("../common/Statistics");
 const Pag_1 = require("./Pag");
 const TSConst_1 = require("../../core/common/TSConst");
-const PTAUtils_1 = require("./PTAUtils");
 const PointerAnalysisConfig_1 = require("./PointerAnalysisConfig");
 const Context_1 = require("./context/Context");
 const ContextSelector_1 = require("./context/ContextSelector");
+const PluginManager_1 = require("./plugins/PluginManager");
 const logger = logger_1.default.getLogger(logger_1.LOG_MODULE_TYPE.ARKANALYZER, 'PTA');
 class CSFuncID {
     constructor(cid, fid) {
@@ -69,14 +69,10 @@ class PagBuilder {
         this.staticField2UniqInstanceMap = new Map();
         this.instanceField2UniqInstanceMap = new Map();
         this.sdkMethodReturnValueMap = new Map();
-        // record the SDK API param, and create fake Values
-        this.methodParamValueMap = new Map();
-        this.fakeSdkMethodParamDeclaringStmt = new Stmt_1.ArkAssignStmt(new Local_1.Local(''), new Local_1.Local(''));
         this.funcHandledThisRound = new Set();
         this.updatedNodesThisRound = new Map();
         this.singletonFuncMap = new Map();
         this.globalThisValue = new Local_1.Local(TSConst_1.GLOBAL_THIS_NAME);
-        this.storagePropertyMap = new Map();
         this.externalScopeVariableMap = new Map();
         this.retriggerNodesList = new Set();
         this.pag = p;
@@ -85,6 +81,7 @@ class PagBuilder {
         this.funcPags = new Map();
         this.scene = s;
         this.pagStat = new Statistics_1.PAGStat();
+        this.pluginManager = new PluginManager_1.PluginManager(p, this, cg);
         let kLimit = config.kLimit;
         switch (config.contextType) {
             case PointerAnalysisConfig_1.ContextType.CallSite:
@@ -159,8 +156,8 @@ class PagBuilder {
         }
         let cfg = arkMethod.getCfg();
         if (!cfg) {
-            this.buildSDKFuncPag(funcID);
-            return false;
+            // build as sdk method
+            return this.pluginManager.processSDKFuncPag(funcID, arkMethod).handled;
         }
         logger.trace(`[build FuncPag] ${arkMethod.getSignature().toString()}`);
         let fpag = new Pag_1.FuncPag();
@@ -228,18 +225,9 @@ class PagBuilder {
         }
     }
     /**
-     * will not create real funcPag, only create param values
+     * process Method level analysis only
      */
-    buildSDKFuncPag(funcID) {
-        // check if SDK method
-        let cgNode = this.cg.getNode(funcID);
-        if (!cgNode.isSdkMethod()) {
-            return;
-        }
-        let paramArr = this.createDummyParamValue(funcID);
-        this.methodParamValueMap.set(funcID, paramArr);
-    }
-    createDummyParamValue(funcID, type = 1) {
+    createDummyParamValue(funcID) {
         let arkMethod = this.cg.getArkMethodByFuncID(funcID);
         if (!arkMethod) {
             return new Map();
@@ -249,26 +237,16 @@ class PagBuilder {
             return new Map();
         }
         let paramArr = new Map();
-        if (type === 0) {
-            // heapObj
-            args.forEach((arg, index) => {
-                let paramType = arg.getType();
-                if (!(paramType instanceof Type_1.ClassType)) {
-                    return;
-                    // TODO: support more type
-                }
-                let argInstance = new Expr_1.ArkNewExpr(paramType);
-                paramArr.set(index, argInstance);
-            });
-        }
-        else if (type === 1) {
-            // Local
-            args.forEach((arg, index) => {
-                let argInstance = new Local_1.Local(arg.getName(), arg.getType());
-                argInstance.setDeclaringStmt(this.fakeSdkMethodParamDeclaringStmt);
-                paramArr.set(index, argInstance);
-            });
-        }
+        // heapObj
+        args.forEach((arg, index) => {
+            let paramType = arg.getType();
+            if (!(paramType instanceof Type_1.ClassType)) {
+                return;
+                // TODO: support more type
+            }
+            let argInstance = new Expr_1.ArkNewExpr(paramType);
+            paramArr.set(index, argInstance);
+        });
         return paramArr;
     }
     createDummyParamPagNodes(value, funcID) {
@@ -278,7 +256,7 @@ class PagBuilder {
             return paramPagNodes;
         }
         value.forEach((v, index) => {
-            let paramArkExprNode = this.pag.getOrNewNode(Context_1.DUMMY_CID, v, this.fakeSdkMethodParamDeclaringStmt);
+            let paramArkExprNode = this.pag.getOrNewNode(Context_1.DUMMY_CID, v);
