Merge branch 'main' into models5

Author: geoffw0

MODULE.bazel

@@ -37,6 +37,7 @@ bazel_dep(name = "buildifier_prebuilt", version = "6.4.0", dev_dependency = True
 # the versions there are canonical, the versions here are used for CI in github/codeql, as well as for the vendoring of dependencies.
 RUST_EDITION = "2024"
 
+# run buildutils-internal/scripts/fill-rust-sha256s.py when updating (internal repo)
 RUST_VERSION = "1.86.0"
 
 rust = use_extension("@rules_rust//rust:extensions.bzl", "rust")
@@ -47,6 +48,29 @@ rust.toolchain(
         "x86_64-apple-darwin",
         "aarch64-apple-darwin",
     ],
+    # generated by buildutils-internal/scripts/fill-rust-sha256s.py (internal repo)
+    sha256s = {
+        "rustc-1.86.0-x86_64-unknown-linux-gnu.tar.xz": "4438b809ce4a083af31ed17aeeedcc8fc60ccffc0625bef1926620751b6989d7",
+        "rustc-1.86.0-x86_64-apple-darwin.tar.xz": "42b76253626febb7912541a30d3379f463dec89581aad4cb72c6c04fb5a71dc5",
+        "rustc-1.86.0-aarch64-apple-darwin.tar.xz": "23b8f52102249a47ab5bc859d54c9a3cb588a3259ba3f00f557d50edeca4fde9",
+        "rustc-1.86.0-x86_64-pc-windows-msvc.tar.xz": "fdde839fea274529a31e51eb85c6df1782cc8479c9d1bc24e2914d66a0de41ab",
+        "clippy-1.86.0-x86_64-unknown-linux-gnu.tar.xz": "02aaff2c1407d2da8dba19aa4970dd873e311902b120a66cbcdbe51eb8836edf",
+        "clippy-1.86.0-x86_64-apple-darwin.tar.xz": "bb85efda7bbffaf124867f5ca36d50932b1e8f533c62ee923438afb32ff8fe9a",
+        "clippy-1.86.0-aarch64-apple-darwin.tar.xz": "239fa3a604b124f0312f2af08537874a1227dba63385484b468cca62e7c4f2f2",
+        "clippy-1.86.0-x86_64-pc-windows-msvc.tar.xz": "d00498f47d49219f032e2c5eeebdfc3d32317c0dc3d3fd7125327445bc482cb4",
+        "cargo-1.86.0-x86_64-unknown-linux-gnu.tar.xz": "c5c1590f7e9246ad9f4f97cfe26ffa92707b52a769726596a9ef81565ebd908b",
+        "cargo-1.86.0-x86_64-apple-darwin.tar.xz": "af163eb02d1a178044d1b4f2375960efd47130f795f6e33d09e345454bb26f4e",
+        "cargo-1.86.0-aarch64-apple-darwin.tar.xz": "3cb13873d48c3e1e4cc684d42c245226a11fba52af6b047c3346ed654e7a05c0",
+        "cargo-1.86.0-x86_64-pc-windows-msvc.tar.xz": "e57a9d89619b5604899bac443e68927bdd371e40f2e03e18950b6ceb3eb67966",
+        "llvm-tools-1.86.0-x86_64-unknown-linux-gnu.tar.xz": "282145ab7a63c98b625856f44b905b4dc726b497246b824632a5790debe95a78",
+        "llvm-tools-1.86.0-x86_64-apple-darwin.tar.xz": "b55706e92f7da989207c50c13c7add483a9fedd233bc431b106eca2a8f151ec9",
+        "llvm-tools-1.86.0-aarch64-apple-darwin.tar.xz": "04d3618c686845853585f036e3211eb9e18f2d290f4610a7a78bdc1fcce1ebd9",
+        "llvm-tools-1.86.0-x86_64-pc-windows-msvc.tar.xz": "721a17cc8dc219177e4277a3592253934ef08daa1e1b12eda669a67d15fad8dd",
+        "rust-std-1.86.0-x86_64-unknown-linux-gnu.tar.xz": "67be7184ea388d8ce0feaf7fdea46f1775cfc2970930264343b3089898501d37",
+        "rust-std-1.86.0-x86_64-apple-darwin.tar.xz": "3b1140d54870a080080e84700143f4a342fbd02a410a319b05d9c02e7dcf44cc",
+        "rust-std-1.86.0-aarch64-apple-darwin.tar.xz": "0fb121fb3b8fa9027d79ff598500a7e5cd086ddbc3557482ed3fdda00832c61b",
+        "rust-std-1.86.0-x86_64-pc-windows-msvc.tar.xz": "3d5354b7b9cb950b58bff3fce18a652aa374bb30c8f70caebd3bd0b43cb41a33",
+    },
     versions = [RUST_VERSION],
 )
 use_repo(rust, "rust_toolchains")

