1 /* Check calls to formatted I/O functions (-Wformat).
2 Copyright (C) 1992, 1993, 1994, 1995, 1996, 1997, 1998, 1999, 2000,
3 2001, 2002 Free Software Foundation, Inc.
5 This file is part of GCC.
7 GCC is free software; you can redistribute it and/or modify it under
8 the terms of the GNU General Public License as published by the Free
9 Software Foundation; either version 2, or (at your option) any later
12 GCC is distributed in the hope that it will be useful, but WITHOUT ANY
13 WARRANTY; without even the implied warranty of MERCHANTABILITY or
14 FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
17 You should have received a copy of the GNU General Public License
18 along with GCC; see the file COPYING. If not, write to the Free
19 Software Foundation, 59 Temple Place - Suite 330, Boston, MA
24 #include "coretypes.h"
31 #include "diagnostic.h"
32 #include "langhooks.h"
34 /* Set format warning options according to a -Wformat=n option. */
40 warn_format = setting;
41 warn_format_y2k = setting;
42 warn_format_extra_args = setting;
43 warn_format_zero_length = setting;
46 warn_format_nonliteral = setting;
47 warn_format_security = setting;
49 /* Make sure not to disable -Wnonnull if -Wformat=0 is specified. */
51 warn_nonnull = setting;
55 /* Handle attributes associated with format checking. */
57 /* This must be in the same order as format_types, with format_type_error
59 enum format_type { printf_format_type, scanf_format_type,
60 strftime_format_type, strfmon_format_type,
63 typedef struct function_format_info
65 enum format_type format_type; /* type of format (printf, scanf, etc.) */
66 unsigned HOST_WIDE_INT format_num; /* number of format argument */
67 unsigned HOST_WIDE_INT first_arg_num; /* number of first arg (zero for varargs) */
68 } function_format_info;
70 static bool decode_format_attr PARAMS ((tree,
71 function_format_info *, int));
72 static enum format_type decode_format_type PARAMS ((const char *));
74 /* Handle a "format" attribute; arguments as in
75 struct attribute_spec.handler. */
77 handle_format_attribute (node, name, args, flags, no_add_attrs)
79 tree name ATTRIBUTE_UNUSED;
85 function_format_info info;
87 unsigned HOST_WIDE_INT arg_num;
89 if (!decode_format_attr (args, &info, 0))
95 /* If a parameter list is specified, verify that the format_num
96 argument is actually a string, in case the format attribute
98 argument = TYPE_ARG_TYPES (type);
101 for (arg_num = 1; argument != 0 && arg_num != info.format_num;
102 ++arg_num, argument = TREE_CHAIN (argument))
106 || TREE_CODE (TREE_VALUE (argument)) != POINTER_TYPE
107 || (TYPE_MAIN_VARIANT (TREE_TYPE (TREE_VALUE (argument)))
110 if (!(flags & (int) ATTR_FLAG_BUILT_IN))
111 error ("format string arg not a string type");
112 *no_add_attrs = true;
116 else if (info.first_arg_num != 0)
118 /* Verify that first_arg_num points to the last arg,
121 arg_num++, argument = TREE_CHAIN (argument);
123 if (arg_num != info.first_arg_num)
125 if (!(flags & (int) ATTR_FLAG_BUILT_IN))
126 error ("args to be formatted is not '...'");
127 *no_add_attrs = true;
133 if (info.format_type == strftime_format_type && info.first_arg_num != 0)
135 error ("strftime formats cannot format arguments");
136 *no_add_attrs = true;
144 /* Handle a "format_arg" attribute; arguments as in
145 struct attribute_spec.handler. */
147 handle_format_arg_attribute (node, name, args, flags, no_add_attrs)
149 tree name ATTRIBUTE_UNUSED;
155 tree format_num_expr = TREE_VALUE (args);
156 unsigned HOST_WIDE_INT format_num;
157 unsigned HOST_WIDE_INT arg_num;
160 /* Strip any conversions from the first arg number and verify it
162 while (TREE_CODE (format_num_expr) == NOP_EXPR
163 || TREE_CODE (format_num_expr) == CONVERT_EXPR
164 || TREE_CODE (format_num_expr) == NON_LVALUE_EXPR)
165 format_num_expr = TREE_OPERAND (format_num_expr, 0);
167 if (TREE_CODE (format_num_expr) != INTEGER_CST
168 || TREE_INT_CST_HIGH (format_num_expr) != 0)
170 error ("format string has invalid operand number");
171 *no_add_attrs = true;
175 format_num = TREE_INT_CST_LOW (format_num_expr);
177 /* If a parameter list is specified, verify that the format_num
178 argument is actually a string, in case the format attribute
180 argument = TYPE_ARG_TYPES (type);
183 for (arg_num = 1; argument != 0 && arg_num != format_num;
184 ++arg_num, argument = TREE_CHAIN (argument))
188 || TREE_CODE (TREE_VALUE (argument)) != POINTER_TYPE
189 || (TYPE_MAIN_VARIANT (TREE_TYPE (TREE_VALUE (argument)))
192 if (!(flags & (int) ATTR_FLAG_BUILT_IN))
193 error ("format string arg not a string type");
194 *no_add_attrs = true;
199 if (TREE_CODE (TREE_TYPE (type)) != POINTER_TYPE
200 || (TYPE_MAIN_VARIANT (TREE_TYPE (TREE_TYPE (type)))
203 if (!(flags & (int) ATTR_FLAG_BUILT_IN))
204 error ("function does not return string type");
205 *no_add_attrs = true;
213 /* Decode the arguments to a "format" attribute into a function_format_info
214 structure. It is already known that the list is of the right length.
215 If VALIDATED_P is true, then these attributes have already been validated
216 and this function will abort if they are erroneous; if false, it
217 will give an error message. Returns true if the attributes are
218 successfully decoded, false otherwise. */
221 decode_format_attr (args, info, validated_p)
223 function_format_info *info;
226 tree format_type_id = TREE_VALUE (args);
227 tree format_num_expr = TREE_VALUE (TREE_CHAIN (args));
228 tree first_arg_num_expr
229 = TREE_VALUE (TREE_CHAIN (TREE_CHAIN (args)));
231 if (TREE_CODE (format_type_id) != IDENTIFIER_NODE)
235 error ("unrecognized format specifier");
240 const char *p = IDENTIFIER_POINTER (format_type_id);
242 info->format_type = decode_format_type (p);
244 if (info->format_type == format_type_error)
248 warning ("`%s' is an unrecognized format function type", p);
253 /* Strip any conversions from the string index and first arg number
254 and verify they are constants. */
255 while (TREE_CODE (format_num_expr) == NOP_EXPR
256 || TREE_CODE (format_num_expr) == CONVERT_EXPR
257 || TREE_CODE (format_num_expr) == NON_LVALUE_EXPR)
258 format_num_expr = TREE_OPERAND (format_num_expr, 0);
260 while (TREE_CODE (first_arg_num_expr) == NOP_EXPR
261 || TREE_CODE (first_arg_num_expr) == CONVERT_EXPR
262 || TREE_CODE (first_arg_num_expr) == NON_LVALUE_EXPR)
263 first_arg_num_expr = TREE_OPERAND (first_arg_num_expr, 0);
265 if (TREE_CODE (format_num_expr) != INTEGER_CST
266 || TREE_INT_CST_HIGH (format_num_expr) != 0
267 || TREE_CODE (first_arg_num_expr) != INTEGER_CST
268 || TREE_INT_CST_HIGH (first_arg_num_expr) != 0)
272 error ("format string has invalid operand number");
276 info->format_num = TREE_INT_CST_LOW (format_num_expr);
277 info->first_arg_num = TREE_INT_CST_LOW (first_arg_num_expr);
278 if (info->first_arg_num != 0 && info->first_arg_num <= info->format_num)
282 error ("format string arg follows the args to be formatted");
289 /* Check a call to a format function against a parameter list. */
291 /* The meaningfully distinct length modifiers for format checking recognized
308 /* The standard versions in which various format features appeared. */
309 enum format_std_version
313 STD_C9L, /* C99, but treat as C89 if -Wno-long-long. */
318 /* The C standard version C++ is treated as equivalent to
319 or inheriting from, for the purpose of format features supported. */
320 #define CPLUSPLUS_STD_VER STD_C94
321 /* The C standard version we are checking formats against when pedantic. */
322 #define C_STD_VER ((int)(c_language == clk_cplusplus \
323 ? CPLUSPLUS_STD_VER \
326 : (flag_isoc94 ? STD_C94 : STD_C89))))
327 /* The name to give to the standard version we are warning about when
328 pedantic. FEATURE_VER is the version in which the feature warned out
329 appeared, which is higher than C_STD_VER. */
330 #define C_STD_NAME(FEATURE_VER) (c_language == clk_cplusplus \
332 : ((FEATURE_VER) == STD_EXT \
335 /* Adjust a C standard version, which may be STD_C9L, to account for
336 -Wno-long-long. Returns other standard versions unchanged. */
337 #define ADJ_STD(VER) ((int)((VER) == STD_C9L \
338 ? (warn_long_long ? STD_C99 : STD_C89) \
341 /* Flags that may apply to a particular kind of format checked by GCC. */
344 /* This format converts arguments of types determined by the
346 FMT_FLAG_ARG_CONVERT = 1,
347 /* The scanf allocation 'a' kludge applies to this format kind. */
348 FMT_FLAG_SCANF_A_KLUDGE = 2,
349 /* A % during parsing a specifier is allowed to be a modified % rather
350 that indicating the format is broken and we are out-of-sync. */
351 FMT_FLAG_FANCY_PERCENT_OK = 4,
352 /* With $ operand numbers, it is OK to reference the same argument more
354 FMT_FLAG_DOLLAR_MULTIPLE = 8,
355 /* This format type uses $ operand numbers (strfmon doesn't). */
356 FMT_FLAG_USE_DOLLAR = 16,
357 /* Zero width is bad in this type of format (scanf). */
358 FMT_FLAG_ZERO_WIDTH_BAD = 32,
359 /* Empty precision specification is OK in this type of format (printf). */
360 FMT_FLAG_EMPTY_PREC_OK = 64,
361 /* Gaps are allowed in the arguments with $ operand numbers if all
362 arguments are pointers (scanf). */
363 FMT_FLAG_DOLLAR_GAP_POINTER_OK = 128
364 /* Not included here: details of whether width or precision may occur
365 (controlled by width_char and precision_char); details of whether
366 '*' can be used for these (width_type and precision_type); details
367 of whether length modifiers can occur (length_char_specs). */
371 /* Structure describing a length modifier supported in format checking, and
372 possibly a doubled version such as "hh". */
375 /* Name of the single-character length modifier. */
376 const char *const name;
377 /* Index into a format_char_info.types array. */
378 const enum format_lengths index;
379 /* Standard version this length appears in. */
380 const enum format_std_version std;
381 /* Same, if the modifier can be repeated, or NULL if it can't. */
382 const char *const double_name;
383 const enum format_lengths double_index;
384 const enum format_std_version double_std;
385 } format_length_info;
388 /* Structure describing the combination of a conversion specifier
389 (or a set of specifiers which act identically) and a length modifier. */
392 /* The standard version this combination of length and type appeared in.
