github
diff --git a/‎change-notes/1.21/analysis-cpp.md‎
Lines changed: 2 additions & 0 deletions b/‎change-notes/1.21/analysis-cpp.md‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎change-notes/1.21/analysis-javascript.md‎
Lines changed: 2 additions & 0 deletions b/‎change-notes/1.21/analysis-javascript.md‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎cpp/ql/src/Architecture/General Class-Level Information/HubClasses.ql‎
Lines changed: 1 addition & 1 deletion b/‎cpp/ql/src/Architecture/General Class-Level Information/HubClasses.ql‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎cpp/ql/src/Critical/DeadCodeGoto.ql‎
Lines changed: 3 additions & 0 deletions b/‎cpp/ql/src/Critical/DeadCodeGoto.ql‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎cpp/ql/src/jsf/3.02 Code Size and Complexity/AV Rule 3.ql‎
Lines changed: 1 addition & 2 deletions b/‎cpp/ql/src/jsf/3.02 Code Size and Complexity/AV Rule 3.ql‎
Lines changed: 1 addition & 2 deletions
diff --git a/‎cpp/ql/src/jsf/4.10 Classes/AV Rule 81.ql‎
Lines changed: 2 additions & 1 deletion b/‎cpp/ql/src/jsf/4.10 Classes/AV Rule 81.ql‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎cpp/ql/src/semmle/code/cpp/ASTSanity.ql‎
Lines changed: 1 addition & 1 deletion b/‎cpp/ql/src/semmle/code/cpp/ASTSanity.ql‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎cpp/ql/src/semmle/code/cpp/AutogeneratedFile.qll‎
Lines changed: 8 additions & 4 deletions b/‎cpp/ql/src/semmle/code/cpp/AutogeneratedFile.qll‎
Lines changed: 8 additions & 4 deletions
diff --git a/‎cpp/ql/src/semmle/code/cpp/commons/Exclusions.qll‎
Lines changed: 13 additions & 0 deletions b/‎cpp/ql/src/semmle/code/cpp/commons/Exclusions.qll‎
Lines changed: 13 additions & 0 deletions
diff --git a/‎cpp/ql/src/semmle/code/cpp/commons/Printf.qll‎
Lines changed: 4 additions & 6 deletions b/‎cpp/ql/src/semmle/code/cpp/commons/Printf.qll‎
Lines changed: 4 additions & 6 deletions
@@ -13,6 +13,7 @@
 
 | **Query**                  | **Expected impact**    | **Change**                                                       |
 |----------------------------|------------------------|------------------------------------------------------------------|
+| Dead code due to goto or break statement (`cpp/dead-code-goto`) | Fewer false positive results | Functions containing preprocessor logic are now excluded from this analysis. |
 | Mismatching new/free or malloc/delete (`cpp/new-free-mismatch`) | Fewer false positive results | Fixed an issue where functions were being identified as allocation functions inappropriately.  Also affects `cpp/new-array-delete-mismatch` and `cpp/new-delete-array-mismatch`. |
 | Overflow in uncontrolled allocation size (`cpp/uncontrolled-allocation-size`) | More correct results | This query has been reworked so that it can find a wider variety of results. |
 | Memory may not be freed (`cpp/memory-may-not-be-freed`) | More correct results | Support added for more Microsoft-specific allocation functions, including `LocalAlloc`, `GlobalAlloc`, `HeapAlloc` and `CoTaskMemAlloc`. |
@@ -21,5 +22,6 @@
 | Comparison result is always the same | Fewer false positive results | The range analysis library is now more conservative about floating point values being possibly `NaN` |
 | Wrong type of arguments to formatting function (`cpp/wrong-type-format-argument`) | More correct results and fewer false positive results | This query now more accurately identifies wide and non-wide string/character format arguments on different platforms.  Platform detection has also been made more accurate for the purposes of this query. |
 | `()`-declared function called with too many arguments (`cpp/futile-params`) | Improved coverage | Query has been generalized to find all cases where the number of arguments exceedes the number of parameters of the function, provided the function is also properly declared/defined elsewhere. | 
+| Wrong type of arguments to formatting function (`cpp/wrong-type-format-argument`) | Fewer false positive results | Non-standard uses of %L are now understood. |
 
