1 RCDATA { "abc" }
00 00 00 00 20 00 00 00 .... ...
FF FF 00 00 FF FF 00 00 ........
00 00 00 00 00 00 00 00 ........
00 00 00 00 00 00 00 00 ........
03 00 00 00 20 00 00 00 .... ...
FF FF 0A 00The predefined RCDATA
resource type has ID 0x0A FF FF 01 00 ........
00 00 00 00 30 00 09 04 ....0...
00 00 00 00 00 00 00 00 ........
61 62 63 00 abc.
A simple .rc file and a hexdump of the relevant part of the resulting .res file
Both the executable's icon and the version information in the Properties window come from a compiled .rc file
tokenizer quirk
### Special tokenization rules for names/IDs
Here's a resource definition with a user-defined type of `FOO` ("user-defined" means that it's not one of the [predefined resource types](https://learn.microsoft.com/en-us/windows/win32/menurc/resource-definition-statements#resources)):
```rc
1 FOO { "bar" }
```
For user-defined types, the (uppercased) resource type name is written as UTF-16 into the resulting `.res` file, so in this case `FOO` is written as the type of the resource, and the bytes of the string `bar` are written as the resource's data.
So, following from this, let's try wrapping the resource type name in double quotes:
```rc
1 "FOO" { "bar" }
```
Intuitively, you might expect that this doesn't change anything (i.e. it'll still get parsed into `FOO`), but in fact the Windows RC compiler will now include the quotes in the user-defined type name. That is, `"FOO"` will be written as the resource type name in the `.res` file, not `FOO`.
This is because both resource IDs and resource types use special tokenization rules—they are basically only terminated by whitespace and nothing else (well, not exactly whitespace, it's actually any ASCII character from `0x05` to `0x20` [inclusive]). As an example:
L"\r\n"123abc error{OutOfMemory}!?u8 { "bar" }
parser bug/quirk
### Non-ASCII digits in number literals
The Windows RC compiler allows non-ASCII digit codepoints within number literals, but the resulting numeric value is arbitrary.
For ASCII digit characters, the standard procedure for calculating the numeric value of an integer literal is the following:
- For each digit, subtract the ASCII value of the zero character (`'0'`) from the ASCII value of the digit to get the numeric value of the digit
- Multiply the numeric value of the digit by the relevant multiple of 10, depending on the place value of the digit
- Sum the result of all the digits
For example, for the integer literal `123`:
So, how about the integer literal `1²3`? The Windows RC compiler accepts it, but the resulting numeric value ends up being 1403.
The problem is that the exact same procedure outlined above is erroneously followed for *all* allowed digits, so things go haywire for non-ASCII digits since the relationship between the non-ASCII digit's codepoint value and the ASCII value of `'0'` is arbitrary:
In other words, the `²` is treated as a base-10 "digit" with the value 130 (and `³` would be a base-10 "digit" with the value 131, `၅` ([`U+1045`](https://www.compart.com/en/unicode/U+1045)) would be a base-10 "digit" with the value 4117, etc).
This particular bug/quirk is (presumably) due to the use of the [`iswdigit`](https://learn.microsoft.com/en-us/cpp/c-runtime-library/reference/isdigit-iswdigit-isdigit-l-iswdigit-l) function, and the [same sort of bug/quirk exists with special `COM[1-9]` device names](https://googleprojectzero.blogspot.com/2016/02/the-definitive-guide-on-win32-to-nt.html).
#### `resinator`'s behavior
```resinatorerror
test.rc:2:3: error: non-ASCII digit characters are not allowed in number literals
1²3
^~
```
```rc style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
123
```
```c style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
'1' - '0' = 1
'2' - '0' = 2
'3' - '0' = 3
```
```c style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
1 * 100 = 100
2 * 10 = 20
3 * 1 = 3
⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯
123
```
integer literal
numeric value of each digit
numeric value of the integer literal
```rc style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
1²3
```
```c style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
'²' - '0' = 130
```
```c style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
1 * 100 = 100
130 * 10 = 1300
3 * 1 = 3
⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯
1403
```
integer literal
numeric value of the ² "digit"
numeric value of the integer literal
parser bug/quirk
### `BEGIN` or `{` as filename
Many resource types can get their data from a file, in which case their resource definition will look something like:
```rc
1 ICON "file.ico"
```
Additionally, some resource types (like `ICON`) *must* get their data from a file. When attempting to define an `ICON` resource with a raw data block like so:
```rc
1 ICON BEGIN "foo" END
```
and then trying to compile that `ICON`, `rc.exe` has a confusing error:
```
test.rc(1) : error RC2135 : file not found: BEGIN
test.rc(2) : error RC2135 : file not found: END
```
That is, the Windows RC compiler will try to interpret `BEGIN` as a filename, which is extremely likely to fail and (if it succeeds) is almost certainly not what the user intended. It will then move on and continue trying to parse the file as if the first resource definition is `1 ICON BEGIN` and almost certainly hit more errors, since everything afterwards will be misinterpreted just as badly.
This is even worse when using `{` and `}` to open/close the block, as it triggers a separate bug:
```rc
1 ICON { "foo" }
```
```
test.rc(1) : error RC2135 : file not found: ICON
test.rc(2) : error RC2135 : file not found: }
```
Somehow, the filename `{` causes `rc.exe` to think the filename token is actually the preceding token, so it's trying to interpret `ICON` as both the resource type *and* the file path of the resource. Who knows what's going on there.
#### `resinator`'s behavior
In `resinator`, trying to use a raw data block with resource types that don't support raw data is an error, noting that if `{` or `BEGIN` is intended as a filename, it should use a quoted string literal.
```resinatorerror
test.rc:1:8: error: expected '', found 'BEGIN' (resource type 'icon' can't use raw data)
1 ICON BEGIN
^~~~~
test.rc:1:8: note: if 'BEGIN' is intended to be a filename, it must be specified as a quoted string literal
```
parser bug/quirk
### Number expressions as filenames
There are multiple valid ways to specify the filename of a resource:
```rc
// Quoted string, reads from the file: bar.txt
1 FOO "bar.txt"
// Unquoted literal, reads from the file: bar.txt
2 FOO bar.txt
// Number literal, reads from the file: 123
3 FOO 123
```
But that's not all, as you can also specify the filename as an arbitrarily complex number expression, like so:
```rc
1 FOO (1 | 2)+(2-1 & 0xFF)
```
The entire `(1 | 2)+(2-1 & 0xFF)` expression, spaces and all, is interpreted as the filename of the resource. Want to take a guess as to which file path it tries to read the data from?
Yes, that's right, `0xFF`!
For whatever reason, `rc.exe` will just take the last number literal in the expression and try to read from a file with that name, e.g. `(1+2)` will try to read from the path `2`, and `1+-1` will try to read from the path `-1` (the `-` sign is part of the number literal token, this will be detailed later in ["*Unary operators are an illusion*"](#unary-operators-are-an-illusion)).
#### `resinator`'s behavior
In `resinator`, trying to use a number expression as a filename is an error, noting that a quoted string literal should be used instead. Singular number literals are allowed, though (e.g. `-1`).
```resinatorerror
test.rc:1:7: error: filename cannot be specified using a number expression, consider using a quoted string instead
1 FOO (1 | 2)+(2-1 & 0xFF)
^~~~~~~~~~~~~~~~~~~~
test.rc:1:7: note: the Win32 RC compiler would evaluate this number expression as the filename '0xFF'
```
parser bug/quirk
### Incomplete resource at EOF
The incomplete resource definition in the following example is an error:
```rc
// A complete resource definition
1 FOO { "bar" }
// An incomplete resource definition
2 FOO
```
But it's not the error you might be expecting:
```
test.rc(6) : error RC2135 : file not found: FOO
```
Strangely, `rc.exe` will treat `FOO` as both the type of the resource *and* as a filename (similar to what we saw earlier in ["*`BEGIN` or `{` as filename*"](#begin-or-as-filename)). If you create a file with the name `FOO` it will then *successfully compile*, and the `.res` will have a resource with type `FOO` and its data will be that of the file `FOO`.
