This is an archive of the discontinued LLVM Phabricator instance.

Differential D66186

[Sema] Don't warn on printf('%hd', [char]) (PR41467)
ClosedPublic

Authored by Nathan-Huckleberry on Aug 13 2019, 4:11 PM.

Details

Reviewers
rsmith
nickdesaulniers
aaron.ballman
lebedev.ri
Commits
rGcc01d6421f4a: [Sema] Don't warn on printf('%hd', [char]) (PR41467)
rL369791: [Sema] Don't warn on printf('%hd', [char]) (PR41467)
rC369791: [Sema] Don't warn on printf('%hd', [char]) (PR41467)
Summary

Link: https://bugs.llvm.org/show_bug.cgi?id=41467

Diff Detail

Repository
rL LLVM

Event Timeline

Nathan-Huckleberry created this revision.Aug 13 2019, 4:11 PM
Herald added a project: Restricted Project. · View Herald TranscriptAug 13 2019, 4:11 PM
Herald added a subscriber: cfe-commits. · View Herald Transcript
Nathan-Huckleberry added a reviewer: rsmith.Aug 13 2019, 4:12 PM
Nathan-Huckleberry added a subscriber: nickdesaulniers.
Harbormaster completed remote builds in B36706: Diff 214965.Aug 13 2019, 4:13 PM
Nathan-Huckleberry updated this revision to Diff 214966.Aug 13 2019, 4:14 PM
  • Add comment in test
Harbormaster completed remote builds in B36707: Diff 214966.Aug 13 2019, 4:16 PM
nickdesaulniers accepted this revision.Aug 14 2019, 10:30 AM

LGTM thanks for the patch!

This revision is now accepted and ready to land.Aug 14 2019, 10:30 AM
lebedev.ri retitled this revision from Fix warning on printf('%hd', [char]) to [Sema] Don't warn on printf('%hd', [char]) (PR41467).Aug 14 2019, 10:54 AM
lebedev.ri added a reviewer: aaron.ballman.
aaron.ballman added a comment.Aug 14 2019, 3:05 PM

There was a request in the linked bug for some code archaeology to see why this behavior exists in the first place. What were the results of that? I'm not opposed to the patch, but I would like to understand why it behaves the way it does.

I could imagine "confusing user intent" being a valid reason why someone might want this warning, so we may want to default-off this diagnostic (because the code is safe) but still provide users with a way to enable it.

clang/test/Sema/format-strings-enum-fixed-type.cpp
82 ↗(On Diff #214966)

This comment is now incorrect.

Nathan-Huckleberry added a comment.Aug 15 2019, 11:01 AM
In D66186#1630427, @aaron.ballman wrote:

There was a request in the linked bug for some code archaeology to see why this behavior exists in the first place. What were the results of that? I'm not opposed to the patch, but I would like to understand why it behaves the way it does.

Since printf is a variadic function, integral argument types are promoted to int. The warning code runs the matchesType check twice, once to check if the promoted type (int) is able to be printed with the format and once to check if the original type (char) is able to be printed with the format.

printf("%d", [char]) is caught by the first case
printf("%hhd", [char]) is caught by the second case.

printf("%hd", [char]) is a warning because an exception has not been made for that case.

lebedev.ri added a subscriber: lebedev.ri.Aug 15 2019, 11:17 AM
In D66186#1631921, @Nathan-Huckleberry wrote:
In D66186#1630427, @aaron.ballman wrote:

There was a request in the linked bug for some code archaeology to see why this behavior exists in the first place. What were the results of that? I'm not opposed to the patch, but I would like to understand why it behaves the way it does.

Since printf is a variadic function, integral argument types are promoted to int. The warning code runs the matchesType check twice, once to check if the promoted type (int) is able to be printed with the format and once to check if the original type (char) is able to be printed with the format.

printf("%d", [char]) is caught by the first case
printf("%hhd", [char]) is caught by the second case.

printf("%hd", [char]) is a warning because an exception has not been made for that case.

