Re: termios constants should be unsigned

termios constants should be unsigned · Alejandro Colomar <alx@kernel.org> · 2024-06-12
Re: termios constants should be unsigned · Greg KH <gregkh@linuxfoundation.org> · 2024-06-12
[PATCH] uapi/asm/termbits: Use the U integer suffix for bit fields · Alejandro Colomar <alx@kernel.org> · 2024-06-12
Re: [PATCH] uapi/asm/termbits: Use the U integer suffix for bit fields · Greg KH <gregkh@linuxfoundation.org> · 2024-06-12
Re: [PATCH] uapi/asm/termbits: Use the U integer suffix for bit fields · Alejandro Colomar <alx@kernel.org> · 2024-06-12
Re: [PATCH] uapi/asm/termbits: Use the U integer suffix for bit fields · Greg KH <gregkh@linuxfoundation.org> · 2024-06-12
Re: [PATCH] uapi/asm/termbits: Use the U integer suffix for bit fields · Alejandro Colomar <alx@kernel.org> · 2024-06-12
Re: termios constants should be unsigned · Paul Eggert <hidden> · 2024-06-12
Re: termios constants should be unsigned · Alejandro Colomar <alx@kernel.org> · 2024-06-12
Re: termios constants should be unsigned · enh <hidden> · 2024-06-12
Re: termios constants should be unsigned · Alejandro Colomar <alx@kernel.org> · 2024-06-12
Re: termios constants should be unsigned · Alejandro Colomar <alx@kernel.org> · 2024-06-12
Re: termios constants should be unsigned · enh <hidden> · 2024-06-12
Re: termios constants should be unsigned · Alejandro Colomar <alx@kernel.org> · 2024-06-12
Re: termios constants should be unsigned · Paul Eggert <hidden> · 2024-06-12
Re: termios constants should be unsigned · Zack Weinberg <hidden> · 2024-06-13
Re: termios constants should be unsigned · Paul Eggert <hidden> · 2024-06-13
Re: termios constants should be unsigned · Alejandro Colomar <alx@kernel.org> · 2024-06-13

From: Paul Eggert <hidden>
Date: 2024-06-13 21:12:27
Also in: linux-man

On 6/13/24 05:32, Zack Weinberg wrote:

there is still a need for
caution around conversions that change signedness.

Yes, just as there is need for caution around any use of unsigned types. 
Unfortunately in my experience Clang's (and even GCC's) warnings about 
signedness conversion are more likely to cause harm than good, with this 
thread being an example of the harm.

Part of the issue here is that GCC and Clang often do a better job of 
warning when constants are signed, not unsigned. For example, suppose a 
program mistakenly packages termios flags along with three other bits 
into an 'unsigned long', with code like this:

   unsigned long
   tagged_pendin (unsigned tag)
   {
     return (PENDIN << 3) | tag;
   }

Since PENDIN is 0x20000000 Clang and GCC by default warn about the 
mistake, as the signed integer overflow has undefined behavior. But if 
PENDIN were changed to 0x20000000U the behavior would be well-defined, 
there would be no warning even with -Wall -Wextra -Wsign-conversion, and 
the code would silently behave as if PENDIN were zero, which is not 
intended.

This is another reason why appending "U" to PENDIN's value would have 
drawbacks as well as advantages.

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help