psprintf_8c_source.html

/*-------------------------------------------------------------------------

 *

 * psprintf.c

 *      sprintf into an allocated-on-demand buffer

 *

 *

 * Portions Copyright (c) 1996-2026, PostgreSQL Global Development Group

 * Portions Copyright (c) 1994, Regents of the University of California

 *

 *

 * IDENTIFICATION

 *    src/common/psprintf.c

 *

 *-------------------------------------------------------------------------

 */


#ifndef FRONTEND


#include "postgres.h"


#include "utils/memutils.h"


#else


#include "postgres_fe.h"


#endif


/*

 * psprintf

 *

 * Format text data under the control of fmt (an sprintf-style format string)

 * and return it in an allocated-on-demand buffer.  The buffer is allocated

 * with palloc in the backend, or malloc in frontend builds.  Caller is

 * responsible to free the buffer when no longer needed, if appropriate.

 *

 * Errors are not returned to the caller, but are reported via elog(ERROR)

 * in the backend, or printf-to-stderr-and-exit() in frontend builds.

 * One should therefore think twice about using this in libpq.

 */

char *


psprintf(const char *fmt,...)

{

    int         save_errno = errno;

    size_t      len = 128;      /* initial assumption about buffer size */


    for (;;)

    {

        char       *result;

        va_list     args;

        size_t      newlen;


        /*

         * Allocate result buffer.  Note that in frontend this maps to malloc

         * with exit-on-error.

         */

        result = (char *) palloc(len);


        /* Try to format the data. */

        errno = save_errno;

        va_start(args, fmt);

        newlen = pvsnprintf(result, len, fmt, args);

        va_end(args);


        if (newlen < len)

            return result;      /* success */


        /* Release buffer and loop around to try again with larger len. */

        pfree(result);

        len = newlen;

    }

}


/*

 * pvsnprintf

 *

 * Attempt to format text data under the control of fmt (an sprintf-style

 * format string) and insert it into buf (which has length len).

 *

 * If successful, return the number of bytes emitted, not counting the

 * trailing zero byte.  This will always be strictly less than len.

 *

 * If there's not enough space in buf, return an estimate of the buffer size

 * needed to succeed (this *must* be more than the given len, else callers

 * might loop infinitely).

 *

 * Other error cases do not return, but exit via elog(ERROR) or exit().

 * Hence, this shouldn't be used inside libpq.

 *

 * Caution: callers must be sure to preserve their entry-time errno

 * when looping, in case the fmt contains "%m".

 *

 * Note that the semantics of the return value are not exactly C99's.

 * First, we don't promise that the estimated buffer size is exactly right;

 * callers must be prepared to loop multiple times to get the right size.

 * (Given a C99-compliant vsnprintf, that won't happen, but it is rumored

 * that some implementations don't always return the same value ...)

 * Second, we return the recommended buffer size, not one less than that;

 * this lets overflow concerns be handled here rather than in the callers.

 */

size_t


pvsnprintf(char *buf, size_t len, const char *fmt, va_list args)

{

    int         nprinted;


    nprinted = vsnprintf(buf, len, fmt, args);


    /* We assume failure means the fmt is bogus, hence hard failure is OK */

    if (unlikely(nprinted < 0))

    {

#ifndef FRONTEND

        elog(ERROR, "vsnprintf failed: %m with format string \"%s\"", fmt);

#else

        fprintf(stderr, "vsnprintf failed: %m with format string \"%s\"\n",

                fmt);

        exit(EXIT_FAILURE);

#endif

    }


    if ((size_t) nprinted < len)

    {

        /* Success.  Note nprinted does not include trailing null. */

        return (size_t) nprinted;

    }


    /*

     * We assume a C99-compliant vsnprintf, so believe its estimate of the

     * required space, and add one for the trailing null.  (If it's wrong, the

     * logic will still work, but we may loop multiple times.)

     *

     * Choke if the required space would exceed MaxAllocSize.  Note we use

     * this palloc-oriented overflow limit even when in frontend.

     */

    if (unlikely((size_t) nprinted > MaxAllocSize - 1))

    {

#ifndef FRONTEND

        ereport(ERROR,

                (errcode(ERRCODE_PROGRAM_LIMIT_EXCEEDED),

                 errmsg("out of memory")));

#else

        fprintf(stderr, _("out of memory\n"));

        exit(EXIT_FAILURE);

#endif

    }


    return nprinted + 1;

}


unlikely
#define unlikely(x)
Definition c.h:412

fprintf
#define fprintf(file, fmt, msg)
Definition cubescan.l:21

errcode
int errcode(int sqlerrcode)
Definition elog.c:863

errmsg
int errmsg(const char *fmt,...)
Definition elog.c:1080

_
#define _(x)
Definition elog.c:91

ERROR
#define ERROR
Definition elog.h:39

elog
#define elog(elevel,...)
Definition elog.h:226

ereport
#define ereport(elevel,...)
Definition elog.h:150

MaxAllocSize
#define MaxAllocSize
Definition fe_memutils.h:22

pfree
void pfree(void *pointer)
Definition mcxt.c:1616

palloc
void * palloc(Size size)
Definition mcxt.c:1387

memutils.h

len
const void size_t len
Definition pg_crc32c_sse42.c:28

buf
static char buf[DEFAULT_XLOG_SEG_SIZE]
Definition pg_test_fsync.c:71

vsnprintf
#define vsnprintf
Definition port.h:259

postgres.h

postgres_fe.h

fb
static int fb(int x)
Definition preproc-init.c:92

pvsnprintf
size_t pvsnprintf(char *buf, size_t len, const char *fmt, va_list args)
Definition psprintf.c:103

psprintf
char * psprintf(const char *fmt,...)
Definition psprintf.c:43

EXIT_FAILURE
#define EXIT_FAILURE
Definition settings.h:197