| blob | 39f0487ea367aa5b24501d7cb9ce5fd08b9b9289 |
1 /* Definitions for C++ contract levels
2 Copyright (C) 2020-2024 Free Software Foundation, Inc.
3 Contributed by Jeff Chapman II (jchapman@lock3software.com)
5 This file is part of GCC.
7 GCC is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 3, or (at your option)
10 any later version.
12 GCC is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with GCC; see the file COPYING3. If not see
19 <http://www.gnu.org/licenses/>. */
21 /* Design Notes
23 A function is called a "guarded" function if it has pre or post contract
24 attributes. A contract is considered an "active" contract if runtime code is
25 needed for the contract under the current contract configuration.
27 pre and post contract attributes are parsed and stored in DECL_ATTRIBUTES.
28 assert contracts are parsed and wrapped in statements. When genericizing, all
29 active and assumed contracts are transformed into an if block. An observed
30 contract:
32 [[ pre: v > 0 ]]
34 is transformed into:
36 if (!(v > 0)) {
37 handle_contract_violation(__pseudo_contract_violation{
38 5, // line_number,
39 "main.cpp", // file_name,
40 "fun", // function_name,
41 "v > 0", // comment,
42 "default", // assertion_level,
43 "default", // assertion_role,
44 maybe_continue, // continuation_mode
45 });
46 terminate (); // if never_continue
47 }
49 We use an internal type with the same layout as contract_violation rather
50 than try to define the latter internally and somehow deal with its actual
51 definition in a TU that includes <contract>.
53 ??? is it worth factoring out the calls to handle_contract_violation and
54 terminate into a local function?
56 Assumed contracts use the same implementation as C++23 [[assume]].
58 Parsing of pre and post contract conditions need to be deferred when the
59 contracts are attached to a member function. The postcondition identifier
60 cannot be used before the deduced return type of an auto function is used,
61 except when used in a defining declaration in which case they conditions are
62 fully parsed once the body is finished (see cpp2a/contracts-deduced{1,2}.C).
64 A list of pre and post contracts can either be repeated in their entirety or
65 completely absent in subsequent declarations. If contract lists appear on two
66 matching declarations, their contracts have to be equivalent. In general this
67 means that anything before the colon have to be token equivalent and the
68 condition must be cp_tree_equal (primarily to allow for parameter renaming).
70 Contracts on overrides must match those present on (all of) the overridee(s).
72 Template specializations may have their own contracts. If no contracts are
73 specified on the initial specialization they're assumed to be the same as
74 the primary template. Specialization redeclarations must then match either
75 the primary template (if they were unspecified originally), or those
76 specified on the specialization.
79 For non-cdtors two functions are generated for ease of implementation and to
80 avoid some cases where code bloat may occurr. These are the DECL_PRE_FN and
81 DECL_POST_FN. Each handles checking either the set of pre or post contracts
82 of a guarded function.
84 int fun(int v)
85 [[ pre: v > 0 ]]
86 [[ post r: r < 0 ]]
87 {
88 return -v;
89 }
91 We implement the checking as follows:
93 For functions with no post-conditions we wrap the original function body as
94 follows:
96 {
97 handle_pre_condition_checking ();
98 original_function_body ();
99 }
101 This implements the intent that the preconditions are processed after the
102 function parameters are initialised but before any other actions.
104 For functions with post-conditions:
106 if (preconditions_exist)
107 handle_pre_condition_checking ();
108 try
109 {
110 original_function_body ();
111 }
112 finally
113 {
114 handle_post_condition_checking ();
115 }
116 else [only if the function is not marked noexcept(true) ]
117 {
118 ;
119 }
121 In this, post-conditions [that might apply to the return value etc.] are
122 evaluated on every non-exceptional edge out of the function.
124 FIXME outlining contract checks into separate functions was motivated
125 partly by wanting to call the postcondition function at each return
126 statement, which we no longer do; at this point outlining doesn't seem to
127 have any advantage over emitting the contracts directly in the function
128 body.
