forked from Leffmann/vbcc
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathmisra_errors.h
380 lines (222 loc) · 17.3 KB
/
misra_errors.h
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
/* Kapitel 1 */
1,1,"All code shall conform to ISO 9899:1990 \"Programming languages - Câ\", amended and "
"corrected by ISO/IEC 9899/COR1:1995, ISO/IEC 9899/AMD1:1995, and ISO/IEC 9899/COR2:1996.",MISRA|MISRA_2004,
1,2,"No reliance shall be placed on undefined or unspecified behaviour.",MISRA|MISRA_2004,
1,3,"Multiple compilers and/or languages shall only be used if there is a common defined "
"interface standard for object code to which the languages/compilers/assembler conforms",MISRA|MISRA_2004,
1,4,"The compiler/linker shall be checked to ensure that 31 character significance and "
"case sensitivity are supported for external identifiers",MISRA|MISRA_2004,
1,5,"Floating point implementations should comply with a defined floating-point standard",MISRA|MISRA_2004,
/* Kapitel 2 */
2,1,"Assembly language shall be encapsulated and isolated",MISRA|MISRA_2004,
2,2,"Source code shall only use /* ... */ style comments",MISRA|MISRA_2004,
2,3,"The character sequence /* shall not be used within a comment",MISRA|MISRA_2004,
2,4,"Sections of code should not be \"commented out\"",MISRA|MISRA_2004,
/* Kapitel 3 */
3,1,"All usage of implementation-defined behaviour shall be documented ",MISRA|MISRA_2004,
3,2,"The character set and corresponding encoding shall be documented",MISRA|MISRA_2004,
3,3,"The implementation of integer division in the chosen compiler should "
"be determined, documented and taken into account",MISRA|MISRA_2004,
3,4,"All use of the #pragma directive shall be documented and explained",MISRA|MISRA_2004,
3,5,"If it is being relied upon, the implementation-defined behaviour and "
"packing of bitfields shall be documented",MISRA|MISRA_2004,
3,6,"All libraries used in production code shall be written to comply with "
"the provisions of this document, and shall have been subject to appropriate validation",MISRA|MISRA_2004,
/* Kapitel 4 */
4,1,"Only those escape sequences that are defined in the ISO C standard shall be used",MISRA|MISRA_2004|MISRA_PREPROC,
4,2,"Trigraphs shall not be used",MISRA|MISRA_2004,
/* Kapitel 5*/
5,1,"Identifiers (internal and external) shall not rely on the significance "
"of more than 31 characters",MISRA|MISRA_2004,
5,2,"Identifiers in an inner scope shall not use the same name as an identifier "
"in an outer scope, and therefor hide that identifier",MISRA|MISRA_2004,
5,3,"A typedef name shall be a unique identifier",MISRA|MISRA_2004,
5,4,"A tag name shall be a unique identifier",MISRA|MISRA_2004,
5,5,"No object or function identifier with static storage duration should be reused",MISRA|MISRA_2004,
5,6,"No identifier in one name space should have the same spelling as an identifier "
"in another name space, with the exception of structure and union member names",MISRA|MISRA_2004,
5,7,"No identifier name should be reused",MISRA|MISRA_2004,
/* Kapitel 6 */
6,1,"The plain char type shall be used only for the storage and use of character values",MISRA|MISRA_2004,
6,2,"signed and unsigned char type shall be used only for the storage and use of numeric values",MISRA|MISRA_2004,
6,3,"typedefs that indicate size and signedness should be used in place of the basic types",MISRA|MISRA_2004,
6,4,"Bit fields shall only be defined to be of type unsigned int or signed int",MISRA|MISRA_2004,
6,5,"Bit fields of type signed int shall be at least 2 bit long",MISRA|MISRA_2004,
/* Kapitel 7 */
7,1,"Octal constants (other than zero) and octal escape sequences shall not be used",MISRA|MISRA_2004,
/* Kapitel 8 */
8,1,"Functions shall have prototype declaration and the prototype shall "
"be visible at both the function definition and call",MISRA|MISRA_2004,
8,2,"Whenever an object or function is declared or defined, its type shall "
"be explicitly stated",MISRA|MISRA_2004,
8,3,"For each function parameter the type given in the declaration and "
"definition shall be identical, and the return type shall also be identical",MISRA|MISRA_2004,
8,4,"If objects or functions are declared more than once their type shall be compatible",MISRA|MISRA_2004,
8,5,"There shall be no definition of objects or functions in a header file",MISRA|MISRA_2004,
8,6,"Functions shall be declared at file scope",MISRA|MISRA_2004,
8,7,"Objects shall be defined at block scope if they are only accessed from "
