SEI CERT C++ Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 65

changes.mady.by.user Svyatoslav Razmyslov

Saved on

compared with

New Version Current

changes.mady.by.user David Svoboda

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: REM Cost Reform

...

Object destructors are likely to be called during stack unwinding as a result of an exception being thrown. If the destructor itself throws an exception, having been called as the result of an exception being thrown, then the function std::terminate() is called with the default effect of calling std::abort() [ISO/IEC 14882-2014]When std::abort() is called, no further objects are destroyed, resulting in an indeterminate program state and undefined behavior. Do not terminate a destructor by throwing an exception. 

...

Noncompliant Code Example (function-try-block)

This noncompliant code example, as well as the following compliant solution, presumes the existence of a Bad class with a destructor that can throw. Although the class violates this rule, it is presumed that the class cannot be modified to comply with this rule.

...

The currently handled exception is rethrown if control reaches the end of a handler of the function-try-block of a constructor or destructor.

Consequently, the caught exception will inevitably escape from the SomeClass destructor because it is implicitly rethrown when control reaches the end of the function-try-block handler.

...

Attempting to throw exceptions from destructors or deallocation functions can result in undefined behavior, leading to resource leaks or denial-of-service attacks.

Rule

Severity

LikelihoodRemediation Cost

Detectable

Repairable

Priority

Level

DCL57-CPP

Low

Likely

Yes

YesMedium

P6P9

L2

Automated Detection

Tool

Version

Checker

Description

Astrée

Include Page
Astrée_V
Astrée_V

destructor-without-noexcept
delete-without-noexcept
Fully checked
Axivion Bauhaus Suite

Include Page
Axivion Bauhaus Suite_V
Axivion Bauhaus Suite_V

CertC++-DCL57
CodeSonar
Include Page
CodeSonar_V
CodeSonar_V

LANG.STRUCT.EXCP.CATCH

LANG.STRUCT.EXCP.THROW

Use of catch

Use of throw

Helix QAC

Include Page
Helix QAC_V
Helix QAC_V

C++2045, C++2047, C++4032, C++4631
Klocwork
Include Page
Klocwork_V
Klocwork_V

MISRA.DTOR.THROW


LDRA tool suite
Include Page
LDRA_V
LDRA_V

453 S

Partially implemented

Parasoft C/C++test

Include Page
Parasoft_V
Parasoft_V

CERT_CPP-DCL57-a
CERT_CPP-DCL57-b

Never allow an exception to be thrown from a destructor, deallocation, and swap
Always catch exceptions

Polyspace Bug Finder

Include Page
Polyspace Bug Finder_V
Polyspace Bug Finder_V

CERT C++: DCL57-CPPChecks for class destructors exiting with an exception (rule partially covered)
PVS-Studio

Include Page
PVS-Studio_V
PVS-Studio_V

V509, V1045
RuleChecker
Include Page
RuleChecker_V
RuleChecker_V
destructor-without-noexcept
delete-without-noexcept
Fully checked

...