Checker | Guideline |
|---|
| CERT_CPP-CON50-a | CON50 | JSF-166_{b,c} | EXP52-CPP. Do not rely on side effects in unevaluated operands |
| BD-PB-NOTINIT | EXP53-CPP. Do not read uninitialized memory |
| BD-PB-NP | OOP55-CPP. Do not use pointer-to-member operators to access nonexistent members |
| BD-PB-OVERFWR | STR50-CPP. Guarantee that storage for strings has sufficient space for character data and the null terminator |
| destroy a mutex while it is locked |
| CERT_CPP-CON51-a | CON51-CPP. Ensure actively held locks are released on exceptional conditions |
| CERT_CPP-CON52-a | CON52-CPP. Prevent data races when accessing bit-fields from multiple threads |
| CERT_CPP-CON53-a | CON53-CPP. Avoid deadlock by locking in a predefined order |
| CERT_CPP-CON54-a | CON54-CPP. Wrap functions that can spuriously wake up in a loop |
| CERT_CPP-CON55-a | CON55-CPP. Preserve thread safety and liveness when using condition variables |
| CERT_CPP-CON56-a | CON56-CPP. Do not speculatively lock a non-recursive mutex that is already owned by the calling thread |
| CERT_CPP-CTR50-a | CTR50-CPP. Guarantee that container indices and iterators are within the valid range |
| CERT_CPP-CTR51-a | CTR51-CPP. Use valid references, pointers, and iterators to reference elements of a container |
| CERT_CPP-CTR52-a BD-PB-OVERF{RD, WR, FMT, NZT} | CTR52-CPP. Guarantee that library functions do not overflow |
| BD-PB-OVERF{RD, WR, FMT, NZT} | STR53-CPP. Range check element access |
| BD-RES-FREE | EXP54-CPP. Do not access an object outside of its lifetime |
| BD-RES-FREE | MEM50-CPP. Do not access freed memory |
| BD-RES-LEAKS | FIO51-CPP. Close files when they are no longer needed |
| BD-RES-LEAKS | ERR56-CPP. Guarantee exception safety |
| BD-RES-LEAKS | ERR57-CPP. Do not leak resources when handling exceptions |
| BD-TRS-DLOCK | CON53-CPP. Avoid deadlock by locking in a predefined order |
|
| CERT_CPP-CTR53-a | CTR53-CPP. Use valid iterator ranges |
| CERT_CPP-CTR53-b | CTR53-CPP. Use valid iterator ranges |
| CERT_CPP-CTR54-a | CTR54-CPP. Do not subtract iterators that do not refer to the same container |
| CERT_CPP-CTR54-b | CTR54-CPP. Do not subtract iterators that do not refer to the same container |
| CERT_CPP-CTR54-c | CTR54-CPP. Do not subtract iterators that do not refer to the same container |
| CERT_CPP-CTR55-a | CTR55-CPP. Do not use an additive operator on an iterator if the result would overflow |
| CERT_CPP-CTR56-a | CTR56-CPP. Do not use pointer arithmetic on polymorphic objects |
| CERT_CPP-CTR56-b | CTR56-CPP. Do not use pointer arithmetic on polymorphic objects |
| CERT_CPP-CTR56-c | CTR56-CPP. Do not use pointer arithmetic on polymorphic objects |
| CERT_CPP-CTR57-a | CTR57-CPP. Provide a valid ordering predicate |
| CERT_CPP-CTR58-a | CTR58-CPP. Predicate function objects should not be mutable |
| CERT_CPP-DCL50-a | DCL50-CPP. Do not define a C-style variadic function |
| CERT_CPP-DCL51-a | DCL51-CPP. Do not declare or define a reserved identifier |
| CERT_CPP-DCL51-b | DCL51-CPP. Do not declare or define a reserved identifier |
| CERT_CPP-DCL51-c | DCL51-CPP. Do not declare or define a reserved identifier |
| CERT_CPP-DCL51-d | DCL51-CPP. Do not declare or define a reserved identifier |
| CERT_CPP-DCL51-e | DCL51-CPP. Do not declare or define a reserved identifier |
