SEI CERT C Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 67

changes.mady.by.user Shannon Haas

Saved on

compared with

New Version 68

changes.mady.by.user Shannon Haas

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migrated to Confluence 4.0

...

POSIX recommends sigaction() and deprecates signal(). Unfortunately, sigaction() is not defined in C99 and is consequently not as portable a solution.

Risk Assessment

Wiki MarkupInterrupting a noninterruptible signal handler can result in a variety of vulnerabilities \ [[Zalewski 2001|AA. Bibliography#Zalewski 01]\].

Recommendation

Severity

Likelihood

Remediation Cost

Priority

Level

SIG00-C

high

likely

high

P9

L2

Related Vulnerabilities

Search for vulnerabilities resulting from the violation of this rule on the CERT website.

...

ISO/IEC 2003 Section 5.2.3, "Signals and interrupts"

Bibliography

Wiki Markup\[[Dowd 2006| AA. Bibliography#Dowd 06] \] Chapter 13, "Synchronization and State" (Signal Interruption and Repetition) \
[[Open Group 2004|AA. Bibliography#Open Group 04] \] [longjmp|http://www.opengroup.org/onlinepubs/000095399/functions/longjmp.html] \[[OpenBSD|AA. Bibliography#OpenBSD]\] [{{signal()}} Man Page|http://www.openbsd.org/cgi-bin/man.cgi?query=signal] \[[Zalewski 2001|AA. Bibliography#Zalewski 01]\ longjmp
[OpenBSD] signal() Man Page
[Zalewski 2001]

...

11. Signals (SIG)      11. Signals (SIG)