| blob | dacb3b140bb52696438f18568a8064c52c5ae3a5 |
1 /* Pass to detect and issue warnings for violations of the restrict
2 qualifier.
3 Copyright (C) 2017-2024 Free Software Foundation, Inc.
4 Contributed by Martin Sebor <msebor@redhat.com>.
6 This file is part of GCC.
8 GCC is free software; you can redistribute it and/or modify it under
9 the terms of the GNU General Public License as published by the Free
10 Software Foundation; either version 3, or (at your option) any later
11 version.
13 GCC is distributed in the hope that it will be useful, but WITHOUT ANY
14 WARRANTY; without even the implied warranty of MERCHANTABILITY or
15 FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
16 for more details.
18 You should have received a copy of the GNU General Public License
19 along with GCC; see the file COPYING3. If not see
20 <http://www.gnu.org/licenses/>. */
49 GIMPLE_PASS,
51 OPTGROUP_NONE,
52 TV_NONE,
58 };
60 /* Pass to detect violations of strict aliasing requirements in calls
61 to built-in string and raw memory functions. */
63 {
74 /* A pointer_query object to store information about pointers and
75 their targets in. */
76 pointer_query m_ptr_qry;
77 };
82 { }
84 bool
86 {
88 }
90 void
92 {
93 /* Iterate over statements, looking for function calls. */
95 {
101 }
102 }
104 unsigned
106 {
107 /* Create a new ranger instance and associate it with FUN. */
110 basic_block bb;
116 /* Release the ranger instance and replace it with a global ranger.
117 Also reset the pointer since calling disable_ranger() deletes it. */
122 }
124 /* Description of a memory reference by a built-in function. This
125 is similar to ao_ref but made especially suitable for -Wrestrict
126 and not for optimization. */
127 class builtin_memref
128 {
130 /* The original pointer argument to the built-in function. */
131 tree ptr;
132 /* The referenced subobject or NULL if not available, and the base
133 object of the memory reference or NULL. */
134 tree ref;
135 tree base;
137 /* The size of the BASE object, PTRDIFF_MAX if indeterminate,
138 and negative until (possibly lazily) initialized. */
139 offset_int basesize;
140 /* Same for the subobject. */
141 offset_int refsize;
143 /* The non-negative offset of the referenced subobject. Used to avoid
144 warnings for (apparently) possibly but not definitively overlapping
145 accesses to member arrays. Negative when unknown/invalid. */
146 offset_int refoff;
148 /* The offset range relative to the base. */
150 /* The size range of the access to this reference. */
153 /* Cached result of get_max_objsize(). */
156 /* True for "bounded" string functions like strncat, and strncpy
157 and their variants that specify either an exact or upper bound
158 on the size of the accesses they perform. For strncat both
159 the source and destination references are bounded. For strncpy
160 only the destination reference is. */
168 /* Call statement to the built-in. */
173 /* Ctor helper to set or extend OFFRANGE based on argument. */
176 /* Ctor helper to determine BASE and OFFRANGE from argument. */
178 };
180 /* Description of a memory access by a raw memory or string built-in
181 function involving a pair of builtin_memref's. */
182 class builtin_access
183 {
185 /* Destination and source memory reference. */
188 /* The size range of the access. It's the greater of the accesses
189 to the two references. */
192 /* The minimum and maximum offset of an overlap of the access
193 (if it does, in fact, overlap), and the size of the overlap. */
197 /* True to consider valid only accesses to the smallest subobject
198 and false for raw memory functions. */
200 {
203 }
208 /* Entry point to determine overlap. */
216 /* Implementation functions used to determine overlap. */
222 {
224 }
230 /* Temporaries used to compute the final result. */
236 /* Pointer to a member function to call to determine overlap. */
238 };
240 /* Initialize a memory reference representation from a pointer EXPR and
241 a size SIZE in bytes. If SIZE is NULL_TREE then the size is assumed
242 to be unknown. STMT is the statement in which expr appears in. */
245 tree size)
258 {
259 /* Unfortunately, wide_int default ctor is a no-op so array members
260 of the type must be set individually. */
267 /* Find the BASE object or pointer referenced by EXPR and set
268 the offset range OFFRANGE in the process. */
272 {
274 /* Determine the size range, allowing for the result to be [0, 0]
275 for SIZE in the anti-range ~[0, N] where N >= PTRDIFF_MAX. */
279 /* get_size_range returns SIZE_MAX for the maximum size.
