ChainSQL
diff --git a/‎Changelog.md‎
Lines changed: 2 additions & 0 deletions b/‎Changelog.md‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎libsolidity/CMakeLists.txt‎
Lines changed: 2 additions & 0 deletions b/‎libsolidity/CMakeLists.txt‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎libsolidity/analysis/ControlFlowAnalyzer.cpp‎
Lines changed: 44 additions & 14 deletions b/‎libsolidity/analysis/ControlFlowAnalyzer.cpp‎
Lines changed: 44 additions & 14 deletions
diff --git a/‎libsolidity/analysis/ControlFlowAnalyzer.h‎
Lines changed: 14 additions & 6 deletions b/‎libsolidity/analysis/ControlFlowAnalyzer.h‎
Lines changed: 14 additions & 6 deletions
diff --git a/‎libsolidity/analysis/ControlFlowBuilder.cpp‎
Lines changed: 5 additions & 0 deletions b/‎libsolidity/analysis/ControlFlowBuilder.cpp‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎libsolidity/analysis/ControlFlowGraph.cpp‎
Lines changed: 15 additions & 5 deletions b/‎libsolidity/analysis/ControlFlowGraph.cpp‎
Lines changed: 15 additions & 5 deletions
diff --git a/‎libsolidity/analysis/ControlFlowGraph.h‎
Lines changed: 31 additions & 3 deletions b/‎libsolidity/analysis/ControlFlowGraph.h‎
Lines changed: 31 additions & 3 deletions
@@ -16,6 +16,7 @@ Compiler Features:
 
 Bugfixes:
  * AST: Do not output value of Yul literal if it is not a valid UTF-8 string.
+ * Control Flow Graph: Take internal calls to functions that always revert into account for reporting unused or unassigned variables.
  * SMTChecker: Fix internal error on struct constructor with fixed bytes member initialized with string literal.
  * SMTChecker: Fix internal error on external calls from the constructor.
  * SMTChecker: Fix internal error on conversion from ``bytes`` to ``fixed bytes``.
@@ -28,6 +29,7 @@ AST Changes:
  * Add member `hexValue` for Yul string and hex literals.
 
 
+
 ### 0.8.4 (2021-04-21)
 
 Important Bugfixes:
 
@@ -10,6 +10,8 @@ set(sources
 	analysis/ControlFlowBuilder.h
 	analysis/ControlFlowGraph.cpp
 	analysis/ControlFlowGraph.h
+	analysis/ControlFlowRevertPruner.cpp
+	analysis/ControlFlowRevertPruner.h
 	analysis/DeclarationContainer.cpp
 	analysis/DeclarationContainer.h
 	analysis/DeclarationTypeChecker.cpp
 
@@ -22,28 +22,45 @@
 #include <libsolutil/Algorithms.h>
 #include <boost/range/algorithm/sort.hpp>
 
+#include <functional>
+
 using namespace std;
+using namespace std::placeholders;
 using namespace solidity::langutil;
 using namespace solidity::frontend;
 
-bool ControlFlowAnalyzer::analyze(ASTNode const& _astRoot)
+
+bool ControlFlowAnalyzer::run()
 {
-	_astRoot.accept(*this);
+	for (auto& [pair, flow]: m_cfg.allFunctionFlows())
+		analyze(*pair.function, pair.contract, *flow);
+
 	return Error::containsOnlyWarnings(m_errorReporter.errors());
 }
 
-bool ControlFlowAnalyzer::visit(FunctionDefinition const& _function)
+void ControlFlowAnalyzer::analyze(FunctionDefinition const& _function, ContractDefinition const* _contract, FunctionFlow const& _flow)
 {
-	if (_function.isImplemented())
-	{
-		auto const& functionFlow = m_cfg.functionFlow(_function);
-		checkUninitializedAccess(functionFlow.entry, functionFlow.exit, _function.body().statements().empty());
-		checkUnreachable(functionFlow.entry, functionFlow.exit, functionFlow.revert, functionFlow.transactionReturn);
-	}
-	return false;
+	if (!_function.isImplemented())
+		return;
+
+	optional<string> mostDerivedContractName;
+
+	// The name of the most derived contract only required if it differs from
+	// the functions contract
+	if (_contract && _contract != _function.annotation().contract)
+		mostDerivedContractName = _contract->name();
+
+	checkUninitializedAccess(
+		_flow.entry,
+		_flow.exit,
+		_function.body().statements().empty(),
+		mostDerivedContractName
+	);
+	checkUnreachable(_flow.entry, _flow.exit, _flow.revert, _flow.transactionReturn);
 }
 