"within a single function",MISRA|MISRA_2004,
8,8,"An external object or function shall be declared in one and only one file",MISRA|MISRA_2004,
8,9,"An identifier with external linkage shall have excactly one external definition",MISRA|MISRA_2004,
8,10,"All declarations and definitions of objects and functions at file scope shall "
"have internal linkage unless external linkage is required",MISRA|MISRA_2004,
8,11,"The static storage class specifier shall be used in definitions and declarations "
"of objects and functions that have internal linkage",MISRA|MISRA_2004,
8,12,"When an array is declared with external linkage, its size shall be stated "
"or defined implicitly be initialisation",MISRA|MISRA_2004,
/* Kapitel 9 */
9,1,"All automatic variables shall have been assigned a value before being used",MISRA|MISRA_2004,
9,2,"Braces shall be used to indicate and match the structure in the non-zero "
"initialisation of arrays and structures",MISRA|MISRA_2004,
9,3,"In an enumerator list, the \"=\" construct shall not be used to explicitly "
"initialise members other than the first, unless all items are explicitly initialised",MISRA|MISRA_2004,
/* Kapitel 10 */
10,1,"The value of an expression of integer type shall not be implicitly converted to a different underlying type if: \n"
" a) it is not a conversion to a wider integer type of the same signedness, or\n"
" b) the expression is complex, or\n"
" c) the expression is not constant and is a function argument, or\n"
" d) the expression is not constant and is a return expression",MISRA|MISRA_2004,
10,2,"The value of an expression of floating type shall not be implicitly converted to a different type if:\n"
" a) it is not a conversion to a wider floating type, or\n"
" b) the expression is complex, or\n"
" c) the expression is a function argument, or\n"
" d) the expression is a return expression\n",MISRA|MISRA_2004,
10,3,"The value of a complex expression of integer type may only be cast "
"to a atype that is narrower and of the same signedness as the "
"underlying type of the expression",MISRA|MISRA_2004,
10,4,"The value of a complex expression of floating type may only be cast "
"to a narrower floating type",MISRA|MISRA_2004,
10,5,"If the bitwise operators ~ and << are applied to an operand of "
"underlying type unsigned char or unsigned short, the result "
"shall be immediately cast to the underlying type of the operand",MISRA|MISRA_2004,
10,6,"A \"U\" suffix shall be applied to all constants of unsigned type",MISRA|MISRA_2004,
/* Kapitel 11 */
11,1,"Conversions shall not be performed between a pointer to a function and any type "
"other than an integral type",MISRA|MISRA_2004,
11,2,"Conversions shall not be performed between a pointer to object and any type "
"other than an integral type, another pointer to object type or a pointer to void",MISRA|MISRA_2004,
11,3,"A cast should not be performed between a pointer type and an integral type",MISRA|MISRA_2004,
11,4,"A cast should not be performed between a pointer to object type and a "
"different pointer to object type.",MISRA|MISRA_2004,
11,5,"A cast shall not be performed that removes any const or volatile qualification "
"from the type addresses by a pointer",MISRA|MISRA_2004,
/* Kapitel 12 */
12,1,"Limited dependence should be placed on C's operator precedence rules in expressions",MISRA|MISRA_2004,
12,2,"The value of an expression shall be the same under any order of "
"evaluation that the standard permits",MISRA|MISRA_2004,
12,3,"The sizeof operator shall not be used on expressions that contain side effects",MISRA|MISRA_2004,
12,4,"The right-hand operand of a logical && or || operator shall not "
"contain side effects",MISRA|MISRA_2004,
12,5,"The operands of a logical && or || shall be primary-expressions",MISRA|MISRA_2004,
12,6,"The operands of logical operators (&&, || and !) should be effectively Boolean, "
"Expressions that are effectively Booleand should not be used as operands to "
"eperators other than(&&, || and !)",MISRA|MISRA_2004,
12,7,"Bitweise operators shall not be applied to operands whose underlying type is signed",MISRA|MISRA_2004,
12,8,"The right-hand operand of a shift operator shall lie between zero and one less "
"than the width in bits of ther underlying type of the left-hand operand.",MISRA|MISRA_2004,
12,9,"The unary minus operator shall not be applied to an expression whose underlying type is unsigned",MISRA|MISRA_2004,
