*/ } ul /* Whole unordered list */ { } ul li /* Unordered list item */ { } ol /* Whole ordered list */ { } ol li /* Ordered list item */ { } hr {} /* ---- Some span elements --- */ sub /* Subscripts. Pandoc: H~2~O */ { } sup /* Superscripts. Pandoc: The 2^nd^ try. */ { } em /* Emphasis. Markdown: *emphasis* or _emphasis_ */ { } em > em /* Emphasis within emphasis: *This is all *emphasized* except that* */ { font-style: normal; } blockquote > p > em /* Emphasis within emphasis: *This is all *emphasized* except that* */ { font-style: normal; } blockquote > * > p > em /* Emphasis within emphasis: *This is all *emphasized* except that* */ { font-style: normal; } blockquote > p > ins > em /* Emphasis within emphasis: *This is all *emphasized* except that* */ { font-style: normal; } blockquote > * > p > ins > em /* Emphasis within emphasis: *This is all *emphasized* except that* */ { font-style: normal; } /* ---- Links (anchors) ---- */ a /* All links */ { /* Keep links clean. On screen, they are colored; in print, they do nothing anyway. */ text-decoration: none; } @media screen { a:hover { /* On hover, we indicate a bit more that it is a link. */ text-decoration: underline; } } @media print { a { /* In print, a colored link is useless, so un-style it. */ color: black; background: transparent; } a[href^="http://"]:after, a[href^="https://"]:after { /* However, links that go somewhere else, might be useful to the reader, so for http and https links, print the URL after what was the link text in parens */ content: " (" attr(href) ") "; font-size: 90%; } } /* ---- Images ---- */ img { /* Let it be inline left/right where it wants to be, but verticality make it in the middle to look nicer, but opinions differ, and if in a multi-line paragraph, it might not be so great. */ vertical-align: middle; } div.figure /* Pandoc figure-style image */ { /* Center the image and caption */ margin-left: auto; margin-right: auto; text-align: center; font-style: italic; } p.caption /* Pandoc figure-style caption within div.figure */ { /* Inherits div.figure props by default */ } /* ---- Code blocks and spans ---- */ pre, code { background-color: #fdf7ee; /* BEGIN word wrap */ /* Need all the following to word wrap instead of scroll box */ /* This will override the overflow:auto if present */ white-space: pre-wrap; /* css-3 */ white-space: -moz-pre-wrap !important; /* Mozilla, since 1999 */ white-space: -pre-wrap; /* Opera 4-6 */ white-space: -o-pre-wrap; /* Opera 7 */ word-wrap: break-word; /* Internet Explorer 5.5+ */ /* END word wrap */ } pre /* Code blocks */ { /* Distinguish pre blocks from other text by more than the font with a background tint. */ padding: 0.5em; /* Since we have a background color */ border-radius: 5px; /* Softens it */ /* Give it a some definition */ border: 1px solid #aaa; /* Set it off left and right, seems to look a bit nicer when we have a background */ margin-left: 0.5em; margin-right: 0.5em; } pre.yacc, code.yacc { background-color: #f0f0f0; } pre.yacc /* Code blocks */ { /* Distinguish pre blocks from other text by more than the font with a background tint. */ padding: 0.0em; /* Since we have a background color */ border-radius: 5px; /* Softens it */ /* Give it a some definition */ border: 0px solid #aaa; /* Set it off left and right, seems to look a bit nicer when we have a background */ margin-left: 0.0em; margin-right: 0.0em; } @media screen { pre { white-space: pre; /* Dotted looks better on screen and solid seems to print better. */ border: 1px dotted #777; } } code /* All inline code spans */ { } p > code, li > code /* Code spans in paragraphs and tight lists */ { /* Pad a little from adjacent text */ padding-left: 2px; padding-right: 2px; } li > p code /* Code span in a loose list */ { /* We have room for some more background color above and below */ padding: 2px; } span.option { color: blue; text-decoration: underline; } /* ---- Math ---- */ span.math /* Pandoc inline math default and --jsmath inline math */ { /* Tried font-style:italic here, and it messed up MathJax rendering in some browsers. Maybe don't mess with