130 More helpful for optimization might be to make the contracts a wrapper
131 function that could be inlined into the caller, the callee, or both. */
151 };
159 };
161 void
163 {
171 }
173 contract_semantic
175 {
189 }
191 /* Compare role and name up to either the NUL terminator or the first
192 occurrence of colon. */
194 static bool
196 {
202 }
204 static bool
206 {
210 }
212 contract_role *
214 {
216 {
220 }
222 {
225 }
227 }
229 contract_role *
231 contract_semantic des,
232 contract_semantic aus,
233 contract_semantic axs,
235 {
237 {
249 }
251 }
261 static contract_semantic
263 {
265 }
267 static contract_semantic
269 {
271 }
273 void
275 {
279 {
292 }
293 }
295 contract_semantic
297 {
307 }
309 contract_level
311 {
319 }
322 void
324 {
326 {
329 }
330 else
339 else
343 }
345 void
347 {
349 {
352 }
353 else
360 else
364 }
366 void
368 {
370 {
373 }
374 else
381 else
385 }
387 void
389 {
393 {
396 }
404 {
407 }
413 {
416 }
423 validate:
432 {
435 }
437 {
440 }
445 {
446 // TODO: not enough space?
449 }
450 else
452 }
454 void
456 {
458 {
461 }
464 {
467 }
472 {
475 }
488 else
491 }
493 /* Convert a contract CONFIG into a contract_mode. */
495 static contract_mode
497 {
501 /* TREE_LIST has TREE_VALUE is a level and TREE_PURPOSE is role. */
503 {
510 contract_level level =
513 }
515 /* Literal semantic. */
517 contract_semantic semantic =
520 }
522 /* Convert a contract's config into a concrete semantic using the current
523 contract semantic mapping. */
525 static contract_semantic
527 {
529 /* Compute the concrete semantic for the contract. */
531 /* If contracts are off, treat all contracts as ignore. */
537 else
538 {
549 }
551 }
553 /* Return true if any contract in CONTRACT_ATTRs is not yet parsed. */
555 bool
557 {
562 }
564 /* Returns true if all attributes are contracts. */
566 bool
568 {
573 }
575 /* Mark most of a contract as being invalid. */
577 tree
579 {
585 }
587 /* Returns an invented parameter declration of the form 'TYPE ID' for the
588 purpose of parsing the postcondition.
590 We use a PARM_DECL instead of a VAR_DECL so that tsubst forces a lookup
591 in local specializations when we instantiate these things later. */
593 tree
595 {
605 }
607 /* As above, except that the type is unknown. */
609 tree
611 {
613 }
615 /* Check that the TYPE is valid for a named postcondition variable. Emit a
616 diagnostic if it is not. Returns TRUE if the result is OK and false
617 otherwise. */
619 bool
621 {
622 /* Do not be confused by targetm.cxx.cdtor_return_this ();
623 conceptually, cdtors have no return value. */
627 {
635 }
638 }
640 /* Instantiate each postcondition with the return type to finalize the
641 attribute. */
643 void
645 {
650 {
658 /* If any conditions are deferred, they're all deferred. Note that
659 we don't have to instantiate postconditions in that case because
660 the type is available through the declaration. */
668 /* Always update the context of the result variable so that it can
669 be remapped by remap_contracts. */
672 /* If the return type is undeduced, defer until later. */
676 /* Check the postcondition variable. */
679 {
682 }
684 /* "Instantiate" the result variable using the known type. Also update
685 the context so the inliner will actually remap this the parameter when
686 generating contract checks. */
690 /* Make parameters and result available for substitution. */
701 /* Update the contract condition and result. */
704 }
705 }
707 static tree
709 {
710 /* Try to get the actual source text for the condition; if that fails pretty
711 print the resulting tree. */
716 {
717 /* FIXME cases where we end up here
718 #line macro usage (oof)
719 contracts10.C
720 contracts11.C */
723 }
728 }
730 /* Build a contract statement. */
732 tree
734 location_t loc)
735 {
739 tree_code code;
746 else
749 /* Build the contract. The condition is added later. In the case that
750 the contract is deferred, result an plain identifier, not a result
751 variable. */
752 tree contract;
756 else
759 /* Determine the concrete semantic. */
762 /* If the contract is deferred, don't do anything with the condition. */
764 {
767 }
769 /* Generate the comment from the original condition. */
772 /* The condition is converted to bool. */
781 }
783 /* Build the contract attribute specifier where IDENTIFIER is one of 'pre',
784 'post' or 'assert' and CONTRACT is the underlying statement. */
785 tree
787 {
794 /* Mark the attribute as dependent if the condition is dependent.
