c++ - Why does this loop produce "warning: iteration 3u invokes undefined behavior" and output more than 4 lines? -



c++ - Why does this loop produce "warning: iteration 3u invokes undefined behavior" and output more than 4 lines? -

compiling this:

#include <iostream> int main() { (int = 0; < 4; ++i) std::cout << i*1000000000 << std::endl; }

and gcc produces next warning:

warning: iteration 3u invokes undefined behavior [-waggressive-loop-optimizations] std::cout << i*1000000000 << std::endl; ^

i understand there signed integer overflow.

what cannot why i value broken overflow operation?

i've read answers why integer overflow on x86 gcc cause infinite loop?, i'm still not clear on why happens - "undefined" means "anything can happen", what's underlying cause of this specific behavior?

online: http://ideone.com/dmrrkr

compiler: gcc (4.8)

signed integer overflow (as strictly speaking, there no such thing "unsigned integer overflow") means undefined behaviour. , means can happen, , discussing why happen under rules of c++ doesn't create sense.

c++11 draft n3337: §5.4:1

if during evaluation of expression, result not mathematically defined or not in range of representable values type, behavior undefined. [ note: existing implementations of c++ ignore integer overflows. treatment of partition zero, forming remainder using 0 divisor, , floating point exceptions vary among machines, , adjustable library function. —end note ]

your code compiled g++ -o3 emits warning (even without -wall)

a.cpp: in function 'int main()': a.cpp:11:18: warning: iteration 3u invokes undefined behavior [-waggressive-loop-optimizations] std::cout << i*1000000000 << std::endl; ^ a.cpp:9:2: note: containing loop (int = 0; < 4; ++i) ^

the way can analyze programme doing, reading generated assembly code.

here total assembly listing:

.file "a.cpp" .section .text$_znkst5ctypeice8do_widenec,"x" .linkonce discard .align 2 lcoldb0: lhotb0: .align 2 .p2align 4,,15 .globl __znkst5ctypeice8do_widenec .def __znkst5ctypeice8do_widenec; .scl 2; .type 32; .endef __znkst5ctypeice8do_widenec: lfb860: .cfi_startproc movzbl 4(%esp), %eax ret $4 .cfi_endproc lfe860: lcolde0: lhote0: .section .text.unlikely,"x" lcoldb1: .text lhotb1: .p2align 4,,15 .def ___tcf_0; .scl 3; .type 32; .endef ___tcf_0: lfb1091: .cfi_startproc movl $__zstl8__ioinit, %ecx jmp __znst8ios_base4initd1ev .cfi_endproc lfe1091: .section .text.unlikely,"x" lcolde1: .text lhote1: .def ___main; .scl 2; .type 32; .endef .section .text.unlikely,"x" lcoldb2: .section .text.startup,"x" lhotb2: .p2align 4,,15 .globl _main .def _main; .scl 2; .type 32; .endef _main: lfb1084: .cfi_startproc leal 4(%esp), %ecx .cfi_def_cfa 1, 0 andl $-16, %esp pushl -4(%ecx) pushl %ebp .cfi_escape 0x10,0x5,0x2,0x75,0 movl %esp, %ebp pushl %edi pushl %esi pushl %ebx pushl %ecx .cfi_escape 0xf,0x3,0x75,0x70,0x6 .cfi_escape 0x10,0x7,0x2,0x75,0x7c .cfi_escape 0x10,0x6,0x2,0x75,0x78 .cfi_escape 0x10,0x3,0x2,0x75,0x74 xorl %edi, %edi subl $24, %esp phone call ___main l4: movl %edi, (%esp) movl $__zst4cout, %ecx phone call __znsolsei movl %eax, %esi movl (%eax), %eax subl $4, %esp movl -12(%eax), %eax movl 124(%esi,%eax), %ebx testl %ebx, %ebx je l15 cmpb $0, 28(%ebx) je l5 movsbl 39(%ebx), %eax l6: movl %esi, %ecx movl %eax, (%esp) addl $1000000000, %edi phone call __znso3putec subl $4, %esp movl %eax, %ecx phone call __znso5flushev jmp l4 .p2align 4,,10 l5: movl %ebx, %ecx phone call __znkst5ctypeice13_m_widen_initev movl (%ebx), %eax movl 24(%eax), %edx movl $10, %eax cmpl $__znkst5ctypeice8do_widenec, %edx je l6 movl $10, (%esp) movl %ebx, %ecx phone call *%edx movsbl %al, %eax pushl %edx jmp l6 l15: phone call __zst16__throw_bad_castv .cfi_endproc lfe1084: .section .text.unlikely,"x" lcolde2: .section .text.startup,"x" lhote2: .section .text.unlikely,"x" lcoldb3: .section .text.startup,"x" lhotb3: .p2align 4,,15 .def __global__sub_i_main; .scl 3; .type 32; .endef __global__sub_i_main: lfb1092: .cfi_startproc subl $28, %esp .cfi_def_cfa_offset 32 movl $__zstl8__ioinit, %ecx phone call __znst8ios_base4initc1ev movl $___tcf_0, (%esp) phone call _atexit addl $28, %esp .cfi_def_cfa_offset 4 ret .cfi_endproc lfe1092: .section .text.unlikely,"x" lcolde3: .section .text.startup,"x" lhote3: .section .ctors,"w" .align 4 .long __global__sub_i_main .lcomm __zstl8__ioinit,1,1 .ident "gcc: (i686-posix-dwarf-rev1, built mingw-w64 project) 4.9.0" .def __znst8ios_base4initd1ev; .scl 2; .type 32; .endef .def __znsolsei; .scl 2; .type 32; .endef .def __znso3putec; .scl 2; .type 32; .endef .def __znso5flushev; .scl 2; .type 32; .endef .def __znkst5ctypeice13_m_widen_initev; .scl 2; .type 32; .endef .def __zst16__throw_bad_castv; .scl 2; .type 32; .endef .def __znst8ios_base4initc1ev; .scl 2; .type 32; .endef .def _atexit; .scl 2; .type 32; .endef

