github/codeql-coding-standardsPublic

NotificationsYou must be signed in to change notification settings
Fork70
Star172

Commit9c4db29

committed

Merge remote-tracking branch 'origin/main' into michaelrfairhurst/implement-concurrency8-package

2 parents93a773c +55362d0 commit9c4db29Copy full SHA for 9c4db29

File tree

369 files changed

+5057

-1331

lines changed

.github/workflows
- code-scanning-pack-gen.yml
- upgrade_codeql_dependencies.yml
change_notes
cpp
- autosar
  - src
    - codeql-pack.lock.yml
    - qlpack.yml
    - rules
      - A13-1-3
        UserDefinedLiteralsOperatorsShallOnlyPerformConversionOfPassedParameters.ql
      - A13-2-1
        AssignmentOperatorReturnThis.ql
      - A13-3-1
        FunctionThatContainsForwardingReferenceAsItsArgumentOverloaded.ql
      - A15-1-3
        ThrownExceptionsShouldBeUnique.ql
      - A15-2-2
        ConstructorErrorLeavesObjectInInvalidState.ql
      - A15-4-4
        MissingNoExcept.ql
      - A18-1-4
        PointerToAnElementOfAnArrayPassedToASmartPointer.ql
      - A18-5-2
        DoNotUseNonPlacementNew.ql
      - A18-5-8
        UnnecessaryUseOfDynamicStorage.ql
      - A18-9-4
        ArgumentToForwardSubsequentlyUsed.ql
      - A20-8-4
        SharedPointerUsedWithNoOwnershipSharing.ql
      - A27-0-4
        CStyleStringsUsed.ql
      - A3-1-5
        TrivialOrTemplateFunctionDefinedOutsideClassDefinition.ql
      - A3-9-1
        VariableWidthIntegerTypesUsed.ql
      - A5-0-4
        PointerArithmeticUsedWithPointersToNonFinalClasses.ql
      - A5-1-7
        LambdaPassedToDecltype.ql
        LambdaPassedToTypeid.ql
      - A7-1-2
        FunctionMissingConstexpr.ql
      - A7-5-1
        InvalidFunctionReturnType.ql
      - A8-4-11
        SmartPointerAsParameterWithoutLifetimeSemantics.ql
      - A8-4-12
        UniquePtrPassedToFunctionWithImproperSemantics.ql
      - A8-4-4
        FunctionReturnMultipleValueCondition.ql
      - A9-3-1
        ReturnsNonConstRawPointersOrReferencesToPrivateOrProtectedData.ql
      - M0-3-2
        FunctionErroneousReturnValueNotTested.ql
      - M3-9-3
        UnderlyingBitRepresentationsOfFloatingPointValuesUsed.ql
      - M5-0-17
        PointerSubtractionOnDifferentArrays.ql
      - M5-2-2
        PointerToAVirtualBaseClassCastToAPointer.ql
      - M9-3-1
        ConstMemberFunctionReturnsNonConstPointer.ql
  - test
- cert
  - src
    - codeql-pack.lock.yml
    - qlpack.yml
    - rules
  - test
    - codeql-pack.lock.yml
    - qlpack.yml
    - rules
      - CTR52-CPP
        GuaranteeGenericCppLibraryFunctionsDoNotOverflow.expected
      - CTR53-CPP
        UseValidIteratorRanges.expected
      - CTR55-CPP
        DoNotUseAnAdditiveOperatorOnAnIterator.expected
      - CTR56-CPP
        DoNotUsePointerArithmeticOnPolymorphicObjects.expected
      - EXP50-CPP
        DoNotDependOnTheOrderOfEvaluationForSideEffectsInFunctionCallsAsFunctionArguments.expected
      - EXP51-CPP
        DoNotDeleteAnArrayThroughAPointerOfTheIncorrectType.expected
      - MEM52-CPP
        DetectAndHandleMemoryAllocationErrors.expected
      - MSC51-CPP
        BadlySeededRandomNumberGenerator.expected
- common
  - src
    - codeql-pack.lock.yml
    - codingstandards/cpp
      - AccessPath.qll
      - AlertReporting.qll
      - Allocations.qll
      - Class.qll
      - Concurrency.qll
      - ConstHelpers.qll
      - Expr.qll
      - FgetsErrorManagement.qll
      - Iterators.qll
      - Nullness.qll
      - Overflow.qll
      - ReadErrorsAndEOF.qll
      - Scope.qll
      - SideEffect.qll
      - SmartPointers.qll
      - alertreporting
        DeduplicateMacroResults.qll
      - allocations
        PlacementNew.qll
      - dataflow
        DataFlow.qll
        DataFlow2.qll
