[llvm-bugs] [Bug 41809] New: z3 fatal error while analyzing webkit

via llvm-bugs Thu, 09 May 2019 02:23:46 -0700

https://bugs.llvm.org/show_bug.cgi?id=41809


            Bug ID: 41809
           Summary: z3 fatal error while analyzing webkit
           Product: clang
           Version: 8.0
          Hardware: PC
                OS: Linux
            Status: NEW
          Severity: enhancement
          Priority: P
         Component: C++
          Assignee: unassignedclangb...@nondot.org
          Reporter: pmatos@linki.tools
                CC: blitzrak...@gmail.com, dgre...@apple.com,
                    erik.pilking...@gmail.com, llvm-bugs@lists.llvm.org,
                    richard-l...@metafoo.co.uk

During a WebKit (https://webkit.org/) scan-build analysis (8x branch with 
-analyzer-config crosscheck-with-z3=true) I get the following:
$ /home/pmatos/installs/bin/clang-8 -cc1 -triple x86_64-unknown-linux-gnu
-analyze -disable-free -disable-llvm-verifier -discard-value-names
-main-file-name UnifiedSource-3a3c4ec0-1.cpp -analyzer-store=region
-analyzer-opt-analyze-nested-blocks -analyzer-checker=core
-analyzer-checker=apiModeling -analyzer-checker=unix -analyzer-checker=deadcode
-analyzer-checker=cplusplus
-analyzer-checker=security.insecureAPI.UncheckedReturn
-analyzer-checker=security.insecureAPI.getpw
-analyzer-checker=security.insecureAPI.gets
-analyzer-checker=security.insecureAPI.mktemp
-analyzer-checker=security.insecureAPI.mkstemp
-analyzer-checker=security.insecureAPI.vfork
-analyzer-checker=nullability.NullPassedToNonnull
-analyzer-checker=nullability.NullReturnedFromNonnull -analyzer-output plist -w
-analyzer-config-compatibility-mode=true -mrelocation-model pic -pic-level 2
-mthread-model posix -relaxed-aliasing -fmath-errno -ffp-contract=off
-masm-verbose -mconstructor-aliases -munwind-tables -fuse-init-array
-target-cpu x86-64 -dwarf-column-info -debugger-tuning=gdb
-momit-leaf-frame-pointer -resource-dir /home/pmatos/installs/lib/clang/8.0.1
-D BUILDING_JSCONLY__ -D BUILDING_JavaScriptCore -D BUILDING_WITH_CMAKE=1 -D
HAVE_CONFIG_H=1 -D JavaScriptCore_EXPORTS -D STATICALLY_LINKED_WITH_WTF -I
DerivedSources/ForwardingHeaders -I . -I ../Source/JavaScriptCore -I
../Source/JavaScriptCore/API -I ../Source/JavaScriptCore/assembler -I
../Source/JavaScriptCore/b3 -I ../Source/JavaScriptCore/b3/air -I
../Source/JavaScriptCore/bindings -I ../Source/JavaScriptCore/builtins -I
../Source/JavaScriptCore/bytecode -I ../Source/JavaScriptCore/bytecompiler -I
../Source/JavaScriptCore/dfg -I ../Source/JavaScriptCore/disassembler -I
../Source/JavaScriptCore/disassembler/ARM64 -I
../Source/JavaScriptCore/disassembler/udis86 -I ../Source/JavaScriptCore/domjit
-I ../Source/JavaScriptCore/ftl -I ../Source/JavaScriptCore/heap -I
../Source/JavaScriptCore/debugger -I ../Source/JavaScriptCore/inspector -I
../Source/JavaScriptCore/inspector/agents -I
../Source/JavaScriptCore/inspector/augmentable -I
../Source/JavaScriptCore/inspector/remote -I
../Source/JavaScriptCore/interpreter -I ../Source/JavaScriptCore/jit -I
../Source/JavaScriptCore/llint -I ../Source/JavaScriptCore/parser -I
../Source/JavaScriptCore/profiler -I ../Source/JavaScriptCore/runtime -I
../Source/JavaScriptCore/tools -I ../Source/JavaScriptCore/wasm -I
../Source/JavaScriptCore/wasm/js -I ../Source/JavaScriptCore/yarr -I
DerivedSources/JavaScriptCore -I DerivedSources/JavaScriptCore/inspector -I
DerivedSources/JavaScriptCore/runtime -I DerivedSources/JavaScriptCore/yarr -I
../Source/bmalloc -I DerivedSources -I ../Source/ThirdParty -D NDEBUG
-internal-isystem
/usr/lib/gcc/x86_64-linux-gnu/7.4.0/../../../../include/c++/7.4.0
-internal-isystem
/usr/lib/gcc/x86_64-linux-gnu/7.4.0/../../../../include/x86_64-linux-gnu/c++/7.4.0
-internal-isystem
/usr/lib/gcc/x86_64-linux-gnu/7.4.0/../../../../include/x86_64-linux-gnu/c++/7.4.0
-internal-isystem
/usr/lib/gcc/x86_64-linux-gnu/7.4.0/../../../../include/c++/7.4.0/backward
-internal-isystem /usr/local/include -internal-isystem
/home/pmatos/installs/lib/clang/8.0.1/include -internal-externc-isystem
/usr/include/x86_64-linux-gnu -internal-externc-isystem /include
-internal-externc-isystem /usr/include -O3 -Wno-expansion-to-defined
-Wno-attributes -Wno-psabi -Wno-noexcept-type -Wno-maybe-uninitialized
-std=c++17 -fdeprecated-macro -fdebug-compilation-dir
/home/pmatos/Projects/Igalia/WebKit/WebKitBuild -ferror-limit 19
-fmessage-length 0 -fno-rtti -fobjc-runtime=gcc -fdiagnostics-show-option
-fcolor-diagnostics -vectorize-loops -vectorize-slp -analyzer-output=html
-analyzer-config crosscheck-with-z3=true -o
/home/pmatos/Projects/Igalia/WebKit/WebKitBuild/build-analysis_z3/scan-build-2019-05-09-09-46-21-907905-qrljzo0e
-x c++
/home/pmatos/Projects/Igalia/WebKit/WebKitBuild/DerivedSources/JavaScriptCore/unified-sources/UnifiedSource-3a3c4ec0-1.cpp
-faddrsig 
fatal error: error in backend: Z3 error: rm and float sorts expected


UnifiedSource-3a3c4ec0-1.cpp contains only:
#include "jit/AssemblyHelpers.cpp"
#include "jit/BinarySwitch.cpp"
#include "jit/CCallHelpers.cpp"
#include "jit/CachedRecovery.cpp"
#include "jit/CallFrameShuffleData.cpp"
#include "jit/CallFrameShuffler.cpp"
#include "jit/CallFrameShuffler32_64.cpp"
#include "jit/CallFrameShuffler64.cpp"

If I preprocess this file and rerun the analysis I find no problems anymore.
What further information do you need to debug this?

-- 
You are receiving this mail because:
You are on the CC list for the bug.

_______________________________________________
llvm-bugs mailing list
llvm-bugs@lists.llvm.org
https://lists.llvm.org/cgi-bin/mailman/listinfo/llvm-bugs

[llvm-bugs] [Bug 41809] New: z3 fatal error while analyzing webkit

Reply via email to