280 Constrain it to the real maximum of PTRDIFF_MAX. */
283 }
284 else
290 /* If the offset could be in the range of the referenced object
291 constrain its bounds so neither exceeds those of the object. */
298 {
301 have flexible size. */
304 /* Size could be non-constant for a variable-length type such
305 as a struct with a VLA member (a GCC extension). */
307 }
310 {
315 }
316 }
318 /* Based on the initial length of the destination STARTLEN, returns
319 the offset of the first write access from the beginning of
320 the destination. Nonzero only for strcat-type of calls. */
323 {
329 }
331 /* Ctor helper to set or extend OFFRANGE based on the OFFSET argument.
332 Pointer offsets are represented as unsigned sizetype but must be
333 treated as signed. */
335 void
337 {
339 {
342 {
345 }
347 }
350 {
351 /* A pointer offset is represented as sizetype but treated
352 as signed. */
355 value_range vr;
357 {
361 {
364 }
365 }
368 {
369 /* Convert an anti-range whose upper bound is less than
370 its lower bound to a signed range. */
374 }
378 {
379 /* Preserve the bounds of the range for an offset into
380 a known object (it may be adjusted later relative to
381 a constant offset from its beginning). Otherwise use
382 the bounds only when they are ascending when treated
383 as signed. */
387 }
389 /* Handle an anti-range the same as no range at all. */
391 tree type;
395 {
398 {
399 /* Use the bounds of the type of the NOP_EXPR operand
400 even if it's signed. The result doesn't trigger
401 warnings but makes their output more readable. */
405 }
406 }
407 }
414 }
416 /* Determines the base object or pointer of the reference EXPR
417 and the offset range from the beginning of the base. */
419 void
421 {
425 {
426 /* Try to tease the offset out of the pointer. */
433 {
436 {
440 else
441 {
444 }
445 }
447 {
450 }
451 else
452 {
455 }
456 }
457 else
458 {
459 /* FIXME: Handle PHI nodes in case like:
460 _12 = &MEM[(void *)&a + 2B] + _10;
462 <bb> [local count: 1073741824]:
463 # prephitmp_13 = PHI <_12, &MEM[(void *)&a + 2B]>
464 memcpy (prephitmp_13, p_7(D), 6); */
467 }
468 }
473 /* Stash the reference for offset validation. */
477 tree var_off;
478 machine_mode mode;
481 /* Determine the base object or pointer of the reference and
482 the constant bit offset from the beginning of the base.
483 If the offset has a non-constant component, it will be in
484 VAR_OFF. MODE, SIGN, REVERSE, and VOL are write only and
485 unused here. */
489 /* get_inner_reference is not expected to return null. */
497 /* Convert the poly_int64 offset to offset_int. The offset
498 should be constant but be prepared for it not to be just in
499 case. */
500 offset_int cstoff;
502 {
506 /* Besides the reference saved above, also stash the offset
507 for validation. */
510 }
511 else
515 {
517 {
521 }
522 else
524 }
527 {
533 {
534 /* Bump up the offset of the referenced subobject to reflect
535 the offset to the enclosing object. For example, so that
536 in
537 struct S { char a, b[3]; } s[2];
538 strcpy (s[1].b, "1234");
539 REFOFF is set to s[1].b - (char*)s. */
547 /* A non-zero offset into an array of struct with flexible array
548 members implies that the array is empty because there is no
549 way to initialize such a member when it belongs to an array.
