|
[1]
Code Duplication Detection (CDD)
|
|
[1]
Avoid function duplication (CDD-DUPM-2)
|
|
[1]
CERT-MSC13_C (REC) Detect and remove unused values (CERT_C-MSC13)
|
|
[1]
Avoid unnecessary local variables (CERT_C-MSC13-a-3)
|
|
[1]
CERT-FLP06_C (REC) Convert integers to floating point for floating-point operations (CERT_C-FLP06)
|
|
[1]
Implicit conversions from integral to floating type which may result in a loss of information shall not be used (CERT_C-FLP06-a-2)
|
|
[1]
CERT-INT02_C (REC) Understand integer conversion rules (CERT_C-INT02)
|
|
[1]
Avoid mixing arithmetic of different precisions in the same expression (CERT_C-INT02-b-2)
|
|
[9]
CERT-MEM04_C (REC) Beware of zero-length allocations (CERT_C-MEM04)
|
|
[9]
The validity of values passed to library functions shall be checked (CERT_C-MEM04-a-2)
|
|
[4]
CERT-MEM02_C (REC) Immediately cast the result of a memory allocation function call into a pointer to the allocated type (CERT_C-MEM02)
|
|
[2]
Assignment operator should have operands of compatible types (CERT_C-MEM02-a-3)
|
|
[2]
Do not assign function return value to a variable of incompatible type (CERT_C-MEM02-b-3)
|
|
[6]
CERT-PRE31_C (RULE) Avoid side effects in arguments to unsafe macros (CERT_C-PRE31)
|
|
[6]
Assertions should not contain function calls nor function-like macro calls (CERT_C-PRE31-c-3)
|
|
[4]
CERT-MSC09_C (REC) Character encoding: Use subset of ASCII for safety (CERT_C-MSC09)
|
|
[4]
Only use characters defined in ISO C standard (CERT_C-MSC09-a-3)
|
|
[1]
CERT-INT36_C (RULE) Converting a pointer to integer or integer to pointer (CERT_C-INT36)
|
|
[1]
A conversion should not be performed between a pointer to object type and an integer type other than 'uintptr_t' or 'intptr_t' (CERT_C-INT36-b-3)
|
|
[3]
CERT-FIO41_C (RULE) Do not call getc(), putc(), getwc(), or putwc() with a stream argument that has side effects (CERT_C-FIO41)
|
|
[3]
A full expression containing an increment (++) or decrement (--) operator should have no other potential side effects (CERT_C-FIO41-e-3)
|
|
[9]
CERT-MEM07_C (REC) Ensure that the arguments to calloc(), when multiplied, do not wrap (CERT_C-MEM07)
|
|
[9]
The validity of values passed to library functions shall be checked (CERT_C-MEM07-a-2)
|
|
[49]
CERT-MSC41_C (RULE) Never hard code sensitive information (CERT_C-MSC41)
|
|
[49]
Do not hard code string literals (CERT_C-MSC41-a-1)
|
|
[258]
CERT-API00_C (REC) Functions should validate their parameters (CERT_C-API00)
|
|
[258]
The validity of parameters must be checked inside each function (CERT_C-API00-a-3)
|
|
[5]
CERT-FIO21_C (REC) Do not create temporary files in shared directories (CERT_C-FIO21)
|
|
[5]
Usage of functions prone to race is not allowed (CERT_C-FIO21-a-2)
|
|
[1]
CERT-EXP40_C (RULE) Do not modify constant objects (CERT_C-EXP40)
|
|
[1]
A cast shall not remove any 'const' or 'volatile' qualification from the type of a pointer or reference (CERT_C-EXP40-a-3)
|
|
[1]
CERT-EXP32_C (RULE) Do not access a volatile object through a nonvolatile reference (CERT_C-EXP32)
|
|
[1]
A cast shall not remove any 'const' or 'volatile' qualification from the type of a pointer or reference (CERT_C-EXP32-a-2)
|
|
[6]
CERT-EXP37_C (RULE) Call functions with the correct number and type of arguments (CERT_C-EXP37)