        TaintTracking.qll
        internal/tainttracking1
        TaintTrackingParameter.qll
      - deadcode
        UnusedObjects.qll
        UnusedVariables.qll
      - exclusions
        cpp
        Classes.qll
        Const.qll
        c
        Concurrency6.qll
        Contracts.qll
        DeadCode2.qll
        RuleMetadata.qll
      - lifetimes/lifetimeprofile
        LifetimeProfile.qll
      - resources
        ResourceManagement.qll
      - rules
        accessofnonexistingmemberthroughpointertomember
        AccessOfNonExistingMemberThroughPointerToMember.qll
        accessofundefinedmemberthroughnullpointer
        AccessOfUndefinedMemberThroughNullPointer.qll
        accessofundefinedmemberthroughuninitializedstaticpointer
        AccessOfUndefinedMemberThroughUninitializedStaticPointer.qll
        basicstringmaynotbenullterminated
        BasicStringMayNotBeNullTerminated.qll
        castcharbeforeconvertingtolargersizes
        CastCharBeforeConvertingToLargerSizes.qll
        constlikereturnvalue
        ConstLikeReturnValue.qll
        containeraccesswithoutrangecheck
        ContainerAccessWithoutRangeCheck.qll
        danglingcapturewhenmovinglambdaobject
        DanglingCaptureWhenMovingLambdaObject.qll
        danglingcapturewhenreturninglambdaobject
        DanglingCaptureWhenReturningLambdaObject.qll
        differentidentifiersnottypographicallyunambiguous
        DifferentIdentifiersNotTypographicallyUnambiguous.qll
        donotaccessaclosedfile
        DoNotAccessAClosedFile.qll
        donotallowamutextogooutofscopewhilelocked
        DoNotAllowAMutexToGoOutOfScopeWhileLocked.qll
        donotdestroyamutexwhileitislocked
        DoNotDestroyAMutexWhileItIsLocked.qll
        donotpassaliasedpointertorestrictqualifiedparamshared
        DoNotPassAliasedPointerToRestrictQualifiedParamShared.qll
        donotsubtractpointersaddressingdifferentarrays
        DoNotSubtractPointersAddressingDifferentArrays.qll
        donotusepointerarithmetictoaddressdifferentarrays
        DoNotUsePointerArithmeticToAddressDifferentArrays.qll
        donotuserelationaloperatorswithdifferingarrays
        DoNotUseRelationalOperatorsWithDifferingArrays.qll
        functionerroneousreturnvaluenottested
        FunctionErroneousReturnValueNotTested.qll
        identifierhidden
        IdentifierHidden.qll
        invalidatedenvstringpointerswarn
        InvalidatedEnvStringPointersWarn.qll
        invalidatedenvstringpointers
        InvalidatedEnvStringPointers.qll
        iofstreammissingpositioning
        IOFstreamMissingPositioning.qll
        joinordetachthreadonlyonce
        JoinOrDetachThreadOnlyOnce.qll
        movedfromobjectsunspecifiedstate
        MovedFromObjectsUnspecifiedState.qll
        nonconstantformat
        NonConstantFormat.qll
        onlyfreememoryallocateddynamicallyshared
        OnlyFreeMemoryAllocatedDynamicallyShared.qll
        ownedpointervaluestoredinunrelatedsmartpointer
        OwnedPointerValueStoredInUnrelatedSmartPointer.qll
        placementnewinsufficientstorage
        PlacementNewInsufficientStorage.qll
        placementnewnotproperlyaligned
        PlacementNewNotProperlyAligned.qll
        returnreferenceorpointertoautomaticlocalvariable
        ReturnReferenceOrPointerToAutomaticLocalVariable.qll
        stringnumberconversionmissingerrorcheck
        StringNumberConversionMissingErrorCheck.qll
        throwingoperatornewreturnsnull
        ThrowingOperatorNewReturnsNull.qll
        useonlyarrayindexingforpointerarithmetic
        UseOnlyArrayIndexingForPointerArithmetic.qll
      - standardlibrary
        FileStreams.qll
      - trustboundary
        UninitializedField.qll
    - qlpack.yml
  - test
    - codeql-pack.lock.yml
