C code

Bill Cunningham wrote:

Richard can you or anyone else tell me what's wrong with this code.
It's just a simple error I'm sure.

Which "Richard"? There are least four regulars I can think of.

#include <stdio.h>

int main(int argc,char *argv[]){

char name[]="Enter Code -";
printf("%s",&na me);

Why do you have an & before name?

fflush(stdout);
char input[40];
scanf("%s",&inp ut);

scanf() stops reading a string at the first whitespace. It's also
unsafe to use in this situation because its input isn't bounded.

printf("%s",&in put);}

Now if I enter something like niceday it is printed but nice day then
only nice is printed. The space is the question.

See above. Use the standard fgets() or one of the fine third-party
"getline" type functions posted here occasionally.


Brian

"Default User" <de***********@ yahoo.comwrote in message
news:5p******** ****@mid.indivi dual.net...

Bill Cunningham wrote:

> Richard can you or anyone else tell me what's wrong with this code.
It's just a simple error I'm sure.

Which "Richard"? There are least four regulars I can think of.

>#include <stdio.h>

int main(int argc,char *argv[]){

char name[]="Enter Code -";
printf("%s",&na me);

Why do you have an & before name?

> fflush(stdout);
char input[40];
scanf("%s",&inp ut);

scanf() stops reading a string at the first whitespace. It's also
unsafe to use in this situation because its input isn't bounded.

> printf("%s",&in put);}

Now if I enter something like niceday it is printed but nice day then
only nice is printed. The space is the question.

See above. Use the standard fgets() or one of the fine third-party
"getline" type functions posted here occasionally.


Brian

OK I see. I was referring to richard heathfield.

Bill

Bill Cunningham wrote, On 11/11/07 23:51:

Richard can you or anyone else tell me what's wrong with this code. It's
just a simple error I'm sure.

I see no reason for you to address this specifically to Richard,
especially as you don't specify which Richard.

#include <stdio.h>

int main(int argc,char *argv[]){

char name[]="Enter Code -";

name is an array of char.

printf("%s",&na me);

So &name is a pointer to an array of char, NOT a pointer to char. Yes,
it points at the same memory location, but it is a *very* important
difference.

fflush(stdout);
char input[40];
scanf("%s",&inp ut);

Same mistake here. Other mistakes include:
1) NEVER use %s as a scanf format specifier. What happens if the name is
too long?
2) ALWAYS check the value returned by the input functions in stdio.h,
otherwise you will not know if anything was obtained. This is especially
important for scanf.
3) Until you know C a lot better don't use scanf. If you want to read a
line use fgets (not gets) and *then* parse it using whatever tool you
want, possibly including sscanf.

printf("%s",&in put);}

Now if I enter something like niceday it is printed but nice day then only
nice is printed. The space is the question. Is it scanf or printf's string
literal in those functions?

It is scanf doing what it is meant to do, i.e. stopping at the first
white space since it was not told to do anything different.

If you don't have a *good* text book I recommend K&R2, if you check the
bibliography of the comp.lang.c FAQ at http://c-faq.com/ you will find
the full details. Also checking the FAQ would be a good idea as it has
answers to a *lot* of simple questions like this.
--
Flash Gordon

"Default User" <de***********@ yahoo.comwrites :

Bill Cunningham wrote:

> Richard can you or anyone else tell me what's wrong with this code.
It's just a simple error I'm sure.

Which "Richard"? There are least four regulars I can think of.

>#include <stdio.h>

int main(int argc,char *argv[]){

char name[]="Enter Code -";
printf("%s",&na me);

Why do you have an & before name?

> fflush(stdout);
char input[40];
scanf("%s",&inp ut);

scanf() stops reading a string at the first whitespace. It's also

Slight correction/clarification : scanf() reads upto the first white
space in THIS instance because of the format qualifier passed in which
is "%s".

unsafe to use in this situation because its input isn't bounded.

> printf("%s",&in put);}

Now if I enter something like niceday it is printed but nice day then
only nice is printed. The space is the question.

Your format string is not upto what you what. Google up some scanf
examples. (The safety part isn't really relevant to your question).

See above. Use the standard fgets() or one of the fine third-party
"getline" type functions posted here occasionally.

Try and stick with the standard functions at this stage IMO. You learn
more.

Brian

On Mon, 12 Nov 2007 00:11:45 +0000, Flash Gordon
<sp**@flash-gordon.me.ukwro te:

>Bill Cunningham wrote, On 11/11/07 23:51:

> Richard can you or anyone else tell me what's wrong with this code. It's
just a simple error I'm sure.

I see no reason for you to address this specifically to Richard,
especially as you don't specify which Richard.

>#include <stdio.h>

int main(int argc,char *argv[]){

char name[]="Enter Code -";

name is an array of char.

> printf("%s",&na me);

So &name is a pointer to an array of char, NOT a pointer to char. Yes,
it points at the same memory location, but it is a *very* important
difference.

> fflush(stdout);
char input[40];
scanf("%s",&inp ut);

Same mistake here. Other mistakes include:
1) NEVER use %s as a scanf format specifier. What happens if the name is
too long?

In other words, the Standard C function scanf is broken? And if broken
has no shades of gray, then scanf is as broken as the Standard C
function gets?

How should a poor programmer like the OP know what is and what is not
broken in the C Standard? And what should the poor programmer use as
alternatives in place of what is broken in the C Standard? In
specific, exactly what should the poor programmer use instead of
scanf?