That explains what the implementation does, but does not attempt to answer the question *why* things are the way they are.

I read https://bugs.llvm.org/show_bug.cgi?id=41467#c4 as

  • any narrowing is always diagnosed
  • promotion to wider than int is diagnosed
  • passthrough is not diagnosed
  • promotion to something smaller than int is diagnosed (the current case)

I can interpret it as: we already know that

In D66186#1631921, @Nathan-Huckleberry wrote:

Since printf is a variadic function, integral argument types are promoted to int.

therefore why are you first implicitly promoting to int and then implicitly truncating?
Did you mean to print the original value? Did you mean to print int?

That doesn't sound too outlandish to me.

aaron.ballman added a comment.Aug 15 2019, 11:23 AM
In D66186#1631921, @Nathan-Huckleberry wrote:
In D66186#1630427, @aaron.ballman wrote:

There was a request in the linked bug for some code archaeology to see why this behavior exists in the first place. What were the results of that? I'm not opposed to the patch, but I would like to understand why it behaves the way it does.

Since printf is a variadic function, integral argument types are promoted to int. The warning code runs the matchesType check twice, once to check if the promoted type (int) is able to be printed with the format and once to check if the original type (char) is able to be printed with the format.

printf("%d", [char]) is caught by the first case
printf("%hhd", [char]) is caught by the second case.

printf("%hd", [char]) is a warning because an exception has not been made for that case.

This all makes sense as to how things work today, but I was more wondering why they worked that way in the first place. I'm especially interested to know whether this is diagnosed because it shows confusion of the user's intent, because that seems like a valuable behavior to retain (though perhaps it doesn't need to be default-on).

lebedev.ri requested changes to this revision.Aug 15 2019, 12:09 PM

(just want to mark it as "unanswered questions")

This revision now requires changes to proceed.Aug 15 2019, 12:09 PM
Nathan-Huckleberry added a comment.Aug 15 2019, 4:50 PM

As far as I can tell this case was just overlooked. The original commit adding this change https://reviews.llvm.org/rG0208793e41018ac168412a3da8b2fba70aba9716 only allows chars to int and chars to chars. Another commit ignores typing of chars https://reviews.llvm.org/rG74e82bd190017d59d5d78b07dedca5b06b4547da. I did not see anything related to this particular case in previous commits.

aaron.ballman requested changes to this revision.Aug 16 2019, 6:53 AM
In D66186#1632440, @Nathan-Huckleberry wrote:

As far as I can tell this case was just overlooked. The original commit adding this change https://reviews.llvm.org/rG0208793e41018ac168412a3da8b2fba70aba9716 only allows chars to int and chars to chars. Another commit ignores typing of chars https://reviews.llvm.org/rG74e82bd190017d59d5d78b07dedca5b06b4547da. I did not see anything related to this particular case in previous commits.

Hmm, it looks like, at least from this review, someone thought the behavior was for demonstrating user intent: http://llvm.org/viewvc/llvm-project?view=revision&revision=157961.

I've convinced myself that -Wformat should disable that diagnostic by default, but there is utility in keeping it exposed through a different format warning flag. It seems like -Wformat-pedantic should still diagnose this case.

Nathan-Huckleberry updated this revision to Diff 216699.Aug 22 2019, 1:29 PM
  • Warn when -Wformat-pedantic is set
Harbormaster completed remote builds in B37137: Diff 216699.Aug 22 2019, 1:32 PM
Nathan-Huckleberry updated this revision to Diff 216702.Aug 22 2019, 1:43 PM
  • Cleanup test
Harbormaster completed remote builds in B37138: Diff 216702.Aug 22 2019, 1:43 PM
lebedev.ri added inline comments.Aug 22 2019, 1:57 PM
clang/lib/Sema/SemaChecking.cpp
8080–8083 ↗(On Diff #216702)

Match isn't used outside of this block later on, so i don't think you need *this* change.