    - deviations
      - deviation_permits_basic_test
        UnusedReturnValue.ql
      - deviations_basic_test
        UnusedReturnValue.ql
      - deviations_report_deviated
        UnusedReturnValue.ql
    - library/codingstandards/cpp
      - alertreporting
        DeduplicateMacroResults.expected
        DeduplicateMacroResults.ql
        deduplicatemacroresults.cpp
      - scope
        ParentScope.expected
        ParentScope.ql
        test.cpp
    - qlpack.yml
    - rules
      - castcharbeforeconvertingtolargersizes
        CastCharBeforeConvertingToLargerSizes.expected
        CastCharBeforeConvertingToLargerSizes.ql
        test.cpp
      - donotsubtractpointersaddressingdifferentarrays
        DoNotSubtractPointersAddressingDifferentArrays.expected
      - donotuserelationaloperatorswithdifferingarrays
        DoNotUseRelationalOperatorsWithDifferingArrays.expected
      - functionerroneousreturnvaluenottested
        FunctionErroneousReturnValueNotTested.expected
        FunctionErroneousReturnValueNotTested.ql
        test.cpp
      - ownedpointervaluestoredinunrelatedsmartpointer
        OwnedPointerValueStoredInUnrelatedSmartPointer.expected
      - returnreferenceorpointertoautomaticlocalvariable
        test.cpp
- misra
  - src
    - codeql-pack.lock.yml
    - qlpack.yml
  - test
    - codeql-pack.lock.yml
    - qlpack.yml
- report/src
  - codeql-pack.lock.yml
  - qlpack.yml
c
- cert
  - src
    - codeql-pack.lock.yml
    - qlpack.yml
    - rules
      - ARR37-C
        DoNotUsePointerArithmeticOnNonArrayObjectPointers.ql
      - ARR39-C
        DoNotAddOrSubtractAScaledIntegerToAPointer.ql
      - CON30-C
        CleanUpThreadSpecificStorage.ql
      - CON34-C
        AppropriateThreadObjectStorageDurations.ql
        ThreadObjectStorageDurationsNotInitialized.ql
      - CON39-C
        ThreadWasPreviouslyJoinedOrDetached.ql
      - DCL30-C
        AppropriateStorageDurationsFunctionReturn.ql
      - ERR30-C
        FunctionCallBeforeErrnoCheck.ql
      - EXP30-C
        DependenceOnOrderOfFunctionArgumentsForSideEffects.ql
      - EXP36-C
        DoNotCastPointerToMoreStrictlyAlignedPointerType.ql
      - EXP37-C
        DoNotCallFunctionPointerWithIncompatibleType.ql
      - EXP39-C
        DoNotAccessVariableViaPointerOfIncompatibleType.ql
      - EXP40-C
        DoNotModifyConstantObjects.ql
      - EXP43-C
        RestrictPointerReferencesOverlappingObject.ql
      - FIO37-C
        SuccessfulFgetsOrFgetwsMayReturnAnEmptyString.ql
      - FIO44-C
        OnlyUseValuesForFsetposThatAreReturnedFromFgetpos.ql
      - FIO45-C
        ToctouRaceConditionsWhileAccessingFiles.ql
      - FLP32-C
        UncheckedRangeDomainPoleErrors.md
      - MEM35-C
        InsufficientMemoryAllocatedForObject.ql
      - MEM36-C
        DoNotModifyAlignmentOfMemoryWithRealloc.ql
      - MSC33-C
        DoNotPassInvalidDataToTheAsctimeFunction.ql
      - MSC39-C
        DoNotCallVaArgOnAVaListThatHasAnIndeterminateValue.ql
      - MSC40-C
        DoNotViolateInLineLinkageConstraints.md
        DoNotViolateInLineLinkageConstraints.ql
      - SIG30-C
        CallOnlyAsyncSafeFunctionsWithinSignalHandlers.ql
      - SIG35-C
        DoNotReturnFromAComputationalExceptionHandler.ql
      - STR30-C
        DoNotAttemptToModifyStringLiterals.ql
      - STR31-C
        StringsHasSufficientSpaceForTheNullTerminator.ql
      - STR32-C
        NonNullTerminatedToFunctionThatExpectsAString.ql
      - STR34-C
        CastCharBeforeConvertingToLargerSizes.ql
  - test
- common
  - src
    - codeql-pack.lock.yml
    - codingstandards/c
    - qlpack.yml
  - test
    - codeql-pack.lock.yml
    - includes/standard-library
      - stdatomic.h
    - qlpack.yml
    - rules
