How To Write a C Program Like Me
C is Dumb
I know, Python and Javascript are what the kids are writing all their crazy ‘apps’ with these days. But don’t be so quick to dismiss C, it’s a capable and concise language that has a lot to offer. If you need speed, writing in C could be your answer. If you are looking for job security and the opportunity to learn how to hunt down null pointer dereferences, C could also be your answer! In this article, I’ll explain how to structure a C file and write a C main function that handles command-line arguments like a champ.
Me: a crusty UNIX system programmer.
You: someone with an editor, a C compiler and some time to kill.
Let’s do this.
A Boring But Correct C Program
A C program starts with a main() function, usually kept in a file named main.c.
/* main.c */
int main(int argc, char *argv[]) {
}
This program compiles but doesn’t do anything:
$ gcc main.c
$ ./a.out -o foo -vv
$
Correct and boring.
Main Functions Are Unique
The main() function is the first function in your program executed
when it begins executing, but it’s not the first function
executed. The first function is _start() which is typically
provided by the C runtime library, linked in automatically when your
program is compiled. The details are highly dependent on the operating
system and compiler toolchain, so I’m going to pretend like I didn’t
mention it.
The main() function has two arguments that traditionally are called
argc and argv and returns a signed integer. Most UNIX environments
expect programs to return zero on success and negative one on failure.
| Argument | Name | Description |
|---|---|---|
| argc | Argument Count | Length of the argument vector. |
| argv | Argument Vector | Array of character pointers. |
The argument vector, argv, is a tokenized representation of the
commmand line that invoked your program. In the example above, argv
would be a list of the following strings:
argv = [ "/path/to/a.out", "-o", "foo", "-vv" ];
The argument vector is guaranteed to always have at least one string in the
first index, argv[0] which is the full path to the program executed.
Anatomy of a main.c File
When I write a main.c from scratch, it’s usually structured like this:
/* main.c */
/* 0 copyright/licensing */
/* 1 includes */
/* 2 defines */
/* 3 external declarations */
/* 4 typedefs */
/* 5 global variable declarations */
/* 6 function prototypes */
int main(int argc, char *argv[]) {
/* 7 command-line parsing */
}
/* 8 function declarations */
I’ll talk about each of these numbered sections, except for zero. If you have to put copyright or licensing text in your source, put it there.
Another thing I won’t talk about adding to your program is comments.
"Comments lie."
- A cynical but smart and good looking programmer.
Instead of comments, use meaningful function and variable names.
Appealing to the innate laziness of programmers, once you add comments you’ve doubled your maintenance load. If you change or refactor the code, you need to update or expand the comments. Over time the code mutates away from anything resembling what the comments describe.
If you have to write comments, do not write about what the code is doing. Instead, write about why the code is doing what it’s doing. Write comments that you would want to read five years from now when you’ve forgotten everything about this code. And the fate of the world is depending on you. No pressure.
1 Includes
The first things I add to a main.c file are includes to make a
multitude of standard C library functions and variables available to
my program. The standard C library does lots of things, explore header
files in /usr/include to find out what it can do for you.
The #include string is a C preprocessor directive that causes
the inclusion of the referenced file in it’s entirety into the current
file. Header files in C are usually named with a .h extension and
should not contain any executable code; only macros, defines, typedefs
and external variable and function prototypes. The string <header.h>
tells cpp to look for a file called header.h in the system defined
header path, usually /usr/include.
