Compile time Array Bounds Analysis in LLVM

mahatt · December 20, 2017, 4:51am

Hi

I am working on analyzing arrays for dimensions and inferring iteration space.

While going through this i found example

int funct(){
int a[6][6][6];
return a[8][0][0];
}

https://godbolt.org/g/S9pKqq

Compiler did not warn about extended index in first dimension. Considering arrays are decayed

into pointer, Will issuing this as error be false positive?

By looking at this it looks like easy problem to solve at AST level. What is challenge in this analysis?

Thanks

Mahesh

Eli_Friedman · December 20, 2017, 7:22pm

No; a[8] is equivalent to *(a+8), and “a+8” is undefined behavior because it points outside the array. -fsanitize=undefined will catch this at runtime. Probably just an oversight in the checking code. Briefly looking at it, it looks like there’s a missing call to Sema::CheckArrayAccess? -Eli