Loading...
[PDF] Secure Coding in C++: Integers - SEI Digital Library
Integers represent a growing and underestimated source of vulnerabilities in C++ programs Integer range checking has not been systematically applied in the
[PDF] Ranged Integers for the C Programming Language
ranged integers that is integer types with a defined range of values An extension to the C programming language's integer type system [ISO/IEC 2001]
[PDF] Summary of C Programming Basic Data Types
Summary of C Programming Basic Data Types Most common integer type Integer Constant Formats - normally signed ints unless a trailing L or U
[PDF] Understanding C Integer Boundaries (overflows & underflows)
Integer types (including char types) represents different integer sizes that can be mapped to an architecture dependent data type Integer types have certain
[PDF] c programming: integer division and modulo (%) - UC Davis
C PROGRAMMING: INTEGER DIVISION AND MODULO ( ) When two integers are divided the result is truncated That is when the computer calculates
[PDF] C Integers
Binghamton University CS-220 Spring 2019 Data in C: Integers Spring 2019 C Built-in Types Numbers Integer Binary 2's complement
[PDF] Secure Coding in C and C++
signed integer by truncating the high-order bits Page 12 12 Signed Integer Conversions 2 ? When signed integers
[PDF] Integer Arithmetic and Undefined Behavior in C
23 jan 2018 · Perils of C integer arithmetic unsigned and especially signed ? Undefined behavior (UB) in C ? As defined in the C99 language standard
[PDF] Data Types and Representations Since we will be performing
Since we will be performing numerical calculations using the C compiler it is and 10 toes we have been brought up expressing integers and real numbers
[PDF] C Language Features - Mikrocontrollernet
The MPLAB XC8 compiler supports integer data types with 1 2 3 and 4 byte sizes as well as a single bit type Table 5-1 shows the data types and their
![[PDF] C Integers](https://pdfprof.com/EN_PDFV2/Docs/PDF_6/945_6L03_C_Integers.pdf.jpg "[PDF] C Integers")
945_6L03_C_Integers.pdf Binghamton
University
CS-220
Spring 2019
Data in C:
Integers
1Binghamton
University
CS-220
Spring 2019
Variable Concept
2Memory
0000 0000 0000 0000 0000 0000 0011 1100
Age0101 0100
First_Initial
0100 0000 1000 0000 0000 0000 0000 0000
gpaChap 2.1
Binghamton
University
CS-220
Spring 2019
Data Types
ĂŐĞĂĐŚƉŝĞĐĞŽĨĚĂƚĂͬůŽĐĂƚŝŽŶŝŶŵĞŵŽƌLJǁŝƚŚĂ͞ƚLJƉĞ͟
Type tells compiler how many bits to use
Type tells compiler how to interpret those bits
Enables automatic conversion from one type to another Enables compiler to check to make sure data is used correctly 3Binghamton
University
CS-220
Spring 2019
C Built-in Types
Numbers
Integer
ŝŶĂƌLJϮ͛ƐĐŽŵƉůĞŵĞŶƚ char 8 bit short16 bit
int32 bit
long64 bit
RealIEEE 754
float32 bit
double64 bit
Text char ASCII void 4Binghamton
University
CS-220
Spring 2019
Number represented by a vector of nďŝŶĂƌLJĚŝŐŝƚƐ;ϭ͛ƐŽƌϬ͛ƐͿ