8100–8107 ↗(On Diff #216702)

Just add a new variable

// All further checking is done on the subexpression
analyze_printf::ArgType::MatchKind Match2 = AT.matchesType(S.Context, ExprTy);
if (Match2 == analyze_printf::ArgType::Match)
  return true;
Pedantic |= Match2 == analyze_printf::ArgType::NoMatchPedantic;
aaron.ballman added inline comments.Aug 22 2019, 1:59 PM
clang/test/Sema/format-strings-enum-fixed-type.cpp
82 ↗(On Diff #214966)

Not quite what I had in mind. I would remove the // no-warning comments that were added and instead change the comment on line 82 to say This is not correct, but it is safe. Only warned in pedantic mode because '%hd' shows intent. or something along those lines.

clang/test/Sema/format-strings.c
280–281 ↗(On Diff #216702)

I'd drop the no-warning comments here, or say warning with -Wformat-pedantic only if you think it adds value.

nickdesaulniers added inline comments.Aug 22 2019, 2:00 PM
clang/lib/Sema/SemaChecking.cpp
8101 ↗(On Diff #216702)

Maybe leave the top level Match const and just create a new one? It may be surprising if someone goes to reuse Match below not noticing that it may be modified here.

Nathan-Huckleberry updated this revision to Diff 216713.Aug 22 2019, 2:08 PM
  • Add variable for implicit match and fix comments
Harbormaster completed remote builds in B37141: Diff 216713.Aug 22 2019, 2:08 PM
lebedev.ri added inline comments.Aug 22 2019, 2:14 PM
clang/lib/Sema/SemaChecking.cpp
8100–8107 ↗(On Diff #216702)

Early return would simplify this still

aaron.ballman added inline comments.Aug 22 2019, 2:24 PM
clang/lib/Sema/SemaChecking.cpp
8106 ↗(On Diff #216713)

I don't think this needs to use |= true. If Pedantic was true, this is a noop. If it was false, this sets it to true. Either way the value is true, so I think it should just be Pedantic = true; The logic gets easier if you write this as:

if (ImplicitMatch && ImplicitMatch != analyze_printf::ArgType::NoMatchPedantic)
  return true;
Pedantic |= ImplicitMatch;
Nathan-Huckleberry marked an inline comment as done.Aug 22 2019, 3:52 PM
Nathan-Huckleberry added inline comments.
clang/lib/Sema/SemaChecking.cpp
8100–8107 ↗(On Diff #216702)

Could be ArgType::NoMatch and wouldn't display a warning

Nathan-Huckleberry marked an inline comment as done.Aug 22 2019, 3:54 PM
Nathan-Huckleberry added inline comments.
clang/lib/Sema/SemaChecking.cpp
8100–8107 ↗(On Diff #216702)

Wait this should definitely be an else-if

Nathan-Huckleberry marked an inline comment as done.Aug 22 2019, 3:55 PM
Nathan-Huckleberry added inline comments.
clang/lib/Sema/SemaChecking.cpp
8100–8107 ↗(On Diff #216702)

Nevermind you are correct. Will remove else case.

Nathan-Huckleberry updated this revision to Diff 216729.Aug 22 2019, 3:56 PM
  • Remove else and |=
Harbormaster completed remote builds in B37144: Diff 216729.Aug 22 2019, 3:56 PM
lebedev.ri requested changes to this revision.Aug 22 2019, 4:03 PM

Please can you explain why the snippet i posted in-line does not work for you?

clang/lib/Sema/SemaChecking.cpp
8105–8107 ↗(On Diff #216729)

I do not understand this.
Even if you set Pedantic = true, you will immediately return true without ever using that Pedantic.
This seems broken?