393 This is only relevant if greater than those for length and type
394 individually; otherwise it is ignored. */
395 enum format_std_version std;
396 /* The name to use for the type, if different from that generated internally
397 (e.g., "signed size_t"). */
399 /* The type itself. */
401 } format_type_detail;
404 /* Macros to fill out tables of these. */
405 #define BADLEN { 0, NULL, NULL }
406 #define NOLENGTHS { BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN }
409 /* Structure describing a format conversion specifier (or a set of specifiers
410 which act identically), and the length modifiers used with it. */
413 const char *const format_chars;
414 const int pointer_count;
415 const enum format_std_version std;
416 /* Types accepted for each length modifier. */
417 const format_type_detail types[FMT_LEN_MAX];
418 /* List of other modifier characters allowed with these specifiers.
419 This lists flags, and additionally "w" for width, "p" for precision
420 (right precision, for strfmon), "#" for left precision (strfmon),
421 "a" for scanf "a" allocation extension (not applicable in C99 mode),
422 "*" for scanf suppression, and "E" and "O" for those strftime
424 const char *const flag_chars;
425 /* List of additional flags describing these conversion specifiers.
426 "c" for generic character pointers being allowed, "2" for strftime
427 two digit year formats, "3" for strftime formats giving two digit
428 years in some locales, "4" for "2" which becomes "3" with an "E" modifier,
429 "o" if use of strftime "O" is a GNU extension beyond C99,
430 "W" if the argument is a pointer which is dereferenced and written into,
431 "R" if the argument is a pointer which is dereferenced and read from,
432 "i" for printf integer formats where the '0' flag is ignored with
433 precision, and "[" for the starting character of a scanf scanset. */
434 const char *const flags2;
438 /* Structure describing a flag accepted by some kind of format. */
441 /* The flag character in question (0 for end of array). */
443 /* Zero if this entry describes the flag character in general, or a
444 nonzero character that may be found in flags2 if it describes the
445 flag when used with certain formats only. If the latter, only
446 the first such entry found that applies to the current conversion
447 specifier is used; the values of `name' and `long_name' it supplies
448 will be used, if non-NULL and the standard version is higher than
449 the unpredicated one, for any pedantic warning. For example, 'o'
450 for strftime formats (meaning 'O' is an extension over C99). */
452 /* Nonzero if the next character after this flag in the format should
453 be skipped ('=' in strfmon), zero otherwise. */
454 const int skip_next_char;
455 /* The name to use for this flag in diagnostic messages. For example,
456 N_("`0' flag"), N_("field width"). */
457 const char *const name;
458 /* Long name for this flag in diagnostic messages; currently only used for
459 "ISO C does not support ...". For example, N_("the `I' printf flag"). */
460 const char *const long_name;
461 /* The standard version in which it appeared. */
462 const enum format_std_version std;
466 /* Structure describing a combination of flags that is bad for some kind
470 /* The first flag character in question (0 for end of array). */
471 const int flag_char1;
472 /* The second flag character. */
473 const int flag_char2;
474 /* Nonzero if the message should say that the first flag is ignored with
475 the second, zero if the combination should simply be objected to. */
477 /* Zero if this entry applies whenever this flag combination occurs,
478 a nonzero character from flags2 if it only applies in some
479 circumstances (e.g. 'i' for printf formats ignoring 0 with precision). */
484 /* Structure describing a particular kind of format processed by GCC. */
487 /* The name of this kind of format, for use in diagnostics. Also
488 the name of the attribute (without preceding and following __). */
489 const char *const name;
490 /* Specifications of the length modifiers accepted; possibly NULL. */
491 const format_length_info *const length_char_specs;
492 /* Details of the conversion specification characters accepted. */
493 const format_char_info *const conversion_specs;
494 /* String listing the flag characters that are accepted. */
495 const char *const flag_chars;
496 /* String listing modifier characters (strftime) accepted. May be NULL. */
497 const char *const modifier_chars;
498 /* Details of the flag characters, including pseudo-flags. */
499 const format_flag_spec *const flag_specs;
500 /* Details of bad combinations of flags. */
501 const format_flag_pair *const bad_flag_pairs;
502 /* Flags applicable to this kind of format. */
504 /* Flag character to treat a width as, or 0 if width not used. */
505 const int width_char;
506 /* Flag character to treat a left precision (strfmon) as,
507 or 0 if left precision not used. */
508 const int left_precision_char;
509 /* Flag character to treat a precision (for strfmon, right precision) as,
510 or 0 if precision not used. */
511 const int precision_char;
512 /* If a flag character has the effect of suppressing the conversion of
513 an argument ('*' in scanf), that flag character, otherwise 0. */
514 const int suppression_char;
515 /* Flag character to treat a length modifier as (ignored if length
516 modifiers not used). Need not be placed in flag_chars for conversion
517 specifiers, but is used to check for bad combinations such as length
518 modifier with assignment suppression in scanf. */
519 const int length_code_char;
520 /* Pointer to type of argument expected if '*' is used for a width,
521 or NULL if '*' not used for widths. */
522 tree *const width_type;
523 /* Pointer to type of argument expected if '*' is used for a precision,
524 or NULL if '*' not used for precisions. */
525 tree *const precision_type;
529 /* Structure describing details of a type expected in format checking,
530 and the type to check against it. */
531 typedef struct format_wanted_type
533 /* The type wanted. */
535 /* The name of this type to use in diagnostics. */
536 const char *wanted_type_name;
537 /* The level of indirection through pointers at which this type occurs. */
539 /* Whether, when pointer_count is 1, to allow any character type when
540 pedantic, rather than just the character or void type specified. */
541 int char_lenient_flag;
542 /* Whether the argument, dereferenced once, is written into and so the
543 argument must not be a pointer to a const-qualified type. */
545 /* Whether the argument, dereferenced once, is read from and so
546 must not be a NULL pointer. */
547 int reading_from_flag;
548 /* If warnings should be of the form "field precision is not type int",
549 the name to use (in this case "field precision"), otherwise NULL,
550 for "%s format, %s arg" type messages. If (in an extension), this
551 is a pointer type, wanted_type_name should be set to include the
552 terminating '*' characters of the type name to give a correct
555 /* The actual parameter to check against the wanted type. */
557 /* The argument number of that parameter. */
559 /* The next type to check for this format conversion, or NULL if none. */
560 struct format_wanted_type *next;
561 } format_wanted_type;
564 static const format_length_info printf_length_specs[] =
566 { "h", FMT_LEN_h, STD_C89, "hh", FMT_LEN_hh, STD_C99 },
567 { "l", FMT_LEN_l, STD_C89, "ll", FMT_LEN_ll, STD_C9L },
568 { "q", FMT_LEN_ll, STD_EXT, NULL, 0, 0 },
569 { "L", FMT_LEN_L, STD_C89, NULL, 0, 0 },
570 { "z", FMT_LEN_z, STD_C99, NULL, 0, 0 },
571 { "Z", FMT_LEN_z, STD_EXT, NULL, 0, 0 },
572 { "t", FMT_LEN_t, STD_C99, NULL, 0, 0 },
573 { "j", FMT_LEN_j, STD_C99, NULL, 0, 0 },
574 { NULL, 0, 0, NULL, 0, 0 }
578 /* This differs from printf_length_specs only in that "Z" is not accepted. */
579 static const format_length_info scanf_length_specs[] =
581 { "h", FMT_LEN_h, STD_C89, "hh", FMT_LEN_hh, STD_C99 },
582 { "l", FMT_LEN_l, STD_C89, "ll", FMT_LEN_ll, STD_C9L },
583 { "q", FMT_LEN_ll, STD_EXT, NULL, 0, 0 },
