Xen project Mailing List

Re: [XEN PATCH v2 12/13] xen/x86: fix violations of MISRA C:2012 Rule 7.2

To: Simone Ballarin <simone.ballarin@xxxxxxxxxxx>

Date: Fri, 7 Jul 2023 11:46:19 +0200

Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=suse.com; dmarc=pass action=none header.from=suse.com; dkim=pass header.d=suse.com; arc=none

Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=iovSgwMsl9qSueX0ei/pPybtYiazGAWYTp8thLiQ7z0=; b=IGuCy7ixwEHJz2xDsRvenUu856NNuFMcb4ViL4I0JfvBpEk2v+tDxP1ojDJ/SuBI9Xxh8TLNDg+R4HPDhoH8+9d1ed5z5rtHEBYjyQwkJd08KNDEVQ5UP59LAWKjn31XpAbiN25N8aWpM0pNfST69AZb76kvAJjAMaOnE3sGkw5MmiCNc1hSVL2Qmjd3UUhxKAxNz3CKqZSWEHpSr5HJ6PiayHUSadKyFzstj3TWa7QRniDF8wL7aTkZgLbLUw63tWD9NhzU6r5xpVZvqPzdJWzQvxMKJPCIPmG3dE/MskQg8+AaamMIG4UD8iEdez2MVVzW9O12D4RpsP3ewnYeUw==

Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=g3sMOCiqhA+R9XyvcUw5qVGIhvGgdQ6sRL5NWJ4ikzVHnARrl6FM8+QgKUmyS8zlHVUjpYMga/orJqioWyC7vYfvN4b8C892x0VLBEHfPN+iYSJ20PKolFbM/XpdjnVkSfQLVEE4ynKzDB9p7b1dY5+01mNZUl/NxU0hQlXt3if7D3XwiK9w9B/n31mSyAKhSocoE27rHDxG2zlf3xxJG/Ll834W3o5HwVAzZzY8SISZ73AjoZkdmkziZ6gSi+Va3UKpFZRAC14ki5d4ub8YKOFmLliFc3kNBjO2brOtfgksn0FDq+XtvOypCUH6/1n44jzSN97j/2RfzoJZp4ghWA==

Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=suse.com;

Cc: consulting@xxxxxxxxxxx, Gianluca Luparini <gianluca.luparini@xxxxxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, Paul Durrant <paul@xxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Michal Orzel <michal.orzel@xxxxxxx>, Xenia Ragiadakou <Xenia.Ragiadakou@xxxxxxx>, Ayan Kumar Halder <ayan.kumar.halder@xxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx

Delivery-date: Fri, 07 Jul 2023 09:47:06 +0000

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 07.07.2023 10:04, Simone Ballarin wrote: > Il giorno ven 7 lug 2023 alle ore 09:04 Jan Beulich <jbeulich@xxxxxxxx> ha > scritto: > >> On 07.07.2023 08:50, Simone Ballarin wrote: >>> Il giorno gio 6 lug 2023 alle ore 18:22 Jan Beulich <jbeulich@xxxxxxxx> >> ha >>> scritto: >>> >>>> On 06.07.2023 18:08, Simone Ballarin wrote: >>>>> Il giorno gio 6 lug 2023 alle ore 10:26 Jan Beulich <jbeulich@xxxxxxxx >>> >>>> ha >>>>> scritto: >>>>> >>>>>> On 05.07.2023 17:26, Simone Ballarin wrote: >>>>>>> --- a/xen/arch/x86/apic.c >>>>>>> +++ b/xen/arch/x86/apic.c >>>>>>> @@ -1211,7 +1211,7 @@ static void __init calibrate_APIC_clock(void) >>>>>>> * Setup the APIC counter to maximum. There is no way the lapic >>>>>>> * can underflow in the 100ms detection time frame. >>>>>>> */ >>>>>>> - __setup_APIC_LVTT(0xffffffff); >>>>>>> + __setup_APIC_LVTT(0xffffffffU); >>>>>> >>>>>> While making the change less mechanical, we want to consider to switch >>>>>> to ~0 in this and similar cases. >>>>>> >>>>> >>>>> Changing ~0U is more than not mechanical: it is possibly dangerous. >>>>> The resulting value could be different depending on the architecture, >>>>> I prefer to not make such kind of changes in a MISRA-related patch. >>>> >>>> What do you mean by "depending on the architecture", when this is >>>> x86-only code _and_ you can check what type parameter the called >>>> function has? >>> >>> Ok, I will change these literals in ~0U in the next submission. >> >> Except that I specifically meant ~0, not ~0U. We mean "maximum value" >> here, and at the call site it doesn't matter how wide the function >> parameter's type is. If it was 64-bit, ~0U would not do what is wanted. > > ~0 is not a MISRA-compliant solution since bitwise operations on signed > integers have implementation-defined behavior. This solution definitively > violates Rule 10.1. So if we adopted that rule (we didn't so far), we'd have to e.g. change all literal number shift counts to have U suffixes, no matter that without the suffix it is still entirely obvious that the numbers are unsigned? I'm afraid that'll face my opposition ... Jan

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.