[Bug analyzer/104821] RFE: consolidate analyzer leak diagnostics by considering indirect vs direct leaks

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104821 --- Comment #2 from David Malcolm --- (In reply to David Malcolm from comment #1) Copy&paste error: result->m_b = malloc (sz_c); should have been: result->m_c = malloc (sz_c);

[Bug analyzer/101983] analyzer leak false positives building singly linked list

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=101983 David Malcolm changed: What|Removed |Added Resolution|--- |FIXED Status|ASSIGNED

[Bug middle-end/104854] [11/12 Regression] -Wstringop-overread should not warn for strnlen and strndup

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104854 David Malcolm changed: What|Removed |Added CC||dmalcolm at gcc dot gnu.org --- Comment

[Bug analyzer/104860] New: RFE: -Wanalyzer-possible-null-argument and -Wanalyzer-null-argument should respect __attribute__((access, ...))

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104860 Bug ID: 104860 Summary: RFE: -Wanalyzer-possible-null-argument and -Wanalyzer-null-argument should respect __attribute__((access, ...)) Product: gcc Version: 12.

[Bug analyzer/104793] -Wanalyzer-write-to-const and -Wanalyzer-write-to-string-literal should respect attribute((access, write)

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104793 --- Comment #1 from David Malcolm --- See also PR analyzer/104860, which covers this for -Wanalyzer-possible-null-argument and -Wanalyzer-null-argument.

[Bug analyzer/104860] RFE: -Wanalyzer-possible-null-argument and -Wanalyzer-null-argument should respect __attribute__((access, ...))

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104860 --- Comment #1 from David Malcolm --- Questions posted to GCC list about this: "__attribute__ ((access, ...)) vs __attribute__ ((nonnull))" https://gcc.gnu.org/pipermail/gcc/2022-March/238389.html

[Bug analyzer/104793] -Wanalyzer-write-to-const and -Wanalyzer-write-to-string-literal should respect attribute((access, write)

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104793 David Malcolm changed: What|Removed |Added Resolution|--- |FIXED Status|UNCONFIRMED

[Bug analyzer/104863] [12 regression] ICE in operator[], at vec.h:889 since r12-6782-gc4b8f3730a800251

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104863 David Malcolm changed: What|Removed |Added Status|NEW |ASSIGNED --- Comment #2 from David Malc

[Bug analyzer/104863] [12 regression] ICE in operator[], at vec.h:889 since r12-6782-gc4b8f3730a800251

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104863 David Malcolm changed: What|Removed |Added Resolution|--- |FIXED Status|ASSIGNED

[Bug analyzer/104940] New: RFE: integrate analyzer with an SMT solver

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104940 Bug ID: 104940 Summary: RFE: integrate analyzer with an SMT solver Product: gcc Version: 12.0 Status: UNCONFIRMED Severity: normal Priority: P3 Component: analy

[Bug analyzer/95000] -fanalyzer confused by switch on non-int type

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=95000 David Malcolm changed: What|Removed |Added Depends on||104940 --- Comment #6 from David Malcolm

[Bug analyzer/104943] New: Analyzer fails to purge state for local structs

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104943 Bug ID: 104943 Summary: Analyzer fails to purge state for local structs Product: gcc Version: 12.0 Status: UNCONFIRMED Severity: normal Priority: P3 Component:

[Bug analyzer/104954] New: Analyzer takes a very long time on Linux kernel drivers/gpu/drm/amd/display/dc/calcs/dce_calcs.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104954 Bug ID: 104954 Summary: Analyzer takes a very long time on Linux kernel drivers/gpu/drm/amd/display/dc/calcs/dce_calcs.c Product: gcc Version: 12.0 Status: UNCONFIRMED

[Bug analyzer/104954] Analyzer takes a very long time on Linux kernel drivers/gpu/drm/amd/display/dc/calcs/dce_calcs.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104954 David Malcolm changed: What|Removed |Added Depends on||104943 --- Comment #2 from David Malcol