at all. */ } div.math /* Pandoc --jsmath display math */ { } span.LaTeX /* Pandoc --latexmathml math */ { } eq /* Pandoc --gladtex math */ { } /* ---- Tables ---- */ /* A clean textbook-like style with horizontal lines above and below and under the header. Rows highlight on hover to help scanning the table on screen. */ table { border-collapse: collapse; border-spacing: 0; /* IE 6 */ border-bottom: 2pt solid #000; border-top: 2pt solid #000; /* The caption on top will not have a bottom-border */ /* Center */ margin-left: auto; margin-right: auto; } thead /* Entire table header */ { border-bottom: 1pt solid #000; background-color: #eee; /* Does this BG print well? */ } tr.header /* Each header row */ { } tbody /* Entire table body */ { } /* Table body rows */ tr { } tr.odd:hover, tr.even:hover /* Use .odd and .even classes to avoid styling rows in other tables */ { background-color: #eee; } /* Odd and even rows */ tr.odd {} tr.even {} td, th /* Table cells and table header cells */ { vertical-align: top; /* Word */ vertical-align: baseline; /* Others */ padding-left: 0.5em; padding-right: 0.5em; padding-top: 0.2em; padding-bottom: 0.2em; } /* Removes padding on left and right of table for a tight look. Good if thead has no background color*/ /* tr td:last-child, tr th:last-child { padding-right: 0; } tr td:first-child, tr th:first-child { padding-left: 0; } */ th /* Table header cells */ { font-weight: bold; } tfoot /* Table footer (what appears here if caption is on top?) */ { } caption /* This is for a table caption tag, not the p.caption Pandoc uses in a div.figure */ { caption-side: top; border: none; font-size: 0.9em; font-style: italic; text-align: center; margin-bottom: 0.3em; /* Good for when on top */ padding-bottom: 0.2em; } /* ---- Definition lists ---- */ dl /* The whole list */ { border-top: 2pt solid black; padding-top: 0.5em; border-bottom: 2pt solid black; } dt /* Definition term */ { font-weight: bold; } dd+dt /* 2nd or greater term in the list */ { border-top: 1pt solid black; padding-top: 0.5em; } dd /* A definition */ { margin-bottom: 0.5em; } dd+dd /* 2nd or greater definition of a term */ { border-top: 1px solid black; /* To separate multiple definitions */ } /* ---- Footnotes ---- */ a.footnote, a.footnoteRef { /* Pandoc, MultiMarkdown footnote links */ font-size: small; vertical-align: text-top; } a[href^="#fnref"], a.reversefootnote /* Pandoc, MultiMarkdown, ?? footnote back links */ { } @media print { a[href^="#fnref"], a.reversefootnote /* Pandoc, MultiMarkdown */ { /* Don't display these at all in print since the arrow is only something to click on */ display: none; } } div.footnotes /* Pandoc footnotes div at end of the document */ { } div.footnotes li[id^="fn"] /* A footnote item within that div */ { } table tr td,th { border-right: 1px solid; border-left: 1px solid; } /* You can class stuff as "noprint" to not print. Useful since you can't set this media conditional inside an HTML element's style attribute (I think), and you don't want to make another stylesheet that imports this one and adds a class just to do this. */ @media print { .noprint { display:none; } }
2025-02-16
integration into IS ISO/IEC 9899:202y
| document number | date | comment |
|---|---|---|
| n3424 | 202412 | Original proposal |
| n3456 | 202501 | - emphasize that the special functions are excluded because their control flow is considered to be exceptional |
| - briefly discuss other cases where the gcc and C23 features disagree | ||
| n3494 | 202502 | - unspecified occurence of effects |
| - add a footnote to show the unspecified occurence |
CC BY, see https://creativecommons.org/licenses/by/4.0
The current wording in 6.7.13.8.1 has lead to misunderstandings about
the status of function calls with respect to the [[reproducible]]
and [[unsequenced]]
attributes for the case that such an attributed function does not
return. It seems that the corresponding gcc attributes __attribute__((pure))
and __attribute__((const))
assumed that such calls always return, without clearly documenting that
expectation, nor by documenting its reach.