796 TODO: I'm not sure this is strictly necessary. It's going to be marked as
797 such by a subroutine of cplus_decl_attributes. */
804 }
806 /* Update condition of a late-parsed contract and postcondition variable,
807 if any. */
809 void
811 {
815 /* Generate the comment from the original condition. */
818 /* The condition is converted to bool. */
821 }
823 /* Return TRUE iff ATTR has been parsed by the front-end as a c++2a contract
824 attribute. */
826 bool
828 {
843 }
845 /* True if ATTR is an assertion. */
847 bool
849 {
850 /* This is only an assertion if it is a valid cxx contract attribute and the
851 statement is an ASSERTION_STMT. */
854 }
856 /* Remove all c++2a style contract attributes from the DECL_ATTRIBUTEs of the
857 FUNCTION_DECL FNDECL. */
859 void
861 {
867 }
870 {
874 /* There are no contracts. */
878 /* There are leading contracts. */
880 {
884 }
887 }
889 /* Remove contracts from ATTRIBUTES. */
892 {
897 /* Splice out remaining contracts. */
901 {
903 {
904 /* Skip a sequence of contracts and then link q to the next
905 non-contract attribute. */
906 do
910 }
911 else
913 }
916 }
918 /* Copy contract attributes from NEWDECL onto the attribute list of OLDDECL. */
921 {
924 {
928 }
932 /* And update DECL_CONTEXT of the postcondition result identifier. */
934 }
936 /* Returns the parameter corresponding to the return value of a guarded
937 function D. Returns NULL_TREE if D has no postconditions or is void. */
939 static tree
941 {
957 }
960 /* For use with the tree inliner. This preserves non-mapped local variables,
961 such as postcondition result variables, during remapping. */
963 static tree
965 {
967 }
969 /* Rewrite the condition of contract in place, so that references to SRC's
970 parameters are updated to refer to DST's parameters. The postcondition
971 result variable is left unchanged.
973 This, along with remap_contracts, are subroutines of duplicate_decls.
974 When declarations are merged, we sometimes need to update contracts to
975 refer to new parameters.
977 If DUPLICATE_P is true, this is called by duplicate_decls to rewrite contacts
978 in terms of a new set of parameters. In this case, we can retain local
979 variables appearing in the contract because the contract is not being
980 prepared for insertion into a new function. Importantly, this preserves the
981 references to postcondition results, which are not replaced during merging.
983 If false, we're preparing to emit the contract condition into the body
984 of a new function, so we need to make copies of all local variables
985 appearing in the contract (e.g., if it includes a lambda expression). Note
986 that in this case, postcondition results are mapped to the last parameter
987 of DST.
989 This is also used to reuse a parent type's contracts on virtual methods. */
991 static void
993 {
994 copy_body_data id;
1003 /* If we're merging contracts, don't copy local variables. */
1011 /* Make sure not to unshare trees behind the front-end's back
1012 since front-end specific mechanisms may rely on sharing. */
1017 /* We're not inside any EH region. */
1022 /* Insert parameter remappings. */
1031 {
1035 {
1038 {
1042 }
1044 }
1052 }
1057 }
1059 /* Rewrite any references to SRC's PARM_DECLs to the corresponding PARM_DECL in
1060 DST in all of the contract attributes in CONTRACTS by calling remap_contract
1061 on each.