#### `resinator`'s behavior
`resinator` does not match the `rc.exe` behavior and instead always errors on this type of incomplete resource definition at the end of a file:
```resinatorerror
test.rc:5:6: error: expected quoted string literal or unquoted literal; got ''
2 FOO
^
```
However...
parser bug/quirk
### Dangling literal at EOF
If we change the previous example to only have one dangling literal for its incomplete resource definition like so:
```rc
// A complete resource definition
1 FOO { "bar" }
// An incomplete resource definition
FOO
```
Then `rc.exe` *will always successfully compile it*, and it won't try to read from the file `FOO`. That is, a single dangling literal at the end of a file is fully allowed, and it is just treated as if it doesn't exist (there's no corresponding resource in the resulting `.res` file).
It also turns out that there are three `.rc` files in [Windows-classic-samples](https://github.com/microsoft/Windows-classic-samples) that (accidentally, presumably) rely on this behavior ([1](https://github.com/microsoft/Windows-classic-samples/blob/a47da3d4551b74bb8cc1f4c7447445ac594afb44/Samples/CredentialProvider/cpp/resources.rc), [2](https://github.com/microsoft/Windows-classic-samples/blob/a47da3d4551b74bb8cc1f4c7447445ac594afb44/Samples/Win7Samples/security/credentialproviders/sampleallcontrolscredentialprovider/resources.rc), [3](https://github.com/microsoft/Windows-classic-samples/blob/a47da3d4551b74bb8cc1f4c7447445ac594afb44/Samples/Win7Samples/security/credentialproviders/samplewrapexistingcredentialprovider/resources.rc)), so in order to fully pass [win32-samples-rc-tests](https://github.com/squeek502/win32-samples-rc-tests/), it is necessary to allow a dangling literal at the end of a file.
#### `resinator`'s behavior
`resinator` allows a single dangling literal at the end of a file, but emits a warning:
```resinatorerror
test.rc:5:1: warning: dangling literal at end-of-file; this is not a problem, but it is likely a mistake
FOO
^~~
```
parser bug/quirk, miscompilation
### Yes, that `MENU` over there (vague gesturing)
As established in the intro, resource definitions typically have an `id`, like so:
Unlike ["*Non-ASCII digits in number literals*"](#non-ascii-digits-in-number-literals), though, it's now also possible to include characters in a "number" literal that have a *lower* ASCII value than the `'0'` character, meaning that attempting to get the numeric value for such a 'digit' will induce wrapping `u16` overflow:
#### This is always a miscompilation
In the following example using the same `1ABC` ID as above:
```rc
// In foo.rc
1ABC MENU
BEGIN
POPUP "Menu from .rc"
BEGIN
MENUITEM "Open File", 1
END
END
1 DIALOGEX 0, 0, 275, 280
CAPTION "Dialog from .rc"
MENU 1ABC
BEGIN
END
```
```c
// In main.c
// ...
HWND result = CreateDialogParamW(g_hInst, MAKEINTRESOURCE(1), hwnd, DialogProc, (LPARAM)NULL);
// ...
```
This `CreateDialogParamW` call will fail with `The specified resource name cannot be found in the image file` because, when loading the dialog, it will attempt to look for a menu resource with an integer ID of `2899`.
If we add such a `MENU` to the `.rc` file:
```rc
2899 MENU
BEGIN
POPUP "Wrong menu from .rc"
BEGIN
MENUITEM "Destroy File", 1
END
END
```
then the dialog will successfully load with this new menu, but it's pretty obvious this is *not* what was intended:
The misinterpretation of the ID can (at best) lead to an unexpected menu being loaded
#### A related, but inconsequential, inconsistency
As mentioned in ["*Special tokenization rules for names/IDs*"](#special-tokenization-rules-for-names-ids), when the `id` of a resource is a string/name, it is uppercased before being written to the `.res` file. This uppercasing is *not* done for the `MENU` statement of a `DIALOG`/`DIALOGEX` resource, so in this example:
id1 FOO { "bar" } 123 ───► Ordinal: 123
ABC ───► Name: ABC
123ABC ───► Name: 123ABCHere's an example of that in action, where the `DIALOGEX` is attempting to specify that the `MENUEX` with the `id` of `1ABC` should be used:
Statement Description MENU menuname Menu to be used. This value is either the name of the menu or its integer identifier.
1ABC MENUEX ◄╍╍╍╍╍╍╍╍╍╍╍╍╍╍┓
{ ┇
// ... ┇
} ┇
┇
1 DIALOGEX 0, 0, 640, 480 ┇
MENU 1ABC ╍╍╍╍╍╍╍╍╍╍╍╍╍╍╍┛
{
// ...
}
```none style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
1ABC
```
```c style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
'1' - '0' = 1
'A' - '0' = 17
'B' - '0' = 18
'C' - '0' = 19
```
```c style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
1 * 1000 = 1000
17 * 100 = 1700
18 * 10 = 180
19 * 1 = 19
⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯
2899
```
"numeric" id
numeric value of each "digit"
numeric value of the id
```none style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
1!
```
'1' - '0' = 1
'!' - '0' = -15
-15 = 65521
```c style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
1 * 10 = 10
65521 * 1 = 65521
⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯⎯
65531
```
"numeric" id
numeric value of each "digit"
numeric value of the id
The misinterpretation of the ID can (at best) lead to an unexpected menu being loaded
abc MENUEX
{
// ...
}
1 DIALOGEX 0, 0, 640, 480
MENU abc
{
// ...
}
parser bug/quirk
### If you're not last, you're irrelevant
Many resource types have optional statements that can be specified between the resource type and the beginning of its body, e.g.
```rc
1 ACCELERATORS
LANGUAGE 0x09, 0x01
CHARACTERISTICS 0x1234
VERSION 1
{
// ...
}
```
Specifying multiple statements of the same type within a single resource definition is allowed, and the last occurrence of each statement type is the one that takes precedence, so the following would compile to the exact same `.res` as the example above:
```rc
1 ACCELERATORS
CHARACTERISTICS 1
LANGUAGE 0xFF, 0xFF
LANGUAGE 0x09, 0x01
CHARACTERISTICS 999
CHARACTERISTICS 0x1234
VERSION 999
VERSION 1
{
// ...
}
```
This is not necessarily a problem on its own (although I think it should at least be a warning), but it can inadvertently lead to some bizarre behavior, as we'll see in the next bug/quirk.
#### `resinator`'s behavior
`resinator` matches the Windows RC compiler behavior, but emits a warning for each ignored statement:
```resinatorerror
test.rc:2:3: warning: this statement was ignored; when multiple statements of the same type are specified, only the last takes precedence
CHARACTERISTICS 1
^~~~~~~~~~~~~~~~~
test.rc:3:3: warning: this statement was ignored; when multiple statements of the same type are specified, only the last takes precedence
LANGUAGE 0xFF, 0xFF
^~~~~~~~~~~~~~~~~~~
test.rc:5:3: warning: this statement was ignored; when multiple statements of the same type are specified, only the last takes precedence
CHARACTERISTICS 999
^~~~~~~~~~~~~~~~~~~
test.rc:7:3: warning: this statement was ignored; when multiple statements of the same type are specified, only the last takes precedence
VERSION 999
^~~~~~~~~~~
```
parser bug/quirk, miscompilation
### Once a number, always a number
The behavior described in ["*Yes, that `MENU` over there (vague gesturing)*"](#yes-that-menu-over-there-vague-gesturing) can also be induced in both `CLASS` and `MENU` statements of `DIALOG`/`DIALOGEX` resources via redundant statements. As seen in ["*If you're not last, you're irrelevant*"](#if-you-re-not-last-you-re-irrelevant), multiple statements of the same type are allowed to be specified without much issue, but in the case of `CLASS` and `MENU`, if any of the duplicate statements are interpreted as a number, then the value of last statement of its type (the only one that matters) *is always interpreted as a number no matter what it contains*.
1 DIALOGEX 0, 0, 640, 480
MENU 123 // ignored, but causes the string below to be evaluated as a number
MENU IM_A_STRING_I_SWEAR ────► 8360
CLASS 123 // ignored, but causes the string below to be evaluated as a number
CLASS "Seriously, I'm a string" ────► 55127
{
// ...
