StandardConversions: Handle aggregate initialization

Author: lcartey

cpp/misra/src/codingstandards/cpp/misra/StandardConversions.qll

@@ -168,6 +168,26 @@ predicate isAssignment(Expr source, NumericType targetType, string context) {
     targetType = switch.getExpr().getFullyConverted().getType() and
     context = "switch case"
   )
+  or
+  // Class aggregate literal initialization
+  exists(ClassAggregateLiteral al, Field f |
+    source = al.getAFieldExpr(f) and
+    context = "class aggregate literal"
+  |
+    // For the MISRA type rules we treat bit fields as a special case
+    if f instanceof BitField
+    then targetType = getBitFieldType(f)
+    else
+      // Regular variable initialization
+      targetType = f.getType()
+  )
+  or
+  // Array or vector aggregate literal initialization
+  exists(ArrayOrVectorAggregateLiteral vl |
+    source = vl.getAnElementExpr(_) and
+    targetType = vl.getElementType() and
+    context = "array or vector aggregate literal"
+  )
 }
 
 /**
@@ -200,9 +220,4 @@ CanonicalIntegerTypes getBitFieldType(BitField bf) {
 /**
  * Holds if the `source` expression is assigned to a bit field.
  */
-predicate isAssignedToBitfield(Expr source, BitField bf) {
-  exists(Assignment assign |
-    assign.getRValue() = source and
-    assign.getLValue() = bf.getAnAccess()
-  )
-}
+predicate isAssignedToBitfield(Expr source, BitField bf) { source = bf.getAnAssignedValue() }

cpp/misra/test/rules/RULE-7-0-6/NumericAssignmentTypeMismatch.expected

@@ -137,3 +137,36 @@
 | test.cpp:766:8:766:10 | 42 | Assignment between incompatible numeric types from 'long' to 'int32_t'. |
 | test.cpp:767:8:767:11 | 42 | Assignment between incompatible numeric types from 'long long' to 'int32_t'. |
 | test.cpp:768:8:768:10 | 42 | Assignment between incompatible numeric types from 'unsigned int' to 'int32_t'. |
+| test.cpp:786:22:786:24 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'uint8_t'. |
+| test.cpp:788:26:788:28 | u32 | Assignment between incompatible numeric types from 'uint32_t' to 'uint16_t'. |
+| test.cpp:790:31:790:33 | u32 | Assignment between incompatible numeric types from 'uint32_t' to 'int32_t'. |
+| test.cpp:792:22:792:24 | s32 | Assignment between incompatible numeric types from 'int32_t' to 'float'. |
+| test.cpp:795:22:795:24 | 256 | Assignment between incompatible numeric types from 'int' to 'uint8_t'. |
+| test.cpp:795:27:795:31 | 65536 | Assignment between incompatible numeric types from 'int' to 'uint16_t'. |
+| test.cpp:796:22:796:33 | 2147483648 | Assignment between incompatible numeric types from 'long long' to 'int32_t'. |
+| test.cpp:808:22:808:24 | 300 | Assignment between incompatible numeric types from 'int' to 'unsigned char'. |
+| test.cpp:808:27:808:29 | 400 | Assignment between incompatible numeric types from 'int' to 'unsigned char'. |
+| test.cpp:808:32:808:34 | 500 | Assignment between incompatible numeric types from 'int' to 'unsigned char'. |
+| test.cpp:809:22:809:23 | s8 | Assignment between incompatible numeric types from 'int8_t' to 'unsigned char'. |
+| test.cpp:809:26:809:27 | s8 | Assignment between incompatible numeric types from 'int8_t' to 'unsigned char'. |
+| test.cpp:809:30:809:31 | s8 | Assignment between incompatible numeric types from 'int8_t' to 'unsigned char'. |
+| test.cpp:810:22:810:24 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'unsigned char'. |
+| test.cpp:810:27:810:29 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'unsigned char'. |
+| test.cpp:810:32:810:34 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'unsigned char'. |
+| test.cpp:815:26:815:28 | s32 | Assignment between incompatible numeric types from 'int32_t' to 'signed short'. |
+| test.cpp:815:31:815:33 | s32 | Assignment between incompatible numeric types from 'int32_t' to 'signed short'. |
+| test.cpp:815:38:815:40 | s32 | Assignment between incompatible numeric types from 'int32_t' to 'signed short'. |
+| test.cpp:815:43:815:45 | s32 | Assignment between incompatible numeric types from 'int32_t' to 'signed short'. |
+| test.cpp:816:26:816:27 | u8 | Assignment between incompatible numeric types from 'uint8_t' to 'signed short'. |
+| test.cpp:816:30:816:31 | u8 | Assignment between incompatible numeric types from 'uint8_t' to 'signed short'. |
+| test.cpp:817:26:817:27 | u8 | Assignment between incompatible numeric types from 'uint8_t' to 'signed short'. |
+| test.cpp:817:30:817:31 | u8 | Assignment between incompatible numeric types from 'uint8_t' to 'signed short'. |
+| test.cpp:833:8:833:10 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'uint8_t'. |
+| test.cpp:837:7:837:9 | s32 | Assignment between incompatible numeric types from 'int32_t' to 'uint32_t'. |
+| test.cpp:853:24:853:26 | 300 | Assignment between incompatible numeric types from 'int' to 'unsigned char'. |
+| test.cpp:853:29:853:33 | 70000 | Assignment between incompatible numeric types from 'int' to 'unsigned short'. |
+| test.cpp:853:36:853:39 | 5000 | Assignment between incompatible numeric types from 'int32_t' to 'short'. |
+| test.cpp:854:24:854:26 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'unsigned char'. |
+| test.cpp:854:29:854:31 | u32 | Assignment between incompatible numeric types from 'uint32_t' to 'unsigned short'. |
+| test.cpp:854:34:854:36 | s32 | Assignment between incompatible numeric types from 'int32_t' to 'short'. |
+| test.cpp:864:28:864:30 | u16 | Assignment between incompatible numeric types from 'uint16_t' to 'uint8_t'. |