Regards
--
jay

In article <ji************ *************** *****@4ax.com>, jaysome
<ja*****@hotmai l.comwrote on Monday 12 Nov 2007 11:50 am:

On Mon, 12 Nov 2007 00:11:45 +0000, Flash Gordon
<sp**@flash-gordon.me.ukwro te:

<snip>

>>1) NEVER use %s as a scanf format specifier. What happens if the name
is too long?

In other words, the Standard C function scanf is broken? And if broken
has no shades of gray, then scanf is as broken as the Standard C
function gets?

No. Some uses of scanf() are safer. All possible uses of gets() are
equally unsafe.

How should a poor programmer like the OP know what is and what is not
broken in the C Standard?

Lurk here?

And what should the poor programmer use as
alternatives in place of what is broken in the C Standard?

Depends. Many of the broken or fragile functions have more robust widely
available alternatives.

In specific, exactly what should the poor programmer use instead of
scanf?

fgets() + strto*() or
fgets() + sscanf() or
fgets() + custom_function ()

are some alternative methods that come to mind immediately.

>On Mon, 12 Nov 2007 00:11:45 +0000, Flash Gordon

><sp**@flash-gordon.me.ukwro te:

>>1) NEVER use %s as a scanf format specifier. ...

In article <ji************ *************** *****@4ax.com>
jaysome <ja*****@hotmai l.comwrote:

>In other words, the Standard C function scanf is broken?

Essentially, yes -- but "broken" here has a number of shades of
grey:

>And if broken has no shades of gray, then scanf is as broken as
the Standard C function gets?

The scanf() function *can* be used correctly; it just takes a lot
of work. For instance:

char buf[8], stopc;
int ret;

/*
* Read up to 7 non-white-space characters and a "stop character".
*/
ret = scanf("%7s%c", buf, &stopc);
if (ret == 2) {
/*
* That worked; now inspect the "stop character" to see
* if there were characters after the 7 that would have
* been part of the "non-white-space" characters that
* %s would have scanned, to see if overlong input was
* truncated.
*/
if (isspace(stopc) )
... the non-white-space input was followed by white-space ...
else
... the non-white-space input was overlong ...
} else if (ret == 1) {
/*
* We were able to get up to 7 non-white-space characters,
* after which input must have ended due to EOF or an input
* failure, since the %c directive cannot have a matching
* failure. Decide what to do here.
*/
...
} else {
/*
* We must have ret==EOF, which means we had EOF or an
* input failure. Decide what to do here.
*/
}

In other words, it takes a big-block-o-code just to figure out what
scanf() did and recover from it in case it was not quite what you
meant for it to do. (This also still has the problem that scanf()
is quite bad for "interactiv e input", in that if the user enters
nothing but white-space -- such as a blank line -- the program may
appear to have quit running, since scanf() continues to wait for
input without printing any new prompt to the user.)

>How should a poor programmer like the OP know what is and what is not
broken in the C Standard?

Either read it very carefully, or -- much easier -- read comp.lang.c
for a long time. :-)

>And what should the poor programmer use as
alternatives in place of what is broken in the C Standard?

This depends on what one is using. For instance, as Jacob Navia
is fond of pointing out, ctime() and asctime() both behave badly
for dates in which the year needs more than four digits. To avoid
that, use strftime() instead.

>In specific, exactly what should the poor programmer use instead
of scanf?

Usually the best approach is something like fgets() (including
ggets() and similar) followed by some degree of "manual" picking
apart of the input line, using strtol(), strtod(), and/or sscanf().
The fundamental difference between using scanf() directly and using
sscanf() is that by getting an "input line" first, and only then
throwing it at the "wild and wooly" *scanf() family, you create a
buffer zone -- with a literal buffer, on which you can apply strlen()
first to verify its size -- that insulates your code from most of
the damage "plain scanf()" inflicts in practice (which is to say,
overrunning arrays; leaving behind time bombs; and/or chewing up
scads of input text that you wanted to keep, not throw away).
--
In-Real-Life: Chris Torek, Wind River Systems
Salt Lake City, UT, USA (40°39.22'N, 111°50.29'W) +1 801 277 2603
email: forget about it http://web.torek.net/torek/index.html
Reading email is like searching for food in the garbage, thanks to spammers.

On Sun, 11 Nov 2007 22:20:03 -0800, jaysome <ja*****@hotmai l.com>
wrote:

>How should a poor programmer like the OP know what is and what is not
broken in the C Standard?

By reading what the function does and understanding the consequences.
Though I don't know how you define "poor programmer." One who doesn't
read and understand the description of a function?

And what should the poor programmer use as
alternatives in place of what is broken in the C Standard? In
specific, exactly what should the poor programmer use instead of
scanf?

I almost never use scanf. I usually find it easier and clearer to
input as a character string, then take it apart some other way.

--
Al Balmer
Sun City, AZ

"user923005 " <dc*****@connx. comwrote in message
news:11******** **************@ d55g2000hsg.goo glegroups.com.. .

>

>If you just have a string to output with no formatting and you want a

newline at the end of the string, then puts is better than printf()
because you are not going to have to invoke a scanner to analyze a
format.

puts("Hello, world!");

is the equivalent of:

/* Using printf() with a format string with specifier to describe
the arg {note the newline}: */
printf("%s", "Hello, world!\n");

or even:

/* Using printf with only a format string containing no specifiers:
*/
printf("Hello, world!\n"); /* Format string still gets parsed. */

In any case, it's a tempest in a teapot to quibble over which one to
use.

OK thanks. That's probably why some compilers I noticed have optimized
printf to puts.

THanks