Presentation is loading. Please wait.

Presentation is loading. Please wait.

C Security Pre Function

Published byΜέγαιρα Παππάς Modified over 5 years ago

Similar presentations

Presentation on theme: "C Security Pre Function"— Presentation transcript:

1 C Security Pre Function
Pepper

2 Standards The CERT C Secure Coding Standard
CSC270 is Not testing on these Familiarity Sometimes without the reason

3 Avoid Single Argument Printf
When you are just printing one line without any variables, use one of the following: puts (string); (the \n will be appended) printf(“%s”, string); Ex bad: printf(“hello\n”); Ex good: puts(“hello”); printf(“%s”, “hello”);

4 Arithmetic Overflow Sum = integer1 + integer2 can yield a number too large for an integer. <limits.h> holds INT_MAX and INT_MIN Check before calculating Unsigned ints: UNIT_MAX from <limits.h> trap negative entries

5 Scanf’s return value If input fails (wrong type), returns EOF (defined in <stdio.h>) If it succeeds, it returns the number of variables read Check that the number read is successful Also validate range

Download ppt "C Security Pre Function"

Similar presentations

Computer Programming w/ Eng. Applications

Computer Programming w/ Eng. Applications
Making Choices in C if/else statement logical operators break and continue statements switch statement the conditional operator.

Making Choices in C if/else statement logical operators break and continue statements switch statement the conditional operator.
C Characters & Strings Character Review Character Handling Library Initialization String Conversion Functions String Handling Library Standard Input/Output.

C Characters & Strings Character Review Character Handling Library Initialization String Conversion Functions String Handling Library Standard Input/Output.
 2000 Prentice Hall, Inc. All rights reserved. 1 8.2Fundamentals of Strings and Characters String declarations –Declare as a character array or a variable.

 2000 Prentice Hall, Inc. All rights reserved Fundamentals of Strings and Characters String declarations –Declare as a character array or a variable.
By Senem Kumova Metin 1 POINTERS + ARRAYS + STRINGS REVIEW.

By Senem Kumova Metin 1 POINTERS + ARRAYS + STRINGS REVIEW.
CS1061 C Programming Lecture 10: Macros, Casting and Intro. to Standard Library A. O’Riordan, 2004.

CS1061 C Programming Lecture 10: Macros, Casting and Intro. to Standard Library A. O’Riordan, 2004.
1 Introduction to Computers and Programming Class 3 Introduction to C Professor Avi Rosenfeld.

1 Introduction to Computers and Programming Class 3 Introduction to C Professor Avi Rosenfeld.
Testing a program Remove syntax and link errors: Look at compiler comments where errors occurred and check program around these lines Run time errors:

Testing a program Remove syntax and link errors: Look at compiler comments where errors occurred and check program around these lines Run time errors:
C Programming. Chapter – 1 Introduction Study Book for one month – 25% Learning rate Use Compiler for one month – 60%

C Programming. Chapter – 1 Introduction Study Book for one month – 25% Learning rate Use Compiler for one month – 60%
Operators in Python. Arithmetic operators Some operators in Python will look familiar (+, -, *, /) Others are new to you (%, //, **) All of these do work.

Operators in Python. Arithmetic operators Some operators in Python will look familiar (+, -, *, /) Others are new to you (%, //, **) All of these do work.
How to start Visual Studio 2008 or 2010 (command-line program)

How to start Visual Studio 2008 or 2010 (command-line program)
Lecture 2: Introduction to C Programming. OBJECTIVES In this lecture you will learn:  To use simple input and output statements.  The fundamental data.

Lecture 2: Introduction to C Programming. OBJECTIVES In this lecture you will learn:  To use simple input and output statements.  The fundamental data.
File IO and command line input CSE 2451 Rong Shi.

File IO and command line input CSE 2451 Rong Shi.
CSCE 548 Integer Overflows Format String Problem.

CSCE 548 Integer Overflows Format String Problem.
1 IS 2150 / TEL 2810 Introduction to Security James Joshi Associate Professor, SIS Lecture 12.2 Nov 20, 2012 Integer Issues.

1 IS 2150 / TEL 2810 Introduction to Security James Joshi Associate Professor, SIS Lecture 12.2 Nov 20, 2012 Integer Issues.
CSCI 130 More on Arrays. Multi-dimensional Arrays Multi - Dimensional arrays: –have more than one subscript –can be directly initialized –can be initialized.

CSCI 130 More on Arrays. Multi-dimensional Arrays Multi - Dimensional arrays: –have more than one subscript –can be directly initialized –can be initialized.
 2007 Pearson Education, Inc. All rights reserved. A Simple C Program 1 /* ************************************************* *** Program: hello_world.

 2007 Pearson Education, Inc. All rights reserved. A Simple C Program 1 /* ************************************************* *** Program: hello_world.
C is a high level language (HLL)

C is a high level language (HLL)
7.1.2001Sudeshna Sarkar, IIT Kharagpur 1 Programming and Data Structure Sudeshna Sarkar Lecture 3.

Sudeshna Sarkar, IIT Kharagpur 1 Programming and Data Structure Sudeshna Sarkar Lecture 3.
Announcements Assignment 2 Out Today Quiz today - so I need to shut up at 4:25 1.

Announcements Assignment 2 Out Today Quiz today - so I need to shut up at 4:25 1.

Similar presentations

Ads by Google