2 * This file is part of cparser.
3 * Copyright (C) 2007-2009 Matthias Braun <matze@braunis.de>
5 * This program is free software; you can redistribute it and/or
6 * modify it under the terms of the GNU General Public License
7 * as published by the Free Software Foundation; either version 2
8 * of the License, or (at your option) any later version.
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
15 * You should have received a copy of the GNU General Public License
16 * along with this program; if not, write to the Free Software
17 * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA
24 #include "adt/strutil.h"
26 #include "format_check.h"
30 #include "diagnostic.h"
35 #include "lang_features.h"
37 typedef enum format_flag_t {
39 FMT_FLAG_HASH = 1U << 0,
40 FMT_FLAG_ZERO = 1U << 1,
41 FMT_FLAG_MINUS = 1U << 2,
42 FMT_FLAG_SPACE = 1U << 3,
43 FMT_FLAG_PLUS = 1U << 4,
44 FMT_FLAG_TICK = 1U << 5
47 typedef unsigned format_flags_t;
49 typedef enum format_length_modifier_t {
60 /* only in microsoft mode */
65 } format_length_modifier_t;
67 typedef struct format_spec_t {
68 const char *name; /**< name of the function */
69 format_kind_t fmt_kind; /**< kind */
70 unsigned fmt_idx; /**< index of the format string */
71 unsigned arg_idx; /**< index of the first argument */
74 static const char* get_length_modifier_name(const format_length_modifier_t mod)
76 static const char* const names[] = {
87 /* only in microsoft mode */
90 [FMT_MOD_I32] = "I32",
93 assert((size_t)mod < lengthof(names));
97 static void warn_invalid_length_modifier(const source_position_t *pos,
98 const format_length_modifier_t mod,
99 const utf32 conversion)
101 char const *const lmod = get_length_modifier_name(mod);
102 warningf(WARN_FORMAT, pos, "invalid length modifier '%s' for conversion specifier '%%%c'", lmod, conversion);
106 * Check printf-style format. Returns number of expected arguments.
108 static int internal_check_printf_format(const expression_t *fmt_expr,
109 const call_argument_t *arg,
110 const format_spec_t *spec)
112 while (fmt_expr->kind == EXPR_UNARY_CAST) {
113 fmt_expr = fmt_expr->unary.value;
117 * gettext results in expressions like (X ? "format_string" : Y)
118 * we assume the left part is the format string
120 if (fmt_expr->kind == EXPR_CONDITIONAL) {
121 conditional_expression_t const *const c = &fmt_expr->conditional;
122 expression_t const * t = c->true_expression;
125 int const nt = internal_check_printf_format(t, arg, spec);
126 int const nf = internal_check_printf_format(c->false_expression, arg, spec);
127 return nt > nf ? nt : nf;
130 if (fmt_expr->kind != EXPR_STRING_LITERAL
131 && fmt_expr->kind != EXPR_WIDE_STRING_LITERAL)
134 const char *string = fmt_expr->string_literal.value.begin;
135 size_t size = fmt_expr->string_literal.value.size;
136 const char *c = string;
138 const source_position_t *pos = &fmt_expr->base.source_position;
139 unsigned num_fmt = 0;
140 unsigned num_args = 0;
142 for (fmt = *c; fmt != '\0'; fmt = *(++c)) {
153 format_flags_t fmt_flags = FMT_FLAG_NONE;
156 fmt_flags |= FMT_FLAG_ZERO;
159 /* argument selector or minimum field width */
