Merge pull request #210 from microsoft/development

NateD-MSFT · web-flow · commit 92eb683c55d1 · 2026-02-26T16:40:25.000-08:00
Update cpp-all and cpp-queries dependencies. (#209)
diff --git a/.github/workflows/build-codeql.yaml b/.github/workflows/build-codeql.yaml
@@ -14,7 +14,7 @@ on:
   workflow_dispatch:
 
 env:
-  CODEQL_VERSION: 2.23.3
+  CODEQL_VERSION: 2.24.2
 
 jobs:
   build:
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -2,6 +2,11 @@
 # Change Log
 All notable changes to this project will be documented in this file.
 
+## [1.8.3] - 2026-02-25
+
+### Changed
+ - Updated the C/C++ CodeQL libraries we depend on to version 7.0.0.
+ - Updated the cpp-queries pack we depend on to version 0.0.5.
 
 ## [1.8.2] - 2026-01-23
 
diff --git a/README.md b/README.md
@@ -4,7 +4,7 @@ This repository contains open-source components for supplemental use in developi
 ### For General Use
 |  CodeQL CLI Version      | microsoft/windows-drivers CodeQL Pack Version | microsoft/cpp-queries CodeQL Pack Version | Associated Repo Branch|
 |--------------------------|------------------------------------------|-------------------------------|-----------------------------|
-|  2.24.1 or greater* | [Latest Stable Version](https://github.com/microsoft/Windows-Driver-Developer-Supplemental-Tools/pkgs/container/windows-drivers) | 0.0.4 | Main |
+|  2.24.1 or greater* | [Latest Stable Version](https://github.com/microsoft/Windows-Driver-Developer-Supplemental-Tools/pkgs/container/windows-drivers) | 0.0.5 | Main |
 
 
 When using the precompiled pack, please use the most recent CodeQL CLI version listed above.
diff --git a/src/codeql-pack.lock.yml b/src/codeql-pack.lock.yml
@@ -1,28 +1,32 @@
 ---
 lockVersion: 1.0.0
 dependencies:
+  codeql/controlflow:
+    version: 2.0.24
   codeql/cpp-all:
-    version: 4.2.0
+    version: 7.0.0
   codeql/dataflow:
-    version: 2.0.5
+    version: 2.0.24
   codeql/mad:
-    version: 1.0.21
+    version: 1.0.40
+  codeql/quantum:
+    version: 0.0.18
   codeql/rangeanalysis:
-    version: 1.0.21
+    version: 1.0.40
   codeql/ssa:
-    version: 1.1.0
+    version: 2.0.16
   codeql/suite-helpers:
-    version: 1.0.21
+    version: 1.0.40
   codeql/tutorial:
-    version: 1.0.21
+    version: 1.0.40
   codeql/typeflow:
-    version: 1.0.21
+    version: 1.0.40
   codeql/typetracking:
-    version: 2.0.5
+    version: 2.0.24
   codeql/util:
-    version: 2.0.8
+    version: 2.0.27
   codeql/xml:
-    version: 1.0.21
+    version: 1.0.40
   microsoft/cpp-queries:
-    version: 0.0.4
+    version: 0.0.5
 compiled: false
diff --git a/src/microsoft/Likely Bugs/Memory Management/UseAfterFree/UseAfterFree.ql b/src/microsoft/Likely Bugs/Memory Management/UseAfterFree/UseAfterFree.ql
@@ -34,11 +34,11 @@ predicate areExpressionsGuardedBySimilarConditionsThatMayCallReturnStatement( Ex
 		gc1.controls(e1.getBasicBlock(), _) and
 		gc2.controls(exitExpr.getBasicBlock(), b) and
 		gc2.controls(e2.getBasicBlock(), b.booleanNot()) and
-		gc1.getEnclosingFunction() = gc2.getEnclosingFunction() and
-		gc1.getASuccessor*() = gc2 and
+		gc1.(Expr).getEnclosingFunction() = gc2.(Expr).getEnclosingFunction() and
+		gc1.(Expr).getASuccessor*() = gc2.(Expr) and
 		forall( Variable v | 
-		  	v.getAnAccess() = gc1.getAChild() |
-		  	v.getAnAccess() = gc2.getAChild() ) and
+		  	v.getAnAccess() = gc1.(Expr).getAChild() |
+		  	v.getAnAccess() = gc2.(Expr).getAChild() ) and
 		exitExpr.getEnclosingElement() instanceof ReturnStmt
 	)
 }
diff --git a/src/qlpack.yml b/src/qlpack.yml
@@ -1,13 +1,15 @@
 # Copyright (c) Microsoft Corporation.
 # Licensed under the MIT license.
 
+library: false
+warnOnImplicitThis: false
+compileForOverlayEval: false
 name: microsoft/windows-drivers
-version: 1.8.2
+version: 1.8.3
+description: CodeQL queries designed for Windows device driver development.
 dependencies:
-    codeql/cpp-all: ^4.2.0
-    microsoft/cpp-queries: ^0.0.4
+  codeql/cpp-all: ^7.0.0
+  microsoft/cpp-queries: ^0.0.5
 suites: windows-driver-suites
-defaultSuiteFile: windows-driver-suites/recommended.qls
 extractor: cpp
-licenses: MIT
-description: CodeQL queries designed for Windows device driver development.
+defaultSuiteFile: windows-driver-suites/recommended.qls
diff --git a/src/windows-driver-suites/mustfix.qls b/src/windows-driver-suites/mustfix.qls
@@ -11,7 +11,7 @@
       - microsoft/Security/CWE/CWE-704/WcharCharConversionLimited.ql
 - queries: . 
   from: microsoft/cpp-queries 
-  version: 0.0.4
+  version: 0.0.5
 - include:
     query path: 
       - Likely Bugs/Arithmetic/BadAdditionOverflowCheck.ql
diff --git a/src/windows-driver-suites/recommended.qls b/src/windows-driver-suites/recommended.qls
@@ -59,7 +59,7 @@
       - microsoft/Security/Crytpography/HardcodedIVCNG.ql
 - queries: . 
   from: microsoft/cpp-queries 
-  version: 0.0.4
+  version: 0.0.5
 - include:
     query path: 
      - Best Practices/Likely Errors/OffsetUseBeforeRangeCheck.ql