|
|
[6]
Identifiers shall be given for all of the parameters in a function prototype declaration (CERT_C-EXP37-a-3)
|
|
[4]
CERT-EXP39_C (RULE) Do not access a variable through a pointer of an incompatible type (CERT_C-EXP39)
|
|
[4]
There shall be no implicit conversions from integral to floating type (CERT_C-EXP39-a-3)
|
|
[1]
CERT-DCL22_C (REC) Use volatile for data that cannot be cached (CERT_C-DCL22)
|
|
[1]
Avoid unused values (CERT_C-DCL22-a-3)
|
|
[21]
CERT-EXP00_C (REC) Use parentheses for precedence of operation (CERT_C-EXP00)
|
|
[21]
Use parenthesis to clarify expression order if operators with precedence lower than arithmetic are used (CERT_C-EXP00-a-3)
|
|
[1]
CERT-EXP05_C (REC) Do not cast away a const qualification (CERT_C-EXP05)
|
|
[1]
A cast shall not remove any 'const' or 'volatile' qualification from the type of a pointer or reference (CERT_C-EXP05-a-2)
|
|
[9]
CERT-EXP02_C (REC) Be aware of the short-circuit behavior of the logical AND and OR operators (CERT_C-EXP02)
|
|
[9]
The right-hand operand of a logical && or || operator shall not contain side effects (CERT_C-EXP02-a-3)
|
|
[3]
CERT-DCL19_C (REC) Minimize the scope of variables and functions (CERT_C-DCL19)
|
|
[3]
Declare variables as locally as possible (CERT_C-DCL19-a-3)
|
|
[5]
CERT-FIO01_C (REC) Be careful using functions that use file names for identification (CERT_C-FIO01)
|
|
[5]
Usage of functions prone to race is not allowed (CERT_C-FIO01-b-1)
|
|
[38]
CERT-EXP12_C (REC) Do not ignore values returned by functions (CERT_C-EXP12)
|
|
[38]
The value returned by a function having non-void return type shall be used (CERT_C-EXP12-a-3)
|
|
[1]
CERT-EXP14_C (REC) Beware of integer promotion when performing bitwise operations on integer types smaller than int (CERT_C-EXP14)
|
|
[1]
Avoid mixing arithmetic of different precisions in the same expression (CERT_C-EXP14-a-3)
|
|
[6]
CERT-EXP19_C (REC) Use braces for the body of an if, for, or while statement (CERT_C-EXP19)
|
|
[6]
The statement forming the body of a 'switch', 'while', 'do...while' or 'for' statement shall be a compound statement (CERT_C-EXP19-a-2)
|
|
[1]
CERT-PRE06_C (REC) Enclose header files in an include guard (CERT_C-PRE06)
|
|
[1]
Use multiple include guards (CERT_C-PRE06-a-3)
|
|
[38]
CERT-POS54_C (RULE) Detect and handle POSIX library errors (CERT_C-POS54)
|
|
[38]
The value returned by a function having non-void return type shall be used (CERT_C-POS54-a-1)
|
|
[4]
CERT-ERR30_C (RULE) Set errno to zero before calling a library function known to set errno, and check errno only after the
function returns a value indicating failure (CERT_C-ERR30)
|
|
[4]
Properly use errno value (CERT_C-ERR30-a-2)
|
|
[4]
CERT-ERR32_C (RULE) Do not rely on indeterminate values of errno (CERT_C-ERR32)
|
|
[4]
Properly use errno value (CERT_C-ERR32-a-3)
|
|
[38]
CERT-ERR33_C (RULE) Detect and handle standard library errors (CERT_C-ERR33)
|
|
[38]
The value returned by a function having non-void return type shall be used (CERT_C-ERR33-a-1)
|
|
[7]
CERT-ERR06_C (REC) Understand the termination behavior of assert() and abort() (CERT_C-ERR06)
|
|
[7]
Do not use assertions (CERT_C-ERR06-a-3)
|
|
[101]