584 { "L", FMT_LEN_L, STD_C89, NULL, 0, 0 },
585 { "z", FMT_LEN_z, STD_C99, NULL, 0, 0 },
586 { "t", FMT_LEN_t, STD_C99, NULL, 0, 0 },
587 { "j", FMT_LEN_j, STD_C99, NULL, 0, 0 },
588 { NULL, 0, 0, NULL, 0, 0 }
592 /* All tables for strfmon use STD_C89 everywhere, since -pedantic warnings
593 make no sense for a format type not part of any C standard version. */
594 static const format_length_info strfmon_length_specs[] =
596 /* A GNU extension. */
597 { "L", FMT_LEN_L, STD_C89, NULL, 0, 0 },
598 { NULL, 0, 0, NULL, 0, 0 }
601 static const format_flag_spec printf_flag_specs[] =
603 { ' ', 0, 0, N_("` ' flag"), N_("the ` ' printf flag"), STD_C89 },
604 { '+', 0, 0, N_("`+' flag"), N_("the `+' printf flag"), STD_C89 },
605 { '#', 0, 0, N_("`#' flag"), N_("the `#' printf flag"), STD_C89 },
606 { '0', 0, 0, N_("`0' flag"), N_("the `0' printf flag"), STD_C89 },
607 { '-', 0, 0, N_("`-' flag"), N_("the `-' printf flag"), STD_C89 },
608 { '\'', 0, 0, N_("`'' flag"), N_("the `'' printf flag"), STD_EXT },
609 { 'I', 0, 0, N_("`I' flag"), N_("the `I' printf flag"), STD_EXT },
610 { 'w', 0, 0, N_("field width"), N_("field width in printf format"), STD_C89 },
611 { 'p', 0, 0, N_("precision"), N_("precision in printf format"), STD_C89 },
612 { 'L', 0, 0, N_("length modifier"), N_("length modifier in printf format"), STD_C89 },
613 { 0, 0, 0, NULL, NULL, 0 }
617 static const format_flag_pair printf_flag_pairs[] =
621 { '0', 'p', 1, 'i' },
626 static const format_flag_spec scanf_flag_specs[] =
628 { '*', 0, 0, N_("assignment suppression"), N_("the assignment suppression scanf feature"), STD_C89 },
629 { 'a', 0, 0, N_("`a' flag"), N_("the `a' scanf flag"), STD_EXT },
630 { 'w', 0, 0, N_("field width"), N_("field width in scanf format"), STD_C89 },
631 { 'L', 0, 0, N_("length modifier"), N_("length modifier in scanf format"), STD_C89 },
632 { '\'', 0, 0, N_("`'' flag"), N_("the `'' scanf flag"), STD_EXT },
633 { 'I', 0, 0, N_("`I' flag"), N_("the `I' scanf flag"), STD_EXT },
634 { 0, 0, 0, NULL, NULL, 0 }
638 static const format_flag_pair scanf_flag_pairs[] =
645 static const format_flag_spec strftime_flag_specs[] =
647 { '_', 0, 0, N_("`_' flag"), N_("the `_' strftime flag"), STD_EXT },
648 { '-', 0, 0, N_("`-' flag"), N_("the `-' strftime flag"), STD_EXT },
649 { '0', 0, 0, N_("`0' flag"), N_("the `0' strftime flag"), STD_EXT },
650 { '^', 0, 0, N_("`^' flag"), N_("the `^' strftime flag"), STD_EXT },
651 { '#', 0, 0, N_("`#' flag"), N_("the `#' strftime flag"), STD_EXT },
652 { 'w', 0, 0, N_("field width"), N_("field width in strftime format"), STD_EXT },
653 { 'E', 0, 0, N_("`E' modifier"), N_("the `E' strftime modifier"), STD_C99 },
654 { 'O', 0, 0, N_("`O' modifier"), N_("the `O' strftime modifier"), STD_C99 },
655 { 'O', 'o', 0, NULL, N_("the `O' modifier"), STD_EXT },
656 { 0, 0, 0, NULL, NULL, 0 }
660 static const format_flag_pair strftime_flag_pairs[] =
671 static const format_flag_spec strfmon_flag_specs[] =
673 { '=', 0, 1, N_("fill character"), N_("fill character in strfmon format"), STD_C89 },
674 { '^', 0, 0, N_("`^' flag"), N_("the `^' strfmon flag"), STD_C89 },
675 { '+', 0, 0, N_("`+' flag"), N_("the `+' strfmon flag"), STD_C89 },
676 { '(', 0, 0, N_("`(' flag"), N_("the `(' strfmon flag"), STD_C89 },
677 { '!', 0, 0, N_("`!' flag"), N_("the `!' strfmon flag"), STD_C89 },
678 { '-', 0, 0, N_("`-' flag"), N_("the `-' strfmon flag"), STD_C89 },
679 { 'w', 0, 0, N_("field width"), N_("field width in strfmon format"), STD_C89 },
680 { '#', 0, 0, N_("left precision"), N_("left precision in strfmon format"), STD_C89 },
681 { 'p', 0, 0, N_("right precision"), N_("right precision in strfmon format"), STD_C89 },
682 { 'L', 0, 0, N_("length modifier"), N_("length modifier in strfmon format"), STD_C89 },
683 { 0, 0, 0, NULL, NULL, 0 }
686 static const format_flag_pair strfmon_flag_pairs[] =
693 #define T_I &integer_type_node
694 #define T89_I { STD_C89, NULL, T_I }
695 #define T_L &long_integer_type_node
696 #define T89_L { STD_C89, NULL, T_L }
697 #define T_LL &long_long_integer_type_node
698 #define T9L_LL { STD_C9L, NULL, T_LL }
699 #define TEX_LL { STD_EXT, NULL, T_LL }
700 #define T_S &short_integer_type_node
701 #define T89_S { STD_C89, NULL, T_S }
702 #define T_UI &unsigned_type_node
703 #define T89_UI { STD_C89, NULL, T_UI }
704 #define T_UL &long_unsigned_type_node
705 #define T89_UL { STD_C89, NULL, T_UL }
706 #define T_ULL &long_long_unsigned_type_node
707 #define T9L_ULL { STD_C9L, NULL, T_ULL }
708 #define TEX_ULL { STD_EXT, NULL, T_ULL }
709 #define T_US &short_unsigned_type_node
710 #define T89_US { STD_C89, NULL, T_US }
711 #define T_F &float_type_node
712 #define T89_F { STD_C89, NULL, T_F }
713 #define T99_F { STD_C99, NULL, T_F }
714 #define T_D &double_type_node
715 #define T89_D { STD_C89, NULL, T_D }
716 #define T99_D { STD_C99, NULL, T_D }
717 #define T_LD &long_double_type_node
718 #define T89_LD { STD_C89, NULL, T_LD }
719 #define T99_LD { STD_C99, NULL, T_LD }
720 #define T_C &char_type_node
721 #define T89_C { STD_C89, NULL, T_C }
722 #define T_SC &signed_char_type_node
723 #define T99_SC { STD_C99, NULL, T_SC }
724 #define T_UC &unsigned_char_type_node
725 #define T99_UC { STD_C99, NULL, T_UC }
726 #define T_V &void_type_node
727 #define T89_V { STD_C89, NULL, T_V }
728 #define T_W &wchar_type_node
729 #define T94_W { STD_C94, "wchar_t", T_W }
730 #define TEX_W { STD_EXT, "wchar_t", T_W }
731 #define T_WI &wint_type_node
732 #define T94_WI { STD_C94, "wint_t", T_WI }
733 #define TEX_WI { STD_EXT, "wint_t", T_WI }
734 #define T_ST &size_type_node
735 #define T99_ST { STD_C99, "size_t", T_ST }
736 #define T_SST &signed_size_type_node
737 #define T99_SST { STD_C99, "signed size_t", T_SST }
738 #define T_PD &ptrdiff_type_node
739 #define T99_PD { STD_C99, "ptrdiff_t", T_PD }
740 #define T_UPD &unsigned_ptrdiff_type_node
741 #define T99_UPD { STD_C99, "unsigned ptrdiff_t", T_UPD }
742 #define T_IM &intmax_type_node
743 #define T99_IM { STD_C99, "intmax_t", T_IM }
744 #define T_UIM &uintmax_type_node
745 #define T99_UIM { STD_C99, "uintmax_t", T_UIM }
747 static const format_char_info print_char_table[] =
749 /* C89 conversion specifiers. */
750 { "di", 0, STD_C89, { T89_I, T99_SC, T89_S, T89_L, T9L_LL, TEX_LL, T99_SST, T99_PD, T99_IM }, "-wp0 +'I", "i" },
751 { "oxX", 0, STD_C89, { T89_UI, T99_UC, T89_US, T89_UL, T9L_ULL, TEX_ULL, T99_ST, T99_UPD, T99_UIM }, "-wp0#", "i" },
752 { "u", 0, STD_C89, { T89_UI, T99_UC, T89_US, T89_UL, T9L_ULL, TEX_ULL, T99_ST, T99_UPD, T99_UIM }, "-wp0'I", "i" },
753 { "fgG", 0, STD_C89, { T89_D, BADLEN, BADLEN, T99_D, BADLEN, T89_LD, BADLEN, BADLEN, BADLEN }, "-wp0 +#'", "" },
754 { "eE", 0, STD_C89, { T89_D, BADLEN, BADLEN, T99_D, BADLEN, T89_LD, BADLEN, BADLEN, BADLEN }, "-wp0 +#", "" },
755 { "c", 0, STD_C89, { T89_I, BADLEN, BADLEN, T94_WI, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN }, "-w", "" },
756 { "s", 1, STD_C89, { T89_C, BADLEN, BADLEN, T94_W, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN }, "-wp", "cR" },
757 { "p", 1, STD_C89, { T89_V, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN }, "-w", "c" },
758 { "n", 1, STD_C89, { T89_I, T99_SC, T89_S, T89_L, T9L_LL, BADLEN, T99_SST, T99_PD, T99_IM }, "", "W" },
759 /* C99 conversion specifiers. */
760 { "F", 0, STD_C99, { T99_D, BADLEN, BADLEN, T99_D, BADLEN, T99_LD, BADLEN, BADLEN, BADLEN }, "-wp0 +#'", "" },
761 { "aA", 0, STD_C99, { T99_D, BADLEN, BADLEN, T99_D, BADLEN, T99_LD, BADLEN, BADLEN, BADLEN }, "-wp0 +#", "" },
762 /* X/Open conversion specifiers. */
763 { "C", 0, STD_EXT, { TEX_WI, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN }, "-w", "" },
764 { "S", 1, STD_EXT, { TEX_W, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN }, "-wp", "R" },
765 /* GNU conversion specifiers. */
766 { "m", 0, STD_EXT, { T89_V, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN }, "-wp", "" },
767 { NULL, 0, 0, NOLENGTHS, NULL, NULL }
770 static const format_char_info scan_char_table[] =
772 /* C89 conversion specifiers. */
773 { "di", 1, STD_C89, { T89_I, T99_SC, T89_S, T89_L, T9L_LL, TEX_LL, T99_SST, T99_PD, T99_IM }, "*w'I", "W" },