      - castcharbeforeconvertingtolargersizes
        CastCharBeforeConvertingToLargerSizes.expected.clang
        CastCharBeforeConvertingToLargerSizes.expected.gcc
        CastCharBeforeConvertingToLargerSizes.expected.qcc
        CastCharBeforeConvertingToLargerSizes.expected
        CastCharBeforeConvertingToLargerSizes.ql
        test.c
      - donotsubtractpointersaddressingdifferentarrays
        DoNotSubtractPointersAddressingDifferentArrays.expected
      - donotuserelationaloperatorswithdifferingarrays
        DoNotUseRelationalOperatorsWithDifferingArrays.expected
      - functionerroneousreturnvaluenottested
        FunctionErroneousReturnValueNotTested.expected
        FunctionErroneousReturnValueNotTested.ql
        test.c
      - joinordetachthreadonlyonce
        JoinOrDetachThreadOnlyOnce.expected
        JoinOrDetachThreadOnlyOnce.ql
        test.c
- misra
  - src
    - codeql-pack.lock.yml
    - codeql-suites
    - codingstandards/c/misra
      - EssentialTypes.qll
    - qlpack.yml
    - rules
      - DIR-4-11
        CheckMathLibraryFunctionParameters.ql
      - DIR-4-7
        FunctionErrorInformationUntested.ql
      - DIR-5-2
        NotNoDeadlocksBetweenThreads.ql
      - DIR-5-3
        BannedDynamicThreadCreation.ql
        ThreadCreatedByThread.ql
      - RULE-12-6
        AtomicAggregateObjectDirectlyAccessed.ql
      - RULE-17-5
        ArrayFunctionArgumentNumberOfElements.ql
      - RULE-17-7
        ValueReturnedByAFunctionNotUsed.ql
      - RULE-19-1
        ObjectCopiedToAnOverlappingObject.ql
      - RULE-2-8
        UnusedObjectDefinition.ql
        UnusedObjectDefinitionStrict.ql
      - RULE-21-14
        MemcmpUsedToCompareNullTerminatedStrings.ql
      - RULE-21-25
        InvalidMemoryOrderArgument.ql
      - RULE-22-11
        ThreadPreviouslyJoinedOrDetached.ql
      - RULE-22-3
        FileOpenForReadAndWriteOnDifferentStreams.ql
      - RULE-22-4
        AttemptToWriteToAReadOnlyStream.ql
  - test
    - codeql-pack.lock.yml
    - c/misra
      - EssentialTypes.expected
      - test.c
    - qlpack.yml
    - rules
      - DIR-4-11
        CheckMathLibraryFunctionParameters.testref
      - DIR-4-7
        FunctionErrorInformationUntested.testref
      - DIR-5-2
        NotNoDeadlocksBetweenThreads.testref
      - DIR-5-3
        BannedDynamicThreadCreation.expected
        BannedDynamicThreadCreation.qlref
        ThreadCreatedByThread.expected
        ThreadCreatedByThread.qlref
        test.c
      - RULE-1-5
        UngetcCallOnStreamPositionZero.expected
      - RULE-10-3
        AssignmentOfIncompatibleEssentialType.expected
        test.c
      - RULE-12-6
        AtomicAggregateObjectDirectlyAccessed.expected
        AtomicAggregateObjectDirectlyAccessed.qlref
        test.c
      - RULE-17-5
        ArrayFunctionArgumentNumberOfElements.expected
      - RULE-2-8
        UnusedObjectDefinition.expected
        UnusedObjectDefinition.qlref
        UnusedObjectDefinitionStrict.expected
        UnusedObjectDefinitionStrict.qlref
        test.c
      - RULE-21-14
        MemcmpUsedToCompareNullTerminatedStrings.expected
      - RULE-21-25
        InvalidMemoryOrderArgument.expected
        InvalidMemoryOrderArgument.qlref
        test.c
      - RULE-22-11
        ThreadPreviouslyJoinedOrDetached.testref
        ThreadWasPreviouslyJoinedOrDetached.testref
      - RULE-22-3
        FileOpenForReadAndWriteOnDifferentStreams.expected
      - RULE-22-4
        AttemptToWriteToAReadOnlyStream.expected
      - RULE-22-7
        EofShallBeComparedWithUnmodifiedReturnValues.expected
docs
rule_packages
- cpp
- c
rules.csv
schemas
- rule-package.schema.json
scripts/generate_modules/queries
- codeql-pack.lock.yml
- qlpack.yml
supported_codeql_configs.json