}
parser bug/quirk
### L is not allowed there
Like in C, an integer literal can be suffixed with `L` to signify that it is a 'long' integer literal. In the case of the Windows RC compiler, integer literals are typically 16 bits wide, and suffixing an integer literal with `L` will instead make it 32 bits wide.
It is true that these parameters are limited to `u16`, so using an `L` suffix is likely a mistake, but that is also true of many other parameters for which the Windows RC compiler happily allows `L` suffixed numbers for. It's unclear why these particular parameters are singled out, and even more unclear given the fact that specifying these parameters using an integer literal that would overflow a `u16` does not actually trigger an error (and instead it truncates the values to a `u16`):
```rc
1 VERSIONINFO
FILEVERSION 65537, 65538, 65539, 65540
BEGIN
END
```
The compiled `FILEVERSION` in this case will be `1`, `2`, `3`, `4`:
```
65537 = 0x10001; truncated to u16 = 0x0001
65538 = 0x10002; truncated to u16 = 0x0002
65539 = 0x10003; truncated to u16 = 0x0003
65540 = 0x10004; truncated to u16 = 0x0004
```
#### `resinator`'s behavior
`resinator` allows `L` suffixed integer literals everywhere and truncates the value down to the appropriate number of bits when necessary.
```resinatorerror
test.rc:1:10: warning: this language parameter would be an error in the Win32 RC compiler
LANGUAGE 1L, 2
^~
test.rc:1:10: note: to avoid the error, remove any L suffixes from numbers within the parameter
```
1 RCDATA { 1, 2L }
01 00 02 00 00 00
An RCDATA resource definition and a hexdump of the resulting data in the .res file
The maximum value of a u16 is 65535
```rc style="display: flex; flex-direction: column; justify-content: center; flex-grow: 1; margin-top: 0;"
LANGUAGE 1L, 2
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0;"
test.rc(1) : error RC2145 : PRIMARY LANGUAGE ID too large
```
```rc style="display: flex; flex-direction: column; justify-content: center; flex-grow: 1; margin-top: 0;"
1 VERSIONINFO
FILEVERSION 1L, 2, 3, 4
BEGIN
// ...
END
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0; justify-content: center;"
test.rc(2) : error RC2127 : version WORDs separated by commas expected
```
parser bug/quirk
### Unary operators are an illusion
Typically, unary `+`, `-`, etc. operators are just that—operators; they are separate tokens that act on other tokens (number literals, variables, etc). However, in the Windows RC compiler, they are not real operators.
#### Unary `-`
The unary `-` is included as part of a number literal, not as a distinct operator. This behavior can be confirmed in a rather strange way, taking advantage of a separate quirk described in ["*Number expressions as filenames*"](#number-expressions-as-filenames). When a resource's filename is specified as a number expression, the file path it ultimately looks for is the last number literal in the expression, so for example:
And if we throw in a unary `-` like so, then it gets included as part of the filename:
This quirk leads to a few unexpected valid patterns, since `-` on its own is also considered a valid number literal (and it resolves to `0`), so:
```rc
1 FOO { 1-- }
```
evaluates to `1-0` and results in `1` being written to the resource's data, while:
```rc
1 FOO { "str" - 1 }
```
looks like a string literal minus 1, but it's actually interpreted as 3 separate raw data values (`str`, `-` [which evaluates to 0], and `1`), since commas between data values in a raw data block are optional.
Additionally, it means that otherwise valid looking expressions may not actually be considered valid:
#### Unary `~`
The unary NOT (`~`) works exactly the same as the unary `-` and has all the same quirks. For example, a `~` on its own is also a valid number literal:
And `~L` (to turn the integer into a `u32`) is valid in the same way that `-L` would be valid:
#### Unary `+`
The unary `+` is almost entirely a hallucination; it can be used in some places, but not others, without any discernible rhyme or reason.
This is valid (and the parameters evaluate to `1`, `2`, `3`, `4` as expected):
```rc
1 DIALOG +1, +2, +3, +4 {}
```
but this is an error:
and so is this:
Because the rules around the unary `+` are so opaque, I am unsure if it shares many of the same properties as the unary `-`. I do know, though, that `+` on its own does not seem to be an accepted number literal in any case I've seen so far.
#### `resinator`'s behavior
`resinator` matches the Windows RC compiler's behavior around unary `-`/`~`, but disallows unary `+` entirely:
```resinatorerror
test.rc:1:10: error: expected number or number expression; got '+'
1 DIALOG +1, +2, +3, +4 {}
^
test.rc:1:10: note: the Win32 RC compiler may accept '+' as a unary operator here, but it is not supported in this implementation; consider omitting the unary +
```
```rc style="display: flex; flex-direction: column; justify-content: center; align-items: center; flex-grow: 1; margin-top: 0;"
1 FOO (567 + 123)
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0;"
test.rc(1) : error RC2135 : file not found: 123
```
```rc style="display: flex; flex-direction: column; justify-content: center; align-items: center; flex-grow: 1; margin-top: 0;"
1 FOO (567 + -123)
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0;"
test.rc(1) : error RC2135 : file not found: -123
```
```rc style="display: flex; flex-direction: column; justify-content: center; align-items: center; flex-grow: 1; margin-top: 0;"
1 FOO { (-(123)) }
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0;"
test.rc(1) : error RC1013 : mismatched parentheses
```
```rc style="display: flex; flex-direction: column; justify-content: center; align-items: center; flex-grow: 1; margin-top: 0;"
1 FOO { ~ }
```
Data is a
u16 with the value 0xFFFF
```rc style="display: flex; flex-direction: column; justify-content: center; align-items: center; flex-grow: 1; margin-top: 0;"
1 FOO { ~L }
```
Data is a
u32 with the value 0xFFFFFFFF
```rc style="display: flex; flex-direction: column; justify-content: center; align-items: center; flex-grow: 1; margin-top: 0;"
1 FOO { +123 }
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0;"
test.rc(1) : error RC2164 : unexpected value in RCDATA
```
```rc style="display: flex; flex-direction: column; justify-content: center; align-items: center; flex-grow: 1; margin-top: 0;"
1 DIALOG (+1), 2, 3, 4 {}
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0;"
test.rc(1) : error RC2237 : numeric value expected at DIALOG
```
miscompilation
### Your fate will be determined by a comma
Version information is specified using key/value pairs within `VERSIONINFO` resources. In the compiled `.res` file, the value data should always start at a 4-byte boundary, so after the key data is written, a variable number of padding bytes are written to get back to 4-byte alignment:
And the problems don't end there—`VERSIONINFO` is compiled into a tree structure, meaning the misreading of one node affects the reading of future nodes. Here's a (simplified) real-world `VERSIONINFO` resource definition from a random `.rc` file in [Windows-classic-samples](https://github.com/microsoft/Windows-classic-samples):
```rc
VS_VERSION_INFO VERSIONINFO
BEGIN
BLOCK "StringFileInfo"
BEGIN
BLOCK "040904e4"
BEGIN
VALUE "CompanyName", "Microsoft"
VALUE "FileDescription", "AmbientLightAware"
VALUE "FileVersion", "1.0.0.1"
VALUE "InternalName", "AmbientLightAware.exe"
VALUE "LegalCopyright", "(c) Microsoft. All rights reserved."
VALUE "OriginalFilename", "AmbientLightAware.exe"
VALUE "ProductName", "AmbientLightAware"
VALUE "ProductVersion", "1.0.0.1"
END
END
BLOCK "VarFileInfo"
BEGIN
VALUE "Translation", 0x409, 1252
END
END
```
and here's the Properties window of an `.exe` compiled with and without commas between all the key/value pairs:
Correct version information with commas included...
...but completely broken if the commas are omitted
#### `resinator`'s behavior
`resinator` avoids the miscompilation (always inserts the necessary padding bytes) and emits a warning.
```resinatorerror
test.rc:2:15: warning: the padding before this quoted string value would be miscompiled by the Win32 RC compiler
VALUE "key" "value"
^~~~~~~
test.rc:2:15: note: to avoid the potential miscompilation, consider adding a comma between the key and the quoted string
```
1 VERSIONINFO {
VALUE "key", "value"
}
......k.e.y.....
v.a.l.u.e.......