774 { "u", 1, STD_C89, { T89_UI, T99_UC, T89_US, T89_UL, T9L_ULL, TEX_ULL, T99_ST, T99_UPD, T99_UIM }, "*w'I", "W" },
775 { "oxX", 1, STD_C89, { T89_UI, T99_UC, T89_US, T89_UL, T9L_ULL, TEX_ULL, T99_ST, T99_UPD, T99_UIM }, "*w", "W" },
776 { "efgEG", 1, STD_C89, { T89_F, BADLEN, BADLEN, T89_D, BADLEN, T89_LD, BADLEN, BADLEN, BADLEN }, "*w'", "W" },
777 { "c", 1, STD_C89, { T89_C, BADLEN, BADLEN, T94_W, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN }, "*w", "cW" },
778 { "s", 1, STD_C89, { T89_C, BADLEN, BADLEN, T94_W, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN }, "*aw", "cW" },
779 { "[", 1, STD_C89, { T89_C, BADLEN, BADLEN, T94_W, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN }, "*aw", "cW[" },
780 { "p", 2, STD_C89, { T89_V, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN }, "*w", "W" },
781 { "n", 1, STD_C89, { T89_I, T99_SC, T89_S, T89_L, T9L_LL, BADLEN, T99_SST, T99_PD, T99_IM }, "", "W" },
782 /* C99 conversion specifiers. */
783 { "FaA", 1, STD_C99, { T99_F, BADLEN, BADLEN, T99_D, BADLEN, T99_LD, BADLEN, BADLEN, BADLEN }, "*w'", "W" },
784 /* X/Open conversion specifiers. */
785 { "C", 1, STD_EXT, { TEX_W, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN }, "*w", "W" },
786 { "S", 1, STD_EXT, { TEX_W, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN, BADLEN }, "*aw", "W" },
787 { NULL, 0, 0, NOLENGTHS, NULL, NULL }
790 static const format_char_info time_char_table[] =
792 /* C89 conversion specifiers. */
793 { "ABZab", 0, STD_C89, NOLENGTHS, "^#", "" },
794 { "cx", 0, STD_C89, NOLENGTHS, "E", "3" },
795 { "HIMSUWdmw", 0, STD_C89, NOLENGTHS, "-_0Ow", "" },
796 { "j", 0, STD_C89, NOLENGTHS, "-_0Ow", "o" },
797 { "p", 0, STD_C89, NOLENGTHS, "#", "" },
798 { "X", 0, STD_C89, NOLENGTHS, "E", "" },
799 { "y", 0, STD_C89, NOLENGTHS, "EO-_0w", "4" },
800 { "Y", 0, STD_C89, NOLENGTHS, "-_0EOw", "o" },
801 { "%", 0, STD_C89, NOLENGTHS, "", "" },
802 /* C99 conversion specifiers. */
803 { "C", 0, STD_C99, NOLENGTHS, "-_0EOw", "o" },
804 { "D", 0, STD_C99, NOLENGTHS, "", "2" },
805 { "eVu", 0, STD_C99, NOLENGTHS, "-_0Ow", "" },
806 { "FRTnrt", 0, STD_C99, NOLENGTHS, "", "" },
807 { "g", 0, STD_C99, NOLENGTHS, "O-_0w", "2o" },
808 { "G", 0, STD_C99, NOLENGTHS, "-_0Ow", "o" },
809 { "h", 0, STD_C99, NOLENGTHS, "^#", "" },
810 { "z", 0, STD_C99, NOLENGTHS, "O", "o" },
811 /* GNU conversion specifiers. */
812 { "kls", 0, STD_EXT, NOLENGTHS, "-_0Ow", "" },
813 { "P", 0, STD_EXT, NOLENGTHS, "", "" },
814 { NULL, 0, 0, NOLENGTHS, NULL, NULL }
817 static const format_char_info monetary_char_table[] =
819 { "in", 0, STD_C89, { T89_D, BADLEN, BADLEN, BADLEN, BADLEN, T89_LD, BADLEN, BADLEN, BADLEN }, "=^+(!-w#p", "" },
820 { NULL, 0, 0, NOLENGTHS, NULL, NULL }
824 /* This must be in the same order as enum format_type. */
825 static const format_kind_info format_types[] =
827 { "printf", printf_length_specs, print_char_table, " +#0-'I", NULL,
828 printf_flag_specs, printf_flag_pairs,
829 FMT_FLAG_ARG_CONVERT|FMT_FLAG_DOLLAR_MULTIPLE|FMT_FLAG_USE_DOLLAR|FMT_FLAG_EMPTY_PREC_OK,
831 &integer_type_node, &integer_type_node
833 { "scanf", scanf_length_specs, scan_char_table, "*'I", NULL,
834 scanf_flag_specs, scanf_flag_pairs,
835 FMT_FLAG_ARG_CONVERT|FMT_FLAG_SCANF_A_KLUDGE|FMT_FLAG_USE_DOLLAR|FMT_FLAG_ZERO_WIDTH_BAD|FMT_FLAG_DOLLAR_GAP_POINTER_OK,
839 { "strftime", NULL, time_char_table, "_-0^#", "EO",
840 strftime_flag_specs, strftime_flag_pairs,
841 FMT_FLAG_FANCY_PERCENT_OK, 'w', 0, 0, 0, 0,
844 { "strfmon", strfmon_length_specs, monetary_char_table, "=^+(!-", NULL,
845 strfmon_flag_specs, strfmon_flag_pairs,
846 FMT_FLAG_ARG_CONVERT, 'w', '#', 'p', 0, 'L',
852 /* Structure detailing the results of checking a format function call
853 where the format expression may be a conditional expression with
854 many leaves resulting from nested conditional expressions. */
857 /* Number of leaves of the format argument that could not be checked
858 as they were not string literals. */
859 int number_non_literal;
860 /* Number of leaves of the format argument that were null pointers or
861 string literals, but had extra format arguments. */
862 int number_extra_args;
863 /* Number of leaves of the format argument that were null pointers or
864 string literals, but had extra format arguments and used $ operand
866 int number_dollar_extra_args;
867 /* Number of leaves of the format argument that were wide string
870 /* Number of leaves of the format argument that were empty strings. */
872 /* Number of leaves of the format argument that were unterminated
874 int number_unterminated;
875 /* Number of leaves of the format argument that were not counted above. */
877 } format_check_results;
881 format_check_results *res;
882 function_format_info *info;
885 } format_check_context;
887 static void check_format_info PARAMS ((int *, function_format_info *, tree));
888 static void check_format_arg PARAMS ((void *, tree, unsigned HOST_WIDE_INT));
889 static void check_format_info_main PARAMS ((int *, format_check_results *,
890 function_format_info *,
891 const char *, int, tree,
892 unsigned HOST_WIDE_INT));
893 static void status_warning PARAMS ((int *, const char *, ...))
896 static void init_dollar_format_checking PARAMS ((int, tree));
897 static int maybe_read_dollar_number PARAMS ((int *, const char **, int,
899 const format_kind_info *));
900 static void finish_dollar_format_checking PARAMS ((int *, format_check_results *, int));
902 static const format_flag_spec *get_flag_spec PARAMS ((const format_flag_spec *,
905 static void check_format_types PARAMS ((int *, format_wanted_type *));
907 /* Decode a format type from a string, returning the type, or
908 format_type_error if not valid, in which case the caller should print an
910 static enum format_type
911 decode_format_type (s)
917 for (i = 0; i < (int) format_type_error; i++)
920 if (!strcmp (s, format_types[i].name))
922 alen = strlen (format_types[i].name);
923 if (slen == alen + 4 && s[0] == '_' && s[1] == '_'
924 && s[slen - 1] == '_' && s[slen - 2] == '_'
925 && !strncmp (s + 2, format_types[i].name, alen))
928 return ((enum format_type) i);
932 /* Check the argument list of a call to printf, scanf, etc.
933 ATTRS are the attributes on the function type.
934 PARAMS is the list of argument values. Also, if -Wmissing-format-attribute,
935 warn for calls to vprintf or vscanf in functions with no such format
936 attribute themselves. */
939 check_function_format (status, attrs, params)
946 /* See if this function has any format attributes. */
947 for (a = attrs; a; a = TREE_CHAIN (a))
949 if (is_attribute_p ("format", TREE_PURPOSE (a)))
952 function_format_info info;
953 decode_format_attr (TREE_VALUE (a), &info, 1);
954 check_format_info (status, &info, params);
955 if (warn_missing_format_attribute && info.first_arg_num == 0
956 && (format_types[info.format_type].flags
957 & (int) FMT_FLAG_ARG_CONVERT))
960 for (c = TYPE_ATTRIBUTES (TREE_TYPE (current_function_decl));
963 if (is_attribute_p ("format", TREE_PURPOSE (c))
964 && (decode_format_type (IDENTIFIER_POINTER
965 (TREE_VALUE (TREE_VALUE (c))))
966 == info.format_type))
970 /* Check if the current function has a parameter to which
971 the format attribute could be attached; if not, it
972 can't be a candidate for a format attribute, despite
973 the vprintf-like or vscanf-like call. */
975 for (args = DECL_ARGUMENTS (current_function_decl);
977 args = TREE_CHAIN (args))
979 if (TREE_CODE (TREE_TYPE (args)) == POINTER_TYPE
980 && (TYPE_MAIN_VARIANT (TREE_TYPE (TREE_TYPE (args)))
985 warning ("function might be possible candidate for `%s' format attribute",
986 format_types[info.format_type].name);
993 /* This function replaces `warning' inside the printf format checking
994 functions. If the `status' parameter is non-NULL, then it is
995 dereferenced and set to 1 whenever a warning is caught. Otherwise
996 it warns as usual by replicating the innards of the warning
997 function from diagnostic.c. */
999 status_warning VPARAMS ((int *status, const char *msgid, ...))