163 } while (isdigit(fmt));
165 /* digit string was ... */
167 /* ... argument selector */
168 fmt_flags = FMT_FLAG_NONE; /* reset possibly set 0-flag */
172 /* ... minimum field width */
178 case '#': flag = FMT_FLAG_HASH; break;
179 case '0': flag = FMT_FLAG_ZERO; break;
180 case '-': flag = FMT_FLAG_MINUS; break;
181 case '\'': flag = FMT_FLAG_TICK; break;
184 if (fmt_flags & FMT_FLAG_PLUS) {
185 warningf(WARN_FORMAT, pos, "' ' is overridden by prior '+' in conversion specification %u", num_fmt);
187 flag = FMT_FLAG_SPACE;
191 if (fmt_flags & FMT_FLAG_SPACE) {
192 warningf(WARN_FORMAT, pos, "'+' overrides prior ' ' in conversion specification %u", num_fmt);
194 flag = FMT_FLAG_PLUS;
197 default: goto break_fmt_flags;
199 if (fmt_flags & flag) {
200 warningf(WARN_FORMAT, pos, "repeated flag '%c' in conversion specification %u", (char)fmt, num_fmt);
207 /* minimum field width */
212 warningf(WARN_FORMAT, pos, "missing argument for '*' field width in conversion specification %u", num_fmt);
215 const type_t *const arg_type = arg->expression->base.type;
216 if (arg_type != type_int) {
217 warningf(WARN_FORMAT, pos, "argument for '*' field width in conversion specification %u is not an 'int', but an '%T'", num_fmt, arg_type);
221 while (isdigit(fmt)) {
229 if (fmt_flags & FMT_FLAG_ZERO) {
230 warningf(WARN_FORMAT, pos, "'0' flag ignored with precision in conversion specification %u", num_fmt);
238 warningf(WARN_FORMAT, pos, "missing argument for '*' precision in conversion specification %u", num_fmt);
241 const type_t *const arg_type = arg->expression->base.type;
242 if (arg_type != type_int) {
243 warningf(WARN_FORMAT, pos, "argument for '*' precision in conversion specification %u is not an 'int', but an '%T'", num_fmt, arg_type);
247 /* digit string may be omitted */
248 while (isdigit(fmt)) {
254 /* length modifier */
255 format_length_modifier_t fmt_mod;
261 fmt_mod = FMT_MOD_hh;
271 fmt_mod = FMT_MOD_ll;
277 case 'L': fmt = *(++c); fmt_mod = FMT_MOD_L; break;
278 case 'j': fmt = *(++c); fmt_mod = FMT_MOD_j; break;
279 case 't': fmt = *(++c); fmt_mod = FMT_MOD_t; break;
280 case 'z': fmt = *(++c); fmt_mod = FMT_MOD_z; break;
281 case 'q': fmt = *(++c); fmt_mod = FMT_MOD_q; break;
285 fmt = *(++c); fmt_mod = FMT_MOD_w;
287 fmt_mod = FMT_MOD_NONE;
292 fmt = *(++c); fmt_mod = FMT_MOD_I;
297 fmt_mod = FMT_MOD_I32;
302 } else if (fmt == '6') {
306 fmt_mod = FMT_MOD_I64;
313 fmt_mod = FMT_MOD_NONE;
317 fmt_mod = FMT_MOD_NONE;
322 warningf(WARN_FORMAT, pos, "dangling %% in format string");
326 type_t *expected_type;
327 type_qualifiers_t expected_qual = TYPE_QUALIFIER_NONE;
328 format_flags_t allowed_flags;
333 case FMT_MOD_NONE: expected_type = type_int; break;
334 case FMT_MOD_hh: expected_type = type_signed_char; break;
335 case FMT_MOD_h: expected_type = type_short; break;
336 case FMT_MOD_l: expected_type = type_long; break;
337 case FMT_MOD_ll: expected_type = type_long_long; break;
338 case FMT_MOD_j: expected_type = type_intmax_t; break;
339 case FMT_MOD_z: expected_type = type_ssize_t; break;
340 case FMT_MOD_t: expected_type = type_ptrdiff_t; break;