1063 This is used for two purposes: to rewrite contract attributes during
1064 duplicate_decls, and to prepare contracts for emission into a function's
1065 respective precondition and postcondition functions. DUPLICATE_P is used
1066 to determine the context in which this function is called. See above for
1067 the behavior described by this flag. */
1069 void
1071 {
1073 {
1079 }
1080 }
1082 /* Helper to replace references to dummy this parameters with references to
1083 the first argument of the FUNCTION_DECL DATA. */
1085 static tree
1087 {
1093 }
1095 /* Replace all references to dummy this parameters in EXPR with references to
1096 the first argument of the FUNCTION_DECL FN. */
1098 static void
1100 {
1102 }
1104 /* Contract matching. */
1106 /* True if the contract is valid. */
1108 static bool
1110 {
1112 }
1114 /* True if the contract attribute is valid. */
1116 static bool
1118 {
1120 }
1122 /* Compare the contract conditions of OLD_ATTR and NEW_ATTR. Returns false
1123 if the conditions are equivalent, and true otherwise. */
1125 static bool
1127 contract_matching_context ctx)
1128 {
1132 /* Different kinds of contracts do not match. */
1134 {
1135 auto_diagnostic_group d;
1137 ctx == cmc_declaration
1142 }
1144 /* A deferred contract tentatively matches. */
1148 /* Compare the conditions of the contracts. We fold immediately to avoid
1149 issues comparing contracts on overrides that use parameters -- see
1150 contracts-pre3. */
1154 /* Compare the contracts. The fold doesn't eliminate conversions to members.
1155 Set the comparing_override_contracts flag to ensure that references
1156 through 'this' are equal if they designate the same member, regardless of
1157 the path those members. */
1164 {
1165 auto_diagnostic_group d;
1167 ctx == cmc_declaration
1173 }
1176 }
1178 /* Compare the contract attributes of OLDDECL and NEWDECL. Returns true
1179 if the contracts match, and false if they differ. */
1181 bool
1184 contract_matching_context ctx)
1185 {
1186 /* Contracts only match if they are both specified. */
1190 /* Compare each contract in turn. */
1192 {
1193 /* If either contract is ill-formed, skip the rest of the comparison,
1194 since we've already diagnosed an error. */
1203 }
1205 /* If we didn't compare all attributes, the contracts don't match. */
1207 {
1208 auto_diagnostic_group d;
1210 ctx == cmc_declaration
1212 "previously declared"
1216 new_attrs
1220 }
1223 }
1225 /* Deferred contract mapping.
1227 This is used to compare late-parsed contracts on overrides with their
1228 base class functions.
1230 TODO: It seems like this could be replaced by a simple list that maps from
1231 overrides to their base functions. It's not clear that we really need
1232 a map to a function + a list of contracts. */
1234 /* Map from FNDECL to a tree list of contracts that have not been matched or
1235 diagnosed yet. The TREE_PURPOSE is the basefn we're overriding, and the
1236 TREE_VALUE is the list of contract attrs for BASEFN. */
1240 void
1242 {
1244 {
1247 }
1249 pending;
1251 {
1256 }
1257 }
1259 /* If the FUNCTION_DECL DECL has any contracts that had their matching
1260 deferred earlier, do that checking now. */
1262 void
1264 {
1271 processing_template_decl_sentinel ptds;
1274 /* Do late contract matching. */
1276 {
1285 }
1287 /* Clear out deferred match list so we don't check it twice. */
1289 }
1291 /* Map from FUNCTION_DECL to a FUNCTION_DECL for either the PRE_FN or POST_FN.
