Also check for pointers whose width is too small

Thomas Kiley · Thomas Kiley · commit 9a4c18eaaf86 · 2020-04-16T15:15:09.000+01:00
This ensures the other preconditions don't pass spuriously with a zero
width pointer
diff --git a/src/ansi-c/ansi_c_internal_additions.cpp b/src/ansi-c/ansi_c_internal_additions.cpp
@@ -133,6 +133,7 @@ using max_alloc_sizet = uint64_t;
 static max_alloc_sizet
 max_malloc_size(std::size_t pointer_width, std::size_t object_bits)
 {
+  PRECONDITION(pointer_width >= 1);
   PRECONDITION(object_bits < pointer_width - 1);
   PRECONDITION(object_bits >= 1);
   const auto bits_for_offset = pointer_width - object_bits - 1;
diff --git a/unit/ansi-c/max_malloc_size.cpp b/unit/ansi-c/max_malloc_size.cpp
@@ -28,6 +28,11 @@ TEST_CASE(
     REQUIRE_THROWS_AS(max_malloc_size(4, 0), invariant_failedt);
   }
 
+  SECTION("Not enough bits in the pointer")
+  {
+    REQUIRE_THROWS_AS(max_malloc_size(0, 0), invariant_failedt);
+  }
+
   SECTION("Max allocation size overflow")
   {
     REQUIRE_THROWS_AS(max_malloc_size(128, 63), invariant_failedt);

Original file line number	Diff line number	Diff line change
`@@ -133,6 +133,7 @@ using max_alloc_sizet = uint64_t;`
`133`	`133`	`static max_alloc_sizet`
`134`	`134`	`max_malloc_size(std::size_t pointer_width, std::size_t object_bits)`
`135`	`135`	`{`
	`136`	`+ PRECONDITION(pointer_width >= 1);`
`136`	`137`	`PRECONDITION(object_bits < pointer_width - 1);`
`137`	`138`	`PRECONDITION(object_bits >= 1);`
`138`	`139`	`const auto bits_for_offset = pointer_width - object_bits - 1;`
Original file line number	Diff line number	Diff line change
`@@ -28,6 +28,11 @@ TEST_CASE(`
`28`	`28`	`REQUIRE_THROWS_AS(max_malloc_size(4, 0), invariant_failedt);`
`29`	`29`	`}`
`30`	`30`
	`31`	`+ SECTION("Not enough bits in the pointer")`
	`32`	`+ {`
	`33`	`+ REQUIRE_THROWS_AS(max_malloc_size(0, 0), invariant_failedt);`
	`34`	`+ }`
	`35`	`+`
`31`	`36`	`SECTION("Max allocation size overflow")`
`32`	`37`	`{`
`33`	`38`	`REQUIRE_THROWS_AS(max_malloc_size(128, 63), invariant_failedt);`