Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Misra standard for embedded software

Tags:

c

embedded

code-analysis

misra

I have a requirement to make a large amount of code MISRA compliant.
First question: Can somebody to give an estimation for passing well written code for embedded system based on experience. I understand that "well written" is poorly defined and vague so i ask for raw estimation.
Second question: Any recommendation for tool that can be customizable (i.e allowing suppress specific warnings) and used in automatic build environment (i.e command line interface)
Any other useful suggestions that can help with this task.
Thanks Ilya.

like image 742
Ilya Avatar asked Sep 15 '08 13:09

Ilya

People also ask

What is MISRA C in embedded system?

The MISRA C and MISRA C++ standards are a set of coding guidelines for the C and C++ programing languages that promote safety, security, and reliability in embedded system software.

What is the latest MISRA standard?

Today MISRA C is the de facto standard for developing software in C where safety, security and code quality are important. Future developments of MISRA C will continue to extend support for newer versions of the language, and additional language features.

What is the difference between MISRA C 2004 and 2012?

MISRA C:2012 was designed to: Add support for C99 while retaining support for C90. Correct issues found in the 2004 version. Provide backwards compatibility as much as possible to make it unnecessary to modify code when moving from MISRA C:2004 to MISRA C:2012.

What is the latest version of MISRA C?

The current version, MISRA C: 2012 (sometimes written as MISRA C 2012 or MISRA C2012), has evolved over several years, and Amendment 2 to MISRA C: 2012 was published in 2020. Amendment 3 is projected to be released in 2022. For the C++ programming language, the current MISRA standard is MISRA C++ 2008.

1 Answers

I also highly recommend PC-Lint. If you happen to be compiling your code with Visual Studio I recommend a plug-in 'Visual Lint' from Riverblade. If you cannot compile the code in Visual Studio, you can still run PC-Lint from the command line to good effect.

Some embedded system compilers provide MISRA compliance testing as compiler warnings. I use the IAR compiler for Arm7/Arm9 development. It provides an easy to configure MISRA compliance checklist right in the compiler setup.

It is difficult to come up with a rule of thumb for estimating the time it would take you to make some well written code MISRA compliant. A lot depends on the existing coding habits of the programmers and how closely they follow the MISRA rules in the first place.

Rough estimates:
2 - 3 days to become adept at PC-Lint usage.
Initial pass at making existing code MISRA compliant: 10 to 25 percent of the time spent writing the code in the first place.
Keeping code MISRA compliant: 5 to 10 percent added to code development. Half of this cost is changing the habits of your coders to follow the 'MISRA way' of doing things. The other half is the extra cost of code testing and inspection to ensure MISRA compliance.

like image 194
Darryl Buchanan Avatar answered Oct 11 '22 23:10

Darryl Buchanan
Sign in to Comment

Related questions

Displaying wide chars with printf
defining static const structs
In C Left shift (char) 0xFF by 8 and cast it to int
Can we use wmain() with Unix compilers or it'll work only on Windows?
What does (void**) mean in C?
C to assembly call convention 32bit vs 64bit
How will _Exit behave in a C++ program?
Intel SSE: Why does `_mm_extract_ps` return `int` instead of `float`?
Receive packet by packet data from TCP socket?
C naming suggestion for Error Code enums
Using assignment as a condition expression?
How to retrieve the user name from the user ID
How does fread know when the file is over in C?
How to hide text inside compiled C code?
How to negate (change sign) of the floating point elements in a __m128 type variable?
Why C and C++ hate signed char so much?
Where is linux shared memory actually located?
What makes SPI faster than I2C protocol [closed]
How to separate float into an integer and a fractional part?
Why can't we declare an array, say of int data type, of any size within the memory limit?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!