Page History

...

Converting from pointer to integer or vice versa results in code that is not portable and may create unexpected pointers to invalid memory locations.

Rule	Severity	Likelihood	Detectable	RepairableRemediation Cost	Priority	Level
INT36-C	Low	Probable	Yes	NoHigh	P2P4	L3

Automated Detection

Tool

Version

Checker

Description

Astrée

Include Page

	Astrée_V
	Astrée_V

pointer-integral-cast

pointer-integral-cast-implicit

function-pointer-integer-cast

function-pointer-integer-cast-implicit

Fully checked

Axivion Bauhaus Suite

Include Page

	Axivion Bauhaus Suite_V
	Axivion Bauhaus Suite_V

CertC-INT36

Fully implemented

Clang

Include Page

	Clang_V
	Clang_V

-Wint-to-pointer-cast, -Wint-conversion

Can detect some instances of this rule, but does not detect all

CodeSonar

Include Page

	CodeSonar_V
	CodeSonar_V

LANG.CAST.PC.CONST2PTR
LANG.CAST.PC.INT

Conversion: integer constant to pointer
Conversion: pointer/integer

Compass/ROSE

Coverity

Include Page

	Coverity_V
	Coverity_V

PW.POINTER_CONVERSION_LOSES_BITS

Fully implemented

Cppcheck Premium

Include Page

	Cppcheck Premium_V
	Cppcheck Premium_V

premium-cert-int36-c

Helix QAC

Include Page

	Helix QAC_V
	Helix QAC_V

C0303, C0305, C0306, C0309, C0324, C0326, C0360, C0361, C0362

C++3040, C++3041, C++3042, C++3043, C++3044, C++3045, C++3046, C++3047, C++3048

Klocwork

Include Page

	Klocwork_V
	Klocwork_V

MISRA.CAST.OBJ_PTR_TO_INT.2012

LDRA tool suite

Include Page

	LDRA_V
	LDRA_V

439 S, 440 S

Fully implemented

Parasoft C/C++test

Include Page

	Parasoft_V
	Parasoft_V

CERT_C-INT36-b

A conversion should not be performed between a pointer to object type and an integer type other than 'uintptr_t' or 'intptr_t'

PC-lint Plus

Include Page

	PC-lint Plus_V
	PC-lint Plus_V

4287

Partially supported: reports casts from pointer types to smaller integer types which lose information

Polyspace Bug Finder

Include Page

	Polyspace Bug Finder_V
	Polyspace Bug Finder_V

CERT C: Rule INT36-C

Checks for unsafe conversion between pointer and integer (rule partially covered)

PVS-Studio

Include Page

	PVS-Studio_V
	PVS-Studio_V

V527, V528, V542, V566, V601, V647, V1091

RuleChecker

Include Page

	RuleChecker_V
	RuleChecker_V

pointer-integral-cast

pointer-integral-cast-implicit

function-pointer-integer-cast

function-pointer-integer-cast-implicit

Fully checked

SonarQube C/C++ Plugin

Include Page

	SonarQube C/C++ Plugin_V
	SonarQube C/C++ Plugin_V

S1767

Partially implemented

...

Taxonomy	Taxonomy item	Relationship
CERT C	INT11-CPP. Take care when converting from pointer to integer or integer to pointer	Prior to 2018-01-12: CERT: Unspecified Relationship
ISO/IEC TR 24772:2013	Pointer Casting and Pointer Type Changes [HFC]	Prior to 2018-01-12: CERT: Unspecified Relationship
ISO/IEC TS 17961:2013	Converting a pointer to integer or integer to pointer [intptrconv]	Prior to 2018-01-12: CERT: Unspecified Relationship
CWE 2.11	CWE-587, Assignment of a Fixed Address to a Pointer	2017-07-07: CERT: Partial overlap
CWE 2.11	CWE-704	2017-06-14: CERT: Rule subset of CWE
CWE 2.11	CWE-758	2017-07-07: CERT: Rule subset of CWE
CWE 3.1	CWE-119, Improper Restriction of Operations within the Bounds of a Memory Buffer	2018-10-19:CERT:None
CWE 3.1	CWE-466, Return of Pointer Value Outside of Expected Range	2018-10-19:CERT:None

CERT-CWE Mapping Notes

Key here for mapping notes

...

Intersection(INT36-C,CWE-466) = ∅

An example explaining the above two equations follows:

static char x[3];

char* foo() {

...

Space shortcuts

Page tree

Versions Compared

Old Version 171

New Version 172

Key

Automated Detection

CERT-CWE Mapping Notes