             paramPagNodes.set(index, paramArkExprNode.getID());
         });
         return paramPagNodes;
@@ -311,7 +289,7 @@ class PagBuilder {
         let paramNodes;
         let paramRefIndex = 0;
         if (this.scale === PointerAnalysisConfig_1.PtaAnalysisScale.MethodLevel) {
-            paramNodes = this.createDummyParamPagNodes(this.createDummyParamValue(funcID, 0), funcID);
+            paramNodes = this.createDummyParamPagNodes(this.createDummyParamValue(funcID), funcID);
         }
         for (let e of inEdges) {
             let srcPagNode = this.getOrNewPagNode(cid, e.src, e.stmt);
@@ -342,9 +320,12 @@ class PagBuilder {
             if (this.scale === PointerAnalysisConfig_1.PtaAnalysisScale.MethodLevel) {
                 this.addStaticPagCallReturnEdge(cs, cid, calleeCid);
             }
-            // process the Storage API(Static)
-            if (!this.processStorage(cs, calleeCGNode, cid)) {
-                // If not Storage API, process normal edge
+            // Storage Plugin, SDK Plugin
+            const pluginResult = this.pluginManager.processCallSite(cs, cid, ContextSelector_1.emptyID, this.cg);
+            if (pluginResult.handled) {
+                logger.debug(`[buildFuncPag] plugin handled call site ${cs.callStmt.toString()}`);
+            }
+            else {
                 this.addStaticPagCallEdge(cs, cid, calleeCid);
             }
             // Add edge to thisRef for special calls
@@ -462,18 +443,18 @@ class PagBuilder {
                 return srcNodes;
             }
             let staticCS = this.cg.getCallSiteManager().cloneCallSiteFromDyn(cs, dstCGNode.getID());
-            let calleeCid = this.ctxSelector.selectContext(cid, staticCS, baseClassPTNode, dstCGNode.getID());
             if (this.scale === PointerAnalysisConfig_1.PtaAnalysisScale.MethodLevel) {
-                srcNodes.push(...this.addStaticPagCallReturnEdge(staticCS, baseClassPTNode, calleeCid));
+                srcNodes.push(...this.addStaticPagCallReturnEdge(staticCS, cid, baseClassPTNode));
                 continue;
             }
-            if ((0, PTAUtils_1.getBuiltInApiType)(ivkExpr === null || ivkExpr === void 0 ? void 0 : ivkExpr.getMethodSignature()) === PTAUtils_1.BuiltApiType.NotBuiltIn) {
-                srcNodes.push(...this.processNormalMethodPagCallEdge(staticCS, cid, calleeCid, baseClassPTNode));
-            }
-            else {
-                // special SDK call: Container API, Function API
-                srcNodes.push(...this.processBuiltInMethodPagCallEdge(staticCS, cid, calleeCid, baseClassPTNode));
+            // Storage Plugin, SDK Plugin, Function Plugin, Container Plugin
+            const pluginResult = this.pluginManager.processCallSite(staticCS, cid, baseClassPTNode, this.cg);
+            if (pluginResult.handled) {
+                logger.debug(`[buildDynamicCallEdge] plugin handled call site ${cs.callStmt.toString()}`);
+                srcNodes.push(...pluginResult.srcNodes);
+                continue;
             }
+            srcNodes.push(...this.processNormalMethodPagCallEdge(staticCS, cid, baseClassPTNode));
         }
         return srcNodes;
     }
@@ -482,6 +463,7 @@ class PagBuilder {
      * handle both PtrInvokeExpr and InstanceInvokeExpr
      */
     getDynamicCallee(ptNode, value, ivkExpr, cs) {
+        var _a, _b;
         let callee = [];
         if (ptNode instanceof Pag_1.PagFuncNode) {
             // function ptr invoke
@@ -498,20 +480,22 @@ class PagBuilder {
         if (!(value instanceof Expr_1.ArkNewExpr || value instanceof Expr_1.ArkNewArrayExpr)) {
             return callee;
         }
-        let tempCallee;
         // try to get callee by MethodSignature
-        if (value instanceof Expr_1.ArkNewExpr) {
-            // get class signature
-            let clsSig = value.getType().getClassSignature();
-            let cls;
-            cls = this.scene.getClass(clsSig);
-            while (!tempCallee && cls) {
-                tempCallee = cls.getMethodWithName(calleeName);
-                cls = cls.getSuperClass();
-            }
-            if (!tempCallee) {
-                tempCallee = this.scene.getMethod(ivkExpr.getMethodSignature());
+        const getClassSignature = (value) => {
+            if (value instanceof Expr_1.ArkNewExpr) {
+                return value.getType().getClassSignature();
             }
+            return this.scene.getSdkGlobal('Array').getSignature();
+        };
