Fix PR64121 - Patchwork

Message ID	20141201141233.GM15555@redhat.com
State	New
Headers	show Return-Path: <gcc-patches-return-386202-incoming=patchwork.ozlabs.org@gcc.gnu.org> DomainKey-Signature: a=rsa-sha1; c=nofws; d=gcc.gnu.org; h=list-id :list-unsubscribe:list-archive:list-post:list-help:sender:date :from:to:subject:message-id:mime-version:content-type; q=dns; s= default; b=SQ2UIHhFHtVLdmxLdiRdLg/axpIWHwq6Sle9TNsQejsrmWmZV6Hjg 6lFd4+veeEAvFNL/8wOQyRuNOLa1k2Rgjuq/bYwVYG+a3bZZw1DQpjG48Tt9yCJA NQQUnGvWpgGBhRWSjFFUGDkD0bv+QYFJk3RhBa/IA4W2Caj7GaHOqs= Mailing-List: contact gcc-patches-help@gcc.gnu.org; run by ezmlm Precedence: bulk Sender: gcc-patches-owner@gcc.gnu.org Date: Mon, 1 Dec 2014 15:12:33 +0100 From: Marek Polacek <polacek@redhat.com> To: GCC Patches <gcc-patches@gcc.gnu.org>, Jakub Jelinek <jakub@redhat.com> Subject: [PATCH] Fix PR64121 Message-ID: <20141201141233.GM15555@redhat.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.5.23 (2014-03-12)

Message ID

20141201141233.GM15555@redhat.com

State

New

Headers

DomainKey-Signature: a=rsa-sha1; c=nofws; d=gcc.gnu.org; h=list-id
	:list-unsubscribe:list-archive:list-post:list-help:sender:date
	:from:to:subject:message-id:mime-version:content-type; q=dns; s=
	default; b=SQ2UIHhFHtVLdmxLdiRdLg/axpIWHwq6Sle9TNsQejsrmWmZV6Hjg
	6lFd4+veeEAvFNL/8wOQyRuNOLa1k2Rgjuq/bYwVYG+a3bZZw1DQpjG48Tt9yCJA
	NQQUnGvWpgGBhRWSjFFUGDkD0bv+QYFJk3RhBa/IA4W2Caj7GaHOqs=
Mailing-List: contact gcc-patches-help@gcc.gnu.org; run by ezmlm
Precedence: bulk
Sender: gcc-patches-owner@gcc.gnu.org
Date: Mon, 1 Dec 2014 15:12:33 +0100
From: Marek Polacek <polacek@redhat.com>
To: GCC Patches <gcc-patches@gcc.gnu.org>, Jakub Jelinek <jakub@redhat.com>
Subject: [PATCH] Fix PR64121
Message-ID: <20141201141233.GM15555@redhat.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.5.23 (2014-03-12)

Commit Message

Marek Polacek Dec. 1, 2014, 2:12 p.m. UTC

This fixes PR64121, where we ran into a SSA corruption failure
because we couldn't coalesce two SSA_NAME_OCCURS_IN_ABNORMAL_PHI
SSA_NAMEs.  So just skip such SSA names when looking for a base.

Bootstrapped/regtested on ppc64-linux, ok for trunk?

2014-12-01  Marek Polacek  <polacek@redhat.com>
	    Jakub Jelinek  <jakub@redhat.com>

	PR sanitizer/64121
	* ubsan.c (instrument_object_size): Skip base if
	it occurs in abnormal phi.

	* c-c++-common/ubsan/pr64121.c: New test.


	Marek

Comments

Richard Biener Dec. 1, 2014, 2:16 p.m. UTC | #1

On Mon, Dec 1, 2014 at 3:12 PM, Marek Polacek <polacek@redhat.com> wrote:
> This fixes PR64121, where we ran into a SSA corruption failure
> because we couldn't coalesce two SSA_NAME_OCCURS_IN_ABNORMAL_PHI
> SSA_NAMEs.  So just skip such SSA names when looking for a base.

Not really "skip" but "stop at".

