sqc 0.4.13

Software Code Quality - CERT C compliance checker
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46

[metadata]
id = "ARR30-C"
type = "rule"
category = "ARR"
number = 30
title = "Do not form or use out-of-bounds pointers or array subscripts"
description = """
The C Standard identifies the following distinct situations in which undefined
behavior (UB) can arise as a result of invalid pointer operations:
UBDescriptionExample Code43Addition or subtraction of a pointer into, or just
beyond, an array object and an integer type produces a result that does not
point into, or just beyond, the same array object.Forming Out-of-Bounds
Pointer,Null Pointer Arithmetic44Addition or subtraction of a pointer into, or
just beyond, an array object and an integer type produces a result that points
just beyond the array object and is used as the operand of a unary*operator that
is evaluated.Dereferencing Past the End Pointer,Using Past the End Index46An
array subscript is out of range, even if an object is apparently accessible with
the given subscript, for example, in the lvalue expressiona[1][7]given the
declarationint a[4][5]).Apparently Accessible Out-of-Range Index59An attempt is
made to access, or generate a pointer to just past, a flexible array member of a
structure when the referenced object provides no elements for that array.Pointer
Past Flexible Array Member In this noncompliant code example, the
functionf()attempts to validate theindexbefore using it as an offset to the
statically allocatedtableof integers. However, the function fails to reject
negativeindexvalues. Whenindexis less than zero, the behavior of the addition
expression in the return statement of the function isundefined behavior 43. On
some implementations, the addition alone can trigger a hardware trap. On other
implementations, the addition may produce a result that when dereferenced
triggers a hardware trap. Other implementations still may produce a
dereferenceable pointer that points to an object distinct fromtable. Using such
a pointer to access the object may lead to information exposure or cause the
wrong object to be modified.
"""
severity = "High"
likelihood = "Likely"
priority = "P9"
level = "L2"
cert_version = "2016 Edition (Wiki)"
last_modified = "Jul 24, 2025"

[rules.cert_c.ARR30-C]
enabled = true

[references]
wiki = "https://wiki.sei.cmu.edu/confluence/display/c/ARR30-C.+Do+not+form+or+use+out-of-bounds+pointers+or+array+subscripts"
cwe = ["CWE-119", "CWE-121", "CWE-122", "CWE-124", "CWE-126", "CWE-127", "CWE-129", "CWE-123", "CWE-125", "CWE-394", "CWE-120", "CWE-20", "CWE-687", "CWE-786", "CWE-789"]