CERT.MSC.NORETURN_FUNC_RETURNS

Do not return from a function declared [[noreturn]].

Vulnerability and risk

Returning from a function marked [[noreturn]] results in undefined behavior that might be exploited to cause data-integrity violations.

Mitigation and prevention

Do not return from a function declared [[noreturn]].

Example

Copy

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
  #include <cstdlib>
  
  [[noreturn]] void f1(int i) {
      if (i > 0)
          throw "Received positive input";
      else if (i < 0) {
         //std::exit(0);
          i++;
          }
 }
 
 [[noreturn]] void f2(int i) {
   if (i > 0)
     throw "Received positive input";
   std::exit(0);
 }

External guidance

CERT MSC53-CPP: Do not return from a function declared [[noreturn]]