Clearly, such an expectation makes sense, since otherwise a side effect could be inhibited by a call that does not return. Thus several optimizations that are the goal of these attributes would not be valid.
Currently this misunderstanding has the effect that gcc distinguishes the C23 attributes and their gcc predecessors even for the case where no pointer parameters or pointer return values are involved. The goal of this paper is to revert this unfortunate incident and establish the C23 attributes as having identical semantics as the gcc attributes for this case.
During the discussion on this paper it also became clear, that the
gcc and C23 attributes deviate on pointer parameters and return values,
namely on the fact if and when pointer targets are modifiable. Where C23
follows the model for restrict that is
already present in the standard, the gcc attributes
const-qualifiedconst-qualified
target of a returned pointer of a function with __attribute__((const))
is immutable.If WG14 would have been aware of that assumed semantic when specifying the C23 attributes the result might have been different; unfortunately it now seems too late to make any semantic changes that would bring those features closer together with respect to pointers. In any case, it is not the goal of this paper here to deal with these questions.
The most important cases for non returning functions are already
covered by the current wording. In particular, calling functions that
implicitly change program state by closing streams (exit and quick_exit), by changing callback state
(exit, quick_exit and thread_exit) are already prohibited. The aim
of this paper is to clarify this situation and to apply this rule more
widely, namely to prohibit termination of the execution whenever a side
effect may reasonably be expected during program termination.
Nevertheless, several cases of non-returning functions are not yet covered:
longjmp.abort, _Exit).assert invocation triggers.All these cases concern situations that are usually not taken into
account by optimizers. In particular, the resulting status of the
execution is specifically determined by wording for these features. Thus
not allowing the use of these features could change the behavior of a
function call from defined (whatever is defined for abort, for example) to undefined. We don’t
think that the introduction of undefined behavior in that way is
reasonable.
New text is underlined green, removed text is
stroke-out red.
Add at the end of 6.7.13.8.1, p4, that talks about the effects that are considered for the attributes:
Similarly, a function call expression E that does not return to its caller is considered to have a visible effect on the execution state. This notwithstandingresult in exceptional control flow and are therefore not considered for the effects they produce, here. If a call to a function with the
- an invocation of
longjmpthat bypasses E,- an invocation of
abortor_Exit,FNT1)- an invocation of
assert,FNT2) and- the generation of a signal, interrupt or trap that terminates the execution,
[[reproducible]]or[[unsequenced]]attribute would, in the absence of the attribute, result in one of the events above, then it is unspecified whether and when the event occurs.FNT3)
FNT1) In particular, each of the functionsexit,quick_exitandthrd_exithave visible side effects because they close streams and modify the corresponding state that holds the activeatexithandlers,at_quick_exithandlers ortss_tdestructors, respectively.
FNT2) Here, in case the asserted expression evaluates to
false, even the diagnostic output that the assert macro produces is not considered as
an effect.
FNT3) In particular, if calls to attributed functions, in
compliance with the spefications in this clause, are moved or even
completely omitted by the translator, the produced side effects may be
different or may appear in a different order than in the absence of the
attribute. For example an assertion that triggers from the function
without the attribute may produce output in a different order than for
the function with the attribute, or the output and final call to abort may not happen at all.
Add <assert.h>,
<setjmp.h>
and <stdlib.h>
to the Forward references.
Thanks to Paul Eggert, Bruno Haible, Jan Hubicka and Joseph Myers for discussion and feedback.