If leftmost bit is a zero, number is positive, simple binaryݒܽ
ୀ ିଵ ܾIf leftmost bit is a one, number is negative
ݒܽ
ୀ ିଵ ܾChap 2.2
2726252423222120
11111010
2726252423222120
00001010
Binghamton
University
CS-220
Spring 2019
C Idiom: (Using Leaks) 2x
In binary representation, 2xis just a single 1 in the xthbit e.g. 23= 0b0000 1000 = 8ƐĞƚŚĞ͞ƐŚŝĨƚ͟ŽƉĞƌĂƚŽƌ͕фф͕ƚŽĐĂůĐƵůĂƚĞϮx
int x=3; int y=1<University
CS-220
Spring 2019
C idiom: (using Leaks) Strings of x1 bits
Use the fact that 2xʹ1 is a string of x1 bits
e.g. 23= 8 = 0b000 1000 -1 = 0b000 0001 -----------------------23ʹ1 = 7 = 0b000 0111
Combine 2xidiom with -1
int x=3; int y=(1<University
CS-220
Spring 2019
To multiply by -1, flip the bits and add 1
͞ůŝƉƚŚŝƐďŝƚƐ͟ŝƐƚŚĞƐĂŵĞĂƐϬďϭϭϭ͙ϭϭϭϭʹu_value
1-0=1, flip a zero to a one
1-1=0, flip a one to a zero
Never carry
Ϭďϭϭϭ͙͘ϭϭϭϭŝƐϮn-ϭ͕ƐŽ͞ĨůŝƉƚŚĞďŝƚƐ͟ŝƐ;Ϯn-1)-u_value
ݑ̴ݒ݈ܽݑ݁ൌσୀିଵܾ flip the bits and add 1 is: (2n-1)-u_value+1=2n-u_value=-(u_value-2n)= -valueBinghamton
University
CS-220
Spring 2019
C idiom: Bitwise AND to select bits
ƌĞĂƚĞĂ͞ŵĂƐŬ͟ƚŚĂƚŚĂƐϭďŝƚƐĨŽƌĞǀĞƌLJŝŶƚĞƌĞƐƚŝŶŐďŝƚ͕ĂŶĚϬĨŽƌ
every bit you want to ignoreBitwise AND the mask with the original value
Result has the original bit in the interesting positions0&1=0, 1&1=1
Result has 0 in the ignorable positions
0&0 = 0, 1&0=0
ǀĂůƵĂƚĞ͞ƚƌƵƚŚ͟ŽĨƌĞƐƵůƚʹ͞ƌƵĞ͟ŵĞĂŶƐĂƚůĞĂƐƚŽŶĞŝŶƚĞƌĞƐƚŝŶŐďŝƚ
ǁĂƐŽŶ;ϭͿ͕͞ĂůƐĞ͟ŵĞĂŶƐĂůůŝŶƚĞƌĞƐƚŝŶŐďŝƚƐǁĞƌĞŽĨĨ;ϬͿ͘
Binghamton
University
CS-220
Spring 2019
#includeUniversity
CS-220
Spring 2019
Using Hexadecimal Numbers
Shorthand for writing bits
Each hexadecimal digit represents 4 bits
Much easier to read/write/remember
DecHexBin
00x00b0000
10x10b0001
20x20b0010
30x30b0011
40x40b0100
50x50b0101
60x60b0110
70x70b0111
80x80b1000
90x90b1001
100xA0b1010
110xB0b1011
120xC0b1100
130xD0b1101
140xE0b1110
150xF0b1111
Binghamton
University
CS-220
Spring 2019
Example: Print hex (without %x)
int main(int argc, char **argv) { long n=atol(argv[1]); int i; printf("%ld= 0x",n); unsigned long mask=(1<<4)-1; // Four ones in the rightmost byte char * xd="0123456789ABCDEF"; for(i=2*sizeof(n)-1;i>=0;i--) { int v=(n&(mask<<(i*4)))>>(i*4); printf("%c",xd[v]); if (0==i%4) printf(" "); } printf("\n"); return 0; }Binghamton
University
CS-220
Spring 2019
Example: alternate print hex (without %x)
int main(int argc, char **argv) { union { long ln; unsigned char lc[8]; } n; char * xd="0123456789ABCDEF"; n.ln=atol(argv[1]); printf("%ld= 0x",n.ln); for(int i=0;iBinghamton
University
CS-220
Spring 2019
C Leaky Idiom Multiply by 2x
Instead of multiplying a number by a power of two, shift it to the left int x=2; int y=atoi(argv[1]); int ym= y<2726252423222120
00001010
2726252423222120
00101000
Binghamton
University
CS-220
Spring 2019
C Leaky Idiom Divide by 2x
Instead of dividing by 2x, shift right by x
int x=2; int y=atoi(argv[1]); int yd = y>>x; // * yd = y / 2^x (almost)Warning ʹnegative numbers round differently!
