hi.
i wanted to know why doesn't the scanf functions check for overflow
when reading number. For example scanf("%d" on 32bit machine considers
"1" and "4294967297 " to be the same.
I tracked to code to where the conversion itself happens. Code in
scanfs just ignores return value from conversion procedures.
More info in case of glibc posted here: http://board.flatassembler.net/topic.php?t=6359
AFAIK, implementation doesn't define behavior in case of overflow, so
glibc could consider this error and return errno=ERANGE
Dec 15 '06
26  9534 
>In article <sl************ *******@rlaptop .random.yi.org>
>Random832 <ra*******@gmai l.comwrote:
>>>And what about sscanf?
>2006-12-18 <em*********@ne ws4.newsguy.com >,
Chris Torek wrote:
>As far as I can tell, the ["environmen tal limits"] rules apply.
In article <sl************ *******@rlaptop .random.yi.org> ,
Random832 <ra*******@gmai l.comwrote:
>That rule does not allow a limit for any scanf function - it allows
limits for other things which allows an implementation to be written for
which no such case is possible for scanf or fscanf - that is not the
same thing.
Possibly not. I think it still applies, though.
>The section you quoted has absolutely nothing to do with any *scanf
function, and even less to do with sscanf.
If you do not like my answer, you probably want comp.std.c, not
comp.lang.c. :-)
--
In-Real-Life: Chris Torek, Wind River Systems
Salt Lake City, UT, USA (40°39.22'N, 111°50.29'W) +1 801 277 2603
email: forget about it http://web.torek.net/torek/index.html
Reading email is like searching for food in the garbage, thanks to spammers.
2006-12-19 <em*********@ne ws4.newsguy.com >,
Chris Torek wrote:
>>In article <sl************ *******@rlaptop .random.yi.org>
Random832 <ra*******@gmai l.comwrote:
And what about sscanf?
>>2006-12-18 <em*********@ne ws4.newsguy.com >,
Chris Torek wrote:
>>As far as I can tell, the ["environmen tal limits"] rules apply.
In article <sl************ *******@rlaptop .random.yi.org> ,
Random832 <ra*******@gmai l.comwrote:
>>That rule does not allow a limit for any scanf function - it allows
limits for other things which allows an implementation to be written for
which no such case is possible for scanf or fscanf - that is not the
same thing.
Possibly not. I think it still applies, though.
What environmental limit does my test program posted earlier violate?
[if there's an auto array size limit that i'm not considering, move the
array to file scope]
>2006-12-19 <em*********@ne ws4.newsguy.com >,
>Chris Torek wrote:
>>Possibly not. I think [the "environmen tal limit"] still applies [to
sscanf], though.
In article <sl************ *******@rlaptop .random.yi.org> ,
Random832 <ra*******@gmai l.comwrote:
>What environmental limit does my test program posted earlier violate?
Although the limit is for "lines" in text files, and a string is
not a line in a text file, I believe it is intended to generalize
to "text mode stdio streams". If (as I believe) sscanf treats a
string as if it were a text-mode stdio stream, the limit then
intrudes itself rudely upon strings fed to sscanf().
(Since this is really a question about interpreting the number of
angels that must be collectible on various pin-heads in the Standard,
comp.std.c is a better group.)
--
In-Real-Life: Chris Torek, Wind River Systems
Salt Lake City, UT, USA (40°39.22'N, 111°50.29'W) +1 801 277 2603
email: forget about it http://web.torek.net/torek/index.html
Reading email is like searching for food in the garbage, thanks to spammers.
2006-12-19 <em********@new s3.newsguy.com> ,
Chris Torek wrote:
>>2006-12-19 <em*********@ne ws4.newsguy.com >,
Chris Torek wrote:
>>>Possibly not. I think [the "environmen tal limit"] still applies [to
sscanf], though.
In article <sl************ *******@rlaptop .random.yi.org> ,
Random832 <ra*******@gmai l.comwrote:
>>What environmental limit does my test program posted earlier violate?
Although the limit is for "lines" in text files, and a string is
not a line in a text file, I believe it is intended to generalize
to "text mode stdio streams". If (as I believe) sscanf treats a
string as if it were a text-mode stdio stream, the limit then
intrudes itself rudely upon strings fed to sscanf().
(Since this is really a question about interpreting the number of
angels that must be collectible on various pin-heads in the Standard,
comp.std.c is a better group.)