1292 These are used to parse contract conditions and are called inside the body
1293 of the guarded function. */
1297 /* Returns the precondition funtion for D, or null if not set. */
1299 tree
1301 {
1305 }
1307 /* Returns the postcondition funtion for D, or null if not set. */
1309 tree
1311 {
1315 }
1317 /* Makes PRE the precondition function for D. */
1319 void
1321 {
1326 }
1328 /* Makes POST the postcondition function for D. */
1330 void
1332 {
1337 }
1339 /* Set the PRE and POST functions for D. Note that PRE and POST can be
1340 null in this case. If so the functions are not recorded. */
1342 void
1344 {
1349 }
1351 /* Return a copy of the FUNCTION_DECL IDECL with its own unshared
1352 PARM_DECL and DECL_ATTRIBUTEs. */
1354 static tree
1356 {
1361 {
1364 }
1371 {
1373 {
1376 }
1379 }
1381 }
1383 /* Build a declaration for the pre- or postcondition of a guarded FNDECL. */
1385 static tree
1387 {
1394 /* Create and rename the unchecked function and give an internal name. */
1399 /* Don't propagate declaration attributes to the checking function,
1400 including the original contracts. */
1406 /* FIXME will later optimizations delete unused args to prevent extra arg
1407 passing? do we care? */
1412 {
1415 {
1418 }
1421 }
1425 else
1426 {
1436 /* The handler is a void return. */
1438 }
1451 /* Make these functions internal if we can, i.e. if the guarded function is
1452 not vague linkage, or if we can put them in a comdat group with the
1453 guarded function. */
1455 {
1461 /* We haven't set the comdat group on the guarded function yet, we'll add
1462 this to the same group in comdat_linkage later. */
1466 }
1470 /* Update various inline related declaration properties. */
1471 //DECL_DECLARED_INLINE_P (fn) = true;
1476 }
1478 /* Return true if CONTRACT is checked or assumed under the current build
1479 configuration. */
1481 bool
1483 {
1485 }
1487 static bool
1489 {
1491 {
1495 }
1497 }
1499 /* True if D has any checked or assumed preconditions. */
1501 static bool
1503 {
1505 }
1507 /* True if D has any checked or assumed postconditions. */
1509 static bool
1511 {
1513 }
1515 /* Return true if any contract in the CONTRACT list is checked or assumed
1516 under the current build configuration. */
1518 bool
1520 {
1525 }
1527 /* Do we need to mess with contracts for DECL1? */
1529 static bool
1531 {
1533 && !processing_template_decl
1536 }
1538 /* Should we break out DECL1's pre/post contracts into separate functions?
1539 FIXME I'd like this to default to 0, but that will need an overhaul to the
1540 return identifier handling to just refer to the RESULT_DECL. */
1542 static bool
1544 {
1547 }
1549 /* Build the precondition checking function for D. */
1551 static tree
1553 {
1558 }
1560 /* Build the postcondition checking function for D. If the return
1561 type is undeduced, don't build the function yet. We do that in
1562 apply_deduced_return_type. */
1564 static tree
1566 {
1575 }
1577 static void
1579 {
1580 /* Constructors and destructors have their contracts inserted inline. */
1584 /* Build the pre/post functions (or not). */
1588 }
1592 {
1599 }
1603 {
1610 }
1612 /* Build a layout-compatible internal version of std::contract_violation. */
1614 static tree
1616 {
1618 {
1619 /* Must match <contract>:
1620 class contract_violation {
1621 const char* _M_file;
1622 const char* _M_function;
1623 const char* _M_comment;
1624 const char* _M_level;
1625 const char* _M_role;
1626 uint_least32_t _M_line;
1627 signed char _M_continue;
1628 If this changes, also update the initializer in
1629 build_contract_violation. */
1631 const_string_type_node,
1632 const_string_type_node,
1633 const_string_type_node,
1634 const_string_type_node,
1635 uint_least32_type_node,
1636 signed_char_type_node };
1639 {
1640 /* finish_builtin_struct wants fieldss chained in reverse. */
1645 }
1660 pseudo_contract_violation_type
1662 TYPE_QUAL_CONST);
1663 }
1665 }