[Bug analyzer/104954] Analyzer takes a very long time on Linux kernel drivers/gpu/drm/amd/display/dc/calcs/dce_calcs.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104954 --- Comment #3 from David Malcolm --- I'm also seeing states with dozens of bindings for touched regions for __UNIQUE_ID_ddebugN for various N: clusters within :: {, r

[Bug analyzer/104954] Analyzer takes a very long time on Linux kernel drivers/gpu/drm/amd/display/dc/calcs/dce_calcs.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104954 --- Comment #4 from David Malcolm --- Created attachment 52634 --> https://gcc.gnu.org/bugzilla/attachment.cgi?id=52634&action=edit Gzipped preprocessed source, unreduced

[Bug analyzer/104955] New: Analyzer slowdown with many diagnostics

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104955 Bug ID: 104955 Summary: Analyzer slowdown with many diagnostics Product: gcc Version: 12.0 Status: UNCONFIRMED Severity: normal Priority: P3 Component: analyzer

[Bug analyzer/104954] Analyzer takes a very long time on Linux kernel drivers/gpu/drm/amd/display/dc/calcs/dce_calcs.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104954 David Malcolm changed: What|Removed |Added Depends on||104955 --- Comment #5 from David Malcol

[Bug analyzer/104955] Analyzer slowdown with many diagnostics

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104955 --- Comment #1 from David Malcolm --- Also takes a long time with -Wno-analyzer-double-free; perhaps we ought to reject saved_diagnostics that will ultimately not be emitted.

[Bug analyzer/104955] Analyzer slowdown with many diagnostics

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104955 --- Comment #2 from David Malcolm --- I suspect that this issue is due to building a feasible_graph per saved diagnostic, thus leading to an O(N^2) where as the function gets bigger, each individual diagnostic requires more work. Perhaps fixabl

[Bug middle-end/104854] -Wstringop-overread should not warn for strnlen, strndup and strncmp

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104854 --- Comment #9 from David Malcolm --- (In reply to Siddhesh Poyarekar from comment #8) > (In reply to Martin Sebor from comment #7) > > Moving warnings into the analyzer and scaling it up to be able to run by > > default, during development, sou

[Bug analyzer/104979] New: False positive from -Wanalyzer-malloc-leak with cast within boxed pointer

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104979 Bug ID: 104979 Summary: False positive from -Wanalyzer-malloc-leak with cast within boxed pointer Product: gcc Version: 12.0 Status: UNCONFIRMED Severity: norm

[Bug analyzer/104943] Analyzer fails to purge state for local structs

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104943 David Malcolm changed: What|Removed |Added Status|UNCONFIRMED |RESOLVED Resolution|---

[Bug analyzer/104954] Analyzer takes a very long time on Linux kernel drivers/gpu/drm/amd/display/dc/calcs/dce_calcs.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104954 Bug 104954 depends on bug 104943, which changed state. Bug 104943 Summary: Analyzer fails to purge state for local structs https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104943 What|Removed |Added ---

[Bug analyzer/104997] ICE in add_note, at analyzer/diagnostic-manager.cc:946

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104997 David Malcolm changed: What|Removed |Added Ever confirmed|0 |1 Status|UNCONFIRMED

[Bug analyzer/105022] New: -Wanalyzer-tainted-allocation-size doesn't warn for custom allocators marked with "malloc" attribute

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105022 Bug ID: 105022 Summary: -Wanalyzer-tainted-allocation-size doesn't warn for custom allocators marked with "malloc" attribute Product: gcc Version: 12.0 Status: UNCONFIRM

[Bug analyzer/105017] [12 Regression] gcc/analyzer/sm-taint.cc:631:21: warning: private field 'm_mem_space' is not used [-Wunused-private-field]

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105017 David Malcolm changed: What|Removed |Added Last reconfirmed||2022-03-22 Ever confirmed|0

