Page History

...

A const or volatile reference type may result in undefined behavior instead of a fatal diagnostic, causing unexpected values to be stored and leading to possible data integrity violations.

Rule	Severity	Likelihood	Remediation Cost	Priority	Level
DCL52-CPP	Low	Unlikely	Low	P3	L3

Automated Detection

Tool	Version	Checker	Description

PRQA QA-

Axivion Bauhaus Suite

Include Page

	Axivion Bauhaus Suite_V
	Axivion Bauhaus Suite_V

CertC++-DCL52

Helix QAC

Include Page

	Helix QAC_V
	Helix QAC_V

C++0014

Klocwork

Include Page

PRQA QA-C++_VPRQA QA-C++_V

14

	Klocwork_V
	Klocwork_V

CERT.DCL.REF_TYPE.CONST_OR_VOLATILE

Parasoft C/C++test

Include Page

	Parasoft_V
	Parasoft_V

CERT_CPP-DCL52-a

Never qualify a reference type with 'const' or 'volatile'

Polyspace Bug Finder

Include Page

	Polyspace Bug Finder_V
	Polyspace Bug Finder_V

CERT C++: DCL52-CPP

Checks for:

const-qualified reference types
Modification of const-qualified reference types

Rule fully covered.

Clang

Include Page

	Clang_V
	Clang_V

Clang checks for violations of this rule and produces an error without the need to specify any special flags or options.

SonarQube C/C++ Plugin

Include Page

	SonarQube C/C++ Plugin_V
	SonarQube C/C++ Plugin_V

S3708

Related Vulnerabilities

Search for vulnerabilities resulting from the violation of this rule on the CERT website.

Bibliography

[Dewhurst 2002]	Gotcha #5, "Misunderstanding References"
[ISO/IEC 14882-2014]	Subclause 8.3.2, "References"

...

Image Modified Image Modified Image Modified

Space shortcuts

Page tree

Versions Compared

Old Version 58

New Version Current

Key

Automated Detection

Related Vulnerabilities

Bibliography