Two padding bytes are inserted after the key to get back to 4-byte alignment
1 VERSIONINFO {
VALUE "key" "value"
}
......k.e.y...v.
a.l.u.e.........
Without the comma between "key" and "value", the padding bytes are not written
1 VERSIONINFO {
VALUE "ke" "value"
}
......k.e.v.a.l.
u.e.............
Correct version information with commas included...
...but completely broken if the commas are omitted
miscompilation
### Mismatch in length units in `VERSIONINFO` nodes
A `VALUE` within a `VERSIONINFO` resource is specified using this syntax:
```rc
VALUE ,
```
The `value(s)` can be specified as either number literals or quoted string literals, like so:
```rc
1 VERSIONINFO {
VALUE "numbers", 123, 456
VALUE "strings", "foo", "bar"
}
```
Each `VALUE` is compiled into a structure that contains the length of its value data, but the unit used for the length varies:
- For strings, the string data is written as UTF-16, and the length is given in UTF-16 code units (2 bytes per code unit)
- For numbers, the numbers are written either as `u16` or `u32` (depending on the presence of an `L` suffix), and the length is given in bytes
So, for the above example, the `"numbers"` value would be compiled into a node with:
- "Binary" data, meaning the length is given in bytes
- A length of `4`, since each number literal is compiled as a `u16`
- Data bytes of
7B 00 C8 01, where 7B 00 is `123` and C8 01 is `456` (as little-endian `u16`)
and the `"strings"` value would be compiled into a node with:
- "String" data, meaning the length is given in UTF-16 code units
- A length of `8`, since each string is 3 UTF-16 code units plus a `NUL`-terminator
- Data bytes of 66 00 6F 00 6F 00 00 00 62 00 61 00 72 00 00 00, where 66 00 6F 00 6F 00 00 00 is `"foo"` and 62 00 61 00 72 00 00 00 is `"bar"` (both as `NUL`-terminated little-endian UTF-16)
This is a bit bizarre, but when separated out like this it works fine. The problem is that there is nothing stopping you from mixing strings and numbers in one value, in which case the Windows RC compiler freaks out and writes the type as "binary" (meaning the length should be interpreted as a byte count), but the length as a mixture of byte count and UTF-16 code unit count. For example, with this resource:
```rc
1 VERSIONINFO {
VALUE "something", "foo", 123
}
```
Its value's data will get compiled into these bytes: 66 00 6F 00 6F 00 00 00 7B 00, where 66 00 6F 00 6F 00 00 00 is `"foo"` (as `NUL`-terminated little-endian UTF-16) and 7B 00 is `123` (as a little-endian `u16`). This makes for a total of 10 bytes (8 for `"foo"`, 2 for `123`), but the Windows RC compiler erroneously reports the value's data length as 6 (4 for `"foo"` [counted as UTF-16 code units], and 2 for `123` [counted as bytes]).
This miscompilation has similar results as those detailed in ["*Your fate will be determined by a comma*"](#your-fate-will-be-determined-by-a-comma):
- The full data of the value will not be read by a parser
- Due to the tree structure of `VERSIONINFO` resource data, this has knock-on effects on all following nodes, meaning the entire resource will be mangled
#### The return of the meaningful comma
Before, I said that string values were compiled as `NUL`-terminated UTF-16 strings, but this is only the case when either:
- It is the last data element of a `VALUE`, or
- There is a comma separating it from the element after it
So, this:
```rc
1 VERSIONINFO {
VALUE "strings", "foo", "bar"
}
```
will be compiled with a `NUL` terminator after both `foo` and `bar`, but this:
```rc
1 VERSIONINFO {
VALUE "strings", "foo" "bar"
}
```
will be compiled only with a `NUL` terminator after `bar`. This is also similar to ["*Your fate will be determined by a comma*"](#your-fate-will-be-determined-by-a-comma), but unlike that comma quirk, I don't consider this one a miscompilation because the result is not invalid/mangled, and there is a possible use-case for this behavior (concatenating two or more string literals together). However, this behavior is not mentioned in the documentation, so it's unclear if it's actually intended.
#### `resinator`'s behavior
`resinator` avoids the length-related miscompilation and emits a warning:
```resinatorerror
test.rc:2:22: warning: the byte count of this value would be miscompiled by the Win32 RC compiler
VALUE "something", "foo", 123
^~~~~~~~~~
test.rc:2:22: note: to avoid the potential miscompilation, do not mix numbers and strings within a value
```
but matches the "meaningful comma" behavior of the Windows RC compiler.
fundamental concept
### Turning off flags with `NOT` expressions
Let's say you wanted to define a dialog resource with a button, but you wanted the button to start invisible. You'd do this with a `NOT` expression in the "style" parameter of the button like so:
Ordering matters as well. If we switch the expression to:
```rc
NOT 0x1 | 0x1
```
then we end up with `0x1` as the result:
If, instead, the ordering was reversed like so:
```rc
0x1 | NOT 0x1
```
then the value at the end would be `0x0`:
With these basic examples, `NOT` seems pretty straightforward, however...
1 DIALOGEX 0, 0, 282, 239
{
PUSHBUTTON "Cancel",1,129,212,50,14, NOT WS_VISIBLE
}
1 DIALOGEX 0, 0, 282, 239
{
PUSHBUTTON "Cancel",1,129,212,50,14, NOT WS_VISIBLE | BS_VCENTER
}
NOT 0x1 | 0x2
operation
binary representation of the result
hex representation of the result
Default value:
0x10000 00010x1NOT 0x10000 00000x0| 0x20000 00100x2operation
binary representation of the result
hex representation of the result
Default value:
0x10000 00010x1NOT 0x10000 00000x0| 0x10000 00010x1operation
binary representation of the result
hex representation of the result
Default value:
0x10000 00010x10x10000 00010x1| NOT 0x10000 00000x0
utterly baffling
### `NOT` is incomprehensible
Practically any deviation outside the simple examples outlined in [*Turning off flags with `NOT` expressions*](#turning-off-flags-with-not-expressions) leads to bizarre and inexplicable results. For example, these expressions are all accepted by the Windows RC compiler:
- `NOT (1 | 2)`
- `NOT () 2`
- `7 NOT NOT 4 NOT 2 NOT NOT 1`
The first one looks like it makes sense, as intuitively the `(1 | 2)` would be evaluated first so in theory it should be equivalent to `NOT 3`. However, if the default value of the flags is `0`, then the expression `NOT (1 | 2)` (somehow) evaluates to `2`, whereas `NOT 3` would evaluate to `0`.
`NOT () 2` seems like it should obviously be a syntax error, but for whatever reason it's accepted by the Windows RC compiler and also evaluates to `2`.
`7 NOT NOT 4 NOT 2 NOT NOT 1` is entirely incomprehensible, and just as incomprehensibly, it *also* results in `2` (if the default value is `0`).
This behavior is so bizarre and obviously incorrect that I didn't even try to understand what's going on here, so your guess is as good as mine on this one.
#### `resinator`'s behavior
`resinator` only accepts `NOT `, anything else is an error:
```resinatorerror
test.rc:2:13: error: expected '', got '('
STYLE NOT () 2
^
```
All 3 of the above examples lead to compile errors in `resinator`.
parser bug/quirk
### `NOT` can be used in places it makes no sense
The strangeness of `NOT` doesn't end there, as the Windows RC compiler also allows it to be used in many (but not all) places that a number expression can be used.
As an example, here are `NOT` expressions used in the `x`, `y`, `width`, and `height` arguments of a `DIALOGEX` resource:
```rc
1 DIALOGEX NOT 1, NOT 2, NOT 3, NOT 4
{
// ...
}
```
This doesn't necessarily cause problems, but since `NOT` is only useful in the context of turning off enabled-by-default flags of a bit flag parameter, there's no reason to allow `NOT` expressions outside of that context.
However, there *is* an extra bit of weirdness involved here, since certain `NOT` expressions cause errors in some places but not others. For example, the expression `1 | NOT 2` is an error if it's used in the `type` parameter of a `MENUEX`'s `MENUITEM`, but `NOT 2 | 1` is totally accepted.