This revision now requires changes to proceed.Aug 22 2019, 4:03 PM
Nathan-Huckleberry updated this revision to Diff 216730.Aug 22 2019, 4:13 PM
  • Fix broken logic from previous revision
Harbormaster completed remote builds in B37145: Diff 216730.Aug 22 2019, 4:15 PM
nickdesaulniers added inline comments.Aug 22 2019, 4:28 PM
clang/lib/Sema/SemaChecking.cpp
8107 ↗(On Diff #216730)

At this point ImplicitMatch can only have the value analyze_printf::ArgType::NoMatchPedantic as ArgType::MatchKind is an enum with only 3 values (see clang/include/clang/AST/FormatString.h).

Rather than have conditional/ternaries for each case, I think 2 conditionals are maybe simpler:

if (ImplicitMatch == analyze_printf::ArgType::Match)
  return true;
else if (ImplicitMatch == analyze_printf::ArgType::NoMatchPedantic)
  Pedantic = true;

The |= is kind of more complicated than simple assignment.

Then you don't need a block for if (ImplicitMatch).

nickdesaulniers requested changes to this revision.Aug 22 2019, 4:28 PM
This revision now requires changes to proceed.Aug 22 2019, 4:28 PM
Nathan-Huckleberry updated this revision to Diff 216739.Aug 22 2019, 4:37 PM
  • Simplify logic for readability
Harbormaster completed remote builds in B37148: Diff 216739.Aug 22 2019, 4:40 PM
nickdesaulniers accepted this revision.Aug 22 2019, 4:56 PM

Thanks for being responsive to all this code review! 💃🏽

lebedev.ri added a comment.Aug 22 2019, 11:35 PM

Looks about right

clang/lib/Sema/SemaChecking.cpp
8105–8106 ↗(On Diff #216739)

No else after return.

aaron.ballman accepted this revision.Aug 23 2019, 5:17 AM

LGTM aside from the else after return nit.

lebedev.ri accepted this revision.Aug 23 2019, 5:35 AM
In D66186#1642607, @aaron.ballman wrote:

LGTM aside from the else after return nit.

This revision is now accepted and ready to land.Aug 23 2019, 5:35 AM
Nathan-Huckleberry updated this revision to Diff 216884.Aug 23 2019, 10:06 AM
  • Remove else
Harbormaster completed remote builds in B37197: Diff 216884.Aug 23 2019, 10:10 AM
lebedev.ri requested changes to this revision.Aug 23 2019, 10:13 AM
lebedev.ri added inline comments.
clang/lib/Sema/SemaChecking.cpp
8106 ↗(On Diff #216884)

if (ImplicitMatch == analyze_printf::ArgType::NoMatchPedantic) should have stayed probably?

This revision now requires changes to proceed.Aug 23 2019, 10:13 AM
Nathan-Huckleberry updated this revision to Diff 216893.Aug 23 2019, 10:20 AM
  • Add if without else
Harbormaster completed remote builds in B37203: Diff 216893.Aug 23 2019, 10:21 AM
lebedev.ri accepted this revision.Aug 23 2019, 10:23 AM

LG, thank you.

This revision is now accepted and ready to land.Aug 23 2019, 10:23 AM
Closed by commit rL369791: [Sema] Don't warn on printf('%hd', [char]) (PR41467) (authored by Nathan-Huckleberry). · Explain WhyAug 23 2019, 11:04 AM
This revision was automatically updated to reflect the committed changes.
Herald added a project: Restricted Project. · View Herald TranscriptAug 23 2019, 11:04 AM
Herald added a subscriber: llvm-commits. · View Herald Transcript

Revision Contents

PathSize
cfe/
trunk/
lib/
AST/
2 lines
Sema/
8 lines
test/
FixIt/
4 lines
Sema/
8 lines
10 lines
4 lines

