Should UBSan detect 0 input to __builtin_clz/ctz regardless of target?

topperc · June 1, 2023, 5:48pm

CodeGenFunction::EmitCheckedArgForBuiltin checks getTarget().isCLZForZeroUndef() so it will only detect errors on targets where __builtin_clz/ctz aren’t defined for zero.

gcc’s documentation for these builtins says 0 is undefined.

The original commit that added isCLZForZeroUndef, Make clz/ctz builtins defined for zero on ARM targets. rdar://10732455 · llvm/llvm-project@a7a61e2 · GitHub seemed to be trying to prevent optimizations where someone assumed __builtin_clz would return 32 on Arm. This pre-dates the UBSan code.

So my question is, should UBSan detect 0 on Arm since the behavior isn’t portable?

@vedantk @efriedma-quic @nikic

efriedma-quic · June 1, 2023, 6:21pm

Yes, we should detect it. The commit doesn’t actually “define” the behavior, just changes the actual effect of undefined behavior. The definition comes from gcc; we can’t change it even if we wanted to.

Topic		Replies	Views
Detect Undefined Behavior on LLVM IR Beginners	0	239	January 11, 2023
Reporting UBSan issues at compile-time Clang Frontend	16	103	March 25, 2017
How ubsan inserts checking code to detect undefined behaviors? Clang Frontend	1	89	October 16, 2014
How to let LLVM handle undefined behavior more gracefully? LLVM Dev List Archives	6	126	March 17, 2016
Can a default/zero-initialized empty struct be filled with "arbitrary" bits? Clang Frontend	1	973	June 18, 2022

Should UBSan detect 0 input to __builtin_clz/ctz regardless of target?

Related topics