341 case FMT_MOD_I: expected_type = type_ptrdiff_t; break;
342 case FMT_MOD_I32: expected_type = type_int32; break;
343 case FMT_MOD_I64: expected_type = type_int64; break;
346 warn_invalid_length_modifier(pos, fmt_mod, fmt);
349 allowed_flags = FMT_FLAG_MINUS | FMT_FLAG_SPACE | FMT_FLAG_PLUS | FMT_FLAG_ZERO;
355 allowed_flags = FMT_FLAG_MINUS | FMT_FLAG_HASH | FMT_FLAG_ZERO;
356 goto eval_fmt_mod_unsigned;
359 allowed_flags = FMT_FLAG_MINUS | FMT_FLAG_ZERO;
360 eval_fmt_mod_unsigned:
362 case FMT_MOD_NONE: expected_type = type_unsigned_int; break;
363 case FMT_MOD_hh: expected_type = type_unsigned_char; break;
364 case FMT_MOD_h: expected_type = type_unsigned_short; break;
365 case FMT_MOD_l: expected_type = type_unsigned_long; break;
366 case FMT_MOD_ll: expected_type = type_unsigned_long_long; break;
367 case FMT_MOD_j: expected_type = type_uintmax_t; break;
368 case FMT_MOD_z: expected_type = type_size_t; break;
369 case FMT_MOD_t: expected_type = type_uptrdiff_t; break;
370 case FMT_MOD_I: expected_type = type_size_t; break;
371 case FMT_MOD_I32: expected_type = type_unsigned_int32; break;
372 case FMT_MOD_I64: expected_type = type_unsigned_int64; break;
375 warn_invalid_length_modifier(pos, fmt_mod, fmt);
389 case FMT_MOD_l: /* l modifier is ignored */
390 case FMT_MOD_NONE: expected_type = type_double; break;
391 case FMT_MOD_L: expected_type = type_long_double; break;
394 warn_invalid_length_modifier(pos, fmt_mod, fmt);
397 allowed_flags = FMT_FLAG_MINUS | FMT_FLAG_SPACE | FMT_FLAG_PLUS | FMT_FLAG_HASH | FMT_FLAG_ZERO;
401 if (fmt_mod != FMT_MOD_NONE) {
402 warn_invalid_length_modifier(pos, fmt_mod, fmt);
405 expected_type = type_wchar_t;
406 allowed_flags = FMT_FLAG_NONE;
410 expected_type = type_int;
412 case FMT_MOD_NONE: expected_type = type_int; break; /* TODO promoted char */
413 case FMT_MOD_l: expected_type = type_wint_t; break;
414 case FMT_MOD_w: expected_type = type_wchar_t; break;
417 warn_invalid_length_modifier(pos, fmt_mod, fmt);
420 allowed_flags = FMT_FLAG_NONE;
424 if (fmt_mod != FMT_MOD_NONE) {
425 warn_invalid_length_modifier(pos, fmt_mod, fmt);
428 expected_type = type_wchar_t_ptr;
429 expected_qual = TYPE_QUALIFIER_CONST;
430 allowed_flags = FMT_FLAG_MINUS;
435 case FMT_MOD_NONE: expected_type = type_char_ptr; break;
436 case FMT_MOD_l: expected_type = type_wchar_t_ptr; break;
437 case FMT_MOD_w: expected_type = type_wchar_t_ptr; break;
440 warn_invalid_length_modifier(pos, fmt_mod, fmt);
443 expected_qual = TYPE_QUALIFIER_CONST;
444 allowed_flags = FMT_FLAG_MINUS;
448 if (fmt_mod != FMT_MOD_NONE) {
449 warn_invalid_length_modifier(pos, fmt_mod, fmt);
452 expected_type = type_void_ptr;
453 allowed_flags = FMT_FLAG_NONE;
458 case FMT_MOD_NONE: expected_type = type_int_ptr; break;
459 case FMT_MOD_hh: expected_type = type_signed_char_ptr; break;
460 case FMT_MOD_h: expected_type = type_short_ptr; break;
461 case FMT_MOD_l: expected_type = type_long_ptr; break;
462 case FMT_MOD_ll: expected_type = type_long_long_ptr; break;
463 case FMT_MOD_j: expected_type = type_intmax_t_ptr; break;
464 case FMT_MOD_z: expected_type = type_ssize_t_ptr; break;
