SEI CERT C Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 94

changes.mady.by.user Anirban Gangopadhyay

Saved on

compared with

New Version 95

changes.mady.by.user Michal Rozenau

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Parasoft C/C++test 10.4

...

Tool

Version

Checker

Description

Astrée
Include Page
Astrée_V
Astrée_V

Supported, but no explicit checker
Polyspace Bug Finder

Include Page
Polyspace Bug Finder_V
Polyspace Bug Finder_V

Deterministic random output from constant seed

Predictable random output from predictable seed

Seeding routine uses a constant seed making the output deterministic

Seeding routine uses a predictable seed making the output predictable

Parasoft C/C++test

Include Page
Parasoft_V
Parasoft_V

SECURITY-02, SECURITY-02_b, SECURITY-28, BD-SECURITY-RAND

CERT_C-MSC32-a
CERT_C-MSC32-b
CERT_C-MSC32-c
CERT_C-MSC32-d

Avoid functions which use random numbers from standard C library
Do not use the rand() function for generating pseudorandom numbers
Standard random number generators should not be used to generate randomness for security reasons
Properly seed pseudorandom number generators

Implemented

 PRQA QA-C 9.15031 

Related Vulnerabilities

...