github
diff --git a/‎java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt‎
Lines changed: 8 additions & 12 deletions b/‎java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt‎
Lines changed: 8 additions & 12 deletions
diff --git a/‎java/ql/lib/config/semmlecode.dbscheme‎
Lines changed: 8 additions & 5 deletions b/‎java/ql/lib/config/semmlecode.dbscheme‎
Lines changed: 8 additions & 5 deletions
diff --git a/‎java/ql/lib/semmle/code/java/ControlFlowGraph.qll‎
Lines changed: 2 additions & 6 deletions b/‎java/ql/lib/semmle/code/java/ControlFlowGraph.qll‎
Lines changed: 2 additions & 6 deletions
diff --git a/‎java/ql/lib/semmle/code/java/Conversions.qll‎
Lines changed: 4 additions & 16 deletions b/‎java/ql/lib/semmle/code/java/Conversions.qll‎
Lines changed: 4 additions & 16 deletions
diff --git a/‎java/ql/lib/semmle/code/java/Expr.qll‎
Lines changed: 41 additions & 14 deletions b/‎java/ql/lib/semmle/code/java/Expr.qll‎
Lines changed: 41 additions & 14 deletions
diff --git a/‎java/ql/lib/semmle/code/java/PrettyPrintAst.qll‎
Lines changed: 30 additions & 0 deletions b/‎java/ql/lib/semmle/code/java/PrettyPrintAst.qll‎
Lines changed: 30 additions & 0 deletions
diff --git a/‎java/ql/lib/semmle/code/java/dataflow/NullGuards.qll‎
Lines changed: 7 additions & 1 deletion b/‎java/ql/lib/semmle/code/java/dataflow/NullGuards.qll‎
Lines changed: 7 additions & 1 deletion
diff --git a/‎java/ql/lib/semmle/code/java/dataflow/Nullness.qll‎
Lines changed: 5 additions & 2 deletions b/‎java/ql/lib/semmle/code/java/dataflow/Nullness.qll‎
Lines changed: 5 additions & 2 deletions
diff --git a/‎java/ql/lib/semmle/code/java/dataflow/RangeAnalysis.qll‎
Lines changed: 14 additions & 9 deletions b/‎java/ql/lib/semmle/code/java/dataflow/RangeAnalysis.qll‎
Lines changed: 14 additions & 9 deletions
diff --git a/‎java/ql/lib/semmle/code/java/dataflow/SSA.qll‎
Lines changed: 6 additions & 3 deletions b/‎java/ql/lib/semmle/code/java/dataflow/SSA.qll‎
Lines changed: 6 additions & 3 deletions
@@ -2394,47 +2394,43 @@ open class KotlinFileExtractor(
                 extractExpressionExpr(e.argument, callable, id, 1, enclosingStmt)
             }
             IrTypeOperator.IMPLICIT_CAST -> {
-                // TODO: Make this distinguishable from an explicit cast?
-                val id = tw.getFreshIdLabel<DbCastexpr>()
+                val id = tw.getFreshIdLabel<DbImplicitcastexpr>()
                 val locId = tw.getLocation(e)
                 val type = useType(e.type)
-                tw.writeExprs_castexpr(id, type.javaResult.id, type.kotlinResult.id, parent, idx)
+                tw.writeExprs_implicitcastexpr(id, type.javaResult.id, type.kotlinResult.id, parent, idx)
                 tw.writeHasLocation(id, locId)
                 tw.writeCallableEnclosingExpr(id, callable)
                 tw.writeStatementEnclosingExpr(id, enclosingStmt)
                 extractTypeAccess(e.typeOperand, callable, id, 0, e, enclosingStmt)
                 extractExpressionExpr(e.argument, callable, id, 1, enclosingStmt)
             }
             IrTypeOperator.IMPLICIT_NOTNULL -> {
-                // TODO: Make this distinguishable from an explicit cast?
-                val id = tw.getFreshIdLabel<DbCastexpr>()
+                val id = tw.getFreshIdLabel<DbImplicitnotnullexpr>()
                 val locId = tw.getLocation(e)
                 val type = useType(e.type)
-                tw.writeExprs_castexpr(id, type.javaResult.id, type.kotlinResult.id, parent, idx)
+                tw.writeExprs_implicitnotnullexpr(id, type.javaResult.id, type.kotlinResult.id, parent, idx)
                 tw.writeHasLocation(id, locId)
                 tw.writeCallableEnclosingExpr(id, callable)
                 tw.writeStatementEnclosingExpr(id, enclosingStmt)
                 extractTypeAccess(e.typeOperand, callable, id, 0, e, enclosingStmt)
                 extractExpressionExpr(e.argument, callable, id, 1, enclosingStmt)
             }
             IrTypeOperator.IMPLICIT_COERCION_TO_UNIT -> {
-                // TODO: Make this distinguishable from an explicit cast?
-                val id = tw.getFreshIdLabel<DbCastexpr>()
+                val id = tw.getFreshIdLabel<DbImplicitcoerciontounitexpr>()
                 val locId = tw.getLocation(e)
                 val type = useType(e.type)
-                tw.writeExprs_castexpr(id, type.javaResult.id, type.kotlinResult.id, parent, idx)
+                tw.writeExprs_implicitcoerciontounitexpr(id, type.javaResult.id, type.kotlinResult.id, parent, idx)
                 tw.writeHasLocation(id, locId)
                 tw.writeCallableEnclosingExpr(id, callable)
                 tw.writeStatementEnclosingExpr(id, enclosingStmt)
                 extractTypeAccess(e.typeOperand, callable, id, 0, e, enclosingStmt)
                 extractExpressionExpr(e.argument, callable, id, 1, enclosingStmt)
             }
             IrTypeOperator.SAFE_CAST -> {
-                // TODO: Distinguish this (e as? T) from CAST
-                val id = tw.getFreshIdLabel<DbCastexpr>()
+                val id = tw.getFreshIdLabel<DbSafecastexpr>()
                 val locId = tw.getLocation(e)
                 val type = useType(e.type)
-                tw.writeExprs_castexpr(id, type.javaResult.id, type.kotlinResult.id, parent, idx)
+                tw.writeExprs_safecastexpr(id, type.javaResult.id, type.kotlinResult.id, parent, idx)
                 tw.writeHasLocation(id, locId)
                 tw.writeCallableEnclosingExpr(id, callable)
                 tw.writeStatementEnclosingExpr(id, enclosingStmt)
 
