| blob | b678e806da373a109d1e24765970bb4112c5feef |
1 /* Pass to detect and issue warnings for violations of the restrict
2 qualifier.
3 Copyright (C) 2017-2022 Free Software Foundation, Inc.
4 Contributed by Martin Sebor <msebor@redhat.com>.
6 This file is part of GCC.
8 GCC is free software; you can redistribute it and/or modify it under
9 the terms of the GNU General Public License as published by the Free
10 Software Foundation; either version 3, or (at your option) any later
11 version.
13 GCC is distributed in the hope that it will be useful, but WITHOUT ANY
14 WARRANTY; without even the implied warranty of MERCHANTABILITY or
15 FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
16 for more details.
18 You should have received a copy of the GNU General Public License
19 along with GCC; see the file COPYING3. If not see
20 <http://www.gnu.org/licenses/>. */
49 GIMPLE_PASS,
51 OPTGROUP_NONE,
52 TV_NONE,
58 };
60 /* Pass to detect violations of strict aliasing requirements in calls
61 to built-in string and raw memory functions. */
63 {
74 /* A pointer_query object to store information about pointers and
75 their targets in. */
76 pointer_query m_ptr_qry;
77 };
82 { }
84 bool
86 {
88 }
90 void
92 {
93 /* Iterate over statements, looking for function calls. */
95 {
101 }
102 }
104 unsigned
106 {
107 /* Create a new ranger instance and associate it with FUN. */
110 basic_block bb;
116 /* Release the ranger instance and replace it with a global ranger.
117 Also reset the pointer since calling disable_ranger() deletes it. */
122 }
124 /* Description of a memory reference by a built-in function. This
125 is similar to ao_ref but made especially suitable for -Wrestrict
126 and not for optimization. */
127 class builtin_memref
128 {
130 /* The original pointer argument to the built-in function. */
131 tree ptr;
132 /* The referenced subobject or NULL if not available, and the base
133 object of the memory reference or NULL. */
134 tree ref;
135 tree base;
137 /* The size of the BASE object, PTRDIFF_MAX if indeterminate,
138 and negative until (possibly lazily) initialized. */
139 offset_int basesize;
140 /* Same for the subobject. */
141 offset_int refsize;
143 /* The non-negative offset of the referenced subobject. Used to avoid
144 warnings for (apparently) possibly but not definitively overlapping
145 accesses to member arrays. Negative when unknown/invalid. */
146 offset_int refoff;
148 /* The offset range relative to the base. */
150 /* The size range of the access to this reference. */
153 /* Cached result of get_max_objsize(). */
156 /* True for "bounded" string functions like strncat, and strncpy
157 and their variants that specify either an exact or upper bound
158 on the size of the accesses they perform. For strncat both
159 the source and destination references are bounded. For strncpy
160 only the destination reference is. */
168 /* Call statement to the built-in. */
173 /* Ctor helper to set or extend OFFRANGE based on argument. */
176 /* Ctor helper to determine BASE and OFFRANGE from argument. */
178 };
180 /* Description of a memory access by a raw memory or string built-in
181 function involving a pair of builtin_memref's. */
182 class builtin_access
183 {
185 /* Destination and source memory reference. */
188 /* The size range of the access. It's the greater of the accesses
189 to the two references. */
192 /* The minimum and maximum offset of an overlap of the access
193 (if it does, in fact, overlap), and the size of the overlap. */
197 /* True to consider valid only accesses to the smallest subobject
198 and false for raw memory functions. */
200 {
203 }
208 /* Entry point to determine overlap. */
216 /* Implementation functions used to determine overlap. */
222 {
224 }
230 /* Temporaries used to compute the final result. */
236 /* Pointer to a member function to call to determine overlap. */
238 };
240 /* Initialize a memory reference representation from a pointer EXPR and
241 a size SIZE in bytes. If SIZE is NULL_TREE then the size is assumed
242 to be unknown. STMT is the statement in which expr appears in. */
245 tree size)
258 {
259 /* Unfortunately, wide_int default ctor is a no-op so array members
260 of the type must be set individually. */
267 /* Find the BASE object or pointer referenced by EXPR and set
268 the offset range OFFRANGE in the process. */
272 {
274 /* Determine the size range, allowing for the result to be [0, 0]
275 for SIZE in the anti-range ~[0, N] where N >= PTRDIFF_MAX. */
279 /* get_size_range returns SIZE_MAX for the maximum size.
