Skip to content

Bazel compiler flags with tests #201

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Draft
wants to merge 20 commits into
base: main
Choose a base branch
from
Draft

Bazel compiler flags with tests #201

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
20 commits
Select commit Hold shift + click to select a range
8ba2a20
Add new file to collect GCC/LLVM compiler flags plus some methods to …
woodfell Sep 22, 2025
7728c48
Add support for warning level features to common toolchains
woodfell Aug 22, 2025
133d8ae
Add stack protector feature
woodfell Sep 23, 2025
f793ecb
Add new set of macros for creating targets
woodfell Sep 23, 2025
d5cdae5
Add script to validate targets
woodfell Sep 23, 2025
52be077
wip
woodfell Sep 24, 2025
be5e0f1
wip
woodfell Sep 24, 2025
9c0de50
fixes for link static and checktags
woodfell Sep 29, 2025
9651421
Update gcc-11 from system
woodfell Sep 29, 2025
00f3f8b
no-canonical-prefixes in gcc11
woodfell Sep 30, 2025
253fdc4
Fix test sources comparison
woodfell Sep 30, 2025
280555e
fix aptiv for definitely the last time now
woodfell Sep 30, 2025
1daad06
Don't know what this is but it isn't a problem
woodfell Oct 1, 2025
02144e3
Exclude test libraries from clang-tidy
woodfell Oct 3, 2025
e282f31
Fix stack_protector
martin4861 Oct 15, 2025
326dd1e
Comment out fatal-warnings for Mac clang14
martin4861 Oct 15, 2025
d2468a5
Implement aspect for checking_deps
martin4861 Oct 14, 2025
0fd2761
Merge remote-tracking branch 'origin/main' into martin4861/bazel-comp…
martin4861 Oct 21, 2025
eeead94
Merge remote-tracking branch 'origin/main' into martin4861/bazel-comp…
martin4861 Oct 24, 2025
60b7a42
Run buildifier
martin4861 Oct 24, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 2 additions & 2 deletions MODULE.bazel.lock
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

21 changes: 21 additions & 0 deletions cc/BUILD.bazel
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -29,6 +29,18 @@ config_setting(
visibility = ["//visibility:public"],
)

bool_flag(
name = "strong_stack_protector",
build_setting_default = False,
visibility = ["//visibility:public"],
)

config_setting(
name = "_strong_stack_protector",
flag_values = {":strong_stack_protector": "true"},
visibility = ["//visibility:public"],
)

# Enable warnings in tests for deprecated declarations with --@rules_swiftnav//cc:tests_warn_deprecated_declarations=true
bool_flag(
name = "tests_warn_deprecated_declarations",
Expand Down Expand Up @@ -215,3 +227,12 @@ py_binary(
],
visibility = ["//visibility:public"],
)

py_binary(
name = "checktags",
srcs = [
"checktags.py",
],
args = [],
visibility = ["//visibility:public"],
)
166 changes: 166 additions & 0 deletions cc/check_allowed_cc_deps.bzl
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,166 @@
"""Aspect to validate allowed C/C++ dependencies at build time.

This aspect enforces the dependency hierarchy based on tags:
- internal (level 0): Can depend on anything
- prod (level 1): Can depend on prod or safe only
- safe (level 2): Can depend on safe only

Additionally:
- portable targets can only depend on other portable targets
- Targets without level tags (including external dependencies) are ignored
"""

# Provider to carry dependency level information through the dependency graph
DependencyLevelInfo = provider(
"Information about a target's dependency level",
fields = {
"level": "Dependency level (0=internal, 1=prod, 2=safe, None=no level)",
"portable": "Whether the target is portable",
"label": "The target's label",
},
)

def _get_coding_level_from_tags(tags):
"""Extract coding standard level from tags.

Returns:
0 for internal, 1 for prod, 2 for safe, None if no level found
"""
if "internal" in tags:
return 0
if "prod" in tags:
return 1
if "safe" in tags:
return 2
return None

def _level_to_str(level):
"""Convert numeric level to string."""
if level == 0:
return "internal"
if level == 1:
return "prod"
if level == 2:
return "safe"
return "unknown"

def _is_portable(tags):
"""Check if target is marked as portable."""
return "portable" in tags

def _check_allowed_cc_deps_impl(target, ctx):
"""Aspect implementation to check allowed C/C++ dependencies."""

# Skip non-C/C++ targets
if not CcInfo in target:
return []

# Skip if this is not a rule (e.g., a source file)
if not hasattr(ctx.rule, "attr"):
return []

# Get the current target's tags
current_tags = getattr(ctx.rule.attr, "tags", [])
current_level = _get_coding_level_from_tags(current_tags)
current_portable = _is_portable(current_tags)
label_str = str(target.label)

# If target has no dependency level, skip validation
# This includes external dependencies, test libraries, and other untagged targets
if current_level == None:
# Check if it's a test target - tests are implicitly internal (level 0)
if "test" in current_tags or "test_library" in current_tags:
current_level = 0
else:
# Return provider indicating no level (external deps, untagged targets, etc.)
return [DependencyLevelInfo(
level = None,
portable = current_portable,
label = label_str,
)]

# Check dependencies
deps = getattr(ctx.rule.attr, "deps", [])

for dep in deps:
# Get dependency level info from dependency via provider
if not DependencyLevelInfo in dep:
# Dependency doesn't have dependency level info - skip it
continue

dep_info = dep[DependencyLevelInfo]
dep_level = dep_info.level
dep_portable = dep_info.portable

# If dependency has no level, skip validation
# This handles external dependencies and untagged targets
if dep_level == None:
continue

# Check dependency level hierarchy
if dep_level < current_level:
error_msg = ("ERROR: Target {} (level={}) cannot depend on {} (level={}). " +
"Higher level targets can only depend on same or higher level targets.").format(
target.label,
_level_to_str(current_level),
dep_info.label,
_level_to_str(dep_level),
)
fail(error_msg)

# Check portability requirements
if current_portable and not dep_portable:
error_msg = ("ERROR: Target {} is marked as portable but depends on {} which is not portable. " +
"Portable targets can only depend on other portable targets.").format(
target.label,
dep_info.label,
)
fail(error_msg)

# Return provider for this target
return [DependencyLevelInfo(
level = current_level,
portable = current_portable,
label = label_str,
)]

check_allowed_cc_deps = aspect(
implementation = _check_allowed_cc_deps_impl,
attr_aspects = ["deps"],
attrs = {},
)

def _validate_allowed_deps_rule_impl(ctx):
"""Rule that applies the validation aspect to specified targets."""

# This rule doesn't produce any output, it just triggers the aspect
output = ctx.actions.declare_file(ctx.label.name + ".validation")
ctx.actions.write(
output = output,
content = "Allowed C/C++ dependency validation passed\n",
)
return [DefaultInfo(files = depset([output]))]

validate_allowed_cc_deps = rule(
implementation = _validate_allowed_deps_rule_impl,
attrs = {
"targets": attr.label_list(
aspects = [check_allowed_cc_deps],
doc = "Targets to validate",
),
},
doc = "Validates allowed C/C++ dependencies for specified targets",
)

def validate_all_allowed_cc_deps(name, targets = ["//..."]):
"""Macro to create a validation target for allowed C/C++ dependencies.

Args:
name: Name of the validation target
targets: List of target patterns to validate (default: all targets)
"""
validate_allowed_cc_deps(
name = name,
targets = targets,
tags = ["manual"], # Don't build by default, only when explicitly requested
)
Loading