Rule 7.0.6: Support pointer to member cases

 - Support assignment to pointer to members
 - Support pointer-to-member function calls

Author: lcartey

cpp/misra/src/codingstandards/cpp/misra/StandardConversions.qll

@@ -129,7 +129,13 @@ predicate isAssignment(Expr source, NumericType targetType, string context) {
         isAssignedToBitfield(source, bf) and
         targetType = getBitFieldType(bf)
       )
-    else targetType = assign.getLValue().getType()
+    else
+      exists(Type t | t = assign.getLValue().getType() |
+        // Unwrap PointerToMemberType e.g `l1.*l2 = x;`
+        if t instanceof PointerToMemberType
+        then targetType = t.(PointerToMemberType).getBaseType()
+        else targetType = t
+      )
   )
   or
   // Variable initialization
@@ -157,6 +163,22 @@ predicate isAssignment(Expr source, NumericType targetType, string context) {
     // Handle varargs - use the fully converted type of the argument
     call.getTarget().getNumberOfParameters() <= i and
     targetType = source.getFullyConverted().getType()
+    or
+    // A standard expression call
+    targetType = call.(ExprCall).getExpr().getType().(FunctionPointerIshType).getParameterType(i)
+    or
+    // An expression call using the pointer to member operator (.* or ->*)
+    // This special handling is required because we don't have a CodeQL class representing the call
+    // to a pointer to member function, but the right hand side is extracted as the -1 child of the
+    // call
+    targetType =
+      call.(ExprCall)
+          .getChild(-1)
+          .getType()
+          .(PointerToMemberType)
+          .getBaseType()
+          .(RoutineType)
+          .getParameterType(i)
   )
   or
   // Return statement

cpp/misra/test/rules/RULE-7-0-6/NumericAssignmentTypeMismatch.expected

@@ -170,6 +170,41 @@
 | test.cpp:854:29:854:31 | u32 | Assignment between incompatible numeric types from 'uint32_t' to 'unsigned short'. |
 | test.cpp:854:34:854:36 | s32 | Assignment between incompatible numeric types from 'int32_t' to 'short'. |
 | test.cpp:864:28:864:30 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'uint8_t'. |
+| test_member_pointers.cpp:25:12:25:14 | s64 | Assignment between incompatible numeric types from 'int64_t' to 'int32_t'. |
+| test_member_pointers.cpp:26:12:26:14 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'int32_t'. |
+| test_member_pointers.cpp:27:12:27:14 | u32 | Assignment between incompatible numeric types from 'uint32_t' to 'int32_t'. |
+| test_member_pointers.cpp:28:12:28:14 | u64 | Assignment between incompatible numeric types from 'uint64_t' to 'int32_t'. |
+| test_member_pointers.cpp:32:13:32:15 | s64 | Assignment between incompatible numeric types from 'int64_t' to 'int32_t'. |
+| test_member_pointers.cpp:33:13:33:15 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'int32_t'. |
+| test_member_pointers.cpp:34:13:34:15 | u32 | Assignment between incompatible numeric types from 'uint32_t' to 'int32_t'. |
+| test_member_pointers.cpp:35:13:35:15 | u64 | Assignment between incompatible numeric types from 'uint64_t' to 'int32_t'. |
+| test_member_pointers.cpp:42:12:42:14 | s64 | Assignment between incompatible numeric types from 'int64_t' to 'int32_t'. |
+| test_member_pointers.cpp:43:12:43:14 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'int32_t'. |