280 Constrain it to the real maximum of PTRDIFF_MAX. */
283 }
284 else
290 /* If the offset could be in the range of the referenced object
291 constrain its bounds so neither exceeds those of the object. */
298 {
303 /* Size could be non-constant for a variable-length type such
304 as a struct with a VLA member (a GCC extension). */
306 }
309 {
314 }
315 }
317 /* Based on the initial length of the destination STARTLEN, returns
318 the offset of the first write access from the beginning of
319 the destination. Nonzero only for strcat-type of calls. */
322 {
328 }
330 /* Ctor helper to set or extend OFFRANGE based on the OFFSET argument.
331 Pointer offsets are represented as unsigned sizetype but must be
332 treated as signed. */
334 void
336 {
338 {
341 {
344 }
346 }
349 {
350 /* A pointer offset is represented as sizetype but treated
351 as signed. */
354 value_range vr;
356 {
359 {
362 }
363 }
366 {
367 /* Convert an anti-range whose upper bound is less than
368 its lower bound to a signed range. */
372 }
376 {
377 /* Preserve the bounds of the range for an offset into
378 a known object (it may be adjusted later relative to
379 a constant offset from its beginning). Otherwise use
380 the bounds only when they are ascending when treated
381 as signed. */
385 }
387 /* Handle an anti-range the same as no range at all. */
389 tree type;
393 {
396 {
397 /* Use the bounds of the type of the NOP_EXPR operand
398 even if it's signed. The result doesn't trigger
399 warnings but makes their output more readable. */
403 }
404 }
405 }
412 }
414 /* Determines the base object or pointer of the reference EXPR
415 and the offset range from the beginning of the base. */
417 void
419 {
423 {
424 /* Try to tease the offset out of the pointer. */
431 {
434 {
438 else
439 {
442 }
443 }
445 {
448 }
449 else
450 {
453 }
454 }
455 else
456 {
457 /* FIXME: Handle PHI nodes in case like:
458 _12 = &MEM[(void *)&a + 2B] + _10;
460 <bb> [local count: 1073741824]:
461 # prephitmp_13 = PHI <_12, &MEM[(void *)&a + 2B]>
462 memcpy (prephitmp_13, p_7(D), 6); */
465 }
466 }
471 /* Stash the reference for offset validation. */
475 tree var_off;
476 machine_mode mode;
479 /* Determine the base object or pointer of the reference and
480 the constant bit offset from the beginning of the base.
481 If the offset has a non-constant component, it will be in
482 VAR_OFF. MODE, SIGN, REVERSE, and VOL are write only and
483 unused here. */
487 /* get_inner_reference is not expected to return null. */
495 /* Convert the poly_int64 offset to offset_int. The offset
496 should be constant but be prepared for it not to be just in
497 case. */
498 offset_int cstoff;
500 {
504 /* Besides the reference saved above, also stash the offset
505 for validation. */
508 }
509 else
513 {
515 {
519 }
520 else
522 }
525 {
532 {
533 /* Bump up the offset of the referenced subobject to reflect
534 the offset to the enclosing object. For example, so that
535 in
536 struct S { char a, b[3]; } s[2];
537 strcpy (s[1].b, "1234");
538 REFOFF is set to s[1].b - (char*)s. */
541 }
544 /* A non-zero offset into an array of struct with flexible array
545 members implies that the array is empty because there is no
546 way to initialize such a member when it belongs to an array.
