* [RFC] <op>= mishandling
@ 2006-11-24 7:12 Al Viro
2006-11-28 20:45 ` Josh Triplett
0 siblings, 1 reply; 2+ messages in thread
From: Al Viro @ 2006-11-24 7:12 UTC (permalink / raw)
To: linux-sparse
commit 5a627ec02342727b151712acc9c752a8e4f12da0
Author: Linus Torvalds <torvalds@ppc970.osdl.org>
Date: Sat Nov 6 20:10:22 2004 -0700
Don't do assignment replacement at type evaluation time.
was too optimistic. Here's a trivial example of the things going
wrong with it:
int x = 1;
x /= 0.5;
that /= should be treated as
int *tmp;
(tmp = &x, *tmp = (int)((double)*tmp / 0.5);
IOW, we must end up with 2 being assigned to x. There's no way in hell
for that to be done without conversion to real; current sparse ends up
with
x /= 0;
which is obviously *not* what we want.
Another ugly example:
int x = -1;
int y = -1;
x /= INT_MAX;
y /= (unsigned int)INT_MAX;
Results of those assignments are obviously different - one is -1 / INT_MAX
(i.e. 0), another is (int)((unsigned int)-1/(unsigned int)INT_MAX), which
is going to be a small positive (most likely 2).
We lose the distinction (try test-linearize and you'll see it immediately).
AFAICS, the only sane way to deal with that is to bring back the old
logics at least as a fallback. _Sometimes_ we can get away with the
current approach, but that depends both on types and on operation...
If the second argument gets converted to the type of the first one, we
are fine. If not...
* real types are involved => sorry, no. (float)((long double)x + y)
might differ from x + (float)y and we have no business mangling it, whatever
the operation. Even when we are mixing real and real. When we have
integer <op> real, the situation is even worse (see above).
* *IF* we assume 2's complement for signed integers and nice handling
of overflows, we can get away with it for +, -, *, &, |, ^. / and % are
not safe (see above).
* note that even when signedness is the same, we can't assume that
/ and % won't cause us any trouble. x /= 1L<<32 is equivalent of x = 0,
not x /= 0...
* when the second argument is not bigger than the first one, which is
smaller than int, we are OK with / and %. However, I very much doubt that
it's worth the extra logics - that situation is rare as hell.
I'm fixing that crap right now; if somebody has objections against the
above - please, yell.
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: [RFC] <op>= mishandling
2006-11-24 7:12 [RFC] <op>= mishandling Al Viro
@ 2006-11-28 20:45 ` Josh Triplett
0 siblings, 0 replies; 2+ messages in thread
From: Josh Triplett @ 2006-11-28 20:45 UTC (permalink / raw)
To: Al Viro; +Cc: linux-sparse
[-- Attachment #1: Type: text/plain, Size: 693 bytes --]
Al Viro wrote:
> commit 5a627ec02342727b151712acc9c752a8e4f12da0
> Author: Linus Torvalds <torvalds@ppc970.osdl.org>
> Date: Sat Nov 6 20:10:22 2004 -0700
>
> Don't do assignment replacement at type evaluation time.
>
> was too optimistic. Here's a trivial example of the things going
> wrong with it:
[snip various detailed examples of this going horribly wrong.]
> I'm fixing that crap right now; if somebody has objections against the
> above - please, yell.
No objections; please do.
When you supply the fix, can you please also include one or more test cases
for the validation directory which demonstrate the incorrect evaluation?
Thanks,
Josh Triplett
[-- Attachment #2: OpenPGP digital signature --]
[-- Type: application/pgp-signature, Size: 252 bytes --]
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2006-11-28 20:46 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-11-24 7:12 [RFC] <op>= mishandling Al Viro
2006-11-28 20:45 ` Josh Triplett
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).