550 This must be some sort of a bug. */
552 }
555 }
564 }
566 /* Return error_mark_node if the signed offset exceeds the bounds
567 of the address space (PTRDIFF_MAX). Otherwise, return either BASE
568 or REF when the offset exceeds the bounds of the BASE or REF object,
569 and set OOBOFF to the past-the-end offset formed by the reference,
570 including its size. OOBOFF is initially setto the range of offsets,
571 and OOBOFF[2] to the offset of the first write access (nonzero for
572 the strcat family). When STRICT is nonzero use REF size, when
573 available, otherwise use BASE size. When STRICT is greater than 1,
574 use the size of the last array member as the bound, otherwise treat
575 such a member as a flexible array member. Return NULL when the offset
576 is in bounds. */
578 tree
580 {
584 /* The offset of the first write access or zero. */
587 /* A temporary, possibly adjusted, copy of the offset range. */
591 {
592 /* Check for offset in an anti-range with a negative lower bound.
593 For such a range, consider only the non-negative subrange. */
596 }
598 /* Conservative offset of the last byte of the referenced object. */
599 offset_int endoff;
601 /* The bounds need not be ordered. Set HIB to use as the index
602 of the larger of the bounds and LOB as the opposite. */
606 /* Set to the size remaining in the object after subtracting
607 REFOFF. It may become negative as a result of negative indices
608 into the enclosing object, such as in:
609 extern struct S { char a[4], b[3], c[1]; } *p;
610 strcpy (p[-3].b, "123"); */
617 {
620 /* For a reference through a pointer to an object of unknown size
621 all initial offsets are considered valid, positive as well as
622 negative, since the pointer itself can point past the beginning
623 of the object. However, the sum of the lower bound of the offset
624 and that of the size must be less than or equal than PTRDIFF_MAX. */
628 /* When the referenced subobject is known, the end offset must be
629 within its bounds. Otherwise there is nothing to do. */
631 && !decl_p
632 && ref
635 {
636 /* If REFOFF is negative, SIZE will become negative here. */
639 }
640 else
642 }
644 /* A reference to an object of known size must be within the bounds
645 of either the base object or the subobject (see above for when
646 a subobject can be used). */
650 /* The extent of the reference must also be within the bounds of
651 the base object (if known) or the subobject or the maximum object
652 size otherwise. */
658 && decl_p
659 && ref
662 {
663 /* If the reference is to a member subobject of a declared object,
664 the offset must be within the bounds of the subobject. */
667 }
672 /* Set the out-of-bounds offset range to be one greater than
673 that delimited by the reference including its size. */
678 else
682 }
684 /* Create an association between the memory references DST and SRC
685 for access by a call EXPR to a memory or string built-in funtion. */
692 {
696 /* Zero out since the offset_int ctors invoked above are no-op. */
701 /* Object Size Type to use to determine the size of the destination
702 and source objects. Overridden below for raw memory functions. */
705 /* True when the size of one reference depends on the offset of
706 itself or the other. */
709 /* True when the size of the destination reference DSTREF has been
710 determined from SRCREF and so needs to be adjusted by the latter's
711 offset. Only meaningful for bounded string functions like strncpy. */
714 /* The size argument number (depends on the built-in). */
719 {
731 /* For memmove there is never any overlap to check for. */
739 /* For memset there is never any overlap to check for. */
773 /* Handle other string functions here whose access may need
774 to be validated for in-bounds offsets and non-overlapping
775 copies. */
777 }
779 /* Try to determine the size of the base object. compute_objsize
780 expects a pointer so create one if BASE is a non-pointer object. */
782 {
783 access_ref aref;
786 else
788 }
791 {
792 access_ref aref;
795 else
797 }
801 /* Make adjustments for references to the same object by string
802 built-in functions to reflect the constraints imposed by
803 the function. */
805 /* For bounded string functions determine the range of the bound
806 on the access. For others, the range stays unbounded. */
809 {
817 {
820 }
822 /* If both references' size ranges are indeterminate use the last
823 (size) argument from the function call as a substitute. This
824 may only be necessary for strncpy (but not for memcpy where
825 the size range would have been already determined this way). */
828 {
831 }
832 }
835 /* The size range of one reference involving the same base object
836 can be determined from the size range of the other reference.