Multiplication ʹrounds towards zero
Shifting ʹrounds down (towards ʹinfinity)
2726252423222120
00001010
2726252423222120
00000010
Binghamton
University
CS-220
Spring 2019
Unsigned Integers
ŚĂƐĂŶ͞ƵŶƐŝŐŶĞĚ͟ŬĞLJǁŽƌĚƚŚĂƚĐĂŶďĞƵƐĞĚƚŽŵŽĚŝĨLJƚLJƉĞ
e.g. unsigned short x;Enables representation in raw binary ʹŶŽƚƚǁŽ͛ƐĐŽŵƉůĞŵĞŶƚ
Extra bit enables two-times larger maximum number
Not much of a benefit
Impossible to represent negative numbers
Unsigned often leads to counter-intuitive results!More explanation coming later
Chap 2.2.2
Binghamton
University
CS-220
Spring 2019
Q: Why four flavors of Integers?
A: Space vs. Capacity trade-off
17Type#Bits1MinMaxU Max
char8-27=-12827-1=12728-1=255 short16-215=-32,768215-1=32,767216-1=65,535 int32~-2.15x 109~2.15 x 109~4.3 x 109 long64~-9 x 1018~9 x 1018~18.5x10181Number of bits may be different on different machines!
Binghamton
University
CS-220
Spring 2019
Leaky Abstraction: Infinite Integers
In mathematics, every integer, nhas a successor, n+1 Ŷ͕ŝŶƚĞŐĞƌƐĂƌĞĨŝŶŝƚĞ͙No indication of overflow!
For unsigned char, 255=0b1111 1111 + 1 = 0b0000 0000 = 0 For char, 127 = 0b0111 1111 +1 = 0b1000 0000 = -128нь-ь0-1+1+2-2+255
нь-ь0-1+1+2-2+127-128
Binghamton
University
CS-220
Spring 2019
Constants
Decimal numbers are signed integers: intx=93;
ĚĚ͟͞ƐƵĨĨŝdžƚŽŵĂŬĞƚŚĞŵƵŶƐŝŐŶĞĚ͗unsigned char uy=183U;
Almost never used ʹŽŶůLJŶĞĞĚĞĚŝĨƐŝŐŶĞĚǀĂůƵĞĚŽĞƐŶ͛ƚfit
Prefix with 0 to interpret as an octal number: int xa=013; // == 11 Prefix with x, 0x, X, or 0X for hexadecimal: int xb=0x12; //== 18ĚĚ͟͞ƐƵĨĨŝdžƚŽŵĂŬĞƚŚĞŵůŽŶŐ͗long yl= 0X000011110000FFFFL;
AlmostneverusedʹonlyneededifĐŽŶƐƚĂŶƚǀĂůƵĞĚŽĞƐŶ͛ƚfitint
Binghamton
University
CS-220
Spring 2019
Casting : C Data Format Conversion
When you cast a movie, you decide what role each
actor will playŶƉƌŽŐƌĂŵŵŝŶŐ͕ǁĞƵƐĞƚŚĞƚĞƌŵ͞ĐĂƐƚ͟ƚŽŝŶĚŝĐĂƚĞ
what role (type) we expect the bits to play In other words, how should your program interpret the specific bits in memory Unless explicitly cast, determine the interpretation based on the declared type of a variableBinghamton
University
CS-220
Spring 2019
Mixing Integer Types
Mixed Type Expressions
int x; long y; y=y*x;Assignment Statements
int x; long y; x=y*3.0;Argument Evaluation
int myfn(long x); int y=myfn(3);Explicit Casting
int x=7; long y = ((long)x)/3;C compiler could issue
an error message for mixed typesC compiler could
require explicit casting for all conversionsC could automatically
convert values, based on pre-defined rules 21Binghamton
University
CS-220
Spring 2019
C Automatic type conversion rules
In an expression (or part of an expression), C converts all componentsŝŶƚŚĂƚĞdžƉƌĞƐƐŝŽŶƚŽƚŚĞŵŽƐƚ͞ŐĞŶĞƌĂů͟ƚLJƉĞ͕ĂŶĚƚŚĞŶĞǀĂůƵĂƚĞƐƚŚĞ
expression using that general type In an assignment (or argument evaluation), C converts the value of the expression to the type of the receiverC converts expressions with a valid explicit cast
22Binghamton
University
CS-220
Spring 2019
Generality of Numeric Types
char unsigned char short unsigned short int unsigned int long unsigned long float double 23Most General
Least General
Binghamton
University
CS-220
Spring 2019
Converting Signed vs Unsigned
