Example: pointer_from_integer_2.c

up: index
prev: pointer_from_integer_1ie.c
next: pointer_from_integer_2g.c

1
2
3
4
5
6
7
8
9
10
11
12
13

    #include <stdio.h>
    #include <stdint.h>
    #include "charon_address_guesses.h"
    void f() {
      uintptr_t i=ADDRESS_PFI_2;
      int *p = (int*)i;
      *p=7;
    }
    int main() {
      int j=5;
      f();
      printf("j=%d\n",j); 
    }
[link to run test in Cerberus]

Experimental data (what does this mean?) 



cerberus-concrete-PVI-plain j=7


cerberus-concrete-PVI-ae Undefined behaviour: the operand of the unary '*' operator has an invalid value at 7:3-5


cerberus-concrete-PVI-ae-udi Undefined behaviour: the operand of the unary '*' operator has an invalid value at 7:3-5


gcc-8.3-O0 exit codes: compile 0 / execute 139


gcc-8.3-O2 exit codes: compile 0 / execute 139


gcc-8.3-O3 exit codes: compile 0 / execute 139


gcc-8.3-O2-no-strict-aliasing exit codes: compile 0 / execute 139


gcc-8.3-O3-no-strict-aliasing exit codes: compile 0 / execute 139


clang-7.0.1-O0 exit codes: compile 0 / execute 139


clang-7.0.1-O2 exit codes: compile 0 / execute 139


clang-7.0.1-O3 exit codes: compile 0 / execute 139


clang-7.0.1-O2-no-strict-aliasing exit codes: compile 0 / execute 139


clang-7.0.1-O3-no-strict-aliasing exit codes: compile 0 / execute 139


icc-19-O0 exit codes: compile 0 / execute 139
Segmentation fault (core dumped)


icc-19-O2 exit codes: compile 0 / execute 139
Segmentation fault (core dumped)


icc-19-O3 exit codes: compile 0 / execute 139
Segmentation fault (core dumped)


icc-19-O2-no-strict-aliasing exit codes: compile 0 / execute 139
Segmentation fault (core dumped)


icc-19-O3-no-strict-aliasing exit codes: compile 0 / execute 139
Segmentation fault (core dumped)