SONARJAVA-6039 Fix S2139 false positive when exception is wrapped in constructor call (#5545)

Co-authored-by: Vibe Bot <vibe-bot@sonarsource.com>

Author: sonar-nigel[bot]

its/autoscan/src/test/resources/autoscan/autoscan-diff-by-rules.json

@@ -914,7 +914,7 @@
   {
     "ruleKey": "S2139",
     "hasTruePositives": true,
-    "falseNegatives": 5,
+    "falseNegatives": 1,
     "falsePositives": 0
   },
   {

its/autoscan/src/test/resources/autoscan/diffs/diff_S2139.json

@@ -1,6 +1,6 @@
 {
   "ruleKey": "S2139",
   "hasTruePositives": true,
-  "falseNegatives": 5,
+  "falseNegatives": 1,
   "falsePositives": 0
-}
+}

its/ruling/src/test/resources/eclipse-jetty-similar-to-main/java-S2139.json

@@ -1,5 +1 @@
-{
-"org.eclipse.jetty:jetty-project:jetty-http/src/main/java/org/eclipse/jetty/http/HttpParser.java": [
-1070
-]
-}
+{}

its/ruling/src/test/resources/eclipse-jetty/java-S2139.json

@@ -1,20 +1,6 @@
 {
-"org.eclipse.jetty:jetty-project:jetty-http/src/main/java/org/eclipse/jetty/http/HttpParser.java": [
-1070
-],
-"org.eclipse.jetty:jetty-project:jetty-util/src/main/java/org/eclipse/jetty/util/resource/PathResource.java": [
-300
-],
-"org.eclipse.jetty:jetty-project:jetty-util/src/main/java/org/eclipse/jetty/util/security/CertificateValidator.java": [
-140,
-188,
-258
-],
 "org.eclipse.jetty:jetty-project:jetty-xml/src/main/java/org/eclipse/jetty/xml/XmlConfiguration.java": [
 484,
 1838
-],
-"org.eclipse.jetty:jetty-project:jetty-xml/src/main/java/org/eclipse/jetty/xml/XmlParser.java": [
-125
 ]
 }

java-checks-test-sources/default/src/main/java/checks/LoggedRethrownExceptionsCheckSample.java

@@ -15,12 +15,9 @@ public void foo() throws Exception {
     Logger logger = java.util.logging.Logger.getAnonymousLogger("");
     try {
       doSomething();
-    } catch (SQLException e) { // Noncompliant {{Either log this exception and handle it, or rethrow it with some contextual information.}}
-//           ^^^^^^^^^^^^^^
+    } catch (SQLException e) { // Compliant
       logger.log(Level.ALL, "", e);
-//    ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^<
       throw new MySQLException(contextInfo, e);
-//          ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^<
     }
 
     try {
@@ -32,14 +29,14 @@ public void foo() throws Exception {
 
     try {
       doSomething();
-    } catch (SQLException e) { // Noncompliant
+    } catch (SQLException e) { // Compliant
       logger.log(Level.ALL, "MyError: " + e);
       throw new MySQLException(contextInfo, e);
     }
 
     try {
       doSomething();
-    } catch (SQLException e) { // Noncompliant
+    } catch (SQLException e) { // Compliant
       logger.log(Level.ALL, e.getMessage());
       throw new MySQLException(contextInfo, e);
     }
@@ -54,84 +51,84 @@ public void foo() throws Exception {
 
     try {
       doSomething();
-    } catch (SQLException e) { // Noncompliant
+    } catch (SQLException e) { // Compliant
       logger.logp(Level.ALL, "foo", "bar", e.getMessage());
       throw new MySQLException(contextInfo, e);
     }
 
     try {
       doSomething();
-    } catch (SQLException e) { // Noncompliant
+    } catch (SQLException e) { // Compliant
       logger.logrb(Level.ALL, "foo", "bar", "", e.getMessage());
       throw new MySQLException(contextInfo, e);
     }
 
     try {
       doSomething();
-    } catch (SQLException e) { // Noncompliant
+    } catch (SQLException e) { // Compliant
       logger.config(e.getMessage());
       throw new MySQLException(contextInfo, e);
     }
 
     try {
       doSomething();
-    } catch (SQLException e) { // Noncompliant
+    } catch (SQLException e) { // Compliant
       logger.info(e.getMessage());
       throw new MySQLException(contextInfo, e);
     }
 
     try {
       doSomething();
-    } catch (SQLException e) { // Noncompliant
+    } catch (SQLException e) { // Compliant
       logger.throwing("foo", "bar", e);
       throw new MySQLException(contextInfo, e);
     }
 
     try {
       doSomething();
-    } catch (SQLException e) { // Noncompliant
+    } catch (SQLException e) { // Compliant
       logger.severe(e.getMessage());
       throw new MySQLException(contextInfo, e);
     }
 
     try {
       doSomething();
-    } catch (SQLException e) { // Noncompliant
+    } catch (SQLException e) { // Compliant
       logger.warning(e.getMessage());
       throw new MySQLException(contextInfo, e);
     }
 
     try {
       doSomething();
-    } catch (SQLException e) { // Noncompliant
+    } catch (SQLException e) { // Compliant
       slf4jLogger.debug(e.getMessage());
       throw new MySQLException(contextInfo, e);
     }
 