@@ -695,11 +695,14 @@ case @expr.kind of
 | 75  = @whenexpr
 | 76  = @getclassexpr
 | 77  = @safecastexpr
-| 78  = @notinstanceofexpr
-| 79  = @stmtexpr
-| 80  = @stringtemplateexpr
-| 81  = @varargexpr
-| 82  = @notnullexpr
+| 78  = @implicitcastexpr
+| 79  = @implicitnotnullexpr
+| 80  = @implicitcoerciontounitexpr
+| 81  = @notinstanceofexpr
+| 82  = @stmtexpr
+| 83  = @stringtemplateexpr
+| 84  = @varargexpr
+| 85  = @notnullexpr
 ;
 
 /** Holds if this `when` expression was written as an `if` expression. */
 
@@ -456,9 +456,7 @@ private module ControlFlowGraphImpl {
       or
       this instanceof UnaryExpr and not this instanceof LogNotExpr
       or
-      this instanceof CastExpr
-      or
-      this instanceof SafeCastExpr
+      this instanceof CastingExpr
       or
       this instanceof InstanceOfExpr and not this.(InstanceOfExpr).isPattern()
       or
@@ -544,9 +542,7 @@ private module ControlFlowGraphImpl {
       or
       index = 0 and result = this.(UnaryExpr).getExpr()
       or
-      index = 0 and result = this.(CastExpr).getExpr()
-      or
-      index = 0 and result = this.(SafeCastExpr).getExpr()
+      index = 0 and result = this.(CastingExpr).getExpr()
       or
       index = 0 and result = this.(InstanceOfExpr).getExpr()
       or
 
@@ -111,28 +111,16 @@ class StringConversionContext extends ConversionSite {
   override string kind() { result = "string context" }
 }
 
-class CastConversionContext extends ConversionSite {
-  CastExpr c;
+class CastingConversionContext extends ConversionSite {
+  CastingExpr c;
 
