sqc 0.4.13

Software Code Quality - CERT C compliance checker
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186

//! FIO39-C: Do not alternately input and output from a stream without an intervening flush or positioning call
//!
//! This rule detects alternating read/write operations on a stream without
//! an intervening fseek(), fflush(), fsetpos(), or rewind() call.
//!
//! The C Standard requires that input and output operations on update streams
//! be separated by a positioning or flush function, otherwise undefined behavior occurs.
//!
//! VIOLATIONS:
//! - fwrite() followed directly by fread() without fseek/fflush/fsetpos/rewind
//! - fread() followed directly by fwrite() without fseek/fflush/fsetpos/rewind
//! - fprintf() followed by fscanf() without intervening call
//!
//! COMPLIANT:
//! - fwrite() then fseek() then fread()
//! - fwrite() then fflush() then fread()
//! - fread() then fsetpos() then fwrite()

use super::super::{CertRule, RuleViolation};
use crate::manifest::{RuleCategory, Severity};
use crate::utility::cert_c::ast_utils::get_node_text;
use tree_sitter::Node;

pub struct Fio39C;

// Functions that perform output
const OUTPUT_FUNCTIONS: &[&str] = &[
    "fwrite", "fprintf", "fputs", "fputc", "putc", "fputwc", "putwc", "fputws",
];

// Functions that perform input
const INPUT_FUNCTIONS: &[&str] = &[
    "fread", "fscanf", "fgets", "fgetc", "getc", "fgetwc", "getwc", "fgetws", "ungetc", "ungetwc",
];

// Functions that reset the stream state (positioning/flush)
const POSITIONING_FUNCTIONS: &[&str] = &["fseek", "fflush", "fsetpos", "rewind"];

impl CertRule for Fio39C {
    fn rule_id(&self) -> &'static str {
        "FIO39-C"
    }

    fn description(&self) -> &'static str {
        "Do not alternately input and output from a stream without an intervening flush or positioning call"
    }

    fn severity(&self) -> Severity {
        Severity::Low
    }

    fn category(&self) -> RuleCategory {
        RuleCategory::Recommendation
    }

    fn cert_id(&self) -> &'static str {
        "FIO39-C"
    }

    fn check(&self, node: &Node, source: &str) -> Vec<RuleViolation> {
        let mut violations = Vec::new();
        self.check_function_body(node, source, &mut violations);
        violations
    }
}

impl Fio39C {
    fn check_function_body(&self, node: &Node, source: &str, violations: &mut Vec<RuleViolation>) {
        // Find function definitions and check their bodies
        if node.kind() == "function_definition" {
            if let Some(body) = node.child_by_field_name("body") {
                self.analyze_compound_statement(&body, source, violations);
            }
        }

        // Recurse into children
        for i in 0..node.child_count() {
            if let Some(child) = node.child(i) {
                self.check_function_body(&child, source, violations);
            }
        }
    }

    fn analyze_compound_statement(
        &self,
        node: &Node,
        source: &str,
        violations: &mut Vec<RuleViolation>,
    ) {
        // Track the last I/O operation type: None, Input, Output
        #[derive(Clone, Copy, PartialEq)]
        enum IoOp {
            None,
            Input,
            Output,
        }

        let mut last_op = IoOp::None;
        let mut _last_op_line = 0;
        let mut last_op_name = String::new();

        // Collect all call expressions in order
        let calls = self.collect_calls_in_order(node, source);

        for (func_name, line, col) in calls {
            if POSITIONING_FUNCTIONS.contains(&func_name.as_str()) {
                // Reset state - positioning/flush allows alternation
                last_op = IoOp::None;
            } else if OUTPUT_FUNCTIONS.contains(&func_name.as_str()) {
                if last_op == IoOp::Input {
                    // Output after input without intervening positioning
                    violations.push(RuleViolation {
                        rule_id: self.rule_id().to_string(),
                        severity: Severity::Low,
                        message: format!(
                            "Output function '{}' called after input function '{}' without intervening fseek/fflush/fsetpos/rewind",
                            func_name, last_op_name
                        ),
                        file_path: String::new(),
                        line,
                        column: col,
                        suggestion: Some(
                            "Add fseek(), fflush(), fsetpos(), or rewind() between input and output operations".to_string(),
                        ),
                        ..Default::default()
                    });
                }
                last_op = IoOp::Output;
                _last_op_line = line;
                last_op_name = func_name;
            } else if INPUT_FUNCTIONS.contains(&func_name.as_str()) {
                if last_op == IoOp::Output {
                    // Input after output without intervening positioning
                    violations.push(RuleViolation {
                        rule_id: self.rule_id().to_string(),
                        severity: Severity::Low,
                        message: format!(
                            "Input function '{}' called after output function '{}' without intervening fseek/fflush/fsetpos/rewind",
                            func_name, last_op_name
                        ),
                        file_path: String::new(),
                        line,
                        column: col,
                        suggestion: Some(
                            "Add fseek(), fflush(), fsetpos(), or rewind() between output and input operations".to_string(),
                        ),
                        ..Default::default()
                    });
                }
                last_op = IoOp::Input;
                _last_op_line = line;
                last_op_name = func_name;
            }
        }
    }

    fn collect_calls_in_order(&self, node: &Node, source: &str) -> Vec<(String, usize, usize)> {
        let mut calls = Vec::new();
        self.collect_calls_recursive(node, source, &mut calls);
        // Sort by line number to ensure correct order
        calls.sort_by_key(|c| (c.1, c.2));
        calls
    }

    fn collect_calls_recursive(
        &self,
        node: &Node,
        source: &str,
        calls: &mut Vec<(String, usize, usize)>,
    ) {
        if node.kind() == "call_expression" {
            if let Some(function) = node.child_by_field_name("function") {
                let func_name = get_node_text(&function, source);
                let pos = node.start_position();
                calls.push((func_name.to_string(), pos.row + 1, pos.column + 1));
            }
        }

        // Recurse into children
        for i in 0..node.child_count() {
            if let Some(child) = node.child(i) {
                self.collect_calls_recursive(&child, source, calls);
            }
        }
    }
}