[TableGen] Validate the shift amount for !srl, !shl, and !sra operators. #132492
+8
−2
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
The C operator has undefined behavior for out of bounds shifts so we should check this.
|
@llvm/pr-subscribers-tablegen Author: Craig Topper (topperc) ChangesThe C operator has undefined behavior for out of bounds shifts so we should check this. Full diff: https://github.com/llvm/llvm-project/pull/132492.diff 1 Files Affected:
diff --git a/llvm/lib/TableGen/Record.cpp b/llvm/lib/TableGen/Record.cpp
index c5b9b670b6f42..655c4078697f3 100644
--- a/llvm/lib/TableGen/Record.cpp
+++ b/llvm/lib/TableGen/Record.cpp
@@ -1537,7 +1537,13 @@ const Init *BinOpInit::Fold(const Record *CurRec) const {
if (LHSi && RHSi) {
int64_t LHSv = LHSi->getValue(), RHSv = RHSi->getValue();
int64_t Result;
- switch (getOpcode()) {
+
+ unsigned Opc = getOpcode();
+ if ((Opc == SHL || Opc == SRA || Opc == SRL) && (RHSv < 0 || RHSv >= 64))
+ PrintFatalError(CurRec->getLoc(),
+ "Illegal operation: out of bounds shift");
+
+ switch (Opc) {
default: llvm_unreachable("Bad opcode!");
case ADD: Result = LHSv + RHSv; break;
case SUB: Result = LHSv - RHSv; break;
@@ -1556,7 +1562,7 @@ const Init *BinOpInit::Fold(const Record *CurRec) const {
case OR: Result = LHSv | RHSv; break;
case XOR: Result = LHSv ^ RHSv; break;
case SHL: Result = (uint64_t)LHSv << (uint64_t)RHSv; break;
- case SRA: Result = LHSv >> RHSv; break;
+ case SRA: Result = LHSv >> (uint64_t)RHSv; break;
case SRL: Result = (uint64_t)LHSv >> (uint64_t)RHSv; break;
}
return IntInit::get(getRecordKeeper(), Result);
|
You can test this locally with the following command:git-clang-format --diff b858ba0f6597c66e5c276ca9e2564ca27e7e28e7 4277124e8acb8efed73dee9bc32a1744c807dcdf --extensions cpp -- llvm/lib/TableGen/Record.cppView the diff from clang-format here.diff --git a/llvm/lib/TableGen/Record.cpp b/llvm/lib/TableGen/Record.cpp
index 655c407869..78f9f2368d 100644
--- a/llvm/lib/TableGen/Record.cpp
+++ b/llvm/lib/TableGen/Record.cpp
@@ -1562,7 +1562,9 @@ const Init *BinOpInit::Fold(const Record *CurRec) const {
case OR: Result = LHSv | RHSv; break;
case XOR: Result = LHSv ^ RHSv; break;
case SHL: Result = (uint64_t)LHSv << (uint64_t)RHSv; break;
- case SRA: Result = LHSv >> (uint64_t)RHSv; break;
+ case SRA:
+ Result = LHSv >> (uint64_t)RHSv;
+ break;
case SRL: Result = (uint64_t)LHSv >> (uint64_t)RHSv; break;
}
return IntInit::get(getRecordKeeper(), Result);
|
|
Can you also add unit test? |
preames
reviewed
Apr 17, 2025
|
|
||
| unsigned Opc = getOpcode(); | ||
| if ((Opc == SHL || Opc == SRA || Opc == SRL) && (RHSv < 0 || RHSv >= 64)) | ||
| PrintFatalError(CurRec->getLoc(), |
There was a problem hiding this comment.
While the duplication is mildly ugly, this would seem more natural if sunk into the case blocks below.
| @@ -1556,7 +1562,7 @@ const Init *BinOpInit::Fold(const Record *CurRec) const { | |||
| case OR: Result = LHSv | RHSv; break; | |||
| case XOR: Result = LHSv ^ RHSv; break; | |||
| case SHL: Result = (uint64_t)LHSv << (uint64_t)RHSv; break; | |||
| case SRA: Result = LHSv >> RHSv; break; | |||
| case SRA: Result = LHSv >> (uint64_t)RHSv; break; | |||
There was a problem hiding this comment.
This change should be a nop given the newly added bounds check, right?
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
The C operator has undefined behavior for out of bounds shifts so we should check this.