-void ControlFlowAnalyzer::checkUninitializedAccess(CFGNode const* _entry, CFGNode const* _exit, bool _emptyBody) const
+
+void ControlFlowAnalyzer::checkUninitializedAccess(CFGNode const* _entry, CFGNode const* _exit, bool _emptyBody, optional<string> _contractName)
 {
 	struct NodeInfo
 	{
@@ -156,16 +173,27 @@ void ControlFlowAnalyzer::checkUninitializedAccess(CFGNode const* _entry, CFGNod
 					" without prior assignment, which would lead to undefined behaviour."
 				);
 			else if (!_emptyBody && varDecl.name().empty())
+			{
+				if (!m_unassignedReturnVarsAlreadyWarnedFor.emplace(&varDecl).second)
+					continue;
+
 				m_errorReporter.warning(
 					6321_error,
 					varDecl.location(),
-					"Unnamed return variable can remain unassigned. Add an explicit return with value to all non-reverting code paths or name the variable."
+					"Unnamed return variable can remain unassigned" +
+					(
+						_contractName.has_value() ?
+						" when the function is called when \"" + _contractName.value() + "\" is the most derived contract." :
+						"."
+					) +
+					" Add an explicit return with value to all non-reverting code paths or name the variable."
 				);
+			}
 		}
 	}
 }
 
-void ControlFlowAnalyzer::checkUnreachable(CFGNode const* _entry, CFGNode const* _exit, CFGNode const* _revert, CFGNode const* _transactionReturn) const
+void ControlFlowAnalyzer::checkUnreachable(CFGNode const* _entry, CFGNode const* _exit, CFGNode const* _revert, CFGNode const* _transactionReturn)
 {
 	// collect all nodes reachable from the entry point
 	std::set<CFGNode const*> reachable = util::BreadthFirstSearch<CFGNode const*>{{_entry}}.run(
@@ -193,6 +221,8 @@ void ControlFlowAnalyzer::checkUnreachable(CFGNode const* _entry, CFGNode const*
 		// Extend the location, as long as the next location overlaps (unreachable is sorted).
 		for (; it != unreachable.end() && it->start <= location.end; ++it)
 			location.end = std::max(location.end, it->end);
-		m_errorReporter.warning(5740_error, location, "Unreachable code.");
+
+		if (m_unreachableLocationsAlreadyWarnedFor.emplace(location).second)
+			m_errorReporter.warning(5740_error, location, "Unreachable code.");
 	}
 }
@@ -19,30 +19,38 @@
 #pragma once
 
 #include <libsolidity/analysis/ControlFlowGraph.h>
+#include <liblangutil/ErrorReporter.h>
 #include <set>
 
 namespace solidity::frontend
 {
 
-class ControlFlowAnalyzer: private ASTConstVisitor
+class ControlFlowAnalyzer
 {
 public:
 	explicit ControlFlowAnalyzer(CFG const& _cfg, langutil::ErrorReporter& _errorReporter):
 		m_cfg(_cfg), m_errorReporter(_errorReporter) {}
 
-	bool analyze(ASTNode const& _astRoot);
-
-	bool visit(FunctionDefinition const& _function) override;
+	bool run();
 
 private:
+	void analyze(FunctionDefinition const& _function, ContractDefinition const* _contract, FunctionFlow const& _flow);
 	/// Checks for uninitialized variable accesses in the control flow between @param _entry and @param _exit.
-	void checkUninitializedAccess(CFGNode const* _entry, CFGNode const* _exit, bool _emptyBody) const;
+	/// @param _entry entry node
+	/// @param _exit exit node
+	/// @param _emptyBody whether the body of the function is empty (true) or not (false)
+	/// @param _contractName name of the most derived contract, should be empty
+	///        if the function is also defined in it
+	void checkUninitializedAccess(CFGNode const* _entry, CFGNode const* _exit, bool _emptyBody, std::optional<std::string> _contractName = {});
 	/// Checks for unreachable code, i.e. code ending in @param _exit, @param _revert or @param _transactionReturn
 	/// that can not be reached from @param _entry.
-	void checkUnreachable(CFGNode const* _entry, CFGNode const* _exit, CFGNode const* _revert, CFGNode const* _transactionReturn) const;
+	void checkUnreachable(CFGNode const* _entry, CFGNode const* _exit, CFGNode const* _revert, CFGNode const* _transactionReturn);
 
 	CFG const& m_cfg;
 	langutil::ErrorReporter& m_errorReporter;
+
+	std::set<langutil::SourceLocation> m_unreachableLocationsAlreadyWarnedFor;
+	std::set<VariableDeclaration const*> m_unassignedReturnVarsAlreadyWarnedFor;
 };
 
 }
@@ -287,6 +287,11 @@ bool ControlFlowBuilder::visit(FunctionCall const& _functionCall)
 				m_currentNode = nextNode;
 				return false;
 			}
+			case FunctionType::Kind::Internal:
+			{
+				m_currentNode->functionCalls.emplace_back(&_functionCall);
+				break;
+			}
 			default:
 				break;
 		}
 
