hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-12 13:11:20 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
33fbec11742e7523201c19124f2c4782c8b718dd
codeql/go/ql/src/RedundantCode/UnreachableStatement.ql
Chuan-kai Lin aa514fff32 codeql-go merge prep: move into go/ directory
2022-05-20 10:07:19 -07:00

80 lines
2.5 KiB
Plaintext
Raw Blame History

/**
* @name Unreachable statement
* @description Unreachable statements are often indicative of missing code or latent bugs
* and should be avoided.
* @kind problem
* @problem.severity warning
* @id go/unreachable-statement
* @tags maintainability
* correctness
* external/cwe/cwe-561
* @precision very-high
*/
import go
ControlFlow::Node nonGuardPredecessor(ControlFlow::Node nd) {
exists(ControlFlow::Node pred | pred = nd.getAPredecessor() |
if pred instanceof ControlFlow::ConditionGuardNode
then result = nonGuardPredecessor(pred)
else result = pred
)
}
/**
* Matches if `retval` is a constant or a struct composed wholly of constants.
*/
predicate isAllowedReturnValue(Expr retval) {
retval = Builtin::nil().getAReference()
or
retval = Builtin::true_().getAReference()
or
retval = Builtin::false_().getAReference()
or
retval instanceof BasicLit
or
// Allow -1 (which parses as unary-minus-of-literal) or !true, but not &somestruct,
// for which we would usually prefer `return nil`
isAllowedReturnValue(retval.(UnaryExpr).getOperand()) and
not retval.getType().getUnderlyingType() instanceof PointerType
or
// Allow structs composed of allowed values
retval instanceof StructLit and
forall(Expr element | element = retval.(StructLit).getAnElement() | isAllowedReturnValue(element))
or
// Allow anything of type `error`, as `abort(); return constructError(...);`
// is preferable to insisting on a misleading `return nil` that suggests
// successful return:
retval.getType().getEntity() = Builtin::error()
}
/**
* Matches if `s` is an allowed unreachable statement.
*/
predicate allowlist(Stmt s) {
// `panic("unreachable")` and similar
exists(CallExpr ce | ce = s.(ExprStmt).getExpr() or ce = s.(ReturnStmt).getExpr() |
ce.getTarget().mustPanic() or ce.getCalleeName().toLowerCase() = "error"
)
or
// `return nil` and similar
exists(ReturnStmt ret | ret = s |
forall(Expr retval | retval = ret.getAnExpr() | isAllowedReturnValue(retval))
)
or
// statements in an `if false { ... }` and similar
exists(IfStmt is, ControlFlow::ConditionGuardNode iffalse, Expr cond, boolean b |
iffalse.getCondition() = is.getCond() and
iffalse = s.getFirstControlFlowNode().getAPredecessor() and
cond.getBoolValue() = b and
iffalse.ensures(DataFlow::exprNode(cond), b.booleanNot())
)
}
from Stmt s, ControlFlow::Node fst
where
fst = s.getFirstControlFlowNode() and
not exists(nonGuardPredecessor(fst)) and
not allowlist(s)
select s, "This statement is unreachable."
Reference in New Issue View Git Blame Copy Permalink