547 This must be some sort of a bug. */
549 }
558 }
560 /* Return error_mark_node if the signed offset exceeds the bounds
561 of the address space (PTRDIFF_MAX). Otherwise, return either BASE
562 or REF when the offset exceeds the bounds of the BASE or REF object,
563 and set OOBOFF to the past-the-end offset formed by the reference,
564 including its size. OOBOFF is initially setto the range of offsets,
565 and OOBOFF[2] to the offset of the first write access (nonzero for
566 the strcat family). When STRICT is nonzero use REF size, when
567 available, otherwise use BASE size. When STRICT is greater than 1,
568 use the size of the last array member as the bound, otherwise treat
569 such a member as a flexible array member. Return NULL when the offset
570 is in bounds. */
572 tree
574 {
578 /* The offset of the first write access or zero. */
581 /* A temporary, possibly adjusted, copy of the offset range. */
585 {
586 /* Check for offset in an anti-range with a negative lower bound.
587 For such a range, consider only the non-negative subrange. */
590 }
592 /* Conservative offset of the last byte of the referenced object. */
593 offset_int endoff;
595 /* The bounds need not be ordered. Set HIB to use as the index
596 of the larger of the bounds and LOB as the opposite. */
600 /* Set to the size remaining in the object after subtracting
601 REFOFF. It may become negative as a result of negative indices
602 into the enclosing object, such as in:
603 extern struct S { char a[4], b[3], c[1]; } *p;
604 strcpy (p[-3].b, "123"); */
611 {
614 /* For a reference through a pointer to an object of unknown size
615 all initial offsets are considered valid, positive as well as
616 negative, since the pointer itself can point past the beginning
617 of the object. However, the sum of the lower bound of the offset
618 and that of the size must be less than or equal than PTRDIFF_MAX. */
622 /* When the referenced subobject is known, the end offset must be
623 within its bounds. Otherwise there is nothing to do. */
625 && !decl_p
626 && ref
629 {
630 /* If REFOFF is negative, SIZE will become negative here. */
633 }
634 else
636 }
638 /* A reference to an object of known size must be within the bounds
639 of either the base object or the subobject (see above for when
640 a subobject can be used). */
644 /* The extent of the reference must also be within the bounds of
645 the base object (if known) or the subobject or the maximum object
646 size otherwise. */
652 && decl_p
653 && ref
656 {
657 /* If the reference is to a member subobject of a declared object,
658 the offset must be within the bounds of the subobject. */
661 }
666 /* Set the out-of-bounds offset range to be one greater than
667 that delimited by the reference including its size. */
672 else
676 }
678 /* Create an association between the memory references DST and SRC
679 for access by a call EXPR to a memory or string built-in funtion. */
686 {
690 /* Zero out since the offset_int ctors invoked above are no-op. */
695 /* Object Size Type to use to determine the size of the destination
696 and source objects. Overridden below for raw memory functions. */
699 /* True when the size of one reference depends on the offset of
700 itself or the other. */
703 /* True when the size of the destination reference DSTREF has been
704 determined from SRCREF and so needs to be adjusted by the latter's
705 offset. Only meaningful for bounded string functions like strncpy. */
708 /* The size argument number (depends on the built-in). */
713 {
725 /* For memmove there is never any overlap to check for. */
733 /* For memset there is never any overlap to check for. */
767 /* Handle other string functions here whose access may need
768 to be validated for in-bounds offsets and non-overlapping
769 copies. */
771 }
773 /* Try to determine the size of the base object. compute_objsize
774 expects a pointer so create one if BASE is a non-pointer object. */
776 {
777 access_ref aref;
780 else
782 }
785 {
786 access_ref aref;
789 else
791 }
795 /* Make adjustments for references to the same object by string
796 built-in functions to reflect the constraints imposed by
797 the function. */
799 /* For bounded string functions determine the range of the bound
800 on the access. For others, the range stays unbounded. */
803 {
811 {
814 }
816 /* If both references' size ranges are indeterminate use the last
817 (size) argument from the function call as a substitute. This
818 may only be necessary for strncpy (but not for memcpy where
819 the size range would have been already determined this way). */
822 {
825 }
826 }
829 /* The size range of one reference involving the same base object
830 can be determined from the size range of the other reference.