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

369 files changed

+5057

-1331

lines changed

`‎.github/workflows/code-scanning-pack-gen.yml‎`

Lines changed: 3 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -80,6 +80,8 @@ jobs:`
`80`	`80`
`81`	`81`	`-name:Checkout external help files`
`82`	`82`	`id:checkout-external-help-files`
	`83`	`+# PRs from forks and dependabot do not have access to an appropriate token for cloning the help files repos`
	`84`	`+if:${{ !github.event.pull_request.head.repo.fork && github.actor != 'dependabot[bot]' }}`
`83`	`85`	`uses:actions/checkout@v4`
`84`	`86`	`with:`
`85`	`87`	`ssh-key:${{ secrets.CODEQL_CODING_STANDARDS_HELP_KEY }}`
`@@ -88,7 +90,7 @@ jobs:`
`88`	`90`	`path:external-help-files`
`89`	`91`
`90`	`92`	`-name:Include external help files`
`91`		`-if:steps.checkout-external-help-files.outcome == 'success'`
	`93`	`+if:${{ !github.event.pull_request.head.repo.fork && github.actor != 'dependabot[bot]'&&steps.checkout-external-help-files.outcome == 'success' }}`
`92`	`94`	`run:\|`
`93`	`95`	`pushd external-help-files`
`94`	`96`	`find . -name '*.md' -exec rsync -av --relative {} "$GITHUB_WORKSPACE" \;`

`‎.github/workflows/upgrade_codeql_dependencies.yml‎`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -53,7 +53,7 @@ jobs:`
`53`	`53`	`find c $ -name '.ql' -or -name '.qll' $ -print0 \| xargs -0 --max-procs "$XARGS_MAX_PROCS" codeql query format --in-place`
`54`	`54`
`55`	`55`	`-name:Create Pull Request`
`56`		`-uses:peter-evans/create-pull-request@5e914681df9dc83aa4e4905692ca88beb2f9e91f# v7.0.5`
	`56`	`+uses:peter-evans/create-pull-request@67ccf781d68cd99b580ae25a5c18a1cc84ffff1f# v7.0.6`
`57`	`57`	`with:`
`58`	`58`	title:"Upgrade `github/codeql` dependency to ${{ github.event.inputs.codeql_cli_version }}"
`59`	`59`	`body:\|`

`‎c/cert/src/codeql-pack.lock.yml‎`

Lines changed: 13 additions & 7 deletions

Original file line number	Diff line number	Diff line change
`@@ -2,17 +2,23 @@`
`2`	`2`	`lockVersion:1.0.0`
`3`	`3`	`dependencies:`
`4`	`4`	`codeql/cpp-all:`
`5`		`-version:0.12.9`
	`5`	`+version:1.4.2`
`6`	`6`	`codeql/dataflow:`
`7`		`-version:0.2.3`
	`7`	`+version:1.1.1`
	`8`	`+codeql/mad:`
	`9`	`+version:1.0.7`
`8`	`10`	`codeql/rangeanalysis:`
`9`		`-version:0.0.11`
	`11`	`+version:1.0.7`
`10`	`12`	`codeql/ssa:`
`11`		`-version:0.2.12`
	`13`	`+version:1.0.7`
`12`	`14`	`codeql/tutorial:`
`13`		`-version:0.2.12`
	`15`	`+version:1.0.7`
	`16`	`+codeql/typeflow:`
	`17`	`+version:1.0.7`
`14`	`18`	`codeql/typetracking:`
`15`		`-version:0.2.12`
	`19`	`+version:1.0.7`
`16`	`20`	`codeql/util:`
`17`		`-version:0.2.12`
	`21`	`+version:1.0.7`
	`22`	`+codeql/xml:`
	`23`	`+version:1.0.7`
`18`	`24`	`compiled:false`

