SEI CERT C++ Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 15

changes.mady.by.user Will Snavely

Saved on

compared with

New Version 16

changes.mady.by.user Aleksandr Karbyshev

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Add Automated Detection table; axivion bauhaus entry

...

Padding bits are implementation-defined, so the layout of the class object may differ between compilers or architectures. When compiled with GCC 5.3.0 for x86-32, the test object requires 96 bytes of storage to accommodate 29 bytes of data (33 bytes including the vtable) and has the following layout.

Offset (bytes (bits))Storage Size (bytes (bits))Reason
 

OffsetStorage SizeReason
01 (32)vtable pointer
 

56 (448)4 (32)unsigned k
4 (32)28 (224)data member alignment padding
 

60 (480)0 (4)unsigned l : 4
32 (256)8 (64)double h
 

60 (484)0 (3)unsigned short m : 3
40 (320)1 (8)char i
 

60 (487)0 (1)unused bit-field bits
41 (328)3 (24)data member alignment padding
 

61 (488)1 (8)char n
44 (352)4 (32)unsigned j : 80
 

62 (496)2 (16)data member alignment padding
48 (384)6 (48)extended bit-field size padding
 

64 (512)8 (64)double o
54 (432)2 (16)alignment padding
 

72 (576)24 (192)class alignment padding

Compliant Solution

Due to the complexity of the data structure, this compliant solution serializes the object data before copying it to an untrusted context instead of attempting to account for all of the padding bytes manually.

...

Padding bits might inadvertently contain sensitive data such as pointers to kernel data structures or passwords. A pointer to such a structure could be passed to other functions, causing information leakage.

Rule

Severity

Likelihood

Remediation Cost

Priority

Level

DCL55-CPP

Low

Unlikely

High

P1

L3


Automated Detection

Tool

Version

Checker

Description

Axivion Bauhaus Suite

Include Page
c:Axivion Bauhaus Suite_V
c:Axivion Bauhaus Suite_V

CertC++-DCL55

Related Vulnerabilities

Numerous vulnerabilities in the Linux Kernel have resulted from violations of this rule. 

...

 Search for vulnerabilities resulting from the violation of this rule on the CERT website.

Related Guidelines

SEI CERT C Coding Standard DCL39-C. Avoid information leakage when passing a structure across a trust boundary 

Bibliography

[ISO/IEC 14882-2014]

Subclause 8.5, "Initializers"
Subclause 9.2, "Class Members"
Subclause 9.6, "Bit-fields"

...