[Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code

public inbox for gcc-bugs@sourceware.org
help / color / mirror / Atom feed

* [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code
@ 2012-03-01  4:47 gcc at adamsimpkins dot net
  2012-03-01  4:55 ` [Bug tree-optimization/52445] " pinskia at gcc dot gnu.org
                   ` (16 more replies)
  0 siblings, 17 replies; 18+ messages in thread
From: gcc at adamsimpkins dot net @ 2012-03-01  4:47 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

             Bug #: 52445
           Summary: conditional store replacement causes segfault in
                    generated code
    Classification: Unclassified
           Product: gcc
           Version: 4.7.0
            Status: UNCONFIRMED
          Severity: normal
          Priority: P3
         Component: tree-optimization
        AssignedTo: unassigned@gcc.gnu.org
        ReportedBy: gcc@adamsimpkins.net

Created attachment 26797
  --> http://gcc.gnu.org/bugzilla/attachment.cgi?id=26797
minimized test case

The cond_store_replacement() optimization can move a memory access outside of a
conditional statement that checks whether it is safe to access the memory. 
This can cause the program to segfault.

I've attached a simplified test case that reproduces the problem.  It uses
mprotect to ensure the following byte is inaccessible.  In practice we see
segfaults simply because malloc sometimes returns a buffer at the end of a
readable region.  The conditional store replacement moves the memory access
outside of the length check.

I've verified the problem occurs in 4.6.1, 4.6.2, and the gcc-4.6.2-20120210
and gcc-4.7-20120225 snapshots.  The problem doesn't occur with 4.4.5, as it
doesn't perform conditional store replacement in this case.

^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
@ 2012-03-01  4:55 ` pinskia at gcc dot gnu.org
  2012-03-01  4:56 ` [Bug tree-optimization/52445] [4.6/4.6 Regression] " pinskia at gcc dot gnu.org
                   ` (15 subsequent siblings)
  16 siblings, 0 replies; 18+ messages in thread
From: pinskia at gcc dot gnu.org @ 2012-03-01  4:55 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

Andrew Pinski <pinskia at gcc dot gnu.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           Keywords|                            |wrong-code
             Status|UNCONFIRMED                 |NEW
   Last reconfirmed|                            |2012-03-01
     Ever Confirmed|0                           |1

--- Comment #1 from Andrew Pinski <pinskia at gcc dot gnu.org> 2012-03-01 04:55:39 UTC ---
Confirmed, I don't see why cselim is marking buf[1] as nothrow.


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6/4.6 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
  2012-03-01  4:55 ` [Bug tree-optimization/52445] " pinskia at gcc dot gnu.org
@ 2012-03-01  4:56 ` pinskia at gcc dot gnu.org
  2012-03-01  7:59 ` [Bug tree-optimization/52445] [4.6/4.7 " jakub at gcc dot gnu.org
                   ` (14 subsequent siblings)
  16 siblings, 0 replies; 18+ messages in thread
From: pinskia at gcc dot gnu.org @ 2012-03-01  4:56 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

Andrew Pinski <pinskia at gcc dot gnu.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
      Known to work|                            |4.4.5
   Target Milestone|---                         |4.6.3
            Summary|conditional store           |[4.6/4.6 Regression]
                   |replacement causes segfault |conditional store
                   |in generated code           |replacement causes segfault
                   |                            |in generated code
      Known to fail|                            |4.6.0, 4.7.0


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6/4.7 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
  2012-03-01  4:55 ` [Bug tree-optimization/52445] " pinskia at gcc dot gnu.org
  2012-03-01  4:56 ` [Bug tree-optimization/52445] [4.6/4.6 Regression] " pinskia at gcc dot gnu.org
@ 2012-03-01  7:59 ` jakub at gcc dot gnu.org
  2012-03-01  8:55 ` jakub at gcc dot gnu.org
                   ` (13 subsequent siblings)
  16 siblings, 0 replies; 18+ messages in thread
From: jakub at gcc dot gnu.org @ 2012-03-01  7:59 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

Jakub Jelinek <jakub at gcc dot gnu.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |jakub at gcc dot gnu.org
            Summary|[4.6/4.6 Regression]        |[4.6/4.7 Regression]
                   |conditional store           |conditional store
                   |replacement causes segfault |replacement causes segfault
                   |in generated code           |in generated code

