[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [XEN PATCH] x86/cpu-policy: justify a violation of MISRA C:2012 Rule 1.3

To: Jan Beulich <jbeulich@xxxxxxxx>
From: Nicola Vetrini <nicola.vetrini@xxxxxxxxxxx>
Date: Tue, 01 Aug 2023 15:50:38 +0200
Cc: sstabellini@xxxxxxxxxx, michal.orzel@xxxxxxx, xenia.ragiadakou@xxxxxxx, ayan.kumar.halder@xxxxxxx, consulting@xxxxxxxxxxx, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, George Dunlap <george.dunlap@xxxxxxxxxx>, Julien Grall <julien@xxxxxxx>, Wei Liu <wl@xxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx
Delivery-date: Tue, 01 Aug 2023 13:50:44 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 01/08/2023 15:40, Jan Beulich wrote:

On 01.08.2023 15:06, Nicola Vetrini wrote:
The empty feature set 'str_7c1' in 'tools/misc/xen-cpuid.c' causes the
struct declaration to have no named members, hence violating
Rule 1.3:
"There shall be no occurrence of undefined or critical unspecifiedbehaviour"
because it is forbidden by ISO/IEC 9899:1999(E), Section 6.7.2.1.7:
"If the struct-declaration-list contains no named
members, the behavior is undefined."
It has been assessed that the feature set declaration is intentionallyempty,and that no risk of undesired behaviour stems from it, hence thestruct
declaration is marked safe.

No functional changes.

Signed-off-by: Nicola Vetrini <nicola.vetrini@xxxxxxxxxxx>
---
As agreed during the MISRA C group meetings, this violation is dealt
with by means of a comment deviation, as future changes may eliminatethe
root cause, which is the empty feature set.
My justification for the claim and the commit message may need someadjusting.
A reference to the compiler extension would be nice; the use ofextensions
(which generally are well-defined, even if not always well-documented)
should eliminate the UB that the standard specifies.

It sure is a good idea to specify this. Since the use of this compilerextension is alreadydocumented in 'docs/misra/C-language-toolchain.rst' I can just add areference to that

in the justification.

--
Nicola Vetrini, BSc
Software Engineer, BUGSENG srl (https://bugseng.com)

References:
- [XEN PATCH] x86/cpu-policy: justify a violation of MISRA C:2012 Rule 1.3
  - From: Nicola Vetrini
- Re: [XEN PATCH] x86/cpu-policy: justify a violation of MISRA C:2012 Rule 1.3
  - From: Jan Beulich

Prev by Date: Re: [XEN PATCH] xen/spinlock: address violations of MISRA C:2012 Rules 8.2 and 8.3
Next by Date: Re: [PATCH 00/24] ALSA: Generic PCM copy ops using sockptr_t
Previous by thread: Re: [XEN PATCH] x86/cpu-policy: justify a violation of MISRA C:2012 Rule 1.3
Next by thread: Re: [PATCH 3/3] xen/ppc: Implement initial Radix MMU support
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.