Rust: Fix type inference for explicit dereference with * to the Deref trait

[paldepind]

This PR should fix type inference for explicit dereferencing.

• Support methods on & types. Previously types in the receiver position where always dereferenced before method lookup. Now for a &T we lookup methods both on &T itself and on T.
• Implement the * in the desugaring of *. *e desugars to *Deref::deref(&e) and two handle the * after the call we need a special case in the return position of *.
• Account for "certain" borrows in the Call abstraction. For instance, since a == b desugars to Equal::eq(&a, &b) so we can be certain that a and b are borrowed. Making these certain sidesteps some issues with the way we infer implicit borrows. For instance for an argument type of the form &T we will attempt to infer a dereference and never infer an implicit borrow. But the deref method on &T is a actually a borrow from &T to &&T.

[Copilot]

Pull Request Overview

This PR enhances the Rust type-inference engine to correctly handle explicit * dereferences via the Deref trait and to distinguish “certain” borrows, and it updates tests and internal QL logic accordingly.

• Add new dereference tests and update existing expected-results files to exercise explicit/implicit Deref calls.
• Extend CallExprBaseMatchingInput to carry a certain flag on borrows and adjust TypeInference.qll to honor explicit * in both argument and return positions.
• Update internal QL modules (OperationImpl.qll, CallImpl.qll) to propagate the new borrow flags and update test annotations for write‐formatted calls and dataflow.

Reviewed Changes

Copilot reviewed 10 out of 11 changed files in this pull request and generated 1 comment.

Show a summary per file

File	Description
rust/ql/test/query-tests/security/.../PathResolutionConsistency.expected	Add expected write_fmt paths for explicit deref consistency tests.
rust/ql/test/library-tests/type-inference/main.rs	Introduce MyInt, ATrait, remove spurious annotations, register new dereference module.
rust/ql/test/library-tests/type-inference/dereference.rs	New file with explicit/implicit deref tests through Deref trait.
rust/ql/test/library-tests/type-inference/CONSISTENCY/...	Add consistency expectations for e1.deref().
rust/ql/test/library-tests/dataflow/.../DataFlowStep.expected	Insert unwrap receiver entries in local dataflow steps.
rust/ql/test/library-tests/dataflow/global/viableCallable.expected	Add explicit * deref entries to viable callables.
rust/ql/test/library-tests/dataflow/global/main.rs	Update sink comment to include hasTaintFlow.
rust/ql/lib/codeql/rust/internal/TypeInference.qll	Track “certain” borrows in AccessPosition, adjust primitive handling of explicit *.
rust/ql/lib/codeql/rust/elements/internal/OperationImpl.qll	Change deref operator’s borrows count from 0 to 1.
rust/ql/lib/codeql/rust/elements/internal/CallImpl.qll	Expand implicitBorrowAt predicate to accept a certain flag.

[Copilot]

Using apos.isBorrowed(false) still matches only borrowed arguments (with certain = false) rather than the 'not borrowed' case. You should replace this clause with not apos.isBorrowed(_) to correctly handle non-borrowed positions.

Suggested change

	apos.isBorrowed(false) and
	not apos.isBorrowed(_) and