From: Andre Przywara <andre.przywara-5wv7dgnIgG8@public.gmane.org>
To: Simon Glass <sjg-F7+t8E8rja9g9hUCZPvPmw@public.gmane.org>,
David Gibson
<david-xT8FGy+AXnRB3Ne2BGzF6laj5H9X9Tb+@public.gmane.org>
Cc: Devicetree Compiler
<devicetree-compiler-u79uwXL29TY76Z2rM5mHXA@public.gmane.org>
Subject: [PATCH 00/11] dtc: Fix signed/unsigned comparison warnings
Date: Mon, 12 Oct 2020 17:19:37 +0100 [thread overview]
Message-ID: <20201012161948.23994-1-andre.przywara@arm.com> (raw)
When dtc and the other tools in the tree are compiled with -Wsign-compare
or -Wextra, GCC emits quite some warnings about the signedness of the
operands not matching:
=================
In file included from dtc.h:15:0,
from checks.c:6:
checks.c: In function ‘fixup_phandle_references’:
checks.c:591:38: error: comparison between signed and unsigned integer
expressions [-Werror=sign-compare]
assert(m->offset + sizeof(cell_t) <= prop->val.len);
.....
=================
libfdt has just been fixed in this regard recently; this adds the missing
bits to cover the rest of the source tree, namely dtc, the various smaller
tools, checks, and tests.
Those warnings do not show under normal conditions in the dtc repo at the
moment, because we avoid to enable the warning option.
The underlying issue is mostly due to C's promotion behaviour (ANSI C
section 6.1.3.8) when dealing with operands of different signedness
(but same size): Signed values get implictly casted to unsigned, which
is not typically what we want if they could have been negative.
The Internet(TM) suggests that blindly applying casts is probably doing
more harm than it helps, so this series tries to fix the underlying
issues properly.
Many types in dtc are somewhat suboptimal, they hold a size (which should
be non-negative), but are "int" anyway. Loop counters just declared as
"int i;" are another frequent issue.
The main strategy to fix those issues is to make the types right, which
mostly means to make variables "unsigned".
If that is not easily possible, we cast the signed expression to
"unsigned", provided this is safe, because it cannot be negative.
This series gathers multiple similar fixes in one patch, splitting them
mostly by the tool or source file. This is just to simplify review, the
patches could also be merged later on.
I tried to put some rationale in most of the patches, but explaining
every single instance becomes really tedious (so some patches paper over
that).
The final patch eventually enables the warning option in question, that
should avoid those kind of errors creeping back in again.
Compile tested with "make clean && make all tests check", after every
patch, on x86-64 and arm64.
Please have a look, happy to discuss the invididual cases.
Cheers,
Andre
Andre Przywara (11):
tests: Fix signedness comparisons warnings
convert-dtsv0: Fix signedness comparisons warning
fdtdump: Fix signedness comparisons warnings
fdtget: Fix signedness comparisons warnings
dtc: Wrap phandle validity check
dtc: Fix signedness comparisons warnings: change types
dtc: Fix signedness comparisons warnings: reservednum
dtc: Fix signedness comparisons warnings: Wrap (-1)
dtc: Fix signedness comparisons warnings: pointer diff
checks: Fix signedness comparisons warnings
Makefile: add -Wsign-compare to warning options
Makefile | 2 +-
checks.c | 31 ++++++++++++++++---------------
convert-dtsv0-lexer.l | 2 +-
data.c | 6 +++---
dtc.c | 2 +-
dtc.h | 12 +++++++-----
fdtdump.c | 6 +++---
fdtget.c | 4 ++--
flattree.c | 10 +++++-----