831 This makes it possible to compute accurate offsets for warnings
832 involving functions like strcpy where the length of just one of
833 the two arguments is known (determined by tree-ssa-strlen). */
835 {
836 /* When the destination size is unknown set it to the size of
837 the source. */
841 }
843 {
844 /* When the size of the source access is unknown set it to the size
845 of the destination first and adjust it later if necessary. */
850 {
852 {
853 /* Read access by strncpy is constrained by the third
854 argument but except for a zero bound is at least one. */
859 }
860 /* For string functions, adjust the size range of the source
861 reference by the inverse boundaries of the offset (because
862 the higher the offset into the string the shorter its
863 length). */
867 else
871 {
874 else
876 }
879 }
880 }
883 {
885 {
894 }
895 }
897 {
899 {
900 /* For strcpy, adjust the destination size range to match that
901 of the source computed above. */
903 {
906 }
907 }
908 }
910 {
913 }
916 {
917 /* For strncpy, adjust the destination size range to match that
918 of the source computed above. */
927 }
928 }
930 offset_int
933 {
937 /* Point P at the bigger of the two ranges and Q at the smaller. */
939 {
942 }
945 {
951 }
958 }
960 /* Return true if the bounded mempry (memcpy amd similar) or string function
961 access (strncpy and similar) ACS overlaps. */
963 bool
965 {
976 /* Adjust the larger bounds of the offsets (which may be the first
977 element if the lower bound is larger than the upper bound) to
978 make them valid for the smallest access (if possible) but no smaller
979 than the smaller bounds. */
994 /* Determine the minimum and maximum space for the access given
995 the offsets. */
1002 {
1008 }
1009 else
1019 /* Treat raw memory functions both of whose references are bounded
1020 as special and permit uncertain overlaps to go undetected. For
1021 all kinds of constant offset and constant size accesses, if
1022 overlap isn't certain it is not possible. */
1029 /* True when the size of one reference depends on the offset of
1030 the other. */
1034 {
1036 /* Memcpy only considers certain overlap. */
1039 /* There's no way to distinguish an access to the same member
1040 of a structure from one to two distinct members of the same
1041 structure. Give up to avoid excessive false positives. */
1046 else
1052 }
1054 /* True for stpcpy and strcpy. */
1070 {
1071 /* Iterate over the extreme locations (on the horizontal axis formed
1072 by their offsets) and sizes of two regions and find their smallest
1073 and largest overlap and the corresponding offsets. */
1075 {
1078 };
1082 };
1084 offset_int off;
1093 {
1098 }
1099 }
1100 }
1101 else
1102 {
1103 /* Iterate over the extreme locations (on the horizontal axis
1104 formed by their offsets) and sizes of the two regions and
1105 find their smallest and largest overlap and the corresponding
1106 offsets. */
1110 {
1113 };
1117 {
1120 };
1122 offset_int off;
1131 {
1136 }
1137 }
1138 }
1139 }
1144 /* Adjust the overlap offset range to reflect the overlap size range. */
1149 }
1151 /* Return true if the strcat-like access overlaps. */
1153 bool
1155 {
1166 /* Adjust for strcat-like accesses. */
1168 /* As a special case for strcat, set the DSTREF offsets to the length
1169 of the destination string since the function starts writing over
