Fix IntervalSetDomain div overflow including 0

sim642 · sim642 · commit a0c00fde3add · 2025-08-14T12:45:03.000+03:00
diff --git a/src/cdomain/value/cdomains/int/intervalSetDomain.ml b/src/cdomain/value/cdomains/int/intervalSetDomain.ml
@@ -364,12 +364,12 @@ struct
 
   let div ?no_ov ik x y =
     let rec interval_div x y =
+      let (neg, pos) = IArith.div x y in
+      let r = List.filter_map Fun.id [neg; pos] in
       if leq (of_int ik Ints_t.zero |> fst) [y] then
-        top_of ik (* TODO: should somehow handle overflow like normal intervals? *)
-      else (
-        let (neg, pos) = IArith.div x y in
-        List.filter_map Fun.id [neg; pos] (* should always be singleton, because if there's a negative and a positive side, then it must've included zero, which is already handled by previous case *)
-      )
+        top_of ik @ r (* keep r because they might overflow, but top doesn't *)
+      else
+        r (* should always be singleton, because if there's a negative and a positive side, then it must've included zero, which is already handled by previous case *)
     in
     binary_op_concat_with_norm interval_div ik x y
 
diff --git a/tests/regression/39-signed-overflows/15-div-minus-1.t b/tests/regression/39-signed-overflows/15-div-minus-1.t
@@ -10,6 +10,7 @@
 
   $ goblint --enable warn.deterministic --enable ana.int.interval_set 15-div-minus-1.c
   [Warning][Integer > Overflow][CWE-190] Signed integer overflow (15-div-minus-1.c:5:9-5:26)
+  [Warning][Integer > Overflow][CWE-190] Signed integer overflow (15-div-minus-1.c:7:5-7:16)
   [Warning][Integer > Overflow][CWE-190] Signed integer overflow (15-div-minus-1.c:9:9-9:20)
   [Warning][Integer > DivByZero][CWE-369] Second argument of division might be zero (15-div-minus-1.c:7:5-7:16)
   [Info][Deadcode] Logical lines of code (LLoC) summary:
