SEI CERT C Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 44

changes.mady.by.user Carol J. Lallier

Saved on

compared with

New Version Current

changes.mady.by.user Jill Britton

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

This compliant solution uses the identifier assigned to the constant value in the expression.:

Code Block
bgColor#ccccff
langc
#include <stdio.h>
/* ... */
nblocks = 1 + (nbytes - 1) / BUFSIZ;

...

Assuming the value of an expression diminishes the maintainability of code and can produce unexpected behavior under any circumstances in which the constant changes.

Recommendation

Severity

Likelihood

Remediation Cost

Priority

Level

EXP07-C

low

Low

unlikely

Unlikely

medium

Medium

P2

L3

Automated Detection

Tool

Version

Checker

Description

LDRA tool suite
Axivion Bauhaus Suite

Include Page

Axivion Bauhaus Suite_V
Axivion Bauhaus Suite

LDRA

_V

LDRA
CertC-EXP07
Helix QAC

Include Page
Helix QAC_V

201 S

Fully implemented

PRQA QA-C

Helix QAC_V

C3120, C3121, C3122, C3123, C3131, C3132


LDRA tool suite
Include Page
PRQA
LDRA_V
PRQA
LDRA_V
3120Partially Implemented
201 S

Fully implemented

Related Vulnerabilities

Search for vulnerabilities resulting from the violation of this rule on the CERT website.

Related Guidelines

SEI CERT C++
Secure
Coding StandardVOID EXP07-CPP. Do not diminish the benefits of constants by assuming their values in expressions

Bibliography

[Plum 1985]Rule 1-5


...

Image Modified Image Modified Image Modified