From: Jonathan Wakely <jwakely@redhat.com>
To: libstdc++@gcc.gnu.org, gcc-patches@gcc.gnu.org
Subject: [committed] libstdc++: Fix incorrect use of abs and log10 in std::format [PR110860]
Date: Mon, 7 Aug 2023 22:14:22 +0100 [thread overview]
Message-ID: <20230807211428.701867-1-jwakely@redhat.com> (raw)
Tested x86_64-linux. Pushed to trunk. gcc-13 backport to follow.
-- >8 --
The std::formatter implementation for floating-point types uses
__builtin_abs and __builtin_log10 to avoid including all of <cmath>, but
those functions are not generic. The result of abs(2e304) is -INT_MIN
which is undefined, and then log10(INT_MIN) is NaN. As well as being
undefined, we fail to grow the buffer correctly, and then loop more
times than needed to allocate a buffer and try formatting the value into
it again.
We can use if-constexpr to choose the correct form of log10 to use for
the type, and avoid using abs entirely. This avoids the undefined
behaviour and should mean we only reallocate and retry std::to_chars
once.
libstdc++-v3/ChangeLog:
PR libstdc++/110860
* include/std/format (__formatter_fp::format): Do not use
__builtin_abs and __builtin_log10 with arbitrary floating-point
types.
---
libstdc++-v3/include/std/format | 17 ++++++++++++++---
1 file changed, 14 insertions(+), 3 deletions(-)
diff --git a/libstdc++-v3/include/std/format b/libstdc++-v3/include/std/format
index 60e53642b11..f68308e7210 100644
--- a/libstdc++-v3/include/std/format
+++ b/libstdc++-v3/include/std/format
@@ -1487,9 +1487,20 @@ namespace __format
{
// If the buffer is too small it's probably because of a large
// precision, or a very large value in fixed format.
- size_t __guess = __prec + sizeof(__buf);
- if (__fmt == chars_format::fixed)
- __guess += max((int)__builtin_log10(__builtin_abs(__v)) / 2, 1);
+ size_t __guess = 8 + __prec;
+ if (__fmt == chars_format::fixed) // +ddd.prec
+ {
+ if constexpr (is_same_v<_Fp, float>)
+ __guess += __builtin_log10f(__v < 0.0f ? -__v : __v);
+ else if constexpr (is_same_v<_Fp, double>)
+ __guess += __builtin_log10(__v < 0.0 ? -__v : __v);
+ else if constexpr (is_same_v<_Fp, long double>)
+ __guess += __builtin_log10l(__v < 0.0l ? -__v : __v);
+ else
+ __guess += numeric_limits<_Fp>::max_exponent10;
+ }
+ if (__guess <= sizeof(__buf)) [[unlikely]]
+ __guess = sizeof(__buf) * 2;
__dynbuf.reserve(__guess);
do
--
2.41.0
reply other threads:[~2023-08-07 21:14 UTC|newest]
Thread overview: [no followups] expand[flat|nested] mbox.gz Atom feed
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20230807211428.701867-1-jwakely@redhat.com \
--to=jwakely@redhat.com \
--cc=gcc-patches@gcc.gnu.org \
--cc=libstdc++@gcc.gnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).