--- Comment #2 from Jakub Jelinek <jakub at gcc dot gnu.org> 2012-03-01 07:58:46 UTC ---
Started with MEM_REF merge:
http://gcc.gnu.org/viewcvs?root=gcc&view=rev&rev=161655


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6/4.7 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
                   ` (2 preceding siblings ...)
  2012-03-01  7:59 ` [Bug tree-optimization/52445] [4.6/4.7 " jakub at gcc dot gnu.org
@ 2012-03-01  8:55 ` jakub at gcc dot gnu.org
  2012-03-01  9:02 ` jakub at gcc dot gnu.org
                   ` (12 subsequent siblings)
  16 siblings, 0 replies; 18+ messages in thread
From: jakub at gcc dot gnu.org @ 2012-03-01  8:55 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

--- Comment #3 from Jakub Jelinek <jakub at gcc dot gnu.org> 2012-03-01 08:54:51 UTC ---
I'd say the problem is that add_or_mark_expr hasn't been properly adjusted for
MEM_REFs, it ignores the offset of the MEM_REFs altogether.
Before MEM_REF, this function would just track INDIRECT_REFs dereferencing the
same pointer SSA_NAME (i.e. all of them would be same offset, same size).
Now it should take into account not just the offset, but also the access size.


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6/4.7 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
                   ` (3 preceding siblings ...)
  2012-03-01  8:55 ` jakub at gcc dot gnu.org
@ 2012-03-01  9:02 ` jakub at gcc dot gnu.org
  2012-03-01  9:15 ` jakub at gcc dot gnu.org
                   ` (11 subsequent siblings)
  16 siblings, 0 replies; 18+ messages in thread
From: jakub at gcc dot gnu.org @ 2012-03-01  9:02 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

--- Comment #4 from Jakub Jelinek <jakub at gcc dot gnu.org> 2012-03-01 09:01:59 UTC ---
Not to mention that in this exact case, even if was always non-trapping, I
doubt it will ever be an optimization to "optimize"
  if (len_1(D) > 1)
    goto <bb 5>;
  else
    goto <bb 6>;

<bb 5>:
  MEM[(char *)buf_2(D) + 1B] = 0;

<bb 6>:
  return;
into:
  if (len_1(D) > 1)
    goto <bb 6>;
  else
    goto <bb 5>;

<bb 5>:
  cstore.2_7 = MEM[(char *)buf_2(D) + 1B];

<bb 6>:
  # cstore.2_9 = PHI <cstore.2_7(5), 0(4)>
  MEM[(char *)buf_2(D) + 1B] = cstore.2_9;
  return;

because the latter we then expand into:
        jbe     .L8
        movb    %al, 1(%rdi)
        ret
...
.L8:
        movzbl  1(%rdi), %eax
        movb    %al, 1(%rdi)
        ret

So if the conditional bb contains just the potentionally cselim optimized
store, perhaps we should punt.

Plus for C++11/C11 memory model we probably need to disable cselim optimization
altogether.


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6/4.7 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
                   ` (4 preceding siblings ...)
  2012-03-01  9:02 ` jakub at gcc dot gnu.org
@ 2012-03-01  9:15 ` jakub at gcc dot gnu.org
  2012-03-01 10:37 ` jakub at gcc dot gnu.org
                   ` (10 subsequent siblings)
  16 siblings, 0 replies; 18+ messages in thread
From: jakub at gcc dot gnu.org @ 2012-03-01  9:15 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

--- Comment #5 from Jakub Jelinek <jakub at gcc dot gnu.org> 2012-03-01 09:14:42 UTC ---
The quick fix that would IMHO brings us back to pre-161655 decisions would be
just to store also the offset and size into the hash table entries and use them
as a requirement for the lookups.  I think that would essentially map to what
we did before.  A better, but more complicated, change, would be to only keep
using ssa_name and store as lookup criteria as we do right now, add a linked
list of offset/sizes and consider non-trapping stores if the [offset,
offset+size) interval is subset of the non-trapping bytes.  This would be able
to optimize even the cases where say there are is a larger store (or several
smaller stores) that cover the area.  We might need to prune the chains in
nt_fini_block though.

Richard, do you think for 4.7.0/4.6.4 just implementing the simpler approach
would be fine?


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6/4.7 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
                   ` (5 preceding siblings ...)
  2012-03-01  9:15 ` jakub at gcc dot gnu.org
@ 2012-03-01 10:37 ` jakub at gcc dot gnu.org
  2012-03-01 10:48 ` rguenth at gcc dot gnu.org
                   ` (9 subsequent siblings)
  16 siblings, 0 replies; 18+ messages in thread
From: jakub at gcc dot gnu.org @ 2012-03-01 10:37 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

Jakub Jelinek <jakub at gcc dot gnu.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |ASSIGNED
         AssignedTo|unassigned at gcc dot       |jakub at gcc dot gnu.org
                   |gnu.org                     |

--- Comment #6 from Jakub Jelinek <jakub at gcc dot gnu.org> 2012-03-01 10:37:18 UTC ---
Created attachment 26800
  --> http://gcc.gnu.org/bugzilla/attachment.cgi?id=26800
gcc47-pr52445.patch

Untested fix.


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6/4.7 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
                   ` (6 preceding siblings ...)
  2012-03-01 10:37 ` jakub at gcc dot gnu.org
@ 2012-03-01 10:48 ` rguenth at gcc dot gnu.org
  2012-03-01 10:51 ` jakub at gcc dot gnu.org
                   ` (8 subsequent siblings)
  16 siblings, 0 replies; 18+ messages in thread
From: rguenth at gcc dot gnu.org @ 2012-03-01 10:48 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

--- Comment #7 from Richard Guenther <rguenth at gcc dot gnu.org> 2012-03-01 10:47:25 UTC ---
Ok with

+      && TREE_CODE (TREE_OPERAND (exp, 0)) == SSA_NAME
+      && host_integerp (TREE_OPERAND (exp, 1), 0))

also checking that int_size_in_bytes does not return -1.


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6/4.7 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
                   ` (7 preceding siblings ...)
  2012-03-01 10:48 ` rguenth at gcc dot gnu.org
@ 2012-03-01 10:51 ` jakub at gcc dot gnu.org
  2012-03-01 12:13 ` rguenth at gcc dot gnu.org
                   ` (7 subsequent siblings)
  16 siblings, 0 replies; 18+ messages in thread
From: jakub at gcc dot gnu.org @ 2012-03-01 10:51 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

--- Comment #8 from Jakub Jelinek <jakub at gcc dot gnu.org> 2012-03-01 10:50:50 UTC ---
(In reply to comment #7)
> Ok with
> 
> +      && TREE_CODE (TREE_OPERAND (exp, 0)) == SSA_NAME
> +      && host_integerp (TREE_OPERAND (exp, 1), 0))
> 
> also checking that int_size_in_bytes does not return -1.

I'm doing that check later.  The reason I wanted to avoid doing it in the first
if, is that either it will mean int_size_in_bytes needs to be called twice, or
we'd need
  (size = int_size_in_bytes (TREE_TYPE (exp))) > 0
(i.e. setting variables in the if condition).  But if you prefer one of these,
I'll adjust.


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6/4.7 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
                   ` (8 preceding siblings ...)
  2012-03-01 10:51 ` jakub at gcc dot gnu.org
@ 2012-03-01 12:13 ` rguenth at gcc dot gnu.org
  2012-03-01 12:32 ` jakub at gcc dot gnu.org
                   ` (6 subsequent siblings)
  16 siblings, 0 replies; 18+ messages in thread
From: rguenth at gcc dot gnu.org @ 2012-03-01 12:13 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

Richard Guenther <rguenth at gcc dot gnu.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           Priority|P3                          |P2


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6/4.7 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
                   ` (9 preceding siblings ...)
  2012-03-01 12:13 ` rguenth at gcc dot gnu.org
@ 2012-03-01 12:32 ` jakub at gcc dot gnu.org
  2012-03-01 14:13 ` jakub at gcc dot gnu.org
                   ` (5 subsequent siblings)
  16 siblings, 0 replies; 18+ messages in thread
From: jakub at gcc dot gnu.org @ 2012-03-01 12:32 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

Jakub Jelinek <jakub at gcc dot gnu.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
  Attachment #26800|0                           |1
        is obsolete|                            |

--- Comment #9 from Jakub Jelinek <jakub at gcc dot gnu.org> 2012-03-01 12:31:53 UTC ---
Created attachment 26801
  --> http://gcc.gnu.org/bugzilla/attachment.cgi?id=26801
gcc47-pr52445.patch

Adjusted patch.


