...
The result of the / operator is the quotient from the division of the first arithmetic operand by the second arithmetic operand. Division operations are susceptible to divide-by-zero errors. Overflow can also occur during two's-complement signed integer division when the dividend is equal to the minimum (negative) value for the signed integer type and the divisor is equal to -1 (see INT32-C. Ensure that operations on signed integers do not result in overflow).
...
Non-Compliant Code Example
This code can result in a divide-by-zero error during the division of the signed operands sl1 and sl2.
| Code Block | ||
|---|---|---|
| ||
signed long sl1, sl2, result;
result = sl1 / sl2;
|
Compliant Solution
This compliant solution tests the suspect division operation to guarantee there is no possibility of divide-by-zero errors or signed overflow.
| Code Block | ||
|---|---|---|
| ||
signed long sl1, sl2, result;
if ( (sl2 == 0) || ( (sl1 == LONG_MIN) && (sl2 == -1) ) ) {
/* handle error condition */
}
result = sl1 / sl2;
|
...
Modulo
The modulo operator provides the remainder when two operands of integer type are divided.
Non-Compliant Code Example
This code can result in a divide-by-zero error during the modulo operation on the signed operands sl1 and sl2.
...
| Code Block | ||
|---|---|---|
| ||
signed long sl1, sl2, result;
result = sl1 % sl2;
|
Compliant Solution
This compliant solution tests the suspect modulo operation to guarantee there is no possibility of a divide-by-zero error or an overflow error.
| Code Block | ||
|---|---|---|
| ||
signed long sl1, sl2, result;
if ( (sl2 == 0 ) || ( (sl1 == LONG_MIN) && (sl2 == -1) ) ) {
/* handle error condition */
}
result = sl1 % sl2;
|
...
Risk Assessment
A divide by zero can result in abnormal program termination and denial of service.
...