| CERT_CPP-DCL51-f | DCL51-CPP. Do not declare or define a reserved identifier |
| CERT_CPP-DCL52-a | DCL52-CPP. Never qualify a reference type with const or volatile |
| CERT_CPP-DCL53-a | DCL53-CPP. Do not write syntactically ambiguous declarations |
| CERT_CPP-DCL53-b | DCL53-CPP. Do not write syntactically ambiguous declarations |
| CERT_CPP-DCL53-c | DCL53-CPP. Do not write syntactically ambiguous declarations |
| CERT_CPP-DCL54-a | DCL54-CPP. Overload allocation and deallocation functions as a pair in the same scope |
| CERT_CPP-DCL55-a | DCL55-CPP. Avoid information leakage when passing a class object across a trust boundary |
| CERT_CPP-DCL56-a | DCL56-CPP. Avoid cycles during initialization of static objects |
| CERT_CPP-DCL57-a | DCL57-CPP. Do not let exceptions escape from destructors or deallocation functions |
| CERT_CPP-DCL57-b | DCL57-CPP. Do not let exceptions escape from destructors or deallocation functions |
| CERT_CPP-DCL58-a | DCL58-CPP. Do not modify the standard namespaces |
| CERT_CPP-DCL59-a CODSTA-74 | DCL59-CPP. Do not define an unnamed namespace in a header file |
| CERT_CPP-DCL60-a | DCL60-CPP. Obey the one-definition rule |
| CERT_CPP-ERR50-a | ERR50-CPP. Do not abruptly terminate the program |
| CERT_CPP-ERR50-b | ERR50-CPP. Do not abruptly terminate the program |
| CERT_CPP-ERR50-c | ERR50-CPP. Do not abruptly terminate the program |
| CERT_CPP-ERR50-d | ERR50-CPP. Do not abruptly terminate the program |
| CERT_CPP-ERR50-e | ERR50-CPP. Do not abruptly terminate the program |
| CERT_CPP-ERR50-f | ERR50-CPP. Do not abruptly terminate the program |
| CERT_CPP-ERR50-g | ERR50-CPP. Do not abruptly terminate the program |
| CERT_CPP-ERR50-h | ERR50-CPP. Do not abruptly terminate the program |
| CERT_CPP-ERR50-i | ERR50-CPP. Do not abruptly terminate the program |
| CERT_CPP-ERR50-j | ERR50-CPP. Do not abruptly terminate the program |
| CERT_CPP-ERR50-k | ERR50-CPP. Do not abruptly terminate the program |
| CERT_CPP-ERR50-l | ERR50-CPP. Do not abruptly terminate the program |
| CERT_CPP-ERR50-m | ERR50-CPP. Do not abruptly terminate the program |
| CERT_CPP-ERR50-n | ERR50-CPP. Do not abruptly terminate the program |
| CERT_CPP-ERR51-a | ERR51-CPP. Handle all exceptions |
| CERT_CPP-ERR51-b EXCEPT-13 | ERR51-CPP. Handle all exceptions |
| EXCEPT-14 | ERR55-CPP. Honor exception specifications |
|
| CERT_CPP-ERR52-a | ERR52-CPP. Do not use setjmp() or longjmp() |
| CERT_CPP-ERR52-b | ERR52-CPP. Do not use setjmp() or longjmp() |
| CERT_CPP-ERR53-a EXCEPT-16 | ERR53-CPP. Do not reference base classes or class data members in a constructor or destructor function-try-block handler |
| EXCEPT-17 CERT_CPP-ERR54-a | ERR54-CPP. Catch handlers should order their parameter types from most derived to least derived |
| CERT_CPP-ERR55-a | ERR55-CPP. Honor exception specifications |
| CERT_CPP-ERR56-a | ERR56-CPP. Guarantee exception safety |
| CERT_CPP-ERR56-b | ERR56-CPP. Guarantee exception safety |
| CERT_CPP-ERR57-a | ERR57-CPP. Do not leak resources when handling exceptions |
| CERT_CPP-ERR58-a EXCEPT-18 | ERR58-CPP. Handle all exceptions thrown before main() begins executing |
| INIT-10 | OOP53-CPP. Write constructor member initializers in the canonical order |
| JSF-020 | ERR52-CPP. Do not use setjmp() or longjmp() |
| JSF-114 | MSC52-CPP. Value-returning functions must return a value from all exit paths |
