Should UBSan detect 0 input to __builtin_clz/ctz regardless of target?

topperc · June 1, 2023, 5:48pm

CodeGenFunction::EmitCheckedArgForBuiltin checks getTarget().isCLZForZeroUndef() so it will only detect errors on targets where __builtin_clz/ctz aren’t defined for zero.

gcc’s documentation for these builtins says 0 is undefined.

The original commit that added isCLZForZeroUndef, Make clz/ctz builtins defined for zero on ARM targets. rdar://10732455 · llvm/llvm-project@a7a61e2 · GitHub seemed to be trying to prevent optimizations where someone assumed __builtin_clz would return 32 on Arm. This pre-dates the UBSan code.

So my question is, should UBSan detect 0 on Arm since the behavior isn’t portable?

@vedantk @efriedma-quic @nikic

efriedma-quic · June 1, 2023, 6:21pm

Yes, we should detect it. The commit doesn’t actually “define” the behavior, just changes the actual effect of undefined behavior. The definition comes from gcc; we can’t change it even if we wanted to.

Topic		Replies	Views
Detect Undefined Behavior on LLVM IR Beginners	0	231	January 11, 2023
How ubsan inserts checking code to detect undefined behaviors? Clang Frontend	1	86	October 16, 2014
Can a default/zero-initialized empty struct be filled with "arbitrary" bits? Clang Frontend	1	973	June 18, 2022
Buildling with/without AddressSanitizer causes divergent execution behaviour LLVM Dev List Archives	12	172	February 17, 2016
ubsan: problem with detecting UB in shift operation with large RHS Clang Frontend	6	88	January 8, 2017

Should UBSan detect 0 input to __builtin_clz/ctz regardless of target?

Related Topics