Products
In-IDE
IDE extension that lets you fix coding issues before they exist!
Discover SonarQube for IDE
SaaS
Setup is effortless and analysis is automatic for most languages
Discover SonarQube Cloud
Self-Hosted
Fast, accurate analysis; enterprise scalability
Discover SonarQube Server

C++ static code analysis

Unique rules to find Bugs, Vulnerabilities, Security Hotspots, and Code Smells in your C++ code

Filtered: 17 rules found

misra-advisory

Impact

Clean code attribute

All variables should be initialized

consistency - conventional

maintainability

Code Smell

Why is this an issue?

More Info

This rule is part of MISRA C++:2023.

MISRA Rule 11.6.1

Category: Advisory

Analysis Type: Decidable,Single Translation Unit

Amplification

All variables should either be explicitly or implicitly initialized.

Apart from the following, all variables should be explicitly initialized with an associated initializer in their definition:

Variables of class type, or
Function parameters (which are initialized with the corresponding argument value), or
Variables with static storage duration (which are zero-initialized by default).

Rationale

Having several states within a program increases the risk of defects being introduced. Each variable that is first uninitialized, then set to a value creates two program states. It is therefore better to initialize the variable directly to a value that is to be used. The intent of this rule is not that each variable is initialized with some value, but that it is initialized with its real value; the one that will be used when the variable is next read.

In order to achieve this, the variable definition can be delayed until the "right" value is available. This naturally leads to reducing the variable’s scope, reducing the risk of the variable being used inappropriately. An immediately evaluated lambda can be used to compute a value when a variable’s initialization is more complex.

In many cases, initializing the variable within its definition allows it to be a constant definition.

Note: there are many ways to explicitly initialize a variable. When possible, the list-initialization syntax (with curly braces) should be used as it does not suffer from the issues that arise from the use of other syntactic forms (e.g. narrowing or declaring a function while trying to define a variable, also known as "the most vexing parse").

Example

void f( bool cond )
{
  int32_t i;                        // Non-compliant

  if ( cond ) { i =  42; }
  else        { i = -1;  }

  int32_t j = cond ? 42 : -1;       // Compliant
  int32_t k = [&]()                 // Compliant
    {
      if ( cond ) { return 42; }
      else        { return -1; }
    }();

  string s;                         // Compliant - default-initialized
}

int32_t g;                          // Compliant - static initialization applies

void f()
{
  thread_local int32_t i;           // Compliant - static initialization applies
}

Available In:

Catch issues on the fly,
in your IDE

Detect issues in your GitHub, Azure DevOps Services, Bitbucket Cloud, GitLab repositories

Analyze code in your
on-premise CI

In-IDE

SaaS

Self-Hosted