xlint/lint1/msg_324.c

1.4  rillig /*	$NetBSD: msg_324.c,v 1.4 2021/01/06 09:23:04 rillig Exp $	*/
1.1  rillig # 3 "msg_324.c"
1.1  rillig
1.1  rillig // Test for message: suggest cast from '%s' to '%s' on op %s to avoid overflow [324]
1.1  rillig
1.2  rillig /*
1.2  rillig  * This warning applies to binary operators if the result of the operator
1.2  rillig  * is converted to a type that is bigger than the operands' result type
1.2  rillig  * after the usual arithmetic promotions.
1.2  rillig  *
1.2  rillig  * In such a case, the operator's result would be truncated to the operator's
1.2  rillig  * result type (invoking undefined behavior for signed integers), and that
1.2  rillig  * truncated value would then be converted.  At that point, a few bits may
1.2  rillig  * have been lost.
1.2  rillig  */
1.2  rillig
1.2  rillig /* lint1-flags: -g -S -w -P */
1.2  rillig
1.2  rillig void
1.2  rillig example(char c, int i, unsigned u)
1.2  rillig {
1.4  rillig 	long long ll;
1.4  rillig 	unsigned long long ull;
1.2  rillig
1.4  rillig 	ll = c + i;
1.4  rillig 	ll = i - c;
1.4  rillig 	ull = c * u;
1.4  rillig 	ull = u + c;
1.4  rillig 	ull = i - u;
1.4  rillig 	ull = u * i;
1.4  rillig 	ll = i << c;
1.2  rillig
1.2  rillig 	/*
1.2  rillig 	 * The operators SHR, DIV and MOD cannot produce an overflow,
1.2  rillig 	 * therefore no warning is necessary for them.
1.2  rillig 	 */
1.4  rillig 	ll = i >> c;
1.4  rillig 	ull = u / c;
1.4  rillig 	ull = u % c;
1.3  rillig
1.3  rillig 	/*
1.3  rillig 	 * Assigning the result of an increment or decrement operator to a
1.3  rillig 	 * differently-sized type is no unusual that there is no need to warn
1.3  rillig 	 * about it.  It's also more unlikely that there is an actual loss
1.3  rillig 	 * since this only happens for a single value of the old type, unlike
1.4  rillig 	 * "ull = u * u", which has many more possibilities for overflowing.
1.3  rillig 	 */
1.4  rillig 	ull = u++;
1.4  rillig 	ull = ++u;
1.4  rillig 	ull = u--;
1.4  rillig 	ull = --u;
1.2  rillig }