Missing call to superclass__del__ during object destruction¶

ID: py/missing-call-to-deleteKind: problemSecurity severity: Severity: errorPrecision: highTags:   - quality   - reliability   - correctness   - performanceQuery suites:   - python-security-and-quality.qls

Click to see the query in the CodeQL repository

Python, unlike some other object-oriented languages such as Java, allows the developer complete freedom in when and how superclass finalizers are called during object finalization. However, the developer has responsibility for ensuring that objects are properly cleaned up, and that all superclass__del__ methods are called.

Classes with a__del__ method (a finalizer) typically hold some resource such as a file handle that needs to be cleaned up. If the__del__ method of a superclass is not called during object finalization, it is likely that resources may be leaked.

A call to the__del__ method of a superclass during object initialization may be unintentionally skipped:

• If a subclass calls the__del__ method of the wrong class.

• If a call to the__del__ method of one its base classes is omitted.

• If a call tosuper().__del__ is used, but not all__del__ methods in the Method Resolution Order (MRO) chain themselves callsuper(). This in particular arises more often in cases of multiple inheritance.

classVehicle(object):def__del__(self):recycle(self.base_parts)classCar(Vehicle):def__del__(self):recycle(self.car_parts)Vehicle.__del__(self)#BAD: Car.__del__ is not called.classSportsCar(Car,Vehicle):def__del__(self):recycle(self.sports_car_parts)Vehicle.__del__(self)#GOOD: Car.__del__ is called correctly.classFixedSportsCar(Car,Vehicle):def__del__(self):recycle(self.sports_car_parts)Car.__del__(self)