/* main.c */
#include <stdio.h>
#include <stdlib.h>
#include <unistd.h>
#include <libgen.h>
#include <errno.h>
#include <string.h>
#include <getopt.h>
#include <sys/types.h>
This is the minimum set of global includes that I’ll include by default for the following stuff.
| #include File | Stuff It Provides |
|---|---|
| stdio | Supplies FILE, stdin, stdout, stderr and the fprint() family of functions |
| stdlib | Supplies malloc(), calloc() and realloc() |
| unistd | Supplies EXIT_FAILURE, EXIT_SUCCESS |
| libgen | Supplies the basename() function. |
| errno | Defines the external errno variable and all the values it can take on. |
| string | Supplies memcpy(), memset() and the strlen() family of functions. |
| getopt | Supplies external optarg, opterr, optind and getopt() function. |
| sys/types | Typedef shortcuts like uint32_t and uint64_t |
2 Defines
/* main.c */
<...>
#define OPTSTR "vi:o:f:h"
#define USAGE_FMT "%s [-v] [-f hexflag] [-i inputfile] [-o outputfile] [-h]"
#define ERR_FOPEN_INPUT "fopen(input, r)"
#define ERR_FOPEN_OUTPUT "fopen(output, w)"
#define ERR_DO_THE_NEEDFUL "do_the_needful blew up"
#define DEFAULT_PROGNAME "george"
This doesn’t make a lot of sense right now, but the OPTSTR define is
where we will define what command-line switches the program will
recommend. Consult the getopt(3) manual page to learn how OPTSTR
will affect getopt()‘s behavior.
The USAGE_FMT define is a printf()-style format string that is
referenced in the usage() function.
I also like to gather string constants as #define‘s in this part of
the file. Collecting them makes it easier to fix spelling, reuse
messages and internationalize messages if required.
Finally, give #defines names with all capital letters to distinguish them
from variable and function names. You can run the words together if you want or
separate words with an underscore, just make sure it’s all upper case.
3 External Declarations
/* main.c */
<...>
extern int errno;
extern char *optarg;
extern int opterr, optind;
An extern declaration brings that name into the namespace of the
current compilation unit ( a.k.a “file” ) and allows the program to
access that variable. Here we’ve brought in the definitions for three
integer variables and a character pointer. The opt prefaced
variables are used by the getopt() function and errno is used as
an out-of-band communication channel by the standard C library to
communicate why a function might have failed.
4 Typedefs
/* main.c */
<...>
typedef struct {
int verbose;
uint32_t flags;
FILE *input;
FILE *output;
} options_t;
After external declarations, I like to declare typedefs for
structures, unions and enumerations. Naming typedefs is a religion
all to itself; I strongly prefer a ‘_t’ suffix to indicate that the
name is a type. In this example, I’ve declared options_t as a
struct with four members. C is a white-space neutral programming
language, so I use white space to line up field names in the same
column. I just like the way it looks. For the pointer declarations, I
prepend the asterisk to the name to make it clear that it’s a pointer.
5 Global Variable Declarations
“`c / main.c / <…>
int dumb_global_variable = -11;
Global variables are a bad idea and you should never use them. But if
you have to use a global variable, declare them here and be sure to
give them a default value. Seriously, _don't use global variables_.
### **6 Function Prototypes**
```c
/* main.c */
<...>
void usage(char *progname, int opt);
int do_the_needful(options_t *options);
As you write functions, added after the main() function and not
before, include the function prototypes here. Early C compilers used a
single-pass strategy which meant that every symbol (variable or
function name) you used in your program had to be declared before you
used it. Modern compilers are nearly all multi-pass compilers that
build a complete symbol table before generating code, so the use of
function prototypes is not strictly required. However you sometimes
don’t get to choose what compiler is used on your code, so write the
function prototypes and drive on.
As a matter of course, I always include a usage() function that
main() calls when it doesn’t understand something you passed in from
the command-line.