 ## Changes to QL libraries
@@ -3,7 +3,9 @@
 ## General improvements
 
 * Support for the following frameworks and libraries has been improved:
+  - [koa](https://github.com/koajs/koa)
   - [socket.io](http://socket.io)
+  - [Firebase](https://firebase.google.com/)
 
 * The security queries now track data flow through Base64 decoders such as the Node.js `Buffer` class, the DOM function `atob`, and a number of npm packages intcluding [`abab`](https://www.npmjs.com/package/abab), [`atob`](https://www.npmjs.com/package/atob), [`btoa`](https://www.npmjs.com/package/btoa), [`base-64`](https://www.npmjs.com/package/base-64), [`js-base64`](https://www.npmjs.com/package/js-base64), [`Base64.js`](https://www.npmjs.com/package/Base64) and [`base64-js`](https://www.npmjs.com/package/base64-js).
 
 
@@ -2,7 +2,7 @@
  * @name Hub classes
  * @description Shows coupling between classes. Large, red, boxes are hub types that depend on many other classes
  *              and are depended on by many other classes.
- * @kind treemap
+ * @kind table
  * @id cpp/architecture/hub-classes
  * @treemap.warnOn highValues
  * @tags maintainability
 
@@ -10,6 +10,7 @@
  */
 
 import cpp
+import semmle.code.cpp.commons.Exclusions
 
 Stmt getNextRealStmt(Block b, int i) {
   result = b.getStmt(i + 1) and
@@ -30,4 +31,6 @@ where b.getStmt(i) = js
   // the next statement isn't a loop that can be jumped into
   and not exists (LabelStmt ls | s.(Loop).getStmt().getAChild*() = ls)
   and not exists (SwitchCase sc | s.(Loop).getStmt().getAChild*() = sc)
+  // no preprocessor logic applies
+  and not functionContainsPreprocCode(js.getEnclosingFunction())
 select js, "This statement makes $@ unreachable.", s, s.toString()
@@ -12,5 +12,4 @@ import cpp
 from Function f, int c
 where c = f.getMetrics().getCyclomaticComplexity() and
       c > 20
-select f, c as CyclomaticComplexity,
-       "AV Rule 3: All functions shall have a cyclomatic complexity number of 20 or less."
+select f, "AV Rule 3: All functions shall have a cyclomatic complexity number of 20 or less."
@@ -3,6 +3,7 @@
  * @description The assignment operator shall handle self-assignment correctly.
  * @kind problem
  * @id cpp/jsf/av-rule-81
+ * @precision low
  * @problem.severity error
  * @tags correctness
  *       external/jsf
@@ -77,4 +78,4 @@ where hasResource(op.getDeclaringType())
       and not exists(op.getASelfEqualityTest())
       and not exists(op.getASwapCall())
       and exists(op.getADeleteExpr())
-select op
+select op, "AV Rule 81: The assignment operator shall handle self-assignment correctly."
@@ -1,7 +1,7 @@
 /**
  * @name AST Sanity Check
  * @description Performs sanity checks on the Abstract Syntax Tree. This query should have no results. 
- * @kind problem
+ * @kind table
  * @id cpp/ast-sanity-check
  */
 
 
@@ -23,11 +23,15 @@ private bindingset[comment] predicate autogeneratedComment(string comment) {
 
       // changes made in this file will be lost
       "(changes made in this file will be lost)|" +
-  
-      // do not edit/modify
+
+      // do not edit/modify (not mid-sentence)
       "(^ do(n't|nt| not) (hand-?)?(edit|modify))|" +
-      "(! do(n't|nt| not) (hand-?)?(edit|modify))" and
-  
+      "(! do(n't|nt| not) (hand-?)?(edit|modify))|" +
+
+      // do not edit/modify + generated
+      "(do(n't|nt| not) (hand-?)?(edit|modify).*generated)|" +
+      "(generated.*do(n't|nt| not) (hand-?)?(edit|modify))" and
+
     comment.regexpMatch("(?si).*(" +
       // replace `generated` with a regexp that also catches things like
       // `auto-generated`.
 