1170 its terminating nul, and set the destination size to 1 for the length
1171 of the nul. */
1177 /* The lower bound is zero when the size is unknown because then
1178 overlap is not certain. */
1184 /* For references to the same base object, determine if there's a pair
1185 of valid offsets into the two references such that access between
1186 them doesn't overlap. Adjust both upper bounds to be valid for
1187 the smaller size (i.e., at most MAXSIZE - SIZE). */
1195 /* Check to see if there's enough space for both accesses without
1196 overlap. Determine the optimistic (maximum) amount of available
1197 space. */
1198 offset_int space;
1200 {
1203 else
1205 }
1206 else
1209 /* Overlap is certain if the distance between the farthest offsets
1210 of the opposite accesses is less than the sum of the lower bounds
1211 of the sizes of the two accesses. */
1214 /* For a constant-offset, constant size access, consider the largest
1215 distance between the offset bounds and the lower bound of the access
1216 size. If the overlap isn't certain return success. */
1224 /* Overlap is not certain but may be possible. */
1228 /* Determine the conservative (minimum) amount of space. */
1237 /* For a strict test (used for strcpy and similar with unknown or
1238 variable bounds or sizes), consider the smallest distance between
1239 the offset bounds and either the upper bound of the access size
1240 if known, or the lower bound otherwise. */
1244 /* When strcat overlap is certain it is always a single byte:
1245 the terminating NUL, regardless of offsets and sizes. When
1246 overlap is only possible its range is [0, 1]. */
1250 offset_int endoff
1254 else
1260 {
1263 else
1267 }
1268 else
1277 }
1279 /* Return true if the strcpy-like access overlaps. */
1281 bool
1283 {
1285 }
1287 /* For a BASE of array type, clamp REFOFF to at most [0, BASE_SIZE]
1288 if known, or [0, MAXOBJSIZE] otherwise. */
1290 static void
1292 {
1300 {
1306 }
1307 }
1309 /* Return true if DSTREF and SRCREF describe accesses that either overlap
1310 one another or that, in order not to overlap, would imply that the size
1311 of the referenced object(s) exceeds the maximum size of an object. Set
1312 Otherwise, if DSTREF and SRCREF do not definitely overlap (even though
1313 they may overlap in a way that's not apparent from the available data),
1314 return false. */
1316 bool
1318 {
1328 /* Check to see if the two references refer to regions that are
1329 too large not to overlap in the address space (whose maximum
1330 size is PTRDIFF_MAX). */
1333 {
1337 }
1339 /* If both base objects aren't known return the maximum possible
1340 offset that would make them not overlap. */
1344 /* If the base object is an array adjust the bounds of the offset
1345 to be non-negative and within the bounds of the array if possible. */
1353 /* When the upper bound of the offset is less than the lower bound
1354 the former is the result of a negative offset being represented
1355 as a large positive value or vice versa. The resulting range is
1356 a union of two subranges: [MIN, UB] and [LB, MAX]. Since such
1357 a union is not representable using the current data structure
1358 replace it with the full range of offsets. */
1360 {
1363 }
1365 /* Validate the offset and size of each reference on its own first.
