[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [PATCH v1] misra: add deviation for rules 21.1 and 21.2
- To: Jan Beulich <jbeulich@xxxxxxxx>
- From: Nicola Vetrini <nicola.vetrini@xxxxxxxxxxx>
- Date: Mon, 28 Apr 2025 10:09:31 +0200
- Arc-authentication-results: i=1; bugseng.com; arc=none smtp.remote-ip=162.55.131.47
- Arc-message-signature: i=1; d=bugseng.com; s=openarc; a=rsa-sha256; c=relaxed/relaxed; t=1745827772; h=DKIM-Signature:MIME-Version:Date:From:To:Cc:Subject:In-Reply-To: References:Message-ID:X-Sender:Organization:Content-Type: Content-Transfer-Encoding; bh=5b9rIaHsBEMgET7/OtbvnYHK9PMh8spD8IAyFhEOSeI=; b=SOUQ5boc2VEPNH/6N3rkshlaIJpyolmdin9hi8VPHlPin+VHkGbZnKedKcnbE2jRteuL k725seoLbbeC7YOwqk0AbJX7dqwsRic5Z+Ew95HgH1GprWLCcehyvQ16Rqha9oIg24xd3 v6v9aoHOwevRBltEvnJufudmRrldlvIbMImAWoqa8/A+1woGtQ6j3+ffxvKIvA/8y5XtD QCH1AKFkOtFKImU7l40m5kLzcQJo3CJucT3HPHMMlP1MujMWgOca+2XByuYfU8yM6uqj4 +kUGbkUrhkAfUu5HzR6swg3yGzhW6sqvDYAxYmy94vwP99It8YxDO3txV62l4qkWdgQWM /xtdHYY9hZEEFs47bKt/7DC5xwCa9i0TbO9+otY7il4OABlfxj1VUoaEWg8t81U/UV70d xbPXuseRKNcrcPXaiZy8sXOi5getrMWwrWW+ZmrO/y+9kOFUPHc0KQVLMAESS5rpscn2t 27mlrdmpP6/ExcrN7rf5fosU17Kj19AE9wZ3IKzgrqKOOIDoa4UY2a7H0y+4SpkDjBI7d 4k4sqlk0tFcVzZG8+UDaVqLamGxO+eVTTiOctF13D2s2pT1g1pgUmZhbOvz4RPLWT8BGD MCSQdVD8DMKmmohnCEEmqVUUm4vSOZs2zVV0MJ9xjPnpd42kvqVqRWCCG+pSDV8=
- Arc-seal: i=1; d=bugseng.com; s=openarc; a=rsa-sha256; cv=none; t=1745827772; b=zIccB85bktTzSnPDowmOWN4MSfqDRx6HZLnohJgUMyCmeXEtKkSdZM2tZqNcB1bAQTR2 Ec3iEzQU1+QyczApt+A3zhKb/e2jPIRNVvDDAER9yqt8o20srMctpjc1SrvMEqDxookKj sg1Htp1ViK8kQXbxv80KvoA2yJYepJME01fMuV8vgJup+zk3OYVBRgTuoJ8OtBQqLkxNt 2EPYIKvAsbLcxgjFjD6E9oFtmsYNxgaumER9tOB8Gjtz3bx/tn22b6b86oc2dy2MffBwy FQci3F1GV3M89Cad4C86+a478WtD8wiRs2DlPyDIEIEGoRree9dHqcStmGBRNJEHY0Km9 y3GLGAVYc0SorMbmmPasnfnDXWBcZiUil2bExfz7XqQZtFi62aOI/inOf1Uffw+ob6ZEE tVkFemJwWZiiCiMy05NaieK/2pCZg/7SXcZZ2rNQPnwPa8eqoS+WhbpupLRqnZh//lWAi yZ+ZueaprsbeLd4EEOMgY66yWzZ2eUzVwhpPyGbV3HK/aqEMLgwEO69+K+45L/v+JoMXR eRCan+nCmcE4In8Smv9ddZxUpQpd3ck1sVoAvhleCe2dOAmlFASODelQUsg9C1rJbiFIm ORKSwcGHLJVlwrTGWVNFKPPOfH+2Ko0KQTeTlz8I0zvjgnY10YwMQp7Vq3l/Mlw=
- Authentication-results: bugseng.com; arc=none smtp.remote-ip=162.55.131.47
- Cc: Stefano Stabellini <sstabellini@xxxxxxxxxx>, victorm.lira@xxxxxxx, Federico Serafini <federico.serafini@xxxxxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Anthony PERARD <anthony.perard@xxxxxxxxxx>, Michal Orzel <michal.orzel@xxxxxxx>, Julien Grall <julien@xxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>, Bertrand Marquis <bertrand.marquis@xxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx
- Delivery-date: Mon, 28 Apr 2025 08:09:55 +0000
- List-id: Xen developer discussion <xen-devel.lists.xenproject.org>
On 2025-04-28 08:15, Jan Beulich wrote:
On 25.04.2025 17:53, Nicola Vetrini wrote:
On 2025-04-25 10:07, Jan Beulich wrote:
On 24.04.2025 23:45, Stefano Stabellini wrote:
On Thu, 24 Apr 2025, Jan Beulich wrote:
On 23.04.2025 19:54, victorm.lira@xxxxxxx wrote:
From: Nicola Vetrini <nicola.vetrini@xxxxxxxxxxx>
MISRA C Rules 21.1 ("#define and #undef shall not be used on a
reserved identifier or reserved macro name") and R21.2 ("A
reserved
identifier or reserved macro name shall not be declared")
violations
are not problematic for Xen, as it does not use the C or POSIX
libraries.