| JSF-117_a | OOP51-CPP. Do not slice derived objects |
| CERT_CPP-ERR59-a | ERR59-CPP. Do not throw an exception across execution boundaries |
| CERT_CPP-ERR60-a | ERR60-CPP. Exception objects must be nothrow copy constructible |
| CERT_CPP-ERR60-b | ERR60-CPP. Exception objects must be nothrow copy constructible |
| CERT_CPP-ERR61-a | ERR61-CPP. Catch exceptions by lvalue reference |
| CERT_CPP-ERR61-b | ERR61-CPP. Catch exceptions by lvalue reference |
| CERT_CPP-ERR62-a | ERR62-CPP. Detect errors when converting a string to a number |
| CERT_CPP-EXP50-a | EXP50-CPP. Do not depend on the order of evaluation for side effects |
| CERT_CPP-EXP50-b | EXP50-CPP. Do not depend on the order of evaluation for side effects |
| CERT_CPP-EXP50-c | EXP50-CPP. Do not depend on the order of evaluation for side effects |
| CERT_CPP-EXP50-d | EXP50-CPP. Do not depend on the order of evaluation for side effects |
| CERT_CPP-EXP50-e | EXP50-CPP. Do not depend on the order of evaluation for side effects |
| CERT_CPP-EXP50-f | EXP50-CPP. Do not depend on the order of evaluation for side effects |
| CERT_CPP-EXP51-a | EXP51-CPP. Do not delete an array through a pointer of the incorrect type |
| CERT_CPP-EXP52-a | EXP52-CPP. Do not rely on side effects in unevaluated operands |
| CERT_CPP-EXP52-b | EXP52-CPP. Do not rely on side effects in unevaluated operands |
| CERT_CPP-EXP52-c | EXP52-CPP. Do not rely on side effects in unevaluated operands |
| CERT_CPP-EXP52-d | EXP52-CPP. Do not rely on side effects in unevaluated operands |
| CERT_CPP-EXP52-e JSF-166 | EXP52-CPP. Do not rely on side effects in unevaluated operands |
| JSF-204.1{a,b,c,d,g} | EXP50-CPP. Do not depend on the order of evaluation for side effects |
|
| CERT_CPP-EXP53-a | EXP53-CPP. Do not read uninitialized memory |
| CERT_CPP-EXP54-a | EXP54-CPP. Do not access an object outside of its lifetime |
| CERT_CPP-EXP54-b | EXP54-CPP. Do not access an object outside of its lifetime |
| CERT_CPP-EXP54-c | EXP54-CPP. Do not access an object outside of its lifetime |
| CERT_CPP-EXP55-a | EXP55-CPP. Do not access a cv-qualified object through a cv-unqualified type |
| CERT_CPP-EXP56-a | EXP56-CPP. Do not call a function with a mismatched language linkage |
| CERT_CPP-EXP57-a | EXP57-CPP. Do not cast or delete pointers to incomplete classes |
| CERT_CPP-EXP57-b | EXP57-CPP. Do not cast or delete pointers to incomplete classes |
| CERT_CPP-EXP58-a | EXP58-CPP. Pass an object of the correct type to va_start |
| CERT_CPP-EXP59-a | EXP59-CPP. Use offsetof() on valid types and members |
| CERT_CPP-EXP60-a | EXP60-CPP. Do not pass a nonstandard-layout type object across execution boundaries |
| CERT_CPP-EXP61-a | EXP61-CPP. A lambda object must not outlive any of its reference captured objects |
| CERT_CPP-EXP61-b | EXP61-CPP. A lambda object must not outlive any of its reference captured objects |
| CERT_CPP-EXP61-c | EXP61-CPP. A lambda object must not outlive any of its reference captured objects |
| CERT_CPP-EXP62-a | EXP62-CPP. Do not access the bits of an object representation that are not part of the object's value representation |
| CERT_CPP-EXP63-a | EXP63-CPP. Do not rely on the value of a moved-from object |
| CERT_CPP-FIO50-a | FIO50-CPP. Do not alternately input and output from a file stream without an intervening positioning call |
