ISO/IEC TS 17961 Checks

JavaScript is not currently enabled, but is required for full CodeSonar manual search and browse functionality.

If you are viewing this file in your hub's Web GUI, enable JavaScript in your browser: you will also need it for GUI functionality.

If you opened this file directly from disk, your browser may be directly suppressing JavaScript functionality: certain browsers perform this suppression on local files (but not files delivered by web servers) for security reasons.

If you access the manual through the hub's Web GUI, the functionality will not be suppressed because the hub is a web server.
Alternatively, your browser may allow you to explicitly disable the security setting that suppresses functionality. See the CodeSonar FAQ for more information.

CodeSonar^® 9.0p0 Hot Tips

CONFIDENTIAL

CodeSecure Inc

ISO/IEC TS 17961 Checks

The categories list for each CodeSonar warning includes any relevant rule identifiers from ISO/IEC TS 17961 "C Secure Coding Rules Technical Specification".

A broader set of correspondences between ISO/IEC TS 17961 rule identifiers and CodeSonar warning classes is shown in Broad Mapping: ISO/IEC TS 17961.

A CSV version of this table is provided in TS17961-mapping.csv.

Introduction
Relevant Warning Classes
Enabling ISO/IEC TS 17961 Checks

Introduction

The categories list for each CodeSonar warning includes any relevant rule identifiers from ISO/IEC TS 17961 "C Secure Coding Rules Technical Specification".

This version of CodeSonar (9.0p0) uses ISO/IEC TS 17961:2013, published November, 2013.

Relevant Warning Classes

The following table shows the CodeSonar warning classes that are associated with ISO/IEC TS 17961 rules.

TS17961	C Warning Classes
TS17961:5.1-ptrcomp 5.1. Accessing an object through a pointer to an incompatible type	Cast Removes const Qualifier Cast Removes volatile Qualifier Cast: Arithmetic Type/Void Pointer Cast: Non-integer Arithmetic Type/Object Pointer Cast: Object Pointers Conversion from Function Pointer Conversion to Function Pointer Conversion: Pointer to Incomplete Conversion: Void Pointer to Object Pointer
TS17961:5.2-accfree 5.2. Accessing freed memory	Use After Free
TS17961:5.3-accsig 5.3. Accessing shared objects in signal handlers	Use of signal
TS17961:5.4-boolasgn 5.4. No assignment in conditional expressions	Assignment in Conditional
TS17961:5.5-asyncsig 5.5. Calling functions in the C Standard Library other than abort, _Exit, and signal from within a signal handler	Use of signal
TS17961:5.6-argcomp 5.6. Calling functions with incorrect arguments	Array Parameter Mismatch Coercion Alters Value Coercion: Integer Constant to Pointer Conversion from Function Pointer Conversion to Function Pointer Conversion: Pointer to Incomplete Conversion: Pointer/Integer Conversion: Void Pointer to Object Pointer Inconsistent Function Declarations
TS17961:5.7-sigcall 5.7. Calling signal from interruptible signal handlers	Use of signal
TS17961:5.8-syscall 5.8. Calling system	Use of system
TS17961:5.9-padcomp 5.9. Comparison of padding data	-
TS17961:5.10-intptrconv 5.10. Converting a pointer to integer or integer to pointer	Conversion: Pointer/Integer
TS17961:5.11-alignconv 5.11. Converting pointer values to more strictly aligned pointer types	-
TS17961:5.12-filecpy 5.12. Copying a FILE object	FILE* Dereference
TS17961:5.13-funcdecl 5.13. Declaring the same function or object in incompatible ways	Global Variable Declared with Different Types Inconsistent Function Declarations Inconsistent Object Declarations
TS17961:5.14-nullref 5.14. Dereferencing an out-of-domain pointer	Null Pointer Dereference Return Pointer to Local Tainted Buffer Access Unchecked Parameter Dereference
TS17961:5.15-addrescape 5.15. Escaping of the address of an automatic object	Use of putenv
TS17961:5.16-signconv 5.16. Conversion of signed characters to wider integer types before a check for EOF	Cast Alters Value Coercion Alters Value Negative Character Value
TS17961:5.17-swtchdflt 5.17. Use of an implied default in a switch statement	Malformed switch Statement Missing default
TS17961:5.18-fileclose 5.18. Failing to close files or free dynamic memory when they are no longer needed	Leak
TS17961:5.19-liberr 5.19. Failing to detect and handle standard library errors	Ignored Return Value
TS17961:5.20-libptr 5.20. Forming invalid pointers by library function	-
TS17961:5.21-invptr 5.21. Forming or using out-of-bounds pointers or array subscripts	Pointer Before Beginning of Object Pointer Past End of Object
TS17961:5.22-dblfree 5.22. Freeing memory multiple times	Double Free
TS17961:5.23-usrfmt 5.23. Including tainted or out-of-domain input in a format string	Float-typed Loop Counter Format String Format String Injection
TS17961:5.24-inverrno 5.24. Incorrectly setting and using errno	Missing Test of Error Code Non-zero Error Code
TS17961:5.25-diverr 5.25. Integer division errors	Division By Zero Float Division By Zero
TS17961:5.26-ioileave 5.26. Interleaving stream inputs and outputs without a flush or positioning call	-
TS17961:5.27-strmod 5.27. Modifying string literals	Non-const String Literal
TS17961:5.28-libmod 5.28. Modifying the string returned by getenv, localeconv, setlocale, and strerror	Returned Pointer Not Treated as const
TS17961:5.29-intoflow 5.29. Overflowing signed integers	Addition Overflow of Allocation Size Addition Overflow of Size Integer Overflow of Allocation Size Multiplication Overflow of Allocation Size Multiplication Overflow of Size
TS17961:5.30-nonnullstr 5.30. Passing a non-null-terminated string to a library function	No Space For Null Terminator Unterminated C String
TS17961:5.31-chrsgnext 5.31. Passing arguments to character-handling functions that are not representable as unsigned char	Negative Character Value
TS17961:5.32-restrict 5.32. Passing pointers into the same object as arguments to different restrict-qualified parameters	Restrict Qualifier Used
TS17961:5.33-xfree 5.33. Reallocating or freeing memory that was not dynamically allocated	Type Mismatch
TS17961:5.34-uninitref 5.34. Referencing uninitialized memory	Uninitialized Variable
TS17961:5.35-ptrobj 5.35. Subtracting or comparing two pointers that do not refer to the same array	Comparison of Unrelated Pointers Subtraction of Unrelated Pointers
TS17961:5.36-taintstrcpy 5.36. Tainted strings are passed to a string copying function	Use of strcpy
TS17961:5.37-sizeofptr 5.37. Taking the size of a pointer to determine the size of the pointed-to type	sizeof Array Parameter
TS17961:5.38-taintnoproto 5.38. Using a tainted value as an argument to an unprototyped function pointer	Function Pointer
TS17961:5.39-taintformatio 5.39. Using a tainted value to write to an object using a formatted input or output function	Tainted Write
TS17961:5.40-xfilepos 5.40. Using a value for fsetpos other than a value returned from fgetpos	-
TS17961:5.41-libuse 5.41. Using an object overwritten by getenv, localeconv, setlocale, and strerror	-
TS17961:5.42-chreof 5.42. Using character values that are indistinguishable from EOF	-
TS17961:5.43-resident 5.43. Using identifiers that are reserved for the implementation	-
TS17961:5.44-invfmtstr 5.44. Using invalid format strings	Format String Type Error
TS17961:5.45-taintsink 5.45. Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink	Addition Overflow of Allocation Size Addition Overflow of Size Buffer Overrun Buffer Underrun Integer Overflow of Allocation Size Multiplication Overflow of Allocation Size Multiplication Overflow of Size Subtraction Underflow of Allocation Size Subtraction Underflow of Size Tainted Allocation Size Tainted Buffer Access Truncation of Allocation Size Truncation of Size Unreasonable Size Argument