-  CastConversionContext() { this = c.getExpr() }
+  CastingConversionContext() { this = c.getExpr() }
 
   override Type getConversionTarget() { result = c.getType() }
 
   override predicate isImplicit() { none() }
 
-  override string kind() { result = "cast context" }
-}
-
-class SafeCastConversionContext extends ConversionSite {
-  SafeCastExpr c;
-
-  SafeCastConversionContext() { this = c.getExpr() }
-
-  override Type getConversionTarget() { result = c.getType() }
-
-  override predicate isImplicit() { none() }
-
-  override string kind() { result = "safe cast context" }
+  override string kind() { result = "casting context" }
 }
 
 /**
 
@@ -127,7 +127,7 @@ class CompileTimeConstantExpr extends Expr {
       this instanceof Literal
       or
       // Casts to primitive types and casts to type `String`.
-      this.(CastExpr).getExpr().isCompileTimeConstant()
+      this.(CastingExpr).getExpr().isCompileTimeConstant()
       or
       // The unary operators `+`, `-`, `~`, and `!` (but not `++` or `--`).
       this.(PlusExpr).getExpr().isCompileTimeConstant()
@@ -311,7 +311,7 @@ class CompileTimeConstantExpr extends Expr {
       or
       result = this.(CharacterLiteral).getCodePointValue()
       or
-      exists(CastExpr cast, int val |
+      exists(CastingExpr cast, int val |
         cast = this and val = cast.getExpr().(CompileTimeConstantExpr).getIntValue()
       |
         if cast.getType().hasName("byte")
@@ -1138,35 +1138,62 @@ class LogNotExpr extends UnaryExpr, @lognotexpr {
   override string getAPrimaryQlClass() { result = "LogNotExpr" }
 }
 
-/** A cast expression. */
-class CastExpr extends Expr, @castexpr {
-  /** Gets the target type of this cast expression. */
+class CastingExpr extends Expr {
+  CastingExpr() {
+    this instanceof @castexpr or
+    this instanceof @safecastexpr or
+    this instanceof @implicitcastexpr or
+    this instanceof @implicitnotnullexpr or
+    this instanceof @implicitcoerciontounitexpr
+  }
+
+  /** Gets the target type of this casting expression. */
   Expr getTypeExpr() { result.isNthChildOf(this, 0) }
 
-  /** Gets the expression to which the cast operator is applied. */
+  /** Gets the expression to which the casting operator is applied. */
   Expr getExpr() { result.isNthChildOf(this, 1) }
+}
 
+/** A cast expression. */
+class CastExpr extends CastingExpr, @castexpr {
   /** Gets a printable representation of this expression. */
   override string toString() { result = "(...)..." }
 
   override string getAPrimaryQlClass() { result = "CastExpr" }
 }
 
-// TODO: Would this be better as a predicate on CastExpr?
 /** A safe cast expression. */
-class SafeCastExpr extends Expr, @safecastexpr {
-  /** Gets the target type of this cast expression. */
-  Expr getTypeExpr() { result.isNthChildOf(this, 0) }
-
-  /** Gets the expression to which the cast operator is applied. */
-  Expr getExpr() { result.isNthChildOf(this, 1) }
-
+class SafeCastExpr extends CastingExpr, @safecastexpr {
   /** Gets a printable representation of this expression. */
   override string toString() { result = "... as? ..." }
 
   override string getAPrimaryQlClass() { result = "SafeCastExpr" }
 }
 
+/** An implicit cast expression. */
+class ImplicitCastExpr extends CastingExpr, @implicitcastexpr {
+  /** Gets a printable representation of this expression. */
+  override string toString() { result = "<implicit cast>" }
+
+  override string getAPrimaryQlClass() { result = "ImplicitCastExpr" }
+}
+
+/** An implicit cast-to-non-null expression. */
+class ImplicitNotNullExpr extends CastingExpr, @implicitnotnullexpr {
+  /** Gets a printable representation of this expression. */
+  override string toString() { result = "<implicit not null>" }
+
+  override string getAPrimaryQlClass() { result = "ImplicitNotNullExpr" }
+}
+
+/** An implicit coercion-to-unit expression. */
+class ImplicitCoercionToUnitExpr extends CastingExpr, @implicitcoerciontounitexpr {
+  /** Gets a printable representation of this expression. */
+  override string toString() { result = "<implicit coercion to unit>" }
+
+  override string getAPrimaryQlClass() { result = "ImplicitCoercionToUnitExpr" }
+}
+
 /** A class instance creation expression. */
 class ClassInstanceExpr extends Expr, ConstructorCall, @classinstancexpr {
   /** Gets the number of arguments provided to the constructor of the class instance creation expression. */
 