Diff 216904

cfe/trunk/lib/AST/FormatString.cpp

Show First 20 LinesShow All 380 Lines▼ Show 20 Lines case SpecificTy: {
if (const BuiltinType *BT = argTy->getAs<BuiltinType>()) if (const BuiltinType *BT = argTy->getAs<BuiltinType>())
switch (BT->getKind()) { switch (BT->getKind()) {
default: default:
break; break;
case BuiltinType::Char_S: case BuiltinType::Char_S:
case BuiltinType::SChar: case BuiltinType::SChar:
case BuiltinType::Char_U: case BuiltinType::Char_U:
case BuiltinType::UChar: case BuiltinType::UChar:
if (T == C.UnsignedShortTy || T == C.ShortTy)
return NoMatchPedantic;
return T == C.UnsignedCharTy || T == C.SignedCharTy ? Match return T == C.UnsignedCharTy || T == C.SignedCharTy ? Match
: NoMatch; : NoMatch;
case BuiltinType::Short: case BuiltinType::Short:
return T == C.UnsignedShortTy ? Match : NoMatch; return T == C.UnsignedShortTy ? Match : NoMatch;
case BuiltinType::UShort: case BuiltinType::UShort:
return T == C.ShortTy ? Match : NoMatch; return T == C.ShortTy ? Match : NoMatch;
case BuiltinType::Int: case BuiltinType::Int:
return T == C.UnsignedIntTy ? Match : NoMatch; return T == C.UnsignedIntTy ? Match : NoMatch;
▲ Show 20 LinesShow All 610 LinesShow Last 20 Lines

cfe/trunk/lib/Sema/SemaChecking.cpp

  • This file is larger than 256 KB, so syntax highlighting is disabled by default.
Show First 20 LinesShow All 8,113 Lines▼ Show 20 Lines if (isArithmeticArgumentPromotion(S, ICE)) {
E = ICE->getSubExpr(); E = ICE->getSubExpr();
ExprTy = E->getType(); ExprTy = E->getType();
// Check if we didn't match because of an implicit cast from a 'char' // Check if we didn't match because of an implicit cast from a 'char'
// or 'short' to an 'int'. This is done because printf is a varargs // or 'short' to an 'int'. This is done because printf is a varargs
// function. // function.
if (ICE->getType() == S.Context.IntTy || if (ICE->getType() == S.Context.IntTy ||
ICE->getType() == S.Context.UnsignedIntTy) { ICE->getType() == S.Context.UnsignedIntTy) {
// All further checking is done on the subexpression. // All further checking is done on the subexpression
if (AT.matchesType(S.Context, ExprTy)) const analyze_printf::ArgType::MatchKind ImplicitMatch =
AT.matchesType(S.Context, ExprTy);
if (ImplicitMatch == analyze_printf::ArgType::Match)
return true; return true;
if (ImplicitMatch == analyze_printf::ArgType::NoMatchPedantic)
Pedantic = true;
} }
} }
} else if (const CharacterLiteral *CL = dyn_cast<CharacterLiteral>(E)) { } else if (const CharacterLiteral *CL = dyn_cast<CharacterLiteral>(E)) {
// Special case for 'a', which has type 'int' in C. // Special case for 'a', which has type 'int' in C.
// Note, however, that we do /not/ want to treat multibyte constants like // Note, however, that we do /not/ want to treat multibyte constants like
// 'MooV' as characters! This form is deprecated but still exists. // 'MooV' as characters! This form is deprecated but still exists.
if (ExprTy == S.Context.IntTy) if (ExprTy == S.Context.IntTy)
if (llvm::isUIntN(S.Context.getCharWidth(), CL->getValue())) if (llvm::isUIntN(S.Context.getCharWidth(), CL->getValue()))
▲ Show 20 LinesShow All 6,282 LinesShow Last 20 Lines