12,10,"The comma operator shall not be used",MISRA|MISRA_2004,
12,11,"Evaluation of constant unsigned integer expressions should not lead to wrap-around",MISRA|MISRA_2004,
12,12,"The underlying bit representation of floating-point values shall not be used",MISRA|MISRA_2004,
12,13,"The increment (++) and decrement (--) operators should not be mixed with other "
"operators in an expression",MISRA|MISRA_2004,
/* Kapitel 13 */
13,1,"Assignment opetaors shall not be used in expressions that yield a Boolean value",MISRA|MISRA_2004,
13,2,"Tests of a value against zero should be made explicit, unless the operand is effectively Boolean",MISRA|MISRA_2004,
13,3,"Floating-point expressions shall not be tested for equality or inequality",MISRA|MISRA_2004,
13,4,"The controlling expression of a for statement shall not contain any objects of floating type.",MISRA|MISRA_2004,
13,5,"The three expressions of a for statement shall be concerned only with loop control",MISRA|MISRA_2004,
13,6,"Numeric variables being used within a for loop for iteration counting shall not be modified in the body of the loop",MISRA|MISRA_2004,
13,7,"Boolean operations whose results are invariant shall not be permitted",MISRA|MISRA_2004,
/* Kapitel 14 */
14,1,"There shall be no unreachable code",MISRA|MISRA_2004,
14,2,"All non-null statements shall either:\n"
" a) have at least one side-effect however executed, or\n"
" b) cause control flow to change",MISRA|MISRA_2004,
14,3,"Before preprocessing, a null statement shall only occur on a line by itself; it may be "
"followed by a comment provided that the first character following the null statement "
"is a white-space character.",MISRA|MISRA_2004,
14,4,"The goto statement shall not be used",MISRA|MISRA_2004,
14,5,"The continue statement shall not be used",MISRA|MISRA_2004,
14,6,"For any interation statement there shall be at most one braek statement used for loop termination",MISRA|MISRA_2004,
14,7,"A function shall have a single point of exit at the end of the function",MISRA|MISRA_2004,
14,8,"The statement forming the body of a switch, while, do ... while or for statement "
"shall be a compound statement",MISRA|MISRA_2004,
14,9,"An if (expression) construct shall be followed by a compound statement. The else "
"keyword shall be followed by either a compound statement, or another if statement",MISRA|MISRA_2004,
14,10,"All if ... else if constructs shall be terminated with an else clause",MISRA|MISRA_2004,
/* Kapitel 15 */
15,1,"A switch label shall only be used when the most closely-enclosing compound statement is the body of a switch statement",MISRA|MISRA_2004,
15,2,"An unconditional break statement shall terminate every non-empty switch clause",MISRA|MISRA_2004,
15,3,"The final clause of a switch statement shall be the default clause",MISRA|MISRA_2004,
15,4,"A Switch expression shall not represent a value that is effectively Boolean",MISRA|MISRA_2004,
15,5,"Every switch statement shall have at least one case clause",MISRA|MISRA_2004,
/* Kapitel 16 */
16,1,"Functions shall not be defined with a variable number of arguments",MISRA|MISRA_2004,
16,2,"Functions shall not call themselves, either directly or indirectly",MISRA|MISRA_2004,
16,3,"Identifiers shall be given for all of the parameters in a function prototype declaration",MISRA|MISRA_2004,
16,4,"The identifiers used in the declaration and definition of a function shall be identical",MISRA|MISRA_2004,
16,5,"Functions with no parameters shall be declared with parameter type void",MISRA|MISRA_2004,
16,6,"The number of arguments passed to a function shall match the number of parameters",MISRA|MISRA_2004,
16,7,"A pointer parameter in a function prototype should be declared as pointer to const "
"if the pointer is not used to modify the addressed object",MISRA|MISRA_2004,
16,8,"All exit paths from a function with non-void return type shall have an explicit "
"return statement with an expression",MISRA|MISRA_2004,
16,9,"A function identifier shall only be used with either a preceding &, or with a "
"parenthesised parameter list, which may be empty",MISRA|MISRA_2004,
16,10,"If a function returns error information, then that error information shall be tested",MISRA|MISRA_2004,
/* Kapitel 17 */
17,1,"Pointer arithmetic shall only be applied to pointers that address an array or array element",MISRA|MISRA_2004,
17,2,"Pointer subtraction shall only be apllied to pointers that address elements of the same array",MISRA|MISRA_2004,