java/ql/integration-tests/java/query-suite/java-code-quality-extended.qls.expected

@@ -77,6 +77,8 @@ ql/java/ql/src/Violations of Best Practice/Naming Conventions/ConfusingMethodNam
 ql/java/ql/src/Violations of Best Practice/Naming Conventions/ConfusingOverloading.ql
 ql/java/ql/src/Violations of Best Practice/Naming Conventions/LocalShadowsFieldConfusing.ql
 ql/java/ql/src/Violations of Best Practice/Naming Conventions/SameNameAsSuper.ql
+ql/java/ql/src/Violations of Best Practice/Records/IgnoredSerializationMembersOfRecordClass.ql
+ql/java/ql/src/Violations of Best Practice/SpecialCharactersInLiterals/NonExplicitControlAndWhitespaceCharsInLiterals.ql
 ql/java/ql/src/Violations of Best Practice/Undesirable Calls/CallsToStringToString.ql
 ql/java/ql/src/Violations of Best Practice/Undesirable Calls/DefaultToString.ql
 ql/java/ql/src/Violations of Best Practice/Undesirable Calls/DoNotCallFinalize.ql

java/ql/integration-tests/java/query-suite/java-code-quality.qls.expected

@@ -75,6 +75,8 @@ ql/java/ql/src/Violations of Best Practice/Naming Conventions/ConfusingMethodNam
 ql/java/ql/src/Violations of Best Practice/Naming Conventions/ConfusingOverloading.ql
 ql/java/ql/src/Violations of Best Practice/Naming Conventions/LocalShadowsFieldConfusing.ql
 ql/java/ql/src/Violations of Best Practice/Naming Conventions/SameNameAsSuper.ql
+ql/java/ql/src/Violations of Best Practice/Records/IgnoredSerializationMembersOfRecordClass.ql
+ql/java/ql/src/Violations of Best Practice/SpecialCharactersInLiterals/NonExplicitControlAndWhitespaceCharsInLiterals.ql
 ql/java/ql/src/Violations of Best Practice/Undesirable Calls/CallsToStringToString.ql
 ql/java/ql/src/Violations of Best Practice/Undesirable Calls/DefaultToString.ql
 ql/java/ql/src/Violations of Best Practice/Undesirable Calls/DoNotCallFinalize.ql

java/ql/src/Violations of Best Practice/Records/IgnoredSerializationMembersOfRecordClass.md