CERT-DCL00_C (REC) Const-qualify immutable objects (CERT_C-DCL00)
|
|
[101]
Declare parameters or local variable as const whenever possible (CERT_C-DCL00-a-3)
|
|
[1]
CERT-FLP36_C (RULE) Preserve precision when converting integral values to floating-point type (CERT_C-FLP36)
|
|
[1]
Implicit conversions from integral to floating type which may result in a loss of information shall not be used (CERT_C-FLP36-a-3)
|
|
[3]
CERT-ERR50_CPP (RULE) Do not abruptly terminate the program (CERT_CPP-ERR50)
|
|
[2]
Never allow an exception to be thrown from a destructor, deallocation, and swap (CERT_CPP-ERR50-b-3)
|
|
[1]
Exceptions shall be raised only after start-up and before termination of the program (CERT_CPP-ERR50-f-3)
|
|
[1]
CERT-MEM51_CPP (RULE) Properly deallocate dynamically allocated resources (CERT_CPP-MEM51)
|
|
[1]
Both copy constructor and copy assignment operator should be declared for classes with a nontrivial destructor (CERT_CPP-MEM51-c-1)
|
|
[2]
CERT-DCL57_CPP (RULE) Do not let exceptions escape from destructors or deallocation functions (CERT_CPP-DCL57)
|
|
[2]
Never allow an exception to be thrown from a destructor, deallocation, and swap (CERT_CPP-DCL57-a-2)
|
|
[1]
CERT-ERR58_CPP (RULE) Handle all exceptions thrown before main() begins executing (CERT_CPP-ERR58)
|
|
[1]
Exceptions shall be raised only after start-up and before termination of the program (CERT_CPP-ERR58-a-2)
|
|
[3]
CERT-STR53_CPP (RULE) Range check element access (CERT_CPP-STR53)
|
|
[3]
Guarantee that container indices are within the valid range (CERT_CPP-STR53-a-2)
|
|
[10]
CERT-DCL51_CPP (RULE) Do not declare or define a reserved identifier (CERT_CPP-DCL51)
|
|
[5]
The names of standard library macros, objects and functions shall not be reused (C90) (CERT_CPP-DCL51-e-3)
|
|
[5]
The names of standard library macros, objects and functions shall not be reused (C99) (CERT_CPP-DCL51-f-3)
|
|
[1]
CERT-OOP54_CPP (RULE) Gracefully handle self-copy assignment (CERT_CPP-OOP54)
|
|
[1]
Check for assignment to self in operator= (CERT_CPP-OOP54-a-3)
|
|
[1]
CERT-EXP55_CPP (RULE) Do not access a cv-qualified object through a cv-unqualified type (CERT_CPP-EXP55)
|
|
[1]
A cast shall not remove any 'const' or 'volatile' qualification from the type of a pointer or reference (CERT_CPP-EXP55-a-2)
|
|
[5]
CERT-EXP60_CPP (RULE) Do not pass a nonstandard-layout type object across execution boundaries (CERT_CPP-EXP60)
|
|
[5]
Do not pass a nonstandard-layout type object across execution boundaries (CERT_CPP-EXP60-a-1)
|
|
[3]
CERT-CTR50_CPP (RULE) Guarantee that container indices and iterators are within the valid range (CERT_CPP-CTR50)
|
|
[3]
Guarantee that container indices are within the valid range (CERT_CPP-CTR50-a-2)
|
|
[2]
Coding Conventions (CODSTA)
|
|
[2]
Local variables should not use the same names as member variables (CODSTA-44-1)
|
|
[10]
Coding Conventions for C++ (CODSTA-CPP)
|
|
[10]
Constructors allowing for conversion should be made explicit (CODSTA-CPP-04-1)
|
|
[13]
Initialization (INIT)
|
|
[13]
All member variables should be initialized in constructor (INIT-06-1)
|
|
[1]
Metric (METRIC)
|
|
[1]
Nested Blocks Depth (METRIC.NBD-3)
|
|
[163]
Optimization (OPT)
|
|
[163]
Pass objects by reference instead of by value (OPT-14-3)
|