Bits stay exactly the same, but the bits are INTERPRETTED differently2726252423222120
11101010
char x = -22; unsigned char y=x; printf\); // prints y=234 unsigned char w = 234; char z=w; printf\); // prints z=-22Chap 2.2.5
Binghamton
University
CS-220
Spring 2019
Changing Integer Size
Truncate or Pad on left with sign bit
2726252423222120
11101010
21521421321221121029282726252423222120
1111111111101010
char x = -22; short y=x; short w = -22; char z=w;Chap 2.2.6
Binghamton
University
CS-220
Spring 2019
Changing Integer Size (unsigned)
Truncate or Pad on left with sign bit (=0)
2726252423222120
11101010
21521421321221121029282726252423222120
0000000011101010
unsigned char x = 234; unsigned short y=x; unsigned short w = 234; unsigned char z=w;Binghamton
University
CS-220
Spring 2019
Leaky Abstractions: Conversion Errors
When C converts a negative signed number to a positive number char x = -1; unsigned char y = x; printf\); When C converts a wide number to a smaller width, but the numberĚŽĞƐŶ͛ƚĨŝƚ
short x=260; char y = x; printf\);Binghamton
University
CS-220
Spring 2019
Unsigned Pitfall
unsigned intwidth=+8; signed intleftX= -13; if ((leftX< 0) && (leftX+ width) > 0) { printf\ }Binghamton
University
CS-220
Spring 2019
Abstraction
Bits are stored in memory from most significant at left to least significant at right (int100,000 = 0x0001 86A0)23123022922822722622522422322222122021921821721621521421321221121029282726252423222120
00000000000000011000011010100000
000186A0
Byte mByte m+1Byte m+2Byte m+3
Binghamton
University
CS-220
Spring 2019
Leaky Abstraction -ness
ŽŵĞŵĂĐŚŝŶĞƐƐƚŽƌĞĂƐĞdžƉĞĐƚĞĚ͙;ŝŐʹendian)
Some machines store least significant bytefirst! (Little-endian) S23022922822722622522422322222122021921821721621521421321221121029282726252423222120 b31b30b29b28b27b26b25b24b23b22b21b20b19b18b17b16b15b14b13b12b11b10b9b8b7b6b5b4b3b2b1b000000000000000011000011010100000
000186A0
Byte 42Byte 43Byte 44Byte 45
27262524232221202152142132122112102928223222221220219218217216S230229228227226225224
b31b30b29b28b27b26b25b24b23b22b21b20b19b18b17b16b15b14b13b12b11b10b9b8b7b6b5b4b3b2b1b010100000100001100000000100000000
A0860100
Byte 42Byte 43Byte 44Byte 45
Chap 2.1.3
Binghamton
University
CS-220
Spring 2019
Why Little Endian?
Casting/Conversion:
intx; /* 32 bits starting at byte 42 */ y = (short int) x; /* Put the least significant 16 bits from x into y */Big Endian
42434445
000186A0
x (shortint) xLittle Endian
42434445
A0860100
x (short int) xBinghamton
University
CS-220
Spring 2019
Big Endian vs. Little Endian Adder
Binghamton
University
CS-220
Spring 2019
When does Endian-ness Leak?
Only on multi-byte data types (short, int, long, float, double) Only when we look at the underlying bits or transfer binary data Big-endian machine: First byte is the most significant byte Everything works until we get binary data from a little-endian machine Little-endian machine: First byte is the least significant byte When hardware interprets the bits/bytes as a number, bytes are switchedĞĚŽŶ͛ƚĞǀĞŶŬŶŽǁŝĨĂŵĂĐŚŝŶĞŝƐďŝŐ-endian or little-endian!
Until: we get binary data from a big-endian machine OR Until we look at the bit representation of the data, not treated as a number