@@ -272,6 +272,36 @@ private class PpCastExpr extends PpAst, CastExpr {
   }
 }
 
+private class PpSafeCastExpr extends PpAst, SafeCastExpr {
+  override string getPart(int i) {
+    i = 1 and result = "as?"
+  }
+
+  override PpAst getChild(int i) {
+    i = 0 and result = this.getExpr()
+    or
+    i = 2 and result = this.getTypeExpr()
+  }
+}
+
+private class PpImplicitCastExpr extends PpAst, ImplicitCastExpr {
+  override PpAst getChild(int i) {
+    i = 0 and result = this.getExpr()
+  }
+}
+
+private class PpImplicitNotNullExpr extends PpAst, ImplicitNotNullExpr {
+  override PpAst getChild(int i) {
+    i = 0 and result = this.getExpr()
+  }
+}
+
+private class PpImplicitCoercionToUnitExpr extends PpAst, ImplicitCoercionToUnitExpr {
+  override PpAst getChild(int i) {
+    i = 0 and result = this.getExpr()
+  }
+}
+
 private class PpCall extends PpAst, Call {
   override string getPart(int i) {
     i = 1 and exists(this.getQualifier()) and result = "."
 
@@ -12,7 +12,7 @@ private import IntegerGuards
 /** Gets an expression that is always `null`. */
 Expr alwaysNullExpr() {
   result instanceof NullLiteral or
-  result.(CastExpr).getExpr() = alwaysNullExpr()
+  result.(CastingExpr).getExpr() = alwaysNullExpr()
 }
 
 /** Gets an equality test between an expression `e` and an enum constant `c`. */
@@ -62,6 +62,12 @@ Expr clearlyNotNullExpr(Expr reason) {
   or
   result.(CastExpr).getExpr() = clearlyNotNullExpr(reason)
   or
+  result.(ImplicitCastExpr).getExpr() = clearlyNotNullExpr(reason)
+  or
+  result instanceof ImplicitNotNullExpr
+  or
+  result instanceof ImplicitCoercionToUnitExpr
+  or
   result.(AssignExpr).getSource() = clearlyNotNullExpr(reason)
   or
   exists(ConditionalExpr c, Expr r1, Expr r2 |
 
@@ -47,7 +47,9 @@ Expr nullExpr() {
   result instanceof NullLiteral or
   result.(ChooseExpr).getAResultExpr() = nullExpr() or
   result.(AssignExpr).getSource() = nullExpr() or
-  result.(CastExpr).getExpr() = nullExpr()
+  result.(CastExpr).getExpr() = nullExpr() or
+  result.(ImplicitCastExpr).getExpr() = nullExpr() or
+  result instanceof SafeCastExpr
 }
 
 /** An expression of a boxed type that is implicitly unboxed. */
@@ -112,7 +114,8 @@ predicate dereference(Expr e) {
   or
   exists(ArrayAccess aa | aa.getArray() = e)
   or
-  exists(CastExpr cast |
+  exists(CastingExpr cast |
+    (cast instanceof CastExpr or cast instanceof ImplicitCastExpr) and
     cast.getExpr() = e and
     e.getType() instanceof BoxedType and
     cast.getType() instanceof PrimitiveType
 
@@ -360,8 +360,13 @@ private predicate safeCast(Type fromtyp, Type totyp) {
 /**
  * A cast that can be ignored for the purpose of range analysis.
  */
-private class RangeAnalysisSafeCastExpr extends CastExpr {
-  RangeAnalysisSafeCastExpr() { safeCast(getExpr().getType(), getType()) }
+private class RangeAnalysisSafeCastingExpr extends CastingExpr {
+  RangeAnalysisSafeCastingExpr() {
+    safeCast(getExpr().getType(), getType()) or
+    this instanceof ImplicitCastExpr or
+    this instanceof ImplicitNotNullExpr or
+    this instanceof ImplicitCoercionToUnitExpr
+  }
 }
 
 /**
@@ -380,9 +385,9 @@ private predicate typeBound(Type typ, int lowerbound, int upperbound) {
 /**
  * A cast to a small integral type that may overflow or underflow.
  */
-private class NarrowingCastExpr extends CastExpr {
-  NarrowingCastExpr() {
-    not this instanceof RangeAnalysisSafeCastExpr and
+private class NarrowingCastingExpr extends CastingExpr {
+  NarrowingCastingExpr() {
+    not this instanceof RangeAnalysisSafeCastingExpr and
     typeBound(getType(), _, _)
   }
 
