SEI CERT C Coding Standard

Space shortcuts

Page tree

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 7 Next »

Generated Content

This page is automatically generated from the "Automated Detection" sections in the individual guidelines. Do not modify this page directly.

Version number

V. 3.1.1

C checkers

CERT C Secure Coding Standard

<unknown>

ARR01-C. Do not apply the sizeof operator to a pointer when taking the size of an array

<unknown>

ARR33-C. Guarantee that copies are made into storage of sufficient size

<unknown>

DCL01-C. Do not reuse variable names in subscopes

<unknown>

DCL15-C. Declare file-scope objects or functions that do not need external linkage as static

<unknown>

DCL30-C. Declare objects with appropriate storage durations

<unknown>

DCL36-C. Do not declare an identifier with conflicting linkage classifications

<unknown>

EXP01-C. Do not take the size of a pointer to determine the size of the pointed-to type

<unknown>

EXP12-C. Do not ignore values returned by functions

<unknown>

EXP30-C. Do not depend on order of evaluation between sequence points

<unknown>

EXP33-C. Do not reference uninitialized memory

<unknown>

EXP34-C. Do not dereference null pointers

<unknown>

EXP35-C. Do not access or modify an array in the result of a function call after a subsequent sequence point

<unknown>

FIO30-C. Exclude user input from format strings

<unknown>

FIO34-C. Use int to capture the return value of character IO functions

<unknown>

FLP33-C. Convert integers to floating point for floating point operations

<unknown>

INT01-C. Use rsize_t or size_t for all integer values representing the size of an object

<unknown>

INT07-C. Use only explicitly signed or unsigned char type for numeric values

<unknown>

INT13-C. Use bitwise operators only on unsigned operands

<unknown>

MEM30-C. Do not access freed memory

<unknown>

MEM31-C. Free dynamically allocated memory exactly once

<unknown>

MSC07-C. Detect and remove dead code

<unknown>

MSC12-C. Detect and remove code that has no effect

<unknown>

SIG32-C. Do not call longjmp() from inside a signal handler

<unknown>

STR30-C. Do not attempt to modify string literals

<unknown>

STR31-C. Guarantee that storage for strings has sufficient space for character data and the null terminator

<unknown>

STR33-C. Size wide character strings correctly

<unknown>

STR36-C. Do not specify the bound of a character array initialized with a string literal

  • No labels