1001 diagnostic_info diagnostic ;
1003 VA_OPEN (ap, msgid);
1004 VA_FIXEDARG (ap, int *, status);
1005 VA_FIXEDARG (ap, const char *, msgid);
1011 /* This duplicates the warning function behavior. */
1012 diagnostic_set_info (&diagnostic, _(msgid), &ap, input_filename, lineno,
1014 report_diagnostic (&diagnostic);
1020 /* Variables used by the checking of $ operand number formats. */
1021 static char *dollar_arguments_used = NULL;
1022 static char *dollar_arguments_pointer_p = NULL;
1023 static int dollar_arguments_alloc = 0;
1024 static int dollar_arguments_count;
1025 static int dollar_first_arg_num;
1026 static int dollar_max_arg_used;
1027 static int dollar_format_warned;
1029 /* Initialize the checking for a format string that may contain $
1030 parameter number specifications; we will need to keep track of whether
1031 each parameter has been used. FIRST_ARG_NUM is the number of the first
1032 argument that is a parameter to the format, or 0 for a vprintf-style
1033 function; PARAMS is the list of arguments starting at this argument. */
1036 init_dollar_format_checking (first_arg_num, params)
1040 tree oparams = params;
1042 dollar_first_arg_num = first_arg_num;
1043 dollar_arguments_count = 0;
1044 dollar_max_arg_used = 0;
1045 dollar_format_warned = 0;
1046 if (first_arg_num > 0)
1050 dollar_arguments_count++;
1051 params = TREE_CHAIN (params);
1054 if (dollar_arguments_alloc < dollar_arguments_count)
1056 if (dollar_arguments_used)
1057 free (dollar_arguments_used);
1058 if (dollar_arguments_pointer_p)
1059 free (dollar_arguments_pointer_p);
1060 dollar_arguments_alloc = dollar_arguments_count;
1061 dollar_arguments_used = xmalloc (dollar_arguments_alloc);
1062 dollar_arguments_pointer_p = xmalloc (dollar_arguments_alloc);
1064 if (dollar_arguments_alloc)
1066 memset (dollar_arguments_used, 0, dollar_arguments_alloc);
1067 if (first_arg_num > 0)
1073 dollar_arguments_pointer_p[i] = (TREE_CODE (TREE_TYPE (TREE_VALUE (params)))
1075 params = TREE_CHAIN (params);
1083 /* Look for a decimal number followed by a $ in *FORMAT. If DOLLAR_NEEDED
1084 is set, it is an error if one is not found; otherwise, it is OK. If
1085 such a number is found, check whether it is within range and mark that
1086 numbered operand as being used for later checking. Returns the operand
1087 number if found and within range, zero if no such number was found and
1088 this is OK, or -1 on error. PARAMS points to the first operand of the
1089 format; PARAM_PTR is made to point to the parameter referred to. If
1090 a $ format is found, *FORMAT is updated to point just after it. */
1093 maybe_read_dollar_number (status, format, dollar_needed, params, param_ptr,
1096 const char **format;
1100 const format_kind_info *fki;
1104 const char *fcp = *format;
1105 if (! ISDIGIT (*fcp))
1109 status_warning (status, "missing $ operand number in format");
1117 while (ISDIGIT (*fcp))
1120 nargnum = 10 * argnum + (*fcp - '0');
1121 if (nargnum < 0 || nargnum / 10 != argnum)
1130 status_warning (status, "missing $ operand number in format");
1137 if (pedantic && !dollar_format_warned)
1139 status_warning (status,
1140 "%s does not support %%n$ operand number formats",
1141 C_STD_NAME (STD_EXT));
1142 dollar_format_warned = 1;
1144 if (overflow_flag || argnum == 0
1145 || (dollar_first_arg_num && argnum > dollar_arguments_count))
1147 status_warning (status, "operand number out of range in format");
1150 if (argnum > dollar_max_arg_used)
1151 dollar_max_arg_used = argnum;
1152 /* For vprintf-style functions we may need to allocate more memory to
1153 track which arguments are used. */
1154 while (dollar_arguments_alloc < dollar_max_arg_used)
1157 nalloc = 2 * dollar_arguments_alloc + 16;
1158 dollar_arguments_used = xrealloc (dollar_arguments_used, nalloc);
1159 dollar_arguments_pointer_p = xrealloc (dollar_arguments_pointer_p,
1161 memset (dollar_arguments_used + dollar_arguments_alloc, 0,
1162 nalloc - dollar_arguments_alloc);
1163 dollar_arguments_alloc = nalloc;
1165 if (!(fki->flags & (int) FMT_FLAG_DOLLAR_MULTIPLE)
1166 && dollar_arguments_used[argnum - 1] == 1)
1168 dollar_arguments_used[argnum - 1] = 2;
1169 status_warning (status,
1170 "format argument %d used more than once in %s format",
1174 dollar_arguments_used[argnum - 1] = 1;
1175 if (dollar_first_arg_num)
1178 *param_ptr = params;
1179 for (i = 1; i < argnum && *param_ptr != 0; i++)
1180 *param_ptr = TREE_CHAIN (*param_ptr);
1182 if (*param_ptr == 0)
1184 /* This case shouldn't be caught here. */
1194 /* Finish the checking for a format string that used $ operand number formats
1195 instead of non-$ formats. We check for unused operands before used ones
1196 (a serious error, since the implementation of the format function
1197 can't know what types to pass to va_arg to find the later arguments).
1198 and for unused operands at the end of the format (if we know how many
1199 arguments the format had, so not for vprintf). If there were operand
1200 numbers out of range on a non-vprintf-style format, we won't have reached
1201 here. If POINTER_GAP_OK, unused arguments are OK if all arguments are
1205 finish_dollar_format_checking (status, res, pointer_gap_ok)
1207 format_check_results *res;
1211 bool found_pointer_gap = false;
1212 for (i = 0; i < dollar_max_arg_used; i++)
1214 if (!dollar_arguments_used[i])
1216 if (pointer_gap_ok && (dollar_first_arg_num == 0
1217 || dollar_arguments_pointer_p[i]))
1218 found_pointer_gap = true;
1220 status_warning (status, "format argument %d unused before used argument %d in $-style format",
1221 i + 1, dollar_max_arg_used);
1224 if (found_pointer_gap
1225 || (dollar_first_arg_num
1226 && dollar_max_arg_used < dollar_arguments_count))
1228 res->number_other--;
1229 res->number_dollar_extra_args++;
1234 /* Retrieve the specification for a format flag. SPEC contains the
1235 specifications for format flags for the applicable kind of format.
1236 FLAG is the flag in question. If PREDICATES is NULL, the basic
1237 spec for that flag must be retrieved and this function aborts if
1238 it cannot be found. If PREDICATES is not NULL, it is a string listing
1239 possible predicates for the spec entry; if an entry predicated on any
1240 of these is found, it is returned, otherwise NULL is returned. */
1242 static const format_flag_spec *
1243 get_flag_spec (spec, flag, predicates)
1244 const format_flag_spec *spec;
1246 const char *predicates;
1249 for (i = 0; spec[i].flag_char != 0; i++)
1251 if (spec[i].flag_char != flag)
1253 if (predicates != NULL)
1255 if (spec[i].predicate != 0
1256 && strchr (predicates, spec[i].predicate) != 0)
1259 else if (spec[i].predicate == 0)
1262 if (predicates == NULL)
1269 /* Check the argument list of a call to printf, scanf, etc.
1270 INFO points to the function_format_info structure.
1271 PARAMS is the list of argument values. */
1274 check_format_info (status, info, params)
1276 function_format_info *info;
1279 format_check_context format_ctx;
1280 unsigned HOST_WIDE_INT arg_num;
1282 format_check_results res;
1283 /* Skip to format argument. If the argument isn't available, there's
1284 no work for us to do; prototype checking will catch the problem. */
1285 for (arg_num = 1; ; ++arg_num)
1289 if (arg_num == info->format_num)
1291 params = TREE_CHAIN (params);
1293 format_tree = TREE_VALUE (params);
1294 params = TREE_CHAIN (params);
1295 if (format_tree == 0)
1298 res.number_non_literal = 0;
1299 res.number_extra_args = 0;
1300 res.number_dollar_extra_args = 0;
1301 res.number_wide = 0;
1302 res.number_empty = 0;
1303 res.number_unterminated = 0;
1304 res.number_other = 0;
1306 format_ctx.res = &res;
1307 format_ctx.info = info;
1308 format_ctx.params = params;
1309 format_ctx.status = status;
1311 check_function_arguments_recurse (check_format_arg, &format_ctx,
1312 format_tree, arg_num);
1314 if (res.number_non_literal > 0)
1316 /* Functions taking a va_list normally pass a non-literal format
1317 string. These functions typically are declared with
1318 first_arg_num == 0, so avoid warning in those cases. */
1319 if (!(format_types[info->format_type].flags & (int) FMT_FLAG_ARG_CONVERT))
1321 /* For strftime-like formats, warn for not checking the format
1322 string; but there are no arguments to check. */
1323 if (warn_format_nonliteral)
1324 status_warning (status, "format not a string literal, format string not checked");
1326 else if (info->first_arg_num != 0)
1328 /* If there are no arguments for the format at all, we may have
1329 printf (foo) which is likely to be a security hole. */
1330 while (arg_num + 1 < info->first_arg_num)
1334 params = TREE_CHAIN (params);
1337 if (params == 0 && (warn_format_nonliteral || warn_format_security))
1338 status_warning (status, "format not a string literal and no format arguments");
1339 else if (warn_format_nonliteral)
1340 status_warning (status, "format not a string literal, argument types not checked");
1344 /* If there were extra arguments to the format, normally warn. However,
1345 the standard does say extra arguments are ignored, so in the specific
1346 case where we have multiple leaves (conditional expressions or
1347 ngettext) allow extra arguments if at least one leaf didn't have extra
1348 arguments, but was otherwise OK (either non-literal or checked OK).