465 case FMT_MOD_t: expected_type = type_ptrdiff_t_ptr; break;
468 warn_invalid_length_modifier(pos, fmt_mod, fmt);
471 allowed_flags = FMT_FLAG_NONE;
475 warningf(WARN_FORMAT, pos, "encountered unknown conversion specifier '%%%c' at position %u", fmt, num_fmt);
482 format_flags_t wrong_flags = fmt_flags & ~allowed_flags;
483 if (wrong_flags != 0) {
486 if (wrong_flags & FMT_FLAG_HASH) *p++ = '#';
487 if (wrong_flags & FMT_FLAG_ZERO) *p++ = '0';
488 if (wrong_flags & FMT_FLAG_MINUS) *p++ = '-';
489 if (wrong_flags & FMT_FLAG_SPACE) *p++ = ' ';
490 if (wrong_flags & FMT_FLAG_PLUS) *p++ = '+';
491 if (wrong_flags & FMT_FLAG_TICK) *p++ = '\'';
494 warningf(WARN_FORMAT, pos, "invalid format flags \"%s\" in conversion specification %%%c at position %u", wrong, fmt, num_fmt);
499 warningf(WARN_FORMAT, pos, "too few arguments for format string");
503 { /* create a scope here to prevent warning about the jump to next_arg */
504 type_t *const arg_type = arg->expression->base.type;
505 type_t *const arg_skip = skip_typeref(arg_type);
506 type_t *const expected_type_skip = skip_typeref(expected_type);
509 /* allow any pointer type for %p, not just void */
510 if (is_type_pointer(arg_skip))
514 if (is_type_pointer(expected_type_skip)) {
515 if (is_type_pointer(arg_skip)) {
516 type_t *const exp_to = skip_typeref(expected_type_skip->pointer.points_to);
517 type_t *const arg_to = skip_typeref(arg_skip->pointer.points_to);
518 if ((arg_to->base.qualifiers & ~expected_qual) == 0 &&
519 get_unqualified_type(arg_to) == exp_to) {
523 } else if (get_unqualified_type(arg_skip) == expected_type_skip) {
525 } else if (arg->expression->kind == EXPR_UNARY_CAST) {
526 expression_t const *const expr = arg->expression->unary.value;
527 type_t *const unprom_type = skip_typeref(expr->base.type);
528 if (get_unqualified_type(unprom_type) == expected_type_skip) {
531 if (expected_type_skip == type_unsigned_int && !is_type_signed(unprom_type)) {
535 if (is_type_valid(arg_skip)) {
536 source_position_t const *const apos = &arg->expression->base.source_position;
537 char const *const mod = get_length_modifier_name(fmt_mod);
538 warningf(WARN_FORMAT, apos, "conversion '%%%s%c' at position %u specifies type '%T' but the argument has type '%T'", mod, (char)fmt, num_fmt, expected_type, arg_type);
545 if (c+1 < string + size) {
546 warningf(WARN_FORMAT, pos, "format string contains '\\0'");
552 * Check printf-style format.
554 static void check_printf_format(call_argument_t const *arg,
555 format_spec_t const *const spec)
557 /* find format arg */
559 for (; idx < spec->fmt_idx; ++idx) {
565 expression_t const *const fmt_expr = arg->expression;
567 /* find the real args */
568 for (; idx < spec->arg_idx && arg != NULL; ++idx)
571 int const num_fmt = internal_check_printf_format(fmt_expr, arg, spec);
576 for (; arg != NULL; arg = arg->next)
578 if (num_args > (size_t)num_fmt) {
579 source_position_t const *const pos = &fmt_expr->base.source_position;
580 warningf(WARN_FORMAT, pos, "%u argument%s but only %u format specifier%s", num_args, num_args != 1 ? "s" : "", num_fmt, num_fmt != 1 ? "s" : "");
585 * Check scanf-style format.