     try {
       doSomething();
-    } catch (SQLException e) { // Noncompliant
+    } catch (SQLException e) { // Compliant
       slf4jLogger.error(e.getMessage());
       throw new MySQLException(contextInfo, e);
     }
 
     try {
       doSomething();
-    } catch (SQLException e) { // Noncompliant
+    } catch (SQLException e) { // Compliant
       slf4jLogger.info(e.getMessage());
       throw new MySQLException(contextInfo, e);
     }
 
     try {
       doSomething();
-    } catch (SQLException e) { // Noncompliant
+    } catch (SQLException e) { // Compliant
       slf4jLogger.trace(e.getMessage());
       throw new MySQLException(contextInfo, e);
     }
 
     try {
       doSomething();
-    } catch (SQLException e) { // Noncompliant
+    } catch (SQLException e) { // Compliant
       slf4jLogger.warn(e.getMessage());
       throw new MySQLException(contextInfo, e);
     }
@@ -190,6 +187,41 @@ public void foo() throws Exception {
     } catch (SQLException e) { // Compliant
     }
 
+    try {
+      doSomething();
+    } catch (SQLException e) { // Noncompliant {{Either log this exception and handle it, or rethrow it with some contextual information.}}
+      logger.log(Level.ALL, "", e);
+      throw e;
+    }
+
+    try {
+      doSomething();
+    } catch (SQLException e) { // Noncompliant
+      logger.log(Level.ALL, "MyError: " + e);
+      throw e;
+    }
+
+    try {
+      doSomething();
+    } catch (SQLException e) { // Noncompliant
+      slf4jLogger.error(e.getMessage());
+      throw e;
+    }
+
+    try {
+      doSomething();
+    } catch (SQLException e) { // Noncompliant
+      logger.log(Level.ALL, "", e);
+      throw new SQLException("operation context", e);
+    }
+
+    try {
+      doSomething();
+    } catch (SQLException e) { // Compliant
+      logger.log(Level.ALL, "", e);
+      throw new RuntimeException("operation failed", e);
+    }
+
     Exception e1 = new Exception();
     logger.log(Level.ALL, "", logger); // Compliant, not inside catch
     throw new MySQLException(contextInfo, e1);

java-checks/src/main/java/org/sonar/java/checks/LoggedRethrownExceptionsCheck.java

@@ -28,6 +28,7 @@
 import org.sonar.plugins.java.api.tree.ExpressionTree;
 import org.sonar.plugins.java.api.tree.IdentifierTree;
 import org.sonar.plugins.java.api.tree.MethodInvocationTree;
+import org.sonar.plugins.java.api.tree.NewClassTree;
 import org.sonar.plugins.java.api.tree.StatementTree;
 import org.sonar.plugins.java.api.tree.ThrowStatementTree;
 import org.sonar.plugins.java.api.tree.Tree;
@@ -36,6 +37,7 @@
 
 @Rule(key = "S2139")
 public class LoggedRethrownExceptionsCheck extends IssuableSubscriptionVisitor {
+  private static final String MESSAGE = "Either log this exception and handle it, or rethrow it with some contextual information.";
   private static final String JAVA_UTIL_LOGGING_LOGGER = "java.util.logging.Logger";
   private static final String SLF4J_LOGGER = "org.slf4j.Logger";
   private static final MethodMatchers LOGGING_METHODS = MethodMatchers.or(
@@ -62,12 +64,13 @@ public void visitNode(Tree tree) {
     List<Location> secondaryLocations = new ArrayList<>();
     for (StatementTree statementTree : catchTree.block().body()) {
       IdentifierTree exceptionIdentifier = catchTree.parameter().simpleName();
-      if (isLogging && statementTree.is(Tree.Kind.THROW_STATEMENT) &&
-        isExceptionUsed(exceptionIdentifier, ((ThrowStatementTree) statementTree).expression())) {
-
-        secondaryLocations.add(new Location("Thrown exception.", ((ThrowStatementTree) statementTree).expression()));
-        reportIssue(catchTree.parameter(), "Either log this exception and handle it, or rethrow it with some contextual information.", secondaryLocations, 0);
-        return;
+      if (isLogging && statementTree.is(Tree.Kind.THROW_STATEMENT)) {
+        ExpressionTree thrown = ((ThrowStatementTree) statementTree).expression();
+        if ((!thrown.is(Tree.Kind.NEW_CLASS) || isSameExceptionType((NewClassTree) thrown, catchTree)) && isExceptionUsed(exceptionIdentifier, thrown)) {
+          secondaryLocations.add(new Location("Thrown exception.", thrown));
+          reportIssue(catchTree.parameter(), MESSAGE, secondaryLocations, 0);
+          return;
+        }
       }
       if (isLoggingMethod(statementTree, exceptionIdentifier)) {
         secondaryLocations.add(new Location("Logging statement.", statementTree));
@@ -76,6 +79,10 @@ public void visitNode(Tree tree) {
     }
   }
 
+  private static boolean isSameExceptionType(NewClassTree thrown, CatchTree catchTree) {
+    return thrown.symbolType().equals(catchTree.parameter().symbol().type());
+  }
+
   private static boolean isLoggingMethod(StatementTree statementTree, IdentifierTree exceptionIdentifier) {
     if (!statementTree.is(Tree.Kind.EXPRESSION_STATEMENT)) {
       return false;