Page History

Warning

title	Work In Progress

This rule is an incomplete work in progress. It is intended as a future replacement of the following rules all of which cover related material:

ARR30-C. Guarantee that array indices are within the valid range
ARR35-C. Do not allow loops to iterate beyond the end of an array
ARR38-C. Do not add or subtract an integer to a pointer if the resulting value does not refer to a valid array element

Using pointer arithmetic such that the result does not point into or just past the end of the same object, using such pointers in arithmetic expressions, or dereferencing pointers that do not point to a valid object in memory results in potentially exploitable undefined behavior and must be avoided.

...

UB	Description
43	Addition or subtraction of a pointer into, or just beyond, an array object and an integer type produces a result that does not point into, or just beyond, the same array object.
44	Addition or subtraction of a pointer into, or just beyond, an array object and an integer type produces a result that points just beyond the array object and is used as the operand of a unary `*` operator that is evaluated.
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="fbc2c05493e77054-90bbc04b-414c419f-82afb5c9-677e18af265de0822f59c21f"><ac:plain-text-body><![CDATA[	[46	CC. Undefined Behavior#ub_46]	An array subscript is out of range, even if an object is apparently accessible with the given subscript (as in the lvalue expression `a[1][7]` given the declaration `int a[4][5]`).	]]></ac:plain-text-body></ac:structured-macro>
59	An attempt is made to access, or generate a pointer to just past, a flexible array member of a structure when the referenced object provides no elements for that array.

...

Space shortcuts

Page tree

Versions Compared

Old Version 1

New Version 2

Key