837 This makes it possible to compute accurate offsets for warnings
838 involving functions like strcpy where the length of just one of
839 the two arguments is known (determined by tree-ssa-strlen). */
841 {
842 /* When the destination size is unknown set it to the size of
843 the source. */
847 }
849 {
850 /* When the size of the source access is unknown set it to the size
851 of the destination first and adjust it later if necessary. */
856 {
858 {
859 /* Read access by strncpy is constrained by the third
860 argument but except for a zero bound is at least one. */
865 }
866 /* For string functions, adjust the size range of the source
867 reference by the inverse boundaries of the offset (because
868 the higher the offset into the string the shorter its
869 length). */
873 else
877 {
880 else
882 }
885 }
886 }
889 {
891 {
900 }
901 }
903 {
905 {
906 /* For strcpy, adjust the destination size range to match that
907 of the source computed above. */
909 {
912 }
913 }
914 }
916 {
919 }
922 {
923 /* For strncpy, adjust the destination size range to match that
924 of the source computed above. */
933 }
934 }
936 offset_int
939 {
943 /* Point P at the bigger of the two ranges and Q at the smaller. */
945 {
948 }
951 {
957 }
964 }
966 /* Return true if the bounded mempry (memcpy amd similar) or string function
967 access (strncpy and similar) ACS overlaps. */
969 bool
971 {
982 /* Adjust the larger bounds of the offsets (which may be the first
983 element if the lower bound is larger than the upper bound) to
984 make them valid for the smallest access (if possible) but no smaller
985 than the smaller bounds. */
1000 /* Determine the minimum and maximum space for the access given
1001 the offsets. */
1008 {
1014 }
1015 else
1025 /* Treat raw memory functions both of whose references are bounded
1026 as special and permit uncertain overlaps to go undetected. For
1027 all kinds of constant offset and constant size accesses, if
1028 overlap isn't certain it is not possible. */
1035 /* True when the size of one reference depends on the offset of
1036 the other. */
1040 {
1042 /* Memcpy only considers certain overlap. */
1045 /* There's no way to distinguish an access to the same member
1046 of a structure from one to two distinct members of the same
1047 structure. Give up to avoid excessive false positives. */
1052 else
1058 }
1060 /* True for stpcpy and strcpy. */
1076 {
1077 /* Iterate over the extreme locations (on the horizontal axis formed
1078 by their offsets) and sizes of two regions and find their smallest
1079 and largest overlap and the corresponding offsets. */
1081 {
1084 };
1088 };
1090 offset_int off;
1099 {
1104 }
1105 }
1106 }
1107 else
1108 {
1109 /* Iterate over the extreme locations (on the horizontal axis
1110 formed by their offsets) and sizes of the two regions and
1111 find their smallest and largest overlap and the corresponding
1112 offsets. */
1116 {
1119 };
1123 {
1126 };
1128 offset_int off;
1137 {
1142 }
1143 }
1144 }
1145 }
1150 /* Adjust the overlap offset range to reflect the overlap size range. */
1155 }
1157 /* Return true if the strcat-like access overlaps. */
1159 bool
1161 {
1172 /* Adjust for strcat-like accesses. */
1174 /* As a special case for strcat, set the DSTREF offsets to the length
1175 of the destination string since the function starts writing over
