Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-6708398

Support integer overflow

XMLWordPrintable

    • Icon: Enhancement Enhancement
    • Resolution: Fixed
    • Icon: P4 P4
    • 8
    • 6
    • core-libs
    • b28
    • x86
    • windows_vista
    • Verified

      A DESCRIPTION OF THE REQUEST :
      Operations on integer values are performed in modulo arithmetic, and
      as a result do not throw exceptions when the result cannot be represented.
        To detect results that cannot be represented, the programmer has to add
      lengthy and complex code, which seldom is done.
      This makes Java applications weak when facing security attacks.
      Security vulnerabilities are more and more filed regarding integer overflows.
      This is becoming thus a big weak spots in applications.


      JUSTIFICATION :
      An enhancement is necessary to close a hole in security.

      EXPECTED VERSUS ACTUAL BEHAVIOR :
      EXPECTED -
      There is a need for integer operations that can throw an exception when
      the result cannot be represented. This can be provided in several ways:
      with a new primitive type, or with new operations, or with some compilation
      option.
      ACTUAL -
      Integer operations do not throw exceptions whe they cannot represent the
      result, and do not allow to easily check overflow either.

            rriggs Roger Riggs
            ndcosta Nelson Dcosta (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved:
              Imported:
              Indexed: