From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gcc-bugzilla@gcc.gnu.org>
Received: by sourceware.org (Postfix, from userid 48)
 id 31CA3385801F; Fri, 11 Feb 2022 15:17:46 +0000 (GMT)
DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org 31CA3385801F
From: "zsojka at seznam dot cz" <gcc-bugzilla@gcc.gnu.org>
To: gcc-bugs@gcc.gnu.org
Subject: [Bug c/104505] New: ICE: SIGSEGV in
 c_pretty_printer::postfix_expression() on invalid code
Date: Fri, 11 Feb 2022 15:17:45 +0000
X-Bugzilla-Reason: CC
X-Bugzilla-Type: new
X-Bugzilla-Watch-Reason: None
X-Bugzilla-Product: gcc
X-Bugzilla-Component: c
X-Bugzilla-Version: 12.0
X-Bugzilla-Keywords: ice-on-invalid-code
X-Bugzilla-Severity: normal
X-Bugzilla-Who: zsojka at seznam dot cz
X-Bugzilla-Status: UNCONFIRMED
X-Bugzilla-Resolution: 
X-Bugzilla-Priority: P3
X-Bugzilla-Assigned-To: unassigned at gcc dot gnu.org
X-Bugzilla-Target-Milestone: ---
X-Bugzilla-Flags: 
X-Bugzilla-Changed-Fields: bug_id short_desc product version bug_status
 keywords bug_severity priority component assigned_to reporter
 target_milestone cf_gcchost cf_gcctarget attachments.created
Message-ID: <bug-104505-4@http.gcc.gnu.org/bugzilla/>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Bugzilla-URL: http://gcc.gnu.org/bugzilla/
Auto-Submitted: auto-generated
MIME-Version: 1.0
X-BeenThere: gcc-bugs@gcc.gnu.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Gcc-bugs mailing list <gcc-bugs.gcc.gnu.org>
List-Unsubscribe: <https://gcc.gnu.org/mailman/options/gcc-bugs>,
 <mailto:gcc-bugs-request@gcc.gnu.org?subject=unsubscribe>
List-Archive: <https://gcc.gnu.org/pipermail/gcc-bugs/>
List-Post: <mailto:gcc-bugs@gcc.gnu.org>
List-Help: <mailto:gcc-bugs-request@gcc.gnu.org?subject=help>
List-Subscribe: <https://gcc.gnu.org/mailman/listinfo/gcc-bugs>,
 <mailto:gcc-bugs-request@gcc.gnu.org?subject=subscribe>
X-List-Received-Date: Fri, 11 Feb 2022 15:17:46 -0000

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=3D104505

            Bug ID: 104505
           Summary: ICE: SIGSEGV in c_pretty_printer::postfix_expression()
                    on invalid code
           Product: gcc
           Version: 12.0
            Status: UNCONFIRMED
          Keywords: ice-on-invalid-code
          Severity: normal
          Priority: P3
         Component: c
          Assignee: unassigned at gcc dot gnu.org
          Reporter: zsojka at seznam dot cz
  Target Milestone: ---
              Host: x86_64-pc-linux-gnu
            Target: x86_64-pc-linux-gnu

Created attachment 52417
  --> https://gcc.gnu.org/bugzilla/attachment.cgi?id=3D52417&action=3Dedit
reduced testcase

Compiler output:
$ x86_64-pc-linux-gnu-gcc testcase.c -wrapper valgrind,-q
=3D=3D19778=3D=3D Invalid read of size 2
=3D=3D19778=3D=3D    at 0xDF9304: c_pretty_printer::postfix_expression(tree=
_node*)
(c-pretty-print.cc:1584)
=3D=3D19778=3D=3D    by 0xDF9859: c_pretty_printer::postfix_expression(tree=
_node*)
(c-pretty-print.cc:1604)
=3D=3D19778=3D=3D    by 0xD5842D: c_tree_printer (c-objc-common.cc:308)
=3D=3D19778=3D=3D    by 0xD5842D: c_tree_printer(pretty_printer*, text_info=
*, char
const*, int, bool, bool, bool, bool*, char const**) (c-objc-common.cc:258)
=3D=3D19778=3D=3D    by 0x253CE9C: pp_format(pretty_printer*, text_info*)
(pretty-print.cc:1475)
=3D=3D19778=3D=3D    by 0x251ED02: diagnostic_report_diagnostic(diagnostic_=
context*,
diagnostic_info*) (diagnostic.cc:1384)
=3D=3D19778=3D=3D    by 0x251F287: diagnostic_impl(rich_location*, diagnost=
ic_metadata
const*, int, char const*, __va_list_tag (*) [1], diagnostic_t)
(diagnostic.cc:1546)
=3D=3D19778=3D=3D    by 0x251FC3F: error_at(unsigned int, char const*, ...)
(diagnostic.cc:1869)
=3D=3D19778=3D=3D    by 0xDCB5D0: c_build_shufflevector(unsigned int, tree_=
node*,
tree_node*, vec<tree_node*, va_heap, vl_ptr> const&, bool) (c-common.cc:118=
9)
=3D=3D19778=3D=3D    by 0xD66819: c_parser_postfix_expression(c_parser*)
(c-parser.cc:10075)
=3D=3D19778=3D=3D    by 0xD687AA: c_parser_unary_expression(c_parser*)
(c-parser.cc:8261)
=3D=3D19778=3D=3D    by 0xD69F41: c_parser_cast_expression(c_parser*, c_exp=
r*)
(c-parser.cc:8103)
=3D=3D19778=3D=3D    by 0xD6A1AE: c_parser_binary_expression(c_parser*, c_e=
xpr*,
tree_node*) (c-parser.cc:7906)
=3D=3D19778=3D=3D  Address 0x0 is not stack'd, malloc'd or (recently) free'd
=3D=3D19778=3D=3D=20
'
In function 'foo':
Segmentation fault
    9 |   u =3D __builtin_shufflevector (u, u, __builtin_convertvector (v, =
U));
      |   ^
0x13994df crash_signal
        /repo/gcc-trunk/gcc/toplev.cc:322
0xdf9304 c_pretty_printer::postfix_expression(tree_node*)
        /repo/gcc-trunk/gcc/c-family/c-pretty-print.cc:1584
0xdf9859 c_pretty_printer::postfix_expression(tree_node*)
        /repo/gcc-trunk/gcc/c-family/c-pretty-print.cc:1604
0xd5842d c_tree_printer
        /repo/gcc-trunk/gcc/c/c-objc-common.cc:308
0xd5842d c_tree_printer
        /repo/gcc-trunk/gcc/c/c-objc-common.cc:258
0x253ce9c pp_format(pretty_printer*, text_info*)
        /repo/gcc-trunk/gcc/pretty-print.cc:1475
0x251ed02 diagnostic_report_diagnostic(diagnostic_context*, diagnostic_info=
*)
        /repo/gcc-trunk/gcc/diagnostic.cc:1384
0x251f287 diagnostic_impl
        /repo/gcc-trunk/gcc/diagnostic.cc:1546
0x251fc3f error_at(unsigned int, char const*, ...)
        /repo/gcc-trunk/gcc/diagnostic.cc:1869
0xdcb5d0 c_build_shufflevector(unsigned int, tree_node*, tree_node*,
vec<tree_node*, va_heap, vl_ptr> const&, bool)
        /repo/gcc-trunk/gcc/c-family/c-common.cc:1189
0xd66819 c_parser_postfix_expression
        /repo/gcc-trunk/gcc/c/c-parser.cc:10075
0xd687aa c_parser_unary_expression
        /repo/gcc-trunk/gcc/c/c-parser.cc:8261
0xd69f41 c_parser_cast_expression
        /repo/gcc-trunk/gcc/c/c-parser.cc:8103
0xd6a1ae c_parser_binary_expression
        /repo/gcc-trunk/gcc/c/c-parser.cc:7906
0xd6b63b c_parser_conditional_expression
        /repo/gcc-trunk/gcc/c/c-parser.cc:7606
0xd6be60 c_parser_expr_no_commas
        /repo/gcc-trunk/gcc/c/c-parser.cc:7521
0xd6bf1b c_parser_expr_no_commas
        /repo/gcc-trunk/gcc/c/c-parser.cc:7564
0xd6c0d1 c_parser_expression
        /repo/gcc-trunk/gcc/c/c-parser.cc:10697
0xd6c838 c_parser_expression_conv
        /repo/gcc-trunk/gcc/c/c-parser.cc:10736
0xd61817 c_parser_statement_after_labels
        /repo/gcc-trunk/gcc/c/c-parser.cc:6263
Please submit a full bug report, with preprocessed source (by using
-freport-bug).
Please include the complete backtrace with any bug report.
See <https://gcc.gnu.org/bugs/> for instructions.

Compiling as C++ doesn't ICE, though the diagnostics exposes gcc internals:
$ x86_64-pc-linux-gnu-gcc -xc++ testcase.c
testcase.c: In function 'void foo(V)':
testcase.c:9:7: error: invalid element index 'VEC_CONVERT(v)' to
'__builtin_shufflevector'
    9 |   u =3D __builtin_shufflevector (u, u, __builtin_convertvector (v, =
U));
      |       ^~~~~~~~~~~~~~~~~~~~~~~


$ x86_64-pc-linux-gnu-gcc -v
Using built-in specs.
COLLECT_GCC=3D/repo/gcc-trunk/binary-latest-amd64/bin/x86_64-pc-linux-gnu-g=
cc
COLLECT_LTO_WRAPPER=3D/repo/gcc-trunk/binary-trunk-r12-7199-20220211084605-=
gcc68ad87014-checking-yes-rtl-df-extra-nobootstrap-amd64/bin/../libexec/gcc=
/x86_64-pc-linux-gnu/12.0.1/lto-wrapper
Target: x86_64-pc-linux-gnu
Configured with: /repo/gcc-trunk//configure --enable-languages=3Dc,c++
--enable-valgrind-annotations --disable-nls --enable-checking=3Dyes,rtl,df,=
extra
--disable-bootstrap --with-cloog --with-ppl --with-isl
--build=3Dx86_64-pc-linux-gnu --host=3Dx86_64-pc-linux-gnu
--target=3Dx86_64-pc-linux-gnu --with-ld=3D/usr/bin/x86_64-pc-linux-gnu-ld
--with-as=3D/usr/bin/x86_64-pc-linux-gnu-as --disable-libstdcxx-pch
--prefix=3D/repo/gcc-trunk//binary-trunk-r12-7199-20220211084605-gcc68ad870=
14-checking-yes-rtl-df-extra-nobootstrap-amd64
Thread model: posix
Supported LTO compression algorithms: zlib zstd
gcc version 12.0.1 20220211 (experimental) (GCC)=