```rc
1 MENUEX {
// Error: numeric value expected at NOT
MENUITEM "bar", 101, 1 | NOT 2
// No error if the NOT is moved to the left of the bitwise OR
MENUITEM "foo", 100, NOT 2 | 1
}
```
#### `resinator`'s behavior
`resinator` errors if `NOT` expressions are attempted to be used outside of bit flag parameters:
```resinatorerror
test.rc:1:12: error: expected number or number expression; got 'NOT'
1 DIALOGEX NOT 1, NOT 2, NOT 3, NOT 4
^~~
```
miscompilation, crash
### No one has thought about `FONT` resources for decades
As far as I can tell, the `FONT` resource has exactly one purpose: creating `.fon` files, which are resource-only `.dll`s (i.e. a `.dll` with resources, but no entry point) renamed to have a `.fon` extension. Such `.fon` files contain a collection of fonts in the obsolete `.fnt` font format.
The `.fon` format is mostly obsolete, but is still supported in modern Windows, and Windows *still* ships with some `.fon` files included:
This `.fon`-related purpose for the `FONT` resource, however, has been irrelevant for decades, and, as far as I can tell, has not worked fully correctly since the 16-bit version of the Windows RC compiler. To understand why, though, we have to understand a little bit about the `.fnt` format.
In version 1 of the `.fnt` format, specified by the [Windows 1.03 SDK from 1986](https://www.os2museum.com/files/docs/win10sdk/windows-1.03-sdk-prgref-1986.pdf), the total size of all the static fields in the header was 117 bytes, with a few fields containing offsets to variable-length data elsewhere in the file. Here's a (truncated) visualization, with some relevant 'offset' fields expanded:
The Terminal font included in Windows 10 is a .fon file
....version....
......size.....
...copyright...
......type.....
. . . etc . . .
. . . etc . . .
.device_offset. ───► NUL-terminated device name.
..face_offset.. ───► NUL-terminated font face name.
....bits_ptr...
..bits_offset......version....
. . . etc . . .
. . . etc . . .
.device_offset.
..face_offset..
....bits_ptr...
..bits_offset..
....reserved... ◄─┐
.....flags..... ◄─┤
.....aspace.... ◄─┤
.....bspace.... ◄─┼── new fields
.....cspace.... ◄─┤
...color_ptr... ◄─┤
...reserved1... │
............... ◄─┘
................fnt version 1 FONTDIRENTRY
....version.... == ...dfVersion...
......size..... == .....dfSize....
...copyright... == ..dfCopyright..
......type..... == .....dfType....
. . . etc . . . == . . . etc . . .
. . . etc . . . == . . . etc . . .
.device_offset. == ....dfDevice...
..face_offset.. == .....dfFace....
....bits_ptr... =? ...dfReserved..
..bits_offset.. NUL-terminated device name.
NUL-terminated font face name.The formats match, except FONTDIRENTRY does not include bits_offset and instead it has trailing variable-length strings
....version....
. . . etc . . .
. . . etc . . .
.device_offset. ───► some device.
..face_offset.. ───► some font face.
. . . etc . . .
. . . etc . . .
...reserved1...
...............
............... FONTDIRENTRY
-113 ...dfVersion... (2 bytes)
-111 .....dfSize.... (4 bytes)
-107 ..dfCopyright.. (60 bytes)
-47 .....dfType.... (2 bytes)
. . . etc . . .
. . . etc . . .
-12 ....dfDevice... (4 bytes)
-8 .....dfFace.... (4 bytes)
-4 ...dfReserved.. (4 bytes)The numbers on the left represent the offset from the end of the FONTDIRENTRY data to the start of the field
....version....
. . . etc . . .
. . . etc . . .
.device_offset.
..face_offset..
. . . etc . . .
. . . etc . . .
-12 ...reserved1... ───► ???
-8 ............... ───► ???
-4 ...............The Windows RC compiler reads data from the reserved1 field and interprets it as dfDevice and dfFace
....version....
. . . etc . . .
. . . etc . . .
.device_offset. ───► some device.
..face_offset.. ───► some font face.
. . . etc . . .
. . . etc . . .
...reserved1... ───► i dare you to read me.
............... ───► you wouldn't.
...............
fundamental concept
### The involvement of a C/C++ preprocessor
In the intro, I said:
> `.rc` files are scripts that contain both **C/C++ preprocessor commands** and resource definitions.
So far, I've only focused on resource definitions, but the involvement of the C/C++ preprocessor cannot be ignored. From the [About Resource Files](https://learn.microsoft.com/en-us/windows/win32/menurc/about-resource-files) documentation:
> The syntax and semantics for the RC preprocessor are similar to those of the Microsoft C/C++ compiler. However, RC supports a subset of the preprocessor directives, defines, and pragmas in a script.
The primary use-case for this is two-fold:
- Inclusion of C/C++ headers within a `.rc` file to pull in constants, e.g. `#include ` to allow usage of [window style constants](https://learn.microsoft.com/en-us/windows/win32/winmsg/window-styles) like `WS_VISIBLE`, `WS_BORDER`, etc.
- Being able to share a `.h` file between your `.rc` file and your C/C++ source files, where the `.h` file contains things like the IDs of various resources.
Here's some snippets that demonstrate both use-cases:
```c
// in resource.h
#define DIALOG_ID 123
#define BUTTON_ID 234
```
```rc
// in resource.rc
#include
#include "resource.h"
// DIALOG_ID comes from resource.h
DIALOG_ID DIALOGEX 0, 0, 282, 239
// These style constants come from windows.h
STYLE DS_SETFONT | DS_MODALFRAME | DS_CENTER | WS_POPUP | WS_CAPTION | WS_SYSMENU
CAPTION "Dialog"
{
// BUTTON_ID comes from resource.h
PUSHBUTTON "Button", BUTTON_ID, 129, 182, 50, 14
}
```
```c
// in main.c
#include
#include "resource.h"
// ...
// DIALOG_ID comes from resource.h
HWND result = CreateDialogParamW(hInst, MAKEINTRESOURCEW(DIALOG_ID), hwnd, DialogProc, (LPARAM)NULL);
// ...
// ...
// BUTTON_ID comes from resource.h
HWND button = GetDlgItem(hwnd, BUTTON_ID);
// ...
```
With this setup, changing `DIALOG_ID`/`BUTTON_ID` in `resource.h` affects both `resource.rc` and `main.c`, so they are always kept in sync.
preprocessor bug/quirk, parser bug/quirk
### Multiline strings don't behave as expected/documented
Within the [`STRINGTABLE` resource documentation](https://learn.microsoft.com/en-us/windows/win32/menurc/stringtable-resource) we see this statement:
> The string [...] must occupy a single line in the source file (unless a '\' is used as a line continuation).
This is similar to the rules around C strings:
And yet, contrary to the documentation, splitting a string across multiple lines without `\` continuations *is not an error* in the Windows RC compiler. Here's an example:
```rc
1 RCDATA {
"foo
bar"
}
```
This will successfully compile, and the data of the `RCDATA` resource will end up as
int main() {
printf("%s\n", my_string);
return 0;
}
```
Let's compile it with a few different compilers to find out:
```shellsession
> zig run multilinestring.c -lc
Line 1 Line 2
> clang multilinestring.c
> a.exe
Line 1 Line 2
> cl.exe multilinestring.c
> multilinestring.exe
Line 1 Line 2
```
That is, the whitespace preceding "Line 2" is included in the string literal.
However, the Windows RC compiler behaves differently here. If we pass the same example through *its* preprocessor, we end up with:
```c
#line 1 "multilinestring.c"
char *my_string = "Line 1 \
Line 2";
```
1. The `\` remains (similar to the MSVC compiler, see the note above)
2. The whitespace before "Line 2" is removed
So the value of `my_string` would be `Line 1 Line 2` (well, not really, since `char *my_string = ` doesn't have a meaning in `.rc` files, but you get the idea). This divergence in behavior from C has practical consequences: in [this `.rc` file](https://github.com/microsoft/Windows-classic-samples/blob/main/Samples/Win7Samples/winui/shell/appshellintegration/NonDefaultDropMenuVerb/NonDefaultDropMenuVerb.rc) from one of the [Windows-classic-samples](https://github.com/microsoft/Windows-classic-samples) example programs, we see the following, which takes advantage of the `rc.exe`-preprocessor-specific-whitespace-collapsing behavior:
```rc
STRINGTABLE
BEGIN
// ...