| CERT_CPP-FIO51-a | FIO51-CPP. Close files when they are no longer needed |
| CERT_CPP-INT50-a | INT50-CPP. Do not cast to an out-of-range enumeration value |
| CERT_CPP-MEM50-a | MEM50-CPP. Do not access freed memory |
| CERT_CPP-MEM51-a MEM-06 | MEM51-CPP. Properly deallocate dynamically allocated resources |
| MEM-12 CERT_CPP-MEM51-b | MEM51-CPP. Properly deallocate dynamically allocated resources |
| MEM-28 CERT_CPP-MEM51-c | MEM51-CPP. Properly deallocate dynamically allocated resources |
| MEM-29 CERT_CPP-MEM51-d | MEM51-CPP. Properly deallocate dynamically allocated resources |
| MISRA2004-16_1 | DCL50-CPP. Do not define a C-style variadic function |
| MISRA2008-15_3_1 | ERR58-CPP. Handle all exceptions thrown before main() begins executing |
| MISRA2008-15_5_2 | ERR55-CPP. Honor exception specifications |
| MISRA2008-17_0_1_{a, b} | DCL51-CPP. Do not declare or define a reserved identifier |
| MISRA2012-RULE-21_4_{a,b} | ERR52-CPP. Do not use setjmp() or longjmp() |
| MISRA2012-RULE-21_5_b | MSC54-CPP. A signal handler must be a plain old function |
| MRM-14 | MEM55-CPP. Honor replacement dynamic storage management requirements |
| MRM-15 | MEM55-CPP. Honor replacement dynamic storage management requirements |
| MRM-26 | DCL54-CPP. Overload allocation and deallocation functions as a pair in the same scope |
| MRM-27 | DCL54-CPP. Overload allocation and deallocation functions as a pair in the same scope |
| MRM-34 | MEM52-CPP. Detect and handle memory allocation errors |
| OOP-02 | OOP51-CPP. Do not slice derived objects |
| CERT_CPP-MEM52-a | MEM52-CPP. Detect and handle memory allocation errors |
| CERT_CPP-MEM52-b | MEM52-CPP. Detect and handle memory allocation errors |
| CERT_CPP-MEM53-a | MEM53-CPP. Explicitly construct and destruct objects when manually managing object lifetime |
| CERT_CPP-MEM54-a | MEM54-CPP. Provide placement new with properly aligned pointers to sufficient storage capacity |
| CERT_CPP-MEM54-b | MEM54-CPP. Provide placement new with properly aligned pointers to sufficient storage capacity |
| CERT_CPP-MEM55-a | MEM55-CPP. Honor replacement dynamic storage management requirements |
| CERT_CPP-MEM56-a | MEM56-CPP. Do not store an already-owned pointer value in an unrelated smart pointer |
| CERT_CPP-MEM57-a | MEM57-CPP. Avoid using default operator new for over-aligned types |
| CERT_CPP-MSC50-a | MSC50-CPP. Do not use std::rand() for generating pseudorandom numbers |
| CERT_CPP-MSC51-a | MSC51-CPP. Ensure your random number generator is properly seeded |
| CERT_CPP-MSC52-a | MSC52-CPP. Value-returning functions must return a value from all exit paths |
| CERT_CPP-MSC53-a | MSC53-CPP. Do not return from a function declared [[noreturn]] |
| CERT_CPP-MSC54-a | MSC54-CPP. A signal handler must be a plain old function |
| CERT_CPP-OOP50-a | OOP50-CPP. Do not invoke virtual functions from constructors or destructors |
| CERT_CPP-OOP50-b | OOP50-CPP. Do not invoke virtual functions from constructors or destructors |
| CERT_CPP-OOP50-c | OOP50-CPP. Do not invoke virtual functions from constructors or destructors |
| CERT_CPP-OOP50-d OOP-16 | OOP50-CPP. Do not invoke virtual functions from constructors or destructors |
| CERT_CPP-OOP51-a | OOP51-CPP. Do not slice derived objects |
