Skip to content

sched/task: MISRA/Coverity cleanups in scheduler, init, libc spawn, and ARMv8-R IRQ helpers #18016

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
xiaoxiang781216 merged 7 commits into from
Jan 21, 2026
Merged

sched/task: MISRA/Coverity cleanups in scheduler, init, libc spawn, and ARMv8-R IRQ helpers #18016

xiaoxiang781216 merged 7 commits into from
Jan 21, 2026

Conversation

@fxysunshine
Copy link
Contributor

@fxysunshine fxysunshine commented Jan 19, 2026
edited
Loading

Summary

This PR addresses a small set of MISRA C:2012 and Coverity findings across NuttX core code.
The changes are focused on type-safety, initialization, and simplifying return paths without altering intended behavior.

Key updates:

  • Fix MISRA Rule 10.4 by using the proper enum type for g_nx_initstate.
  • Fix MISRA Rule 10.3 in ARMv8-R IRQ helpers by using unsigned constants (1u, ~1u) for bit operations.
  • Fix a Coverity uninitialized-field report by zero-initializing posix_spawnattr_t in posix_spawnattr_init().
  • Refactor several scheduler/task helpers to use a single return path (Coverity “RETURN” metric), improving readability and reducing early returns.

Impact

  • Functional impact: No intended functional change; these are compliance/quality fixes (type correctness, initialization, control-flow cleanup).
  • Affected areas:
    • Scheduler/task utilities (sched/task/*)
    • System init state (include/nuttx/init.h, sched/init/nx_start.c)
    • libc spawn attributes (libs/libc/spawn/lib_psa_init.c)
    • ARMv8-R IRQ helpers (arch/arm/include/armv8-r/irq.h)
  • Risk: Low. Changes are localized and primarily mechanical (types, constants, return-path refactors).

Testing

  • Environment:
    • Host: Linux
    • Build system: CMake
    • Configurations:
    • sim:nsh and qemu-armv7a:nsh
  • Steps:
  1. Configure and build sim:nsh (CMake):
    • cmake -B build -DBOARD_CONFIG=sim:nsh -GNinja
    • cmake --build build -j
  2. Configure and build qemu-armv7a:nsh (CMake):
    • cmake -B build -DBOARD_CONFIG=qemu-armv7a:nsh -GNinja
    • cmake --build build -j
  3. Boot and run NSH smoke checks:
    • Run help
    • Run ps ...
  • Results:
    • MISRA/Coverity: PASS (no new issues introduced; targeted findings addressed)
    • sim:nsh (CMake): PASS (build + NSH smoke)
    • qemu-armv7a:nsh (CMake): PASS (build + NSH smoke)

@fxysunshine
task_getpid.c:coverity HIS_metric_violation: RETURN
3e371e4 
Use a local ret variable and return once at the end.
This keeps the IDLE_PROCESS_ID fallback behavior unchanged.
Addresses Coverity HIS_metric_violation: RETURN.

Signed-off-by: fangxinyong <fangxinyong@xiaomi.com>
@fxysunshine
task_task_cancelpt.c:coverity HIS_metric_violation: RETURN
7bd6aad 
Replace early return with a ret flag to unify the exit path.
Keep critical section behavior unchanged while simplifying control flow.
Addresses Coverity HIS_metric_violation: RETURN.

Signed-off-by: fangxinyong <fangxinyong@xiaomi.com>
@fxysunshine
sched/task: task_spawnparms return path cleanup
38fc9a1 
Initialize ret and propagate scheduler/param errors via a single return.
Make spawn_file_is_duplicateable() decision explicit using a dup state.
Addresses Coverity HIS_metric_violation: RETURN.

Signed-off-by: fangxinyong <fangxinyong@xiaomi.com>
@fxysunshine
sched/task: task_setup return path cleanup
aa4e29e 
Refactor nxtask_setup_stackargs() to use a single ret exit path.
Avoid partially-initialized state on error paths and improve readability.
Addresses Coverity HIS_metric_violation: RETURN.

Signed-off-by: fangxinyong <fangxinyong@xiaomi.com>
@fxysunshine
arch/arm: armv8-r irq type-safe bit ops
7489789 
Use 1u/~1u constants for TPIDRPRW bit operations.
Avoid implicit conversion to a different underlying type (MISRA Rule 10.3).
No functional change to task pointer tagging logic.

Signed-off-by: fangxinyong <fangxinyong@xiaomi.com>
@fxysunshine
libs/libc: posix_spawnattr_init zero-initialize attr
c0488ab 
Zero-initialize posix_spawnattr_t in posix_spawnattr_init().
Prevent use of uninitialized fields reported by Coverity.
Preserve existing default flag initialization.

Signed-off-by: fangxinyong <fangxinyong@xiaomi.com>
@fxysunshine
sched/init: use enum type for g_nx_initstate
79151bb 
Change g_nx_initstate type from uint8_t to enum nx_initstate_e.
Avoid enum/integer base-type mismatch in init state comparisons.
Satisfies MISRA C:2012 Rule 10.4 without behavior change.

Signed-off-by: fangxinyong <fangxinyong@xiaomi.com>
@github-actions github-actions bot added Arch: arm Issues related to ARM (32-bit) architecture Area: OS Components OS Components issues Size: M The size of the change in this PR is medium labels Jan 19, 2026
anchao
anchao previously requested changes Jan 19, 2026
View reviewed changes
@jerpelea jerpelea changed the title MISRA/Coverity cleanups in scheduler, init, libc spawn, and ARMv8-R IRQ helpers sched/task: MISRA/Coverity cleanups in scheduler, init, libc spawn, and ARMv8-R IRQ helpers Jan 20, 2026
@xiaoxiang781216 xiaoxiang781216 merged commit cd95883 into apache:master Jan 21, 2026
40 checks passed
@fxysunshine fxysunshine deleted the misra-fixes-20260119 branch January 21, 2026 13:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@xiaoxiang781216 xiaoxiang781216 xiaoxiang781216 approved these changes

@acassis acassis acassis approved these changes

@jerpelea jerpelea jerpelea approved these changes

@pussuw pussuw Awaiting requested review from pussuw pussuw is a code owner

@GUIDINGLI GUIDINGLI Awaiting requested review from GUIDINGLI GUIDINGLI is a code owner

@Donny9 Donny9 Awaiting requested review from Donny9 Donny9 is a code owner

@pkarashchenko pkarashchenko Awaiting requested review from pkarashchenko pkarashchenko is a code owner

@gustavonihei gustavonihei Awaiting requested review from gustavonihei gustavonihei is a code owner

@anchao anchao Awaiting requested review from anchao anchao is a code owner

Assignees

No one assigned

Labels

Arch: arm Issues related to ARM (32-bit) architecture Area: OS Components OS Components issues Size: M The size of the change in this PR is medium

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@fxysunshine @acassis @anchao @jerpelea @xiaoxiang781216