17,3,">, >=, <, <= shall not be applied to pointer types except where they point to the same array",MISRA|MISRA_2004,
17,4,"Array indexing shall be the only allowed form of pointer arithmetic",MISRA|MISRA_2004,
17,5,"The declaration of objects should contain no more than 2 levels of pointer indirection",MISRA|MISRA_2004,
17,6,"The address of an object with automatic storage shall not be assigned to an other "
"object that may persist after the first object has ceased to exist",MISRA|MISRA_2004,
/* Kapitel 18 */
18,1,"All structure and union types shall be complete at the end of a translation unit",MISRA|MISRA_2004,
18,2,"An object shall not be assigned to an overlapping object",MISRA|MISRA_2004,
18,3,"An area of memory shall not be reused for unrelated purposes",MISRA|MISRA_2004,
18,4,"Unions shall not be used",MISRA|MISRA_2004,
/* Kapitel 19 */
19,1,"#include statements in a file should only be preceded by other preprocessor directives or comments",MISRA|MISRA_2004,
19,2,"Non-standard characters should not occur in header file names in #include directives",MISRA|MISRA_2004,
19,3,"The #include directive shall be followed by either a <filename> or \"filename\" sequence",MISRA|MISRA_2004,
19,4,"C macros shall only expand to a braced initialiser, a constant, a parenthesised "
"expression, a type qualifier, a storage class specifier, or a do-while-zero construct",MISRA|MISRA_2004,
19,5,"Macros shall not be #defined'd or #undef'd within a block",MISRA|MISRA_2004,
19,6,"#undef shall not be used",MISRA|MISRA_2004,
19,7,"A function should be used in preference to a function-like macro",MISRA|MISRA_2004,
19,8,"A function-like macro shall not be invoked without all of its arguments",MISRA|MISRA_2004,
19,9,"Arguments to a function-like macro shall not contain tokens that look like preprocessing directives",MISRA|MISRA_2004,
19,10,"In the definition of a function-like macro each instance of a parameter shall be enclosed "
"in parentheses unless it is used as the operand of # or ##",MISRA|MISRA_2004,
19,11,"All macro identifiers in preprocessor directives shall be defined before use, except "
"in #ifdef and #ifndef preprocessor directives and the defined() operator",MISRA|MISRA_2004,
19,12,"There shall be at most one occurrence of the # or ## preprocessor operators in a "
"single macro definition",MISRA|MISRA_2004,
19,13,"The # and ## preprocessor operators should not be used",MISRA|MISRA_2004,
19,14,"The defined preprocessor operator shall only be used in one of the two standard forms",MISRA|MISRA_2004,
19,15,"Precautions shall be taken in order to prevent the contents of a header file being included twice",MISRA|MISRA_2004,
19,16,"Preprocessing directives shall be syntactically meaningful even when excluded by the preprocessor",MISRA|MISRA_2004,
19,17,"All #else, #elif and #endif preprocessor directives shall reside in the same file as "
"the #if or #ifdef directive to which they are related",MISRA|MISRA_2004,
/* Kapitel 20 */
20,1,"Reserved identifiers, macros and functions in the standard library, shall not "
"be defined, redefined or undefined",MISRA|MISRA_2004,
20,2,"The names of standard library macros, objects and functions shall not be reused",MISRA|MISRA_2004,
20,3,"The validity of values passed to library functions shall be checked",MISRA|MISRA_2004,
20,4,"Dynamic heap memory allocation shall not be used",MISRA|MISRA_2004,
20,5,"The error indicator errno shall not be used",MISRA|MISRA_2004,
20,6,"The macro offsetof, in library <stddef.h>, shall not be used",MISRA|MISRA_2004,
20,7,"The setjmp macro and the longjmp function shall not be used",MISRA|MISRA_2004,
20,8,"The signal handling facilities of <signal.h> shall not be used",MISRA|MISRA_2004,
20,9,"The input/output library <stdio.h> shall not be used in production code",MISRA|MISRA_2004,
20,10,"The library functions atof, atoi and atol from library <stdlib.h> shall not be used",MISRA|MISRA_2004,
20,11,"The library functions abort, exit, getenv and system from library <stdlib.h> shall not be used.",MISRA|MISRA_2004,
20,12,"The time handling functions of library <time.h> shall not be used",MISRA|MISRA_2004,
/* Kapitel 21 */
21,1,"Minimisation of run-time failures shall be ensured by the use of at least one of:\n"
" a) static analysis tools/techniques\n"
" b) dynamic analysis tools/techniques\n"
" c) explicit coding of checks to handle run-time faults",MISRA|MISRA_2004,