Agreed. For those of you just joining us, my implementation is documented thus:
Numerical strings are truncated to 512 characters; for example, %f
and %d are implicitly %512f and %512d.
Is this permitted by the standard?
That is, is an implementation allowed to, on a %f format, interpret
1.0<etc>0e1 as 1.0 rather than 10.0, and to leave some of the <etc>0e1
for the next format specifier? Some people think the limitation on
text file line lengths covers this case, I think it does not, as, first
of all, the implementation otherwise supports text file lines of
arbitrary length, and, second, the argument to sscanf is not a line of
a text file.
Note that here, "such an input" is, e.g., "1.23e-xyz":
int n;
double d;
char buf[100];
n = sscanf("1.23e-xyz", "%lf%99s", &d, buf);
In article <45************ ***@yahoo.com>
CBFalconer <cb********@mai neline.netwrote :
>I disagree that such an input must fail.
If you mean "it is possible to handle this in a computer program,
without having it `fail', so that d is set to 1.23 and buf is set
to e-xyz", then yes.
If you mean "the Standard does not require that this fail", then
no: a DR or TR at some point in the past (back in the 1990s) said
otherwise.
This irked me, because my stdio handled it just fine, setting n
to 2, d to 1.23, and copying the string "e-xyz" into buf[]. But
that is what they said: it must fail. Here, n must be set to 0,
and d and buf[] must be unaltered.
>In practice this all means that the scanf series of functions
should not be used to input numerics without limiting the call to a
single field.
Because of the silly required failure, it should not even be used
for that. Better to get the string into a buffer, and then sscanf()
or (better) strtod(), strtol(), etc.
Note that the Standard requires that, given:
char *ep;
d = strtod("1.23e-xyz", &ep);
d must be set to 1.23, and ep must point to the 'e' in "e-xyz".
That is, the requirements for strtod() and the scanf() family are
different.
It might be nice if the Standard would (or, possibly, does) also
require that both the scanf engine and the strtod() routine handle
"arbitraril y long" inputs wherever they can occur, i.e., in sscanf(),
and in fscanf() and plain scanf() if there are no actual line-length
limits "underneath " the C library, as it were. A scanf engine
*could* handle this internally: if LDBL_MAX_EXP is, say, 10000, at
most a few more than 10000 decimal digits are required to hold a
number (and in fact even fewer are really necessary, if the
implementor wants to fiddle with mantissa and exponent in stringy
ways before calling strtod() internall).
--
In-Real-Life: Chris Torek, Wind River Systems
Salt Lake City, UT, USA (40°39.22'N, 111°50.29'W) +1 801 277 2603
email: forget about it http://web.torek.net/torek/index.html
Reading email is like searching for food in the garbage, thanks to spammers.
On 17 Dec 2006 04:13:59 GMT, Random832 wrote:
>2006-12-16 <em*********@ne ws1.newsguy.com >,
Chris Torek wrote:
>In article <sl************ *******@rlaptop .random.yi.org>
Random832 <ra*******@gmai l.comwrote:
>>>Anyway, I found a possible situation in which my scanf is
non-conformant:
Numerical strings are truncated to 512 characters; for example, %f
and %d are implicitly %512f and %512d.
So, if I send %f
1.0000000000 000000000000000 000000000000000 000000000000000 000000
000000000000 000000000000000 000000000000000 000000000000000 000000
000000000000 000000000000000 000000000000000 000000000000000 000000
000000000000 000000000000000 000000000000000 000000000000000 000000
000000000000 000000000000000 000000000000000 000000000000000 000000
000000000000 000000000000000 000000000000000 000000000000000 000000
000000000000 000000000000000 000000000000000 000000000000000 000000
000000000000 000000000000000 000000000000000 000000000000000 000000
e1
it converts to 1 instead of 10. Does the standard allow this?
Yes:
Environmental limits
[#7] An implementation shall support text files with lines
containing at least 254 characters, including the
terminating new-line character. The value of the macro
BUFSIZ shall be at least 256.