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6/4.7 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
                   ` (10 preceding siblings ...)
  2012-03-01 12:32 ` jakub at gcc dot gnu.org
@ 2012-03-01 14:13 ` jakub at gcc dot gnu.org
  2012-03-01 15:13 ` jakub at gcc dot gnu.org
                   ` (4 subsequent siblings)
  16 siblings, 0 replies; 18+ messages in thread
From: jakub at gcc dot gnu.org @ 2012-03-01 14:13 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

--- Comment #10 from Jakub Jelinek <jakub at gcc dot gnu.org> 2012-03-01 14:13:13 UTC ---
Author: jakub
Date: Thu Mar  1 14:13:06 2012
New Revision: 184743

URL: http://gcc.gnu.org/viewcvs?root=gcc&view=rev&rev=184743
Log:
    PR tree-optimization/52445
    * tree-ssa-phiopt.c (struct name_to_bb): Remove ssa_name field,
    add ssa_name_ver, offset and size fields and change store field
    to bool.
    (name_to_bb_hash, name_to_bb_eq): Adjust for the above changes.
    (add_or_mark_expr): Likewise.  Only consider previous stores
    with the same size and offset.
    (nt_init_block): Only look at gimple_assign_single_p stmts,
    doesn't look at rhs2.

    * gcc.dg/pr52445.c: New test.

Added:
    trunk/gcc/testsuite/gcc.dg/pr52445.c
Modified:
    trunk/gcc/ChangeLog
    trunk/gcc/testsuite/ChangeLog
    trunk/gcc/tree-ssa-phiopt.c


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6/4.7 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
                   ` (11 preceding siblings ...)
  2012-03-01 14:13 ` jakub at gcc dot gnu.org
@ 2012-03-01 15:13 ` jakub at gcc dot gnu.org
  2012-03-01 15:39 ` [Bug tree-optimization/52445] [4.6 " jakub at gcc dot gnu.org
                   ` (3 subsequent siblings)
  16 siblings, 0 replies; 18+ messages in thread
From: jakub at gcc dot gnu.org @ 2012-03-01 15:13 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

Jakub Jelinek <jakub at gcc dot gnu.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
   Target Milestone|4.6.3                       |4.6.4

--- Comment #11 from Jakub Jelinek <jakub at gcc dot gnu.org> 2012-03-01 14:38:57 UTC ---
GCC 4.6.3 is being released.


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
                   ` (12 preceding siblings ...)
  2012-03-01 15:13 ` jakub at gcc dot gnu.org
@ 2012-03-01 15:39 ` jakub at gcc dot gnu.org
  2012-03-01 15:48 ` jakub at gcc dot gnu.org
                   ` (2 subsequent siblings)
  16 siblings, 0 replies; 18+ messages in thread
From: jakub at gcc dot gnu.org @ 2012-03-01 15:39 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

Jakub Jelinek <jakub at gcc dot gnu.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
   Target Milestone|4.6.4                       |4.6.3
            Summary|[4.6/4.7 Regression]        |[4.6 Regression]
                   |conditional store           |conditional store
                   |replacement causes segfault |replacement causes segfault
                   |in generated code           |in generated code

--- Comment #12 from Jakub Jelinek <jakub at gcc dot gnu.org> 2012-03-01 14:42:13 UTC ---
Fixed on the trunk so far.


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
                   ` (13 preceding siblings ...)
  2012-03-01 15:39 ` [Bug tree-optimization/52445] [4.6 " jakub at gcc dot gnu.org
@ 2012-03-01 15:48 ` jakub at gcc dot gnu.org
  2012-09-11 14:21 ` mikpe at it dot uu.se
  2013-04-03 18:16 ` jakub at gcc dot gnu.org
  16 siblings, 0 replies; 18+ messages in thread
From: jakub at gcc dot gnu.org @ 2012-03-01 15:48 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

Jakub Jelinek <jakub at gcc dot gnu.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
   Target Milestone|4.6.3                       |4.6.4


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
                   ` (14 preceding siblings ...)
  2012-03-01 15:48 ` jakub at gcc dot gnu.org
@ 2012-09-11 14:21 ` mikpe at it dot uu.se
  2013-04-03 18:16 ` jakub at gcc dot gnu.org
  16 siblings, 0 replies; 18+ messages in thread
From: mikpe at it dot uu.se @ 2012-09-11 14:21 UTC (permalink / raw)
  To: gcc-bugs

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

Mikael Pettersson <mikpe at it dot uu.se> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |mikpe at it dot uu.se

--- Comment #13 from Mikael Pettersson <mikpe at it dot uu.se> 2012-09-11 14:21:09 UTC ---
Could this be applied to gcc-4.6.4 please?  A recently reported miscompilation
of a device driver in the Linux/ARM kernel by gcc-4.6.3 was traced to this bug.
 Applying the trunk patch to 4.6.3 fixed that test case.

