Merge pull request #4255 from MicrosoftDocs/main

5/2 AM Publishing

Author: v-alje

docs/atl-mfc-shared/allocating-and-releasing-memory-for-a-bstr.md

@@ -24,7 +24,7 @@ In general, the rules for allocating and releasing memory allocated for `BSTR`s
 
    [!code-cpp[NVC_ATLMFC_Utilities#195](../atl-mfc-shared/codesnippet/cpp/allocating-and-releasing-memory-for-a-bstr_4.cpp)]
 
-- When you implement a function that returns a `BSTR`, allocate the string but do not free it. The receiving the function releases the memory. For example:
+- When you implement a function that returns a `BSTR`, allocate the string but do not free it. The receiving function releases the memory. For example:
 
    [!code-cpp[NVC_ATLMFC_Utilities#196](../atl-mfc-shared/codesnippet/cpp/allocating-and-releasing-memory-for-a-bstr_5.cpp)]
 

docs/code-quality/c26455.md

@@ -1,13 +1,14 @@
 ---
-description: "Learn more about: C26455 DEFAULT_CTOR_NOEXCEPT"
-title: C26455
-ms.date: 12/14/2018
-ms.topic: "conceptual"
+description: "Learn more about the C26455 DEFAULT_CTOR_NOEXCEPT C++ Core Guidelines Checker warning. Default constructors shouldn't do anything that can throw."
+title: C26455 DEFAULT_CTOR_NOEXCEPT
+ms.date: 04/29/2022
+ms.topic: reference
 f1_keywords: ["C26455"]
 helpviewer_keywords: ["C26455"]
 ms.assetid: 27e86063-d969-49d8-8912-dcc2dc57249f
 author: kylereedmsft
 ms.author: kylereed
+ms.custom: kr2b-contr-experiment
 ---
 # C26455 DEFAULT_CTOR_NOEXCEPT
 

docs/code-quality/c26456.md

@@ -1,13 +1,14 @@
 ---
-description: "Learn more about: C26456 DONT_HIDE_OPERATORS"
-title: C26456
-ms.date: 12/14/2018
-ms.topic: "conceptual"
+description: "Learn more about the C26456 DONT_HIDE_OPERATORS C++ Core Guidelines Checker warning. Hiding base methods is error prone and makes code harder to read."
+title: C26456 DONT_HIDE_OPERATORS
+ms.date: 04/29/2022
+ms.topic: reference
 f1_keywords: ["C26456"]
 helpviewer_keywords: ["C26456"]
 ms.assetid: 3a3ad636-0938-40b5-93ce-169322e2ff23
 author: kylereedmsft
 ms.author: kylereed
+ms.custom: kr2b-contr-experiment
 ---
 # C26456 DONT_HIDE_OPERATORS
 

docs/code-quality/c26476.md

@@ -1,14 +1,16 @@
 ---
-description: "Learn more about: C26476 USE_VARIANT"
-title: C26476
-ms.date: 12/14/2018
-ms.topic: "conceptual"
+description: "Learn more about the C26476 USE_VARIANT C++ Core Guidelines Checker warning. Use a type-safe alternative to union, which is preferred in modern code."
+title: C26476 USE_VARIANT
+ms.date: 04/29/2022
+ms.topic: reference
 f1_keywords: ["C26476"]
 helpviewer_keywords: ["C26476"]
 ms.assetid: bb2b3b26-9a84-4d81-8bae-ad9a5577c8a6
 author: kylereedmsft
 ms.author: kylereed
+ms.custom: kr2b-contr-experiment
 ---
+
 # C26476 USE_VARIANT
 
 `std::variant` provides a type-safe alternative to `union` and should be preferred in modern code.

docs/code-quality/c26477.md

@@ -1,13 +1,14 @@
 ---
-description: "Learn more about: C26477 USE_NULLPTR_NOT_CONSTANT"
-title: C26477
-ms.date: 12/14/2018
-ms.topic: "conceptual"
+description: "Learn more about the C26477 USE_NULLPTR_NOT_CONSTANT C++ Core Guidelines Checker warning. The nullptr value allows overloads with special null handling."
+title: C26477 USE_NULLPTR_NOT_CONSTANT
+ms.date: 04/29/2022
+ms.topic: reference
 f1_keywords: ["C26477"]
 helpviewer_keywords: ["C26477"]
 ms.assetid: d5395efc-5eb2-4e82-9b45-fcd5ff4577bf
 author: kylereedmsft
 ms.author: kylereed
+ms.custom: kr2b-contr-experiment
 ---
 # C26477 USE_NULLPTR_NOT_CONSTANT
 

