Fix edge case where sign_bit_set is symbolic (#1469)

* fix broken edge case where sign_bit_set is symbolic * invert condition * restore original requirements
4 years ago · a8cec672c1
parent e19d2a44f5
commit a8cec672c1
1 changed files with 13 additions and 2 deletions
--- a/mythril/laser/ethereum/instructions.py
+++ b/mythril/laser/ethereum/instructions.py
@ -651,10 +651,21 @@ class Instruction:

        if s0 <= 31:
            testbit = s0 * 8 + 7
-            if not is_true(simplify((s1 & (1 << testbit)) == 0)):
+            sign_bit_set = simplify(Not((s1 & (1 << testbit)) == 0))
+            if is_true(sign_bit_set):
                mstate.stack.append(s1 | (TT256 - (1 << testbit)))
-            else:
+            elif is_false(sign_bit_set):
                mstate.stack.append(s1 & ((1 << testbit) - 1))
+            else:
+                mstate.stack.append(
+                    simplify(
+                        If(
+                            sign_bit_set,
+                            s1 | (TT256 - (1 << testbit)),
+                            s1 & ((1 << testbit) - 1),
+                        )
+                    )
+                )
        else:
            mstate.stack.append(s1)