+        const clsSig = getClassSignature(value);
+        let cls = this.scene.getClass(clsSig);
+        let tempCallee;
+        while (!tempCallee && cls) {
+            tempCallee = (_a = cls.getMethodWithName(calleeName)) !== null && _a !== void 0 ? _a : undefined;
+            cls = cls.getSuperClass();
+        }
+        if (!tempCallee) {
+            tempCallee = (_b = this.scene.getMethod(ivkExpr.getMethodSignature())) !== null && _b !== void 0 ? _b : undefined;
         }
         if (!tempCallee && cs.args) {
             // while pts has {o_1, o_2} and invoke expr represents a method that only {o_1} has
@@ -530,11 +514,12 @@ class PagBuilder {
         }
         return callee;
     }
-    processNormalMethodPagCallEdge(staticCS, cid, calleeCid, baseClassPTNode) {
+    processNormalMethodPagCallEdge(staticCS, cid, baseClassPTNode) {
         let srcNodes = [];
         let ivkExpr = staticCS.callStmt.getInvokeExpr();
         let ptNode = this.pag.getNode(baseClassPTNode);
         let dstCGNode = this.cg.getNode(staticCS.calleeFuncID);
+        let calleeCid = this.ctxSelector.selectContext(cid, staticCS, baseClassPTNode, dstCGNode.getID());
         let callee = this.cg.getArkMethodByFuncID(staticCS.calleeFuncID);
         // Dynamic call, Ptr call, normal SDK call
         srcNodes.push(...this.addStaticPagCallEdge(staticCS, cid, calleeCid, ptNode));
@@ -558,126 +543,6 @@ class PagBuilder {
         }
         return srcNodes;
     }
-    /**
-     * include container API, Function API
-     */
-    processBuiltInMethodPagCallEdge(staticCS, cid, calleeCid, baseClassPTNode) {
-        let srcNodes = [];
-        let ivkExpr = staticCS.callStmt.getInvokeExpr();
-        let callee = this.scene.getMethod(ivkExpr.getMethodSignature());
-        let realCallee = this.cg.getArkMethodByFuncID(staticCS.calleeFuncID);
-        if (!callee) {
-            return srcNodes;
-        }
-        let builtInType = (0, PTAUtils_1.getBuiltInApiType)(callee.getSignature());
-        if (builtInType === PTAUtils_1.BuiltApiType.NotBuiltIn || !realCallee) {
-            return srcNodes;
-        }
-        switch (builtInType) {
-            case PTAUtils_1.BuiltApiType.SetAdd:
-            case PTAUtils_1.BuiltApiType.MapSet:
-                this.processContainerPagCallEdge(staticCS, cid, baseClassPTNode, builtInType);
-                break;
-            case PTAUtils_1.BuiltApiType.FunctionCall:
-                /**
-                 * set this and param
-                 * function.call(thisArg, arg1, arg2, ...)
-                 */
-                this.handleFunctionCall(staticCS, cid, calleeCid, realCallee, srcNodes, baseClassPTNode);
-                break;
-            case PTAUtils_1.BuiltApiType.FunctionApply:
-                /**
-                 * set this, resolve array param
-                 * function.apply(thisArg, [argsArray])
-                 */
-                this.handleFunctionApply(staticCS, cid, calleeCid, realCallee, srcNodes, baseClassPTNode);
-                break;
-            case PTAUtils_1.BuiltApiType.FunctionBind:
-                /**
-                 * clone the function node and add the this pointer, origin callSite, args offset to it
-                 * let f = function.bind(thisArg, arg1, arg2, ...)
-                 * f();
-                 */
-                this.handleFunctionBind(staticCS, cid, baseClassPTNode, srcNodes);
-                break;
-            default:
-        }
-        return srcNodes;
-    }
-    processContainerPagCallEdge(cs, cid, baseClassPTNode, type) {
-        let srcNodes = [];
-        let calleeNode = this.cg.getNode(cs.calleeFuncID);
-        let calleeMethod = this.scene.getMethod(calleeNode.getMethod());
-        let ptNode = this.pag.getNode(baseClassPTNode);
-        if (!calleeMethod || !(ptNode instanceof Pag_1.PagNewContainerExprNode)) {
-            return srcNodes;
-        }
-        let containerValue = cs.callStmt.getInvokeExpr().getBase();
-        const containerValueProcess = (argIndex) => {
-            let srcNode = this.pag.getOrNewNode(cid, cs.args[argIndex], cs.callStmt);
-            let realContainerFieldPagNode = this.pag.getOrClonePagContainerFieldNode(baseClassPTNode, undefined, containerValue);
-            if (realContainerFieldPagNode) {
-                // In some cases, the value of a variable of array type may not be an explicit array object,
-                // and the value of `realContainerFieldPagNode` will be undefined.
