Adopt StandardLibraryNames in the C DeclaredAReservedIdentifier query

lcartey · lcartey · commit fcbe4e70bb90 · 2025-08-27T10:44:28.000+01:00
diff --git a/c/common/test/rules/declaredareservedidentifier/DeclaredAReservedIdentifier.expected b/c/common/test/rules/declaredareservedidentifier/DeclaredAReservedIdentifier.expected
@@ -1,5 +1,30 @@
-| test.c:2:1:2:23 | #define _RESERVED_MACRO | Reserved identifier '_RESERVED_MACRO' is declared. |
-| test.c:11:8:11:9 | _s | Reserved identifier '_s' is declared. |
-| test.c:15:6:15:7 | _f | Reserved identifier '_f' is declared. |
-| test.c:19:7:19:12 | malloc | Reserved identifier 'malloc' is declared. |
-| test.c:24:12:24:16 | errno | Reserved identifier 'errno' is declared. |
+| test.c:2:1:2:23 | #define _RESERVED_MACRO | Macro '_RESERVED_MACRO' uses a reserved name beginning _ followed by an uppercase letter. |
+| test.c:6:1:6:27 | #define _not_reserved_MACRO | Macro '_not_reserved_MACRO' uses a name beginning with _ which is reserved in the ordinary and tag namespaces. |
+| test.c:11:8:11:9 | _s | Type '_s' uses a name beginning with _ which is reserved in the tag name space. |
+| test.c:15:6:15:7 | _f | Function '_f' uses a name beginning with _ which is reserved in the ordinary name space. |
+| test.c:19:7:19:12 | malloc | Function 'malloc' uses a reserved name from the C11 standard library header 'stdlib.h'. |
+| test.c:25:5:25:9 | errno | Global variable 'errno' uses a name reserved for a macro from the C11 standard library header 'errno.h'. |
+| test.c:25:5:25:9 | errno | Global variable 'errno' uses a reserved name from the C11 standard library header 'errno.h'. |
+| test.c:39:16:39:18 | log | Parameter 'log' uses a name reserved for a macro from the C11 standard library header 'tgmath.h'. |
+| test.c:43:5:43:16 | _Test_global | Global variable '_Test_global' uses a reserved name beginning _ followed by an uppercase letter. |
+| test.c:44:6:44:15 | _Test_func | Function '_Test_func' uses a reserved name beginning _ followed by an uppercase letter. |
+| test.c:45:9:45:19 | _Test_param | Parameter '_Test_param' uses a reserved name beginning _ followed by an uppercase letter. |
+| test.c:46:7:46:17 | _Test_local | Local variable '_Test_local' uses a reserved name beginning _ followed by an uppercase letter. |
+| test.c:47:10:47:27 | _Test_struct_local | Type '_Test_struct_local' uses a reserved name beginning _ followed by an uppercase letter. |
+| test.c:49:9:49:20 | _Test_member | Member variable '_Test_member' uses a reserved name beginning _ followed by an uppercase letter. |
+| test.c:52:8:52:19 | _Test_struct | Type '_Test_struct' uses a reserved name beginning _ followed by an uppercase letter. |
+| test.c:53:7:53:18 | _Test_member | Member variable '_Test_member' uses a reserved name beginning _ followed by an uppercase letter. |
+| test.c:55:1:56:3 | #define _TEST_MACRO x | Macro '_TEST_MACRO' uses a reserved name beginning _ followed by an uppercase letter. |
+| test.c:60:5:60:24 | __test_double_global | Global variable '__test_double_global' uses a reserved name beginning with __. |
+| test.c:61:6:61:23 | __test_double_func | Function '__test_double_func' uses a reserved name beginning with __. |
+| test.c:62:9:62:27 | __test_double_param | Parameter '__test_double_param' uses a reserved name beginning with __. |
+| test.c:63:7:63:25 | __test_double_local | Local variable '__test_double_local' uses a reserved name beginning with __. |
+| test.c:64:10:64:35 | __test_double_struct_local | Type '__test_double_struct_local' uses a reserved name beginning with __. |
+| test.c:65:9:65:28 | __test_double_member | Member variable '__test_double_member' uses a reserved name beginning with __. |
+| test.c:68:8:68:27 | __test_double_struct | Type '__test_double_struct' uses a reserved name beginning with __. |
+| test.c:69:7:69:26 | __test_double_member | Member variable '__test_double_member' uses a reserved name beginning with __. |
+| test.c:71:1:71:22 | #define __TEST_MACRO x | Macro '__TEST_MACRO' uses a reserved name beginning with __. |
+| test.c:78:5:78:22 | _test_lower_global | Global variable '_test_lower_global' uses a name beginning with _ which is reserved in the ordinary name space. |
+| test.c:79:6:79:21 | _test_lower_func | Function '_test_lower_func' uses a name beginning with _ which is reserved in the ordinary name space. |
+| test.c:88:8:88:19 | _test_struct | Type '_test_struct' uses a name beginning with _ which is reserved in the tag name space. |