IDS_MESSAGETEMPLATEFS "The drop target is %s.\n\
%d files/directories in HDROP\n\
The path to the first object is\n\
\t%s."
// ...
END
```
Plus, in certain circumstances, this difference between `rc.exe` and C (like [other differences to C](#all-operators-have-equal-precedence)) can lead to bugs. This is a rather contrived example, but here's one way things could go wrong:
```c
// In foo.h
#define FOO_TEXT "foo \
bar"
#define IDC_BUTTON_FOO 1001
```
```rc
// In foo.rc
#include "foo.h"
1 DIALOGEX 0, 0, 275, 280
BEGIN
PUSHBUTTON FOO_TEXT, IDC_BUTTON_FOO, 7, 73, 93, 14
END
```
```c
// In main.c
#include "foo.h"
// ...
HWND hFooBtn = GetDlgItem(hDlg, IDC_BUTTON_FOO);
// Let's say the button text was changed while it was hovered
// and now we want to set it back to the default
SendMessage(hFooBtn, WM_SETTEXT, 0, (LPARAM) _T(FOO_TEXT));
// ...
```
In this example, the button defined in the `DIALOGEX` would start with the text `foo bar`, since that is the value that the Windows RC compiler resolves `FOO_TEXT` to be, but the `SendMessage` call would then set the text to
```c style="display: flex; flex-direction: column; justify-content: center; flex-grow: 1; margin-top: 0;"
char *my_string = "Line 1
Line 2";
```
```resinatorerror style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0;"
multilinestring.c:1:19: error: missing terminating '"' character
char *my_string = "Line 1
^
```
Splitting a string across multiple lines without using \ is an error in C
```c style="display: flex; flex-direction: column; justify-content: center; flex-grow: 1; margin-top: 0;"
char *my_string = "Line 1 \
Line 2";
```
printf("%s\n", my_string); results in:
66 6F 6F 20 0A 62 61 72 foo space.\nbarfoo bar, since that's what the C compiler resolves `FOO_TEXT` to be.
#### `resinator`'s behavior
`resinator` uses the [Aro preprocessor](https://github.com/Vexu/arocc), which means it acts like a C compiler. In the future, `resinator` will likely fork Aro ([mostly to support UTF-16 encoded files](https://github.com/squeek502/resinator/issues/5)), which could allow matching the behavior of `rc.exe` in this case as well.
parser bug/quirk, utterly baffling
### Escaping quotes is fraught
Again from the [`STRINGTABLE` resource docs](https://learn.microsoft.com/en-us/windows/win32/menurc/stringtable-resource):
> To embed quotes in the string, use the following sequence: `""`. For example, `"""Line three"""` defines a string that is displayed as follows:
> ```
> "Line three"
> ```
This is different from C, where `\"` is used to escape quotes within a string literal, so in C to get `"Line three"` you'd do `"\"Line three\""`.
This difference, though, can lead to some really bizarre results, since the preprocessor *still uses the C escaping rules*. Take this simple example:
```none
"\""BLAH"
```
Here's how that is seen from the perspective of the preprocessor:
string"\""identifierBLAHstring (unfinished)"string"\""BLAH"string"\"""identifierhellostring""1 RCDATA { string"\""BLAH" }
parser bug/quirk
### The column of a tab character matters
Literal tab characters (`U+009`) within an `.rc` file get transformed by the preprocessor into a variable number of spaces (1-8), depending on the column of the tab character in the source file. This means that whitespace can affect the output of the compiler. Here's a few examples, where
#### `resinator`'s behavior
`resinator` matches the Windows RC compiler behavior, but emits a warning
```resinatorerror
test.rc:2:4: warning: the tab character(s) in this string will be converted into a variable number of spaces (determined by the column of the tab character in the .rc file)
" "
^~~
test.rc:2:4: note: to include the tab character itself in a string, the escape sequence \t should be used
```
──── denotes a tab character:
1 RCDATA {
"────"
}the tab gets compiled to 7 spaces:
·······1 RCDATA {
"────"
}the tab gets compiled to 4 spaces:
····1 RCDATA {
"────"
}the tab gets compiled to 1 space:
·
fundamental concept
### The Windows RC compiler 'speaks' UTF-16
As mentioned before, `.rc` files are compiled in two distinct steps:
1. First, they are run through a C/C++ preprocessor (`rc.exe` has a preprocessor implementation built-in)
2. The result of the preprocessing step is then compiled into a `.res` file
In addition to [a subset of the normal C/C++ preprocessor directives](https://learn.microsoft.com/en-us/windows/win32/menurc/preprocessor-directives), there is one resource-compiler-specific [`#pragma code_page` directive](https://learn.microsoft.com/en-us/windows/win32/menurc/pragma-directives) that allows changing which code page is active mid-file. This means that `.rc` files can *have a mixture of encodings* within a single file:
```rc
#pragma code_page(1252) // 1252 = Windows-1252
1 RCDATA { "This is interpreted as Windows-1252: €" }
#pragma code_page(65001) // 65001 = UTF-8
2 RCDATA { "This is interpreted as UTF-8: €" }
```
If the above example file is saved as [Windows-1252](https://en.wikipedia.org/wiki/Windows-1252), each `€` is encoded as the byte `0x80`, meaning:
- The `€` (`0x80`) in the `RCDATA` with ID `1` will be interpreted as a `€`
- The `€` (`0x80`) in the `RCDATA` with ID `2` will attempt to be interpreted as UTF-8, but `0x80` is an invalid start byte for a UTF-8 sequence, so it will be replaced during preprocessing with the Unicode replacement character (� or `U+FFFD`)
So, if we run the Windows-1252-encoded file through only the `rc.exe` preprocessor (using the [undocumented `rc.exe /p` option](#p-okay-i-ll-only-preprocess-but-you-re-not-going-to-like-it)), the result is a file with the following contents:
```rc
#pragma code_page 1252
1 RCDATA { "This is interpreted as Windows-1252: €" }
#pragma code_page 65001
2 RCDATA { "This is interpreted as UTF-8: �" }
```
If, instead, the example file is saved as [UTF-8](https://en.wikipedia.org/wiki/UTF-8), each `€` is encoded as the byte sequence `0xE2 0x82 0xAC`, meaning:
- The `€` (`0xE2 0x82 0xAC`) in the `RCDATA` with ID `1` will be interpreted as `€`
- The `€` (`0xE2 0x82 0xAC`) in the `RCDATA` with ID `2` will be interpreted as `€`
So, if we run the UTF-8-encoded version through the `rc.exe` preprocessor, the result looks like this:
```rc
#pragma code_page 1252
1 RCDATA { "This is interpreted as Windows-1252: €" }
#pragma code_page 65001
2 RCDATA { "This is interpreted as UTF-8: €" }
```
In both of these examples, the result of the `rc.exe` preprocessor is encoded as UTF-16. This is because, in the Windows RC compiler, the relevant code page interpretation is done during preprocessing, and the output of the preprocessor is *always* UTF-16. This, in turn, means that the parser/compiler of the Windows RC compiler *always* ingests UTF-16, as there's no option to skip the preprocessing step.
This will be relevant for future bugs/quirks, so just file this knowledge away for now.
preprocessor bug/quirk
### Extreme `#pragma code_page` values
As seen above, the resource-compiler-specific preprocessor directive `#pragma code_page` can be used to alter the current [code page](https://en.wikipedia.org/wiki/Code_page) mid-file. It's used like so:
```rc
#pragma code_page(1252) // Windows-1252
// ... bytes from now on are interpreted as Windows-1252 ...
#pragma code_page(65001) // UTF-8
// ... bytes from now on are interpreted as UTF-8 ...
```
The list of possible code pages [can be found here](https://learn.microsoft.com/en-us/windows/win32/intl/code-page-identifiers). If you try to use one that is not valid, `rc.exe` will error with:
```
fatal error RC4214: Codepage not valid: ignored
```
But what happens if you try to use an extremely large code page value (greater or equal to the max of a `u32`)? Most of the time it errors in the same way as above, but occasionally there's a strange / inexplicable error. Here's a selection of a few:
I don't have an explanation for this behavior, especially with regards to why only certian extreme values induce an error at all.