1349 If the format is an empty string, this should be counted similarly to the
1350 case of extra format arguments. */
1351 if (res.number_extra_args > 0 && res.number_non_literal == 0
1352 && res.number_other == 0 && warn_format_extra_args)
1353 status_warning (status, "too many arguments for format");
1354 if (res.number_dollar_extra_args > 0 && res.number_non_literal == 0
1355 && res.number_other == 0 && warn_format_extra_args)
1356 status_warning (status, "unused arguments in $-style format");
1357 if (res.number_empty > 0 && res.number_non_literal == 0
1358 && res.number_other == 0 && warn_format_zero_length)
1359 status_warning (status, "zero-length %s format string",
1360 format_types[info->format_type].name);
1362 if (res.number_wide > 0)
1363 status_warning (status, "format is a wide character string");
1365 if (res.number_unterminated > 0)
1366 status_warning (status, "unterminated format string");
1369 /* Callback from check_function_arguments_recurse to check a
1370 format string. FORMAT_TREE is the format parameter. ARG_NUM
1371 is the number of the format argument. CTX points to a
1372 format_check_context. */
1375 check_format_arg (ctx, format_tree, arg_num)
1378 unsigned HOST_WIDE_INT arg_num;
1380 format_check_context *format_ctx = ctx;
1381 format_check_results *res = format_ctx->res;
1382 function_format_info *info = format_ctx->info;
1383 tree params = format_ctx->params;
1384 int *status = format_ctx->status;
1387 HOST_WIDE_INT offset;
1388 const char *format_chars;
1389 tree array_size = 0;
1392 if (integer_zerop (format_tree))
1394 /* Skip to first argument to check, so we can see if this format
1395 has any arguments (it shouldn't). */
1396 while (arg_num + 1 < info->first_arg_num)
1400 params = TREE_CHAIN (params);
1405 res->number_other++;
1407 res->number_extra_args++;
1413 if (TREE_CODE (format_tree) == PLUS_EXPR)
1417 arg0 = TREE_OPERAND (format_tree, 0);
1418 arg1 = TREE_OPERAND (format_tree, 1);
1421 if (TREE_CODE (arg1) == INTEGER_CST)
1423 else if (TREE_CODE (arg0) == INTEGER_CST)
1430 res->number_non_literal++;
1433 if (!host_integerp (arg1, 0)
1434 || (offset = tree_low_cst (arg1, 0)) < 0)
1436 res->number_non_literal++;
1440 if (TREE_CODE (format_tree) != ADDR_EXPR)
1442 res->number_non_literal++;
1445 format_tree = TREE_OPERAND (format_tree, 0);
1446 if (TREE_CODE (format_tree) == VAR_DECL
1447 && TREE_CODE (TREE_TYPE (format_tree)) == ARRAY_TYPE
1448 && (array_init = decl_constant_value (format_tree)) != format_tree
1449 && TREE_CODE (array_init) == STRING_CST)
1451 /* Extract the string constant initializer. Note that this may include
1452 a trailing NUL character that is not in the array (e.g.
1453 const char a[3] = "foo";). */
1454 array_size = DECL_SIZE_UNIT (format_tree);
1455 format_tree = array_init;
1457 if (TREE_CODE (format_tree) != STRING_CST)
1459 res->number_non_literal++;
1462 if (TYPE_MAIN_VARIANT (TREE_TYPE (TREE_TYPE (format_tree))) != char_type_node)
1467 format_chars = TREE_STRING_POINTER (format_tree);
1468 format_length = TREE_STRING_LENGTH (format_tree);
1469 if (array_size != 0)
1471 /* Variable length arrays can't be initialized. */
1472 if (TREE_CODE (array_size) != INTEGER_CST)
1474 if (host_integerp (array_size, 0))
1476 HOST_WIDE_INT array_size_value = TREE_INT_CST_LOW (array_size);
1477 if (array_size_value > 0
1478 && array_size_value == (int) array_size_value
1479 && format_length > array_size_value)
1480 format_length = array_size_value;
1485 if (offset >= format_length)
1487 res->number_non_literal++;
1490 format_chars += offset;
1491 format_length -= offset;
1493 if (format_length < 1)
1495 res->number_unterminated++;
1498 if (format_length == 1)
1500 res->number_empty++;
1503 if (format_chars[--format_length] != 0)
1505 res->number_unterminated++;
1509 /* Skip to first argument to check. */
1510 while (arg_num + 1 < info->first_arg_num)
1514 params = TREE_CHAIN (params);
1517 /* Provisionally increment res->number_other; check_format_info_main
1518 will decrement it if it finds there are extra arguments, but this way
1519 need not adjust it for every return. */
1520 res->number_other++;
1521 check_format_info_main (status, res, info, format_chars, format_length,
1526 /* Do the main part of checking a call to a format function. FORMAT_CHARS
1527 is the NUL-terminated format string (which at this point may contain
1528 internal NUL characters); FORMAT_LENGTH is its length (excluding the
1529 terminating NUL character). ARG_NUM is one less than the number of
1530 the first format argument to check; PARAMS points to that format
1531 argument in the list of arguments. */
1534 check_format_info_main (status, res, info, format_chars, format_length,
1537 format_check_results *res;
1538 function_format_info *info;
1539 const char *format_chars;
1542 unsigned HOST_WIDE_INT arg_num;
1544 const char *orig_format_chars = format_chars;
1545 tree first_fillin_param = params;
1547 const format_kind_info *fki = &format_types[info->format_type];
1548 const format_flag_spec *flag_specs = fki->flag_specs;
1549 const format_flag_pair *bad_flag_pairs = fki->bad_flag_pairs;
1551 /* -1 if no conversions taking an operand have been found; 0 if one has
1552 and it didn't use $; 1 if $ formats are in use. */
1553 int has_operand_number = -1;
1555 init_dollar_format_checking (info->first_arg_num, first_fillin_param);
1560 int suppressed = FALSE;
1561 const char *length_chars = NULL;
1562 enum format_lengths length_chars_val = FMT_LEN_none;
1563 enum format_std_version length_chars_std = STD_C89;
1567 int main_arg_num = 0;
1568 tree main_arg_params = 0;
1569 enum format_std_version wanted_type_std;
1570 const char *wanted_type_name;
1571 format_wanted_type width_wanted_type;
1572 format_wanted_type precision_wanted_type;
1573 format_wanted_type main_wanted_type;
1574 format_wanted_type *first_wanted_type = NULL;
1575 format_wanted_type *last_wanted_type = NULL;
1576 const format_length_info *fli = NULL;
1577 const format_char_info *fci = NULL;
1578 char flag_chars[256];
1580 if (*format_chars == 0)
1582 if (format_chars - orig_format_chars != format_length)
1583 status_warning (status, "embedded `\\0' in format");
1584 if (info->first_arg_num != 0 && params != 0
1585 && has_operand_number <= 0)
1587 res->number_other--;
1588 res->number_extra_args++;
1590 if (has_operand_number > 0)
1591 finish_dollar_format_checking (status, res, fki->flags & (int) FMT_FLAG_DOLLAR_GAP_POINTER_OK);
1594 if (*format_chars++ != '%')
1596 if (*format_chars == 0)
1598 status_warning (status, "spurious trailing `%%' in format");
1601 if (*format_chars == '%')
1608 if ((fki->flags & (int) FMT_FLAG_USE_DOLLAR) && has_operand_number != 0)
1610 /* Possibly read a $ operand number at the start of the format.
1611 If one was previously used, one is required here. If one
1612 is not used here, we can't immediately conclude this is a
1613 format without them, since it could be printf %m or scanf %*. */
1615 opnum = maybe_read_dollar_number (status, &format_chars, 0,
1617 &main_arg_params, fki);
1622 has_operand_number = 1;
1623 main_arg_num = opnum + info->first_arg_num - 1;
1627 /* Read any format flags, but do not yet validate them beyond removing
1628 duplicates, since in general validation depends on the rest of
1630 while (*format_chars != 0
1631 && strchr (fki->flag_chars, *format_chars) != 0)
1633 const format_flag_spec *s = get_flag_spec (flag_specs,
1634 *format_chars, NULL);
1635 if (strchr (flag_chars, *format_chars) != 0)
1637 status_warning (status, "repeated %s in format", _(s->name));
1641 i = strlen (flag_chars);
1642 flag_chars[i++] = *format_chars;
1645 if (s->skip_next_char)
1648 if (*format_chars == 0)
1650 status_warning (status, "missing fill character at end of strfmon format");
1657 /* Read any format width, possibly * or *m$. */
1658 if (fki->width_char != 0)
1660 if (fki->width_type != NULL && *format_chars == '*')
1662 i = strlen (flag_chars);
1663 flag_chars[i++] = fki->width_char;
1665 /* "...a field width...may be indicated by an asterisk.
