sqc 0.4.13

Software Code Quality - CERT C compliance checker
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278

//! ARR02-C: Explicitly specify array bounds, even if implicitly defined by an initializer
//!
//! This rule detects array declarations where the bounds are implicitly defined
//! by the initializer rather than explicitly specified. While C allows omitting
//! array bounds when an initializer is present, explicit bounds improve code
//! clarity and prevent errors.
//!
//! # Violation Patterns
//!
//! ```c
//! int numbers[] = {1, 2, 3, 4, 5};  // VIOLATION: implicit bounds
//! char text[] = "Hello";            // VIOLATION: implicit bounds
//! int sparse[] = {[0] = 1, [5] = 42, [10] = 100};  // VIOLATION: designated initializers
//! ```
//!
//! # Compliant Solutions
//!
//! ```c
//! int numbers[5] = {1, 2, 3, 4, 5};  // OK: explicit bounds
//! char text[6] = "Hello";            // OK: explicit bounds
//! int sparse[11] = {[0] = 1, [5] = 42, [10] = 100};  // OK: explicit bounds
//! ```

use super::super::{CertRule, RuleViolation};
use crate::manifest::{RuleCategory, Severity};
use crate::utility::cert_c::ast_utils::get_node_text;
use tree_sitter::Node;

pub struct Arr02C;

impl CertRule for Arr02C {
    fn rule_id(&self) -> &'static str {
        "ARR02-C"
    }

    fn description(&self) -> &'static str {
        "Explicitly specify array bounds, even if implicitly defined by an initializer"
    }

    fn severity(&self) -> Severity {
        Severity::Medium
    }

    fn category(&self) -> RuleCategory {
        RuleCategory::Recommendation
    }

    fn cert_id(&self) -> &'static str {
        "ARR02-C"
    }

    fn check(&self, node: &Node, source: &str) -> Vec<RuleViolation> {
        let mut violations = Vec::new();
        self.check_declarations(node, source, &mut violations);
        violations
    }
}

impl Arr02C {
    /// Check if a declaration has an `extern` storage class specifier.
    fn has_extern_specifier(node: &Node, source: &str) -> bool {
        let mut cursor = node.walk();
        for child in node.children(&mut cursor) {
            if child.kind() == "storage_class_specifier" {
                let text = get_node_text(&child, source);
                if text == "extern" {
                    return true;
                }
            }
        }
        false
    }

    /// Check all declarations for implicit array bounds
    fn check_declarations(&self, node: &Node, source: &str, violations: &mut Vec<RuleViolation>) {
        // Only check declaration nodes
        if node.kind() == "declaration" {
            // Skip extern declarations — incomplete array types are permitted
            // by C11 §6.7.6.2 for extern declarations where size is defined
            // at the point of definition.
            if Self::has_extern_specifier(node, source) {
                for i in 0..node.child_count() {
                    if let Some(child) = node.child(i) {
                        self.check_declarations(&child, source, violations);
                    }
                }
                return;
            }

            // Check if this declaration has an initializer
            if let Some(declarator) = node.child_by_field_name("declarator") {
                self.check_declarator(&declarator, source, violations);
            }
        }

        // Recursively check all child nodes
        for i in 0..node.child_count() {
            if let Some(child) = node.child(i) {
                self.check_declarations(&child, source, violations);
            }
        }
    }

    /// Check a declarator for implicit array bounds
    fn check_declarator(&self, node: &Node, source: &str, violations: &mut Vec<RuleViolation>) {
        match node.kind() {
            "init_declarator" => {
                // This has an initializer, check the declarator part
                if let Some(declarator) = node.child_by_field_name("declarator") {
                    // Skip implicit bounds check when initializer is a string literal
                    // (or concatenated_string). const char name[] = "..." is standard C
                    // and the compiler determines the size from the initializer.
                    let has_string_init = node
                        .child_by_field_name("value")
                        .map(|v| v.kind() == "string_literal" || v.kind() == "concatenated_string")
                        .unwrap_or(false);

                    if !has_string_init {
                        self.check_array_declarator(&declarator, source, violations);
                    }