587 static void check_scanf_format(const call_argument_t *arg,
588 const format_spec_t *spec)
590 /* find format arg */
592 for (; idx < spec->fmt_idx; ++idx) {
598 const expression_t *fmt_expr = arg->expression;
599 if (fmt_expr->kind == EXPR_UNARY_CAST) {
600 fmt_expr = fmt_expr->unary.value;
603 if (fmt_expr->kind != EXPR_STRING_LITERAL
604 && fmt_expr->kind != EXPR_WIDE_STRING_LITERAL)
607 const char *string = fmt_expr->string_literal.value.begin;
608 size_t size = fmt_expr->string_literal.value.size;
609 const char *c = string;
611 /* find the real args */
612 for (; idx < spec->arg_idx && arg != NULL; ++idx)
615 const source_position_t *pos = &fmt_expr->base.source_position;
616 unsigned num_fmt = 0;
618 for (fmt = *c; fmt != '\0'; fmt = *(++c)) {
627 bool suppress_assignment = false;
630 suppress_assignment = true;
634 if ('0' <= fmt && fmt <= '9') {
636 width = width * 10 + (fmt - '0');
638 } while ('0' <= fmt && fmt <= '9');
640 warningf(WARN_FORMAT, pos, "field width is zero at format %u", num_fmt);
644 /* look for length modifiers */
645 format_length_modifier_t fmt_mod = FMT_MOD_NONE;
651 fmt_mod = FMT_MOD_hh;
661 fmt_mod = FMT_MOD_ll;
667 case 'L': fmt = *(++c); fmt_mod = FMT_MOD_L; break;
668 case 'j': fmt = *(++c); fmt_mod = FMT_MOD_j; break;
669 case 't': fmt = *(++c); fmt_mod = FMT_MOD_t; break;
670 case 'z': fmt = *(++c); fmt_mod = FMT_MOD_z; break;
686 fmt_mod = FMT_MOD_I32;
691 } else if (fmt == '6') {
695 fmt_mod = FMT_MOD_I64;
706 warningf(WARN_FORMAT, pos, "dangling %% with conversion specififer in format string");
710 type_t *expected_type;
715 case FMT_MOD_NONE: expected_type = type_int; break;
716 case FMT_MOD_hh: expected_type = type_signed_char; break;
717 case FMT_MOD_h: expected_type = type_short; break;
718 case FMT_MOD_l: expected_type = type_long; break;
719 case FMT_MOD_ll: expected_type = type_long_long; break;
720 case FMT_MOD_j: expected_type = type_intmax_t; break;
721 case FMT_MOD_z: expected_type = type_ssize_t; break;
722 case FMT_MOD_t: expected_type = type_ptrdiff_t; break;
723 case FMT_MOD_I: expected_type = type_ptrdiff_t; break;
724 case FMT_MOD_I32: expected_type = type_int32; break;
725 case FMT_MOD_I64: expected_type = type_int64; break;
728 warn_invalid_length_modifier(pos, fmt_mod, fmt);
738 case FMT_MOD_NONE: expected_type = type_unsigned_int; break;
739 case FMT_MOD_hh: expected_type = type_unsigned_char; break;
740 case FMT_MOD_h: expected_type = type_unsigned_short; break;
741 case FMT_MOD_l: expected_type = type_unsigned_long; break;
742 case FMT_MOD_ll: expected_type = type_unsigned_long_long; break;
743 case FMT_MOD_j: expected_type = type_uintmax_t; break;
744 case FMT_MOD_z: expected_type = type_size_t; break;
745 case FMT_MOD_t: expected_type = type_uptrdiff_t; break;
746 case FMT_MOD_I: expected_type = type_size_t; break;
747 case FMT_MOD_I32: expected_type = type_unsigned_int32; break;
748 case FMT_MOD_I64: expected_type = type_unsigned_int64; break;
751 warn_invalid_length_modifier(pos, fmt_mod, fmt);
765 case FMT_MOD_l: expected_type = type_double; break;
766 case FMT_MOD_NONE: expected_type = type_float; break;
767 case FMT_MOD_L: expected_type = type_long_double; break;
770 warn_invalid_length_modifier(pos, fmt_mod, fmt);
776 if (fmt_mod != FMT_MOD_NONE) {
