Skip to content

Fix RLC unsoundness with explicit @MustCallUnknown annotation #6994

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
kelloggm wants to merge 19 commits into
base: master
Choose a base branch
from
Open

Fix RLC unsoundness with explicit @MustCallUnknown annotation #6994

Show file tree
Hide file tree
Changes from 6 commits
Commits
Show all changes
19 commits
Select commit Hold shift + click to select a range
137224c
fix 6990
kelloggm Mar 20, 2025
6b2a991
Merge branch 'master' of https://github.com/typetools/checker-framewo…
kelloggm Mar 24, 2025
32e26b5
ignore excess warning on crash test
kelloggm Mar 24, 2025
aae6acd
annotations to remove false positives
kelloggm Mar 24, 2025
46a6d25
Merge branch 'master' of https://github.com/typetools/checker-framewo…
kelloggm Mar 25, 2025
0a8b1b9
Add Javadoc
mernst Mar 25, 2025
3ea4497
Merge branch 'master' into 6990
mernst Mar 25, 2025
e721baf
Merge branch 'master' of https://github.com/typetools/checker-framewo…
kelloggm Mar 26, 2025
7455157
Merge branch '6990' of github.com:kelloggm/checker-framework into 6990
kelloggm Mar 26, 2025
c6e6d94
Update checker/src/main/java/org/checkerframework/checker/initializat…
kelloggm Jul 18, 2025
5149197
Merge branch 'master' into 6990
kelloggm Jul 18, 2025
f1c4d32
Merge branch 'master' into 6990
kelloggm Jul 24, 2025
1116a40
Merge branch 'master' of https://github.com/typetools/checker-framewo…
kelloggm Jul 24, 2025
757062a
Merge branch '6990' of github.com:kelloggm/checker-framework into 6990
kelloggm Jul 24, 2025
0b0d74f
add suppressions and annotations to AFU
kelloggm Jul 24, 2025
43deefc
Merge ../checker-framework-branch-master into 6990
mernst Mar 3, 2026
ed45a17
Merge ../checker-framework-branch-master into 6990
mernst Mar 3, 2026
eeaba89
Merge ../checker-framework-branch-master into 6990
mernst Mar 4, 2026
4558806
Merge branch 'master' into 6990
mernst Apr 22, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
9 changes: 7 additions & 2 deletions checker/src/main/java/org/checkerframework/checker/initialization/InitializationStore.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,7 @@
import javax.lang.model.element.AnnotationMirror;
import javax.lang.model.element.Element;
import javax.lang.model.element.VariableElement;
import org.checkerframework.checker.mustcall.qual.MustCall;
import org.checkerframework.dataflow.cfg.node.MethodInvocationNode;
import org.checkerframework.dataflow.cfg.visualize.CFGVisualizer;
import org.checkerframework.dataflow.expression.ClassName;
Expand All @@ -28,10 +29,14 @@
* A store that extends {@code CFAbstractStore} and additionally tracks which fields of the 'self'
* reference have been initialized.
*
* @param <V> the type of values in the abstract store
* @param <S> the type of teh abstract store
Comment thread
kelloggm marked this conversation as resolved.
Outdated
* @see InitializationTransfer
*/
public class InitializationStore<V extends CFAbstractValue<V>, S extends InitializationStore<V, S>>
extends CFAbstractStore<V, S> {
public class InitializationStore<
V extends CFAbstractValue<@MustCall({}) V>,
S extends InitializationStore<@MustCall({}) V, @MustCall({}) S>>
extends CFAbstractStore<@MustCall({}) V, @MustCall({}) S> {

/** The set of fields that are initialized. */
protected final Set<VariableElement> initializedFields;
Expand Down
3 changes: 2 additions & 1 deletion ...ker/src/main/java/org/checkerframework/checker/initialization/InitializationTransfer.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,7 @@
import javax.lang.model.type.TypeKind;
import javax.lang.model.type.TypeMirror;
import javax.lang.model.util.ElementFilter;
import org.checkerframework.checker.mustcall.qual.MustCall;
import org.checkerframework.dataflow.analysis.RegularTransferResult;
import org.checkerframework.dataflow.analysis.TransferInput;
import org.checkerframework.dataflow.analysis.TransferResult;
Expand Down Expand Up @@ -56,7 +57,7 @@
public class InitializationTransfer<
V extends CFAbstractValue<V>,
T extends InitializationTransfer<V, T, S>,
S extends InitializationStore<V, S>>
S extends InitializationStore<@MustCall({}) V, @MustCall({}) S>>
Comment on lines 59 to +62
Copy link
Copy Markdown
Contributor