1176 its terminating nul, and set the destination size to 1 for the length
1177 of the nul. */
1183 /* The lower bound is zero when the size is unknown because then
1184 overlap is not certain. */
1190 /* For references to the same base object, determine if there's a pair
1191 of valid offsets into the two references such that access between
1192 them doesn't overlap. Adjust both upper bounds to be valid for
1193 the smaller size (i.e., at most MAXSIZE - SIZE). */
1201 /* Check to see if there's enough space for both accesses without
1202 overlap. Determine the optimistic (maximum) amount of available
1203 space. */
1204 offset_int space;
1206 {
1209 else
1211 }
1212 else
1215 /* Overlap is certain if the distance between the farthest offsets
1216 of the opposite accesses is less than the sum of the lower bounds
1217 of the sizes of the two accesses. */
1220 /* For a constant-offset, constant size access, consider the largest
1221 distance between the offset bounds and the lower bound of the access
1222 size. If the overlap isn't certain return success. */
1230 /* Overlap is not certain but may be possible. */
1234 /* Determine the conservative (minimum) amount of space. */
1243 /* For a strict test (used for strcpy and similar with unknown or
1244 variable bounds or sizes), consider the smallest distance between
1245 the offset bounds and either the upper bound of the access size
1246 if known, or the lower bound otherwise. */
1250 /* When strcat overlap is certain it is always a single byte:
1251 the terminating NUL, regardless of offsets and sizes. When
1252 overlap is only possible its range is [0, 1]. */
1256 offset_int endoff
1260 else
1266 {
1269 else
1273 }
1274 else
1283 }
1285 /* Return true if the strcpy-like access overlaps. */
1287 bool
1289 {
1291 }
1293 /* For a BASE of array type, clamp REFOFF to at most [0, BASE_SIZE]
1294 if known, or [0, MAXOBJSIZE] otherwise. */
1296 static void
1298 {
1306 {
1312 }
1313 }
1315 /* Return true if DSTREF and SRCREF describe accesses that either overlap
1316 one another or that, in order not to overlap, would imply that the size
1317 of the referenced object(s) exceeds the maximum size of an object. Set
1318 Otherwise, if DSTREF and SRCREF do not definitely overlap (even though
1319 they may overlap in a way that's not apparent from the available data),
1320 return false. */
1322 bool
1324 {
1334 /* Check to see if the two references refer to regions that are
1335 too large not to overlap in the address space (whose maximum
1336 size is PTRDIFF_MAX). */
1339 {
1343 }
1345 /* If both base objects aren't known return the maximum possible
1346 offset that would make them not overlap. */
1350 /* If the base object is an array adjust the bounds of the offset
1351 to be non-negative and within the bounds of the array if possible. */
1359 /* When the upper bound of the offset is less than the lower bound
1360 the former is the result of a negative offset being represented
1361 as a large positive value or vice versa. The resulting range is
1362 a union of two subranges: [MIN, UB] and [LB, MAX]. Since such
1363 a union is not representable using the current data structure
1364 replace it with the full range of offsets. */
1366 {
1369 }
1371 /* Validate the offset and size of each reference on its own first.
