From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from movementarian.org ([178.79.150.28]:35888 "EHLO movementarian.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1727554AbfLKOYb (ORCPT ); Wed, 11 Dec 2019 09:24:31 -0500 Date: Wed, 11 Dec 2019 14:24:30 +0000 From: John Levon Subject: sval_type_max() sadness Message-ID: <20191211142430.GA17277@movementarian.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Sender: smatch-owner@vger.kernel.org List-ID: To: smatch@vger.kernel.org Cc: rm@fingolfin.org Robert (Cc:ed) found a false positive from smatch, which boils down to: ``` #include int main(int argc, char *argv[]) { long double sec = 0; // also __int128 ! if (sec > (float)INT_MAX) { 0; } } ``` $ ./src/smatch/smatch -m32 test.smatch.c test.smatch.c:9 main() warn: impossible condition '(sec > 2147483647) => (s32min-s32max > s32max)' A cheesy fix here is: $ git diff diff --git a/smatch_type.c b/smatch_type.c index 305a0b5c..1e289363 100644 --- a/smatch_type.c +++ b/smatch_type.c @@ -411,7 +411,11 @@ sval_t sval_type_max(struct symbol *base_type) base_type = &llong_ctype; ret.type = base_type; - ret.value = (~0ULL) >> (64 - type_positive_bits(base_type)); + int pos_bits = type_positive_bits(base_type); + if (pos_bits > 63) + pos_bits = 63; + + ret.value = (~0ULL) >> (64 - pos_bits); return ret; } The issue being that for these types, type_positive_bits() is 64 or more. If only there were a tool to warn about negative shift operands :) But type_positive_bits() is used all over, so I have no idea if there's a lot of other problems. Or, if this patch is OK on its own, I can add a couple of tests and send a proper patch over. Thoughts? thanks john