Merge branch 'main' into jeongsoolee09/MISRA-C++-2023-Banned856

Author: mbaluda

.github/copilot-instructions.md

@@ -58,3 +58,204 @@ When reviewing tests, it is critical to:
 - Check that the locations do not refer to files in the standard library, as these have issues in GitHub's Code Scanning UI and complicate our compiler compatibility tests.
 - Consider the "test coverage" of the query, are each of its logical statements effectively exercised  individually, collectively? The test should neither be overly bloated nor under specified.
 - Consider the edge cases of the language itself, will the analysis work in non-trivial cases, are all relevant language concepts tested here? This doesn't need to be exhaustive, but it should be thoughfully thorough.
+
+## Validating Query Style
+
+The following list describes the required style guides for a query that **must** be validated during the code-review process.
+
+A query **must** include:
+
+- A use of the `isExcluded` predicate on the element reported as the primary location. This predicate ensures that we have a central mechanism for excluding results. This predicate may also be used on other elements relevant to the alert, but only if a suppression on that element should also cause alerts on the current element to be suppressed.
+- A well formatted alert message:
+  - The message should be a complete standalone sentence, with punctuation and a period.
+  - The message should refer to this particular instance of the problem, rather than repeating the generic rule. e.g. "Call to banned function x." instead of "Do not use function x."
+  - Code elements should be placed in 'single quotes', unless they are formatted as links.
+  - Avoid value judgments such as "dubious" and "suspicious", and focus on factual statements about the problem.
+  - If possible, avoid constant alert messages. Either add placeholders and links (using $@), or concatenate element names to the alert message. Non-constant messages make it easier to find particular results, and links to other program elements can help provide additional context to help a developer understand the results. Examples:
+    - Instead of `Call to banned function.` prefer `Call to banned function foobar.`.
+    - Instead of `Return value from call is unused.` prefer `Return value from call to function [x] is unused.`, where `[x]` is a link to the function itself.
+  - Do not try to explain the solution in the message; instead that should be provided in the help for the query.
+ 
+All lines in CodeQL source files and test files should be kept to a maximum of 100 characters.
+
+All public predicates, classes, modules and files should be documented with QLDoc. All QLDoc should follow the following QLDoc style guide:
+
+### General QLDoc requirements
+
+1. Documentation must adhere to the [QLDoc specification](https://codeql.github.com/docs/ql-language-reference/ql-language-specification/#qldoc).
+1. Documentation comments should be appropriate for users of the code.
+1. Documentation for maintainers of the code must use normal comments.
+1. Use `/** ... */` for documentation, even for single line comments.
+   - For single-line documentation, the `/**` and `*/` are written on the same line as the comment.
+   - For multi-line documentation, the `/**` and `*/` are written on separate lines. There is a `*` preceding each comment line, aligned on the first `*`.
+1. Use code formatting (backticks) within comments for code from the source language, and also for QL code (for example, names of classes, predicates, and variables).
+1. Give explanatory examples of code in the target language, enclosed in ```` ```<target language> ````  or `` ` ``.
+
+
+### Language requirements
+
+1. Use American English.
+1. Use full sentences, with capital letters and periods, except for the initial sentence of the comment, which may be fragmentary as described below.
+1. Use simple sentence structures and avoid complex or academic language.
+1. Avoid colloquialisms and contractions.
+1. Use words that are in common usage.
+
+
+### Requirements for specific items
+
+1. Public declarations must be documented.
+1. Non-public declarations should be documented.
+1. Declarations in query files should be documented.
+1. Library files (`.qll` files) should have a documentation comment at the top of the file.
+1. Query files, except for tests, must have a QLDoc query documentation comment at the top of the file.
+
+### QLDoc for predicates
+
+1. Refer to all predicate parameters in the predicate documentation.
+1. Reference names, such as types and parameters, using backticks `` ` ``.
+1. Give examples of code in the target language, enclosed in ```` ```<target language> ````  or `` ` ``.
+1. Predicates that override a single predicate don't need QLDoc, as they will inherit it.
+
+#### Predicates without result
+
+1. Use a third-person verb phrase of the form ``Holds if `arg` has <property>.``
+1. Avoid:
+   - `/** Whether ... */`
+   - `/** Relates ... */`
+   - Question forms:
+     - ``/** Is `x` a foo? */``
+     - ``/** Does `x` have a bar? */``
+
+##### Example
+
+```ql
+/**
+ * Holds if the qualifier of this call has type `qualifierType`.
+ * `isExactType` indicates whether the type is exact, that is, whether
+ * the qualifier is guaranteed not to be a subtype of `qualifierType`.
+ */
+```
+
+#### Predicates with result
+
+1. Use a third-person verb phrase of the form `Gets (a|the) <thing>.`
+1. Use "if any" if the item is usually unique but might be missing. For example
+   `Gets the body of this method, if any.`
+1. If the predicate has more complex behaviour, for example multiple arguments are conceptually "outputs", it can be described like a predicate without a result. For example
+   ``Holds if `result` is a child of this expression.``
+1. Avoid:
+   - `Get a ...`
+   - `The ...`
+   - `Results in ...`
+   - Any use of `return`
+
+##### Example
+```ql
+/**
+ * Gets the expression denoting the super class of this class,
+ * or nothing if this is an interface or a class without an `extends` clause.
+ */
+```
+
+#### Deprecated predicates
+
+The documentation for deprecated predicates should be updated to emphasize the deprecation and specify what predicate to use as an alternative.
+Insert a sentence of the form `DEPRECATED: Use <other predicate> instead.` at the start of the QLDoc comment. 
+
+##### Example
+
+```ql
+/** DEPRECATED: Use `getAnExpr()` instead. */
+deprecated Expr getInitializer()
+```
+
+#### Internal predicates
+
+Some predicates are internal-only declarations that cannot be made private. The documentation for internal predicates should begin with `INTERNAL: Do not use.`
+
+##### Example
+
+```ql
+/**
+ * INTERNAL: Do not use.
+ */
+```
+
+#### Special predicates
+
+Certain special predicates should be documented consistently.
+
+- Always document `toString` as 
+  
+  ```ql
+  /** Gets a textual representation of this element. */
+  string toString() { ... } 
+  ```
+
+- Always document `hasLocationInfo` as
+
+  ```ql
+  /**
+   * Holds if this element is at the specified location.
+   * The location spans column `startcolumn` of line `startline` to
+   * column `endcolumn` of line `endline` in file `filepath`.
+   * For more information, see
+   * [Locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
+   */
+
+  predicate hasLocationInfo(string filepath, int startline, int startcolumn, int endline, int endcolumn) { ... }
+  ```
+
+### QLDoc for classes
+
+1. Document classes using a noun phrase of the form `A <domain element> that <has property>.`
+1. Use "that", not "which".
+1. Refer to member elements in the singular.
+1. Where a class denotes a generic concept with subclasses, list those subclasses.
+
+##### Example
+
+```ql
+/**
+ * A delegate declaration, for example
+ * ```
+ * delegate void Logger(string text);
+ * ```
+ */
+class Delegate extends ...
+```
+
+```ql
+/**
+ * An element that can be called.
+ *
+ * Either a method (`Method`), a constructor (`Constructor`), a destructor
+ * (`Destructor`), an operator (`Operator`), an accessor (`Accessor`),
+ * an anonymous function (`AnonymousFunctionExpr`), or a local function
+ * (`LocalFunction`).
+ */
+class Callable extends ...
+```
+
+### QLDoc for modules
+
+Modules should be documented using a third-person verb phrase of the form `Provides <classes and predicates to do something>.` 
+
+##### Example
+
+```ql
+/** Provides logic for determining constant expressions. */
+```
+```ql
+/** Provides classes representing the control flow graph within functions. */
+```
+
+### Special variables
+
+When referring to `this`, you may either refer to it as `` `this` `` or `this <type>`. For example:
+- ``Holds if `this` is static.``
+- `Holds if this method is static.`
+
+When referring to `result`, you may either refer to it as `` `result` `` or as `the result`. For example:
+- ``Holds if `result` is a child of this expression.``
+- `Holds if the result is a child of this expression.`

