SEI CERT C Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 121

changes.mady.by.user Joerg Herter

Saved on

compared with

New Version Current

changes.mady.by.user Francesco Mariani

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

The C Standard, 5.1.1.2, paragraph 4 [ISO/IEC 9899:20112024], says

If a character sequence that matches the syntax of a universal character name is produced by token concatenation (6.10.35.3), the behavior is undefined.

...

Creating a universal character name through token concatenation results in undefined behavior. See undefined behavior 3.

Rule

Severity

Likelihood

Detectable

Remediation CostRepairable

Priority

Level

PRE30-C

Low

Unlikely

Yes

NoMedium

P2

L3

Automated Detection

macroargumenthash checkedUniversal Fully checked

Tool

Version

Checker

Description

Astrée
Include Page
Astrée_V
Astrée_V
universal-character-name-concatenation
Fully implemented

Axivion Bauhaus Suite

Include Page
Axivion Bauhaus Suite_V
Axivion Bauhaus Suite_V

CertC-PRE30Fully implemented
CodeSonar
Include Page
CodeSonar_V
CodeSonar_V
LANG.PREPROC.PASTE
LANG.PREPROC.PASTEHASH		Macro uses ## operator
## follows # operator
Cppcheck

Include Page
Cppcheck_V
Cppcheck_V

preprocessorErrorDirective
Cppcheck Premium

Include Page
Cppcheck Premium_V
Cppcheck Premium_V

preprocessorErrorDirective
Helix QAC

Include Page
Helix QAC_V
Helix QAC_V

C0905 

C++0064,C++0080

Fully implemented
Klocwork

Include Page
Klocwork_V
Klocwork_V

MISRA.DEFINE.SHARP

Fully implemented
LDRA tool suite
Include Page
LDRA_V
LDRA_V

573 S

Fully implemented

Parasoft C/C++test

Include Page
Parasoft_V
Parasoft_V

CERT_C-PRE30-aAvoid token concatenation that may produce universal character names

Polyspace Bug Finder

Include Page
Polyspace Bug Finder_V
Polyspace Bug Finder_V

CERT C: Rule PRE30-CChecks for universal character name from token concatenation You create a universal character name by joining tokens with ## operatorPRQA QA-C
Include Page
PRQA QA-C_vPRQA QA-C_v0905PRQA QA-C++
Include Page
cplusplus:PRQA QA-C++_Vcplusplus:PRQA QA-C++_V(rule fully covered)
RuleChecker
Include Page
RuleChecker_V
RuleChecker_V
universal-character-name-concatenation
Fully checked
Security Reviewer - Static Reviewer

Include Page
Security Reviewer - Static Reviewer_V
Security Reviewer - Static Reviewer_V

RTOS_27Fully implemented0064, 0080RuleChecker
Include Page
RuleChecker_VRuleChecker_Vmacro-argument-hash

Related Vulnerabilities

Search for vulnerabilities resulting from the violation of this rule on the CERT website.

Bibliography

[ISO/IEC 10646-2003]
[ISO/IEC 9899:20112024]Subclause 5.1.1.2, "Translation Phases"

...