1372 This is independent of whether or not the base objects are the
1373 same. Normally, this would have already been detected and
1374 diagnosed by -Warray-bounds, unless it has been disabled. */
1377 {
1381 }
1383 /* Repeat the same as above but for the source offsets. */
1385 {
1388 }
1392 {
1398 }
1409 /* Call the appropriate function to determine the overlap. */
1411 {
1413 {
1414 /* Unless the access size range has already been set, do so here. */
1417 }
1419 }
1422 }
1424 /* Attempt to detect and diagnose an overlapping copy in a call expression
1425 EXPR involving an access ACS to a built-in memory or string function.
1426 Return true when one has been detected, false otherwise. */
1428 static bool
1430 {
1437 /* For convenience. */
1441 /* Determine the range of offsets and sizes of the overlap if it
1442 exists and issue diagnostics. */
1449 /* To avoid a combinatorial explosion of diagnostics format the offsets
1450 or their ranges as strings and use them in the warning calls below. */
1457 else
1466 HOST_WIDE_INT_PRINT_DEC,
1468 else
1476 else
1488 {
1489 /* Issue definitive "overlaps" diagnostic in this block. */
1492 {
1500 "and %s overlaps %wu bytes at offset "
1506 "and %s overlaps %wu bytes at offset "
1512 "%qD accessing %wu byte at offsets %s "
1513 "and %s overlaps between %wu and %wu bytes "
1515 "%qD accessing %wu bytes at offsets %s "
1516 "and %s overlaps between %wu and %wu bytes "
1520 else
1522 "%qD accessing %wu byte at offsets %s and "
1524 "%qD accessing %wu bytes at offsets %s and "
1529 }
1532 {
1535 "%qD accessing between %wu and %wu bytes "
1536 "at offsets %s and %s overlaps %wu byte at "
1538 "%qD accessing between %wu and %wu bytes "
1539 "at offsets %s and %s overlaps %wu bytes "
1545 "%qD accessing between %wu and %wu bytes at "
1546 "offsets %s and %s overlaps between %wu and %wu "
1551 else
1553 "%qD accessing between %wu and %wu bytes at "
1554 "offsets %s and %s overlaps %wu or more bytes "
1559 }
1566 "%qD accessing %wu or more bytes at offsets "
1568 "%qD accessing %wu or more bytes at offsets "
1574 "%qD accessing %wu or more bytes at offsets %s "
1575 "and %s overlaps between %wu and %wu bytes "
1579 else
1581 "%qD accessing %wu or more bytes at offsets %s "
1586 }
1588 /* Use more concise wording when one of the offsets is unbounded
1589 to avoid confusing the user with large and mostly meaningless
1590 numbers. */
1597 else
1604 {
1606 {
1609 "%qD accessing %wu byte may overlap "
1611 "%qD accessing %wu bytes may overlap "
1614 else
1616 "%qD accessing %wu byte at offsets %s "
1618 "%qD accessing %wu bytes at offsets %s "
1623 }
1627 "%qD accessing %wu byte may overlap "
1629 "%qD accessing %wu bytes may overlap "
1632 else
1634 "%qD accessing %wu byte at offsets %s and "
1636 "%qD accessing %wu bytes at offsets %s and "
1641 }
1644 {
1647 "%qD accessing between %wu and %wu bytes "
1649 "%qD accessing between %wu and %wu bytes "
1652 else
1654 "%qD accessing between %wu and %wu bytes "
1655 "at offsets %s and %s may overlap %wu byte "
1657 "%qD accessing between %wu and %wu bytes "
1658 "at offsets %s and %s may overlap up to %wu "
1663 }
1666 "%qD accessing %wu or more bytes at offsets %s "
1668 "%qD accessing %wu or more bytes at offsets %s "
1674 }
1676 /* Validate REF size and offsets in an expression passed as an argument
1677 to a CALL to a built-in function FUNC to make sure they are within
1678 the bounds of the referenced object if its size is known, or
1679 PTRDIFF_MAX otherwise. DO_WARN is true when a diagnostic should
1680 be issued, false otherwise.
