This is the mail archive of the libc-help@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: strtoul(-1) discussion

From: Florian Weimer <fweimer at redhat dot com>
To: Fabrice Bauzac <libnoon at gmail dot com>
Cc: libc-help at sourceware dot org
Date: Mon, 15 Apr 2013 16:28:49 +0200
Subject: Re: strtoul(-1) discussion
References: <CAB6Q1a-m=W4cA3WCeuB1FzFWHbistLrN3wR1hfo4mfPB9j9qJw at mail dot gmail dot com>

On 04/07/2013 03:20 PM, Fabrice Bauzac wrote:

The algorithm behind GNU libc's strtoul seems to be:

   * store the sign independently from the digits.
   * perform a strtoul on the digits without the sign, producing ulong
     value N.
   * if the sign is negative, perform N := -N.
   * return N.

The problem is that [1] says:

   "If the correct value is outside the range of representable values,
   {ULONG_MAX} or {ULLONG_MAX} shall be returned and errno set to
   [ERANGE]."

POSIX 2008 also says: "If the subject sequence begins with a minus-sign,the value resulting from the conversion shall be negated." I think thatmeans that POSIX actually mandates the (admittedly weird) glibcbehavior. The C and POSIX committees probably couldn't bring themselvesto clearly specify this behavior, and that's where the ambiguity comes from.

It's even clearer for the %u conversion specifier, where this behavioris pretty explicitly mandated.

I have made some experiments on Solaris, and the Solaris
implementation does not follow its specification.  The behaviour of
Solaris's strtoul seems to be the same as GNU libc's strtoul!

That's actually what I expect—GNU libc's behavior matches that of legacysystems.

There are some other non-GNU resources which describe the odd behavior,e.g.:

"This function returns an unsigned long int. If the given string startswith a minus sign, the result is a negative number that's cast to beunsigned."


<http://www.users.pjwstk.edu.pl/~jms/qnx/help/watcom/clibref/src/strtoul.html>

(The page source dates this to 1999, so it could have been influenced byglibc, but it's somewhat unlikely because GNU/Linux wouldn't have beenconsidered the gold standard back then. And the QNX folks probably don'teven today.)

There's an old discussion on comp.std.c dating back to September 1992,"strtoul on negative numbers". It strongly suggests that back then,everyone implemented the strange behavior.


I guess we're stuck with it.

--
Florian Weimer / Red Hat Product Security Team

Follow-Ups:
- Re: strtoul(-1) discussion
  - From: Fabrice Bauzac

References:
- strtoul(-1) discussion
  - From: Fabrice Bauzac

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]