+| test_member_pointers.cpp:44:12:44:14 | u32 | Assignment between incompatible numeric types from 'uint32_t' to 'int32_t'. |
+| test_member_pointers.cpp:45:12:45:14 | u64 | Assignment between incompatible numeric types from 'uint64_t' to 'int32_t'. |
+| test_member_pointers.cpp:49:13:49:15 | s64 | Assignment between incompatible numeric types from 'int64_t' to 'int32_t'. |
+| test_member_pointers.cpp:50:13:50:15 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'int32_t'. |
+| test_member_pointers.cpp:51:13:51:15 | u32 | Assignment between incompatible numeric types from 'uint32_t' to 'int32_t'. |
+| test_member_pointers.cpp:52:13:52:15 | u64 | Assignment between incompatible numeric types from 'uint64_t' to 'int32_t'. |
+| test_member_pointers.cpp:58:11:58:13 | s16 | Assignment between incompatible numeric types from 'int16_t' to 'int32_t'. |
+| test_member_pointers.cpp:60:11:60:13 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'int32_t'. |
+| test_member_pointers.cpp:66:11:66:13 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'int32_t'. |
+| test_member_pointers.cpp:67:11:67:13 | u32 | Assignment between incompatible numeric types from 'uint32_t' to 'int32_t'. |
+| test_member_pointers.cpp:82:6:82:8 | s64 | Assignment between incompatible numeric types from 'int64_t' to 'int32_t'. |
+| test_member_pointers.cpp:83:6:83:8 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'int32_t'. |
+| test_member_pointers.cpp:84:6:84:8 | u32 | Assignment between incompatible numeric types from 'uint32_t' to 'int32_t'. |
+| test_member_pointers.cpp:85:6:85:8 | u64 | Assignment between incompatible numeric types from 'uint64_t' to 'int32_t'. |
+| test_member_pointers.cpp:90:6:90:8 | s64 | Assignment between incompatible numeric types from 'int64_t' to 'int32_t'. |
+| test_member_pointers.cpp:91:6:91:8 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'int32_t'. |
+| test_member_pointers.cpp:92:6:92:8 | u32 | Assignment between incompatible numeric types from 'uint32_t' to 'int32_t'. |
+| test_member_pointers.cpp:93:6:93:8 | u64 | Assignment between incompatible numeric types from 'uint64_t' to 'int32_t'. |
+| test_member_pointers.cpp:97:7:97:9 | s16 | Assignment between incompatible numeric types from 'int16_t' to 'int32_t'. |
+| test_member_pointers.cpp:100:7:100:9 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'int32_t'. |
+| test_member_pointers.cpp:106:41:106:43 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'int32_t'. |
+| test_member_pointers.cpp:107:41:107:43 | u32 | Assignment between incompatible numeric types from 'uint32_t' to 'int32_t'. |
+| test_member_pointers.cpp:125:12:125:14 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'int64_t'. |
+| test_member_pointers.cpp:126:12:126:14 | u32 | Assignment between incompatible numeric types from 'uint32_t' to 'int64_t'. |
+| test_member_pointers.cpp:127:12:127:14 | u64 | Assignment between incompatible numeric types from 'uint64_t' to 'int64_t'. |
 | test_specified.cpp:37:8:37:9 | l2 | Assignment between incompatible numeric types from 'uint16_t' to 'uint8_t'. |
 | test_specified.cpp:38:8:38:9 | l3 | Assignment between incompatible numeric types from 'uint32_t' to 'uint8_t'. |
 | test_specified.cpp:41:8:41:9 | l5 | Assignment between incompatible numeric types from 'int16_t' to 'int8_t'. |

