What type is a function name in C?

Question

I always understood that in C, func and &func were equivalent. I assume they should both be of type pointer, which is 8 bytes on my Win64 system. However, I just tried this:

#include <stdio.h>

int func(int x, int y)
{
    printf("hello\n");
}

int main()
{
    printf("%d, %d\n", sizeof(&func), sizeof(func));
    return 0;
}

And expecting to get the output 8, 8 was surprised to get 8, 1 instead.

Why is this? What type exactly is func? It seems to be of type char or some equivalent.
What is going on here?

I compiled this with gcc -std=c99 if it makes a difference.

Answer 1

What type is a function name in C?

A function name or function designator has a function type. When it is used in an expression, except when it is the operand of sizeof or & operator, it is converted from type "function returning type" to type "pointer to a function returning type". (This is specified in C99, 6.3.2.1p4).

Now

sizeof(func)

is not valid C as sizeof is not allowed with an operand of function type. This is specified in the constraints of the sizeof operator:

(C99, 6.5.3.4p1 Constraints) "The sizeof operator shall not be applied to an expression that has function type or an incomplete type, to the parenthesized name of such a type, or to an expression that designates a bit-field member."

But

sizeof(func)

is allowed in GNU C.

There is a GNU extension in GNU C that allows it and in GNU C sizeof with an operand of function type yields 1:

6.23 Arithmetic on void- and Function-Pointers

[...] sizeof is also allowed on void and on function types, and returns 1.

http://gcc.gnu.org/onlinedocs/gcc/Pointer-Arith.html

Answer 2

Given:

int func(int x, int y) { /* ... */ }

the expression func is of function type. Specifically, it's of type int(int, int), which is C's syntax for the type "function with two int parameters returning int. (You won't often see that particular syntax, since it's not common to refer to function types directly.)

In most contexts, an expression of function type is implicitly converted to a pointer to the function; in this case, the pointer is of type int(*)(int, int).

The contexts in which this implicit conversion does not occur are:

1. When the expression is the operand of unary &; in that case, &func yields the address of the function (just as func by itself usually does); and

2. When the expression is the operand of sizeof. Without this exception, sizeof func would yield the size of a function pointer. Instead, it's a constraint violation, requiring a diagnostic from the compiler.

(A side note: This conversion does happen when the function name is used in a function call. The () "operator" (the standard doesn't call it that) requires a prefix of pointer-to-function type.)

gcc happens to have a non-standard extension; it permits pointer arithmetic on function pointers and on type void*, acting like pointer arithmetic on char* pointers (i.e., it operates in units of bytes). Unfortunately, IMHO, gcc did this via a kludge, setting the size of function types and of type void to 1. That's why you get sizeof func == 1; if you enable one of the standard conforming modes (e.g., gcc -std=c99 -pedantic), you'll get a warning.

Incidentally, don't use %d to print the result of sizeof. sizeof yields a result of type size_t. If your implementation supports it (C99 or later), use %zu; if not, you need to use a cast to explicitly convert the size_t value to something that you can print. For example:

printf("%lu\n", (unsigned long)sizeof &func);

Answer 3

What type is a function name in C?

It's of a function type.

I always understood that in C, func and &func were equivalent

Well, they are not "equivalent". A function does, however, decay into a pointer-to-function.

I assume they should both be of type pointer

That's an incorrect assumption.

And expecting to get the output 8, 8 was surprised to get 8, 1 instead. Why is this?

Because 1. it's UB if it compiles, 2. it shouldn't even compile in first place, and as such, your program is free to do anything.

Answer 4

Names do not have a type in C. Some kinds of names denote entities that have type, such as typedef names, objects or functions. Other kinds of names denote entities that do not have a type, such as preprocessor symbols or goto labels. Yet other kind of names simply denote types themselves, namely typedef names.

The name of a function denotes an entity that has function type. That function type includes the return type, and (possibly incomplete) information about the parameters.

When functions are used as values, they are always manipulated as pointer-to-function types. A function as such cannot be passed around in a portable C program, but a pointer to a function can be.

Conceptually, even in a direct call like foo(), what happens is that foo, an expression denoting a function, upon evaluation is implicitly converted to a pointer-to-function value. The () function call postfix operator then invokes the function by means of this pointer.

There is a rule that an expression that has function type produces a pointer value, except if that expression is the operand of the & (address of) or of the sizeof operator. func and &func are only equivalent in the sense that they produce the same value. func produces a pointer value implicitly. &func suppresses the implicit generation of a pointer (func is the operand of & and so the conversion is suppressed), but then & takes the address.

So you can see that sizeof &func and sizeof func are different. The former takes the size of a pointer, and the latter tries to take the size of a function.

Taking the size of a function is a constraint violation in C: it requires a diagnostic from an implementation that conforms to the standard. If the program still translates and a value of 1 is produced when it is run, that is "bonus" behavior specific to your language implementation. It is not in the standard language.