[Bug analyzer/104997] [12 Regression] ICE in add_note, at analyzer/diagnostic-manager.cc:946 since r12-7677-g7fd6e36ea9aa8575

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104997 David Malcolm changed: What|Removed |Added Resolution|--- |FIXED Status|ASSIGNED

[Bug analyzer/105017] [12 Regression] gcc/analyzer/sm-taint.cc:631:21: warning: private field 'm_mem_space' is not used [-Wunused-private-field]

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105017 David Malcolm changed: What|Removed |Added Status|ASSIGNED|RESOLVED Resolution|---

[Bug analyzer/104979] False positive from -Wanalyzer-malloc-leak with cast within boxed pointer

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104979 David Malcolm changed: What|Removed |Added Resolution|--- |FIXED Status|UNCONFIRMED

[Bug analyzer/104954] Analyzer takes a very long time on Linux kernel drivers/gpu/drm/amd/display/dc/calcs/dce_calcs.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104954 David Malcolm changed: What|Removed |Added Resolution|--- |FIXED Status|UNCONFIRMED

[Bug analyzer/104954] Analyzer takes a very long time on Linux kernel drivers/gpu/drm/amd/display/dc/calcs/dce_calcs.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104954 --- Comment #9 from David Malcolm --- (In reply to Richard Biener from comment #1) > Does not enabling sanitizer improve things? Removing the sanitizer options speeds up the non-analyzer part of the build, reducing the overall wallclock time of

[Bug analyzer/105022] -Wanalyzer-tainted-allocation-size doesn't warn for custom allocators marked with "malloc" attribute

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105022 --- Comment #1 from David Malcolm --- https://gcc.gnu.org/onlinedocs/gcc/Common-Function-Attributes.html#index-malloc-function-attribute

[Bug analyzer/105022] -Wanalyzer-tainted-allocation-size doesn't warn for custom allocators marked with "malloc" attribute

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105022 David Malcolm changed: What|Removed |Added Resolution|--- |WONTFIX Status|UNCONFIRMED

[Bug analyzer/104860] RFE: -Wanalyzer-possible-null-argument and -Wanalyzer-null-argument should respect __attribute__((access, ...))

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104860 David Malcolm changed: What|Removed |Added Resolution|--- |INVALID Status|UNCONFIRMED

[Bug analyzer/95188] State explosion on bzip2-1.0.8/bzip2.c hides -Wanalyzer-unsafe-call-within-signal-handler

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=95188 David Malcolm changed: What|Removed |Added Summary|analyzer-unsafe-call-within |State explosion on |-s

[Bug analyzer/105057] [12 Regression] ICE: in get_or_create_cluster, at analyzer/store.cc:2658 with -fanalyzer

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105057 David Malcolm changed: What|Removed |Added Last reconfirmed||2022-03-25 Status|UNCONFIRM

[Bug analyzer/104308] no location info provided for [-Wanalyzer-use-of-uninitialized-value] warnings

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104308 David Malcolm changed: What|Removed |Added Keywords||patch --- Comment #5 from David Malcolm

[Bug analyzer/104308] no location info provided for [-Wanalyzer-use-of-uninitialized-value] warnings

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104308 David Malcolm changed: What|Removed |Added Status|ASSIGNED|WAITING

[Bug analyzer/105057] [12 Regression] ICE: in get_or_create_cluster, at analyzer/store.cc:2658 with -fanalyzer

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105057 David Malcolm changed: What|Removed |Added Status|ASSIGNED|RESOLVED Resolution|---

[Bug analyzer/104308] no location info provided for [-Wanalyzer-use-of-uninitialized-value] warnings

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104308 David Malcolm changed: What|Removed |Added Status|WAITING |RESOLVED Resolution|---

[Bug analyzer/105074] [12 Regression] -fanalyzer ICEs on gnutls-3.7.3: cgraph_node::get_edge(gimple*) SIGSEGV since r12-7809-g5f6197d7c197f9d2