                    // Also check if initializer has too many elements
                    if let Some(value) = node.child_by_field_name("value") {
                        self.check_initializer_size(&declarator, &value, source, violations);
                    }
                }
            }
            "array_declarator" => {
                self.check_array_declarator(node, source, violations);
            }
            _ => {
                // Recursively check children
                for i in 0..node.child_count() {
                    if let Some(child) = node.child(i) {
                        self.check_declarator(&child, source, violations);
                    }
                }
            }
        }
    }

    /// Check if an array declarator has implicit bounds
    fn check_array_declarator(
        &self,
        node: &Node,
        source: &str,
        violations: &mut Vec<RuleViolation>,
    ) {
        if node.kind() == "array_declarator" {
            // Check if the size field is missing (implicit bounds)
            if node.child_by_field_name("size").is_none() {
                // Check if there's an empty bracket pair [] with no size
                let has_brackets = node
                    .children(&mut node.walk())
                    .any(|child| child.kind() == "[" || child.kind() == "]");

                if has_brackets {
                    let line = node.start_position().row + 1;
                    let column = node.start_position().column + 1;
                    let text = get_node_text(node, source);

                    violations.push(RuleViolation {
                        rule_id: self.rule_id().to_string(),
                        severity: self.severity(),
                        file_path: String::new(),
                        line,
                        column,
                        message: format!(
                            "Array declaration '{}' has implicit bounds; specify explicit size",
                            text
                        ),
                        suggestion: Some(
                            "Explicitly specify array bounds even when using an initializer"
                                .to_string(),
                        ),
                        requires_manual_review: None,
                    });
                }
            }

            // Also check nested declarators (for multi-dimensional arrays)
            if let Some(declarator) = node.child_by_field_name("declarator") {
                self.check_array_declarator(&declarator, source, violations);
            }
        }

        // Check children for nested array declarators
        for i in 0..node.child_count() {
            if let Some(child) = node.child(i) {
                if child.kind() == "array_declarator" {
                    self.check_array_declarator(&child, source, violations);
                }
            }
        }
    }

    /// Check if an initializer has too many elements for the declared array size
    fn check_initializer_size(
        &self,
        declarator: &Node,
        initializer: &Node,
        source: &str,
        violations: &mut Vec<RuleViolation>,
    ) {
        // Get the array size from the declarator
        if let Some(array_size) = self.extract_array_size(declarator, source) {
            // Count initializer elements
            if let Some(init_count) = self.count_initializer_elements(initializer) {
                if init_count > array_size {
                    let line = declarator.start_position().row + 1;
                    let column = declarator.start_position().column + 1;
                    let text = get_node_text(declarator, source);

                    violations.push(RuleViolation {
                        rule_id: self.rule_id().to_string(),
                        severity: self.severity(),
                        file_path: String::new(),
                        line,
                        column,
                        message: format!(
                            "Array '{}' of size {} has {} initializers (excess elements)",
                            text, array_size, init_count
                        ),
                        suggestion: Some(format!(
                            "Either increase array size to {} or reduce number of initializers",
                            init_count
                        )),
                        requires_manual_review: None,
                    });
                }
            }
        }
    }

    /// Extract the explicit size from an array declarator
    fn extract_array_size(&self, node: &Node, source: &str) -> Option<usize> {
        if node.kind() == "array_declarator" {
            if let Some(size_node) = node.child_by_field_name("size") {
                let size_text = get_node_text(&size_node, source);
                // Try to parse as integer
                if let Ok(size) = size_text.parse::<usize>() {
                    return Some(size);
                }
            }
        }
        None
    }

    /// Count the number of elements in an initializer list
    fn count_initializer_elements(&self, node: &Node) -> Option<usize> {
        if node.kind() == "initializer_list" {
            let mut count = 0;
            let mut cursor = node.walk();

            for child in node.children(&mut cursor) {
                match child.kind() {
                    // Count actual initializer expressions
                    "number_literal" | "string_literal" | "char_literal" | "identifier"
                    | "binary_expression" | "unary_expression" | "call_expression"
                    | "initializer_list" => {
                        count += 1;
                    }
                    // Ignore punctuation
                    "," | "{" | "}" => {}
                    // For other nodes, check if they're expressions
                    _ => {
                        if child.kind().contains("expression") {
                            count += 1;
                        }
                    }
                }
            }

            return Some(count);
        }
        None
    }
}