Xen uses -fno-builtin and -nostdinc to ensure this, but there are
still
__builtin_* functions from the compiler that are available so
a deviation is formulated for all identifiers not starting with
"__builtin_".
The missing text of a deviation for Rule 21.2 is added to
docs/misra/deviations.rst.
To avoid regressions, tag both rules as clean and add them to the
monitored set.
Signed-off-by: Nicola Vetrini <nicola.vetrini@xxxxxxxxxxx>
Signed-off-by: Federico Serafini <federico.serafini@xxxxxxxxxxx>
Signed-off-by: Victor Lira <victorm.lira@xxxxxxx>
While the rule is in the library section, ...
--- a/docs/misra/deviations.rst
+++ b/docs/misra/deviations.rst
@@ -587,7 +587,31 @@ Deviations related to MISRA C:2012 Rules:
construct is deviated only in Translation Units that
present
a violation
of the Rule due to uses of this macro.
- Tagged as `deliberate` for ECLAIR.
-
+
+ * - R21.1
+ - Rule 21.1 reports identifiers reserved for the C and POSIX
standard
+ libraries. Xen does not use such libraries and all
translation units
+ are compiled with option '-nostdinc', therefore there is
no
reason to
+ avoid to use `#define` or `#undef` on such identifiers
except for those
+ beginning with `__builtin_` for which compilers may
perform
(wrong)
+ optimizations.
+ - Tagged as `safe` for ECLAIR.
... I'd like to ask that it be explicitly clarified here that it's
solely
the library (and not e.g. the compiler itself) that are of concern
here.
The language can be clarified:
- Rule 21.1 reports identifiers reserved for the C and POSIX
standard
libraries. Xen does not use such libraries and all translation
units
are compiled with option '-nostdinc', therefore there is no reason
to
avoid to use `#define` or `#undef` on C and POSIX standard
libraries
identifiers except for those beginning with `__builtin_` for which
compilers may perform (wrong) optimizations.
Which makes it more apparent that there is a gap: What about e.g.
__x86_64__?
That falls within what the rules cover, is not a C or POSIX standard
library
identifier, yet very clearly must not be fiddled with. Whereas the
text
above deviates it.
that is true, even if unlikely: one approach could be to avoid
deviating
predefined macros for all CUs as -nostdinc and -fno-builtins should
take
care of the rest; this kind of deviation is not currently possible in
ECLAIR, but it might be in the future.
Is this perhaps because by "all pre-defined macros" you really mean
_just_
those, and not the entire reserved (for that purpose) sub-namespace?
Imo
we should not go by what a particular compiler may pre-define (we may
even
overlook something if we did it this way).
Jan
I think there is a slight misalignment here: maybe I'm interpreting your
answer incorrectly. Let me try to restate the proposal: the following
identifiers are not allowed to be #define'd or #undef'd:
- __builtin_*
- for each CU, all macro identifiers already defined upon preprocessing
that CU by the compiler invocation for that CU. This set of identifiers
is always a subset of all the reserved identifiers, but is also
dependent on the compiler invocation that is used for that CU, (e.g.
__x86_64__ for an Arm target is usually safe to define, as it's
typically not a predefined macro introduced by the compiler for that
invocation, while (re)defining __STDC_VERSION__ or __SIZEOF_INT__ will
be a violation in any command line I can think of). Note that this is
not a static set, but is based on what is determined to be predefined at
the moment of the analysis, so it is not tied to what a particular
compiler pre-defines.
I think this could be
accomplished also via some gcc trickery on each CU, though I'm not
sure
how valued that is for Xen.
--
Nicola Vetrini, B.Sc.
Software Engineer
BUGSENG (https://bugseng.com)
LinkedIn: https://www.linkedin.com/in/nicola-vetrini-a42471253
|