i can barely read assembly, can see addl $1000000000, %edi line. resulting code looks more like

for(int = 0; /* nothing, - infinite loop */; += 1000000000) std::cout << << std::endl;

this comment of @t.c.:

i suspect it's like: (1) because every iteration i of value larger 2 has undefined behavior -> (2) can assume i <= 2 optimization purposes -> (3) loop status true -> (4) it's optimized away infinite loop.

gave me thought compare assembly code of op's code assembly code of next code, no undefined behaviour.

#include <iostream> int main() { // changed termination status (int = 0; < 3; ++i) std::cout << i*1000000000 << std::endl; }

and, in fact, right code has termination condition.

; ...snip... l6: mov ecx, edi mov dword ptr [esp], eax add together esi, 1000000000 phone call __znso3putec sub esp, 4 mov ecx, eax phone call __znso5flushev cmp esi, -1294967296 // here jne l7 lea esp, [ebp-16] xor eax, eax pop ecx ; ...snip...

omg, that's not obvious! it's not fair! demand trial fire!

deal it, wrote buggy code , should sense bad. bear consequences.

...or, alternatively, create proper utilize of improve diagnostics , improve debugging tools - that's for:

enable warnings

-wall gcc alternative enables useful warnings no false positives. bare minimum should use. gcc has many other warning options, however, not enabled -wall may warn on false positives visual c++ unfortunately lagging behind ability give useful warnings. @ to the lowest degree ide enables default.

use debug flags debugging

for integer overflow -ftrapv traps programme on overflow, clang compiler first-class this: -fcatch-undefined-behavior catches lot of instances of undefined behaviour (note: "a lot of" != "all of them")

i have spaghetti mess of programme not written me needs shipped tomorrow! help!!!!!!111oneone

use gcc's -fwrapv

this alternative instructs compiler assume signed arithmetic overflow of addition, subtraction , multiplication wraps around using twos-complement representation.

1 - rule not apply "unsigned integer overflow", §3.9.1.4 says that

unsigned integers, declared unsigned, shall obey laws of arithmetic modulo 2n n number of bits in value representation of particular size of integer.

and e.g. result of uint_max + 1 mathematically defined - rules of arithmetic modulo 2n

c++ gcc undefined-behavior

Comments

Post a Comment

Popular posts from this blog

php - Android app custom user registration and login with cookie using facebook sdk -

php - Android app custom user registration and login with cookie using facebook sdk - i developing android application in users need register , log in using facebook. approximately, flow. open app first time, authenticate facebook, data, send info server create them business relationship in application, start session new business relationship in server, cookie perform later interactions. so far good. what need know wich info have send server, can able identify users when log in seccond time. because need start session in server , send cookie android app farther interactions. i'm using php server side language. i thinking getting getaccesstoken() in android facebook sdk, pass server on business relationship creation , storing in android app. but can't manage how login users on sec time utilize app. any suggestions ? in advance ! to uniquely identify user within app, should create request /me , user's id. guaranteed unique , remain con
Read more

django - Access session in user model .save() -

django - Access session in user model .save() - is possible access current session in user model .save()? pseudo code of want achieve: # users.models.py def save(self, *args, **kwargs): created = true if self.pk: created = false super(abstractuser, self).save(*args, **kwargs) # post-save if created: look_for_invite_in_session_and_register_if_found(self, session) seems wrong in architecture. shouldn't access request in models layer. work request must done in view. can this: user, created = abstractuser.objects.get_or_create(name=name) if created: look_for_invite_in_session_and_register_if_found(user, request.session) django session
Read more

php - .htaccess Multiple Rewrite Rules / Prioritizing -

php - .htaccess Multiple Rewrite Rules / Prioritizing - here current htaccess file: rewriteengine on rewritecond %{http_host} !^www\.website\.com [nc] rewritecond %{http_host} ([^.]+)\.website\.com [nc] rewriterule ^(.*)$ http://www.website.com/gotourl.php?urlid=?%1 [l] rewriterule ^(\w+)$ ./gotourl.php?urlid=$1 [nc,l] rewriterule ^(\w+)/$ ./gotourl.php?urlid=$1 [nc,l] the website in question url shortener i'm working on testing/developing , personal use. above code may not ideal i'm not familiar .htaccess , made via googling , testing. want url shortening aspect: http://website.com/1234 -> http://website.com/gotourl.php?urlid=1234 http://website.com/1234/ -> http://website.com/gotourl.php?urlid=1234 the problem cannot figure out how ignore directories. want specific directories go specific pages: http://website.com/img (or) http://website.com/img/ -> http://website.com/img.php http://website.com/img/1234 (or) http://website.com/
Read more