@@ -0,0 +1,54 @@
+## Overview
+
+Record types were introduced in Java 16 as a mechanism to provide simpler data handling as an alternative to regular classes. However, record classes behave slightly differently during serialization. Namely any `writeObject`, `readObject`, `readObjectNoData`, `writeExternal`, and `readExternal` methods and `serialPersistentFields` fields declared in these classes cannot be used to affect the serialization process of any `Record` data type.
+
+## Recommendation
+
+Some level of serialization customization is offered by the Java 16 Record feature. The `writeReplace` and `readResolve` methods in a record that implements `java.io.Serializable` can be used to replace the object to be serialized. Otherwise, no further customization of serialization of records is possible, and it is better to consider using a regular class implementing `java.io.Serializable` or `java.io.Externalizable` when customization is needed.
+
+## Example
+
+```java
+record T1() implements Serializable {
+
+    @Serial
+    private static final ObjectStreamField[] serialPersistentFields = new ObjectStreamField[0]; // NON_COMPLIANT
+
+    @Serial
+    private void writeObject(ObjectOutputStream out) throws IOException {} // NON_COMPLIANT
+
+    @Serial
+    private void readObject(ObjectOutputStream out) throws IOException {}// NON_COMPLIANT
+
+    @Serial
+    private void readObjectNoData(ObjectOutputStream out) throws IOException { // NON_COMPLIANT
+    }
+}
+
+record T2() implements Externalizable {
+
+    @Override
+    public void writeExternal(ObjectOutput out) throws IOException { // NON_COMPLIANT
+    }
+
+    @Override
+    public void readExternal(ObjectInput in) throws IOException, ClassNotFoundException { // NON_COMPLIANT
+    }
+}
+
+record T3() implements Serializable {
+
+    public Object writeReplace(ObjectOutput out) throws ObjectStreamException { // COMPLIANT
+        return new Object();
+    }
+
+    public Object readResolve(ObjectInput in) throws ObjectStreamException { // COMPLIANT
+        return new Object();
+    }
+}
+```
+
+## References
+
+- Oracle Serialization Documentation: [Serialization of Records](https://docs.oracle.com/en/java/javase/16/docs/specs/serialization/serial-arch.html#serialization-of-records)
+- Java Record: [Feature Specification](https://openjdk.org/jeps/395)

java/ql/src/Violations of Best Practice/Records/IgnoredSerializationMembersOfRecordClass.ql

@@ -0,0 +1,24 @@
+/**
+ * @id java/ignored-serialization-member-of-record-class
+ * @name Ignored serialization member of record class
+ * @description Using certain members of a record class during serialization will result in
+ *              those members being ignored.
+ * @previous-id java/useless-members-of-the-records-class
+ * @kind problem
+ * @precision very-high
+ * @problem.severity warning
+ * @tags quality
+ *       reliability
+ *       correctness
+ */
+
+import java
+
+from Record record, Member m
+where
+  record.getAMember() = m and
+  m.hasName([
+      "writeObject", "readObject", "readObjectNoData", "writeExternal", "readExternal",
+      "serialPersistentFields"
+    ])
+select m, "Ignored serialization member found in record class $@.", record, record.getName()

java/ql/src/Violations of Best Practice/SpecialCharactersInLiterals/NonExplicitControlAndWhitespaceCharsInLiterals.md