cfe/trunk/test/FixIt/format.m

Show First 20 LinesShow All 199 Lines▼ Show 20 Linesvoid test_percent_C() {
// CHECK-NOT: fix-it:"{{.*}}":{[[@LINE-1]]:11-[[@LINE-1]]:13}:"%d" // CHECK-NOT: fix-it:"{{.*}}":{[[@LINE-1]]:11-[[@LINE-1]]:13}:"%d"
// CHECK: fix-it:"{{.*}}":{[[@LINE-2]]:16-[[@LINE-2]]:16}:"(unichar)(" // CHECK: fix-it:"{{.*}}":{[[@LINE-2]]:16-[[@LINE-2]]:16}:"(unichar)("
// CHECK: fix-it:"{{.*}}":{[[@LINE-3]]:42-[[@LINE-3]]:42}:")" // CHECK: fix-it:"{{.*}}":{[[@LINE-3]]:42-[[@LINE-3]]:42}:")"
NSLog(@"%C", 0.0); // expected-warning{{format specifies type 'unichar' (aka 'unsigned short') but the argument has type 'double'}} NSLog(@"%C", 0.0); // expected-warning{{format specifies type 'unichar' (aka 'unsigned short') but the argument has type 'double'}}
// CHECK: fix-it:"{{.*}}":{[[@LINE-1]]:11-[[@LINE-1]]:13}:"%f" // CHECK: fix-it:"{{.*}}":{[[@LINE-1]]:11-[[@LINE-1]]:13}:"%f"
// CHECK-NOT: fix-it:"{{.*}}":{[[@LINE-2]]:16-[[@LINE-2]]:16}:"(unichar)" // CHECK-NOT: fix-it:"{{.*}}":{[[@LINE-2]]:16-[[@LINE-2]]:16}:"(unichar)"
NSLog(@"%C", (char)0x260300); // expected-warning{{format specifies type 'unichar' (aka 'unsigned short') but the argument has type 'char'}} NSLog(@"%C", (char)0x260300);
// CHECK: fix-it:"{{.*}}":{[[@LINE-1]]:11-[[@LINE-1]]:13}:"%c"
// CHECK-NOT: fix-it:"{{.*}}":{[[@LINE-2]]:16-[[@LINE-2]]:22}:"(unichar)"
NSLog(@"%C", 'a'); // expected-warning{{format specifies type 'unichar' (aka 'unsigned short') but the argument has type 'char'}} NSLog(@"%C", 'a'); // expected-warning{{format specifies type 'unichar' (aka 'unsigned short') but the argument has type 'char'}}
// CHECK: fix-it:"{{.*}}":{[[@LINE-1]]:11-[[@LINE-1]]:13}:"%c" // CHECK: fix-it:"{{.*}}":{[[@LINE-1]]:11-[[@LINE-1]]:13}:"%c"
// CHECK-NOT: fix-it:"{{.*}}":{[[@LINE-2]]:16-[[@LINE-2]]:22}:"(unichar)" // CHECK-NOT: fix-it:"{{.*}}":{[[@LINE-2]]:16-[[@LINE-2]]:22}:"(unichar)"
} }
void testSignedness(long i, unsigned long u) { void testSignedness(long i, unsigned long u) {
▲ Show 20 LinesShow All 82 LinesShow Last 20 Lines

cfe/trunk/test/Sema/format-strings-enum-fixed-type.cpp

Show First 20 LinesShow All 73 Lines▼ Show 20 Lines
typedef enum : char { CharConstant = 'a' } CharEnum; typedef enum : char { CharConstant = 'a' } CharEnum;
// %hhd is deliberately not required to be signed, because 'char' isn't either. // %hhd is deliberately not required to be signed, because 'char' isn't either.
// This is a separate code path in FormatString.cpp. // This is a separate code path in FormatString.cpp.
void testChar(CharEnum input) { void testChar(CharEnum input) {
printf("%hhd", input); // no-warning printf("%hhd", input); // no-warning
printf("%hhd", CharConstant); // no-warning printf("%hhd", CharConstant); // no-warning
// This is not correct but it is safe. We warn because '%hd' shows intent. // This is not correct, but it is safe. Only warned in pedantic mode because '%hd' shows intent.
printf("%hd", input); // expected-warning{{format specifies type 'short' but the argument has underlying type 'char'}} printf("%hd", input);
printf("%hd", CharConstant); // expected-warning{{format specifies type 'short'}} printf("%hd", CharConstant);
// This is not correct but it matches the promotion rules (and is safe). // This is not correct but it matches the promotion rules (and is safe).
printf("%d", input); // no-warning printf("%d", input); // no-warning
printf("%d", CharConstant); // no-warning printf("%d", CharConstant); // no-warning
printf("%lld", input); // expected-warning{{format specifies type 'long long' but the argument has underlying type 'char'}} printf("%lld", input); // expected-warning{{format specifies type 'long long' but the argument has underlying type 'char'}}
printf("%lld", CharConstant); // expected-warning{{format specifies type 'long long'}} printf("%lld", CharConstant); // expected-warning{{format specifies type 'long long'}}
} }

