MISRA Discussion Forums MISRA C MISRA C:2012 and MISRA C:2023 guidelines 8.11 Pointer type conversions
11.3 - char * to uint8_t *

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
11.3 - char * to uint8_t *
delta_controls Offline
Junior Member
**
Posts: 15
Threads: 4
Joined: Feb 2016
Reputation: 0
#1
27-04-2016, 11:05 AM
In the following example there is an implicit conversion from (char *) to (uint8_t *):

Code:
extern void print(const uint8_t *text);

int main(void)
{
    print("Some text");
}

Am I correct in thinking that this is compliant? Or does the exception to rule 11.3 only apply when conversions are explicit?

Thanks.
<t></t>
Find
Reply
delta_controls Offline
Junior Member
**
Posts: 15
Threads: 4
Joined: Feb 2016
Reputation: 0
#2
05-05-2016, 12:55 PM
Having given this more thought, I have realised that the example is not relevant to the rule, as casts are explicit conversions by definition.

My understanding is that there are no rules with which the example is non-compliant and the conversion is safe.
<t></t>
Find
Reply
delta_controls Offline
Junior Member
**
Posts: 15
Threads: 4
Joined: Feb 2016
Reputation: 0
#3
10-05-2016, 11:12 AM
This is due to a misinterpretation of Directive 4.6, which doesn't apply to data that are essentially character. In the example, plain char should have been used for the input parameter.
<t></t>
Find
Reply
delta_controls Offline
Junior Member
**
Posts: 15
Threads: 4
Joined: Feb 2016
Reputation: 0
#4
10-05-2016, 08:14 PM
The conversion in the example is actually a constraint violation and an explicit cast would be required. Rule 11.3 would then be satisfied by exception.
<t></t>
Find
Reply
misra-c Offline
Senior Member
****
Posts: 632
Threads: 18
Joined: Jan 2006
Reputation: 1
#5
20-05-2016, 11:47 AM
This response assumes that uint8_t is defined as "unsigned char".

Section 8.11 of the MISRA-C:2012 guidelines summarizes the implicit conversions that are permitted by the C language. The list of permitted implicit conversions does not include conversions from char* to unsigned char*. Therefore your example violates the constraints of the C language and hence is not compliant with rule 1.1 of the MISRA-C:2012 guidelines.

The example is also not compliant with rule 7.4, which states that "A string literal shall not be assigned to an object unless the object's type is "pointer to const-qualified char"". Assigned includes the implicit conversion that occur on passing an argument to a function.
Posted by and on behalf of the MISRA C Working Group
Find
Reply
delta_controls Offline
Junior Member
**
Posts: 15
Threads: 4
Joined: Feb 2016
Reputation: 0
#6
24-05-2016, 09:04 AM
Thanks for the response. To summarise, I think the following is correct:

Code:
extern void print1(const char *text);
extern void print2(const uint8_t *text);

int main(void)
{
    const char *txt = "Some text";
    
    print1("Some text");                // Compliant (preferred solution)
    print2((uint8_t *)"Some text");     // Compliant
    print2((uint8_t *)txt);             // Compliant
}
<t></t>
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)