@@ -0,0 +1,111 @@
+## Overview
+
+This query detects non-explicit control and whitespace characters in Java literals.
+Such characters are often introduced accidentally and can be invisible or hard to recognize, leading to bugs when the actual contents of the string contain control characters.
+
+## Recommendation
+
+To avoid issues, use the encoded versions of control characters (e.g. ASCII `\n`, `\t`, or Unicode `U+000D`, `U+0009`).
+This makes the literals (e.g. string literals) more readable, and also helps to make the surrounding code less error-prone and more maintainable.
+
+## Example
+
+The following examples illustrate good and bad code:
+
+Bad:
+
+```java
+char tabulationChar = '	'; // Non compliant
+String tabulationCharInsideString = "A	B";  // Non compliant
+String fooZeroWidthSpacebar = "foo​bar"; // Non compliant
+```
+
+Good:
+
+```java
+char escapedTabulationChar = '\t';
+String escapedTabulationCharInsideString = "A\tB";  // Compliant
+String fooUnicodeSpacebar = "foo\u0020bar";  // Compliant
+String foo2Spacebar = "foo  bar";  // Compliant
+String foo3Spacebar = "foo   bar";  // Compliant
+```
+
+## Implementation notes
+
+This query detects Java literals that contain reserved control characters and/or non-printable whitespace characters, such as:
+
+- Decimal and hexidecimal representations of ASCII control characters (code points 0-8, 11, 14-31, and 127).
+- Invisible characters (e.g. zero-width space, zero-width joiner).
+- Unicode C0 control codes, plus the delete character (U+007F), such as:
+
+  | Escaped Unicode | ASCII Decimal | Description               |
+  | --------------- | ------------- | ------------------------- |
+  | `\u0000`        | 0             | null character            |
+  | `\u0001`        | 1             | start of heading          |
+  | `\u0002`        | 2             | start of text             |
+  | `\u0003`        | 3             | end of text               |
+  | `\u0004`        | 4             | end of transmission       |
+  | `\u0005`        | 5             | enquiry                   |
+  | `\u0006`        | 6             | acknowledge               |
+  | `\u0007`        | 7             | bell                      |
+  | `\u0008`        | 8             | backspace                 |
+  | `\u000B`        | 11            | vertical tab              |
+  | `\u000E`        | 14            | shift out                 |
+  | `\u000F`        | 15            | shift in                  |
+  | `\u0010`        | 16            | data link escape          |
+  | `\u0011`        | 17            | device control 1          |
+  | `\u0012`        | 18            | device control 2          |
+  | `\u0013`        | 19            | device control 3          |
+  | `\u0014`        | 20            | device control 4          |
+  | `\u0015`        | 21            | negative acknowledge      |
+  | `\u0016`        | 22            | synchronous idle          |
+  | `\u0017`        | 23            | end of transmission block |
+  | `\u0018`        | 24            | cancel                    |
+  | `\u0019`        | 25            | end of medium             |
+  | `\u001A`        | 26            | substitute                |
+  | `\u001B`        | 27            | escape                    |
+  | `\u001C`        | 28            | file separator            |
+  | `\u001D`        | 29            | group separator           |
+  | `\u001E`        | 30            | record separator          |
+  | `\u001F`        | 31            | unit separator            |
+  | `\u007F`        | 127           | delete                    |
+
+- Zero-width Unicode characters (e.g. zero-width space, zero-width joiner), such as:
+
+  | Escaped Unicode | Description               |
+  | --------------- | ------------------------- |
+  | `\u200B`        | zero-width space          |
+  | `\u200C`        | zero-width non-joiner     |
+  | `\u200D`        | zero-width joiner         |
+  | `\u2028`        | line separator            |
+  | `\u2029`        | paragraph separator       |
+  | `\u2060`        | word joiner               |
+  | `\uFEFF`        | zero-width no-break space |
+
+The following list outlines the _**explicit exclusions from query scope**_:
+
+- any number of simple space characters (`U+0020`, ASCII 32).
+- an escape character sequence (e.g. `\t`), or the Unicode equivalent (e.g. `\u0009`), for printable whitespace characters:
+
+  | Character Sequence | Escaped Unicode | ASCII Decimal | Description     |
+  | ------------------ | --------------- | ------------- | --------------- |
+  | `\t`               | \u0009          | 9             | horizontal tab  |
+  | `\n`               | \u000A          | 10            | line feed       |
+  | `\f`               | \u000C          | 12            | form feed       |
+  | `\r`               | \u000D          | 13            | carriage return |
+  |                    | \u0020          | 32            | space           |
+
+- character literals (i.e. single quotes) containing control characters.
+- literals defined within "likely" test methods, such as:
+  - JUnit test methods
+  - methods annotated with `@Test`
+  - methods of a class annotated with `@Test`
+  - methods with names containing "test"
+
+## References
+
+- Unicode: [Unicode Control Characters](https://www.unicode.org/charts/PDF/U0000.pdf).
+- Wikipedia: [Unicode C0 control codes](https://en.wikipedia.org/wiki/C0_and_C1_control_codes).
+- Wikipedia: [Unicode characters with property "WSpace=yes" or "White_Space=yes"](https://en.wikipedia.org/wiki/Unicode_character_property#Whitespace).
+- Java API Specification: [Java String Literals](https://docs.oracle.com/javase/tutorial/java/data/characters.html).
+- Java API Specification: [Java Class Charset](https://docs.oracle.com/javase/8/docs/api///?java/nio/charset/Charset.html).

java/ql/src/Violations of Best Practice/SpecialCharactersInLiterals/NonExplicitControlAndWhitespaceCharsInLiterals.ql