+| test.c:91:1:92:3 | #define _test_macro x | Macro '_test_macro' uses a name beginning with _ which is reserved in the ordinary and tag namespaces. |
diff --git a/c/common/test/rules/declaredareservedidentifier/test.c b/c/common/test/rules/declaredareservedidentifier/test.c
@@ -21,4 +21,72 @@ void *malloc(int bytes) { // NON_COMPLIANT
   return ptr;
 }
 
-extern int errno; // NON_COMPLIANT
+extern int
+    errno; // NON_COMPLIANT - eerno is reserved as both a macro and identifier
+
+void output(int a, int b, int c);
+
+#define DEBUG(...)                                                             \
+  output(__VA_ARGS__) // COMPLIANT - using not declaring `__VA_ARGS__`
+
+void test() {
+  DEBUG(1, 2, 3);
+  __FUNCTION__;        // COMPLIANT - use, not declaration of `__FUNCTION__`
+  __PRETTY_FUNCTION__; // COMPLIANT - use, not declaration of
+                       // `__PRETTY_FUNCTION__`
+}
+
+void test2(int log); // NON_COMPLIANT - tgmath.h defines log as a reserved macro
+
+/* Test _[A-Z] */
+
+int _Test_global;      // NON_COMPLIANT - _ followed by capital is reserved
+void _Test_func(       // NON_COMPLIANT - _ followed by capital is reserved
+    int _Test_param) { // NON_COMPLIANT - _ followed by capital is reserved
+  int _Test_local;     // NON_COMPLIANT - _ followed by capital is reserved
+  struct _Test_struct_local { // NON_COMPLIANT - _ followed by capital is
+                              // reserved
+    int _Test_member; // NON_COMPLIANT - _ followed by capital is reserved
+  };
+}
+struct _Test_struct { // NON_COMPLIANT - _ followed by capital is reserved
+  int _Test_member;   // NON_COMPLIANT - _ followed by capital is reserved
+};
+#define _TEST_MACRO                                                            \
+  x // NON_COMPLIANT - single _ followed by capital is reserved
+
+/* Test __ */
+
+int __test_double_global;             // NON_COMPLIANT - double _ is reserved
+void __test_double_func(              // NON_COMPLIANT - double _ is reserved
+    int __test_double_param) {        // NON_COMPLIANT - double _ is reserved
+  int __test_double_local;            // NON_COMPLIANT - double _ is reserved
+  struct __test_double_struct_local { // NON_COMPLIANT - double _ is reserved
+    int __test_double_member;         // NON_COMPLIANT - double _ is reserved
+  };
+}
+struct __test_double_struct { // NON_COMPLIANT - double _ is reserved
+  int __test_double_member;   // NON_COMPLIANT - double _ is reserved
+};
+#define __TEST_MACRO x // NON_COMPLIANT - double _ is reserved
+
+/*
+ * Test _, but not followed by underscore or upper case, which is reserved in
+ * file scope and ordinary/tag name spaces
+ */
+
+int _test_lower_global; // NON_COMPLIANT - _ is reserved in ordinary name space
+void _test_lower_func(  // NON_COMPLIANT - _ is reserved as a function name in
+                        // ordinary name space
+    int _test_lower_param) { // COMPLIANT - _ is not reserved in the block name
+                             // space
+  int _test;            // COMPLIANT - _ is not reserved in the block name space
+  struct _test_struct { // COMPLIANT - _ is not reserved in the block name space
+    int _test; // COMPLIANT -  _ is not reserved in the block name space
+  };
+}
+struct _test_struct { // NON_COMPLIANT - _ is reserved in the tag name space
+  int _test;          // COMPLIANT - _ is not reserved in the member name space
+};
+#define _test_macro                                                            \
+  x // NON_COMPLIANT - _ is reserved for macro names (otherwise you couldn't )
diff --git a/cpp/common/src/codingstandards/cpp/rules/declaredareservedidentifier/DeclaredAReservedIdentifier.qll b/cpp/common/src/codingstandards/cpp/rules/declaredareservedidentifier/DeclaredAReservedIdentifier.qll
@@ -3,35 +3,237 @@
  */
 
 import cpp
+import codingstandards.cpp.CKeywords
 import codingstandards.cpp.Customizations
 import codingstandards.cpp.Exclusions
-import codingstandards.cpp.Naming
-import codingstandards.cpp.CKeywords
+import codingstandards.cpp.Linkage
+import codingstandards.cpp.Macro
+import codingstandards.cpp.StandardLibraryNames
 
 abstract class DeclaredAReservedIdentifierSharedQuery extends Query { }
 
 Query getQuery() { result instanceof DeclaredAReservedIdentifierSharedQuery }
 
-query predicate problems(Element m, string message) {
-  not isExcluded(m, getQuery()) and
-  exists(string name |
+newtype Scope =
+  FileScope() or
+  BlockScope() or
+  FunctionScope() or
+  MacroScope()
+
+/**
+ * A C name space according to C11 6.2.3, not to be confused with a C++ namespace.
