Will clang frontend plan/accept misra check tools?

AndrewBanks · March 5, 2025, 10:10am

While I cannot speak for anyone that follows me, my understanding of the Rules is that, once placed into the Open Source space, it cannot be withdrawn…

You will also forgive me for spluttering at the term restrictive - I appreciate it’s a different world out here

AndrewBanks · March 5, 2025, 10:17am

What I said was that for another names open source tool we have placed the headlines under a CC NC ND. The NC was explicitly stated because said tool has a non-free (commercial, premium) version…

Other options are possibly available, subject to negotiation…

AndrewBanks · March 5, 2025, 10:22am

Also, please remember that the MISRA Guidelines are much more than just the headline text - the amplifications contain tweaks/clarifications (to keep headlines shorter) and there are exceptions, while the rationale and examples provide clarification.

This is most often evidenced by tool users not understanding why they are getting a violation (based on the headline) - when they’ve obviously not read the full guidance!

beanz · March 5, 2025, 1:57pm

I don’t know that the community wants to “negotiate” here. This is the LLVM license:

github.com/llvm/llvm-project

LICENSE.TXT

main

==============================================================================
The LLVM Project is under the Apache License v2.0 with LLVM Exceptions:
==============================================================================

                                 Apache License
                           Version 2.0, January 2004
                        http://www.apache.org/licenses/

    TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION

    1. Definitions.

      "License" shall mean the terms and conditions for use, reproduction,
      and distribution as defined by Sections 1 through 9 of this document.

      "Licensor" shall mean the copyright owner or entity authorized by
      the copyright owner that is granting the License.

      "Legal Entity" shall mean the union of the acting entity and all
      other entities that control, are controlled by, or are under common

This file has been truncated. show original

If MISRA wants to provide the headline text under the LLVM license terms, that makes the licensing side of things easy because we don’t need lawyers involved. If MISRA is not willing to do that, we would need a s strong urging from the community for the LLVM Foundation to pursue this further.

Endill · March 5, 2025, 1:58pm

I assumed the worst, but if it really works the way you describe, this helps with one of the concerns I have.

That’s fair. I used that word in literal sense, because CC-BY-NC-ND imposes additional restrictions compared to Apache 2.0 with LLVM exception, and some of them make it quite difficult for us, as outlined earlier in this thread.

I’m glad you chimed in on our forums. Now it’s clear who can be contacted on the MISRA side to start such negotiations.

carlosgalvezp · March 5, 2025, 2:53pm

The way I see it, the rule headlines are the least of our problems. clang-tidy can simply print the rule number without any restrictions or negotiations. A user of clang-tidy is expected to have the MISRA document if they want to get their code checked against it, to fully understand the rationale and exceptions to the rules (as mentioned before).

The real problem is getting access to the full MISRA document for LLVM contributors, to ensure code review can be done and the implementation and tests are correct.

The LLVM foundation could purchase the document (one-time payment) licensed up to X number of developers, and host it in a place that only contributors have access to. Of course, this greatly restricts the number of people that can develop MISRA checks. It’s slightly better than no-one being able to develop, though

AaronBallman · March 5, 2025, 3:59pm

I really appreciate @AndrewBanks coming here to discuss this with us! This kind of communication is really helpful to us.

That said, I’m not convinced that MISRA is actually workable with an open source contribution model, at least from what I’ve seen so far in the thread. The problems as I see them are (in no particular order):

There’s uncertainty around the license. We can likely work through that, but it involves the foundation lawyers doing the legwork, so we’d need some commitment that someone will actually develop the checks before we involve the lawyers.
Documenting the checks will be novel for us. We usually document what the checks are going to do, what options they have and why, and we may link to external resources to explain in more detail (C++ Core Guidelines, CERT, etc). We can’t really link anywhere for MISRA and we have to walk a fine line in terms of what we document. This potentially involves the foundation lawyers signing off on the documentation for each check.
We have never had checks which the community cannot freely validate the correctness of before. We could go through the foundation to handle the licensing, but that’s putting a burden on them to track who has access to what documents. Our community members come and go, so there’s additional complexity there.
Our community pays the development, review, and maintenance costs to ultimately produce additional sales for MISRA, while taking on not-insignificant legal risks.
There are no guarantees that the terms won’t be changed in the future (for better or for worse).

Basically, most of the concerns revolve around legal issues. None of this impossible for us to overcome, but it’s a lot of challenges and uncertainty for us.

@AndrewBanks is there a way MISRA can help remove these kinds of barriers? I’d like to support MISRA checks, but I’d only be comfortable doing so if there were fewer legal concerns, the guidelines were freely available to developers in our community for purposes of helping to develop and review checks, and/or MISRA could provide labor to sign off on things like check correctness and documentation suitability in any situation where license concerns may still apply (basically, indemnify us so we don’t have to worry about the legal concerns of releasing the checks to our users).

AndrewBanks · March 5, 2025, 8:12pm

Thanks

Let me raise this at MISRA Towers, and see what the feedback is…

Thanks to all the contributors to the discussion so far… I appreciate the concerns, but on the other hand, I have to be mindful of the views of the commercial entities that have funded MISRA development…

carlosgalvezp · May 6, 2025, 2:45pm

@AndrewBanks Are there any news in this area?

I can mention that it appears the MISRA C++:2023 Rule Texts seems to be publicly available, for example here:
https://se.mathworks.com/help/bugfinder/misra-cpp-2023-rules-and-directives.html

Since the “cat is already out of the bag”, can’t MISRA simply publish exactly that somewhere (Gitlab, MISRA webpage, etc)? I think that is enough documentation for us to be able to implement checks. Otherwise we would need to refer to the Matlab webpage which does not feel like a “source of truth”.

AndrewBanks · May 6, 2025, 3:06pm

I guess the TL;DR; answer is No

The proposal for a CC-BY-NC-ND file (as with other tools) was rejected as being too restrictive…

We have a meeting in July, where I can see what options we heve.

Topic		Replies	Views
[clang-tidy][RFC] Add Autosar C++14 clang-tidy module? Clang Frontend	14	407	September 5, 2024
[RFC] autocheck: A Source Code Analysis Tool based on Clang/LLVM for Automotive Clang Frontend clang , llvm	17	2417	February 13, 2025
Clang checkers for MISRA C/C++ compliance? Clang Frontend	2	176	July 27, 2014
RFC for AUTOSAR enforcement in clang-tidy/Static Analysis Clang Frontend	1	136	November 12, 2018
Open-Source Misra-C:2004 rule chcker Clang Frontend	0	180	December 4, 2016

Will clang frontend plan/accept misra check tools?

Related topics