cfe/trunk/test/Sema/format-strings-pedantic.c

// RUN: %clang_cc1 -fsyntax-only -verify -Wformat -Wformat-pedantic -isystem %S/Inputs %s
int printf(const char *restrict, ...);
typedef unsigned char uint8_t;
void print_char_as_short() {
printf("%hu\n", (unsigned char)1); // expected-warning{{format specifies type 'unsigned short' but the argument has type 'unsigned char'}}
printf("%hu\n", (uint8_t)1); // expected-warning{{format specifies type 'unsigned short' but the argument has type 'uint8_t' (aka 'unsigned char')}}
}

cfe/trunk/test/Sema/format-strings.c

Show First 20 LinesShow All 271 Lines▼ Show 20 Linesvoid test10(int x, float f, int i, long long lli) {
printf("%c\n", 1.23); // expected-warning{{format specifies type 'int' but the argument has type 'double'}} printf("%c\n", 1.23); // expected-warning{{format specifies type 'int' but the argument has type 'double'}}
printf("Format %d, is %! %f", 1, 4.4); // expected-warning{{invalid conversion specifier '!'}} printf("Format %d, is %! %f", 1, 4.4); // expected-warning{{invalid conversion specifier '!'}}
} }
typedef unsigned char uint8_t; typedef unsigned char uint8_t;
void should_understand_small_integers() { void should_understand_small_integers() {
printf("%hhu", (short) 10); // expected-warning{{format specifies type 'unsigned char' but the argument has type 'short'}} printf("%hhu", (short) 10); // expected-warning{{format specifies type 'unsigned char' but the argument has type 'short'}}
printf("%hu\n", (unsigned char) 1); // expected-warning{{format specifies type 'unsigned short' but the argument has type 'unsigned char'}} printf("%hu\n", (unsigned char)1); // warning with -Wformat-pedantic only
printf("%hu\n", (uint8_t)1); // expected-warning{{format specifies type 'unsigned short' but the argument has type 'uint8_t'}} printf("%hu\n", (uint8_t)1); // warning with -Wformat-pedantic only
} }
void test11(void *p, char *s) { void test11(void *p, char *s) {
printf("%p", p); // no-warning printf("%p", p); // no-warning
printf("%p", 123); // expected-warning{{format specifies type 'void *' but the argument has type 'int'}} printf("%p", 123); // expected-warning{{format specifies type 'void *' but the argument has type 'int'}}
printf("%.4p", p); // expected-warning{{precision used with 'p' conversion specifier, resulting in undefined behavior}} printf("%.4p", p); // expected-warning{{precision used with 'p' conversion specifier, resulting in undefined behavior}}
printf("%+p", p); // expected-warning{{flag '+' results in undefined behavior with 'p' conversion specifier}} printf("%+p", p); // expected-warning{{flag '+' results in undefined behavior with 'p' conversion specifier}}
printf("% p", p); // expected-warning{{flag ' ' results in undefined behavior with 'p' conversion specifier}} printf("% p", p); // expected-warning{{flag ' ' results in undefined behavior with 'p' conversion specifier}}
▲ Show 20 LinesShow All 420 LinesShow Last 20 Lines