Page History

...

Failing to understand the short-circuit behavior of the logical OR or AND operator may cause unintended program behavior.

Recommendation	Severity	Likelihood	Remediation Cost	Priority	Level
EXP02-C	Low	Unlikely	Medium	P2	L3

Automated Detection

Tool

Version

Checker

Description

Astrée

Include Page

	Astrée_V
	Astrée_V

CERT.EXP.2

logop-side-effect

Fully checked

Axivion Bauhaus Suite

Include Page

	Axivion Bauhaus Suite_V
	Axivion Bauhaus Suite_V

CertC-EXP02

Fully implemented

Compass/ROSE

Could detect possible violations of this recommendation by reporting expressions with side effects, including function calls, that appear on the right-hand side of an && or || operator

Helix QAC

Include Page

	Helix QAC_V
	Helix QAC_V

C3415

Klocwork

Include Page

	Klocwork_V
	Klocwork_V

MISRA.LOGIC.SIDEEFF

LDRA tool suite

Include Page

	LDRA_V
	LDRA_V

35 D
1 Q
133 S
406 S
408 S

Fully implemented

Parasoft C/C++test

9.5MISRA2004-12_4aFully implementedPRQA QA-C Include PagePRQA QA-C_vPRQA QA-C_v3415

Include Page

	Parasoft_V
	Parasoft_V

CERT_C-EXP02-a

The right-hand operand of a logical && or || operator shall not contain side effects

PC-lint Plus

Include Page

	PC-lint Plus_V
	PC-lint Plus_V

9007

Fully supported

Fully implemented

RuleChecker

Include Page

	RuleChecker_V
	RuleChecker_V

CERT.EXP.2

logop-side-effect

Fully checked

SonarQube C/C++ Plugin

Include Page

	SonarQube C/C++ Plugin_V
	SonarQube C/C++ Plugin_V

SideEffectInRightHandSideOfLogical

Related Vulnerabilities

Search for vulnerabilities resulting from the violation of this rule on the CERT website.

Related Guidelines

SEI CERT C++ Coding Standard	VOID EXP02-CPP. Be aware of the short-circuit behavior of the logical AND and OR operators
MITRE CWE	CWE-768, Incorrect short circuit evaluation

...

Image Modified Image Modified Image Modified

Space shortcuts

Page tree

Versions Compared

Old Version 82

New Version Current

Key

Automated Detection

Related Vulnerabilities

Related Guidelines