-                this.pag.addPagEdge(srcNode, realContainerFieldPagNode, Pag_1.PagEdgeKind.Copy, cs.callStmt);
-                srcNodes.push(srcNode.getID());
-            }
-        };
-        if (type === PTAUtils_1.BuiltApiType.SetAdd) {
-            containerValueProcess(0);
-        }
-        else if (type === PTAUtils_1.BuiltApiType.MapSet) {
-            containerValueProcess(1);
-        }
-        return srcNodes;
-    }
-    handleFunctionCall(staticCS, cid, calleeCid, realCallee, srcNodes, baseClassPTNode) {
-        this.buildFuncPagAndAddToWorklist(new CSFuncID(calleeCid, staticCS.calleeFuncID));
-        srcNodes.push(...this.addCallParamPagEdge(realCallee, staticCS.args, staticCS.callStmt, cid, calleeCid, 1));
-        this.addThisEdge(staticCS, cid, realCallee, srcNodes, calleeCid);
-    }
-    handleFunctionApply(staticCS, cid, calleeCid, realCallee, srcNodes, baseClassPTNode) {
-        this.buildFuncPagAndAddToWorklist(new CSFuncID(calleeCid, staticCS.calleeFuncID));
-        let callerMethod = this.cg.getArkMethodByFuncID(staticCS.callerFuncID);
-        if (!callerMethod) {
-            throw new Error('Cannot get caller method');
-        }
-        let argsRealValues = this.transferArrayValues(callerMethod, staticCS.args[1]);
-        srcNodes.push(...this.addCallParamPagEdge(realCallee, argsRealValues, staticCS.callStmt, cid, calleeCid, 0));
-        this.addThisEdge(staticCS, cid, realCallee, srcNodes, calleeCid);
-    }
-    handleFunctionBind(staticCS, cid, baseClassPTNode, srcNodes) {
-        let srcNode = this.pag.getOrClonePagFuncNode(baseClassPTNode);
-        if (!srcNode) {
-            return;
-        }
-        this.setFunctionThisPt(staticCS, srcNode, cid);
-        let dstNode = this.getOrNewPagNode(cid, staticCS.callStmt.getLeftOp());
-        this.pag.addPagEdge(srcNode, dstNode, Pag_1.PagEdgeKind.Copy, staticCS.callStmt);
-        srcNodes.push(srcNode.getID());
-        srcNode.setCS(staticCS);
-        srcNode.setArgsOffset(1);
-        srcNode.setOriginCid(cid);
-    }
-    addThisEdge(staticCS, cid, realCallee, srcNodes, calleeCid) {
-        if (!(staticCS.args[0] instanceof Constant_1.NullConstant) && !realCallee.isStatic()) {
-            let srcNodeID = this.addThisRefCallEdge(cid, staticCS.args[0], realCallee, calleeCid, staticCS.callerFuncID);
-            if (srcNodeID !== -1) {
-                srcNodes.push(srcNodeID);
-            }
-        }
-    }
-    setFunctionThisPt(staticCS, srcNode, cid) {
-        let thisLocal = staticCS.args[0];
-        if (!(thisLocal instanceof Local_1.Local)) {
-            return;
-        }
-        let thisInstanceLocal = this.getRealThisLocal(thisLocal, staticCS.callerFuncID);
-        let baseThisNode = this.pag.getOrNewNode(cid, thisInstanceLocal);
-        for (let pt of baseThisNode.getPointTo()) {
-            srcNode.setThisPt(pt);
-        }
-    }
     handleUnkownDynamicCall(cs, cid) {
         var _a;
         let srcNodes = [];
@@ -709,13 +574,6 @@ class PagBuilder {
             if (!callerNode) {
                 throw new Error('Can not get caller method node');
             }
-            if (this.processStorage(cs, dstCGNode, cid)) {
-                if (ivkExpr.getArgs().length !== 0) {
-                    // for AppStorage.set() instance invoke, add obj to reanalyze list
-                    let argsNode = this.pag.getOrNewNode(cid, cs.args[0]);
-                    srcNodes.push(argsNode.getID());
-                }
-            }
             logger.warn(`\tAdd call edge of unknown call ${callee.getSignature().toString()}`);
             this.cg.addDynamicCallEdge(callerNode.getID(), dstCGNode.getID(), cs.callStmt);
             if (!this.cg.detectReachable(dstCGNode.getID(), callerNode.getID())) {
@@ -815,7 +673,7 @@ class PagBuilder {
             return srcNodes;
         }
         if (calleeNode.isSdkMethod()) {
-            srcNodes.push(...this.addSDKMethodPagCallEdge(cs, callerCid, calleeCid));
+            logger.error(`SDK method ${calleeMethod.getSignature().toString()} shoule be handled by plugin`);
             return srcNodes;
         }
         if (!calleeMethod.getCfg()) {
@@ -833,16 +691,17 @@ class PagBuilder {
             argsOffset = (_c = ptNode.getArgsOffset()) !== null && _c !== void 0 ? _c : 0;
             callerCid = (_d = ptNode.getOriginCid()) !== null && _d !== void 0 ? _d : callerCid;
         }
-        srcNodes.push(...this.addCallParamPagEdge(calleeMethod, realArgs, cs.callStmt, callerCid, calleeCid, argsOffset));
+        srcNodes.push(...this.addCallParamPagEdge(calleeMethod, realArgs, cs, callerCid, calleeCid, argsOffset));
         srcNodes.push(...this.addCallReturnPagEdge(calleeMethod, cs.callStmt, callerCid, calleeCid));
