Fix MQTT MISRA violations #993
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
muneebahmed10
force-pushed
the
misra-mqtt
branch
3 times, most recently
from
fe36abf to
e0d8c94
Compare
muneebahmed10
commented
Jun 11, 2020
Comment on lines
-29
to
+34
| #define bool signed char | ||
| #define false 0 | ||
| #define true 1 | ||
| #define bool int8_t | ||
| #define false ( int8_t ) 0 | ||
| #define true ( int8_t ) 1 |
There was a problem hiding this comment.
I think some wanted to get rid of our #define of bool, and others wanted to keep it. I don't believe there was a clear decision on that matter, and I don't think removing it is in scope for this PR. Note that due to the changes in this PR, removal (if desired) should be straightforward, just a search and replace of bool with the desired type, false with 0, and true with 1
muneebahmed10
force-pushed
the
misra-mqtt
branch
from
ca3c638 to
b693010
Compare
abhidixi11
reviewed
Jun 12, 2020
| * from a boolean), and keeping it results in a 10.5 violation (advisory, explicit cast). | ||
| * The violation can only be resolved if the variable is of a boolean type, which is | ||
| * not present in C89. */ | ||
| /* coverity[misra_c_2012_rule_10_5_violation] */ |
There was a problem hiding this comment.
We must avoid annotation, for the new library.
- Are we running Coverity in C99 mode ? because boolean expressions should evaluate to an integral value.
- What happens if bool is defined as int32_t ? Usually type of boolean expression is int ( which should be either int32_t )
- Other option is to change code as follows:
if( newState == MQTTPubAckPending )
{
isValid = true;
}
If there is no other way, then we should remove bool. Instead use BOOL / Bool something other than c99 bool.
There was a problem hiding this comment.
- I'm unsure what you mean by "C99 mode" but according to our cmake, we compile with
std=c89. If we compile with C99 instead, then this isn't a violation, since the types of these values are actually booleans and not whatever we define them as for C89. This is only a violation when using C89. - The same violation occurs whether we define bool as int32_t, uint32_t, uint8_t, etc. The issue is that MISRA considers the outputs of relational operators as "essentially boolean types", which is different from "essentially signed" or "essentially unsigned", and won't allow even explicit casts between them. Since there's no data type in C89 that's "essentially boolean", MISRA will complain if we store these values to a variable. So removing bool and replacing it with anything else will not help either.
- Yes, that is an option, however I was reluctant to do that earlier since it would greatly increase complexity of our functions due to increased nesting and lines of code, and they would have had to be split up in ways that didn't seem the most logical. However, I realized that instead of
ifs, we can just use? :instead, as that both solved the 10.5 issue and did not noticeably increase the complexity.
I reverted the annotation change and used the ternary operator instead
There was a problem hiding this comment.
Regarding #1 and #2 I thought in C89 / ANSI mode value of boolean should be int or "essentially signed". That's why I asked if Coverity is throwing that error because it sees bool which is c99 and considers it a data type. #3 was basically the same as you change, which avoid any casts. Your change looks good, approved. ( Just make sure ternary operator is not a problem MISRA )
abhidixi11
suggested changes
Jun 12, 2020
abhidixi11
approved these changes
Jun 12, 2020
muneebahmed10
force-pushed
the
misra-mqtt
branch
from
6bd8770 to
2feff0c
Compare
gkwicker
approved these changes
Jun 15, 2020
gkwicker
approved these changes
Jun 15, 2020
yourslab
pushed a commit
to yourslab/aws-iot-device-sdk-embedded-C
that referenced
this pull request
Jun 17, 2020
* Fix MQTT MISRA violations * Remove unnecessary const * Remove unused function * Fix string.h warning and add macro to disable logs * Use ternary for MISRA 10.5 * Remove TODO from logging header
leegeth
pushed a commit
to leegeth/aws-iot-device-sdk-embedded-C
that referenced
this pull request
Aug 27, 2020
* Fix MQTT MISRA violations * Remove unnecessary const * Remove unused function * Fix string.h warning and add macro to disable logs * Use ternary for MISRA 10.5 * Remove TODO from logging header
leegeth
pushed a commit
to leegeth/aws-iot-device-sdk-embedded-C
that referenced
this pull request
Aug 28, 2020
* Fix MQTT MISRA violations * Remove unnecessary const * Remove unused function * Fix string.h warning and add macro to disable logs * Use ternary for MISRA 10.5 * Remove TODO from logging header
leegeth
pushed a commit
to leegeth/aws-iot-device-sdk-embedded-C
that referenced
this pull request
Aug 31, 2020
* Fix MQTT MISRA violations * Remove unnecessary const * Remove unused function * Fix string.h warning and add macro to disable logs * Use ternary for MISRA 10.5 * Remove TODO from logging header
leegeth
pushed a commit
to leegeth/aws-iot-device-sdk-embedded-C
that referenced
this pull request
Sep 1, 2020
* Fix MQTT MISRA violations * Remove unnecessary const * Remove unused function * Fix string.h warning and add macro to disable logs * Use ternary for MISRA 10.5 * Remove TODO from logging header
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description of changes:
Fixes most MISRA violations in MQTT. The remaining violations with our current configuration are all 8.7 (External linkage for functions used in one translation unit), which is required for API functions. Note that the changes in commit "Remove useless const" aren't due to MISRA violations, we had just been adding const because we had them in v4_beta (due to other MISRA violations relating to function pointers). However, since C is pass by value I didn't find value in keeping them.
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.