1666 In this case, an int argument supplies the field width..." */
1668 if (has_operand_number != 0)
1671 opnum = maybe_read_dollar_number (status, &format_chars,
1672 has_operand_number == 1,
1679 has_operand_number = 1;
1680 arg_num = opnum + info->first_arg_num - 1;
1683 has_operand_number = 0;
1685 if (info->first_arg_num != 0)
1689 status_warning (status, "too few arguments for format");
1692 cur_param = TREE_VALUE (params);
1693 if (has_operand_number <= 0)
1695 params = TREE_CHAIN (params);
1698 width_wanted_type.wanted_type = *fki->width_type;
1699 width_wanted_type.wanted_type_name = NULL;
1700 width_wanted_type.pointer_count = 0;
1701 width_wanted_type.char_lenient_flag = 0;
1702 width_wanted_type.writing_in_flag = 0;
1703 width_wanted_type.reading_from_flag = 0;
1704 width_wanted_type.name = _("field width");
1705 width_wanted_type.param = cur_param;
1706 width_wanted_type.arg_num = arg_num;
1707 width_wanted_type.next = NULL;
1708 if (last_wanted_type != 0)
1709 last_wanted_type->next = &width_wanted_type;
1710 if (first_wanted_type == 0)
1711 first_wanted_type = &width_wanted_type;
1712 last_wanted_type = &width_wanted_type;
1717 /* Possibly read a numeric width. If the width is zero,
1718 we complain if appropriate. */
1719 int non_zero_width_char = FALSE;
1720 int found_width = FALSE;
1721 while (ISDIGIT (*format_chars))
1724 if (*format_chars != '0')
1725 non_zero_width_char = TRUE;
1728 if (found_width && !non_zero_width_char &&
1729 (fki->flags & (int) FMT_FLAG_ZERO_WIDTH_BAD))
1730 status_warning (status, "zero width in %s format",
1734 i = strlen (flag_chars);
1735 flag_chars[i++] = fki->width_char;
1741 /* Read any format left precision (must be a number, not *). */
1742 if (fki->left_precision_char != 0 && *format_chars == '#')
1745 i = strlen (flag_chars);
1746 flag_chars[i++] = fki->left_precision_char;
1748 if (!ISDIGIT (*format_chars))
1749 status_warning (status, "empty left precision in %s format",
1751 while (ISDIGIT (*format_chars))
1755 /* Read any format precision, possibly * or *m$. */
1756 if (fki->precision_char != 0 && *format_chars == '.')
1759 i = strlen (flag_chars);
1760 flag_chars[i++] = fki->precision_char;
1762 if (fki->precision_type != NULL && *format_chars == '*')
1764 /* "...a...precision...may be indicated by an asterisk.
1765 In this case, an int argument supplies the...precision." */
1767 if (has_operand_number != 0)
1770 opnum = maybe_read_dollar_number (status, &format_chars,
1771 has_operand_number == 1,
1778 has_operand_number = 1;
1779 arg_num = opnum + info->first_arg_num - 1;
1782 has_operand_number = 0;
1784 if (info->first_arg_num != 0)
1788 status_warning (status, "too few arguments for format");
1791 cur_param = TREE_VALUE (params);
1792 if (has_operand_number <= 0)
1794 params = TREE_CHAIN (params);
1797 precision_wanted_type.wanted_type = *fki->precision_type;
1798 precision_wanted_type.wanted_type_name = NULL;
1799 precision_wanted_type.pointer_count = 0;
1800 precision_wanted_type.char_lenient_flag = 0;
1801 precision_wanted_type.writing_in_flag = 0;
1802 precision_wanted_type.reading_from_flag = 0;
1803 precision_wanted_type.name = _("field precision");
1804 precision_wanted_type.param = cur_param;
1805 precision_wanted_type.arg_num = arg_num;
1806 precision_wanted_type.next = NULL;
1807 if (last_wanted_type != 0)
1808 last_wanted_type->next = &precision_wanted_type;
1809 if (first_wanted_type == 0)
1810 first_wanted_type = &precision_wanted_type;
1811 last_wanted_type = &precision_wanted_type;
1816 if (!(fki->flags & (int) FMT_FLAG_EMPTY_PREC_OK)
1817 && !ISDIGIT (*format_chars))
1818 status_warning (status, "empty precision in %s format",
1820 while (ISDIGIT (*format_chars))
1825 /* Read any length modifier, if this kind of format has them. */
1826 fli = fki->length_char_specs;
1827 length_chars = NULL;
1828 length_chars_val = FMT_LEN_none;
1829 length_chars_std = STD_C89;
1832 while (fli->name != 0 && fli->name[0] != *format_chars)
1837 if (fli->double_name != 0 && fli->name[0] == *format_chars)
1840 length_chars = fli->double_name;
1841 length_chars_val = fli->double_index;
1842 length_chars_std = fli->double_std;
1846 length_chars = fli->name;
1847 length_chars_val = fli->index;
1848 length_chars_std = fli->std;
1850 i = strlen (flag_chars);
1851 flag_chars[i++] = fki->length_code_char;
1856 /* Warn if the length modifier is non-standard. */
1857 if (ADJ_STD (length_chars_std) > C_STD_VER)
1858 status_warning (status, "%s does not support the `%s' %s length modifier",
1859 C_STD_NAME (length_chars_std), length_chars,
1864 /* Read any modifier (strftime E/O). */
1865 if (fki->modifier_chars != NULL)
1867 while (*format_chars != 0
1868 && strchr (fki->modifier_chars, *format_chars) != 0)
1870 if (strchr (flag_chars, *format_chars) != 0)
1872 const format_flag_spec *s = get_flag_spec (flag_specs,
1873 *format_chars, NULL);
1874 status_warning (status, "repeated %s in format", _(s->name));
1878 i = strlen (flag_chars);
1879 flag_chars[i++] = *format_chars;
1886 /* Handle the scanf allocation kludge. */
1887 if (fki->flags & (int) FMT_FLAG_SCANF_A_KLUDGE)
1889 if (*format_chars == 'a' && !flag_isoc99)
1891 if (format_chars[1] == 's' || format_chars[1] == 'S'
1892 || format_chars[1] == '[')
1894 /* `a' is used as a flag. */
1895 i = strlen (flag_chars);
1896 flag_chars[i++] = 'a';
1903 format_char = *format_chars;
1904 if (format_char == 0
1905 || (!(fki->flags & (int) FMT_FLAG_FANCY_PERCENT_OK)
1906 && format_char == '%'))
1908 status_warning (status, "conversion lacks type at end of format");
1912 fci = fki->conversion_specs;
1913 while (fci->format_chars != 0
1914 && strchr (fci->format_chars, format_char) == 0)
1916 if (fci->format_chars == 0)
1918 if (ISGRAPH(format_char))
1919 status_warning (status, "unknown conversion type character `%c' in format",
1922 status_warning (status, "unknown conversion type character 0x%x in format",
1928 if (ADJ_STD (fci->std) > C_STD_VER)
1929 status_warning (status, "%s does not support the `%%%c' %s format",
1930 C_STD_NAME (fci->std), format_char, fki->name);
1933 /* Validate the individual flags used, removing any that are invalid. */
1936 for (i = 0; flag_chars[i] != 0; i++)
1938 const format_flag_spec *s = get_flag_spec (flag_specs,
1939 flag_chars[i], NULL);
1940 flag_chars[i - d] = flag_chars[i];
1941 if (flag_chars[i] == fki->length_code_char)
1943 if (strchr (fci->flag_chars, flag_chars[i]) == 0)
1945 status_warning (status, "%s used with `%%%c' %s format",
1946 _(s->name), format_char, fki->name);
1952 const format_flag_spec *t;
1953 if (ADJ_STD (s->std) > C_STD_VER)
1954 status_warning (status, "%s does not support %s",
1955 C_STD_NAME (s->std), _(s->long_name));
1956 t = get_flag_spec (flag_specs, flag_chars[i], fci->flags2);
1957 if (t != NULL && ADJ_STD (t->std) > ADJ_STD (s->std))
1959 const char *long_name = (t->long_name != NULL
1962 if (ADJ_STD (t->std) > C_STD_VER)
1963 status_warning (status, "%s does not support %s with the `%%%c' %s format",
1964 C_STD_NAME (t->std), _(long_name),
1965 format_char, fki->name);
1969 flag_chars[i - d] = 0;
1972 if ((fki->flags & (int) FMT_FLAG_SCANF_A_KLUDGE)
1973 && strchr (flag_chars, 'a') != 0)
1976 if (fki->suppression_char
1977 && strchr (flag_chars, fki->suppression_char) != 0)
1980 /* Validate the pairs of flags used. */
1981 for (i = 0; bad_flag_pairs[i].flag_char1 != 0; i++)
1983 const format_flag_spec *s, *t;
1984 if (strchr (flag_chars, bad_flag_pairs[i].flag_char1) == 0)
1986 if (strchr (flag_chars, bad_flag_pairs[i].flag_char2) == 0)
1988 if (bad_flag_pairs[i].predicate != 0
1989 && strchr (fci->flags2, bad_flag_pairs[i].predicate) == 0)
1991 s = get_flag_spec (flag_specs, bad_flag_pairs[i].flag_char1, NULL);
1992 t = get_flag_spec (flag_specs, bad_flag_pairs[i].flag_char2, NULL);
1993 if (bad_flag_pairs[i].ignored)
1995 if (bad_flag_pairs[i].predicate != 0)
1996 status_warning (status, "%s ignored with %s and `%%%c' %s format",
1997 _(s->name), _(t->name), format_char,
2000 status_warning (status, "%s ignored with %s in %s format",
2001 _(s->name), _(t->name), fki->name);
2005 if (bad_flag_pairs[i].predicate != 0)
2006 status_warning (status, "use of %s and %s together with `%%%c' %s format",
2007 _(s->name), _(t->name), format_char,
2010 status_warning (status, "use of %s and %s together in %s format",
2011 _(s->name), _(t->name), fki->name);
2015 /* Give Y2K warnings. */
2016 if (warn_format_y2k)
2019 if (strchr (fci->flags2, '4') != 0)
2020 if (strchr (flag_chars, 'E') != 0)
2024 else if (strchr (fci->flags2, '3') != 0)
2026 else if (strchr (fci->flags2, '2') != 0)
2029 status_warning (status, "`%%%c' yields only last 2 digits of year in some locales",
2031 else if (y2k_level == 2)
2032 status_warning (status, "`%%%c' yields only last 2 digits of year", format_char);
2035 if (strchr (fci->flags2, '[') != 0)
2037 /* Skip over scan set, in case it happens to have '%' in it. */
2038 if (*format_chars == '^')
2040 /* Find closing bracket; if one is hit immediately, then