         return srcNodes;
     }
     /**
      * only process the param PAG edge for invoke stmt
      */
-    addCallParamPagEdge(calleeMethod, args, callStmt, callerCid, calleeCid, offset) {
-        var _a;
-        let params = calleeMethod
+    addCallParamPagEdge(calleeMethod, args, cs, callerCid, calleeCid, offset) {
+        var _a, _b;
+        let callStmt = cs.callStmt;
+        const params = (_a = this.pluginManager.getSDKParamValue(calleeMethod)) !== null && _a !== void 0 ? _a : calleeMethod
             .getCfg()
             .getStmts()
             .filter(stmt => stmt instanceof Stmt_1.ArkAssignStmt && stmt.getRightOp() instanceof Ref_1.ArkParameterRef)
@@ -854,7 +713,7 @@ class PagBuilder {
          *  cs.args is anonymous method local, will have only 1 parameter
          *  but inside foreach will have >= 1 parameters
          */
-        if (((_a = callStmt.getInvokeExpr()) === null || _a === void 0 ? void 0 : _a.getMethodSignature().getMethodSubSignature().getMethodName()) === 'forEach') {
+        if (((_b = callStmt.getInvokeExpr()) === null || _b === void 0 ? void 0 : _b.getMethodSignature().getMethodSubSignature().getMethodName()) === 'forEach') {
             srcNodes.push(...this.addForeachParamPagEdge(callerCid, calleeCid, callStmt, params));
             return srcNodes;
         }
@@ -937,38 +796,20 @@ class PagBuilder {
         }
         return srcNodes;
     }
-    addStaticPagCallReturnEdge(cs, callerCid, calleeCid) {
-        if (!calleeCid) {
-            calleeCid = this.ctxSelector.selectContext(callerCid, cs, ContextSelector_1.emptyID, cs.calleeFuncID);
-        }
+    /**
+     * for method level call graph, add return edge
+     */
+    addStaticPagCallReturnEdge(cs, cid, baseClassPTNode) {
         let srcNodes = [];
         // Add reachable
         let calleeNode = this.cg.getNode(cs.calleeFuncID);
         let calleeMethod = this.scene.getMethod(calleeNode.getMethod());
+        let calleeCid = this.ctxSelector.selectContext(cid, cs, baseClassPTNode, cs.calleeFuncID);
         if (!calleeMethod) {
             // TODO: check if nodes need to delete
             return srcNodes;
         }
-        srcNodes.push(...this.addSDKMethodReturnPagEdge(cs, callerCid, calleeCid, calleeMethod));
-        return srcNodes;
-    }
-    addSDKMethodPagCallEdge(cs, callerCid, calleeCid) {
-        let srcNodes = [];
-        let calleeNode = this.cg.getNode(cs.calleeFuncID);
-        let calleeMethod = this.scene.getMethod(calleeNode.getMethod());
-        if (!calleeMethod) {
-            return srcNodes;
-        }
-        let methodType = (0, PTAUtils_1.getBuiltInApiType)(calleeMethod.getSignature());
-        // block the container SDK
-        if (methodType === PTAUtils_1.BuiltApiType.SetAdd || PTAUtils_1.BuiltApiType.MapSet) {
-            return srcNodes;
-        }
-        if (!this.methodParamValueMap.has(calleeNode.getID())) {
-            this.buildSDKFuncPag(calleeNode.getID());
-        }
-        srcNodes.push(...this.addSDKMethodReturnPagEdge(cs, callerCid, calleeCid, calleeMethod));
-        srcNodes.push(...this.addSDKMethodParamPagEdge(cs, callerCid, calleeCid, calleeNode.getID()));
+        srcNodes.push(...this.addSDKMethodReturnPagEdge(cs, cid, calleeCid, calleeMethod)); // TODO: ???? why sdk
         return srcNodes;
     }
     addSDKMethodReturnPagEdge(cs, callerCid, calleeCid, calleeMethod) {
@@ -996,52 +837,6 @@ class PagBuilder {
         srcNodes.push(srcPagNode.getID());
         return srcNodes;
     }
-    addSDKMethodParamPagEdge(cs, callerCid, calleeCid, funcID) {
-        var _a, _b;
-        let argNum = (_a = cs.args) === null || _a === void 0 ? void 0 : _a.length;
-        let srcNodes = [];
-        if (!argNum) {
-            return srcNodes;
-        }
-        // add args to parameters edges
-        for (let i = 0; i < argNum; i++) {
-            let arg = (_b = cs.args) === null || _b === void 0 ? void 0 : _b[i];
-            let paramValue;
-            if (arg instanceof Local_1.Local && arg.getType() instanceof Type_1.FunctionType) {
-                // TODO: cannot find value
-                paramValue = this.methodParamValueMap.get(funcID).get(i);
-            }
-            else {
-                continue;
-            }
-            if (!(arg && paramValue)) {
-                continue;
-            }
-            // Get or create new PAG node for argument and parameter
-            let srcPagNode = this.getOrNewPagNode(callerCid, arg, cs.callStmt);
-            let dstPagNode = this.getOrNewPagNode(calleeCid, paramValue, cs.callStmt);
-            if (dstPagNode instanceof Pag_1.PagLocalNode) {
-                // set the fake param Value in PagLocalNode
-                /**
-                 * TODO: !!!
