Products
In-IDE
IDE extension that lets you fix coding issues before they exist!
Discover SonarQube for IDE
SaaS
Setup is effortless and analysis is automatic for most languages
Discover SonarQube Cloud
Self-Hosted
Fast, accurate analysis; enterprise scalability
Discover SonarQube Server

Secrets
ABAP
Ansible
Apex
AzureResourceManager
C
C#
C++
CloudFormation
COBOL
CSS
Dart
Docker
Flex
Go
HTML
Java
JavaScript
JCL
Kotlin
Kubernetes
Objective C
PHP
PL/I
PL/SQL
Python
RPG
Ruby
Rust
Scala
Swift
Terraform
Text
TypeScript
T-SQL
VB.NET
VB6
XML

C static code analysis

Unique rules to find Bugs, Vulnerabilities, Security Hotspots, and Code Smells in your C code

Filtered: 34 rules found

pitfall

Impact

Clean code attribute

"goto" should jump to labels declared later in the same function
Code Smell
Dynamic heap memory allocation should not be used
Bug
"setjmp" and "longjmp" should not be used
Code Smell
Macros should not be #define'd or #undef'd within a block
Code Smell
Object declarations should contain no more than 2 levels of pointer indirection
Code Smell
Functions without parameters should be declared with parameter type "void"
Code Smell
Recursion should not be used
Code Smell
Functions should not be defined with a variable number of arguments
Code Smell
Constants of unsigned type should have a "U" suffix
Code Smell
If a function has internal linkage then all re-declarations shall include the static storage class specifer
Code Smell
Literal suffix "L" for long integers shall be upper case
Code Smell
Macro arguments should not contain preprocessing directives
Bug
All the elements of an aggregate should be provided with an initial value
Code Smell
Macros should not be used as replacements for "typedef" and "using"
Code Smell
Keywords shall not be used as macros identifiers
Code Smell
Logical operators should not be confused with bitwise operators
Code Smell
Include directives should not rely on non-portable search strategy
Code Smell
"#include" paths should be portable
Code Smell
Array indices should be placed between brackets
Code Smell
Bit fields should not be used
Code Smell
Conditionally executed code should be reachable
Bug
Control characters should not be used in literals
Code Smell
Octal and hexadecimal escape sequences should be terminated
Code Smell
Preprocessor directives should not be indented
Code Smell
"goto" statements should not be used to jump into blocks
Code Smell
Related "if/else if" statements should not have the same condition
Bug
"static" should not be used for the size of an array parameter
Code Smell
"switch" statements should not be nested
Code Smell
The sign of an unsigned variable should not be tested
Code Smell
Octal values should not be used
Code Smell
"for" loop stop conditions should be invariant
Code Smell
Control structures should use curly braces
Code Smell
Variables should not be shadowed
Code Smell
Control should not be transferred into a complex logic block using a "goto" or a "switch" statement
Code Smell

Control structures should use curly braces

intentionality - clear

maintainability

Code Smell

based-on-misra
cert
pitfall

Control structures are code statements that impact the program’s control flow (e.g., if statements, for loops, etc.)

Why is this an issue?

More Info

While not technically incorrect, the omission of curly braces can be misleading and may lead to the introduction of errors during maintenance.

In the following example, the two calls seem to be attached to the if statement, but only the first one is, and checkSomething will always be executed:

if (condition)  // Noncompliant
  executeSomething();
  checkSomething();

Adding curly braces improves the code readability and its robustness:

if (condition) {
  executeSomething();
  checkSomething();
}

The rule raises an issue when a control structure has no curly braces.

Available In:

Catch issues on the fly,
in your IDE

Detect issues in your GitHub, Azure DevOps Services, Bitbucket Cloud, GitLab repositories

Analyze code in your
on-premise CI

Developer Edition
Available Since
9.1

In-IDE

SaaS

Self-Hosted