1667 /* Return a VAR_DECL to pass to handle_contract_violation. */
1669 static tree
1671 {
1677 /* Must match the type layout in get_pseudo_contract_violation_type. */
1678 tree ctor = build_constructor_va
1692 }
1694 /* Return handle_contract_violation(), declaring it if needed. */
1696 static tree
1698 {
1705 {
1713 }
1726 else
1727 {
1737 }
1745 ECF_COLD);
1750 }
1752 /* Build the call to handle_contract_violation for CONTRACT. */
1754 static void
1756 contract_continuation cmode)
1757 {
1762 }
1764 /* Generate the code that checks or assumes a contract, but do not attach
1765 it to the current context. This is called during genericization. */
1767 tree
1769 {
1774 /* Ignored contracts are never checked or assumed. */
1790 TRUTH_NOT_EXPR,
1792 tf_warning_or_error);
1795 /* Get the continuation mode. */
1796 contract_continuation cmode;
1798 {
1802 }
1812 }
1814 /* Add the contract statement CONTRACT to the current block if valid. */
1816 static void
1818 {
1819 /* Only add valid contracts. */
1823 }
1825 /* Generate the statement for the given contract attribute by adding the
1826 statement to the current block. Returns the next contract in the chain. */
1828 static tree
1830 {
1836 }
1838 /* Add the statements of contract attributes ATTRS to the current block. */
1840 static void
1842 {
1847 {
1851 else
1853 }
1854 }
1856 /* Emit the statement for an assertion attribute. */
1858 void
1860 {
1862 }
1864 /* Emit statements for precondition attributes. */
1866 static void
1868 {
1870 }
1872 /* Emit statements for postcondition attributes. */
1874 static void
1876 {
1878 }
1880 /* We're compiling the pre/postcondition function CONDFN; remap any FN
1881 attributes that match CODE and emit them. */
1883 static void
1885 {
1889 {
1892 {
1896 }
1897 }
1898 }
1900 /* Converts a contract condition to bool and ensures it has a locaiton. */
1902 tree
1904 {
1905 /* Ensure we have the condition location saved in case we later need to
1906 emit a conversion error during template instantiation and wouldn't
1907 otherwise have it. */
1909 {
1913 }
1919 }
1921 void
1923 {
1924 /* Update any postconditions and the postcondition checking function
1925 as needed. If there are postconditions, we'll use those to rewrite
1926 return statements to check postconditions. */
1928 {
1932 }
1933 }
1935 /* Called on attribute lists that must not contain contracts. If any
1936 contracts are present, issue an error diagnostic and return true. */
1938 bool
1940 {
1951 /* Invalidate the contract so we don't treat it as valid later on. */
1955 }
1957 /* Build and return an argument list containing all the parameters of the
1958 (presumably guarded) FUNCTION_DECL FN. This can be used to forward all of
1959 FN's arguments to a function taking the same list of arguments -- namely
1960 the unchecked form of FN.
1962 We use CALL_FROM_THUNK_P instead of forward_parm for forwarding
1963 semantics. */
1967 {
1972 }
1974 void
1976 {
1980 /* For cdtors, we evaluate the contracts check inline. */
1984 /* Contracts may have just been added without a chance to parse them, though
1985 we still need the PRE_FN available to generate a call to it. */
1989 }
1991 /* If we have a precondition function and it's valid, call it. */
1993 static void
1995 {
1996 /* If we're starting a guarded function with valid contracts, we need to
1997 insert a call to the pre function. */
2006 }
2008 /* Build and add a call to the post-condition checking function, when that
2009 is in use. */
2011 static void
2013 {
2024 }
2026 /* Add a call or a direct evaluation of the pre checks. */
2028 static void
2030 {
2033 else
2035 }
2037 /* Add a call or a direct evaluation of the post checks. */
2039 static void
2041 {
2044 else
2046 }
2048 /* Add contract handling to the function in FNDECL.
2050 When we have only pre-conditions, this simply prepends a call (or a direct
2051 evaluation, for cdtors) to the existing function body.
