github
diff --git a/‎cpp/common/src/codingstandards/cpp/allocations/CustomOperatorNewDelete.qll‎
Lines changed: 44 additions & 33 deletions b/‎cpp/common/src/codingstandards/cpp/allocations/CustomOperatorNewDelete.qll‎
Lines changed: 44 additions & 33 deletions
diff --git a/‎cpp/common/src/codingstandards/cpp/exclusions/cpp/Memory5.qll‎
Lines changed: 26 additions & 0 deletions b/‎cpp/common/src/codingstandards/cpp/exclusions/cpp/Memory5.qll‎
Lines changed: 26 additions & 0 deletions
diff --git a/‎cpp/common/src/codingstandards/cpp/exclusions/cpp/Memory6.qll‎
Lines changed: 26 additions & 0 deletions b/‎cpp/common/src/codingstandards/cpp/exclusions/cpp/Memory6.qll‎
Lines changed: 26 additions & 0 deletions
diff --git a/‎cpp/common/src/codingstandards/cpp/exclusions/cpp/RuleMetadata.qll‎
Lines changed: 6 additions & 0 deletions b/‎cpp/common/src/codingstandards/cpp/exclusions/cpp/RuleMetadata.qll‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎cpp/common/src/codingstandards/cpp/rules/operatordeletemissingpartner/OperatorDeleteMissingPartner.qll‎
Lines changed: 1 addition & 1 deletion b/‎cpp/common/src/codingstandards/cpp/rules/operatordeletemissingpartner/OperatorDeleteMissingPartner.qll‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎cpp/common/src/codingstandards/cpp/rules/throwingoperatornewreturnsnull/ThrowingOperatorNewReturnsNull.qll‎
Lines changed: 2 additions & 2 deletions b/‎cpp/common/src/codingstandards/cpp/rules/throwingoperatornewreturnsnull/ThrowingOperatorNewReturnsNull.qll‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎cpp/common/src/codingstandards/cpp/rules/throwingoperatornewthrowsinvalidexception/ThrowingOperatorNewThrowsInvalidException.qll‎
Lines changed: 1 addition & 1 deletion b/‎cpp/common/src/codingstandards/cpp/rules/throwingoperatornewthrowsinvalidexception/ThrowingOperatorNewThrowsInvalidException.qll‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎cpp/common/src/codingstandards/cpp/standardlibrary/Memory.qll‎
Lines changed: 75 additions & 0 deletions b/‎cpp/common/src/codingstandards/cpp/standardlibrary/Memory.qll‎
Lines changed: 75 additions & 0 deletions
diff --git a/‎cpp/common/test/includes/standard-library/cstdlib‎
Lines changed: 3 additions & 0 deletions b/‎cpp/common/test/includes/standard-library/cstdlib‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎cpp/common/test/includes/standard-library/functional.h‎
Lines changed: 2 additions & 4 deletions b/‎cpp/common/test/includes/standard-library/functional.h‎
Lines changed: 2 additions & 4 deletions
@@ -14,69 +14,80 @@ class ConstNoThrowTReferenceType extends ReferenceType {
 }
 
 /** An `operator` that implements one of the `[replacement.functions]`. */
-abstract class CustomOperatorNewOrDelete extends Operator {
+abstract class OperatorNewOrDelete extends Operator {
+  OperatorNewOrDelete() {
+    this.getName().regexpMatch("operator new(\\[\\])?") or
+    this.getName().regexpMatch("operator delete(\\[\\])?")
+  }
+}
+
+class ReplaceableOperatorNew extends OperatorNewOrDelete {
+  ReplaceableOperatorNew() {
+    this.getName().regexpMatch("operator new(\\[\\])?") and
+    this.getParameter(0).getType() instanceof Size_t and
+    (
+      this.getNumberOfParameters() = 1
+      or
+      this.getNumberOfParameters() = 2 and
+      this.getParameter(1).getType() instanceof ConstNoThrowTReferenceType
+    )
+  }
+}
+
+class CustomOperatorNewOrDelete extends OperatorNewOrDelete {
   CustomOperatorNewOrDelete() {
+    this.hasDefinition() and
     // Not in the standard library
-    exists(getFile().getRelativePath()) and
+    exists(this.getFile().getRelativePath()) and
     // Not in a file called `new`, which is likely to be a copy of the standard library
     // as it is in our tests
-    not getFile().getBaseName() = "new"
+    not this.getFile().getBaseName() = "new"
   }
 