`‎c/cert/src/qlpack.yml‎`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,8 +1,8 @@`
`1`	`1`	`name:codeql/cert-c-coding-standards`
`2`		`-version:2.39.0-dev`
	`2`	`+version:2.42.0-dev`
`3`	`3`	`description:CERT C 2016`
`4`	`4`	`suites:codeql-suites`
`5`	`5`	`license:MIT`
`6`	`6`	`dependencies:`
`7`	`7`	`codeql/common-c-coding-standards:'*'`
`8`		`-codeql/cpp-all:0.12.9`
	`8`	`+codeql/cpp-all:1.4.2`

`‎c/cert/src/rules/ARR37-C/DoNotUsePointerArithmeticOnNonArrayObjectPointers.ql‎`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -13,7 +13,7 @@`
`13`	`13`
`14`	`14`	`import cpp`
`15`	`15`	`import codingstandards.c.cert`
`16`		`-importcodingstandards.cpp.dataflow.DataFlow`
	`16`	`+importsemmle.code.cpp.dataflow.DataFlow`
`17`	`17`	`import NonArrayPointerToArrayIndexingExprFlow::PathGraph`
`18`	`18`
`19`	`19`	`/**`

`‎c/cert/src/rules/ARR39-C/DoNotAddOrSubtractAScaledIntegerToAPointer.ql‎`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -14,7 +14,7 @@`
`14`	`14`	`import cpp`
`15`	`15`	`import codingstandards.c.cert`
`16`	`16`	`import codingstandards.cpp.Pointers`
`17`		`-importcodingstandards.cpp.dataflow.TaintTracking`
	`17`	`+importsemmle.code.cpp.dataflow.TaintTracking`
`18`	`18`	`import ScaledIntegerPointerArithmeticFlow::PathGraph`
`19`	`19`
`20`	`20`	`/**`

`‎c/cert/src/rules/CON30-C/CleanUpThreadSpecificStorage.ql‎`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -15,8 +15,8 @@`
`15`	`15`	`import cpp`
`16`	`16`	`import codingstandards.c.cert`
`17`	`17`	`import codingstandards.cpp.Concurrency`
`18`		`-importcodingstandards.cpp.dataflow.TaintTracking`
`19`		`-importcodingstandards.cpp.dataflow.DataFlow`
	`18`	`+importsemmle.code.cpp.dataflow.TaintTracking`
	`19`	`+importsemmle.code.cpp.dataflow.DataFlow`
`20`	`20`
`21`	`21`	`module TssCreateToTssDeleteConfigimplements DataFlow::ConfigSig{`
`22`	`22`	`predicateisSource(DataFlow::Nodenode){`

`‎c/cert/src/rules/CON34-C/AppropriateThreadObjectStorageDurations.ql‎`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -16,8 +16,8 @@ import cpp`
`16`	`16`	`import codingstandards.c.cert`
`17`	`17`	`import codingstandards.c.Objects`
`18`	`18`	`import codingstandards.cpp.Concurrency`
`19`		`-importcodingstandards.cpp.dataflow.TaintTracking`
`20`		`-importcodingstandards.cpp.dataflow.DataFlow`
	`19`	`+importsemmle.code.cpp.dataflow.TaintTracking`
	`20`	`+importsemmle.code.cpp.dataflow.DataFlow`
`21`	`21`	`import semmle.code.cpp.commons.Alloc`
`22`	`22`
`23`	`23`	`fromC11ThreadCreateCalltcc,Exprarg`

`‎c/cert/src/rules/CON34-C/ThreadObjectStorageDurationsNotInitialized.ql‎`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -16,8 +16,8 @@`
`16`	`16`	`import cpp`
`17`	`17`	`import codingstandards.c.cert`
`18`	`18`	`import codingstandards.cpp.Concurrency`
`19`		`-importcodingstandards.cpp.dataflow.TaintTracking`
`20`		`-importcodingstandards.cpp.dataflow.DataFlow`
	`19`	`+importsemmle.code.cpp.dataflow.TaintTracking`
	`20`	`+importsemmle.code.cpp.dataflow.DataFlow`
`21`	`21`
`22`	`22`	`fromTSSGetFunctionCalltsg,ThreadedFunctiontf`
`23`	`23`	`where`

