public inbox for gcc-bugs@sourceware.org help / color / mirror / Atom feed
From: "mark at gcc dot gnu.org" <gcc-bugzilla@gcc.gnu.org> To: gcc-bugs@gcc.gnu.org Subject: [Bug analyzer/95188] New: analyzer-unsafe-call-within-signal-handler shows wrong statement for signal registration event Date: Mon, 18 May 2020 13:28:21 +0000 [thread overview] Message-ID: <bug-95188-4@http.gcc.gnu.org/bugzilla/> (raw) https://gcc.gnu.org/bugzilla/show_bug.cgi?id=95188 Bug ID: 95188 Summary: analyzer-unsafe-call-within-signal-handler shows wrong statement for signal registration event Product: gcc Version: 10.1.0 Status: UNCONFIRMED Severity: normal Priority: P3 Component: analyzer Assignee: dmalcolm at gcc dot gnu.org Reporter: mark at gcc dot gnu.org Target Milestone: --- Reproducer: wget https://sourceware.org/ftp/bzip2/bzip2-1.0.8.tar.gz tar zxf bzip2-1.0.8.tar.gz cd bzip2-1.0.8/ gcc -g -O2 -fanalyzer -c bzip2.c In function ‘showFileNames.part.0’: bzip2.c:677:4: warning: call to ‘fprintf’ from within signal handler [CWE-479] [-Wanalyzer-unsafe-call-within-signal-handler] 677 | fprintf ( | ^~~~~~~~~ 678 | stderr, | ~~~~~~~ 679 | "\tInput file = %s, output file = %s\n", | ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ 680 | inName, outName | ~~~~~~~~~~~~~~~ 681 | ); | ~ ‘main’: events 1-2 | | 1776 | IntNative main ( IntNative argc, Char *argv[] ) | | ^~~~ | | | | | (1) entry to ‘main’ |...... | 1792 | smallMode = False; | | ~~~~~~~~~ | | | | | (2) registering ‘mySIGSEGVorSIGBUScatcher’ as signal handler | event 3 | |cc1: | (3): later on, when the signal is delivered to the process | +--> ‘mySIGSEGVorSIGBUScatcher’: events 4-5 | | 676 | if (noisy) | | ~ | | | | | (5) following ‘true’ branch... |...... | 816 | void mySIGSEGVorSIGBUScatcher ( IntNative n ) | | ^~~~~~~~~~~~~~~~~~~~~~~~ | | | | | (4) entry to ‘mySIGSEGVorSIGBUScatcher’ | ‘mySIGSEGVorSIGBUScatcher’: event 6 | |cc1: | (6): ...to here | ‘mySIGSEGVorSIGBUScatcher’: event 7 | |cc1: | (7): calling ‘showFileNames.part.0’ from ‘mySIGSEGVorSIGBUScatcher’ | +--> ‘showFileNames.part.0’: events 8-9 | | 674 | void showFileNames ( void ) | | ^~~~~~~~~~~~~ | | | | | (8) entry to ‘showFileNames.part.0’ |...... | 677 | fprintf ( | | ~~~~~~~~~ | | | | | (9) call to ‘fprintf’ from within signal handler | 678 | stderr, | | ~~~~~~~ | 679 | "\tInput file = %s, output file = %s\n", | | ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ | 680 | inName, outName | | ~~~~~~~~~~~~~~~ | 681 | ); | | ~ | Note that the signal handler registration points to the wrong instruction: | 1792 | smallMode = False; | | ~~~~~~~~~ | | | | | (2) registering ‘mySIGSEGVorSIGBUScatcher’ as signal handler A workaround is to add -fanalyzer-fine-grained, then it does show to correct signal registration event: | 1808 | signal (SIGSEGV, mySIGSEGVorSIGBUScatcher); | | ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ | | | | | (2) registering ‘mySIGSEGVorSIGBUScatcher’ as signal handler
next reply other threads:[~2020-05-18 13:28 UTC|newest] Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top 2020-05-18 13:28 mark at gcc dot gnu.org [this message] 2020-09-16 23:02 ` [Bug analyzer/95188] " cvs-commit at gcc dot gnu.org 2020-09-16 23:27 ` dmalcolm at gcc dot gnu.org 2020-09-16 23:28 ` dmalcolm at gcc dot gnu.org 2020-09-29 14:09 ` mark at gcc dot gnu.org 2020-09-29 17:31 ` dmalcolm at gcc dot gnu.org 2020-09-29 18:13 ` mark at gcc dot gnu.org 2020-09-29 19:16 ` dmalcolm at gcc dot gnu.org 2020-09-29 22:33 ` cvs-commit at gcc dot gnu.org 2020-09-29 22:42 ` dmalcolm at gcc dot gnu.org 2020-09-30 22:00 ` mark at gcc dot gnu.org 2020-10-07 14:28 ` dmalcolm at gcc dot gnu.org 2020-10-07 20:05 ` mark at gcc dot gnu.org 2021-03-12 22:35 ` dmalcolm at gcc dot gnu.org 2022-03-25 20:28 ` [Bug analyzer/95188] State explosion on bzip2-1.0.8/bzip2.c hides -Wanalyzer-unsafe-call-within-signal-handler dmalcolm at gcc dot gnu.org
Reply instructions: You may reply publicly to this message via plain-text email using any one of the following methods: * Save the following mbox file, import it into your mail client, and reply-to-all from there: mbox Avoid top-posting and favor interleaved quoting: https://en.wikipedia.org/wiki/Posting_style#Interleaved_style * Reply using the --to, --cc, and --in-reply-to switches of git-send-email(1): git send-email \ --in-reply-to=bug-95188-4@http.gcc.gnu.org/bugzilla/ \ --to=gcc-bugzilla@gcc.gnu.org \ --cc=gcc-bugs@gcc.gnu.org \ /path/to/YOUR_REPLY https://kernel.org/pub/software/scm/git/docs/git-send-email.html * If your mail client supports setting the In-Reply-To header via mailto: links, try the mailto: linkBe sure your reply has a Subject: header at the top and a blank line before the message body.
This is a public inbox, see mirroring instructions for how to clone and mirror all data and code used for this inbox; as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).