FWIW, I've been using and testing this fix in my own 4.6-based branch since
early March, on multiple targets, without regressions.


^ permalink raw reply	[flat|nested] 18+ messages in thread

* [Bug tree-optimization/52445] [4.6 Regression] conditional store replacement causes segfault in generated code
  2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
                   ` (15 preceding siblings ...)
  2012-09-11 14:21 ` mikpe at it dot uu.se
@ 2013-04-03 18:16 ` jakub at gcc dot gnu.org
  16 siblings, 0 replies; 18+ messages in thread
From: jakub at gcc dot gnu.org @ 2013-04-03 18:16 UTC (permalink / raw)
  To: gcc-bugs


http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52445

Jakub Jelinek <jakub at gcc dot gnu.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|ASSIGNED                    |RESOLVED
         Resolution|                            |FIXED

--- Comment #14 from Jakub Jelinek <jakub at gcc dot gnu.org> 2013-04-03 18:15:53 UTC ---
Author: jakub
Date: Wed Apr  3 17:51:16 2013
New Revision: 197440

URL: http://gcc.gnu.org/viewcvs?rev=197440&root=gcc&view=rev
Log:
    Backported from mainline
    2012-03-01  Jakub Jelinek  <jakub@redhat.com>

    PR tree-optimization/52445
    * tree-ssa-phiopt.c (struct name_to_bb): Remove ssa_name field,
    add ssa_name_ver, offset and size fields and change store field
    to bool.
    (name_to_bb_hash, name_to_bb_eq): Adjust for the above changes.
    (add_or_mark_expr): Likewise.  Only consider previous stores
    with the same size and offset.
    (nt_init_block): Only look at gimple_assign_single_p stmts,
    doesn't look at rhs2.

    * gcc.dg/pr52445.c: New test.

Added:
    branches/gcc-4_6-branch/gcc/testsuite/gcc.dg/pr52445.c
Modified:
    branches/gcc-4_6-branch/gcc/ChangeLog
    branches/gcc-4_6-branch/gcc/testsuite/ChangeLog
    branches/gcc-4_6-branch/gcc/tree-ssa-phiopt.c


^ permalink raw reply	[flat|nested] 18+ messages in thread

end of thread, other threads:[~2013-04-03 18:16 UTC | newest]

Thread overview: 18+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2012-03-01  4:47 [Bug tree-optimization/52445] New: conditional store replacement causes segfault in generated code gcc at adamsimpkins dot net
2012-03-01  4:55 ` [Bug tree-optimization/52445] " pinskia at gcc dot gnu.org
2012-03-01  4:56 ` [Bug tree-optimization/52445] [4.6/4.6 Regression] " pinskia at gcc dot gnu.org
2012-03-01  7:59 ` [Bug tree-optimization/52445] [4.6/4.7 " jakub at gcc dot gnu.org
2012-03-01  8:55 ` jakub at gcc dot gnu.org
2012-03-01  9:02 ` jakub at gcc dot gnu.org
2012-03-01  9:15 ` jakub at gcc dot gnu.org
2012-03-01 10:37 ` jakub at gcc dot gnu.org
2012-03-01 10:48 ` rguenth at gcc dot gnu.org
2012-03-01 10:51 ` jakub at gcc dot gnu.org
2012-03-01 12:13 ` rguenth at gcc dot gnu.org
2012-03-01 12:32 ` jakub at gcc dot gnu.org
2012-03-01 14:13 ` jakub at gcc dot gnu.org
2012-03-01 15:13 ` jakub at gcc dot gnu.org
2012-03-01 15:39 ` [Bug tree-optimization/52445] [4.6 " jakub at gcc dot gnu.org
2012-03-01 15:48 ` jakub at gcc dot gnu.org
2012-09-11 14:21 ` mikpe at it dot uu.se
2013-04-03 18:16 ` jakub at gcc dot gnu.org

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).