docs/code-quality/c26486.md

@@ -1,13 +1,14 @@
 ---
-description: "Learn more about: C26486 LIFETIMES_FUNCTION_PRECONDITION_VIOLATION"
-title: C26486
-ms.date: 12/14/2018
-ms.topic: "conceptual"
+description: "Learn more about the C26486 LIFETIMES_FUNCTION_PRECONDITION_VIOLATION C++ Core Guidelines Checker warning. Don't pass an invalid pointer as a parameter."
+title: C26486 LIFETIMES_FUNCTION_PRECONDITION_VIOLATION
+ms.date: 04/29/2022
+ms.topic: reference
 f1_keywords: ["C26486"]
 helpviewer_keywords: ["C26486"]
 ms.assetid: d5395efc-5eb2-4e82-9b45-fcd5ff4577bf
 author: kylereedmsft
 ms.author: kylereed
+ms.custom: kr2b-contr-experiment
 ---
 # C26486 LIFETIMES_FUNCTION_PRECONDITION_VIOLATION
 

docs/cpp/tutorial-named-modules-cpp.md

@@ -365,7 +365,7 @@ Module partitions make it easier to logically factor a large module. They can be
 
 ## Summary
 
-In this tutorial, you've been introduced t the basics of C++20 modules. You've created a primary module interface, defined a module partition, and built a module implementation file. These files factor the module and present an API to the files that import it.
+In this tutorial, you've been introduced to the basics of C++20 modules. You've created a primary module interface, defined a module partition, and built a module implementation file. These files factor the module and present an API to the files that import it.
 
 ## See also
 

docs/sanitizers/asan-error-examples.md

@@ -20,6 +20,8 @@ Each error example provides source code and compilation instructions for a comma
 
 - [Error: `calloc-overflow`](./error-calloc-overflow.md)
 
+- [Error: `container-overflow`](./error-container-overflow.md)
+
 - [Error: `double-free`](./error-double-free.md)
 
 - [Error: `dynamic-stack-buffer-overflow`](./error-dynamic-stack-buffer-overflow.md)

docs/sanitizers/asan-known-issues.md

@@ -1,7 +1,7 @@
 ---
 title: "AddressSanitizer known issues"
 description: "Technical description of the AddressSanitizer for Microsoft C/C++ known issues."
-ms.date: 03/02/2021
+ms.date: 04/15/2022
 helpviewer_keywords: ["AddressSanitizer known issues"]
 ---
 
@@ -26,9 +26,11 @@ These options and functionality are incompatible with [`/fsanitize=address`](../
 
 ## Standard library support
 
-The MSVC standard library (STL) isn't enlightened to understand the AddressSanitizer. AddressSanitizer exceptions raised in STL code do identify true bugs. However, they aren't as precise as they could be.
+The MSVC standard library (STL) is partially enlightened to understand the AddressSanitizer and provide additional checks. For more information, see [container-overflow error](./error-container-overflow.md).
 