+ */
+newtype TCNameSpace =
+  LabelNameSpace() or
+  TagNameSpace() or
+  MemberNameSpace() or
+  OrdinaryNameSpace() or
+  // Create a "fake" name space for macro names
+  MacroNameSpace()
+
+class CNameSpace extends TCNameSpace {
+  string toString() {
+    this = LabelNameSpace() and result = "label"
+    or
+    this = TagNameSpace() and result = "tag"
+    or
+    this = MemberNameSpace() and result = "member"
+    or
+    this = OrdinaryNameSpace() and result = "ordinary"
+    or
+    this = MacroNameSpace() and result = "macro"
+  }
+}
+
+string getDeclDescription(Declaration d) {
+  d instanceof Function and result = "Function"
+  or
+  d instanceof Parameter and result = "Parameter"
+  or
+  d instanceof LocalVariable and result = "Local variable"
+  or
+  d instanceof MemberVariable and result = "Member variable"
+  or
+  d instanceof GlobalVariable and result = "Global variable"
+  or
+  d instanceof UserType and result = "Type"
+  or
+  d instanceof EnumConstant and result = "Enum constant"
+}
+
+/**
+ * Whether a C declaration is considered to be at file scope.
+ */
+predicate isFileScope(Declaration d) {
+  d.getFile().compiledAsC() and
+  // Not inside a block - if the declaration is part of a DeclStmt, it is also part of a function
+  // and therefore enclosed in at least one block
+  not exists(DeclStmt ds | ds.getADeclaration() = d) and
+  // Not inside a parameter list
+  not d instanceof Parameter
+}
+
+/**
+ * The given C program element defines the `identifierName` in the given `Scope` and `CNameSpace`.
+ */
+predicate isCIdentifier(
+  Element e, string identifierName, Scope scope, CNameSpace cNameSpace, string identifierDescription
+) {
+  // This only makes sense on C compiled files
+  e.getFile().compiledAsC() and
+  (
+    // An identifier can denote an object; a function; a tag or a member of a structure, union, or
+    // enumeration; a typedef name; a label name; a macro name; or a macro parameter
+    e.(Declaration).hasName(identifierName) and
+    // Exclude any compiler generated identifiers
+    not e.(Variable).isCompilerGenerated() and
+    not e.(Function).isCompilerGenerated() and
+    // Exclude local variables generated by the compiler (but not marked as such by our extractor)
+    not e.(LocalScopeVariable).hasName(["__func__", "__PRETTY_FUNCTION__", "__FUNCTION__"]) and
+    // Exclude special "macro"
+    (
+      if isFileScope(e)
+      then
+        // technically ignoring the function prototype scope, but we don't care for this use case
+        scope = FileScope()
+      else scope = BlockScope()
+    ) and
     (
-      m.(Macro).hasName(name) or
-      m.(Declaration).hasGlobalName(name)
+      if e instanceof UserType
+      then cNameSpace = TagNameSpace()
+      else
+        if (e instanceof MemberVariable or e instanceof MemberFunction)
+        then cNameSpace = MemberNameSpace()
+        else cNameSpace = OrdinaryNameSpace()
     ) and
     (
-      Naming::Cpp14::hasStandardLibraryMacroName(name)
+      if exists(getDeclDescription(e))
+      then identifierDescription = getDeclDescription(e)
+      else identifierDescription = "Identifier"
+    )
+    or
+    e.(LabelStmt).getName() = identifierName and
+    scope = FunctionScope() and
+    cNameSpace = LabelNameSpace() and
+    identifierDescription = "Label"
+    or
+    e.(Macro).hasName(identifierName) and
+    scope = MacroScope() and
+    cNameSpace = MacroNameSpace() and
+    identifierDescription = "Macro"
+    or
+    e.(FunctionLikeMacro).getAParameter() = identifierName and
+    // Exclude __VA_ARGS__ as it is a special macro parameter
+    not identifierName = "__VA_ARGS__..." and
+    scope = MacroScope() and
+    cNameSpace = MacroNameSpace() and
+    identifierDescription = "Macro parameter"
+  )
+}
+
+module TargetedCLibrary = CStandardLibrary::C11;
+
+query predicate problems(Element m, string message) {
+  not isExcluded(m, getQuery()) and
+  exists(
+    string name, Scope scope, CNameSpace cNameSpace, string reason, string identifierDescription
+  |
+    isCIdentifier(m, name, scope, cNameSpace, identifierDescription) and
+    message = identifierDescription + " '" + name + "' " + reason + "."
