FloatingTypes: Commit rule package files

lcartey · lcartey · commit c6c87881abc0 · 2023-03-13T10:21:02.000Z
Adds the FloatingTypes package, and make a query (A0-4-4) from
TypeRanges into a shared query.
diff --git a/cpp/common/src/codingstandards/cpp/exclusions/c/FloatingTypes.qll b/cpp/common/src/codingstandards/cpp/exclusions/c/FloatingTypes.qll
@@ -0,0 +1,78 @@
+//** THIS FILE IS AUTOGENERATED, DO NOT MODIFY DIRECTLY.  **/
+import cpp
+import RuleMetadata
+import codingstandards.cpp.exclusions.RuleMetadata
+
+newtype FloatingTypesQuery =
+  TUncheckedRangeDomainPoleErrorsQuery() or
+  TUncheckedFloatingPointConversionQuery() or
+  TIntToFloatPreservePrecisionQuery() or
+  TMemcmpUsedToCompareFloatsQuery()
+
+predicate isFloatingTypesQueryMetadata(Query query, string queryId, string ruleId, string category) {
+  query =
+    // `Query` instance for the `uncheckedRangeDomainPoleErrors` query
+    FloatingTypesPackage::uncheckedRangeDomainPoleErrorsQuery() and
+  queryId =
+    // `@id` for the `uncheckedRangeDomainPoleErrors` query
+    "c/cert/unchecked-range-domain-pole-errors" and
+  ruleId = "FLP32-C" and
+  category = "rule"
+  or
+  query =
+    // `Query` instance for the `uncheckedFloatingPointConversion` query
+    FloatingTypesPackage::uncheckedFloatingPointConversionQuery() and
+  queryId =
+    // `@id` for the `uncheckedFloatingPointConversion` query
+    "c/cert/unchecked-floating-point-conversion" and
+  ruleId = "FLP34-C" and
+  category = "rule"
+  or
+  query =
+    // `Query` instance for the `intToFloatPreservePrecision` query
+    FloatingTypesPackage::intToFloatPreservePrecisionQuery() and
+  queryId =
+    // `@id` for the `intToFloatPreservePrecision` query
+    "c/cert/int-to-float-preserve-precision" and
+  ruleId = "FLP36-C" and
+  category = "rule"
+  or
+  query =
+    // `Query` instance for the `memcmpUsedToCompareFloats` query
+    FloatingTypesPackage::memcmpUsedToCompareFloatsQuery() and
+  queryId =
+    // `@id` for the `memcmpUsedToCompareFloats` query
+    "c/cert/memcmp-used-to-compare-floats" and
+  ruleId = "FLP37-C" and
+  category = "rule"
+}
+
+module FloatingTypesPackage {
+  Query uncheckedRangeDomainPoleErrorsQuery() {
+    //autogenerate `Query` type
+    result =
+      // `Query` type for `uncheckedRangeDomainPoleErrors` query
+      TQueryC(TFloatingTypesPackageQuery(TUncheckedRangeDomainPoleErrorsQuery()))
+  }
+
+  Query uncheckedFloatingPointConversionQuery() {
+    //autogenerate `Query` type
+    result =
+      // `Query` type for `uncheckedFloatingPointConversion` query
+      TQueryC(TFloatingTypesPackageQuery(TUncheckedFloatingPointConversionQuery()))
+  }
+
+  Query intToFloatPreservePrecisionQuery() {
+    //autogenerate `Query` type
+    result =
+      // `Query` type for `intToFloatPreservePrecision` query
+      TQueryC(TFloatingTypesPackageQuery(TIntToFloatPreservePrecisionQuery()))
+  }
+
+  Query memcmpUsedToCompareFloatsQuery() {
+    //autogenerate `Query` type
+    result =
+      // `Query` type for `memcmpUsedToCompareFloats` query
+      TQueryC(TFloatingTypesPackageQuery(TMemcmpUsedToCompareFloatsQuery()))
+  }
+}
diff --git a/cpp/common/src/codingstandards/cpp/exclusions/c/RuleMetadata.qll b/cpp/common/src/codingstandards/cpp/exclusions/c/RuleMetadata.qll
@@ -26,6 +26,7 @@ import Declarations7
 import Declarations8
 import EssentialTypes
 import Expressions
+import FloatingTypes
 import IO1
 import IO2
 import IO3
@@ -77,6 +78,7 @@ newtype TCQuery =
   TDeclarations8PackageQuery(Declarations8Query q) or
   TEssentialTypesPackageQuery(EssentialTypesQuery q) or
   TExpressionsPackageQuery(ExpressionsQuery q) or
+  TFloatingTypesPackageQuery(FloatingTypesQuery q) or
   TIO1PackageQuery(IO1Query q) or
   TIO2PackageQuery(IO2Query q) or
   TIO3PackageQuery(IO3Query q) or
@@ -128,6 +130,7 @@ predicate isQueryMetadata(Query query, string queryId, string ruleId, string cat
   isDeclarations8QueryMetadata(query, queryId, ruleId, category) or
   isEssentialTypesQueryMetadata(query, queryId, ruleId, category) or
   isExpressionsQueryMetadata(query, queryId, ruleId, category) or
+  isFloatingTypesQueryMetadata(query, queryId, ruleId, category) or
   isIO1QueryMetadata(query, queryId, ruleId, category) or
   isIO2QueryMetadata(query, queryId, ruleId, category) or
   isIO3QueryMetadata(query, queryId, ruleId, category) or
diff --git a/rule_packages/c/FloatingTypes.json b/rule_packages/c/FloatingTypes.json
@@ -0,0 +1,81 @@
+{
+  "CERT-C": {
+    "FLP32-C": {
+      "properties": {
+        "obligation": "rule"
+      },
+      "queries": [
+        {