cpp/misra/test/rules/RULE-7-0-6/test_member_pointers.cpp

@@ -0,0 +1,128 @@
+#include <cstdint>
+
+std::int16_t s16;
+std::uint16_t u16;
+std::int32_t s32;
+std::uint32_t u32;
+std::int64_t s64;
+std::uint64_t u64;
+
+struct MemberFunctionPointerTest {
+  void mf15(std::int32_t l1) {}
+  void mf15(std::uint32_t l1) {}
+  void mf16(std::int32_t l1) {}
+};
+
+void test_pointer_to_member_functions() {
+  MemberFunctionPointerTest l1;
+  MemberFunctionPointerTest *l6 = &l1;
+
+  // mf15 is overload independent when used as a member function pointer
+  void (MemberFunctionPointerTest::*l2)(std::int32_t) =
+      &MemberFunctionPointerTest::mf15;
+  (l1.*l2)(s16); // COMPLIANT - widening of id-expression
+  (l1.*l2)(s32); // COMPLIANT - type match
+  (l1.*l2)(s64); // NON_COMPLIANT - narrowing
+  (l1.*l2)(u16); // NON_COMPLIANT - wrong sign
+  (l1.*l2)(u32); // NON_COMPLIANT - wrong sign
+  (l1.*l2)(u64); // NON_COMPLIANT - wrong sign and narrowing
+
+  (l6->*l2)(s16); // COMPLIANT - is widening of id-expression
+  (l6->*l2)(s32); // COMPLIANT - type match
+  (l6->*l2)(s64); // NON_COMPLIANT - narrowing
+  (l6->*l2)(u16); // NON_COMPLIANT - wrong sign
+  (l6->*l2)(u32); // NON_COMPLIANT - wrong sign
+  (l6->*l2)(u64); // NON_COMPLIANT - wrong sign and narrowing
+
+  // mf16 is overload independent when used as a member function pointer
+  void (MemberFunctionPointerTest::*l3)(std::int32_t) =
+      &MemberFunctionPointerTest::mf16;
+  (l1.*l3)(s16); // COMPLIANT - widening of id-expression
+  (l1.*l3)(s32); // COMPLIANT - type match
+  (l1.*l3)(s64); // NON_COMPLIANT - narrowing
+  (l1.*l3)(u16); // NON_COMPLIANT - wrong sign
+  (l1.*l3)(u32); // NON_COMPLIANT - wrong sign
+  (l1.*l3)(u64); // NON_COMPLIANT - wrong sign and narrowing
+
+  (l6->*l3)(s16); // COMPLIANT - widening of id-expression
+  (l6->*l3)(s32); // COMPLIANT - type match
+  (l6->*l3)(s64); // NON_COMPLIANT - narrowing
+  (l6->*l3)(u16); // NON_COMPLIANT - wrong sign
+  (l6->*l3)(u32); // NON_COMPLIANT - wrong sign
+  (l6->*l3)(u64); // NON_COMPLIANT - wrong sign and narrowing
+
+  // Direct calls for comparison
+
+  // mf15 is not overload-independent, so it should only be compliant
+  // where an exact type of an overload is used
+  l1.mf15(s16); // NON_COMPLIANT - widening not allowed
+  l1.mf15(s32); // COMPLIANT - exact type match
+  l1.mf15(u16); // NON_COMPLIANT - widening not allowed
+  l1.mf15(u32); // COMPLIANT - exact type match
+
+  // A qualified call to mf16 is overload-independent
+  l1.mf16(s16); // COMPLIANT - widening of id-expression
+  l1.mf16(s32); // COMPLIANT - exact type match
+  l1.mf16(u16); // NON_COMPLIANT
+  l1.mf16(u32); // NON_COMPLIANT
+}
+
+// Test static member function pointers - should be overload-independent
+struct StaticMemberFunctionPointerTest {
+  static void mf19(std::int32_t l1) {}
+  static void mf19(std::uint32_t l1) {}
+  static void mf20(std::int32_t l1) {}
+};
+
+void test_static_member_function_pointers() {
+  // Static member function pointers - overload-independent
+  void (*l1)(std::int32_t) = &StaticMemberFunctionPointerTest::mf19;
+  l1(s16); // COMPLIANT - widening of id-expression
+  l1(s32); // COMPLIANT - type match
+  l1(s64); // NON_COMPLIANT - narrowing
+  l1(u16); // NON_COMPLIANT - wrong sign
+  l1(u32); // NON_COMPLIANT - wrong sign
+  l1(u64); // NON_COMPLIANT - wrong sign and narrowing
+
+  void (*l2)(std::int32_t) = &StaticMemberFunctionPointerTest::mf20;
+  l2(s16); // COMPLIANT - widening of id-expression
+  l2(s32); // COMPLIANT - type match
+  l2(s64); // NON_COMPLIANT - narrowing
+  l2(u16); // NON_COMPLIANT - wrong sign
+  l2(u32); // NON_COMPLIANT - wrong sign
+  l2(u64); // NON_COMPLIANT - wrong sign and narrowing
+
+  // Direct calls for comparison - not overload-independent
+  StaticMemberFunctionPointerTest::mf19(
+      s16); // NON_COMPLIANT - widening not allowed
+  StaticMemberFunctionPointerTest::mf19(s32); // COMPLIANT - exact type match
+  StaticMemberFunctionPointerTest::mf19(
+      u16); // NON_COMPLIANT - widening not allowed
+  StaticMemberFunctionPointerTest::mf19(u32); // COMPLIANT - exact type match
+
+  StaticMemberFunctionPointerTest::mf20(
+      s16); // COMPLIANT - widening of id-expression
+  StaticMemberFunctionPointerTest::mf20(s32); // COMPLIANT - exact type match
+  StaticMemberFunctionPointerTest::mf20(u16); // NON_COMPLIANT
+  StaticMemberFunctionPointerTest::mf20(u32); // NON_COMPLIANT
+}
+
+// Test member data pointers - not function calls, but test assignment to them
+struct MemberDataPointerTest {
+  std::int64_t m1;
+  std::int64_t m2 : 10;
+};
+
+void test_member_data_pointers() {
+  MemberDataPointerTest l1;
+
+  // Member data pointer assignments - follow normal assignment rules
+  std::int64_t MemberDataPointerTest::*l2 = &MemberDataPointerTest::m1;
+
+  l1.*l2 = s16; // COMPLIANT - widening conversion allowed
+  l1.*l2 = s32; // COMPLIANT - widening conversion allowed
+  l1.*l2 = s64; // COMPLIANT
+  l1.*l2 = u16; // NON_COMPLIANT - signedness violation
+  l1.*l2 = u32; // NON_COMPLIANT - different signedness/size
+  l1.*l2 = u64; // NON_COMPLIANT - different signedness
+}