SEI CERT Oracle Coding Standard for Java

Space shortcuts

Page tree

Versions Compared

Old Version 106

changes.mady.by.user David Svoboda

Saved on

compared with

New Version Current

changes.mady.by.user David Svoboda

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: REM cost reform

...

This compliant solution range-checks both the i and j variables before converting to the resulting integer type. Because both values are the maximum value is out of the valid range for a short, this code will always throw an ArithmeticException.

...

Casting a numeric value to a narrower type can result in information loss related to the sign and magnitude of the numeric value. As a result, data can be misrepresented or interpreted incorrectly.

Rule

Severity

Likelihood

Detectable

RepairableRemediation Cost

Priority

Level

NUM12-J

Low

Unlikely

Yes

YesMedium

P2P3

L3

Automated Detection

Automated detection of narrowing conversions on integral types is straightforward. Determining whether such conversions correctly reflect the intent of the programmer is infeasible in the general case. Heuristic warnings could be useful.

(Java) (Java) (Java) (Java)
ToolVersionCheckerDescription
CodeSonar
Include Page
CodeSonar_V
CodeSonar_V

JAVA.MATH.APPROX.E
JAVA.MATH.APPROX.PI
JAVA.CAST.FTRUNC
JAVA.ARITH.FPEQUAL

Approximate e Constant


Approximate pi Constant


Cast: Integer to Floating Point


Floating Point Equality

Parasoft Jtest
Include Page
Parasoft_V
Parasoft_V
CERT.NUM12.CLPDo not cast primitive data types to lower precision
PVS-Studio

Include Page
PVS-Studio_V
PVS-Studio_V

V6124

Related Guidelines

SEI CERT C Coding Standard

INT31-C. Ensure that integer conversions do not result in lost or misinterpreted data
FLP34-C. Ensure that floating-point conversions are within range of the new type

ISO/IEC TR 24772:2010

Numeric Conversion Errors [FLC]

MITRE CWE

CWE-681, Incorrect Conversion between Numeric Types
CWE-197, Numeric Truncation Error

...