Skip to content

Fix bounds checking for structs with flexible array members #4324

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Mar 5, 2019
Merged

Fix bounds checking for structs with flexible array members #4324

merged 1 commit into from
Mar 5, 2019

Conversation

tautschnig
Copy link
Collaborator

The constraints did not make sure that the dynamic size (__CPROVER_malloc_size)
actually referred to the object we are looking at (__CPROVER_malloc_object).

  • Each commit message has a non-empty body, explaining why the change was made.
  • n/a Methods or procedures I have added are documented, following the guidelines provided in CODING_STANDARD.md.
  • n/a The feature or user visible behaviour I have added or modified has been documented in the User Guide in doc/cprover-manual/
  • Regression or unit tests are included, or existing tests cover the modified code (in this case I have detailed which ones those are in the commit message).
  • n/a My commit message includes data points confirming performance improvements (if claimed).
  • My PR is restricted to a single feature or bugfix.
  • n/a White-space or formatting changes outside the feature-related changed lines are in commits of their own.

allredj
allredj reviewed Mar 4, 2019
View reviewed changes
Copy link
Contributor

@allredj allredj left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️
This PR failed Diffblue compatibility checks (cbmc commit: 24b6676).
Build URL: https://travis-ci.com/diffblue/test-gen/builds/103095037
Status will be re-evaluated on next push.
Common spurious failures:

  • the cbmc commit has disappeared in the mean time (e.g. in a force-push)

  • the author is not in the list of contributors (e.g. first-time contributors).

  • the compatibility was already broken by an earlier merge.

smowton
smowton reviewed Mar 4, 2019
View reviewed changes
src/analyses/goto_check.cpp
type_matches_size =
equal_exprt(size, typecast_exprt(type_size_opt.value(), size.type()));
{
type_matches_size = if_exprt{
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This definitely warrants an explanatory comment

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Will add one as soon as #4325 is in.

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done.

@tautschnig
Fix bounds checking for structs with flexible array members
ae0a1f3 
The constraints did not make sure that the dynamic size (__CPROVER_malloc_size)
actually referred to the object we are looking at (__CPROVER_malloc_object).
@tautschnig tautschnig force-pushed the flexible-array-fix branch from 24b6676 to ae0a1f3 Compare March 4, 2019 22:21
allredj
allredj reviewed Mar 5, 2019
View reviewed changes
Copy link
Contributor

@allredj allredj left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️
This PR failed Diffblue compatibility checks (cbmc commit: ae0a1f3).
Build URL: https://travis-ci.com/diffblue/test-gen/builds/103124110
Status will be re-evaluated on next push.
Common spurious failures:

  • the cbmc commit has disappeared in the mean time (e.g. in a force-push)

  • the author is not in the list of contributors (e.g. first-time contributors).

  • the compatibility was already broken by an earlier merge.

@tautschnig tautschnig merged commit 16c64cf into diffblue:develop Mar 5, 2019
@tautschnig tautschnig deleted the flexible-array-fix branch March 5, 2019 07:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@allredj allredj allredj left review comments

@smowton smowton smowton approved these changes

@chrisr-diffblue chrisr-diffblue Awaiting requested review from chrisr-diffblue

@danpoe danpoe Awaiting requested review from danpoe

@martin-cs martin-cs Awaiting requested review from martin-cs martin-cs is a code owner

@owen-mc-diffblue owen-mc-diffblue Awaiting requested review from owen-mc-diffblue

@peterschrammel peterschrammel Awaiting requested review from peterschrammel peterschrammel is a code owner

@thk123 thk123 Awaiting requested review from thk123

Assignees

@tautschnig tautschnig

Labels
bugfix
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@tautschnig @smowton @allredj @peterschrammel @chrisr-diffblue