printf

Early programming languages likeFortranused special statements with different syntax from other calculations to build formatting descriptions.^[1]In this example, the format is specified on line601,and thePRINT^[a]command refers to it by line number:

PRINT601,IA,IB,AREA
601FORMAT(4HA=,I5,5HB=,I5,8HAREA=,F10.2,13HSQUAREUNITS)

Hereby:

• 4Hindicates astringof 4characters"A="(HmeansHollerith Field);
• I5indicates anintegerfield of width 5;
• F10.2indicates afloating-pointfield of width 10 with 2 digits after the decimal point.

An output with input arguments100,200,and1500.25might look like this:

A= 100 B= 200 AREA= 1500.25 SQUARE UNITS

In 1967,BCPLappeared.^[2]Its library included thewritefroutine.^[3]An example application looks like this:

WRITEF( "%I2-QUEENS PROBLEM HAS %I5 SOLUTIONS*N", NUMQUEENS, COUNT)

Hereby:

• %I2indicates anintegerof width 2 (the order of the format specification's field width and type is reversed compared to C'sprintf);
• %I5indicates an integer of width 5;
• *Nis a BCPLlanguageescape sequencerepresenting anewlinecharacter (for which C uses the escape sequence\n).

In 1968,ALGOL 68had a more function-likeAPI,but still used special syntax (the$delimiters surround special formatting syntax):

printf(($"Color"g",number1"6d,",number2"4zd,",hex"16r2d,",float"-d.2d,",unsigned value"-3d"."l$,
"red",123456,89,BIN255,3.14,250));

In contrast to Fortran, using normal function calls anddata typessimplifies the language and compiler, and allows the implementation of the input/output to be written in the same language.

These advantages were thought to outweigh the disadvantages (such as a complete lack oftype safetyin many instances) up until the 2000s, and in most newer languages of that era I/O is not part of the syntax.

People have since learned^[4]that this potentially results in consequences, ranging from security exploits to hardware failures (e.g., phone's networking capabilities being permanently disabled after trying to connect to an access point named "%p%s%s%s%s%n"^[5]). Modern languages, such asC++20and later, tend to include format specifications as a part of the language syntax,^[6]which restore type safety in formatting to an extent, and allow the compiler to detect some invalid combinations of format specifiers and data types at compile time.

In 1973,printfwas included as aC standard libraryroutine as part ofVersion 4 Unix.^[7]

In 1990, aprintfshell commandwas attested as part of4.3BSD-Reno.It is modeled after the C standard library function.^[8]

In 1991, aprintfcommand was included with GNU shellutils (now part ofGNU Core Utilities).

The need to do something about the range of problems resulting from lack oftype safetyhas prompted attempts to make the C++ compilerprintf-aware.

The-Wformatoption ofGCCallows compile-time checks toprintfcalls, enabling the compiler to detect a subset of invalid calls (and issue either a warning or an error, stopping the compilation altogether, depending on other flags).^[9]

Since the compiler is inspectingprintfformat specifiers, enabling this effectively extends the C++ syntax by making formatting a part of it.

As said above, numerous issues^[10]withprintf()'s lack oftype safetyresulted in the revision^[11]of approach to formatting, andC++20onwards include format specifications in the language^[12]to enable type-safe formatting.

The approach (and syntax) of C++20std::formatresulted from effectively incorporating Victor Zverovich'slibfmt^[13]API into the language specification^[14](Zverovich wrote^[15]the first draft of the new format proposal); consequently,libfmtis an implementation of the C++20 format specification.

The formatting function has been combined with output inC++23,which provides^[16]thestd::printcommand as a replacement forprintf().

As the format specification has become a part of the language syntax, a C++ compiler is able to prevent invalid combinations of types and format specifiers in many cases. Unlike the-Wformatoption, this is not an optional feature.

The format specification oflibfmtandstd::formatis, in itself, an extensible "mini-language" (referred to as such in the specification),^[17]an example of adomain-specific language.

Incorporation of a separate, domain specific mini-language specifically for formatting into the C++ language syntax forstd::print,therefore, completes the historical cycle, bringing the state-of-the-art (as of 2024) back to what it was in the case ofFORTRAN's firstPRINTimplementation in the 1950s discussed in the beginning of this section.

Formatting of a value is specified as markup in the format string. For example, the following outputsYour age isand then the value of the variableagein decimal format.

printf("Your age is %d",age);

The syntax for a format specifier is: %[''parameter''][''flags''][''width''][.''precision''][''length'']''type''

The parameter field is optional. If included, then matching specifiers to values isnotsequential. The numeric valuenselects the n-th value parameter.

This is aPOSIXextension; notC99.

This field allows for using the same value multiple times in a format string instead of having to pass the value multiple times. If a specifier includes this field, then subsequent specifiers must also.

For example,

printf("%2$d %2$#x; %1$d %1$#x",16,17);

outputs:17 0x11; 16 0x10.

This field is particularly useful forlocalizingmessages to differentnatural languagesthat use differentword orders.

InMicrosoft Windows,support for this feature is via a different function,printf_p.

The flags field can be zero or more of (in any order):

The width field specifies theminimumnumber of characters to output. If the value can be represented in fewer characters, then the value is left-padded with spaces so that output is the number of characters specified. If the value requires more characters, then the output is longer than the specified width. A value is never truncated.

For example,printf("%3d",12);specifies a width of 3 and outputs12with a space on the left to output 3 characters. The callprintf("%3d",1234);outputs1234which is 4 characters long since that is the minimum width for that value even though the width specified is 3.

If the width field is omitted, the output is the minimum number of characters for the value.

