I'm wondering if there is a reason between two exec functions differing in <code>const</code>-ness, of if this is just a bug in the Single Unix Spec: Excerpting from the Linux manpage, which appears to align with the Single Unix Specification, here are a two versions of <code>exec</code>: <blockquote><code>int execlp(const char *file, const char *arg, ...); int execvp(const char *file, char *const argv[]);</code></blockquote> <code>execlp</code> takes its arguments as <code>const char *</code>, and it takes two or more of them. <code>const</code> in C is a promise that the function will not change the pointed-to data, in this case the actual characters (<code>char</code>) that make up the string. <code>execvp</code> instead takes its arguments as an array of pointers. However, instead of an array of pointers to <code>const char *</code> as you'd expect, the <code>const</code> keyword is in a different spot—and this matters quite a bit to C. <code>execvp</code> is saying it may well modify the characters in the strings, but it promises not to modify the array—that is, the pointers to the strings. So, in other words, <pre class="prettyprint lang-c prettyprint-override"><code>int fake_execvp(const char *file, char *const argv[]) { argv[0] = "some other string"; /* this is an error */ argv[0][0] = 'f'; /* change first letter to 'f': this is perfectly OK! */ /* ⋮ */ } </code></pre> In particular, this makes it hard (technically, prohibited) to call execvp using C++'s <code>std::string</code>'s <code>to_cstr()</code> method, which returns <code>const char *</code>. It seems like <code>execvp</code> really ought to take <code>const char *const argv[]</code>, in other words, it ought to promise not to do either of the above changes.

To quote the page you link: <blockquote> The statement about <code>argv[]</code> and <code>envp[]</code> being constants is included to make explicit to future writers of language bindings that these objects are completely constant. Due to a limitation of the ISO C standard, it is not possible to state that idea in standard C. Specifying two levels of <code>const</code>- qualification for the <code>argv[]</code> and <code>envp[]</code> parameters for the exec functions may seem to be the natural choice, given that these functions do not modify either the array of pointers or the characters to which the function points, but this would disallow existing correct code. </blockquote> Basically the <code>const</code> qualification on <code>execlp</code> and <code>execvp</code> are completely compatible in the sense that they specify identical limitations on the corresponding arguments.

Why does `execvp` take a `char *const argv[]`?

Tags:

c

exec

api

I'm wondering if there is a reason between two exec functions differing in const-ness, of if this is just a bug in the Single Unix Spec:

Excerpting from the Linux manpage, which appears to align with the Single Unix Specification, here are a two versions of exec:

int execlp(const char *file, const char *arg, ...); int execvp(const char *file, char *const argv[]);

execlp takes its arguments as const char *, and it takes two or more of them. const in C is a promise that the function will not change the pointed-to data, in this case the actual characters (char) that make up the string.

execvp instead takes its arguments as an array of pointers. However, instead of an array of pointers to const char * as you'd expect, the const keyword is in a different spot—and this matters quite a bit to C. execvp is saying it may well modify the characters in the strings, but it promises not to modify the array—that is, the pointers to the strings. So, in other words,

int fake_execvp(const char *file, char *const argv[]) {
    argv[0] = "some other string"; /* this is an error */
    argv[0][0] = 'f';              /* change first letter to 'f': this is perfectly OK! */
    /* ⋮ */
}

In particular, this makes it hard (technically, prohibited) to call execvp using C++'s std::string's to_cstr() method, which returns const char *.

It seems like execvp really ought to take const char *const argv[], in other words, it ought to promise not to do either of the above changes.

672

asked Oct 21 '13 16:10

derobert

1 Answers

To quote the page you link:

The statement about argv[] and envp[] being constants is included to make explicit to future writers of language bindings that these objects are completely constant. Due to a limitation of the ISO C standard, it is not possible to state that idea in standard C. Specifying two levels of const- qualification for the argv[] and envp[] parameters for the exec functions may seem to be the natural choice, given that these functions do not modify either the array of pointers or the characters to which the function points, but this would disallow existing correct code.

Basically the const qualification on execlp and execvp are completely compatible in the sense that they specify identical limitations on the corresponding arguments.

answered Sep 23 '22 19:09

sds

Related questions
                            
                                Why can recv() in the client program receive messages sent to the client after the client has invoked shutdown(sockfd, SHUT_RD)?
                            
                                Constant array types in C, flaw in standard?
                            
                                Why does OSX document atoi/atof as not being threadsafe?
                            
                                Returning "Native" PHP Objects from an Extension
                            
                                Can uint8_t be a non-character type?
                            
                                Why doesn't C have rotate left/right operators? [closed]
                            
                                What are the details of dynamic symbol binding on OS X?
                            
                                show strings in compiled binary
                            
                                GCC pure/const functions that accept a pointer argument
                            
                                How to read big json?
                            
                                Is there a fast in-memory queue I can use that swaps items as it reaches a certain size?
                            
                                Interrupt (n)curses getch on incoming signal
                            
                                Order of initialization for multiple declarators in a single declaration
                            
                                clang/clang++ doesn't find C/C++ headers in windows?
                            
                                Does dereferencing a char* inhibit strict aliasing optimizations?
                            
                                sizeof(""+0) != sizeof(char *) Bug or undefined behaviour?
                            
                                Using read with inotify
                            
                                quicksort (n arrays should be treated as 1 and values remapped as needed)
                            
                                ALSA equivalent to /dev/audio dump?
                            
                                Mixing C++ code from different compilers

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With