   /**
    * Holds if this is a an allocation function that takes a `const std::nothrow_t&`.
    */
   predicate isNoThrowAllocation() {
-    getAParameter().getType() instanceof ConstNoThrowTReferenceType
+    this.getAParameter().getType() instanceof ConstNoThrowTReferenceType
   }
 
   /** Get the description of this custom allocator. */
   string getAllocDescription() {
     result =
-      getName() + "(" +
-        concat(Parameter p, int i | p = getParameter(i) | p.getType().getName(), "," order by i) +
-        ")"
+      this.getName() + "(" +
+        concat(Parameter p, int i | p = this.getParameter(i) | p.getType().getName(), "," order by i)
+        + ")"
   }
 }
 
-class CustomOperatorNew extends CustomOperatorNewOrDelete {
-  CustomOperatorNew() {
-    hasDefinition() and
-    getName().regexpMatch("operator new(\\[\\])?") and
-    getParameter(0).getType() instanceof Size_t and
-    (
-      getNumberOfParameters() = 1
-      or
-      getNumberOfParameters() = 2 and
-      getParameter(1).getType() instanceof ConstNoThrowTReferenceType
-    )
-  }
-}
+class CustomReplaceableOperatorNew extends CustomOperatorNewOrDelete, ReplaceableOperatorNew { }
 
-class CustomOperatorDelete extends CustomOperatorNewOrDelete {
-  CustomOperatorDelete() {
-    getName().regexpMatch("operator delete(\\[\\])?") and
-    getParameter(0).getType() instanceof VoidPointerType and
+class ReplaceableOperatorDelete extends OperatorNewOrDelete {
+  ReplaceableOperatorDelete() {
+    this.getName().regexpMatch("operator delete(\\[\\])?") and
+    this.getParameter(0).getType() instanceof VoidPointerType and
     (
-      getNumberOfParameters() = 1
+      this.getNumberOfParameters() = 1
       or
-      getNumberOfParameters() = 2 and
+      this.getNumberOfParameters() = 2 and
       (
-        getParameter(1).getType() instanceof ConstNoThrowTReferenceType
+        this.getParameter(1).getType() instanceof ConstNoThrowTReferenceType
         or
-        getParameter(1).getType() instanceof Size_t
+        this.getParameter(1).getType() instanceof Size_t
       )
       or
-      getNumberOfParameters() = 3 and
+      this.getNumberOfParameters() = 3 and
       (
-        getParameter(1).getType() instanceof Size_t and
-        getParameter(2).getType() instanceof ConstNoThrowTReferenceType
+        this.getParameter(1).getType() instanceof Size_t and
+        this.getParameter(2).getType() instanceof ConstNoThrowTReferenceType
       )
     )
   }
+}
 
-  CustomOperatorDelete getPartner() {
-    if getAParameter().getType() instanceof Size_t
+class CustomReplaceableOperatorDelete extends CustomOperatorNewOrDelete, ReplaceableOperatorDelete {
+  CustomReplaceableOperatorDelete getPartner() {
+    if this.getAParameter().getType() instanceof Size_t
     then
       result.getAllocDescription() = this.getAllocDescription().replaceAll(",size_t", "") and
       // Linked together in the same target
 