2041 it's part of the scan set rather than a terminator. */
2042 if (*format_chars == ']')
2044 while (*format_chars && *format_chars != ']')
2046 if (*format_chars != ']')
2047 /* The end of the format string was reached. */
2048 status_warning (status, "no closing `]' for `%%[' format");
2052 wanted_type_name = 0;
2053 if (fki->flags & (int) FMT_FLAG_ARG_CONVERT)
2055 wanted_type = (fci->types[length_chars_val].type
2056 ? *fci->types[length_chars_val].type : 0);
2057 wanted_type_name = fci->types[length_chars_val].name;
2058 wanted_type_std = fci->types[length_chars_val].std;
2059 if (wanted_type == 0)
2061 status_warning (status, "use of `%s' length modifier with `%c' type character",
2062 length_chars, format_char);
2063 /* Heuristic: skip one argument when an invalid length/type
2064 combination is encountered. */
2068 status_warning (status, "too few arguments for format");
2071 params = TREE_CHAIN (params);
2075 /* Warn if non-standard, provided it is more non-standard
2076 than the length and type characters that may already
2077 have been warned for. */
2078 && ADJ_STD (wanted_type_std) > ADJ_STD (length_chars_std)
2079 && ADJ_STD (wanted_type_std) > ADJ_STD (fci->std))
2081 if (ADJ_STD (wanted_type_std) > C_STD_VER)
2082 status_warning (status, "%s does not support the `%%%s%c' %s format",
2083 C_STD_NAME (wanted_type_std), length_chars,
2084 format_char, fki->name);
2088 /* Finally. . .check type of argument against desired type! */
2089 if (info->first_arg_num == 0)
2091 if ((fci->pointer_count == 0 && wanted_type == void_type_node)
2094 if (main_arg_num != 0)
2097 status_warning (status, "operand number specified with suppressed assignment");
2099 status_warning (status, "operand number specified for format taking no argument");
2104 if (main_arg_num != 0)
2106 arg_num = main_arg_num;
2107 params = main_arg_params;
2112 if (has_operand_number > 0)
2114 status_warning (status, "missing $ operand number in format");
2118 has_operand_number = 0;
2121 status_warning (status, "too few arguments for format");
2125 cur_param = TREE_VALUE (params);
2126 params = TREE_CHAIN (params);
2127 main_wanted_type.wanted_type = wanted_type;
2128 main_wanted_type.wanted_type_name = wanted_type_name;
2129 main_wanted_type.pointer_count = fci->pointer_count + aflag;
2130 main_wanted_type.char_lenient_flag = 0;
2131 if (strchr (fci->flags2, 'c') != 0)
2132 main_wanted_type.char_lenient_flag = 1;
2133 main_wanted_type.writing_in_flag = 0;
2134 main_wanted_type.reading_from_flag = 0;
2136 main_wanted_type.writing_in_flag = 1;
2139 if (strchr (fci->flags2, 'W') != 0)
2140 main_wanted_type.writing_in_flag = 1;
2141 if (strchr (fci->flags2, 'R') != 0)
2142 main_wanted_type.reading_from_flag = 1;
2144 main_wanted_type.name = NULL;
2145 main_wanted_type.param = cur_param;
2146 main_wanted_type.arg_num = arg_num;
2147 main_wanted_type.next = NULL;
2148 if (last_wanted_type != 0)
2149 last_wanted_type->next = &main_wanted_type;
2150 if (first_wanted_type == 0)
2151 first_wanted_type = &main_wanted_type;
2152 last_wanted_type = &main_wanted_type;
2155 if (first_wanted_type != 0)
2156 check_format_types (status, first_wanted_type);
2162 /* Check the argument types from a single format conversion (possibly
2163 including width and precision arguments). */
2165 check_format_types (status, types)
2167 format_wanted_type *types;
2169 for (; types != 0; types = types->next)
2178 cur_param = types->param;
2179 cur_type = TREE_TYPE (cur_param);
2180 if (cur_type == error_mark_node)
2183 wanted_type = types->wanted_type;
2184 arg_num = types->arg_num;
2186 /* The following should not occur here. */
2187 if (wanted_type == 0)
2189 if (wanted_type == void_type_node && types->pointer_count == 0)
2192 if (types->pointer_count == 0)
2193 wanted_type = (*lang_hooks.types.type_promotes_to) (wanted_type);
2195 STRIP_NOPS (cur_param);
2197 /* Check the types of any additional pointer arguments
2198 that precede the "real" argument. */
2199 for (i = 0; i < types->pointer_count; ++i)
2201 if (TREE_CODE (cur_type) == POINTER_TYPE)
2203 cur_type = TREE_TYPE (cur_type);
2204 if (cur_type == error_mark_node)
2207 /* Check for writing through a NULL pointer. */
2208 if (types->writing_in_flag
2211 && integer_zerop (cur_param))
2212 status_warning (status,
2213 "writing through null pointer (arg %d)",
2216 /* Check for reading through a NULL pointer. */
2217 if (types->reading_from_flag
2220 && integer_zerop (cur_param))
2221 status_warning (status,
2222 "reading through null pointer (arg %d)",
2225 if (cur_param != 0 && TREE_CODE (cur_param) == ADDR_EXPR)
2226 cur_param = TREE_OPERAND (cur_param, 0);
2230 /* See if this is an attempt to write into a const type with
2231 scanf or with printf "%n". Note: the writing in happens
2232 at the first indirection only, if for example
2233 void * const * is passed to scanf %p; passing
2234 const void ** is simply passing an incompatible type. */
2235 if (types->writing_in_flag
2237 && (TYPE_READONLY (cur_type)
2239 && (TREE_CODE_CLASS (TREE_CODE (cur_param)) == 'c'
2240 || (DECL_P (cur_param)
2241 && TREE_READONLY (cur_param))))))
2242 status_warning (status, "writing into constant object (arg %d)", arg_num);
2244 /* If there are extra type qualifiers beyond the first
2245 indirection, then this makes the types technically
2249 && (TYPE_READONLY (cur_type)
2250 || TYPE_VOLATILE (cur_type)
2251 || TYPE_RESTRICT (cur_type)))
2252 status_warning (status, "extra type qualifiers in format argument (arg %d)",
2258 if (types->pointer_count == 1)
2259 status_warning (status, "format argument is not a pointer (arg %d)", arg_num);
2261 status_warning (status, "format argument is not a pointer to a pointer (arg %d)", arg_num);
2266 if (i < types->pointer_count)
2269 orig_cur_type = cur_type;
2270 cur_type = TYPE_MAIN_VARIANT (cur_type);
2272 /* Check whether the argument type is a character type. This leniency
2273 only applies to certain formats, flagged with 'c'.
2275 if (types->char_lenient_flag)
2276 char_type_flag = (cur_type == char_type_node
2277 || cur_type == signed_char_type_node
2278 || cur_type == unsigned_char_type_node);
2280 /* Check the type of the "real" argument, if there's a type we want. */
2281 if (wanted_type == cur_type)
2283 /* If we want `void *', allow any pointer type.
2284 (Anything else would already have got a warning.)
2285 With -pedantic, only allow pointers to void and to character
2287 if (wanted_type == void_type_node
2288 && (!pedantic || (i == 1 && char_type_flag)))
2290 /* Don't warn about differences merely in signedness, unless
2291 -pedantic. With -pedantic, warn if the type is a pointer
2292 target and not a character type, and for character types at
2293 a second level of indirection. */
2294 if (TREE_CODE (wanted_type) == INTEGER_TYPE
2295 && TREE_CODE (cur_type) == INTEGER_TYPE
2296 && (! pedantic || i == 0 || (i == 1 && char_type_flag))
2297 && (TREE_UNSIGNED (wanted_type)
2298 ? wanted_type == c_common_unsigned_type (cur_type)
2299 : wanted_type == c_common_signed_type (cur_type)))
2301 /* Likewise, "signed char", "unsigned char" and "char" are
2302 equivalent but the above test won't consider them equivalent. */
2303 if (wanted_type == char_type_node
2304 && (! pedantic || i < 2)
2307 /* Now we have a type mismatch. */
2312 this = IDENTIFIER_POINTER (DECL_NAME (TYPE_NAME (wanted_type)));
2314 if (TYPE_NAME (orig_cur_type) != 0
2315 && TREE_CODE (orig_cur_type) != INTEGER_TYPE
2316 && !(TREE_CODE (orig_cur_type) == POINTER_TYPE
2317 && TREE_CODE (TREE_TYPE (orig_cur_type)) == INTEGER_TYPE))
2319 if (TREE_CODE (TYPE_NAME (orig_cur_type)) == TYPE_DECL
2320 && DECL_NAME (TYPE_NAME (orig_cur_type)) != 0)
2321 that = IDENTIFIER_POINTER (DECL_NAME (TYPE_NAME (orig_cur_type)));
2323 that = IDENTIFIER_POINTER (TYPE_NAME (orig_cur_type));
2326 /* A nameless type can't possibly match what the format wants.
2327 So there will be a warning for it.
2328 Make up a string to describe vaguely what it is. */
2331 if (TREE_CODE (orig_cur_type) == POINTER_TYPE)
2332 that = _("pointer");
2334 that = _("different type");
2337 /* Make the warning better in case of mismatch of int vs long. */
2338 if (TREE_CODE (orig_cur_type) == INTEGER_TYPE
2339 && TREE_CODE (wanted_type) == INTEGER_TYPE
2340 && TYPE_PRECISION (orig_cur_type) == TYPE_PRECISION (wanted_type)
2341 && TYPE_NAME (orig_cur_type) != 0
2342 && TREE_CODE (TYPE_NAME (orig_cur_type)) == TYPE_DECL)
2343 that = IDENTIFIER_POINTER (DECL_NAME (TYPE_NAME (orig_cur_type)));
2345 if (strcmp (this, that) != 0)
2347 /* There may be a better name for the format, e.g. size_t,
2348 but we should allow for programs with a perverse typedef
2349 making size_t something other than what the compiler
2351 if (types->wanted_type_name != 0
2352 && strcmp (types->wanted_type_name, that) != 0)
2353 this = types->wanted_type_name;
2354 if (types->name != 0)
2355 status_warning (status, "%s is not type %s (arg %d)", types->name, this,
2358 status_warning (status, "%s format, %s arg (arg %d)", this, that, arg_num);
OSDN Git Service