-This example demonstrates the lack of precision:
+When annotations are disabled or in versions without support, AddressSanitizer exceptions raised in STL code do still identify true bugs. However, they aren't as precise as they could be.
+
+This example demonstrates the lack of precision and the benefits of enabling annotations:
 
 ```cpp
 // Compile with: cl /fsanitize=address /Zi
@@ -39,12 +41,14 @@ int main() {
     std::vector<int> v(10);
     v.reserve(20);
 
-    // Currently, MSVC ASan does NOT raise an exception here.
+    // In versions prior to 17.2, MSVC ASan does NOT raise an exception here.
     // While this is an out-of-bounds write to 'v', MSVC ASan
     // ensures the write is within the heap allocation size (20).
+    // With 17.2 and later, MSVC ASan will raise a 'container-overflow' exception:
+    // ==18364==ERROR: AddressSanitizer: container-overflow on address 0x1263cb8a0048 at pc 0x7ff6466411ab bp 0x005cf81ef7b0 sp 0x005cf81ef7b8
     v[10] = 1;
 
-    // MSVC ASan DOES raise an exception here, as this write
+    // Regardless of version, MSVC ASan DOES raise an exception here, as this write
     // is out of bounds from the heap allocation.
     v[20] = 1;
 }

docs/sanitizers/error-container-overflow.md

@@ -0,0 +1,71 @@
+---
+title: "Error: container-overflow"
+description: "Source examples and live debug screenshots for container overflow errors."
+ms.date: 04/15/2022
+f1_keywords: ["container-overflow", "mismatch detected for 'annotate_vector'", "_DISABLE_VECTOR_ANNOTATION"]
+helpviewer_keywords: ["container-overflow error", "AddressSanitizer error container-overflow", "mismatch detected for 'annotate_vector'", "_DISABLE_VECTOR_ANNOTATION"]
+---
+
+# Error: `container-overflow`
+
+> Address Sanitizer Error: Container overflow
+
+In Visual Studio 2022 version 17.2 and later, the MSVC standard library (STL) is partially enlightened to understand the AddressSanitizer. The following container types have inserted extra annotations to detect memory access issues:
+
+| Standard container type | Disable annotations macro | Supported in version |
+|--|--|--|
+| `std::vector` | `_DISABLE_VECTOR_ANNOTATION` | Visual Studio 2022 17.2 |
+
+When a standard type has annotations enabled, to avoid one-definition-rule (ODR) violations, each static library and object used to link the binary must also enable those annotations. Effectively, you must build those static libraries and objects with AddressSanitizer enabled. Mixing code with different annotation settings causes an error:
+
+```Output
+my_static.lib(my_code.obj) : error LNK2038: mismatch detected for 'annotate_vector': value '0' doesn't match value '1' in main.obj
+```
+
+To resolve this error, either disable annotations in all projects that use the corresponding macro, or build each project by using **`/fsanitize=address`** and annotations enabled. (Annotations are enabled by default.)
+
+## Example: Access reserved memory in a `std::vector`
+
+```cpp
+// Compile with: cl /EHsc /fsanitize=address /Zi
+#include <vector>
+
+int main() {   
+    // Create a vector of size 10, but with a capacity of 20.    
+    std::vector<int> v(10);
+    v.reserve(20);
+
+    // In versions prior to 17.2, MSVC ASan does NOT raise an exception here.
+    // While this is an out-of-bounds write to 'v', MSVC ASan
+    // ensures the write is within the heap allocation size (20).
+    // With 17.2 and later, MSVC ASan will raise a 'container-overflow' exception:
+    // ==18364==ERROR: AddressSanitizer: container-overflow on address 0x1263cb8a0048 at pc 0x7ff6466411ab bp 0x005cf81ef7b0 sp 0x005cf81ef7b8
+    v[10] = 1;
+
+    // Regardless of version, MSVC ASan DOES raise an exception here, as this write
+    // is out of bounds from the heap allocation.
+    v[20] = 1;
+}
+```
+
+To build and test this example, run the following commands in a Visual Studio 2022 version 17.2 or later [Developer command prompt](../build/building-on-the-command-line.md#developer_command_prompt_shortcuts) window:
+
+```cmd
+cl /EHsc example1.cpp /fsanitize=address /Zi
+devenv /debugexe example1.exe
+```
+
+### Error result of reserved memory access in a `std::vector`
+
+:::image type="content" source="media/container-overflow-example-1.png" alt-text="Screenshot of debugger displaying container-overflow error in example 1." lightbox="media/container-overflow-example-1.png":::
+
+## See also
+
+[AddressSanitizer overview](./asan.md)\
+[AddressSanitizer known issues](./asan-known-issues.md)\
+[AddressSanitizer build and language reference](./asan-building.md)\
+[AddressSanitizer runtime reference](./asan-runtime.md)\
+[AddressSanitizer shadow bytes](./asan-shadow-bytes.md)\
+[AddressSanitizer cloud or distributed testing](./asan-offline-crash-dumps.md)\
+[AddressSanitizer debugger integration](./asan-debugger-integration.md)\
+[AddressSanitizer error examples](./asan-error-examples.md)

docs/sanitizers/media/container-overflow-example-1.png

@@ -27,6 +27,8 @@ items:
           href: ../sanitizers/error-allocation-size-too-big.md
         - name: "calloc-overflow error"
           href: ../sanitizers/error-calloc-overflow.md
+        - name: "container-overflow error"
+          href: ../sanitizers/error-container-overflow.md
         - name: "double-free error"
           href: ../sanitizers/error-double-free.md
         - name: "dynamic-stack-buffer-overflow error"