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105074 David Malcolm changed: What|Removed |Added Status|NEW |ASSIGNED --- Comment #2 from David Malc

[Bug analyzer/105087] fanalyzer double free false positive with vasprintf

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105087 David Malcolm changed: What|Removed |Added Last reconfirmed||2022-03-28 Status|UNCONFIRM

[Bug analyzer/105087] fanalyzer double free false positive with vasprintf

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105087 --- Comment #2 from David Malcolm --- #include "analyzer-decls.h" extern void *inner_alloc (void); void * __attribute__((noinline)) outer_alloc (void) { return inner_alloc (); } void test_1 (void) { void *p, *q; p = outer_alloc (); q

[Bug analyzer/105087] fanalyzer double free false positive with vasprintf

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105087 --- Comment #3 from David Malcolm --- #include "analyzer-decls.h" extern void inner_alloc (void **); void * __attribute__((noinline)) outer_alloc (void) { void *result; inner_alloc (&result); return result; } void test_1 (void) { void

[Bug analyzer/105087] fanalyzer double free false positive with vasprintf

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105087 --- Comment #4 from David Malcolm --- Am testing a fix.

[Bug analyzer/105074] [12 Regression] -fanalyzer ICEs on gnutls-3.7.3: cgraph_node::get_edge(gimple*) SIGSEGV since r12-7809-g5f6197d7c197f9d2

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105074 David Malcolm changed: What|Removed |Added Status|ASSIGNED|RESOLVED Resolution|---

[Bug analyzer/105087] fanalyzer double free false positive with vasprintf

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105087 David Malcolm changed: What|Removed |Added Resolution|--- |FIXED Status|ASSIGNED

[Bug analyzer/105092] ICE with local with NULL DECL_CONTEXT on templatized OpenMP iterator

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105092 David Malcolm changed: What|Removed |Added CC||jakub at redhat dot com,

[Bug testsuite/105085] Excess errors from new test case gcc.dg/analyzer/untracked-1.c in r12-7809-g5f6197d7c197f9

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105085 David Malcolm changed: What|Removed |Added Status|UNCONFIRMED |ASSIGNED Ever confirmed|0

[Bug analyzer/105102] New: RFE: analyzer handling for asprintf and vasprintf

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105102 Bug ID: 105102 Summary: RFE: analyzer handling for asprintf and vasprintf Product: gcc Version: 12.0 Status: UNCONFIRMED Severity: normal Priority: P3 Component

[Bug analyzer/105103] New: RFE: detect bogus use of varargs in analyzer

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105103 Bug ID: 105103 Summary: RFE: detect bogus use of varargs in analyzer Product: gcc Version: 12.0 Status: UNCONFIRMED Severity: normal Priority: P3 Component: ana

[Bug testsuite/105085] Excess errors from new test case gcc.dg/analyzer/untracked-1.c in r12-7809-g5f6197d7c197f9

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105085 David Malcolm changed: What|Removed |Added Resolution|--- |FIXED Assignee|unassigned at

[Bug analyzer/105112] New: Speed up -fanalyzer on big-code.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105112 Bug ID: 105112 Summary: Speed up -fanalyzer on big-code.c Product: gcc Version: 12.0 Status: UNCONFIRMED Severity: normal Priority: P3 Component: analyzer

[Bug analyzer/105112] Speed up -fanalyzer on big-code.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105112 --- Comment #1 from David Malcolm --- Example state (picked at random from -fdump-analyzer-exploded-nodes-2 output): EN 113734: preds: EN: 113733 succs: EN: 113735 callstring: [] before (SN: 12511 stmt: 0): if (j_8254 <= 8191) 31 | for (j =

[Bug analyzer/105112] Speed up -fanalyzer on big-code.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105112 --- Comment #2 from David Malcolm --- FWIW, "perf report" shows that these are the top items in the profile: 8.72% libc-2.31.so [.] _int_malloc 6.68% libc-2.31.so [.] _int_free 2.91% cc1 [.] ana::binding_map::binding_map 2.76% l

