Page History

If control reaches the closing curly brace (}) of a non-void function without evaluating a return statement, using the return value of the function call is undefined behavior. (See undefined behavior 8886.)

Noncompliant Code Example

...

MSC37-C-EX1: According to the C Standard, 5.1.2.23.34, paragraph 1 [ISO/IEC 9899:20112024], "Reaching the } that terminates the main function returns a value of 0." As a result, it is permissible for control to reach the end of the main() function without executing a return statement.

...

Using the return value from a non-void function where control reaches the end of the function without evaluating a return statement can lead to buffer overflow vulnerabilities as well as other unexpected program behaviors.

Rule	Severity	Likelihood

Remediation Cost

Detectable	Repairable	Priority	Level
MSC37-C	High	Unlikely

Low

Yes

No

P9

P6

L2

Related Vulnerabilities

Search for vulnerabilities resulting from the violation of this rule on the CERT website.

Automated Detection

Tool

Version

Checker

Description

Astrée

Include Page

	Astrée_V
	Astrée_V

return-implicit

Fully checked

Axivion Bauhaus Suite

Include Page

	Axivion Bauhaus Suite_V
	Axivion Bauhaus Suite_V

CertC-MSC37

CodeSonar

Include Page

	CodeSonar_V
	CodeSonar_V

LANG.STRUCT.MRS

Missing return statement

Coverity

Include Page

	Coverity_V
	Coverity_V

MISSING_RETURN

Implemented

Cppcheck

Include Page

	Cppcheck_V
	Cppcheck_V

missingReturn

Cppcheck Premium

Include Page

	Cppcheck Premium_V
	Cppcheck Premium_V

missingReturn

Helix QAC

Include Page

	Helix QAC_V
	Helix QAC_V

C++4022

DF2888

Klocwork

Include Page

	Klocwork_V
	Klocwork_V

FUNCRET.GEN

MISRA.RETURN.NOT_LAST

FUNCRET.IMPLICIT

LDRA tool suite

Include Page

	LDRA_V
	LDRA_V

2 D, 36 S, 66 S

Fully implemented

Parasoft C/C++test

Include Page

c:

	Parasoft_V

c:

	Parasoft_V

MISRA2012

CERT_C-

RULEPRQA QA-C++ 2888, 4022

MSC37-

17_4Fully implementedPolyspace Bug FinderR2016aMissing return statement

Function does not return value though return type is not void

PRQA QA-C Include PagePRQA QA-C_vPRQA QA-C_v2888

a

All exit paths from a function, except main(), with non-void return type shall have an explicit return statement with an expression

PC-lint Plus

Include Page

	PC-lint Plus_V
	PC-lint Plus_V

533

Fully supported

Polyspace Bug Finder

Include Page

	Polyspace Bug Finder_V
	Polyspace Bug Finder_V

CERT C: Rule MSC37-C

Checks for missing return statement (rule fully covered)

RuleChecker

Include Page

	RuleChecker_V
	RuleChecker_V

return-implicit

Fully checked

Security Reviewer - Static Reviewer

Include Page

	Security Reviewer - Static Reviewer_V
	Security Reviewer - Static Reviewer_V

RTOS_09

Fully implemented

SonarQube C/C++ Plugin

Include Page

	SonarQube C/C++ Plugin_V
	SonarQube C/C++ Plugin_V

S935

TrustInSoft Analyzer

Include Page

	TrustInSoft Analyzer_V
	TrustInSoft Analyzer_V

Body of function falls-through

Exhaustively verified.

Related Guidelines

Key here (explains table format and definitions)

Taxonomy	Taxonomy item	Relationship
CERT C Secure Coding Standard	MSC01-C. Strive for logical completeness	Prior to 2018-01-12: CERT: Unspecified Relationship
CWE 2.11	CWE-758	2017-07-07: CERT: Rule subset of CWE

CERT-CWE Mapping Notes

Key here for mapping notes

...

Undefined behavior that results from anything other than failing to return a value from a function that expects one

Bibliography

[ISO/IEC 9899:

2011

2024]

5.1.2.

2

3.

3

4, "Program Termination"

...

Space shortcuts

Page tree

Versions Compared

Old Version 87

New Version Current

Key

Noncompliant Code Example

Related Vulnerabilities

Automated Detection

Related Guidelines

CERT-CWE Mapping Notes

Bibliography