`‎c/cert/src/rules/CON39-C/ThreadWasPreviouslyJoinedOrDetached.ql‎`

Lines changed: 6 additions & 33 deletions

Original file line number	Diff line number	Diff line change
`@@ -14,37 +14,10 @@`
`14`	`14`
`15`	`15`	`import cpp`
`16`	`16`	`import codingstandards.c.cert`
`17`		`-import codingstandards.cpp.Concurrency`
	`17`	`+import codingstandards.cpp.rules.joinordetachthreadonlyonce.JoinOrDetachThreadOnlyOnce`
`18`	`18`
`19`		`-// OK`
`20`		`-// 1) Thread calls detach parent DOES NOT call join`
`21`		`-// 2) Parent calls join, thread does NOT call detach()`
`22`		`-// NOT OK`
`23`		`-// 1) Thread calls detach, parent calls join`
`24`		`-// 2) Thread calls detach twice, parent does not call join`
`25`		`-// 3) Parent calls join twice, thread does not call detach`
`26`		`-fromC11ThreadCreateCalltcc`
`27`		`-where`
`28`		`-notisExcluded(tcc, Concurrency5Package::threadWasPreviouslyJoinedOrDetachedQuery())and`
`29`		`-// Note: These cases can be simplified but they are presented like this for clarity`
`30`		-// case 1 - calls to `thrd_join` and `thrd_detach` within the parent or
`31`		`-// within the parent / child CFG.`
`32`		`-exists(C11ThreadWaittw,C11ThreadDetachdt\|`
`33`		`-tw=getAThreadContextAwareSuccessor(tcc)and`
`34`		`-dt=getAThreadContextAwareSuccessor(tcc)`
`35`		`-)`
`36`		`-or`
`37`		-// case 2 - multiple calls to `thrd_detach` within the threaded CFG.
`38`		`-exists(C11ThreadDetachdt1,C11ThreadDetachdt2\|`
`39`		`-dt1=getAThreadContextAwareSuccessor(tcc)and`
`40`		`-dt2=getAThreadContextAwareSuccessor(tcc)and`
`41`		`-notdt1=dt2`
`42`		`-)`
`43`		`-or`
`44`		-// case 3 - multiple calls to `thrd_join` within the threaded CFG.
`45`		`-exists(C11ThreadWaittw1,C11ThreadWaittw2\|`
`46`		`-tw1=getAThreadContextAwareSuccessor(tcc)and`
`47`		`-tw2=getAThreadContextAwareSuccessor(tcc)and`
`48`		`-nottw1=tw2`
`49`		`-)`
`50`		`-selecttcc,"Thread may call join or detach after the thread is joined or detached."`
	`19`	`+classThreadWasPreviouslyJoinedOrDetachedQueryextendsJoinOrDetachThreadOnlyOnceSharedQuery{`
	`20`	`+ThreadWasPreviouslyJoinedOrDetachedQuery(){`
	`21`	`+this= Concurrency5Package::threadWasPreviouslyJoinedOrDetachedQuery()`
	`22`	`+}`
	`23`	`+}`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit9c4db29

File tree

369 files changed

Some content is hidden

369 files changed

`‎.github/workflows/code-scanning-pack-gen.yml‎`

`‎.github/workflows/upgrade_codeql_dependencies.yml‎`

`‎c/cert/src/codeql-pack.lock.yml‎`

`‎c/cert/src/qlpack.yml‎`

`‎c/cert/src/rules/ARR37-C/DoNotUsePointerArithmeticOnNonArrayObjectPointers.ql‎`

`‎c/cert/src/rules/ARR39-C/DoNotAddOrSubtractAScaledIntegerToAPointer.ql‎`

`‎c/cert/src/rules/CON30-C/CleanUpThreadSpecificStorage.ql‎`

`‎c/cert/src/rules/CON34-C/AppropriateThreadObjectStorageDurations.ql‎`

`‎c/cert/src/rules/CON34-C/ThreadObjectStorageDurationsNotInitialized.ql‎`

`‎c/cert/src/rules/CON39-C/ThreadWasPreviouslyJoinedOrDetached.ql‎`

0 commit comments