c/cert/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/cert-c-coding-standards
-version: 2.56.0-dev
+version: 2.57.0-dev
 description: CERT C 2016
 suites: codeql-suites
 license: MIT

c/cert/test/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/cert-c-coding-standards-tests
-version: 2.56.0-dev
+version: 2.57.0-dev
 extractor: cpp
 license: MIT
 dependencies:

c/common/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/common-c-coding-standards
-version: 2.56.0-dev
+version: 2.57.0-dev
 license: MIT
 dependencies:
   codeql/common-cpp-coding-standards: '*'

c/common/test/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/common-c-coding-standards-tests
-version: 2.56.0-dev
+version: 2.57.0-dev
 extractor: cpp
 license: MIT
 dependencies:

c/misra/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/misra-c-coding-standards
-version: 2.56.0-dev
+version: 2.57.0-dev
 description: MISRA C 2012
 suites: codeql-suites
 license: MIT

c/misra/test/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/misra-c-coding-standards-tests
-version: 2.56.0-dev
+version: 2.57.0-dev
 extractor: cpp
 license: MIT
 dependencies:

change_notes/2026-02-18-unused-member-functions-with-internal-linkage.md

@@ -0,0 +1,3 @@
+ - `A0-1-3` - `UnusedLocalFunction.ql`:
+   - Query now reports unused public members of classes in anonymous namespaces, which have internal linkage.
+   - Alert message no longer contains the fully qualified name of the function, since the given function is already linked.

