This is the mail archive of the gcc-bugs@gcc.gnu.org mailing list for the GCC project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

[Bug tree-optimization/86572] unsafe strlen folding of const arguments with non-const offset

From: "rguenth at gcc dot gnu.org" <gcc-bugzilla at gcc dot gnu dot org>
To: gcc-bugs at gcc dot gnu dot org
Date: Thu, 19 Jul 2018 07:45:35 +0000
Subject: [Bug tree-optimization/86572] unsafe strlen folding of const arguments with non-const offset
Auto-submitted: auto-generated
References: <bug-86572-4@http.gcc.gnu.org/bugzilla/>

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=86572

--- Comment #2 from Richard Biener <rguenth at gcc dot gnu.org> ---
When we can detect undefined behavior we should try to behave as the user
intended.  For example for

  MEM[p_1 + 4, int] = 0;
  MEM[p_1, double *] = 1.;
  x_2 = MEM[p_1 + 4, int];

we see a must-alias and ignore that TBAA allows us to simplify x_2 to 0.

In this particular case folding happens with non-constant offset but
the outcome for large i could be considered a bigger security issue
than not folding (which likely would have crashed or resulted in a
smaller result).

MAX(0, 3 - (ssizetype)i)

might be indeed a way to limit the possible fallout.  Or even

len = 3 -(ssizetype)i;
len < 0 ? __builtin_trap () : len;

References:
- [Bug tree-optimization/86572] New: unsafe strlen folding of const arguments with non-const offset
  - From: msebor at gcc dot gnu.org

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]