@@ -0,0 +1,26 @@
+//** THIS FILE IS AUTOGENERATED, DO NOT MODIFY DIRECTLY.  **/
+import cpp
+import RuleMetadata
+import codingstandards.cpp.exclusions.RuleMetadata
+
+newtype Memory5Query = TDynamicMemoryManagedManuallyQuery()
+
+predicate isMemory5QueryMetadata(Query query, string queryId, string ruleId, string category) {
+  query =
+    // `Query` instance for the `dynamicMemoryManagedManually` query
+    Memory5Package::dynamicMemoryManagedManuallyQuery() and
+  queryId =
+    // `@id` for the `dynamicMemoryManagedManually` query
+    "cpp/misra/dynamic-memory-managed-manually" and
+  ruleId = "RULE-21-6-2" and
+  category = "required"
+}
+
+module Memory5Package {
+  Query dynamicMemoryManagedManuallyQuery() {
+    //autogenerate `Query` type
+    result =
+      // `Query` type for `dynamicMemoryManagedManually` query
+      TQueryCPP(TMemory5PackageQuery(TDynamicMemoryManagedManuallyQuery()))
+  }
+}
@@ -0,0 +1,26 @@
+//** THIS FILE IS AUTOGENERATED, DO NOT MODIFY DIRECTLY.  **/
+import cpp
+import RuleMetadata
+import codingstandards.cpp.exclusions.RuleMetadata
+
+newtype Memory6Query = TAdvancedMemoryManagementUsedQuery()
+
+predicate isMemory6QueryMetadata(Query query, string queryId, string ruleId, string category) {
+  query =
+    // `Query` instance for the `advancedMemoryManagementUsed` query
+    Memory6Package::advancedMemoryManagementUsedQuery() and
+  queryId =
+    // `@id` for the `advancedMemoryManagementUsed` query
+    "cpp/misra/advanced-memory-management-used" and
+  ruleId = "RULE-21-6-3" and
+  category = "required"
+}
+
+module Memory6Package {
+  Query advancedMemoryManagementUsedQuery() {
+    //autogenerate `Query` type
+    result =
+      // `Query` type for `advancedMemoryManagementUsed` query
+      TQueryCPP(TMemory6PackageQuery(TAdvancedMemoryManagementUsedQuery()))
+  }
+}
@@ -53,6 +53,8 @@ import Macros
 import Memory2
 import Memory3
 import Memory4
+import Memory5
+import Memory6
 import MoveForward
 import Naming
 import Naming2
@@ -135,6 +137,8 @@ newtype TCPPQuery =
   TMemory2PackageQuery(Memory2Query q) or
   TMemory3PackageQuery(Memory3Query q) or
   TMemory4PackageQuery(Memory4Query q) or
+  TMemory5PackageQuery(Memory5Query q) or
+  TMemory6PackageQuery(Memory6Query q) or
   TMoveForwardPackageQuery(MoveForwardQuery q) or
   TNamingPackageQuery(NamingQuery q) or
   TNaming2PackageQuery(Naming2Query q) or
@@ -217,6 +221,8 @@ predicate isQueryMetadata(Query query, string queryId, string ruleId, string cat
   isMemory2QueryMetadata(query, queryId, ruleId, category) or
   isMemory3QueryMetadata(query, queryId, ruleId, category) or
   isMemory4QueryMetadata(query, queryId, ruleId, category) or
+  isMemory5QueryMetadata(query, queryId, ruleId, category) or
+  isMemory6QueryMetadata(query, queryId, ruleId, category) or
   isMoveForwardQueryMetadata(query, queryId, ruleId, category) or
   isNamingQueryMetadata(query, queryId, ruleId, category) or
   isNaming2QueryMetadata(query, queryId, ruleId, category) or
 
@@ -36,7 +36,7 @@ Query getQuery() { result instanceof OperatorDeleteMissingPartnerSharedQuery }
  * void operator delete[](void*, std::size_t, const std::nothrow_t&)
  */
 
-query predicate problems(CustomOperatorDelete cd, string message) {
+query predicate problems(CustomReplaceableOperatorDelete cd, string message) {
   not isExcluded(cd, getQuery()) and
   not exists(cd.getPartner()) and
   if cd.getAParameter().getType() instanceof Size_t
 
@@ -31,7 +31,7 @@ module NullConfig implements DataFlow::ConfigSig {
   }
 
   predicate isSink(DataFlow::Node sink) {
-    exists(CustomOperatorNew co, ReturnStmt rs |
+    exists(CustomReplaceableOperatorNew co, ReturnStmt rs |
       co.getNumberOfParameters() = 1 and
       rs.getEnclosingFunction() = co and
       rs.getExpr() = sink.asExpr()
@@ -47,7 +47,7 @@ query predicate problems(
   not isExcluded(e, getQuery()) and
   NullFlow::flowPath(source, sink) and
   sink.getNode().asExpr() = e.getExpr() and
-  exists(CustomOperatorNew op |
+  exists(CustomReplaceableOperatorNew op |
     message =
       op.getAllocDescription() + " may return null instead of throwing a std::bad_alloc exception."
   )
 