@@ -412,7 +417,7 @@ private predicate boundFlowStep(Expr e2, Expr e1, int delta, boolean upper) {
   valueFlowStep(e2, e1, delta) and
   (upper = true or upper = false)
   or
-  e2.(RangeAnalysisSafeCastExpr).getExpr() = e1 and
+  e2.(RangeAnalysisSafeCastingExpr).getExpr() = e1 and
   delta = 0 and
   (upper = true or upper = false)
   or
@@ -796,7 +801,7 @@ private predicate baseBound(Expr e, int b, boolean upper) {
  * For `upper = true` this means that the cast will not overflow and for
  * `upper = false` this means that the cast will not underflow.
  */
-private predicate safeNarrowingCast(NarrowingCastExpr cast, boolean upper) {
+private predicate safeNarrowingCast(NarrowingCastingExpr cast, boolean upper) {
   exists(int bound | bounded(cast.getExpr(), any(ZeroBound zb), bound, upper, _, _, _) |
     upper = true and bound <= cast.getUpperBound()
     or
@@ -806,7 +811,7 @@ private predicate safeNarrowingCast(NarrowingCastExpr cast, boolean upper) {
 
 pragma[noinline]
 private predicate boundedCastExpr(
-  NarrowingCastExpr cast, Bound b, int delta, boolean upper, boolean fromBackEdge, int origdelta,
+  NarrowingCastingExpr cast, Bound b, int delta, boolean upper, boolean fromBackEdge, int origdelta,
   Reason reason
 ) {
   bounded(cast.getExpr(), b, delta, upper, fromBackEdge, origdelta, reason)
@@ -870,7 +875,7 @@ private predicate bounded(
     delta = d / factor
   )
   or
-  exists(NarrowingCastExpr cast |
+  exists(NarrowingCastingExpr cast |
     cast = e and
     safeNarrowingCast(cast, upper.booleanNot()) and
     boundedCastExpr(cast, b, delta, upper, fromBackEdge, origdelta, reason)
 
@@ -1114,8 +1114,11 @@ class SsaPhiNode extends SsaVariable, TSsaPhiNode {
   }
 }
 
-private class RefTypeCastExpr extends CastExpr {
-  RefTypeCastExpr() { this.getType() instanceof RefType }
+private class RefTypeCastingExpr extends CastingExpr {
+  RefTypeCastingExpr() {
+    this.getType() instanceof RefType and
+    not this instanceof SafeCastExpr
+  }
 }
 
 /**
@@ -1130,5 +1133,5 @@ Expr sameValue(SsaVariable v, VarAccess va) {
   or
   result.(AssignExpr).getSource() = sameValue(v, va)
   or
-  result.(RefTypeCastExpr).getExpr() = sameValue(v, va)
+  result.(RefTypeCastingExpr).getExpr() = sameValue(v, va)
 }
Original file line number	Diff line number	Diff line change
`@@ -1114,8 +1114,11 @@ class SsaPhiNode extends SsaVariable, TSsaPhiNode {`
`1114`	`1114`	`}`
`1115`	`1115`	`}`
`1116`	`1116`
`1117`		`-private class RefTypeCastExpr extends CastExpr {`
`1118`		`- RefTypeCastExpr() { this.getType() instanceof RefType }`
	`1117`	`+private class RefTypeCastingExpr extends CastingExpr {`
	`1118`	`+ RefTypeCastingExpr() {`
	`1119`	`+ this.getType() instanceof RefType and`
	`1120`	`+ not this instanceof SafeCastExpr`
	`1121`	`+ }`
`1119`	`1122`	`}`
`1120`	`1123`
`1121`	`1124`	`/**`
`@@ -1130,5 +1133,5 @@ Expr sameValue(SsaVariable v, VarAccess va) {`
`1130`	`1133`	`or`
`1131`	`1134`	`result.(AssignExpr).getSource() = sameValue(v, va)`
`1132`	`1135`	`or`
`1133`		`- result.(RefTypeCastExpr).getExpr() = sameValue(v, va)`
	`1136`	`+ result.(RefTypeCastingExpr).getExpr() = sameValue(v, va)`
`1134`	`1137`	`}`