1366 This is independent of whether or not the base objects are the
1367 same. Normally, this would have already been detected and
1368 diagnosed by -Warray-bounds, unless it has been disabled. */
1371 {
1375 }
1377 /* Repeat the same as above but for the source offsets. */
1379 {
1382 }
1386 {
1392 }
1403 /* Call the appropriate function to determine the overlap. */
1405 {
1407 {
1408 /* Unless the access size range has already been set, do so here. */
1411 }
1413 }
1416 }
1418 /* Attempt to detect and diagnose an overlapping copy in a call expression
1419 EXPR involving an access ACS to a built-in memory or string function.
1420 Return true when one has been detected, false otherwise. */
1422 static bool
1424 {
1431 /* For convenience. */
1435 /* Determine the range of offsets and sizes of the overlap if it
1436 exists and issue diagnostics. */
1443 /* To avoid a combinatorial explosion of diagnostics format the offsets
1444 or their ranges as strings and use them in the warning calls below. */
1451 else
1460 HOST_WIDE_INT_PRINT_DEC,
1462 else
1470 else
1482 {
1483 /* Issue definitive "overlaps" diagnostic in this block. */
1486 {
1494 "and %s overlaps %wu bytes at offset "
1500 "and %s overlaps %wu bytes at offset "
1506 "%qD accessing %wu byte at offsets %s "
1507 "and %s overlaps between %wu and %wu bytes "
1509 "%qD accessing %wu bytes at offsets %s "
1510 "and %s overlaps between %wu and %wu bytes "
1514 else
1516 "%qD accessing %wu byte at offsets %s and "
1518 "%qD accessing %wu bytes at offsets %s and "
1523 }
1526 {
1529 "%qD accessing between %wu and %wu bytes "
1530 "at offsets %s and %s overlaps %wu byte at "
1532 "%qD accessing between %wu and %wu bytes "
1533 "at offsets %s and %s overlaps %wu bytes "
1539 "%qD accessing between %wu and %wu bytes at "
1540 "offsets %s and %s overlaps between %wu and %wu "
1545 else
1547 "%qD accessing between %wu and %wu bytes at "
1548 "offsets %s and %s overlaps %wu or more bytes "
1553 }
1560 "%qD accessing %wu or more bytes at offsets "
1562 "%qD accessing %wu or more bytes at offsets "
1568 "%qD accessing %wu or more bytes at offsets %s "
1569 "and %s overlaps between %wu and %wu bytes "
1573 else
1575 "%qD accessing %wu or more bytes at offsets %s "
1580 }
1582 /* Use more concise wording when one of the offsets is unbounded
1583 to avoid confusing the user with large and mostly meaningless
1584 numbers. */
1591 else
1598 {
1600 {
1603 "%qD accessing %wu byte may overlap "
1605 "%qD accessing %wu bytes may overlap "
1608 else
1610 "%qD accessing %wu byte at offsets %s "
1612 "%qD accessing %wu bytes at offsets %s "
1617 }
1621 "%qD accessing %wu byte may overlap "
1623 "%qD accessing %wu bytes may overlap "
1626 else
1628 "%qD accessing %wu byte at offsets %s and "
1630 "%qD accessing %wu bytes at offsets %s and "
1635 }
1638 {
1641 "%qD accessing between %wu and %wu bytes "
1643 "%qD accessing between %wu and %wu bytes "
1646 else
1648 "%qD accessing between %wu and %wu bytes "
1649 "at offsets %s and %s may overlap %wu byte "
1651 "%qD accessing between %wu and %wu bytes "
1652 "at offsets %s and %s may overlap up to %wu "
1657 }
1660 "%qD accessing %wu or more bytes at offsets %s "
1662 "%qD accessing %wu or more bytes at offsets %s "
1668 }
1670 /* Validate REF size and offsets in an expression passed as an argument
1671 to a CALL to a built-in function FUNC to make sure they are within
1672 the bounds of the referenced object if its size is known, or
1673 PTRDIFF_MAX otherwise. DO_WARN is true when a diagnostic should
1674 be issued, false otherwise.