-                 * some API param is in the form of anonymous method:
-                 *  component/common.d.ts
-                 *  declare function animateTo(value: AnimateParam, event: () => void): void;
-                 *
-                 * this param fake Value will create PagFuncNode rather than PagLocalNode
-                 * when this API is called, the anonymous method pointer will not be able to pass into the fake Value PagNode
-                 */
-                dstPagNode.setSdkParam();
-                let sdkParamInvokeStmt = new Stmt_1.ArkInvokeStmt(new Expr_1.ArkPtrInvokeExpr(arg.getType().getMethodSignature(), paramValue, []));
-                // create new DynCallSite
-                let sdkParamCallSite = this.cg.getCallSiteManager().newDynCallSite(sdkParamInvokeStmt, undefined, undefined, funcID);
-                dstPagNode.addRelatedDynCallSite(sdkParamCallSite);
-            }
-            this.pag.addPagEdge(srcPagNode, dstPagNode, Pag_1.PagEdgeKind.Copy, cs.callStmt);
-            srcNodes.push(srcPagNode.getID());
-        }
-        return srcNodes;
-    }
     getOrNewPagNode(cid, v, s) {
         // globalThis process can not be removed while all `globalThis` ref is the same Value
         if (v instanceof Local_1.Local && v.getName() === TSConst_1.GLOBAL_THIS_NAME && v.getDeclaringStmt() == null) {
@@ -1056,63 +851,6 @@ class PagBuilder {
     getOrNewGlobalThisNode(cid) {
         return this.pag.getOrNewNode(cid, this.getGlobalThisValue());
     }
-    /**
-     * search the storage map to get propertyNode with given storage and propertyFieldName
-     * @param storage storage type: AppStorage, LocalStorage etc.
-     * @param propertyName string property key
-     * @returns propertyNode: PagLocalNode
-     */
-    getOrNewPropertyNode(storage, propertyName, stmt) {
-        let propertyNode = this.getPropertyNode(storage, propertyName, stmt);
-        if (propertyNode) {
-            return propertyNode;
-        }
-        let storageMap = this.storagePropertyMap.get(storage);
-        let propertyLocal = new Local_1.Local(propertyName);
-        storageMap.set(propertyName, propertyLocal);
-        this.storagePropertyMap.set(storage, storageMap);
-        return this.getOrNewPagNode(-1, propertyLocal, stmt);
-    }
-    getPropertyNode(storage, propertyName, stmt) {
-        let storageMap = this.storagePropertyMap.get(storage);
-        let propertyLocal;
-        if (!storageMap) {
-            storageMap = new Map();
-            this.storagePropertyMap.set(storage, storageMap);
-        }
-        if (storageMap.has(propertyName)) {
-            propertyLocal = storageMap.get(propertyName);
-        }
-        if (propertyLocal) {
-            return this.getOrNewPagNode(-1, propertyLocal, stmt);
-        }
-        return undefined;
-    }
-    /**
-     * add PagEdge
-     * @param edgeKind: edge kind differs from API
-     * @param propertyNode: PAG node created by protpertyName
-     * @param obj: heapObj stored with Storage API
-     */
-    addPropertyLinkEdge(propertyNode, storageObj, cid, stmt, edgeKind) {
-        if (!(storageObj.getType() instanceof Type_1.ClassType)) {
-            return false;
-        }
-        if (edgeKind === Pag_1.StorageLinkEdgeType.Property2Local) {
-            // propertyNode --> objNode
-            this.pag.addPagEdge(propertyNode, this.pag.getOrNewNode(cid, storageObj), Pag_1.PagEdgeKind.Copy, stmt);
-        }
-        else if (edgeKind === Pag_1.StorageLinkEdgeType.Local2Property) {
-            // propertyNode <-- objNode
-            this.pag.addPagEdge(this.pag.getOrNewNode(cid, storageObj), propertyNode, Pag_1.PagEdgeKind.Copy, stmt);
-        }
-        else if (edgeKind === Pag_1.StorageLinkEdgeType.TwoWay) {
-            // propertyNode <-> objNode
-            this.pag.addPagEdge(propertyNode, this.pag.getOrNewNode(cid, storageObj), Pag_1.PagEdgeKind.Copy, stmt);
-            this.pag.addPagEdge(this.pag.getOrNewNode(cid, storageObj), propertyNode, Pag_1.PagEdgeKind.Copy, stmt);