#### `resinator`'s behavior
`resinator` treats code pages exceeding the max of a `u32` as a fatal error.
```resinatorerror
test.rc:1:1: error: code page too large in #pragma code_page
#pragma code_page ( 4294967296 )
^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
```
This is a separate error from the one caused by invalid/unsupported code pages:
```resinatorerror
test.rc:1:1: error: invalid or unknown code page in #pragma code_page
#pragma code_page ( 64999 )
^~~~~~~~~~~~~~~~~~~~~~~~~~~
```
```resinatorerror
test.rc:1:1: error: unsupported code page 'utf7 (id=65000)' in #pragma code_page
#pragma code_page ( 65000 )
^~~~~~~~~~~~~~~~~~~~~~~~~~~
```
```rc style="display: flex; flex-direction: column; justify-content: center; align-items: center; flex-grow: 1; margin-top: 0;"
#pragma code_page(4294967296)
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0;"
error RC4212: Codepage not integer: )
fatal error RC1116: RC terminating after preprocessor errors
```
```rc style="display: flex; flex-direction: column; justify-content: center; align-items: center; flex-grow: 1; margin-top: 0;"
#pragma code_page(4295032296)
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0;"
fatal error RC22105: MultiByteToWideChar failed.
```
```rc style="display: flex; flex-direction: column; justify-content: center; align-items: center; flex-grow: 1; margin-top: 0;"
#pragma code_page(4295032297)
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0;"
test.rc(2) : error RC2177: constant too big
test.rc(2) : error RC4212: Codepage not integer: 4
fatal error RC1116: RC terminating after preprocessor errors
```
preprocessor/parser bug/quirk
### Escaping in wide string literals
In regular string literals, invalid escape sequences get compiled into their literal characters. For example:
1 RCDATA {
"abc\k" ────► abc\k
}1 RCDATA {
L"abc\k" ────► a.b.c.
}────) will get converted to 6 space characters:
1 RCDATA {
L"\────"
}1 RCDATA {
L"\······"
}<0xD801><0xDC37>.
So, let's say we have this `.rc` file:
```rc
#pragma code_page(65001)
1 RCDATA {
L"\𐐷"
}
```
The file is encoded as UTF-8, meaning the 𐐷 is encoded as 4 bytes like so:
#pragma code_page(65001)
1 RCDATA {
L"\<0xF0><0x90><0x90><0xB7>"
}
1 RCDATA {
L"\<0xD801><0xDC37>"
}
\<0xD801> is treated as an invalid escape sequence and skipped, and only <0xDC37> makes it into the compiled resource data. This will essentially always end up being invalid UTF-16, since an unpaired surrogate code unit is ill-formed (the only way it wouldn't end up as ill-formed is if an intentionally unpaired high surrogate code unit was included before the escape sequence, e.g. `L"\xD801\𐐷"`).
#### `resinator`'s behavior
`resinator` currently attempts to match the Windows RC compiler's behavior exactly, and [emulates the interaction between the preprocessor and wide string escape sequences in its string parser](https://github.com/squeek502/resinator/blob/9a6e50b0c0859e0dee5fd1871d93329e0e1194ef/src/literals.zig#L298-L356).
The reasoning for emulating the Windows RC compiler for escaped tabs/escaped surrogate pairs seems rather dubious, though, so this may change in the future.
miscompilation
### `STRINGTABLE` semantics bypass
The [`STRINGTABLE` resource](https://learn.microsoft.com/en-us/windows/win32/menurc/stringtable-resource) is intended for embedding string data, which can then be loaded at runtime with [`LoadString`](https://learn.microsoft.com/en-us/windows/win32/api/winuser/nf-winuser-loadstringw). A `STRINGTABLE` resource definition looks something like this:
```rc
STRINGTABLE {
0, "Hello"
1, "Goodbye"
}
```
Notice that there is no `id` before the `STRINGTABLE` resource type. This is because all strings within `STRINGTABLE` resources are bundled together in groups of 16 based on their ID and language (we can ignore the language part for now, though). So, if we have this example `.rc` file:
```rc
STRINGTABLE {
1, "Goodbye"
}
STRINGTABLE {
0, "Hello"
23, "Hm"
}
```
The `"Hello"` and `"Goodbye"` strings will be grouped together into one resource, and the `"Hm"` will be put into another. Each group is written as a series of 16 length integers (one for each string within the group), and each length is immediately followed by a UTF-16 encoded string of that length (if the length is non-zero). So, for example, the first group contains the strings with IDs 0-15, meaning, for the `.rc` file above, the first group would be compiled as:
05 00 48 00 65 00 6C 00 ..H.e.l.
6C 00 6F 00 07 00 47 00 l.o...G.
6F 00 6F 00 64 00 62 00 o.o.d.b.
79 00 65 00 00 00 00 00 y.e.....
00 00 00 00 00 00 00 00 ........
00 00 00 00 00 00 00 00 ........
00 00 00 00 00 00 00 00 ........
66 6F 6F ?? ?? ?? ?? ?? foo?????
?? ?? ?? ?? ?? ?? ?? ?? ????????
... ... 66 6F 6F 00 00 00 00 00 foo.....
3C 3F 78 6D 6C 20 76 65 <?xml ve
... ...
parser bug/quirk, utterly baffling
### `CONTROL`: "I'm just going to pretend I didn't see that"
Within `DIALOG`/`DIALOGEX` resources, there are predefined controls like `PUSHBUTTON`, `CHECKBOX`, etc, which are actually just syntactic sugar for generic `CONTROL` statements with particular default values for the "class name" and "style" parameters.
For example, these two statements are equivalent:
classCHECKBOX, text"foo", id1, x2, y3, w4, h5classCONTROL, "foo", 1, class nameBUTTON, styleBS_CHECKBOX | WS_TABSTOP, 2, 3, 4, 5CONTROL, "text", 1, BUTTON, BS_CHECKBOX | WS_TABSTOP "why is this allowed"style, 2, 3, 4, 5CONTROL, "text", 1, BUTTON, BS_CHECKBOX | WS_TABSTOP (7+8)style, 2, 3, 4, 5CONTROL, "text", 1, BUTTON, styleBS_CHECKBOX | WS_TABSTOP (7+x8), y2, w3, h4, exstyle5
miscompilation
### That's odd, I thought you needed more padding
In `DIALOGEX` resources, a control statement is documented to have the following syntax:
> ```
> control [[text,]] id, x, y, width, height[[, style[[, extended-style]]]][, helpId]
> [{ data-element-1 [, data-element-2 [, . . . ]]}]
> ```
For now, we can ignore everything except the `[{ data-element-1 [, data-element-2 [, . . . ]]}]` part, which is documented like so:
> *controlData*
>
> Control-specific data for the control. When a dialog is created, and a control in that dialog which has control-specific data is created, a pointer to that data is passed into the control's window procedure through the lParam of the WM_CREATE message for that control.
Here's an example, where the string `"foo"` is the control data:
1 DIALOGEX 0, 0, 282, 239 {
PUSHBUTTON "Cancel",1,129,212,50,14 { "foo" }
}
1 DIALOGEX 0, 0, 282, 239 {
CONTROL "text", 901, "CustomControl", 0, 129,212,50,14 { "foo" }
}
03 00 66 6F 6F, where 03 00 is the length of the control data in bytes (3 as a little-endian `u16`) and 66 6F 6F are the bytes of `foo`.
If we load this dialog, then our custom control's `WNDPROC` callback will receive a `WM_CREATE` event where the `LPARAM` parameter is a pointer to a `CREATESTRUCT` and `((CREATESTRUCT*)lParam)->lpCreateParams` will be a pointer to the control data (if any exists). So, in our case, the `lpCreateParams` pointer points to memory that looks the same as the bytes shown above: a `u16` length first, and the specified number of bytes following it. If we handle the event like this:
```c
// ...
case WM_CREATE:
if (lParam) {
CREATESTRUCT* create_params = (CREATESTRUCT*)lParam;
const BYTE* data = create_params->lpCreateParams;
if (data) {
WORD len = *((WORD*)data);
printf("control data len: %d\n", len);
for (WORD i = 0; i < len; i++) {
printf("%02X ", data[2 + i]);
}
printf("\n");
}
}
break;
// ...