[Bug analyzer/105113] [12 Regression] Analyzer segfaults on __func__ in static function

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105113 David Malcolm changed: What|Removed |Added Resolution|--- |DUPLICATE Status|UNCONFIRME

[Bug analyzer/105074] [12 Regression] -fanalyzer ICEs on gnutls-3.7.3: cgraph_node::get_edge(gimple*) SIGSEGV since r12-7809-g5f6197d7c197f9d2

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105074 David Malcolm changed: What|Removed |Added CC||bero at lindev dot ch --- Comment #6 fr

[Bug analyzer/105112] Speed up -fanalyzer on big-code.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105112 --- Comment #3 from David Malcolm --- Possible simplification: don't try to model floating-point operations e.g. any binop on a floating point value has unknown_svalue as the result, so that complicated floating-point computations can be quickly

[Bug jit/102824] building pdf/dvi documentation for libgccjit fails

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=102824 --- Comment #2 from David Malcolm --- make pdf is looking for the images in: gcc/jit/docs/_build/texinfo/libgccjit-figures but they're in the source tree in: gcc/jit/docs/_build/texinfo I just tried: git mv gcc/jit/docs/_build/texinfo/*.p

[Bug jit/104071] Add support for bitcast

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104071 David Malcolm changed: What|Removed |Added Keywords||patch URL|

[Bug jit/104073] Add option to hide stderr logging in libgccjit

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104073 David Malcolm changed: What|Removed |Added Status|UNCONFIRMED |ASSIGNED URL|

[Bug jit/104293] Add support for setting the alignment of variables

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104293 David Malcolm changed: What|Removed |Added Keywords||patch URL|

[Bug jit/102824] building pdf/dvi documentation for libgccjit fails

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=102824 --- Comment #4 from David Malcolm --- As noted in https://gcc.gnu.org/pipermail/gcc-patches/2022-April/592889.html the above patch seems to fix "make jit.pdf", but doesn't fix "make jit.dvi"; it seems to be looking for .eps files for the images.

[Bug analyzer/105190] New: False positive from -Wanalyzer-malloc-leak with symbolic writes to structs

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105190 Bug ID: 105190 Summary: False positive from -Wanalyzer-malloc-leak with symbolic writes to structs Product: gcc Version: 12.0 Status: UNCONFIRMED Severity: nor

[Bug analyzer/102308] False positive -Wanalyzer-malloc-leak when writing to array in struct

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=102308 David Malcolm changed: What|Removed |Added Ever confirmed|0 |1 Last reconfirmed|

[Bug c++/102208] Acceptance of invalid decltype(auto) in the default operator <=>

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=102208 David Malcolm changed: What|Removed |Added CC||dmalcolm at gcc dot gnu.org --- Comment

[Bug analyzer/102308] False positive -Wanalyzer-malloc-leak when writing to array in struct

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=102308 --- Comment #2 from David Malcolm --- I typoed this bug's ID 102308 as 102208 in the commit message; so the message went to the wrong bug; here's a copy-and-paste of the commit notification that went there: The master branch has been updated by

[Bug analyzer/102308] False positive -Wanalyzer-malloc-leak when writing to array in struct

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=102308 David Malcolm changed: What|Removed |Added Status|ASSIGNED|RESOLVED Resolution|---

[Bug analyzer/103892] -Wanalyzer-double-free false positive when compiling libpipeline

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=103892 --- Comment #2 from David Malcolm --- Still affects trunk

[Bug analyzer/103892] -Wanalyzer-double-free false positive when compiling libpipeline

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=103892 David Malcolm changed: What|Removed |Added Resolution|--- |FIXED Status|ASSIGNED