-        }
-        return true;
-    }
     /*
      * In ArkIR, ArkField has multiple instances for each stmt which use it
      * But the unique one is needed for pointer analysis
@@ -1253,158 +991,6 @@ class PagBuilder {
         }
         return Pag_1.PagEdgeKind.Unknown;
     }
-    /**
-     * process Storage API
-     * @returns boolean: check if the cs represent a Storage API, no matter the API will success or fail
-     */
-    processStorage(cs, calleeCGNode, cid) {
-        let storageName = calleeCGNode.getMethod().getDeclaringClassSignature().getClassName();
-        let storageType = this.getStorageType(storageName, cs, cid);
-        // TODO: add other storages
-        if (storageType === Pag_1.StorageType.APP_STORAGE) {
-            let calleeName = calleeCGNode.getMethod().getMethodSubSignature().getMethodName();
-            // TODO: complete AppStorage API
-            if (calleeName === 'setOrCreate') {
-                this.processStorageSetOrCreate(cs, cid);
-            }
-            else if (calleeName === 'link') {
-                this.processStorageLink(cs, cid);
-            }
-            else if (calleeName === 'prop') {
-                this.processStorageProp(cs, cid);
-            }
-            else if (calleeName === 'set') {
-                this.processStorageSet(cs, cid);
-            }
-            else if (calleeName === 'get') {
-                this.processStorageGet(cs, cid);
-            }
-            return true;
-        }
-        else if (storageType === Pag_1.StorageType.LOCAL_STORAGE) {
-            // TODO: LocalStorage is not Static
-        }
-        return false;
-    }
-    processStorageSetOrCreate(cs, cid) {
-        let propertyStr = this.getPropertyName(cs.args[0]);
-        if (!propertyStr) {
-            return;
-        }
-        let propertyName = propertyStr;
-        let propertyNode = this.getOrNewPropertyNode(Pag_1.StorageType.APP_STORAGE, propertyName, cs.callStmt);
-        let storageObj = cs.args[1];
-        this.addPropertyLinkEdge(propertyNode, storageObj, cid, cs.callStmt, Pag_1.StorageLinkEdgeType.Local2Property);
-    }
-    processStorageLink(cs, cid) {
-        let propertyStr = this.getPropertyName(cs.args[0]);
-        if (!propertyStr) {
-            return;
-        }
-        let propertyName = propertyStr;
-        let propertyNode = this.getOrNewPropertyNode(Pag_1.StorageType.APP_STORAGE, propertyName, cs.callStmt);
-        let leftOp = cs.callStmt.getLeftOp();
-        let linkedOpNode = this.pag.getOrNewNode(cid, leftOp);
-        if (linkedOpNode instanceof Pag_1.PagLocalNode) {
-            linkedOpNode.setStorageLink(Pag_1.StorageType.APP_STORAGE, propertyName);
-        }
-        this.pag.addPagEdge(propertyNode, linkedOpNode, Pag_1.PagEdgeKind.Copy);
-        this.pag.addPagEdge(linkedOpNode, propertyNode, Pag_1.PagEdgeKind.Copy);
-    }
-    processStorageProp(cs, cid) {
-        let propertyStr = this.getPropertyName(cs.args[0]);
-        if (!propertyStr) {
-            return;
-        }
-        let propertyName = propertyStr;
-        let propertyNode = this.getOrNewPropertyNode(Pag_1.StorageType.APP_STORAGE, propertyName, cs.callStmt);
-        let leftOp = cs.callStmt.getLeftOp();
-        let linkedOpNode = this.pag.getOrNewNode(cid, leftOp);
-        if (linkedOpNode instanceof Pag_1.PagLocalNode) {
-            linkedOpNode.setStorageLink(Pag_1.StorageType.APP_STORAGE, propertyName);
-        }
-        this.pag.addPagEdge(propertyNode, linkedOpNode, Pag_1.PagEdgeKind.Copy);
-    }
-    processStorageSet(cs, cid) {
-        let ivkExpr = cs.callStmt.getInvokeExpr();
-        if (ivkExpr instanceof Expr_1.ArkInstanceInvokeExpr) {
-            let base = ivkExpr.getBase();
-            let baseNode = this.pag.getOrNewNode(cid, base);
-            if (baseNode.isStorageLinked()) {
-                let argsNode = this.pag.getOrNewNode(cid, cs.args[0]);
-                this.pag.addPagEdge(argsNode, baseNode, Pag_1.PagEdgeKind.Copy);
