Re: Having fun with the following C code (UB)

To: debian-devel@lists.debian.org
Subject: Re: Having fun with the following C code (UB)
From: Roger Lynn <Roger@rilynn.me.uk>
Date: Tue, 15 Apr 2014 21:57:21 +0100
Message-id: <[🔎] i2j02b-cn1.ln1@silverstone.rilynn.me.uk>
In-reply-to: <n6P7s-1FP-13@gated-at.bofh.it>
References: <[🔎] 20140410153409.GA32321@xvii.vinc17.org> <[🔎] 21318.56319.795404.108549@chiark.greenend.org.uk> <[🔎] 5346F981.9010802@debian.org> <[🔎] 20140412203827.GA25376@khazad-dum.debian.net> <[🔎] 5349F72D.4030401@debian.org> <[🔎] 87wqeurm01.fsf@windlord.stanford.edu> <[🔎] 5349FEBC.70105@shemesh.biz> <[🔎] 87lhv9sy3y.fsf@windlord.stanford.edu> <[🔎] 20140414115111.GB5354@ypig.lip.ens-lyon.fr> <[🔎] ligjem$plj$1@ger.gmane.org> <[🔎] 20140414132123.GA25699@ypig.lip.ens-lyon.fr>

On 14/04/14 14:30, Vincent Lefevre wrote:
> On 2014-04-14 14:14:14 +0200, Raphael Geissert wrote:
>> No, there is no optimisation in that case, so there is no warning. It only 
>> warns when it uses the knowledge that "(signed) integer overflow isn't 
>> possible" to optimise away some redundant code.
> 
> But what I mean is that it's pointless to emit such a warning when
> the effect of the potential integer overflow is already visible,
> for instance in printf below:
> 
>   m = d * C;
>   printf ("%d\n", m);
>   return m >= 0;
> 
> If there was an integer overflow, you will get an incorrect value
> output by the printf. This means that it is very likely to be a false
> positive. So, one doesn't want the warning.

The purpose of this gcc warning isn't to warn you that overflow might
happen, but to warn you when gcc's optimisations have broken any two's
complement overflow behaviour that you might have expected. Thus if you have
written code that assumes "normal" two's complement overflow you get a
warning when it has been broken by assumptions made by the optimiser. In
other cases you get "normal" overflow so there is no need for this warning.

Roger

Reply to:

Follow-Ups:
- Re: Having fun with the following C code (UB)
  - From: Vincent Lefevre <vincent@vinc17.net>

References:
- Re: Having fun with the following C code (UB)
  - From: Vincent Lefevre <vincent@vinc17.net>
- Re: Having fun with the following C code (UB)
  - From: Ian Jackson <ijackson@chiark.greenend.org.uk>
- Re: Having fun with the following C code (UB)
  - From: Shachar Shemesh <shachar@debian.org>
- Re: Having fun with the following C code (UB)
  - From: Henrique de Moraes Holschuh <hmh@debian.org>
- Re: Having fun with the following C code (UB)
  - From: Shachar Shemesh <shachar@debian.org>
- Re: Having fun with the following C code (UB)
  - From: Russ Allbery <rra@debian.org>
- Re: Having fun with the following C code (UB)
  - From: Shachar Shemesh <shachar@shemesh.biz>
- Re: Having fun with the following C code (UB)
  - From: Russ Allbery <rra@debian.org>
- Re: Having fun with the following C code (UB)
  - From: Vincent Lefevre <vincent@vinc17.net>
- Re: Having fun with the following C code (UB)
  - From: Raphael Geissert <geissert@debian.org>
- Re: Having fun with the following C code (UB)
  - From: Vincent Lefevre <vincent@vinc17.net>

Prev by Date: Re: Proposing amd64-hardened architecture for Debian
Next by Date: Re: About a mass bug report not based on Sid or Jessie.
Previous by thread: Re: Having fun with the following C code (UB)
Next by thread: Re: Having fun with the following C code (UB)
Index(es):
- Date
- Thread