[Bug analyzer/105103] RFE: detect bogus use of varargs in analyzer

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105103 David Malcolm changed: What|Removed |Added Ever confirmed|0 |1 Last reconfirmed|

[Bug analyzer/105252] [12 Regression] ICE: in cmp_cst, at analyzer/svalue.cc:309 with -O -fanalyzer -fnon-call-exceptions since r12-1931-ge61ffa201403e381

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105252 David Malcolm changed: What|Removed |Added Status|NEW |ASSIGNED --- Comment #2 from David Malc

gcc-bugs@gcc.gnu.org

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105264 --- Comment #1 from David Malcolm --- Thanks for filing this bug. I suspect the analyzer is getting confused about the loop index on successive iterations (and state relating to this). Please can you: (a) specify exactly which compilation flag

[Bug jit/95325] Support 128-bit integers

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=95325 David Malcolm changed: What|Removed |Added Resolution|--- |FIXED Status|WAITING

[Bug jit/104071] Add support for bitcast

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104071 David Malcolm changed: What|Removed |Added Status|UNCONFIRMED |RESOLVED Resolution|---

[Bug jit/104072] Register variables in libgccjit

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104072 David Malcolm changed: What|Removed |Added Status|UNCONFIRMED |RESOLVED Resolution|---

[Bug jit/104073] Add option to hide stderr logging in libgccjit

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104073 David Malcolm changed: What|Removed |Added Status|ASSIGNED|RESOLVED Resolution|---

[Bug jit/104293] Add support for setting the alignment of variables

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104293 David Malcolm changed: What|Removed |Added Resolution|--- |FIXED Status|ASSIGNED

[Bug analyzer/104308] no location info provided for [-Wanalyzer-use-of-uninitialized-value] warnings

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104308 --- Comment #9 from David Malcolm --- (In reply to Kamil Dudka from comment #8) > As spotted by Vincent Mihalkovic, the fix seems to be incomplete. If we run > gcc-12.0.1-0.14.fc37.x86_64 on the following test-case, some diagnostic > messages a

[Bug analyzer/105252] [12 Regression] ICE: in cmp_cst, at analyzer/svalue.cc:309 with -O -fanalyzer -fnon-call-exceptions since r12-1931-ge61ffa201403e381

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105252 David Malcolm changed: What|Removed |Added Resolution|--- |FIXED Status|ASSIGNED

[Bug analyzer/104308] no location info provided for [-Wanalyzer-use-of-uninitialized-value] warnings

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104308 David Malcolm changed: What|Removed |Added Status|ASSIGNED|WAITING URL|

gcc-bugs@gcc.gnu.org

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105264 David Malcolm changed: What|Removed |Added Ever confirmed|0 |1 Status|UNCONFIRMED

gcc-bugs@gcc.gnu.org

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105264 --- Comment #6 from David Malcolm --- There are some fiddly issues where the analyzer fails to figure out that ptr + i and &ptr[i] refer to the same memory, for certain symbolic values of i. I'm testing a partial fix for GCC 12, which at least

[Bug analyzer/105273] -Wanalyzer-use-of-uninitialized-value warns on "missing" default for switch when callers can be statically determined

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105273 --- Comment #4 from David Malcolm --- Thanks for filing this bug. IIRC in the initial GCC 10 release of the analyzer, it didn't directly explore within static functions, and instead only explored them via callsites. I tweaked the policy for th

gcc-bugs@gcc.gnu.org

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105264 --- Comment #8 from David Malcolm --- The above patch hopefully fixes the false positive you're seeing, but as noted, there are some deeper issues that it doesn't fix; keeping this bug open.

[Bug analyzer/105287] [12 Regression] ICE in get_region_for_local, at analyzer/region.cc:874

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105287 David Malcolm changed: What|Removed |Added Ever confirmed|0 |1 Last reconfirmed|

[Bug analyzer/105285] False positive with -Wanalyzer-null-dereference in git.git's reftable/reader.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105285 --- Comment #3 from David Malcolm --- Thanks for filing this bug; I can reproduce it with the initial attachment; it's unclear to me yet what's going on.