cpp/misra/test/rules/RULE-7-0-6/test.cpp

@@ -766,4 +766,103 @@ void test_user_defined_operators_constants() {
   l1 = 42L;  // NON_COMPLIANT
   l1 = 42LL; // NON_COMPLIANT
   l1 = 42U;  // NON_COMPLIANT
+}
+
+// Test aggregate initialization - struct with multiple members
+struct SimpleAggregate {
+  std::uint8_t m1;
+  std::uint16_t m2;
+  std::int32_t m3;
+  float m4;
+};
+
+void test_aggregate_initialization_basic() {
+  // Compliant cases - exact types or constants that fit
+  SimpleAggregate l1{42, 1000, -50, 3.14f};         // COMPLIANT
+  SimpleAggregate l2{u8, u16, s32, f};              // COMPLIANT
+  SimpleAggregate l3{255, 65535, 2147483647, 0.0f}; // COMPLIANT
+
+  // Non-compliant cases - type violations
+  SimpleAggregate l4{u16, u8, s32, // NON_COMPLIANT - narrowing u16 to uint8_t
+                     f};
+  SimpleAggregate l5{u8, u32, s32, // NON_COMPLIANT - narrowing u32 to uint16_t
+                     f};
+  SimpleAggregate l6{u8, u16, u32, f}; // NON_COMPLIANT - different signedness
+  SimpleAggregate l7{u8, u16, s32,
+                     s32}; // NON_COMPLIANT - different type category
+
+  // Constants that don't fit
+  SimpleAggregate l8{256, 65536,   // NON_COMPLIANT - constants don't fit
+                     2147483648LL, // NON_COMPLIANT - constants don't fit
+                     0.0f};
+
+  // Widening of id-expressions is allowed
+  SimpleAggregate l9{u8, u8, s8, f}; // COMPLIANT - widening allowed
+}
+
+// Test aggregate initialization - arrays
+void test_aggregate_initialization_arrays() {
+  // Basic arrays
+  std::uint8_t l1[3]{10, 20, 30};    // COMPLIANT
+  std::uint8_t l2[3]{u8, u8, u8};    // COMPLIANT
+  std::uint8_t l3[3]{300, 400, 500}; // NON_COMPLIANT - constants don't fit
+  std::uint8_t l4[3]{s8, s8, s8};    // NON_COMPLIANT - signedness mismatch
+  std::uint8_t l5[3]{u16, u16, u16}; // NON_COMPLIANT - narrowing
+
+  // Multi-dimensional arrays
+  std::int16_t l6[2][2]{{1, 2}, {3, 4}};         // COMPLIANT
+  std::int16_t l7[2][2]{{s8, s8}, {s8, s8}};     // COMPLIANT - widening allowed
+  std::int16_t l8[2][2]{{s32, s32}, {s32, s32}}; // NON_COMPLIANT - narrowing
+  std::int16_t l9[2][2]{{u8, u8},  // NON_COMPLIANT - signedness mismatch
+                        {u8, u8}}; // NON_COMPLIANT - signedness mismatch
+}
+
+// Test aggregate initialization - nested structs
+struct NestedAggregate {
+  SimpleAggregate m1;
+  std::uint32_t m2;
+};
+
+void test_aggregate_initialization_nested() {
+  // Compliant nested initialization
+  NestedAggregate l1{{10, 100, -5, 1.0f}, 500}; // COMPLIANT
+  NestedAggregate l2{{u8, u16, s32, f}, u32};   // COMPLIANT
+
+  // Non-compliant nested initialization
+  NestedAggregate l3{
+      {u16, u8, s32, f}, // NON_COMPLIANT - narrowing in nested struct
+      u32};
+  NestedAggregate l4{
+      {u8, u16, s32, f},
+      s32}; // NON_COMPLIANT - signedness mismatch in outer member
+}
+
+// Test aggregate initialization - struct with bit-fields
+struct BitfieldAggregate {
+  std::uint32_t m1 : 8;
+  std::uint32_t m2 : 16;
+  std::int32_t m3 : 12;
+};
+
+void test_aggregate_initialization_bitfields() {
+  // Compliant cases
+  BitfieldAggregate l1{100, 30000, -500}; // COMPLIANT
+  BitfieldAggregate l2{u8, u16, s16};     // COMPLIANT - appropriate sizes
+
+  // Non-compliant cases
+  BitfieldAggregate l3{300, 70000, 5000}; // NON_COMPLIANT - constants don't fit
+  BitfieldAggregate l4{u16, u32, s32};    // NON_COMPLIANT - narrowing
+}
+
+// Test aggregate initialization with designated initializers (C++20 feature,
+// but test for basic cases)
+void test_aggregate_initialization_designated() {
+  // Note: Designated initializers are C++20, but we can test basic aggregate
+  // init patterns
+  SimpleAggregate l1{.m1 = 10, .m2 = 100, .m3 = -5, .m4 = 1.0f}; // COMPLIANT
+  SimpleAggregate l2{.m1 = u8, .m2 = u16, .m3 = s32, .m4 = f};   // COMPLIANT
+  SimpleAggregate l3{.m1 = u16, // NON_COMPLIANT - type violation
+                     .m2 = u8,
+                     .m3 = s32,
+                     .m4 = f};
 }