+  |
+    // C11 7.1.3/1
+    //  > All identifiers that begin with an underscore and either an uppercase letter or another
+    //  > underscore are always reserved for any use.
+    name.regexpMatch("__.*") and
+    // Exclude this macro which is intended to be implemented by the user
+    not name = "__STDC_WANT_LIB_EXT1__" and
+    reason = "uses a reserved name beginning with __"
+    or
+    name.regexpMatch("_[A-Z].*") and
+    reason = "uses a reserved name beginning _ followed by an uppercase letter"
+    or
+    //  > All identifiers that begin with an underscore are always reserved for use as identifiers
+    //  > with file scope in both the ordinary and tag name spaces.
+    name.regexpMatch("_([^A-Z_].*)?") and
+    scope = FileScope() and
+    cNameSpace = [OrdinaryNameSpace().(TCNameSpace), TagNameSpace()] and
+    reason = "uses a name beginning with _ which is reserved in the " + cNameSpace + " name space"
+    or
+    name.regexpMatch("_([^A-Z_].*)?") and
+    scope = MacroScope() and
+    cNameSpace = MacroNameSpace() and
+    reason = "uses a name beginning with _ which is reserved in the ordinary and tag namespaces"
+    or
+    // > Each macro name in any of the following subclauses (including the future library
+    // > directions) is reserved for use as specified if any of its associated headers is included;
+    // > unless explicitly stated otherwise (see 7.1.4).
+    exists(string header |
+      TargetedCLibrary::hasMacroName(header, name, _) and
+      reason =
+        "uses a name reserved for a macro from the " + TargetedCLibrary::getName() +
+          " standard library header '" + header + "'"
+    )
+    or
+    // > All identifiers with external linkage in any of the following subclauses (including the
+    // > future library directions) and errno are always reserved for use as identifiers with
+    // > external linkage.184
+    exists(string header |
+      TargetedCLibrary::hasObjectName(header, _, name, _, "external")
       or
-      Naming::Cpp14::hasStandardLibraryObjectName(name)
+      TargetedCLibrary::hasFunctionName(header, _, "", name, _, _, "external")
       or
-      Naming::Cpp14::hasStandardLibraryFunctionName(name)
+      // > 184. The list of reserved identifiers with external linkage includes math_errhandling, setjmp,
+      // > va_copy, and va_end.
+      name = "errno" and
+      header = "errno.h"
       or
-      name.regexpMatch("_[A-Z_].*")
+      name = "math_errhandling" and
+      header = "math.h"
       or
-      name.regexpMatch("_.*") and m.(Declaration).hasGlobalName(name)
+      name = "setjmp" and
+      header = "setjmp.h"
       or
-      Keywords::isKeyword(name)
-    ) and
-    message = "Reserved identifier '" + name + "' is declared."
+      name = "va_copy" and
+      header = "stdarg.h"
+      or
+      name = "va_end" and
+      header = "stdarg.h"
+    |
+      hasExternalLinkage(m) and
+      reason =
+        "uses a reserved name from the " + TargetedCLibrary::getName() +
+          " standard library header '" + header + "'"
+    )
+    or
+    // > Each identifier with file scope listed in any of the following subclauses (including the
+    // > future library directions) is reserved for use as a macro name and as an identifier with
+    // > file scope in the same name space if any of its associated headers is included
+    // Note: we do not consider the requirement of including the associated header
+    exists(string header |
+      TargetedCLibrary::hasObjectName(header, _, name, _, _) and
+      (cNameSpace = OrdinaryNameSpace() or cNameSpace = MacroNameSpace())
+      or
+      TargetedCLibrary::hasFunctionName(header, _, "", name, _, _, _) and
+      (cNameSpace = OrdinaryNameSpace() or cNameSpace = MacroNameSpace())
+      or
+      TargetedCLibrary::hasTypeName(header, _, name) and
+      (cNameSpace = TagNameSpace() or cNameSpace = MacroNameSpace())
+      or
+      TargetedCLibrary::hasMemberVariableName(header, _, _, name, _) and
+      (cNameSpace = OrdinaryNameSpace() or cNameSpace = MacroNameSpace())
+    |
+      (
+        scope = FileScope()
+        or
+        scope = MacroScope()
+      ) and
+      reason =
+        "uses a reserved name from the " + TargetedCLibrary::getName() +
+          " standard library header '" + header + "'"
+    )
+    or
+    // C11 6.4.1/2
+    Keywords::isKeyword(name) and
+    reason = "it is a C11 keyword"
   )
 }