@@ -58,3 +58,16 @@ predicate functionContainsDisabledCode(Function f) {
     )
   )
 }
+
+/**
+ * Holds if the function `f` contains code that could be excluded by the preprocessor.
+ */
+predicate functionContainsPreprocCode(Function f) {
+  // `f` contains a preprocessor branch
+  exists(PreprocessorBranchDirective pbd, string file, int pbdStartLine, int fBlockStartLine, int fBlockEndLine |
+    functionLocation(f, file, fBlockStartLine, fBlockEndLine) and
+    pbdLocation(pbd, file, pbdStartLine) and
+    pbdStartLine <= fBlockEndLine and
+    pbdStartLine >= fBlockStartLine
+  )
+}
@@ -572,9 +572,8 @@ class FormatLiteral extends Literal {
         ((len="hh" and result instanceof IntType)
       or (len="h" and result instanceof IntType)
       or (len="l" and result = this.getLongType())
-      or ((len="ll" or len="q")
+      or ((len="ll" or len="L" or len="q")
                   and result instanceof LongLongType)
-      or (len="L" and result instanceof IntType)  // doesn't affect integral conversion
       or (len="j" and result = this.getIntmax_t())
       or ((len="z" or len="Z")
                   and (result = this.getSize_t() or result = this.getSsize_t()))
@@ -599,9 +598,8 @@ class FormatLiteral extends Literal {
         ((len="hh" and result instanceof CharType)
       or (len="h" and result instanceof ShortType)
       or (len="l" and result = this.getLongType())
-      or ((len="ll" or len="q")
+      or ((len="ll" or len="L" or len="q")
                   and result instanceof LongLongType)
-      or (len="L" and result instanceof IntType)  // doesn't affect integral conversion
       or (len="j" and result = this.getIntmax_t())
       or ((len="z" or len="Z")
                   and (result = this.getSize_t() or result = this.getSsize_t()))
@@ -622,7 +620,7 @@ class FormatLiteral extends Literal {
    */
   FloatingPointType getFloatingPointConversion(int n) {
     exists(string len | len = this.getLength(n) and
-      if len="L" then
+      if (len="L" or len="ll")  then
         result instanceof LongDoubleType
       else
         result instanceof DoubleType)
@@ -638,7 +636,7 @@ class FormatLiteral extends Literal {
            (len="hh" and base instanceof CharType)
         or (len="h"  and base instanceof ShortType)
         or (len="l"  and base = this.getLongType())
-        or (len="ll" and base instanceof LongLongType)
+        or ((len="ll" or len="L") and base instanceof LongLongType)
         or (len="q" and base instanceof LongLongType)
       )
       and base.isSigned() and base = result.getBaseType()
Original file line number	Diff line number	Diff line change
`@@ -58,3 +58,16 @@ predicate functionContainsDisabledCode(Function f) {`
`58`	`58`	`)`
`59`	`59`	`)`
`60`	`60`	`}`
	`61`	`+`
	`62`	`+/**`
	`63`	+ * Holds if the function `f` contains code that could be excluded by the preprocessor.
	`64`	`+ */`
	`65`	`+predicate functionContainsPreprocCode(Function f) {`
	`66`	+ // `f` contains a preprocessor branch
	`67`	`+ exists(PreprocessorBranchDirective pbd, string file, int pbdStartLine, int fBlockStartLine, int fBlockEndLine \|`
	`68`	`+ functionLocation(f, file, fBlockStartLine, fBlockEndLine) and`
	`69`	`+ pbdLocation(pbd, file, pbdStartLine) and`
	`70`	`+ pbdStartLine <= fBlockEndLine and`
	`71`	`+ pbdStartLine >= fBlockStartLine`
	`72`	`+ )`
	`73`	`+}`