C++: Use the loaded this instead of the this initialization

jketema · jketema · commit 740518d23fe6 · 2026-01-06T17:11:22.000+01:00
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/implementation/raw/internal/TranslatedExpr.qll b/cpp/ql/lib/semmle/code/cpp/ir/implementation/raw/internal/TranslatedExpr.qll
@@ -2679,7 +2679,7 @@ class TranslatedDestructorFieldDestruction extends TranslatedNonConstantExpr, St
   final override Instruction getInstructionRegisterOperand(InstructionTag tag, OperandTag operandTag) {
     tag = OnlyInstructionTag() and
     operandTag instanceof UnaryOperandTag and
-    result = getTranslatedFunction(getEnclosingFunction(expr)).getInitializeThisInstruction()
+    result = getTranslatedFunction(getEnclosingFunction(expr)).getLoadThisInstruction()
   }
 
   final override Field getInstructionField(InstructionTag tag) {
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/implementation/raw/internal/TranslatedFunction.qll b/cpp/ql/lib/semmle/code/cpp/ir/implementation/raw/internal/TranslatedFunction.qll
@@ -306,11 +306,11 @@ class TranslatedFunction extends TranslatedRootElement, TTranslatedFunction {
   final predicate hasReturnValue() { hasReturnValue(func) }
 
   /**
-   * Gets the single `InitializeThis` instruction for this function. Holds only
-   * if the function is an instance member function, constructor, or destructor.
+   * Gets the first load of `this` for this function. Holds only if the function
+   * is an instance member function, constructor, or destructor.
    */
-  final Instruction getInitializeThisInstruction() {
-    result = getTranslatedThisParameter(func).getInstruction(InitializerStoreTag())
+  final Instruction getLoadThisInstruction() {
+    result = getTranslatedThisParameter(func).getInstruction(InitializerIndirectAddressTag())
   }
 
   /**
@@ -639,7 +639,7 @@ class TranslatedConstructorInitList extends TranslatedElement, InitializationCon
   }
 
   override Instruction getTargetAddress() {
-    result = getTranslatedFunction(func).getInitializeThisInstruction()
+    result = getTranslatedFunction(func).getLoadThisInstruction()
   }
 
   override Type getTargetType() { result = getTranslatedFunction(func).getThisType() }
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/implementation/raw/internal/TranslatedInitialization.qll b/cpp/ql/lib/semmle/code/cpp/ir/implementation/raw/internal/TranslatedInitialization.qll
@@ -950,7 +950,7 @@ abstract class TranslatedBaseStructorCall extends TranslatedStructorCallFromStru
   final override Instruction getInstructionRegisterOperand(InstructionTag tag, OperandTag operandTag) {
     tag = OnlyInstructionTag() and
     operandTag instanceof UnaryOperandTag and
-    result = getTranslatedFunction(this.getFunction()).getInitializeThisInstruction()
+    result = getTranslatedFunction(this.getFunction()).getLoadThisInstruction()
   }
 
   final override predicate getInstructionInheritance(
@@ -1000,7 +1000,7 @@ class TranslatedConstructorDelegationInit extends TranslatedConstructorCallFromC
   }
 
   final override Instruction getReceiver() {
-    result = getTranslatedFunction(this.getFunction()).getInitializeThisInstruction()
+    result = getTranslatedFunction(this.getFunction()).getLoadThisInstruction()
   }
 }
 

Original file line number	Diff line number	Diff line change
`@@ -2679,7 +2679,7 @@ class TranslatedDestructorFieldDestruction extends TranslatedNonConstantExpr, St`
`2679`	`2679`	`final override Instruction getInstructionRegisterOperand(InstructionTag tag, OperandTag operandTag) {`
`2680`	`2680`	`tag = OnlyInstructionTag() and`
`2681`	`2681`	`operandTag instanceof UnaryOperandTag and`
`2682`		`- result = getTranslatedFunction(getEnclosingFunction(expr)).getInitializeThisInstruction()`
	`2682`	`+ result = getTranslatedFunction(getEnclosingFunction(expr)).getLoadThisInstruction()`
`2683`	`2683`	`}`
`2684`	`2684`
`2685`	`2685`	`final override Field getInstructionField(InstructionTag tag) {`
Original file line number	Diff line number	Diff line change
`@@ -950,7 +950,7 @@ abstract class TranslatedBaseStructorCall extends TranslatedStructorCallFromStru`
`950`	`950`	`final override Instruction getInstructionRegisterOperand(InstructionTag tag, OperandTag operandTag) {`
`951`	`951`	`tag = OnlyInstructionTag() and`
`952`	`952`	`operandTag instanceof UnaryOperandTag and`
`953`		`- result = getTranslatedFunction(this.getFunction()).getInitializeThisInstruction()`
	`953`	`+ result = getTranslatedFunction(this.getFunction()).getLoadThisInstruction()`
`954`	`954`	`}`
`955`	`955`
`956`	`956`	`final override predicate getInstructionInheritance(`
`@@ -1000,7 +1000,7 @@ class TranslatedConstructorDelegationInit extends TranslatedConstructorCallFromC`
`1000`	`1000`	`}`
`1001`	`1001`
`1002`	`1002`	`final override Instruction getReceiver() {`
`1003`		`- result = getTranslatedFunction(this.getFunction()).getInitializeThisInstruction()`
	`1003`	`+ result = getTranslatedFunction(this.getFunction()).getLoadThisInstruction()`
`1004`	`1004`	`}`
`1005`	`1005`	`}`
`1006`	`1006`