If the field is specified as*,then the width value is read from the list of values in the call.^[18]For example,printf("%*d",3,10);outputs10where the second parameter,3,is the width (matches with*) and10is the value toserialize(matches withd).

Though not part of the width field, a leading zero is interpreted as the zero-padding flag mentioned above, and a negative value is treated as the positive value in conjunction with the left-alignment-flag also mentioned above.

The width field can be used to format values as a table (tabulated output). But, columns do not align if any value is larger than fits in the width specified. For example, notice that the last line value (1234) does not fit in the first column of width 3 and therefore the column is not aligned.

1 1
12 12
123 123
1234 123

The precision field usually specifies amaximumlimit of the output, depending on the particular formatting type. Forfloating-pointnumeric types, it specifies the number of digits to the right of the decimal point to which the output should be rounded; for%gand%Git specifies the total number ofsignificant digits(before and after the decimal, not including leading or trailing zeroes) to round to. For thestring type,it limits the number of characters that should be output, after which the string is truncated.

The precision field may be omitted, or a numeric integer value, or a dynamic value when passed as another argument when indicated by an asterisk (*). For example,printf("%.*s",3,"abcdef");outputsabc.

The length field can be omitted or be any of:

Platform-specific length options came to exist prior to widespread use of the ISO C99 extensions, including:

ISO C99 includes theinttypes.hheader file that includes a number ofmacrosfor platform-independentprintfcoding. For example:printf("%"PRId64,t);specifies decimal format for a64-bit signed integer.Since the macros evaluate to astring literal,and the compilerconcatenatesadjacent string literals, the expression"%"PRId64compiles to a single string.

Macros include:

The type field can be any of:

A common way to handle formatting with a custom data type is to format the custom data type value into astring,then use the%sspecifier to include theserializedvalue in a larger message.

Some printf-like functions allow extensions to theescape-character-basedmini-language,thus allowing the programmer to use a specific formatting function for non-builtin types. One is the (nowdeprecated)glibc'sregister_printf_function().However, it is rarely used due to the fact that it conflicts withstatic format string checking.Another isVstr custom formatters,which allows adding multi-character format names.

Some applications (like theApache HTTP Server) include their own printf-like function, and embed extensions into it. However these all tend to have the same problems thatregister_printf_function()has.

TheLinux kernelprintkfunction supports a number of ways to display kernel structures using the generic%pspecification, byappendingadditional format characters.^[23]For example,%pI4prints anIPv4 addressin dotted-decimal form. This allows static format string checking (of the%pportion) at the expense of full compatibility with normal printf.

Variants ofprintfprovide the formatting features but with additional or slightly different behavior.

fprintfoutputs to a systemfile objectinstead ofstandard output.

sprintfwrites to astring bufferinstead of standard output.

snprintfprovides a level of safety oversprintfsince the caller provides a length (n) parameter that specifies the maximum number or chars to write to the buffer.

For most printf-family functions, there is a variant that acceptsva_listrather than a variable length parameter list. For example, there is avfprintf,vsprintf,vsnprintf.

Extra value parameters are ignored, but if the format string has more format specifiers than value parameters passed thebehavior is undefined.For some C compilers, an extra format specifier results in consuming a value even though there isn't one. This can allow theformat string attack.Generally, for C, arguments arepassed on the stack.If too few arguments are passed, then printf can read past the end of the stack frame, thus allowing an attacker to read the stack.

Some compilers, likethe GNU Compiler Collection,willstatically checkthe format strings of printf-like functions and warn about problems (when using the flags-Wallor-Wformat). GCC will also warn about user-defined printf-style functions if the non-standard "format"__attribute__is applied to the function.

The format string is often astring literal,which allowsstatic analysisof the function call. However, the format string can be the value of avariable,which allows for dynamic formatting but also a security vulnerability known as anuncontrolled format stringexploit.

Although an output function on the surface,printfallows writing to a memory location specified by an argument via%n.This functionality is occasionally used as a part of more elaborate format-string attacks.^[24]

The%nfunctionality also makesprintfaccidentallyTuring-completeeven with a well-formed set of arguments. A game of tic-tac-toe written in the format string is a winner of the 27thIOCCC.^[25]

Notable programming languages that include printf or printf-like functionality:

Excluded are languages that use format strings that deviate from the style in this article (such asAMPLandElixir), languages that inherit their implementation from theJVMor other environment (such asClojureandScala), and languages that do not have a standard native printf implementation but have external libraries which emulate printf behavior (such asJavaScript).

• "Hello, World!" program– A basic example program first featured inThe C Programming Language(the "K&R Book" ), which in the C example uses printf to output the message "Hello, World!"
• Format (Common Lisp)– function in Common Lisp that can produce formatted text using a format string similar to the printf format stringPages displaying wikidata descriptions as a fallback
• C standard library– Standard library for the C programming language
• Format string attack– Type of software vulnerabilityPages displaying short descriptions of redirect targets
• std::iostream– C++ standard library header for input/outputPages displaying short descriptions of redirect targets
• ML (programming language)– General purpose functional programming language
• printf debugging– Fixing defects in an engineered systemPages displaying short descriptions of redirect targets
• printf(Unix)– Standard UNIX utility
• printk– Linux kernel C function
• scanf– Control parameter used in programming languages
• string interpolation– Replacing placeholders in a string with values

• C++ reference forstd::fprintf
• gcc printf format specifications quick reference
• printf:print formatted output – System Interfaces Reference,The Single UNIX Specification,Version 4 fromThe Open Group
• TheFormatterspecificationinJava 1.5
• GNU Bashprintf(1)builtin