777 warn_invalid_length_modifier(pos, fmt_mod, fmt);
780 expected_type = type_wchar_t;
785 case FMT_MOD_NONE: expected_type = type_char; break;
786 case FMT_MOD_l: expected_type = type_wchar_t; break;
787 case FMT_MOD_w: expected_type = type_wchar_t; break;
790 warn_invalid_length_modifier(pos, fmt_mod, fmt);
797 if (!suppress_assignment && arg != NULL) {
798 type_t *const type = skip_typeref(revert_automatic_type_conversion(arg->expression));
799 if (is_type_array(type) &&
800 type->array.size_constant &&
801 width > type->array.size) {
802 warningf(WARN_FORMAT, pos, "target buffer '%T' is too small for %u characters at format %u", type, width, num_fmt);
809 if (fmt_mod != FMT_MOD_NONE) {
810 warn_invalid_length_modifier(pos, fmt_mod, fmt);
813 expected_type = type_wchar_t;
819 case FMT_MOD_NONE: expected_type = type_char; break;
820 case FMT_MOD_l: expected_type = type_wchar_t; break;
821 case FMT_MOD_w: expected_type = type_wchar_t; break;
824 warn_invalid_length_modifier(pos, fmt_mod, fmt);
828 if (!suppress_assignment &&
831 type_t *const type = skip_typeref(revert_automatic_type_conversion(arg->expression));
832 if (is_type_array(type) &&
833 type->array.size_constant &&
834 width >= type->array.size) {
835 warningf(WARN_FORMAT, pos, "target buffer '%T' is too small for %u characters and \\0 at format %u", type, width, num_fmt);
842 if (fmt_mod != FMT_MOD_NONE) {
843 warn_invalid_length_modifier(pos, fmt_mod, fmt);
846 expected_type = type_void;
850 if (suppress_assignment) {
851 warningf(WARN_FORMAT, pos, "conversion '%n' cannot be suppressed with '*' at format %u", num_fmt);
855 case FMT_MOD_NONE: expected_type = type_int; break;
856 case FMT_MOD_hh: expected_type = type_signed_char; break;
857 case FMT_MOD_h: expected_type = type_short; break;
858 case FMT_MOD_l: expected_type = type_long; break;
859 case FMT_MOD_ll: expected_type = type_long_long; break;
860 case FMT_MOD_j: expected_type = type_intmax_t; break;
861 case FMT_MOD_z: expected_type = type_ssize_t; break;
862 case FMT_MOD_t: expected_type = type_ptrdiff_t; break;
865 warn_invalid_length_modifier(pos, fmt_mod, fmt);
872 warningf(WARN_FORMAT, pos, "encountered unknown conversion specifier '%%%c' at format %u", fmt, num_fmt);
873 if (suppress_assignment)
880 if (suppress_assignment)
885 warningf(WARN_FORMAT, pos, "too few arguments for format string");
889 { /* create a scope here to prevent warning about the jump to next_arg */
890 type_t *const arg_type = arg->expression->base.type;
891 type_t *const arg_skip = skip_typeref(arg_type);
892 type_t *const expected_type_skip = skip_typeref(expected_type);
894 if (! is_type_pointer(arg_skip))
896 type_t *const ptr_skip = skip_typeref(arg_skip->pointer.points_to);
899 /* allow any pointer type for %p, not just void */
900 if (is_type_pointer(ptr_skip))
904 /* do NOT allow const or restrict, all other should be ok */
905 if (ptr_skip->base.qualifiers & (TYPE_QUALIFIER_CONST | TYPE_QUALIFIER_VOLATILE))
907 type_t *const unqual_ptr = get_unqualified_type(ptr_skip);
908 if (unqual_ptr == expected_type_skip) {
910 } else if (expected_type_skip == type_char) {
911 /* char matches with unsigned char AND signed char */
912 if (unqual_ptr == type_signed_char || unqual_ptr == type_unsigned_char)
916 if (is_type_valid(arg_skip)) {