Enabling ISO/IEC TS 17961 Checks

CodeSonar ships with a taxonomy preset for TS17961 checks:

ts17961

Enables warning classes such that a given class C is enabled if all of the following are true.

C is closely mapped to one or more ISO/IEC TS 17961 rules (that is, it appears in the table above), and
no other classes enabled by the preset are more closely related to the same rules, and
C is not diagnostic-only (that is, it does not have a DIAG.* mnemonic).

You can apply the ts17961 preset to the CodeSonar build/analysis as shown in the following table.

Command Line	Specify -preset ts17961 as part of your build/analysis command. For example: codesonar analyze MyProj -preset ts17961 localhost:7340 make
Define as a default preset	Copy ts17961.conf from $CSONAR/codesonar/presets/ to $CSONAR/codesonar/default_presets/. OR Use the CodeSonar Configuration Tool Modify Analysis Settings option.
Windows Build Wizard	Select ts17961 from the Preset list on screen 2.
Eclipse Plug-In	Select ts17961 from the Presets list in the Properties dialog.
Visual Studio Plug-In	Select ts17961 from the Presets list in the Project Properties dialog.

Enabling checks for specific rules

To enable checks for all the warning classes associated with a specific ISO/IEC TS 17961 rule with number num and short name name, include the following in the project configuration file:

WARNING_FILTER += allow categories:"TS17961:num-name"

For example:

WARNING_FILTER += allow categories:"TS17961:5.1-ptrcomp"

To enable checks for several rules, include several WARNING_FILTER lines of this form.

Enabling individual warning classes

To enable a single warning class check, follow the instructions in the documentation for the corresponding warning class. Warning class documentation links are provided above.