Introduction to variables
What is a variable?
A variable is simply a concept to make programming easier and more efficient. It is entirely possible to have a programming language without different types of variables, but it would be less efficient and more prone to errors.
The common variable types
A variable defines the amount of memory to be allocated for a particular type of data and how that memory chunk should be used for an application. The various different types of variables are differentiated either by the size of the memory chunk that they use or how the data stored at that memory block should be interpreted.
Learn Secure Coding
The table above shows definitions for some of the most common types of variables in 32- and 64-bit architectures. As shown in the image, some of the variable types are exactly the same size but are interpreted completely differently. For example, both long ints and doubles are eight bites, but one is designed to store an integer value while the other holds floating point values. A char* variable is also eight bytes but doesn’t store the target value at the indicated memory address. Instead, it stores a pointer to another block of memory where the array of chars will be stored.
Different variable types can also differ by the size of the values that they store. For example, a short int (two bytes) always stores a smaller range of values than the other types of ints. Similarly, doubles can hold more values than floats.
In most cases, the particular type of a variable doesn’t matter to an application as long as it can hold the desired value and have it be interpreted correctly. However, in some cases, the variety of different variable types can create the potential for exploitable vulnerabilities.
Signed vs. unsigned variables
With variables, the other important concept to understand is the difference between signed and unsigned variables. Whether a variable of a particular type is signed or unsigned impacts the range of values that it can contain.
Signed and unsigned variables of the same type are the same size. However, they are interpreted differently, as shown in the image above.
In a signed variable, the most significant bit of the value is used to indicate the sign of the value. A value of one in the most significant bit indicates a negative number, while a value of zero indicates a positive number.
An unsigned variable, on the other hand, is only capable of storing positive numbers. In this case, a value of one in the most significant bit indicates that the number is a relatively large value (i.e., greater than the midpoint in the range of values that the variable can store).
Signed and unsigned variables both have their advantages. A signed variable can hold negative values, while an unsigned variable can hold a larger range of positive values. However, it is vital to keep track of the signedness of the variable because only a small subset of their ranges (i.e., 0-32767) is interpreted identically regardless of signedness.
Learn Secure Coding
Why variable types are significant for application security
The different types and signednesses of variables can seem like an inconsequential and low-level detail of how programming languages work. However, the details of how variables are stored and interpreted within an application are the cause of some of the most common programming vulnerabilities.
Integer overflow and underflow vulnerabilities are a common and easy mistake to make when developing an application. An understanding of variable types and signedness is essential to avoiding these types of vulnerabilities within an application.
Sources
- What You Should Know About the Size of Variables in C, Assignment Shark
- Signed and Double-Length Numbers, FORTH, Inc.
- Integer Overflow/Underflow and Floating Point Imprecision, Jolly Fish (Medium)
Learn Secure Coding
Get hands-on experience with common coding mistakes, how they can be exploited and possible mitigations. Learn secure coding in:- Android and iOS
- C/C++, Java, .NET and PHP
- And more
In this Series
- Introduction to variables
- Enhancing code security: Tools and techniques for safeguarding your code
- DevSecOps Tools of the trade
- Software dependencies: The silent killer behind the world's biggest attacks
- Software composition analysis and how it can protect your supply chain
- Only 20% of new developers receive secure coding training, says report
- Introduction to Secure Software Development Life Cycle
- How to control the flow of a program in x86 assembly
- Mitigating MFA bypass attacks: 5 tips for developers
- How to diagnose and locate segmentation faults in x86 assembly
- How to use the ObjDump tool with x86
- Debugging your first x86 program
- How to build a program and execute an application entirely built in x86 assembly
- Overview of common x86 instructions
- x86 basics: Data representation, memory and information storage
- What is x86 assembly?
- Introduction to x86 assembly and syntax
- How to mitigate Race Conditions vulnerabilities
- How to avoid Cryptography errors
- Cryptography errors Exploitation Case Study
- How to exploit Cryptography errors in applications
- How to exploit race conditions
- Email-based attacks with Python: Phishing, email bombing and more
- Attacking Web Applications With Python: Recommended Tools
- Attacking Web Applications With Python: Exploiting Web Forms and Requests
- Attacking Web Applications With Python: Web Scraper Python
- Python for Network Penetration Testing: Best Practices and Evasion Techniques
- Python for network penetration testing: Hacking Windows domain controllers with impacket Python tools
- Python Language Basics: Variables, Lists, Loops, Functions and Conditionals
- How to Mitigate Poor HTTP Usage Vulnerabilities
- How to Exploit Poor HTTP Usage
- Introduction to HTTP (What Makes HTTP Vulnerabilities Possible)
- How to Mitigate Integer Overflow and Underflow Vulnerabilities
- How to exploit integer overflow and underflow
- Introduction to Parallel Processing
- What are Race Conditions?
- How Are Credentials Used In Applications?
- How To Exploit Least Privilege Vulnerabilities
- XSS Vulnerabilities Exploitation Case Study
- What is is integer overflow and underflow?
- SQL Injection Vulnerabilities Exploitation Case Study
- How to exploit improper error handling
- Improper Error Handling Exploitation Case Study
- Why Improper Error Handling Happens
- How to exploit CSRF Vulnerabilities
- How to mitigate CSRF Vulnerabilities
- What Causes Command Injection Vulnerabilities? (How are Data and Code Handled in Execution Environments)
- Command Injection Vulnerabilities
- Command Injection Vulnerabilities Exploitation Case Study
- How to mitigate Command Injection Vulnerabilities
- How to exploit SQL Injection Vulnerabilities
Get certified and advance your career
- Exam Pass Guarantee
- Live instruction
- CompTIA, ISACA, (ISC)², Cisco, Microsoft and more!
Secure coding