917 source_position_t const *const apos = &arg->expression->base.source_position;
918 char const *const mod = get_length_modifier_name(fmt_mod);
919 warningf(WARN_FORMAT, apos, "conversion '%%%s%c' at position %u specifies type '%T*' but the argument has type '%T'", mod, (char)fmt, num_fmt, expected_type, arg_type);
926 if (c+1 < string + size) {
927 warningf(WARN_FORMAT, pos, "format string contains '\\0'");
930 unsigned num_args = num_fmt;
931 while (arg != NULL) {
935 warningf(WARN_FORMAT, pos, "%u argument%s but only %u format specifier%s", num_args, num_args != 1 ? "s" : "", num_fmt, num_fmt != 1 ? "s" : "");
939 static const format_spec_t builtin_table[] = {
940 { "printf", FORMAT_PRINTF, 0, 1 },
941 { "wprintf", FORMAT_PRINTF, 0, 1 },
942 { "sprintf", FORMAT_PRINTF, 1, 2 },
943 { "swprintf", FORMAT_PRINTF, 1, 2 },
944 { "snprintf", FORMAT_PRINTF, 2, 3 },
945 { "snwprintf", FORMAT_PRINTF, 2, 3 },
946 { "fprintf", FORMAT_PRINTF, 1, 2 },
947 { "fwprintf", FORMAT_PRINTF, 1, 2 },
948 { "snwprintf", FORMAT_PRINTF, 2, 3 },
949 { "snwprintf", FORMAT_PRINTF, 2, 3 },
951 { "scanf", FORMAT_SCANF, 0, 1 },
952 { "wscanf", FORMAT_SCANF, 0, 1 },
953 { "sscanf", FORMAT_SCANF, 1, 2 },
954 { "swscanf", FORMAT_SCANF, 1, 2 },
955 { "fscanf", FORMAT_SCANF, 1, 2 },
956 { "fwscanf", FORMAT_SCANF, 1, 2 },
958 { "strftime", FORMAT_STRFTIME, 3, 4 },
959 { "wcstrftime", FORMAT_STRFTIME, 3, 4 },
961 { "strfmon", FORMAT_STRFMON, 3, 4 },
964 { "_snprintf", FORMAT_PRINTF, 2, 3 },
965 { "_snwprintf", FORMAT_PRINTF, 2, 3 },
966 { "_scrintf", FORMAT_PRINTF, 0, 1 },
967 { "_scwprintf", FORMAT_PRINTF, 0, 1 },
968 { "printf_s", FORMAT_PRINTF, 0, 1 },
969 { "wprintf_s", FORMAT_PRINTF, 0, 1 },
970 { "sprintf_s", FORMAT_PRINTF, 3, 4 },
971 { "swprintf_s", FORMAT_PRINTF, 3, 4 },
972 { "fprintf_s", FORMAT_PRINTF, 1, 2 },
973 { "fwprintf_s", FORMAT_PRINTF, 1, 2 },
974 { "_sprintf_l", FORMAT_PRINTF, 1, 3 },
975 { "_swprintf_l", FORMAT_PRINTF, 1, 3 },
976 { "_printf_l", FORMAT_PRINTF, 0, 2 },
977 { "_wprintf_l", FORMAT_PRINTF, 0, 2 },
978 { "_fprintf_l", FORMAT_PRINTF, 1, 3 },
979 { "_fwprintf_l", FORMAT_PRINTF, 1, 3 },
980 { "_printf_s_l", FORMAT_PRINTF, 0, 2 },
981 { "_wprintf_s_l", FORMAT_PRINTF, 0, 2 },
982 { "_sprintf_s_l", FORMAT_PRINTF, 3, 5 },
983 { "_swprintf_s_l", FORMAT_PRINTF, 3, 5 },
984 { "_fprintf_s_l", FORMAT_PRINTF, 1, 3 },
985 { "_fwprintf_s_l", FORMAT_PRINTF, 1, 3 },
988 void check_format(const call_expression_t *const call)
990 if (!is_warn_on(WARN_FORMAT))
993 const expression_t *const func_expr = call->function;
994 if (func_expr->kind != EXPR_REFERENCE)
997 const entity_t *const entity = func_expr->reference.entity;
998 const call_argument_t * arg = call->arguments;
1001 * For some functions we always check the format, even if it was not
1002 * specified. This allows to check format even in MS mode or without
1005 const char *const name = entity->base.symbol->string;
1006 for (size_t i = 0; i < lengthof(builtin_table); ++i) {
1007 if (streq(name, builtin_table[i].name)) {
1008 switch (builtin_table[i].fmt_kind) {
1010 check_printf_format(arg, &builtin_table[i]);
1013 check_scanf_format(arg, &builtin_table[i]);
1015 case FORMAT_STRFTIME:
1016 case FORMAT_STRFMON:
1017 /* TODO: implement other cases */
projects / cparser / blob