@@ -0,0 +1,51 @@
+/**
+ * @id java/non-explicit-control-and-whitespace-chars-in-literals
+ * @name Non-explicit control and whitespace characters
+ * @description Non-explicit control and whitespace characters in literals make code more difficult
+ *              to read and may lead to incorrect program behavior.
+ * @kind problem
+ * @precision very-high
+ * @problem.severity warning
+ * @tags quality
+ *       correctness
+ *       maintainability
+ *       readability
+ */
+
+import java
+
+/**
+ * A `Literal` that has a Unicode control character within its
+ * literal value (as returned by `getLiteral()` member predicate).
+ */
+class ReservedUnicodeInLiteral extends Literal {
+  private int indexStart;
+
+  ReservedUnicodeInLiteral() {
+    not this instanceof CharacterLiteral and
+    exists(int codePoint |
+      this.getLiteral().codePointAt(indexStart) = codePoint and
+      (
+        // Unicode C0 control characters
+        codePoint < 32 and not codePoint in [9, 10, 12, 13]
+        or
+        codePoint = 127 // delete control character
+        or
+        codePoint = 8203 // zero-width space
+      )
+    )
+  }
+
+  /** Gets the starting index of the Unicode control sequence. */
+  int getIndexStart() { result = indexStart }
+}
+
+from ReservedUnicodeInLiteral literal, int charIndex, int codePoint
+where
+  literal.getIndexStart() = charIndex and
+  literal.getLiteral().codePointAt(charIndex) = codePoint and
+  not literal.getEnclosingCallable() instanceof LikelyTestMethod and
+  not literal.getFile().isKotlinSourceFile()
+select literal,
+  "Literal value contains control or non-printable whitespace character(s) starting with Unicode code point "
+    + codePoint + " at index " + charIndex + "."

java/ql/test/query-tests/IgnoredSerializationMembersOfRecordClass/IgnoredSerializationMembersOfRecordClass.expected

@@ -0,0 +1,6 @@
+| Test.java:7:46:7:67 | serialPersistentFields | Ignored serialization member found in record class $@. | Test.java:4:12:4:13 | T1 | T1 |
+| Test.java:10:18:10:28 | writeObject | Ignored serialization member found in record class $@. | Test.java:4:12:4:13 | T1 | T1 |
+| Test.java:13:18:13:27 | readObject | Ignored serialization member found in record class $@. | Test.java:4:12:4:13 | T1 | T1 |
+| Test.java:16:18:16:33 | readObjectNoData | Ignored serialization member found in record class $@. | Test.java:4:12:4:13 | T1 | T1 |
+| Test.java:24:17:24:29 | writeExternal | Ignored serialization member found in record class $@. | Test.java:21:12:21:13 | T2 | T2 |
+| Test.java:28:17:28:28 | readExternal | Ignored serialization member found in record class $@. | Test.java:21:12:21:13 | T2 | T2 |

java/ql/test/query-tests/IgnoredSerializationMembersOfRecordClass/IgnoredSerializationMembersOfRecordClass.qlref

@@ -0,0 +1,2 @@
+query: Violations of Best Practice/Records/IgnoredSerializationMembersOfRecordClass.ql
+postprocess: utils/test/InlineExpectationsTestQuery.ql

java/ql/test/query-tests/IgnoredSerializationMembersOfRecordClass/Test.java

@@ -0,0 +1,42 @@
+import java.io.*;
+
+public class Test {
+    record T1() implements Serializable {
+
+    @Serial
+    private static final ObjectStreamField[] serialPersistentFields = new ObjectStreamField[0]; // $ Alert
+
+    @Serial
+    private void writeObject(ObjectOutputStream out) throws IOException {} // $ Alert
+
+    @Serial
+    private void readObject(ObjectOutputStream out) throws IOException {} // $ Alert
+
+    @Serial
+    private void readObjectNoData(ObjectOutputStream out) throws IOException { // $ Alert
+    }
+
+}
+
+    record T2() implements Externalizable {
+
+    @Override
+    public void writeExternal(ObjectOutput out) throws IOException { // $ Alert
+    }
+
+    @Override
+    public void readExternal(ObjectInput in) throws IOException, ClassNotFoundException { // $ Alert
+    }
+
+    }
+
+    record T3() implements Serializable {
+
+    public Object writeReplace(ObjectOutput out) throws ObjectStreamException { // COMPLIANT
+        return new Object();
+    }
+
+    public Object readResolve(ObjectInput in) throws ObjectStreamException { // COMPLIANT
+        return new Object();
+    }
+}}