cpp/autosar/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/autosar-cpp-coding-standards
-version: 2.56.0-dev
+version: 2.57.0-dev
 description: AUTOSAR C++14 Guidelines R22-11, R21-11, R20-11, R19-11 and R19-03
 suites: codeql-suites
 license: MIT

cpp/autosar/src/rules/A0-1-3/UnusedLocalFunction.ql

@@ -16,95 +16,10 @@
 
 import cpp
 import codingstandards.cpp.autosar
-import codingstandards.cpp.DynamicCallGraph
-import codingstandards.cpp.deadcode.UnusedFunctions
+import codingstandards.cpp.rules.unusedlocalfunction.UnusedLocalFunction
 
-/**
- * Checks if an overloaded function of
- * the function passed in the arguments, is called.
- */
-predicate overloadedFunctionIsCalled(Function unusedFunction) {
-  exists(Function f | f = unusedFunction.getAnOverload() and f = getTarget(_))
-}
-
-/** Checks if a Function's address was taken. */
-predicate addressBeenTaken(Function unusedFunction) {
-  exists(FunctionAccess fa | fa.getTarget() = unusedFunction)
-}
-
-/** A `Function` nested in an anonymous namespace. */
-class AnonymousNamespaceFunction extends Function {
-  AnonymousNamespaceFunction() { getNamespace().getParentNamespace*().isAnonymous() }
-}
-
-/**
- * A function which is "local" to a particular scope or translation unit.
- */
-class LocalFunction extends UnusedFunctions::UsableFunction {
-  string localFunctionType;
-
-  LocalFunction() {
-    this.(MemberFunction).isPrivate() and
-    localFunctionType = "Private member"
-    or
-    // A function in an anonymous namespace (which is deduced to have internal linkage)
-    this instanceof AnonymousNamespaceFunction and
-    // Not member functions, which don't have internal linkage
-    not this instanceof MemberFunction and
-    localFunctionType = "Anonymous namespace"
-    or
-    // Static functions with internal linkage
-    this.isStatic() and
-    // Member functions never have internal linkage
-    not this instanceof MemberFunction and
-    // Functions in anonymous namespaces automatically have the "static" specifier added by the
-    // extractor. We therefore excluded them from this case, and instead report them in the
-    // anonymous namespace, as we don't know whether the "static" specifier was explicitly
-    // provided by the user.
-    not this instanceof AnonymousNamespaceFunction and
-    localFunctionType = "Static"
-  }
-
-  /** Gets the type of local function. */
-  string getLocalFunctionType() { result = localFunctionType }
+module UnusedLocalFunctionConfig implements UnusedLocalFunctionConfigSig {
+  Query getQuery() { result = DeadCodePackage::unusedLocalFunctionQuery() }
 }
 
-from LocalFunction unusedLocalFunction, string name
-where
-  not isExcluded(unusedLocalFunction, DeadCodePackage::unusedLocalFunctionQuery()) and
-  // No static or dynamic call target for this function
-  not unusedLocalFunction = getTarget(_) and
-  // If this is a TemplateFunction or an instantiation of a template, then only report it as unused
-  // if all other instantiations of the template are unused
-  not exists(
-    Function functionFromUninstantiatedTemplate, Function functionFromInstantiatedTemplate
-  |
-    // `unusedLocalFunction` is a template instantiation from `functionFromUninstantiatedTemplate`
-    unusedLocalFunction.isConstructedFrom(functionFromUninstantiatedTemplate)
-    or
-    // `unusedLocalFunction` is from an uninstantiated template
-    unusedLocalFunction = functionFromUninstantiatedTemplate
-  |
-    // There exists an instantiation which is called
-    functionFromInstantiatedTemplate.isConstructedFrom(functionFromUninstantiatedTemplate) and
-    functionFromInstantiatedTemplate = getTarget(_)
-  ) and
-  // A function is defined as "used" if any one of the following holds true:
-  // - It's an explicitly deleted functions e.g. =delete
-  // - It's annotated as "[[maybe_unused]]"
-  // - It's part of an overloaded set and any one of the overloaded instance
-  //   is called.
-  // - It's an operand of an expression in an unevaluated context.
-  not unusedLocalFunction.isDeleted() and
-  not unusedLocalFunction.getAnAttribute().getName() = "maybe_unused" and
-  not overloadedFunctionIsCalled(unusedLocalFunction) and
-  not addressBeenTaken(unusedLocalFunction) and
-  // Get a printable name
-  (
-    if exists(unusedLocalFunction.getQualifiedName())
-    then name = unusedLocalFunction.getQualifiedName()
-    else name = unusedLocalFunction.getName()
-  )
-select unusedLocalFunction,
-  unusedLocalFunction.getLocalFunctionType() + " function " + name +
-    " is not statically called, or is in an unused template."
+import UnusedLocalFunction<UnusedLocalFunctionConfig>