[Bug analyzer/105365] [12 Regression] ICE: in cmp_cst, at analyzer/svalue.cc:309 with -fanalyzer since r12-2337-g33255ad3ac14e395

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105365 David Malcolm changed: What|Removed |Added Status|NEW |ASSIGNED --- Comment #2 from David Malc

[Bug analyzer/105366] [11/12 Regression] ICE: in cmp_cst, at analyzer/svalue.cc:309 with -O -fanalyzer since r11-4511-gf635f0ce87d687b1

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105366 David Malcolm changed: What|Removed |Added Status|NEW |ASSIGNED --- Comment #2 from David Malc

[Bug analyzer/105382] New: Support for coroutines in -fanalyzer

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105382 Bug ID: 105382 Summary: Support for coroutines in -fanalyzer Product: gcc Version: 12.0 Status: UNCONFIRMED Severity: normal Priority: P3 Component: analyzer

[Bug analyzer/105287] [12 Regression] ICE in analyzer get_region_for_local on C++ await cond_var

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105287 --- Comment #5 from David Malcolm --- Thanks. FWIW I've filed PR 105382 to track the various other issues I'm seeing with -fanalyzer with coroutines (though given that we don't properly support C++ yet, that's relatively low priority for me).

[Bug analyzer/105365] [12 Regression] ICE: in cmp_cst, at analyzer/svalue.cc:309 with -fanalyzer since r12-2337-g33255ad3ac14e395

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105365 David Malcolm changed: What|Removed |Added Resolution|--- |FIXED Status|ASSIGNED

[Bug analyzer/105366] [11 Regression] ICE: in cmp_cst, at analyzer/svalue.cc:309 with -O -fanalyzer since r11-4511-gf635f0ce87d687b1

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105366 David Malcolm changed: What|Removed |Added Summary|[11/12 Regression] ICE: in |[11 Regression] ICE: in

[Bug analyzer/104308] no location info provided for [-Wanalyzer-use-of-uninitialized-value] warnings

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=104308 David Malcolm changed: What|Removed |Added Resolution|--- |FIXED Status|WAITING

[Bug analyzer/105382] Support for coroutines in -fanalyzer

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105382 --- Comment #1 from David Malcolm --- Looks like the analyzer is assuming that all of the different _Coro_resume_index values are possible at each entry to f(f()::_Z1fv.Frame*), but AIUI that value is expressing which basic block the coroutine i

[Bug analyzer/105285] False positive with -Wanalyzer-null-dereference in git.git's reftable/reader.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105285 --- Comment #4 from David Malcolm --- Created attachment 52892 --> https://gcc.gnu.org/bugzilla/attachment.cgi?id=52892&action=edit Partially reduced reproducer I reduced the reproducer and am attaching it.

[Bug analyzer/105285] False positive with -Wanalyzer-null-dereference in git.git's reftable/reader.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105285 --- Comment #5 from David Malcolm --- I've been attempting to debug this. I think that there is a bug in both (a) the analyzer, and, possibly (b) in the software under test (git).

[Bug analyzer/105285] False positive with -Wanalyzer-null-dereference in git.git's reftable/reader.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105285 --- Comment #6 from David Malcolm --- For (a): If I'm reading this right: reader_init_block_reader has: struct reftable_block block = {((void *)0)}; reader_init_block_reader checks for (next_off >= r->size) and bails out, otherwise, block

[Bug analyzer/105285] False positive with -Wanalyzer-null-dereference in git.git's reftable/reader.c

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105285 --- Comment #7 from David Malcolm --- For (b), I'm not convinced git's code is totally correct here. The early-reject case in reader_get_block returns 0: if (off >= r->size) return 0; but at the caller, the condition is < 0: err = re

<    1   2   3   4   5   6   7   8   9   10   >