livetree.c | 8 ++++----
tests/dumptrees.c | 2 +-
tests/fs_tree1.c | 2 +-
tests/get_name.c | 2 +-
tests/integer-expressions.c | 2 +-
tests/nopulate.c | 3 ++-
tests/overlay.c | 2 +-
tests/phandle_format.c | 2 +-
tests/property_iterate.c | 2 +-
tests/references.c | 2 +-
tests/set_name.c | 4 ++--
tests/subnode_iterate.c | 2 +-
tests/tests.h | 2 +-
tests/testutils.c | 6 +++---
yamltree.c | 6 +++---
24 files changed, 63 insertions(+), 59 deletions(-)
--
2.17.5
next reply other threads:[~2020-10-12 16:19 UTC|newest]
Thread overview: 24+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-10-12 16:19 Andre Przywara [this message]
[not found] ` <20201012161948.23994-1-andre.przywara-5wv7dgnIgG8@public.gmane.org>
2020-10-12 16:19 ` [PATCH 01/11] tests: Fix signedness comparisons warnings Andre Przywara
[not found] ` <20201012161948.23994-2-andre.przywara-5wv7dgnIgG8@public.gmane.org>
2020-10-13 5:09 ` David Gibson
[not found] ` <20201013050927.GU71119-l+x2Y8Cxqc4e6aEkudXLsA@public.gmane.org>
2021-06-11 17:11 ` Andre Przywara
[not found] ` <20210611181134.3ba96b43-KTS7eRBhINUXU02nzanrWNbf9cGiqdzd@public.gmane.org>
2021-06-15 2:58 ` David Gibson
2020-10-12 16:19 ` [PATCH 02/11] convert-dtsv0: Fix signedness comparisons warning Andre Przywara
[not found] ` <20201012161948.23994-3-andre.przywara-5wv7dgnIgG8@public.gmane.org>
2020-10-13 4:48 ` David Gibson
2020-10-12 16:19 ` [PATCH 03/11] fdtdump: Fix signedness comparisons warnings Andre Przywara
[not found] ` <20201012161948.23994-4-andre.przywara-5wv7dgnIgG8@public.gmane.org>
2020-10-13 4:51 ` David Gibson
2020-10-12 16:19 ` [PATCH 04/11] fdtget: " Andre Przywara
[not found] ` <20201012161948.23994-5-andre.przywara-5wv7dgnIgG8@public.gmane.org>
2020-10-13 4:54 ` David Gibson
2020-10-12 16:19 ` [PATCH 05/11] dtc: Wrap phandle validity check Andre Przywara
[not found] ` <20201012161948.23994-6-andre.przywara-5wv7dgnIgG8@public.gmane.org>
2020-10-13 4:55 ` David Gibson
2020-10-12 16:19 ` [PATCH 06/11] dtc: Fix signedness comparisons warnings: change types Andre Przywara
[not found] ` <20201012161948.23994-7-andre.przywara-5wv7dgnIgG8@public.gmane.org>
2020-10-13 4:57 ` David Gibson
2020-10-12 16:19 ` [PATCH 07/11] dtc: Fix signedness comparisons warnings: reservednum Andre Przywara
[not found] ` <20201012161948.23994-8-andre.przywara-5wv7dgnIgG8@public.gmane.org>
2020-10-13 4:58 ` David Gibson
2020-10-12 16:19 ` [PATCH 08/11] dtc: Fix signedness comparisons warnings: Wrap (-1) Andre Przywara
[not found] ` <20201012161948.23994-9-andre.przywara-5wv7dgnIgG8@public.gmane.org>
2020-10-13 4:59 ` David Gibson
2020-10-12 16:19 ` [PATCH 09/11] dtc: Fix signedness comparisons warnings: pointer diff Andre Przywara
[not found] ` <20201012161948.23994-10-andre.przywara-5wv7dgnIgG8@public.gmane.org>
2020-10-13 5:01 ` David Gibson
2020-10-12 16:19 ` [PATCH 10/11] checks: Fix signedness comparisons warnings Andre Przywara
[not found] ` <20201012161948.23994-11-andre.przywara-5wv7dgnIgG8@public.gmane.org>
2020-10-13 5:02 ` David Gibson
2020-10-12 16:19 ` [PATCH 11/11] Makefile: add -Wsign-compare to warning options Andre Przywara
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20201012161948.23994-1-andre.przywara@arm.com \
--to=andre.przywara-5wv7dgnigg8@public.gmane.org \
--cc=david-xT8FGy+AXnRB3Ne2BGzF6laj5H9X9Tb+@public.gmane.org \
--cc=devicetree-compiler-u79uwXL29TY76Z2rM5mHXA@public.gmane.org \
--cc=sjg-F7+t8E8rja9g9hUCZPvPmw@public.gmane.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).