sqc 0.4.13

Software Code Quality - CERT C compliance checker
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41

[metadata]
id = "EXP43-C"
type = "rule"
category = "EXP"
number = 43
title = "Avoid undefined behavior when using restrict-qualified pointers"
description = """
An object that is accessed through arestrict-qualified pointer has a special
association with that pointer. This association requires that all accesses to
that object use, directly or indirectly, the value of that particular pointer.
The intended use of therestrictqualifier is to promote optimization, and
deleting all instances of the qualifier from a program does not change its
meaning (that is, observable behavior). In the absence of this qualifier, other
pointers can alias this object. Caching the value in an object designated
through arestrict-qualified pointer is safe at the beginning of the block in
which the pointer is declared because no preexisting aliases may also be used to
reference that object. The cached value must be restored to the object by the
end of the block, where preexisting aliases again become available. New aliases
may be formed within the block, but these must all depend on the value of
therestrict-qualified pointer so that they can be identified and adjusted to
refer to the cached value. For arestrict-qualified pointer at file scope, the
block is the body of each function in the file [Walls 2006]. Developers should
be aware that C++ does not support therestrictqualifier, but some C++ compiler
implementations support an equivalent qualifier as an extension. The C Standard
[ISO/IEC 9899:2024] identifies the followingundefined behavior 66: This is an
oversimplification, however, and it is important to review the formal definition
ofrestrictin subclause 6.7.3.1 of the C Standard to properly understand
undefined behaviors associated with the use ofrestrict-qualified pointers.
"""
severity = "Medium"
likelihood = "Probable"
priority = "P4"
level = "L3"
cert_version = "2016 Edition (Wiki)"
last_modified = "Oct 29, 2025"

[rules.cert_c.EXP43-C]
enabled = true

[references]
wiki = "https://wiki.sei.cmu.edu/confluence/display/c/EXP43-C.+Avoid+undefined+behavior+when+using+restrict-qualified+pointers"