Commit33bc0b1

authored

Merge pull request#973 from github/michaelrfairhurst/fix-972-lock-guard-doesnt-require-catch-in-CON51-cpp

Fix#972, CON51-CPP falsely reporting that std::lock_guard requires catch

2 parentsa612c2c +59785c5 commit33bc0b1Copy full SHA for 33bc0b1

File tree

5 files changed

+36

-4

lines changed

change_notes
- 2025-11-19-exclude-raii-style-locks-from-con51-cpp.md
cpp
- cert
  - src/rules/CON51-CPP
    - EnsureActivelyHeldLocksAreReleasedOnExceptionalConditions.ql
  - test/rules/CON51-CPP
    - test.cpp
- common/src/codingstandards/cpp/concurrency
  - LockProtectedControlFlow.qll
  - LockingOperation.qll

5 files changed

+36

-4

lines changed

`‎change_notes/2025-11-19-exclude-raii-style-locks-from-con51-cpp.md‎`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	+-`CON51-CPP` -`EnsureActivelyHeldLocksAreReleasedOnExceptionalConditions.ql`:
	`2`	`+- Exclude RAII-style locks from query results, as they cannot be leaked, and are recommended to avoid alerts in this rule.`

`‎cpp/cert/src/rules/CON51-CPP/EnsureActivelyHeldLocksAreReleasedOnExceptionalConditions.ql‎`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -36,6 +36,8 @@ where`
`36`	`36`	`// To reduce the number of results we require that this is a direct child`
`37`	`37`	`// of the lock within the same function`
`38`	`38`	`lpn.coveredByLock().getASuccessor*()=lpnand`
	`39`	`+// Exclude RAII-style locks which cannot leak`
	`40`	`+lpn.coveredByLock().canLeak()and`
`39`	`41`	`// report those expressions for which there doesn't exist a catch block`
`40`	`42`	`notexists(CatchBlockcb\|`
`41`	`43`	`catches(cb,lpn, _)and`

`‎cpp/cert/test/rules/CON51-CPP/test.cpp‎`

Lines changed: 6 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -83,6 +83,11 @@ void f8(std::mutex *pm) {`
`83`	`83`	`}`
`84`	`84`	`}`
`85`	`85`
	`86`	`+voidf9(std::mutex *pm) {`
	`87`	`+ std::lock_guard<std::mutex>lg(*pm);`
	`88`	`+mightThrow();// COMPLIANT`
	`89`	`+}`
	`90`	`+`
`86`	`91`	`voidm() {`
`87`	`92`	`std::mutex pm;`
`88`	`93`	`std::thread t1 =std::thread(f1, &pm);`
`@@ -93,4 +98,5 @@ void m() {`
`93`	`98`	`std::thread t6 =std::thread(f6, &pm);`
`94`	`99`	`std::thread t7 =std::thread(f7, &pm);`
`95`	`100`	`std::thread t8 =std::thread(f8, &pm);`
	`101`	`+ std::thread t9 =std::thread(f9, &pm);`
`96`	`102`	`}`

`‎cpp/common/src/codingstandards/cpp/concurrency/LockProtectedControlFlow.qll‎`

Lines changed: 3 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -38,9 +38,10 @@ class LockProtectedControlFlowNode extends ThreadedCFN {`
`38`	`38`	`}`
`39`	`39`
`40`	`40`	`/**`
`41`		- * The `MutexFunctionCall` holding the lock that locks this node.
	`41`	+ * The LockingOperation (for instance, a `MutexFunctionCall`, or RAII-style lock constructor)
	`42`	`+ * holding the lock that locks this node.`
`42`	`43`	`*/`
`43`		`-FunctionCallcoveredByLock(){result=lockingFunction}`
	`44`	`+LockingOperationcoveredByLock(){result=lockingFunction}`
`44`	`45`
`45`	`46`	`/**`
`46`	`47`	* The lock underlying this `LockProtectedControlFlowNode`.

`‎cpp/common/src/codingstandards/cpp/concurrency/LockingOperation.qll‎`

Lines changed: 23 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -22,6 +22,11 @@ abstract class LockingOperation extends FunctionCall {`
`22`	`22`	`*/`
`23`	`23`	`abstractpredicateisUnlock();`
`24`	`24`
	`25`	`+/**`
	`26`	`+ * Holds if this locking operation can leak the lock. For example, RAII-style locks cannot leak.`
	`27`	`+ */`
	`28`	`+abstractpredicatecanLeak();`
	`29`	`+`
`25`	`30`	`/**`
`26`	`31`	`* Holds if this locking operation is really a locking operation within a`
`27`	`32`	`* designated locking operation. This library assumes the underlying locking`
`@@ -33,11 +38,27 @@ abstract class LockingOperation extends FunctionCall {`
`33`	`38`	`}`
`34`	`39`	`}`
`35`	`40`
	`41`	`+/**`
	`42`	`+ * A locking operation that can leak the lock.`
	`43`	`+ *`
	`44`	`+ * RAII style locks cannot leak, but other kinds of locks can.`
	`45`	`+ */`
	`46`	`+abstractclassLeakableLockingOperationextendsLockingOperation{`
	`47`	`+overridepredicatecanLeak(){any()}`
	`48`	`+}`
	`49`	`+`
	`50`	`+/**`
	`51`	`+ * A locking operation that cannot leak the lock, such as RAII-style locks.`
	`52`	`+ */`
	`53`	`+abstractclassNonLeakableLockingOperationextendsLockingOperation{`
	`54`	`+overridepredicatecanLeak(){none()}`
	`55`	`+}`
	`56`	`+`
`36`	`57`	`/**`
`37`	`58`	`* Common base class providing an interface into function call`
`38`	`59`	`* based mutex locks.`
`39`	`60`	`*/`
`40`		`-abstractclassMutexFunctionCallextendsLockingOperation{`
	`61`	`+abstractclassMutexFunctionCallextendsLeakableLockingOperation{`
`41`	`62`	`abstractpredicateisRecursive();`
`42`	`63`
`43`	`64`	`abstractpredicateisSpeculativeLock();`
`@@ -180,7 +201,7 @@ class CMutexFunctionCall extends MutexFunctionCall {`
`180`	`201`	`/**`
`181`	`202`	`* Models a RAII-Style lock.`
`182`	`203`	`*/`
`183`		`-classRAIIStyleLockextendsLockingOperation{`
	`204`	`+classRAIIStyleLockextendsNonLeakableLockingOperation{`
`184`	`205`	`VariableAccesslock;`
`185`	`206`
`186`	`207`	`RAIIStyleLock(){`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit33bc0b1

File tree

5 files changed

5 files changed

`‎change_notes/2025-11-19-exclude-raii-style-locks-from-con51-cpp.md‎`

`‎cpp/cert/src/rules/CON51-CPP/EnsureActivelyHeldLocksAreReleasedOnExceptionalConditions.ql‎`

`‎cpp/cert/test/rules/CON51-CPP/test.cpp‎`

`‎cpp/common/src/codingstandards/cpp/concurrency/LockProtectedControlFlow.qll‎`

`‎cpp/common/src/codingstandards/cpp/concurrency/LockingOperation.qll‎`

0 commit comments