[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH 1/2] docs/misra: introduce rules.rst

To: Stefano Stabellini <sstabellini@xxxxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx
From: Julien Grall <julien@xxxxxxx>
Date: Wed, 25 May 2022 08:39:18 +0100
Cc: andrew.cooper3@xxxxxxxxxx, jbeulich@xxxxxxxx, roger.pau@xxxxxxxxxx, Bertrand.Marquis@xxxxxxx, George.Dunlap@xxxxxxxxxx, Stefano Stabellini <stefano.stabellini@xxxxxxxxxx>
Delivery-date: Wed, 25 May 2022 07:39:32 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Hi Stefano,

On 25/05/2022 01:35, Stefano Stabellini wrote:

From: Stefano Stabellini <stefano.stabellini@xxxxxxxxxx>

Introduce a list of MISRA C rules that apply to the Xen hypervisor. The
list is in RST format.

Add a mention of the new list to CODING_STYLE.

Signed-off-by: Bertrand Marquis <bertrand.marquis@xxxxxxx>
Signed-off-by: Stefano Stabellini <stefano.stabellini@xxxxxxxxxx>

NIT: I was under the impression that the first Signed-off-by is usuallyauthor. But the From doesn't match.

---
  CODING_STYLE         |  6 ++++
  docs/misra/rules.rst | 65 ++++++++++++++++++++++++++++++++++++++++++++
  2 files changed, 71 insertions(+)
  create mode 100644 docs/misra/rules.rst

diff --git a/CODING_STYLE b/CODING_STYLE
index 9f50d9cec4..1ef35ee8d0 100644
--- a/CODING_STYLE
+++ b/CODING_STYLE
@@ -235,3 +235,9 @@ callstack between the initial function call and the 
failure, no error
  is returned.  Using domain_crash() requires careful inspection and
  documentation of the code to make sure all callers at the stack handle
  a newly-dead domain gracefully.
+
+MISRA C
+-------
+
+The Xen Project hypervisor follows the MISRA C coding rules and
+directives listed under docs/misra/rules.rst.
diff --git a/docs/misra/rules.rst b/docs/misra/rules.rst
new file mode 100644
index 0000000000..c0ee58ab25
--- /dev/null
+++ b/docs/misra/rules.rst
@@ -0,0 +1,65 @@
+=====================
+MISRA C rules for Xen
+=====================
+
+**IMPORTANT** All MISRA C rules, text, and examples are copyrighted by the
+MISRA Consortium Limited and used with permission.
+
+Please refer to https://www.misra.org.uk/ to obtain a copy of MISRA C, or for
+licensing options for other use of the rules.
+
+The following is the list of MISRA C rules that apply to the Xen Project
+hypervisor.

I was under the impression that we would still allow deviations on thoserules in some cases. In particular...

+
+- Rule: Dir 2.1
+  - Severity:  Required
+  - Summary:  All source files shall compile without any compilation errors
+  - Link:  
https://gitlab.com/MISRA/MISRA-C/MISRA-C-2012/Example-Suite/-/blob/master/D_02_01.c
+- Rule: Dir 4.7
+  - Severity:  Required
+  - Summary:  If a function returns error information then that error 
information shall be tested
+  - Link:  
https://gitlab.com/MISRA/MISRA-C/MISRA-C-2012/Example-Suite/-/blob/master/D_04_07.c

... this one. We are using (void) + a comment when the return is ignoredon purpose. This is technically not-compliant with MISRA but the best wecan do in some situation.

With your proposed wording, we would technically have to remove them (ornot introduce new one). So I think we need to document that we areallowing deviations so long they are commented.


Cheers,

--
Julien Grall

Follow-Ups:
- Re: [PATCH 1/2] docs/misra: introduce rules.rst
  - From: Stefano Stabellini

References:
- [PATCH 0/2] introduce docs/misra/rules.rst
  - From: Stefano Stabellini
- [PATCH 1/2] docs/misra: introduce rules.rst
  - From: Stefano Stabellini

Prev by Date: Re: [PATCH v2] x86/flushtlb: remove flush_area check on system state
Next by Date: Re: [PATCH 2/2] docs/misra: add Rule 5.1
Previous by thread: [PATCH 1/2] docs/misra: introduce rules.rst
Next by thread: Re: [PATCH 1/2] docs/misra: introduce rules.rst
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.