2053 When we have post conditions we build a try-finally block.
2054 If the function might throw then the handler in the try-finally is an
2055 EH_ELSE expression, where the post condition check is applied to the
2056 non-exceptional path, and an empty statement is added to the EH path. If
2057 the function has a non-throwing eh spec, then the handler is simply the
2058 post-condition checker. */
2060 void
2062 {
2064 /* We did nothing and the original function body statement list will be
2065 popped by our caller. */
2070 /* We should not have reached here with nothing to do... */
2073 /* This copies the approach used for function try blocks. */
2079 /* Do not add locations for the synthesised code. */
2082 /* For other cases, we call a function to process the check. */
2084 /* If we have a pre, but not a post, then just emit that and we are done. */
2086 {
2091 }
2094 /* Add a precondition call, if we have one. */
2099 /* If we have exceptions, and a function that might throw, then add
2100 an EH_ELSE clause that allows the exception to propagate upwards
2101 without encountering the post-condition checks. */
2103 {
2110 }
2111 else
2115 /* The DECL_SAVED_TREE stmt list will be popped by our caller. */
2116 }
2118 /* Finish up the pre & post function definitions for a guarded FNDECL,
2119 and compile those functions all the way to assembler language output. */
2121 void
2123 {
2129 {
2135 }
2139 /* If either the pre or post functions are bad, don't bother emitting
2140 any contracts. The program is already ill-formed. */
2147 {
2153 }
2156 {
2160 flags);
2167 }
2168 }
2171 /* A subroutine of duplicate_decls. Diagnose issues in the redeclaration of
2172 guarded functions. */
2174 void
2176 {
2182 /* Compare contracts to see if they match. */
2192 /* If both declarations specify contracts, ensure they match.
2194 TODO: This handles a potential error a little oddly. Consider:
2196 struct B {
2197 virtual void f(int n) [[pre: n == 0]];
2198 };
2199 struct D : B {
2200 void f(int n) override; // inherits contracts
2201 };
2202 void D::f(int n) [[pre: n == 0]] // OK
2203 { }
2205 It's okay because we're explicitly restating the inherited contract.
2206 Changing the precondition on the definition D::f causes match_contracts
2207 to complain about the mismatch.
2209 This would previously have been diagnosed as adding contracts to an
2210 override, but this seems like it should be well-formed. */
2212 {
2215 cmc_declaration))
2218 /* Newdecl's contracts are still DEFERRED_PARSE, and we're about to
2219 collapse it into olddecl, so stash away olddecl's contracts for
2220 later comparison. */
2222 }
2224 /* Handle cases where contracts are omitted in one or the other
2225 declaration. */
2227 {
2228 /* Contracts have been previously specified by are no omitted. The
2229 new declaration inherits the existing contracts. */
2233 /* In all cases, remove existing contracts from OLDDECL to prevent the
2234 attribute merging function from adding excess contracts. */
2236 }
2238 {
2239 /* We are adding contracts to a declaration. */
2241 {
2242 /* We can't add to a previously defined function. */
2244 {
2245 auto_diagnostic_group d;
2249 }
2251 /* We can't add to an unguarded virtual function declaration. */
2253 {
2254 auto_diagnostic_group d;
2258 }
2260 /* Depending on the "first declaration" rule, we may not be able
2261 to add contracts to a function after the fact. */
2263 {
2265 OPT_fcontract_strict_declarations_,
2267 olddecl);
2269 }
2271 /* Copy the contracts from NEWDECL to OLDDECL. We shouldn't need to
2272 remap them because NEWDECL's parameters will replace those of
2273 OLDDECL. Remove the contracts from NEWDECL so they aren't
2274 cloned when merging. */
2277 }
2278 }
2279 }
2281 /* Replace the any contract attributes on OVERRIDER with a copy where any
2282 references to BASEFN's PARM_DECLs have been rewritten to the corresponding
2283 PARM_DECL in OVERRIDER. */
2285 void
2287 {
2292 {
2308 }
2311 }