1681 Both initial values of the offsets and their final value computed
1682 by the function by incrementing the initial value by the size are
1683 validated. Return the warning number if the offsets are not valid
1684 and a diagnostic has been issued, or would have been issued if
1685 DO_WARN had been true, otherwise an invalid warning number. */
1687 static opt_code
1691 {
1695 /* Check for excessive size first and regardless of warning options
1696 since the result is used to make codegen decisions. */
1698 {
1700 /* Return true without issuing a warning. */
1709 {
1712 "%qD specified bound %wu "
1716 else
1718 "%qD specified bound between %wu and %wu "
1724 }
1725 }
1727 /* Check for out-bounds pointers regardless of warning options since
1728 the result is used to make codegen decisions. An excessive WROFF
1729 can only come up as a result of an invalid strncat bound and is
1730 diagnosed separately using a more meaningful warning. */
1739 /* Return true without issuing a warning. */
1755 else
1763 {
1767 else
1772 tree type;
1776 {
1777 auto_diagnostic_group d;
1779 "%qD pointer overflow between offset %s "
1782 {
1786 }
1787 else
1789 "%qD pointer overflow between offset %s "
1792 }
1793 else
1795 "%qD pointer overflow between offset %s "
1798 }
1800 {
1801 /* True when the offset formed by an access to the reference
1802 is out of bounds, rather than the initial offset wich is
1803 in bounds. This implies access past the end. */
1807 {
1808 auto_diagnostic_group d;
1811 form
1813 "the bounds [0, %wu] of object %qD with "
1820 form
1827 {
1831 }
1832 }
1835 form
1841 else
1843 form
1847 }
1849 {
1857 "%qD offset %s from the object at %qE is out "
1860 {
1867 }
1868 }
1869 else
1870 {
1875 "%qD offset %s from the object at %qE is out "
1876 "of the bounds of referenced subobject %qD with "
1881 {
1888 }
1889 }
1892 }
1894 /* Check a CALL statement for restrict-violations and issue warnings
1895 if/when appropriate. */
1897 void
1899 {
1900 /* Avoid checking the call if it has already been diagnosed for
1901 some reason. */
1909 /* Argument number to extract from the call (depends on the built-in
1910 and its kind). */
1915 /* Is this CALL to a string function (as opposed to one to a raw
1916 memory function). */
1920 {
1928 /* Fall through. */
1958 /* Handle other string functions here whose access may need
1959 to be validated for in-bounds offsets and non-overlapping
1960 copies. */
1962 }
1970 /* For string functions with an unspecified or unknown bound,
1971 assume the size of the access is one. */
1975 /* DST and SRC can be null for a call with an insufficient number
1976 of arguments to a built-in function declared without a protype. */
1980 /* DST, SRC, or DSTWR can also have the wrong type in a call to
1981 a function declared without a prototype. Avoid checking such
1982 invalid calls. */
1989 NULL_TREE);
1990 /* Avoid diagnosing the call again. */
1992 }
1996 /* Attempt to detect and diagnose invalid offset bounds and (except for
1997 memmove) overlapping copy in a call expression EXPR from SRC to DST
1998 and DSTSIZE and SRCSIZE bytes, respectively. Both DSTSIZE and
1999 SRCSIZE may be NULL. DO_WARN is false to detect either problem
2000 without issue a warning. Return the OPT_Wxxx constant corresponding
2001 to the warning if one has been detected and zero otherwise. */
2003 opt_code
2007 {
2012 }
2014 opt_code
2019 {
2025 /* Create a descriptor of the access. This may adjust both DSTREF
2026 and SRCREF based on one another and the kind of the access. */
2029 /* Set STRICT to the value of the -Warray-bounds=N argument for
2030 string functions or when N > 1. */
2033 /* The starting offset of the destination write access. Nonzero only
2034 for the strcat family of functions. */
2037 /* Validate offsets to each reference before the access first to make
2038 sure they are within the bounds of the destination object if its
2039 size is known, or PTRDIFF_MAX otherwise. */
2040 opt_code opt
2046 {
2050 }
2056 {
2058 {
2066 }
2067 }
2071 {
2072 /* Issue -Wrestrict unless the pointers are null (those do
2073 not point to objects and so do not indicate an overlap;
2074 such calls could be the result of sanitization and jump
2075 threading). */
2077 {
2080 func);
2083 }
2086 }
2088 /* Return false when overlap has been detected. */
2090 {
2093 }
2096 }
2098 gimple_opt_pass *
2100 {
2102 }
2104 DEBUG_FUNCTION void
2106 {
2112 else
2131 }
2133 void
2135 {
2156 }
2158 DEBUG_FUNCTION void
2160 {
2162 {
2166 }
2169 }
2171 DEBUG_FUNCTION void
2173 {
2175 }