+          "description": "Range, domain or pole errors in math functions may return unexpected values, trigger floating-point exceptions or set unexpected error modes.",
+          "kind": "problem",
+          "name": "Prevent or detect domain and range errors in math functions",
+          "precision": "high",
+          "severity": "error",
+          "short_name": "UncheckedRangeDomainPoleErrors",
+          "shared_implementation_short_name": "UncheckedRangeDomainPoleErrors",
+          "tags": [
+            "correctness"
+          ]
+        }
+      ],
+      "title": "Prevent or detect domain and range errors in math functions"
+    },
+    "FLP34-C": {
+      "properties": {
+        "obligation": "rule"
+      },
+      "queries": [
+        {
+          "description": "",
+          "kind": "problem",
+          "name": "Ensure that floating-point conversions are within range of the new type",
+          "precision": "very-high",
+          "severity": "error",
+          "short_name": "UncheckedFloatingPointConversion",
+          "tags": [
+            "correctness"
+          ]
+        }
+      ],
+      "title": "Ensure that floating-point conversions are within range of the new type"
+    },
+    "FLP36-C": {
+      "properties": {
+        "obligation": "rule"
+      },
+      "queries": [
+        {
+          "description": "",
+          "kind": "problem",
+          "name": "Preserve precision when converting integral values to floating-point type",
+          "precision": "very-high",
+          "severity": "error",
+          "short_name": "IntToFloatPreservePrecision",
+          "tags": [
+            "correctness"
+          ]
+        }
+      ],
+      "title": "Preserve precision when converting integral values to floating-point type"
+    },
+    "FLP37-C": {
+      "properties": {
+        "obligation": "rule"
+      },
+      "queries": [
+        {
+          "description": "",
+          "kind": "problem",
+          "name": "Do not use object representations to compare floating-point values",
+          "precision": "very-high",
+          "severity": "error",
+          "short_name": "MemcmpUsedToCompareFloats",
+          "tags": [
+            "correctness"
+          ]
+        }
+      ],
+      "title": "Do not use object representations to compare floating-point values"
+    }
+  }
+}
diff --git a/rule_packages/cpp/TypeRanges.json b/rule_packages/cpp/TypeRanges.json
@@ -16,6 +16,7 @@
           "precision": "high",
           "severity": "error",
           "short_name": "UncheckedRangeDomainPoleErrors",
+          "shared_implementation_short_name": "UncheckedRangeDomainPoleErrors",
           "tags": [
             "correctness"
           ]
diff --git a/rules.csv b/rules.csv
@@ -544,10 +544,10 @@ c,CERT-C,FIO45-C,Yes,Rule,,,Avoid TOCTOU race conditions while accessing files,,
 c,CERT-C,FIO46-C,Yes,Rule,,,Do not access a closed file,FIO51-CPP,IO1,Hard,
 c,CERT-C,FIO47-C,Yes,Rule,,,Use valid format strings,,IO4,Hard,
 c,CERT-C,FLP30-C,Yes,Rule,,,Do not use floating-point variables as loop counters,,Statements,Easy,
-c,CERT-C,FLP32-C,Yes,Rule,,,Prevent or detect domain and range errors in math functions,A0-4-4,Types,Medium,
-c,CERT-C,FLP34-C,Yes,Rule,,,Ensure that floating-point conversions are within range of the new type,,Types,Medium,
-c,CERT-C,FLP36-C,Yes,Rule,,,Preserve precision when converting integral values to floating-point type,,Types,Medium,
-c,CERT-C,FLP37-C,Yes,Rule,,,Do not use object representations to compare floating-point values,,Types,Medium,
+c,CERT-C,FLP32-C,Yes,Rule,,,Prevent or detect domain and range errors in math functions,A0-4-4,FloatingTypes,Medium,
+c,CERT-C,FLP34-C,Yes,Rule,,,Ensure that floating-point conversions are within range of the new type,,FloatingTypes,Medium,
+c,CERT-C,FLP36-C,Yes,Rule,,,Preserve precision when converting integral values to floating-point type,,FloatingTypes,Medium,
+c,CERT-C,FLP37-C,Yes,Rule,,,Do not use object representations to compare floating-point values,,FloatingTypes,Medium,
 c,CERT-C,INT30-C,Yes,Rule,,,Ensure that unsigned integer operations do not wrap,A4-7-1,Types,Hard,
 c,CERT-C,INT31-C,Yes,Rule,,,Ensure that integer conversions do not result in lost or misinterpreted data,A4-7-1,Types,Hard,
 c,CERT-C,INT32-C,Yes,Rule,,,Ensure that operations on signed integers do not result in overflow,A4-7-1,Types,Hard,

Original file line number	Diff line number	Diff line change
`@@ -16,6 +16,7 @@`
`16`	`16`	`"precision": "high",`
`17`	`17`	`"severity": "error",`
`18`	`18`	`"short_name": "UncheckedRangeDomainPoleErrors",`
	`19`	`+ "shared_implementation_short_name": "UncheckedRangeDomainPoleErrors",`
`19`	`20`	`"tags": [`
`20`	`21`	`"correctness"`
`21`	`22`	`]`