And what about sscanf?
int main() {
char *x[515];
is it not better here char x[515];?
double n;
memset(x+2,'0', 510);
here x[2..511]='0';
x[0] = '1'; x[1] = '.'; x[512] = 'e'; x[513] = '1'; x[514] = 0;
sscanf(x,"%lf", &n); printf("%f",x);
}
prints 1 or 10?
for me has to print 10
or sscanf has to return fail
Marry Christmas
2006-12-22 <u5************ *************** *****@4ax.com>,
av wrote:
On 17 Dec 2006 04:13:59 GMT, Random832 wrote:
>>2006-12-16 <em*********@ne ws1.newsguy.com >,
Chris Torek wrote:
>>In article <sl************ *******@rlaptop .random.yi.org>
Random832 <ra*******@gmai l.comwrote:
Anyway, I found a possible situation in which my scanf is
non-conformant:
Numerical strings are truncated to 512 characters; for example, %f
and %d are implicitly %512f and %512d.
So, if I send %f
1.000000000 000000000000000 000000000000000 000000000000000 0000000
00000000000 000000000000000 000000000000000 000000000000000 0000000
00000000000 000000000000000 000000000000000 000000000000000 0000000
00000000000 000000000000000 000000000000000 000000000000000 0000000
00000000000 000000000000000 000000000000000 000000000000000 0000000
00000000000 000000000000000 000000000000000 000000000000000 0000000
00000000000 000000000000000 000000000000000 000000000000000 0000000
00000000000 000000000000000 000000000000000 000000000000000 0000000
e1
it converts to 1 instead of 10. Does the standard allow this?
Yes:
Environmental limits
[#7] An implementation shall support text files with lines
containing at least 254 characters, including the
terminating new-line character. The value of the macro
BUFSIZ shall be at least 256.
And what about sscanf?
int main() {
char *x[515];
is it not better here char x[515];?
Yes, sorry, that was a typo
>
> double n;
memset(x+2,'0', 510);
here x[2..511]='0';
> x[0] = '1'; x[1] = '.'; x[512] = 'e'; x[513] = '1'; x[514] = 0;
sscanf(x,"%lf", &n); printf("%f",x);
}
prints 1 or 10?
for me has to print 10
or sscanf has to return fail
Right, I didn't check the return of sscanf, but my feeling was that
"succeeding " and translating the first 512 bytes to a 1 and leaving the
e1 alone is not the right way to do it.
Incidentally, despite the documentation, my implementation actually does
result in 10. So it's a quality of implementation issue on the docs. I'm
still curious as to whether the behavior described is permitted This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics | |
by: Enrico 'Trippo' Porreca |
last post by:
I believe there can be an integer overflow, without a silent
wrap-around, in the following example:
int a = INT_MAX;
a++;
Am I right? Could this lead to an abnormal program termination in some
implementations?
If so, could this happen without an arithmetical operation, i.e. because
|
by: junky_fellow |
last post by:
Is there any way by which the overflow during addition of two integers
may
be detected ?
eg.
suppose we have three unsigned integers, a ,b, c.
we are doing a check like
if ((a +b) > c)
do something;
|
by: Raymond |
last post by:
Source:
http://moryton.blogspot.com/2007/08/detecting-overflowunderflow-when.html
Example from source:
char unsigned augend (255);
char unsigned const addend (255);
char unsigned const sum (augend + addend);
if (sum < augend)
|
by: thomas.mertes |
last post by:
Is it possible to use some C or compiler extension to catch
integer overflow?
The situation is as follows:
I use C as target language for compiled Seed7 programs.
For integer computions the C type 'long' is used.
That way native C speed can be reached.
Now I want to experiment with raising a Seed7 exception
(which is emulated with setjmp(), longjmp() in C) for integer
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However, people are often confused as to whether an ONU can Work As a Router. In this blog post, we’ll explore What is ONU, What Is Router, ONU & Router’s main usage, and What is the difference between ONU and Router. Let’s take a closer look !
Part I. Meaning of...
| | |
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can effortlessly switch the default language on Windows 10 without reinstalling. I'll walk you through it.
First, let's disable language synchronization. With a Microsoft account, language settings sync across devices. To prevent any complications,...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that captivates audiences and drives business growth.
The Art of Business Website Design
Your website is...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For most users, this new feature is actually very convenient. If you want to control the update process,...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then launch it, all on its own....
Now, this would greatly impact the work of software developers. The idea...
|
by: conductexam |
last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one.
At the time of converting from word file to html my equations which are in the word document file was convert into image.
Globals.ThisAddIn.Application.ActiveDocument.Select();...
|
by: adsilva |
last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
| | |
by: 6302768590 |
last post by:
Hai team
i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
|
by: bsmnconsultancy |
last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...
| |