-            }
-        }
-        else if (ivkExpr instanceof Expr_1.ArkStaticInvokeExpr) {
-            // TODO: process AppStorage.set()
-        }
-    }
-    processStorageGet(cs, cid) {
-        if (!(cs.callStmt instanceof Stmt_1.ArkAssignStmt)) {
-            return;
-        }
-        let leftOp = cs.callStmt.getLeftOp();
-        let ivkExpr = cs.callStmt.getInvokeExpr();
-        let propertyName;
-        if (ivkExpr instanceof Expr_1.ArkStaticInvokeExpr) {
-            let propertyStr = this.getPropertyName(cs.args[0]);
-            if (propertyStr) {
-                propertyName = propertyStr;
-            }
-        }
-        else if (ivkExpr instanceof Expr_1.ArkInstanceInvokeExpr) {
-            let baseNode = this.pag.getOrNewNode(cid, ivkExpr.getBase());
-            if (baseNode.isStorageLinked()) {
-                propertyName = baseNode.getStorage().PropertyName;
-            }
-        }
-        let propertyNode = this.getPropertyNode(Pag_1.StorageType.APP_STORAGE, propertyName, cs.callStmt);
-        if (!propertyNode) {
-            return;
-        }
-        this.pag.addPagEdge(propertyNode, this.pag.getOrNewNode(cid, leftOp, cs.callStmt), Pag_1.PagEdgeKind.Copy, cs.callStmt);
-    }
-    getPropertyName(value) {
-        if (value instanceof Local_1.Local) {
-            let type = value.getType();
-            if (type instanceof Type_1.StringType) {
-                return type.getName();
-            }
-        }
-        else if (value instanceof Constant_1.Constant) {
-            return value.getValue();
-        }
-        return undefined;
-    }
-    /**
-     * get storageType enum with method's Declaring ClassName
-     *
-     * @param storageName ClassName that method belongs to, currently support AppStorage and SubscribedAbstractProperty
-     * SubscribedAbstractProperty: in following listing, `link1` is infered as ClassType `SubscribedAbstractProperty`,
-     * it needs to get PAG node to check the StorageType
-     * let link1: SubscribedAbstractProperty<A> = AppStorage.link('PropA');
-     * link1.set(a);
-     * @param cs: for search PAG node in SubscribedAbstractProperty
-     * @param cid: for search PAG node in SubscribedAbstractProperty
-     * @returns StorageType enum
-     */
-    getStorageType(storageName, cs, cid) {
-        switch (storageName) {
-            case 'AppStorage':
-                return Pag_1.StorageType.APP_STORAGE;
-            case 'SubscribedAbstractProperty': {
-                let calleeBaseLocal = cs.callStmt.getInvokeExpr().getBase();
-                let calleeBaseLocalNode = this.pag.getOrNewNode(cid, calleeBaseLocal);
-                if (calleeBaseLocalNode.isStorageLinked()) {
-                    let storage = calleeBaseLocalNode.getStorage();
-                    return storage.StorageType;
-                }
-                return Pag_1.StorageType.Undefined;
-            }
-            default:
-                return Pag_1.StorageType.Undefined;
-        }
-    }
     /**\
      * ArkNewExpr, ArkNewArrayExpr, function ptr, globalThis
      */
@@ -1656,25 +1242,6 @@ class PagBuilder {
     resetUpdatedNodes() {
         this.updatedNodesThisRound.clear();
     }
-    transferArrayValues(method, arrayLocal) {
-        if (!(arrayLocal instanceof Local_1.Local) || !(arrayLocal.getType() instanceof Type_1.ArrayType)) {
-            return [];
-        }
-        /**
-         * TODO: get array element values
-         * need to resolve multi dimension array
-         */
-        const usedValuesInArray = arrayLocal.getUsedStmts().flatMap(stmt => {
-            if (stmt instanceof Stmt_1.ArkAssignStmt) {
-                const rightOp = stmt.getRightOp();
-                if (rightOp instanceof Local_1.Local) {
-                    return rightOp;
-                }
-            }
-            return [];
-        });
-        return usedValuesInArray;
-    }
     getContextSelector() {
         return this.ctxSelector;
     }