tags:

views:

439

answers:

5
+11  Q: 

Can gcc accurately catch useless conditionals?

Please examine the following code:

if (foo->bar == NULL);
   foo->bar = strdup("Unknown");

I spent the last part of three hours hunting down that leak with Valgrind, feeling very silly when I discovered the bogus ';'.

I know that the above code is valid C, however I would love for gcc to be able to tell me if I'm using a conditional as a statement.

Is there a flag that I could pass which would help spot this type of mistake in the future? It seems to me that gcc would be able to know if a conditional is useless.

IE: 

if (1 == 1);
  code_that_is_always_reached_since_conditional_is_a_statement();

None of the lints take issue with this either. Valgrind is great to find these kinds of things .. but the leak was actually much later in the code than where the pointer was originally allocated.

Any help is appreciated, even "No, it doesn't do that."

Edit:

Wow, thanks for such a fast and great response! To summarize, here are your options:

  • -Wextra picks up on all kinds of things that -Wall does not, including empty / useless statements.
  • -Wempty-body picks up on useless statements, which is enabled by -Wextra (but can break older versions of gcc, works on 4.3.x)

Some people might find -Wextra annoying. You may have a comparison between types of different signedness, but you know the comparison happens only when they are the same.

i.e.

int ret;
unsigned int i;

ret = foo(bar); /* foo() is known to return a signed errno on failure */
if (ret < 0)
  return 1;

/* Enter GCC complaining that ret differs in signedness
 * (but you know it doesn't and get the urge to cast it) */
for (i = 0; i < ret; i ++)
   ...

Thanks again for the tips!

+22  A:  
/* foo.c */
int main() {
   if (1) ; 
   return 0;
}

gcc -Wextra -c foo.c
foo.c: In function ‘main’:
foo.c:2: warning: empty body in an if-statement
Employed Russian  2009-05-12 04:42:55
Wonderfully laconic.
Crashworks  2009-05-12 04:46:51
I love it that -Wall doesn't mean -Wall. It was worth losing 2 rep to learn about -Wextra.
Norman Ramsey  2009-05-12 04:47:50
It's for backwards-compatibility. The documentation is very clear (even repeating itself) on this point. Wall says it activates, "All of the above -W options combined.", "This enables all the warnings about constructions that some users consider questionable, and that are easy to avoid" and "The following -W... options are not implied by -Wall.", etc. Further, many warnings reiterate whether Wall activates it.
Matthew Flaschen  2009-05-12 04:52:12
@Matthew - The documentation is also almost impossible to navigate because it's so massive. Perhaps they should repeat themselves a little less...
Chris Lutz  2009-05-12 04:55:22
Thanks for this! I also picked up on half a dozen comparisons between types of different signedness, one of which was dangerous. I also had a 'false;' instead of 'return false;' , which -Wall did not pick up.
Tim Post  2009-05-12 05:00:23
It's mostly massive because there are so many options. They could break it up into sections (different man page for each section), but for those of us with decent pagers that actually becomes /more/ work. For instance, zsh does this, and I find it annoying.
Matthew Flaschen  2009-05-12 05:02:36
there are also some useful error flags not included in -Wall and -Wextra ; see http://stackoverflow.com/questions/432835/how-do-you-ensure-that-you-as-programmer-have-written-quality-c-code/432852#432852 for what I use to compile C code with gcc
Christoph  2009-05-12 07:55:00
@Chris Lutz: Agreed, almost every really useful switch in gcc is an easter egg, though it remains one of the best documented compilers ever written.
Tim Post  2009-11-11 15:45:04
+6  A: 

Try -Wextra

JimG  2009-05-12 04:44:24
+6  A: 

After digging deep into the gcc manual:

-Wempty-body
    Warn if an empty body occurs in an `if', `else' or `do while' statement. This warning is also enabled by
-Wextra.

As some other posters wrote, -Wextra should do it

Sample code:

int main(){

        if (0);
                printf("launch missiles");
        return 0;
}


$gcc -Wempty-body foo.c
warn.c: In function ‘main’:
warn.c:5: warning: suggest braces around empty body in an ‘if’ statement
Tom  2009-05-12 04:52:26
+1, its nice to be able to squelch other stuff that -Wextra picks up on, such as comparisons between two things of different signedness (when you know damn well the value of both is unsigned), i.e. the check is not reached if one of the values is signed.
Tim Post  2009-05-12 05:03:27
The only problem is, this breaks earlier versions of gcc (4.2.x or earlier).
Tim Post  2009-05-17 14:06:17
+3  A: 

As an alternative to the compiler, I find that running an autoindenter over the code helps find these situations.

In vim for example:

gg=G
sharth  2009-05-12 05:12:21
A: 

In addition to the above, if you find yourself getting frustrated hunting for a bug using valgrind or a similar execution profiler, you should perhaps consider using a static analysis tool, such as lint. Personally, I use PC-LINT, which catches all sorts of these types of bugs.

Shane MacLaughlin  2009-05-12 05:51:48
the OP said that lint didn't pick up this problem... do you believe it can?
hhafez  2009-05-12 06:04:06
Just checked, PC-Lint catches it, albeit as a missing 'else'. I use VC++ which always catches it, hence I have never actually encountered it first hand. The point I'm making is that where dynamic analysis (valgrind, boundschecker, etc..) is drawing a blank, static analysis may show results. The reverse is equally true of course. I find it worthwhile to lint all my code for easily made snafus.
Shane MacLaughlin  2009-05-12 07:26:58
PC-Lint combined with the MISRA-C rules file would certainly pick this up as it would complain about the lack of braces after the 'if' statement.
Al  2009-05-12 07:38:09
A lack of braces after an if statement can be valid C89/99 , which is what I use. The lintian I use is called splint, it does a pretty good job of picking up things that the compiler did not. For instance, I use the -Wno-unused flag, since I know I have some static functions that have not been wired together yet, but this also squelches warning for unused variables. So, splint picks that up, and more. smaci is correct in that there has to be a good combination of lints and compiler flags, especially when you set your compiler to treat warnings as errors. I'm still brewing that magic recipe :)
Tim Post  2009-05-13 02:10:11

related questions

any good tool for makefile generation?
How do you pass a function as a parameter in C?
Where should a veteran C programmer start in order to master Java ?
Any good book on best practice and guidelines in developing a SDK in C?
How do you determine the size of a file in C?
Decoding printf statements in C (Printf Primer)
Shift operator in C
How to avoid redefining VERSION, PACKAGE, etc.
Alpha blending sprites in Nintendo DS Homebrew
When should I use type abstraction in embedded systems
How to implement continuations?
What are the barriers to understanding pointers and what can be done to overcome them?
Anyone have experience creating a shared library in MATLAB?
String.indexOf function in C
Passing multidimensional arrays as function arguments in C
C/C++ library for reading MIDI signals from a USB MIDI device
Choosing a static code analysis tool
How do you printf an unsigned long long int?
Good STL-like library for C.
Rockbox audio format
Why am I getting a malloc: double free error with realloc()?
Should I learn C?
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?
How to use the C socket API in C++ on z/OS