7 Command-Line Parsing
/* main.c */
<...>
int main(int argc, char *argv[]) {
int opt;
options_t options = { 0, 0x0, stdin, stdout };
opterr = 0;
while ((opt = getopt(argc, argv, OPTSTR)) != EOF)
switch(opt) {
case 'i':
if (!(options.input = fopen(optarg, "r")) ){
perror(ERR_FOPEN_INPUT);
exit(EXIT_FAILURE);
/* NOTREACHED */
}
break;
case 'o':
if (!(options.output = fopen(optarg, "w")) ){
perror(ERR_FOPEN_OUTPUT);
exit(EXIT_FAILURE);
/* NOTREACHED */
}
break;
case 'f':
options.flags = (uint32_t )strtoul(optarg, NULL, 16);
break;
case 'v':
options.verbose += 1;
break;
case 'h':
default:
usage(basename(argv[0]), opt);
/* NOTREACHED */
break;
}
if (do_the_needful(&options) != EXIT_SUCCESS) {
perror(ERR_DO_THE_NEEDFUL);
exit(EXIT_FAILURE);
/* NOTREACHED */
}
return EXIT_SUCCESS;
}
Ok, that’s a lot. The purpose of the main() function is to collect the
arguments that the user provides, perform minimal input validation and
then pass the collected arguments to functions that will use them. In
this example, we declare an options variable initialized with
default values and parse the command-line, updating options as necessary.
The guts of this main() function is a while loop that uses getopt() to
step thru argv looking for command-line options and their arguments
(if any). The OPTSTR #define earlier in the file is the template
that drives getopt()s behavior. The opt variable takes on the
character value of any command-line options found by getopt() and the
program’s response to the detection of the command-line option happens
in the switch statement.
Those of you paying attention will now be questioning why opt is
declared as an 32-bit int but is expected to take on an 8-bit
char? It turns out getopt() returns an int value that takes on a
negative one when it gets the end of argv, which I check against
EOF or “End of File” marker. A char is a signed quantity, but I
like matching variables to their function return values.
When a known command-line option is detected, option specific behavior
happens. Some options have an argument, specified in OPTSTR with a
trailing colon. When an option has a argument, the next string in argv
is available to the program via the externally defined variable
optarg. We use optarg to open files for reading and writing or
converting a command-line argument from a string to an integer value.
There are a couple of points for style here:
- Initialize
opterrto zero which disablesgetoptfrom emiting a ‘?’. exit(EXIT_FAILURE);orexit(EXIT_SUCCESS);in the middle ofmain()./* NOTREACHED */is a lint directive that I like.return EXIT_SUCCESS;at the end of functions that returnint.- Explicitly cast implicit type conversions.
The command-line signature for this program if it were compiled would look something like:
$ ./a.out -h
a.out [-v] [-f hexflag] [-i inputfile] [-o outputfile] [-h]
In fact, that’s what usage() will emit to stderr once compiled.
8 Function Declarations
/* main.c */
<...>
void usage(char *progname, int opt) {
fprintf(stderr, USAGE_FMT, progname?progname:DEFAULT_PROGNAME);
exit(EXIT_FAILURE);
/* NOTREACHED */
}
int do_the_needful(options_t *options) {
if (!options) {
errno = EINVAL;
return EXIT_FAILURE;
}
if (!options->input || !options->output) {
errno = ENOENT;
return EXIT_FAILURE;
}
/* XXX do needful stuff */
return EXIT_SUCCESS;
}
And now, finally, we write functions that aren’t boilerplate. In this
example, function do_the_needful() accepts a pointer to an
options_t structure. We validate that the options pointer is not
NULL and then go on to validate the input and output structure
members. We return EXIT_FAILURE if either test fails, and signal to
the caller a general reason by setting the external global variable
errno to a conventional error code. The convenience function
perror() can be used by the caller to emit human-readable-ish error
messages based on the value of errno.
Functions should almost always validate their input in some way. If
full validation is expensive, try to do it once and treat the
validated data as immutable. In the usage() function, we validate
the progname argument using a conditional assignment in the
fprintf() call. The usage() function is going to exit anyway, so I
don’t bother setting errno or making a big stink about using a
correct program name.
The big class of errors we are trying to avoid here is dereferencing a
NULL pointer. This will cause the operating system to send a special
signal to our process called SYSSEGV which results in unavoidable
death. The last thing your users want to see is a crash due to
SYSSEGV. It’s much better to catch a NULL pointer so you can emit
better error messages and shutdown the program gracefully.
