Missing casts in const macro translation

[DCNick3]

A bug I found when working on unsafe-libopus

Apparently, when const macro translation is enabled, some casts are dropped, which leads to a change in semantics.

Reproducible case

#include <stdio.h>

#define silk_int16_MIN ((short)0x8000)

int test() { return silk_int16_MIN; }

int main() {
    printf("%d\n", test());
}

Without --translate-const-macros:

#![allow(dead_code, mutable_transmutes, non_camel_case_types, non_snake_case, non_upper_case_globals, unused_assignments, unused_mut)]
extern "C" {
    fn printf(_: *const libc::c_char, _: ...) -> libc::c_int;
}
#[no_mangle]
pub unsafe extern "C" fn test() -> libc::c_int {
    return 0x8000 as libc::c_int as libc::c_short as libc::c_int;
}
unsafe fn main_0() -> libc::c_int {
    printf(b"%d\n\0" as *const u8 as *const libc::c_char, test());
    return 0;
}
pub fn main() {
    unsafe { ::std::process::exit(main_0() as i32) }
}

Outputs -32768

With --translate-const-macros:

#![allow(dead_code, mutable_transmutes, non_camel_case_types, non_snake_case, non_upper_case_globals, unused_assignments, unused_mut)]
extern "C" {
    fn printf(_: *const libc::c_char, _: ...) -> libc::c_int;
}
pub const silk_int16_MIN: libc::c_int = 0x8000 as libc::c_int;
#[no_mangle]
pub unsafe extern "C" fn test() -> libc::c_int {
    return silk_int16_MIN;
}
unsafe fn main_0() -> libc::c_int {
    printf(b"%d\n\0" as *const u8 as *const libc::c_char, test());
    return 0;
}
pub fn main() {
    unsafe { ::std::process::exit(main_0() as i32) }
}

Outputs 32768

The bug

When no constants are generated the value is correctly cast to c_short before being widened back: 0x8000 as libc::c_int as libc::c_short as libc::c_int

When constant translation is enabled, however, the 0x8000 constant is not cast to the short type and stored directly as an int, which is incorrect

[GPHemsley]

This appears to be because canonical_macro_replacement() is calling resolve_expr_type_id(), which then discards the intermediate types:

c2rust/c2rust-transpile/src/translator/mod.rs

Lines 2184 to 2230 in 03b949c

	fn canonical_macro_replacement(
	&self,
	ctx: ExprContext,
	replacements: &[CExprId],
	) -> TranslationResult<(Box<Expr>, CTypeId)> {
	let (val, ty) = replacements
	.iter()
	.try_fold::<Option<(WithStmts<Box<Expr>>, CTypeId)>, _, _>(None, |canonical, id| {
	let ty = self.ast_context[*id]
	.kind
	.get_type()
	.ok_or_else(|| format_err!("Invalid expression type"))?;
	let (expr_id, ty) = self
	.ast_context
	.resolve_expr_type_id(*id)
	.unwrap_or((*id, ty));
	let expr = self.convert_expr(ctx, expr_id)?;
	// Join ty and cur_ty to the smaller of the two types. If the
	// types are not cast-compatible, abort the fold.
	let ty_kind = self.ast_context.resolve_type(ty).kind.clone();
	if let Some((canon_val, canon_ty)) = canonical {
	let canon_ty_kind = self.ast_context.resolve_type(canon_ty).kind.clone();
	if let Some(smaller_ty) =
	CTypeKind::smaller_compatible_type(canon_ty_kind.clone(), ty_kind)
	{
	if smaller_ty == canon_ty_kind {
	Ok(Some((canon_val, canon_ty)))
	} else {
	Ok(Some((expr, ty)))
	}
	} else {
	Err(format_err!("Not all macro expansions are compatible types"))
	}
	} else {
	Ok(Some((expr, ty)))
	}
	})?
	.ok_or_else(|| format_err!("Could not find a valid type for macro"))?;
	val.to_unsafe_pure_expr()
	.map(|val| (val, ty))
	.ok_or_else(|| TranslationError::generic("Macro expansion is not a pure expression"))
	// TODO: Validate that all replacements are equivalent and pick the most
	// common type to minimize casts.
	}

c2rust/c2rust-transpile/src/c_ast/mod.rs

Lines 426 to 454 in 03b949c

	/// Resolve true expression type, iterating through any casts and variable
	/// references.
	pub fn resolve_expr_type_id(&self, expr_id: CExprId) -> Option<(CExprId, CTypeId)> {
	let expr = &self.index(expr_id).kind;
	let mut ty = expr.get_type();
	use CExprKind::*;
	match expr {
	ImplicitCast(_, subexpr, _, _, _)
	| ExplicitCast(_, subexpr, _, _, _)
	| Paren(_, subexpr) => {
	return self.resolve_expr_type_id(*subexpr);
	}
	DeclRef(_, decl_id, _) => {
	let decl = self.index(*decl_id);
	use CDeclKind::*;
	match decl.kind {
	Function { typ, .. } => {
	ty = Some(self.resolve_type_id(typ));
	}
	Variable { typ, .. } | Typedef { typ, .. } => {
	ty = Some(self.resolve_type_id(typ.ctype));
	}
	_ => {}
	}
	}
	_ => {}
	}
	ty.map(|ty| (expr_id, ty))
	}

#define TEST_CAST ((short)0x8000)

int test_cast() { return TEST_CAST; }

trace: Expanding macro CDeclId(337): Located { loc: Some(SrcSpan { fileid: 1, begin_line: 84, begin_column: 9, end_line: 84, end_column: 33 }), kind: MacroObject { name: "TEST_CAST" } }
trace: resolve_expr_type: Some(CTypeId(15)) // ImplicitCast(CQualTypeId { qualifiers: Qualifiers { is_const: false, is_restrict: false, is_volatile: false }, ctype: CTypeId(15) }, CExprId(338), IntegralCast, None, RValue)
trace: resolve_expr_type: Some(CTypeId(66)) // ExplicitCast(CQualTypeId { qualifiers: Qualifiers { is_const: false, is_restrict: false, is_volatile: false }, ctype: CTypeId(66) }, CExprId(340), IntegralCast, None, RValue)
trace: resolve_expr_type: Some(CTypeId(15)) // Literal(CQualTypeId { qualifiers: Qualifiers { is_const: false, is_restrict: false, is_volatile: false }, ctype: CTypeId(15) }, Integer(32768, Hex))

[fw-immunant]

It may be easier to improve this when #1266 lands, as it adds information on which type the surrounding code is expecting to see. We should look into this while addressing #1295; it may be fixable as part of that work or as a follow-up.