@@ -15,7 +15,7 @@ abstract class ThrowingOperatorNewThrowsInvalidExceptionSharedQuery extends Quer
 Query getQuery() { result instanceof ThrowingOperatorNewThrowsInvalidExceptionSharedQuery }
 
 class ThrowingCustomOperatorNew extends ExceptionThrowingFunction {
-  CustomOperatorNew op;
+  CustomReplaceableOperatorNew op;
 
   ThrowingCustomOperatorNew() {
     this = op and
 
@@ -0,0 +1,75 @@
+/**
+ * Provides models of functions in <memory> that deals with uninitialized memory.
+ */
+
+import cpp
+
+abstract class UninitializedMemoryManagementFunction extends Function {
+  UninitializedMemoryManagementFunction() {
+    this.getADeclarationLocation().getFile().getShortName() = "memory"
+  }
+}
+
+class UninitializedCopyFunction extends UninitializedMemoryManagementFunction {
+  UninitializedCopyFunction() { this.hasQualifiedName("std", "uninitialized_copy") }
+}
+
+class UninitializedCopyNFunction extends UninitializedMemoryManagementFunction {
+  UninitializedCopyNFunction() { this.hasQualifiedName("std", "uninitialized_copy_n") }
+}
+
+class UninitializedDefaultConstructFunction extends UninitializedMemoryManagementFunction {
+  UninitializedDefaultConstructFunction() {
+    this.hasQualifiedName("std", "uninitialized_default_construct")
+  }
+}
+
+class UninitializedDefaultConstructNFunction extends UninitializedMemoryManagementFunction {
+  UninitializedDefaultConstructNFunction() {
+    this.hasQualifiedName("std", "uninitialized_default_construct_n")
+  }
+}
+
+class UninitializedValueConstructFunction extends UninitializedMemoryManagementFunction {
+  UninitializedValueConstructFunction() {
+    this.hasQualifiedName("std", "uninitialized_value_construct")
+  }
+}
+
+class UninitializedValueConstructNFunction extends UninitializedMemoryManagementFunction {
+  UninitializedValueConstructNFunction() {
+    this.hasQualifiedName("std", "uninitialized_value_construct_n")
+  }
+}
+
+class UninitializedMoveFunction extends UninitializedMemoryManagementFunction {
+  UninitializedMoveFunction() { this.hasQualifiedName("std", "uninitialized_move") }
+}
+
+class UninitializedMoveNFunction extends UninitializedMemoryManagementFunction {
+  UninitializedMoveNFunction() { this.hasQualifiedName("std", "uninitialized_move_n") }
+}
+
+class UninitializedFillFunction extends UninitializedMemoryManagementFunction {
+  UninitializedFillFunction() { this.hasQualifiedName("std", "uninitialized_fill") }
+}
+
+class UninitializedFillNFunction extends UninitializedMemoryManagementFunction {
+  UninitializedFillNFunction() { this.hasQualifiedName("std", "uninitialized_fill_n") }
+}
+
+class DestroyFunction extends UninitializedMemoryManagementFunction {
+  DestroyFunction() { this.hasQualifiedName("std", "destroy") }
+}
+
+class DestroyNFunction extends UninitializedMemoryManagementFunction {
+  DestroyNFunction() { this.hasQualifiedName("std", "destroy_n") }
+}
+
+class DestroyAtFunction extends UninitializedMemoryManagementFunction {
+  DestroyAtFunction() { this.hasQualifiedName("std", "destroy_at") }
+}
+
+class LaunderFunction extends UninitializedMemoryManagementFunction {
+  LaunderFunction() { this.hasQualifiedName("std", "launder") }
+}
@@ -13,6 +13,9 @@ using ::atoll;
 using ::exit;
 using ::free;
 using ::malloc;
+using ::calloc;
+using ::realloc;
+using ::aligned_alloc;
 using ::quick_exit;
 using ::rand;
 using ::strtod;
 
@@ -89,10 +89,8 @@ template <class> class function;
 template <class R, class... Args> class function<R(Args...)> {
 public:
   function();
-  template <class F> function(F&& f) {
-    auto fptr = new F(std::forward<F>(f));
-  }
+  template <class F> function(F&& f);
   template <class F> function &operator=(F &&);
 };
 } // namespace std
-#endif
+#endif