@@ -34,15 +34,25 @@ bool CFG::constructFlow(ASTNode const& _astRoot)
 
 bool CFG::visit(FunctionDefinition const& _function)
 {
-	if (_function.isImplemented())
-		m_functionControlFlow[&_function] = ControlFlowBuilder::createFunctionFlow(m_nodeContainer, _function);
+	if (_function.isImplemented() && _function.isFree())
+		m_functionControlFlow[{nullptr, &_function}] = ControlFlowBuilder::createFunctionFlow(m_nodeContainer, _function);
 	return false;
 }
 
-FunctionFlow const& CFG::functionFlow(FunctionDefinition const& _function) const
+bool CFG::visit(ContractDefinition const& _contract)
 {
-	solAssert(m_functionControlFlow.count(&_function), "");
-	return *m_functionControlFlow.find(&_function)->second;
+	for (ContractDefinition const* contract: _contract.annotation().linearizedBaseContracts)
+		for (FunctionDefinition const* function: contract->definedFunctions())
+			if (function->isImplemented())
+				m_functionControlFlow[{&_contract, function}] =
+					ControlFlowBuilder::createFunctionFlow(m_nodeContainer, *function);
+
+	return true;
+}
+
+FunctionFlow const& CFG::functionFlow(FunctionDefinition const& _function, ContractDefinition const* _contract) const
+{
+	return *m_functionControlFlow.at({_contract, &_function});
 }
 
 CFGNode* CFG::NodeContainer::newNode()
 
@@ -98,6 +98,8 @@ struct CFGNode
 	std::vector<CFGNode*> entries;
 	/// Exit nodes. All CFG nodes to which control flow may continue after this node.
 	std::vector<CFGNode*> exits;
+	/// Function calls done by this node
+	std::vector<FunctionCall const*> functionCalls;
 
 	/// Variable occurrences in the node.
 	std::vector<VariableOccurrence> variableOccurrences;
@@ -118,7 +120,7 @@ struct FunctionFlow
 	/// (e.g. all return statements of the function).
 	CFGNode* exit = nullptr;
 	/// Revert node. Control flow of the function in case of revert.
-	/// This node is empty does not have any exits, but may have multiple entries
+	/// This node is empty and does not have any exits, but may have multiple entries
 	/// (e.g. all assert, require, revert and throw statements).
 	CFGNode* revert = nullptr;
 	/// Transaction return node. Destination node for inline assembly "return" calls.
@@ -130,13 +132,39 @@ struct FunctionFlow
 class CFG: private ASTConstVisitor
 {
 public:
+	struct FunctionContractTuple
+	{
+		ContractDefinition const* contract = nullptr;
+		FunctionDefinition const* function = nullptr;
+
+		// Use AST ids for comparison to keep a deterministic order in the
+		// containers using this struct
+		bool operator<(FunctionContractTuple const& _other) const
+		{
+			if (contract && _other.contract)
+				if (contract->id() != _other.contract->id())
+					return contract->id() < _other.contract->id();
+
+			return function->id() < _other.function->id();
+		}
+	};
 	explicit CFG(langutil::ErrorReporter& _errorReporter): m_errorReporter(_errorReporter) {}
 
 	bool constructFlow(ASTNode const& _astRoot);
 
 	bool visit(FunctionDefinition const& _function) override;
+	bool visit(ContractDefinition const& _contract) override;
+
+	/// Get the function flow for the given function, using `_contract` as the
+	/// most derived contract
+	/// @param _function function to find the function flow for
+	/// @param _contract most derived contract or nullptr for free functions
+	FunctionFlow const& functionFlow(FunctionDefinition const& _function, ContractDefinition const* _contract = nullptr) const;
 
-	FunctionFlow const& functionFlow(FunctionDefinition const& _function) const;
+	std::map<FunctionContractTuple, std::unique_ptr<FunctionFlow>> const& allFunctionFlows() const
+	{
+		return m_functionControlFlow;
+	}
 
 	class NodeContainer
 	{
@@ -153,7 +181,7 @@ class CFG: private ASTConstVisitor
 	/// are owned by the CFG class and stored in this container.
 	NodeContainer m_nodeContainer;
 
-	std::map<FunctionDefinition const*, std::unique_ptr<FunctionFlow>> m_functionControlFlow;
+	std::map<FunctionContractTuple, std::unique_ptr<FunctionFlow>> m_functionControlFlow;
 };
 
 }
Original file line number	Diff line number	Diff line change
`@@ -287,6 +287,11 @@ bool ControlFlowBuilder::visit(FunctionCall const& _functionCall)`
`287`	`287`	`m_currentNode = nextNode;`
`288`	`288`	`return false;`
`289`	`289`	`}`
	`290`	`+ case FunctionType::Kind::Internal:`
	`291`	`+ {`
	`292`	`+ m_currentNode->functionCalls.emplace_back(&_functionCall);`
	`293`	`+ break;`
	`294`	`+ }`
`290`	`295`	`default:`
`291`	`296`	`break;`
`292`	`297`	`}`