> Bootstrapped/regtested on ppc64-linux, ok for trunk?

Ok.

Thanks,
Richard.

> 2014-12-01  Marek Polacek  <polacek@redhat.com>
>             Jakub Jelinek  <jakub@redhat.com>
>
>         PR sanitizer/64121
>         * ubsan.c (instrument_object_size): Skip base if
>         it occurs in abnormal phi.
>
>         * c-c++-common/ubsan/pr64121.c: New test.
>
> diff --git gcc/testsuite/c-c++-common/ubsan/pr64121.c gcc/testsuite/c-c++-common/ubsan/pr64121.c
> index e69de29..82b216a 100644
> --- gcc/testsuite/c-c++-common/ubsan/pr64121.c
> +++ gcc/testsuite/c-c++-common/ubsan/pr64121.c
> @@ -0,0 +1,16 @@
> +/* PR sanitizer/64121 */
> +/* { dg-do compile } */
> +/* { dg-options "-fsanitize=undefined -Wno-pointer-arith" } */
> +
> +extern int tab[16];
> +
> +void
> +execute (int *ip, int x)
> +{
> +  int *xp = tab;
> +base:
> +  if (x)
> +    return;
> +  *xp++ = *ip;
> +  goto *(&&base + *ip);
> +}
> diff --git gcc/ubsan.c gcc/ubsan.c
> index ea5ccb4..e2a07a9 100644
> --- gcc/ubsan.c
> +++ gcc/ubsan.c
> @@ -1564,7 +1564,14 @@ instrument_object_size (gimple_stmt_iterator *gsi, bool is_lhs)
>               && POINTER_TYPE_P (TREE_TYPE (gimple_assign_rhs1 (def_stmt))))
>           || (is_gimple_assign (def_stmt)
>               && gimple_assign_rhs_code (def_stmt) == POINTER_PLUS_EXPR))
> -       base = gimple_assign_rhs1 (def_stmt);
> +       {
> +         tree rhs1 = gimple_assign_rhs1 (def_stmt);
> +         if (TREE_CODE (rhs1) == SSA_NAME
> +           && SSA_NAME_OCCURS_IN_ABNORMAL_PHI (rhs1))
> +           break;
> +         else
> +           base = rhs1;
> +       }
>        else
>         break;
>      }
>
>         Marek

diff --git gcc/testsuite/c-c++-common/ubsan/pr64121.c gcc/testsuite/c-c++-common/ubsan/pr64121.c
index e69de29..82b216a 100644
--- gcc/testsuite/c-c++-common/ubsan/pr64121.c
+++ gcc/testsuite/c-c++-common/ubsan/pr64121.c
@@ -0,0 +1,16 @@ 
+/* PR sanitizer/64121 */
+/* { dg-do compile } */
+/* { dg-options "-fsanitize=undefined -Wno-pointer-arith" } */
+
+extern int tab[16];
+
+void
+execute (int *ip, int x)
+{
+  int *xp = tab;
+base:
+  if (x)
+    return;
+  *xp++ = *ip;
+  goto *(&&base + *ip);
+}
diff --git gcc/ubsan.c gcc/ubsan.c
index ea5ccb4..e2a07a9 100644
--- gcc/ubsan.c
+++ gcc/ubsan.c
@@ -1564,7 +1564,14 @@  instrument_object_size (gimple_stmt_iterator *gsi, bool is_lhs)
 	      && POINTER_TYPE_P (TREE_TYPE (gimple_assign_rhs1 (def_stmt))))
 	  || (is_gimple_assign (def_stmt)
 	      && gimple_assign_rhs_code (def_stmt) == POINTER_PLUS_EXPR))
-	base = gimple_assign_rhs1 (def_stmt);
+	{
+	  tree rhs1 = gimple_assign_rhs1 (def_stmt);
+	  if (TREE_CODE (rhs1) == SSA_NAME
+	    && SSA_NAME_OCCURS_IN_ABNORMAL_PHI (rhs1))
+	    break;
+	  else
+	    base = rhs1;
+	}
       else
 	break;
     }