Welcome to the MISRA discussion forum

Quote:MISRA-C rule 16.9 violation: [R] function calls with no parameters should have empty parentheses

Quote:MISRA-C rule 16.9 violation: [R] A function identifier shall only be used with either a preceding &, or with a parenthesised parameter list, which may be empty.

Quote:sm->fp_cur_state = &stm_Startup;
stateMachine.c 72 Warning 546: Suspicious use of &

Dear Misra Committee,

Going through the previous posts on the rule 13.5, I found an inconsistency between the answers given in:
1) http://www.misra.org.uk/forum/viewtopic.php?f=69&t=272
2) http://www.misra.org.uk/forum/viewtopic.php?f=69&t=874

In the first post, the following was posted:

Quote:...
Loop Control Variable is defined as any variable occurring in the first, second or third expressions.

Loop Counter is defined as a Loop Control Variable which is,
• Initialised in the first expression or Initialised prior to first expression;
• In the second expression, the operand of a relational operator (= ); Note (1)
• In the third expression, always incremented or decremented by a constant, or an expression which evaluates to the same value for the duration of the loop;
• Not modified in the body of the loop.
...
Note 1: The equality operators (==, !=) should not be used because termination of the loop may not occur.
...

I would like to ask for some help interpreting MISRA-C:2004. I have a few very simple examples. Please confirm whether my observations below are correct.

1)
#include
void main(void) {
char* string = "Hello World!";
int* result = string;
printf("Result: %d\n", *result);
}

This code is not MISRA-C:2004 compliant, because the implicit pointer conversion is not legal ANSI C. Thus, it violates rule 1.1. Is this observation correct?

2)
#include
void main(void) {
char* string = "Hello World!";
int* result = (int*)string;
printf("Result: %d\n", *result);
}

This code is MISRA-C:2004 compliant. However, the explicit type cast to int* is a violation of advisory rule 11.4. Is this observation correct?

3)
#include
void main(void) {
char* string = "Hello World!";
void* void_ptr = string;
int* result = void_ptr;
printf("Result: %d\n", *result);
}

This code is MISRA-C:2004 compliant. It also does not violate advisory rule 11.4. Is this observation correct?

4)
#include
void main(void) {
char* string = "Hello World!";
void* void_ptr = (void*)string;
int* result = void_ptr;
printf("Result: %d\n", *result);
}

This code is MISRA-C:2004 compliant. However, it now does violate advisory rule 11.4 due to the use of the type cast operator. Is this observation correct?

I do not see how 3) is better than alternative 2) or 4) above. Double casting through void pointers does not seem to be safe practice. It hides the conversion intent, so it makes the code harder to read.

I understand that the main reason for allowing conversions to void pointers is due to legacy reasons (i.e. writing data to memory). Seeing that 11.4 is advisory, would it not be better to refer to "conversions" between different pointers to object, rather than "casting"?

Hi,

I write you, because I can not understand the meaning of 045G MISRA AC SLSF. The doubt is this: the rule want there are no variables written when transitioning between any states, in any case (I think it is very strong as assertion). Or the rule is specific when you are using condition-action and transition-action (deviation from 043A MISRA AC SLSF) when transitioning between any states. Or is there another meaning for understanding this rule?
Could you give me more details about this rule?

Kind regards,
Stefania Botta.

Hello,
I want to use the Exemplar Suite for the validation of a static code analyzer. Is it allowed to use copies of some of the files in my validation documentation? The documentation is only for internal use.

Hello,
I found a reference on the internet yesterday that in '06 or '07 MISRA had created a technical report that helps an engineer classify controllability for ISO-26262. It also indicated that this report is free? I did look in the publications section but I didn't seem to find the technical report name that I found elsewhere on the internet. Could someone please provide some more detail on this report? I understand that the SAEJ2980 specification is in development but I can't wait for it at this time.


Regards,
Chad Haase

Hello,
The rule 15.0 that has been added in MISRA-C edition 2 as a required rule is not present in the MISRA AC AGC document.
Should it be ignored in the context of Auto Code?
If not, is it an OBL rule? a REC rule?
Regards,
G.Goulas.

Does the following code violate rule #19.13?

Hi,
Does rule #8.9 apply to objects/functions declared in 3rd party library code?

Thanks

Do the C++ guidelines stand on their own or do the C++ guidelines assume that the C guidelines are being followed as well? Our source code is a mixture of C and C++, but it is compiled using a C++ compiler. We are trying to determine which guideline(s) we need to acquire licenses for.