1675 Both initial values of the offsets and their final value computed
1676 by the function by incrementing the initial value by the size are
1677 validated. Return the warning number if the offsets are not valid
1678 and a diagnostic has been issued, or would have been issued if
1679 DO_WARN had been true, otherwise an invalid warning number. */
1681 static opt_code
1685 {
1689 /* Check for excessive size first and regardless of warning options
1690 since the result is used to make codegen decisions. */
1692 {
1694 /* Return true without issuing a warning. */
1703 {
1706 "%qD specified bound %wu "
1710 else
1712 "%qD specified bound between %wu and %wu "
1718 }
1719 }
1721 /* Check for out-bounds pointers regardless of warning options since
1722 the result is used to make codegen decisions. An excessive WROFF
1723 can only come up as a result of an invalid strncat bound and is
1724 diagnosed separately using a more meaningful warning. */
1733 /* Return true without issuing a warning. */
1749 else
1757 {
1761 else
1766 tree type;
1770 {
1771 auto_diagnostic_group d;
1773 "%qD pointer overflow between offset %s "
1776 {
1780 }
1781 else
1783 "%qD pointer overflow between offset %s "
1786 }
1787 else
1789 "%qD pointer overflow between offset %s "
1792 }
1794 {
1795 /* True when the offset formed by an access to the reference
1796 is out of bounds, rather than the initial offset wich is
1797 in bounds. This implies access past the end. */
1801 {
1802 auto_diagnostic_group d;
1805 form
1807 "the bounds [0, %wu] of object %qD with "
1814 form
1821 {
1825 }
1826 }
1829 form
1835 else
1837 form
1841 }
1843 {
1851 "%qD offset %s from the object at %qE is out "
1854 {
1861 }
1862 }
1863 else
1864 {
1869 "%qD offset %s from the object at %qE is out "
1870 "of the bounds of referenced subobject %qD with "
1875 {
1882 }
1883 }
1886 }
1888 /* Check a CALL statement for restrict-violations and issue warnings
1889 if/when appropriate. */
1891 void
1893 {
1894 /* Avoid checking the call if it has already been diagnosed for
1895 some reason. */
1903 /* Argument number to extract from the call (depends on the built-in
1904 and its kind). */
1909 /* Is this CALL to a string function (as opposed to one to a raw
1910 memory function). */
1914 {
1922 /* Fall through. */
1952 /* Handle other string functions here whose access may need
1953 to be validated for in-bounds offsets and non-overlapping
1954 copies. */
1956 }
1964 /* For string functions with an unspecified or unknown bound,
1965 assume the size of the access is one. */
1969 /* DST and SRC can be null for a call with an insufficient number
1970 of arguments to a built-in function declared without a protype. */
1974 /* DST, SRC, or DSTWR can also have the wrong type in a call to
1975 a function declared without a prototype. Avoid checking such
1976 invalid calls. */
1983 NULL_TREE);
1984 /* Avoid diagnosing the call again. */
1986 }
1990 /* Attempt to detect and diagnose invalid offset bounds and (except for
1991 memmove) overlapping copy in a call expression EXPR from SRC to DST
1992 and DSTSIZE and SRCSIZE bytes, respectively. Both DSTSIZE and
1993 SRCSIZE may be NULL. DO_WARN is false to detect either problem
1994 without issue a warning. Return the OPT_Wxxx constant corresponding
1995 to the warning if one has been detected and zero otherwise. */
1997 opt_code
2001 {
2006 }
2008 opt_code
2013 {
2019 /* Create a descriptor of the access. This may adjust both DSTREF
2020 and SRCREF based on one another and the kind of the access. */
2023 /* Set STRICT to the value of the -Warray-bounds=N argument for
2024 string functions or when N > 1. */
2027 /* The starting offset of the destination write access. Nonzero only
2028 for the strcat family of functions. */
2031 /* Validate offsets to each reference before the access first to make
2032 sure they are within the bounds of the destination object if its
2033 size is known, or PTRDIFF_MAX otherwise. */
2034 opt_code opt
2040 {
2044 }
2050 {
2052 {
2060 }
2061 }
2065 {
2066 /* Issue -Wrestrict unless the pointers are null (those do
2067 not point to objects and so do not indicate an overlap;
2068 such calls could be the result of sanitization and jump
2069 threading). */
2071 {
2074 func);
2077 }
2080 }
2082 /* Return false when overlap has been detected. */
2084 {
2087 }
2090 }
2092 gimple_opt_pass *
2094 {
2096 }
2098 DEBUG_FUNCTION void
2100 {
2106 else
2125 }
2127 void
2129 {
2150 }
2152 DEBUG_FUNCTION void
2154 {
2156 {
2160 }
2163 }
2165 DEBUG_FUNCTION void
2167 {
2169 }