F
Flash Gordon
Tor Rustad wrote, On 25/04/07 19:35:
K
Keith Thompson
[snip]CBFalconer said:
I don't know what you mean by this. If you mean that eliminating
unmodified %s in scanf is not needed, can you explain? For example:
char s[N];
scanf("%s", s);
reads a (blank-delimited) word from stdin. If the user types, say,
2*N non-blank characters, it will invoke undefined behavior. How can
this be "handled" (other than by avoiding "%s")?
I
Ian Collins
Default said:
Today? You mean they fixed it before?
D
Default User
Ian said:Today? You mean they fixed it before?
Screwed up worse than usual. It is, or was, failing to display new
posts for its users.
Brian
C
CBFalconer
Keith said:
By not using unmodified %s. That is a user choice. No such
available for gets.
K
Keith Thompson
CBFalconer said:
The suggestion, I think, is to disallow the use of "%s" with scanf.
Disallowing a particular argument value to a function is not as
straightforward as eliminating a function altogether, but the
rationale is the same. gets(..) cannot be used safely;
scanf("%s", ...) cannot be used safely.
M
Malcolm McLean
And fgets() is in practise too difficult for any but the best programmers toKeith Thompson said:
use safely.
K
Keith Thompson
Malcolm McLean said:
Huh???
fgets() has limitations, but it doesn't pose anything like the danger
of gets() or scanf("%s", ...). It mishandles long lines by leaving
the remainder in the input stream, which is a minor inconvenience
compared to the undefined behavior of gets().
R
Richard Heathfield
Keith Thompson said:
Quite. It's a ludicrous claim.
What else could fgets do with long lines, other than leave them in the
input stream, if it isn't allowed to call *alloc()?
Quite. It's a ludicrous claim.
What else could fgets do with long lines, other than leave them in the
input stream, if it isn't allowed to call *alloc()?
J
jaysome
So, I guess the reasoning goes, in C0x or possibly even C1x, we'll all be
relieved of having to deal with gets()?
Will compiler vendors jump on the bandwagon of conforming to the latest
standard and forbid us to use gets(), just like they jumped on the
bandwagon of adopting the now-more-than-8-year-old C99 standard, and
allowed us to use "//" comments and declare variables in-line and use some
great keywords like "restrict"?
And if they do, will we all jump on their bandwagon and switch to their
latest and greatest C0x or C1x compiler--just like we all jumped on the
C99 compiler bandwagon--just so that we can take advantage of the great
feature of deprecating gets()?
I think not.
Although Mr. Gwyn's intentions are laudable, his connection with reality
is arguably questionable, and regrettably about 17 years too late.
Best regards
K
Keith Thompson
Richard Heathfield said:
Well, it could discard them, but that would be dumb.
R
Richard Bos
Tor Rustad said:
You clearly do not have cats, children, _or_ typo-prone fingers.
Richard
K
Kenny McCormack
See what I mean about "anal-retentive freaks without lives" ???
W
websnarf
As if we need further proof of just how dangerous gets() is. (James
Dow Allen has posted similar sentiments here in the past.) Even the
face of knowing exactly what's wrong with it, people claim its usable.
E
Eric Sosman
Malcolm said:
You're setting the "best" bar awfully low.
C
Chris Dollin
Malcolm said:
I think that's absurd. Do you have a reason for this interesting point of view?
--
"Go not to the Drazi for counsel, Unsaid /Babylon 5/
for they will answer both 'green' and 'purple'."
Hewlett-Packard Limited registered no:
registered office: Cain Road, Bracknell, Berks RG12 1HN 690597 England
R
Richard Heathfield
Malcolm McLean said:
Oh dear. I sure hope I'm a counter-example, because otherwise I've been
using fgets() unsafely for years.
Oh dear. I sure hope I'm a counter-example, because otherwise I've been
using fgets() unsafely for years.
F
Francine.Neary
I wouldn't say it's good news. Firstly, it will break a lot of old
code if it's dropped. Secondly, gets() is completely safe *as long as
_you_ control the data passed to it*. Of course it should never be
used in production code, but for private/development/toy code I find
it extremely useful.
E
Eric Sosman
jaysome wrote On 04/26/07 03:13,:
What part of the quoted text is connected tenuously to
reality? It says that "gets has been declared an obsolescent
feature and deprecated." Do you have a reason to believe
this is an inaccurate description of the state of affairs?
It was you, not Doug Gwyn, who suggested that the action
of the Committee would "relieve" the world of gets(). It was
you, not Gwyn, who described the miraculous consequences of
gets()' forthcoming status. It is you, not Gwyn, who are
peddling fantasy.
What part of the quoted text is connected tenuously to
reality? It says that "gets has been declared an obsolescent
feature and deprecated." Do you have a reason to believe
this is an inaccurate description of the state of affairs?
It was you, not Doug Gwyn, who suggested that the action
of the Committee would "relieve" the world of gets(). It was
you, not Gwyn, who described the miraculous consequences of
gets()' forthcoming status. It is you, not Gwyn, who are
peddling fantasy.
G
Gregor H.
Which is rather good news, given that the code you are talking about
makes use of "gets()" --- which is an inherently unsafe function.
Hear, hear. Well, sure, a gun is also completely safe as long you do
not aim at people with it.
It's extremely idiotic to have such a function in the first place,
even if only interested in "private/development/toy code" ...
Why do you think that
fgets(buffer, MAXBUF, stdin);
is less useful than
gets(buffer);
???
And if you have problems with the '\n' read in into the buffer, then
you might just add the code
char *pszTemp;
if ((pszTemp = strchr(buffer, '\n')) != NULL)
*pszTemp = '\0';
Done.
G.