Some people complain about having multiple return statements in a
function body. They make arguments about continuity of control-flow
and other stuff. Honestly, if the something goes wrong in the middle
of a function, it’s a good time to return an error condition. Writing
a ton of nested if statements just have one return is never a “good idea”™.
Finally, if you write a function that takes four or more arguments consider bundling those arguments in a structure and passing a pointer to the structure. This makes the function signatures simpler, making them easier to remember and not screw up when you call them later. It also makes calling the function slightly faster since fewer things need to be copied into the function’s stack frame. In practice, this will only become a consideration if the function is called millions or billions of times. Don’t worry about it if that doesn’t make sense.
Wait, You Said No Comments!?!!
In the do_the_needful() function I wrote a specific type of comment
that is designed to be a placeholder rather than document the code.
/* XXX do needful stuff */
When you are in the zone, sometimes you don’t want to stop and write some particularly gnarly bit of code. You’ll come back and do it later, just not now. That’s where I’ll leave myself a little breadcrumb. I insert a commment with a ‘XXX’ prefix and a short remark describing what needs doing. Later on when I have more time, I’ll grep thru source looking for XXX. It doesn’t matter what you use, just make sure it’s not likely to show up in your code base in another context; function name or variable for instance.
Putting It All Together
Ok, this progam still does almost nothing when you compile and run
it. But now you have a solid skeleton to build your own command-line
parsing C programs.
/* main.c - the complete listing */
#include <stdio.h>
#include <stdlib.h>
#include <unistd.h>
#include <libgen.h>
#include <errno.h>
#include <string.h>
#include <getopt.h>
#define OPTSTR "vi:o:f:h"
#define USAGE_FMT "%s [-v] [-f hexflag] [-i inputfile] [-o outputfile] [-h]"
#define ERR_FOPEN_INPUT "fopen(input, r)"
#define ERR_FOPEN_OUTPUT "fopen(output, w)"
#define ERR_DO_THE_NEEDFUL "do_the_needful blew up"
#define DEFAULT_PROGNAME "george"
extern int errno;
extern char *optarg;
extern int opterr, optind;
typedef struct {
int verbose;
uint32_t flags;
FILE *input;
FILE *output;
} options_t;
int dumb_global_variable = -11;
void usage(char *progname, int opt);
int do_the_needful(options_t *options);
int main(int argc, char *argv[]) {
int opt;
options_t options = { 0, 0x0, stdin, stdout };
opterr = 0;
while ((opt = getopt(argc, argv, OPTSTR)) != EOF)
switch(opt) {
case 'i':
if (!(options.input = fopen(optarg, "r")) ){
perror(ERR_FOPEN_INPUT);
exit(EXIT_FAILURE);
/* NOTREACHED */
}
break;
case 'o':
if (!(options.output = fopen(optarg, "w")) ){
perror(ERR_FOPEN_OUTPUT);
exit(EXIT_FAILURE);
/* NOTREACHED */
}
break;
case 'f':
options.flags = (uint32_t )strtoul(optarg, NULL, 16);
break;
case 'v':
options.verbose += 1;
break;
case 'h':
default:
usage(basename(argv[0]), opt);
/* NOTREACHED */
break;
}
if (do_the_needful(&options) != EXIT_SUCCESS) {
perror(ERR_DO_THE_NEEDFUL);
exit(EXIT_FAILURE);
/* NOTREACHED */
}
return EXIT_SUCCESS;
}
void usage(char *progname, int opt) {
fprintf(stderr, USAGE_FMT, progname?progname:DEFAULT_PROGNAME);
exit(EXIT_FAILURE);
/* NOTREACHED */
}
int do_the_needful(options_t *options) {
if (!options) {
errno = EINVAL;
return EXIT_FAILURE;
}
if (!options->input || !options->output) {
errno = ENOENT;
return EXIT_FAILURE;
}
/* XXX do needful stuff */
return EXIT_SUCCESS;
}