@coderabbitai coderabbitai Bot Apr 22, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Potential issue | 🟠 Major

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
# Description: Show the recursive value bounds in InitializationStore and InitializationTransfer.
# Expectation after the fix: both value bounds use CFAbstractValue<@MustCall({}) V>.

rg -n -C 3 'class Initialization(Store|Transfer)|V extends CFAbstractValue' \
  --iglob 'InitializationStore.java' \
  --iglob 'InitializationTransfer.java'

Repository: typetools/checker-framework

Length of output: 2234

Align V's bound with InitializationStore.

Line 62 passes @MustCall({}) V to InitializationStore, but line 60 binds V as CFAbstractValue<V> instead of CFAbstractValue<@MustCall({}) V>. Mirror InitializationStore's value bound to resolve the annotated type-argument mismatch.

Proposed fix 
 public class InitializationTransfer<
-        V extends CFAbstractValue<V>,
+        V extends CFAbstractValue<@MustCall({}) V>,
         T extends InitializationTransfer<V, T, S>,
         S extends InitializationStore<@MustCall({}) V, `@MustCall`({}) S>>
📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change
public class InitializationTransfer<
V extends CFAbstractValue<V>,
T extends InitializationTransfer<V, T, S>,
S extends InitializationStore<V, S>>
S extends InitializationStore<@MustCall({}) V, @MustCall({}) S>>
public class InitializationTransfer<
V extends CFAbstractValue<@MustCall({}) V>,
T extends InitializationTransfer<V, T, S>,
S extends InitializationStore<@MustCall({}) V, `@MustCall`({}) S>>
🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In
`@checker/src/main/java/org/checkerframework/checker/initialization/InitializationTransfer.java`
around lines 59 - 62, The generic type V in InitializationTransfer is bound as
CFAbstractValue<V> but InitializationStore is parameterized with `@MustCall`({})
V, causing an annotated type-argument mismatch; change V's bound to
CFAbstractValue<@MustCall({}) V> so the value type annotation matches
InitializationStore's value parameter (update the type parameter declaration on
class InitializationTransfer accordingly, keeping T and S as-is and preserving
references to InitializationStore and `@MustCall`).

extends CFAbstractTransfer<V, S, T> {

protected final InitializationAnnotatedTypeFactory<?, ?, ?, ?> atypeFactory;
Expand Down
6 changes: 4 additions & 2 deletions .../src/main/java/org/checkerframework/checker/resourceleak/MustCallConsistencyAnalyzer.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -352,7 +352,7 @@ public boolean derivedFromMustCallAlias() {
}

/**
* Gets the must-call type associated with the given resource alias, falling on back on the
* Gets the must-call type associated with the given resource alias, falling back on the
* declared type if there is no refined type for the alias in the store.
*
* @param alias a resource alias
Expand All @@ -366,7 +366,9 @@ private static AnnotationMirror getMustCallValue(
CFValue value = mcStore == null ? null : mcStore.getValue(reference);
if (value != null) {
AnnotationMirror result =
AnnotationUtils.getAnnotationByClass(value.getAnnotations(), MustCall.class);
mcAtf
.getQualifierHierarchy()
.findAnnotationInHierarchy(value.getAnnotations(), mcAtf.TOP);
if (result != null) {
return result;
}
Expand Down
1 change: 1 addition & 0 deletions checker/tests/ainfer-resourceleak/non-annotated/CrashForTempVar.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@
* Demonstrates an issue in the Checker Framework with handling the nearest enclosing element for
* temporary variable declarations, leading to a crash during analysis.
*/
@SuppressWarnings("all") // only check for crashes
public abstract class CrashForTempVar<T extends Number> {

private final CrashForTempVar<T> _base;
Expand Down
15 changes: 15 additions & 0 deletions checker/tests/resourceleak/DropOwning.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,15 @@
// test case for https://github.com/typetools/checker-framework/issues/6990

import java.io.Closeable;
import org.checkerframework.checker.mustcall.qual.MustCallUnknown;
import org.checkerframework.checker.mustcall.qual.Owning;

public class DropOwning {

public void f(@Owning Closeable resource) {
drop(resource);
}

// :: error: required.method.not.known
private void drop(@Owning @MustCallUnknown Object resourceCF6990) {}
}
Loading