| CERT_CPP-OOP52-a OOP-22 | OOP52-CPP. Do not delete a polymorphic object without a virtual destructor |
| CERT_CPP-OOP53-a | OOP53-CPP. Write constructor member initializers in the canonical order |
| CERT_CPP-OOP54-a OOP-34 | OOP54-CPP. Gracefully handle self-copy assignment |
| CERT_CPP-OOP55-a | OOP55 | PB-10 | EXP51-CPP. Do not delete an array through a pointer of the incorrect type |
| PB-10 | CTR56-CPP. Do not use pointer arithmetic on polymorphic objects |
| PB-54 | EXP57-CPP. Do not cast or delete pointers to incomplete classes |
| use pointer-to-member operators to access nonexistent members |
| CERT_CPP-OOP56-a | OOP56-CPP. Honor replacement handler requirements |
| CERT_CPP-OOP56-b | OOP56-CPP. Honor replacement handler requirements |
| CERT_CPP-OOP56-c | OOP56-CPP. Honor replacement handler requirements |
| CERT_CPP-OOP57-a | OOP57-CPP. Prefer special member functions and overloaded operators to C Standard Library functions |
| CERT_CPP-OOP57-b | OOP57-CPP. Prefer special member functions and overloaded operators to C Standard Library functions |
| CERT_CPP-OOP58-a | OOP58-CPP. Copy operations must not mutate the source object |
| CERT_CPP-STR50-b | STR50-CPP. Guarantee that storage for strings has sufficient space for character data and the null terminator |
| CERT_CPP-STR50-c | STR50-CPP. Guarantee that storage for strings has sufficient space for character data and the null terminator |
| CERT_CPP-STR50-e | STR50-CPP. Guarantee that storage for strings has sufficient space for character data and the null terminator |
| CERT_CPP-STR50-f | STR50-CPP. Guarantee that storage for strings has sufficient space for character data and the null terminator |
| CERT_CPP-STR50-g | STR50-CPP. Guarantee that storage for strings has sufficient space for character data and the null terminator |
| CERT_CPP-STR51-a | STR51-CPP. Do not attempt to create a std::string from a null pointer |
| CERT_CPP-STR52-a | STR52-CPP. Use valid references, pointers, and iterators to reference elements of a basic_string |
| CERT_CPP-STR53-a | STR53-CPP. Range check element access | PB-55 | EXP57-CPP. Do not cast or delete pointers to incomplete classes |
| Runtime detection | EXP51-CPP. Do not delete an array through a pointer of the incorrect type |
| Runtime detection | EXP53-CPP. Do not read uninitialized memory |
| Runtime detection | EXP54-CPP. Do not access an object outside of its lifetime |
| Runtime detection | EXP57-CPP. Do not cast or delete pointers to incomplete classes |
| Runtime detection | MEM50-CPP. Do not access freed memory |
| Runtime detection | MEM51-CPP. Properly deallocate dynamically allocated resources |
| Runtime detection | MEM52-CPP. Detect and handle memory allocation errors |
| Runtime detection | FIO51-CPP. Close files when they are no longer needed |
| Runtime detection | OOP55-CPP. Do not use pointer-to-member operators to access nonexistent members |
| SECURITY-02 | MSC50-CPP. Do not use std::rand() for generating pseudorandom numbers |
| SECURITY-12 | STR50-CPP. Guarantee that storage for strings has sufficient space for character data and the null terminator |
| STL-02 | CTR56-CPP. Do not use pointer arithmetic on polymorphic objects |
| STL-36 | CTR50-CPP. Guarantee that container indices and iterators are within the valid range |
| STL-36 | CTR53-CPP. Use valid iterator ranges |