```
then we get this output (with some additional printing of the callback parameters):
```
CustomProc hwnd: 00000000022C0A8A msg: WM_CREATE wParam: 0000000000000000 lParam: 000000D7624FE730
control data len: 3
66 6F 6F
```
Nice! Now let's try to add a second `CONTROL`:
1 DIALOGEX 0, 0, 282, 239 {
CONTROL "text", 901, "CustomControl", 0, 129,212,50,14 { "foo" }
CONTROL "text", 902, "CustomControl", 0, 189,212,50,14 { "bar" }
}
........foo
then we only need one byte of padding after `foo` to ensure the next control is 4-byte aligned:
........foo.........
However, the Windows RC compiler erroneously inserts two additional padding bytes in this case, meaning the control afterwards is misaligned by two bytes:
........foo.........
This causes every field of the misaligned control to be misread, leading to a malformed dialog that can't be loaded. As mentioned, this is only the case with odd control data byte counts; if we add or remove a byte from the control data, then this miscompilation does not happen and the correct amount of padding is written. Here's what it looks like if `"foo"` is changed to `"fo"`:
........fo..........
This is a miscompilation that seems very easy to accidentally hit, but it has gone undetected/unfixed for so long presumably because this 'control data' syntax is *very* seldom used. For example, there's not a single usage of this feature anywhere within [Windows-classic-samples](https://github.com/microsoft/Windows-classic-samples).
#### `resinator`'s behavior
`resinator` will avoid the miscompilation and will emit a warning when it detects that the Windows RC compiler would miscompile:
```resinatorerror
test.rc:3:3: warning: the padding before this control would be miscompiled by the Win32 RC compiler (it would insert 2 extra bytes of padding)
CONTROL "text", 902, "CustomControl", 1, 189,212,50,14,2,3 { "bar" }
^~~~~~~
test.rc:3:3: note: to avoid the potential miscompilation, consider adding one more byte to the control data of the control preceding this one
```
miscompilation, utterly baffling
### `CONTROL` class specified as a number
A generic `CONTROL` within a `DIALOG`/`DIALOGEX` resource is specified like this:
` instead of `FF FF `. However, the results we see don't fully match what we'd expect if that were the case—instead of `FF 80`, we get `80 FF`, so I don't think this explanation holds up.
#### `resinator`'s behavior
`resinator` will avoid the miscompilation and will emit a warning:
```resinatorerror
test.rc:2:22: warning: the control class of this CONTROL would be miscompiled by the Win32 RC compiler
CONTROL, "foo", 1, 0x80, 1, 2, 3, 4, 5
^~~~
test.rc:2:22: note: to avoid the potential miscompilation, consider specifying the control class using a string (BUTTON, EDIT, etc) instead of a number
```
classCONTROL, "foo", 1, class nameBUTTON, 1, 2, 3, 4, 5CONTROL, "foo", 1, class name0x80, 1, 2, 3, 4, 5CONTROL, "foo", 1, class name0x80, 1, 2, 3, 4, 5
compiler bug/quirk
### `CONTROL` class specified as a string literal
I said in ["*`CONTROL` class specified as a number*"](#control-class-specified-as-a-number) that `class name` can be specified as a particular set of unquoted identifiers (`BUTTON`, `EDIT`, `STATIC`, etc). I left out that it's also possible to specify them as quoted string literals—these are equivalent to the unquoted `BUTTON` class name:
However, if you use an `L` prefixed string that starts with a `\xFFFF` escape, then the value is written as if it were a number (i.e. the value is always 32-bits long and has the format `FF FF `). Here's an example:
All but the first `z` drop out, as seemingly the first character value after the `\xFFFF` escape is written as a `u16`. Here's another example using a 4-digit hex escape after the `\xFFFF`:
So, with this bug/quirk, this:
which is *indistinguisable* from the compiled form of the class name specified as either an unquoted literal (`BUTTON`) or quoted string (`"BUTTON"`). I want to say that this edge case is so specific that it has to have been intentional, but I'm not sure I can rule out the idea that some very strange confluence of quirks is coming together to produce this behavior unintentionally.
#### `resinator`'s behavior
`resinator` matches the behavior of the Windows RC compiler for the `"BUTTON"`/`"\x42UTTON"` examples, but the `L"\xFFFF..."` edge case [has not yet been decided on](https://github.com/squeek502/resinator/issues/13) as of now.
CONTROL, "foo", 1, "BUTTON", 1, 2, 3, 4, 5
CONTROL, "foo", 1, L"BUTTON", 1, 2, 3, 4, 5CONTROL, "foo", 1, "\x42UTTON", 1, 2, 3, 4, 5
CONTROL, "foo", 1, L"\x42UTTON", 1, 2, 3, 4, 5
```rc
"abc"
```
gets compiled to:
```
61 00 62 00 63 00 00 00 a.b.c...
```
```rc
L"\xFFFFzzzzzzzz"
```
gets compiled to:
```
FF FF 7A 00 ..z.
```
```rc
L"\xFFFF\xABCD"
```
gets compiled to:
```
FF FF CD AB ....
```
```rc
L"\xFFFF\x80"
```
gets compiled to:
```
FF FF 80 00 ....
```
missing error, miscompilation
### Cursor posing as an icon and vice versa
The `ICON` and `CURSOR` resource types expect a `.ico` file and a `.cur` file, respectively. The format of `.ico` and `.cur` is identical, but there is an 'image type' field that denotes the type of the file (`1` for icon, `2` for cursor).
The Windows RC compiler does not discriminate on what type is used for which resource. If we have `foo.ico` with the 'icon' type, and `foo.cur` with the 'cursor' type, then the Windows RC compiler will happily accept all of the following resources:
```rc
1 ICON "foo.ico"
2 ICON "foo.cur"
3 CURSOR "foo.ico"
4 CURSOR "foo.cur"
```
However, the resources with the mismatched types becomes a problem in the resulting `.res` file because `ICON` and `CURSOR` have different formats for their resource data. When the type is 'cursor', a [LOCALHEADER](https://learn.microsoft.com/en-us/windows/win32/menurc/localheader) consisting of two cursor-specific `u16` fields is written at the start of the resource data. This means that:
- An `ICON` resource with a `.cur` file will write those extra cursor-specific fields, but still 'advertise' itself as an `ICON` resource
- A `CURSOR` resource with an `.ico` file will *not* write those cursor-specific fields, but still 'advertise' itself as a `CURSOR` resource
- In both of these cases, attempting to load the resource will always end up with an incorrect/invalid result because the parser will be assuming that those fields exist/don't exist based on the resource type
So, such a mismatch *always* leads to incorrect/invalid resources in the `.res` file.
#### `resinator`'s behavior
`resinator` errors if the resource type (`ICON`/`CURSOR`) doesn't match the type specified in the `.ico`/`.cur` file:
```resinatorerror
test.rc:1:10: error: resource type 'cursor' does not match type 'icon' specified in the file
1 CURSOR "foo.ico"
^~~~~~~~~
```
unnecessary limitation
### PNG encoded cursors are erroneously rejected
`.ico`/`.cur` files are a 'directory' of multiple icons/cursors, used for different resolutions. Historically, each image was a [device-independent bitmap (DIB)](https://learn.microsoft.com/en-us/windows/win32/gdi/device-independent-bitmaps), but nowadays they can also be encoded as PNG.
The Windows RC compiler is fine with `.ico` files that have PNG encoded images, but for whatever reason rejects `.cur` files with PNG encoded images.
```rc
// No error, compiles and loads just fine
1 ICON "png.ico"
// error RC2176 : old DIB in png.cur; pass it through SDKPAINT
2 CURSOR "png.cur"
```
This limitation is provably artificial, though. If a `.res` file contains a `CURSOR` resource with PNG encoded image(s), then [`LoadCursor`](https://learn.microsoft.com/en-us/windows/win32/api/winuser/nf-winuser-loadcursorw) works correctly and the cursor displays correctly.
#### `resinator`'s behavior
`resinator` allows PNG encoded cursor images, and warns about the Windows RC compiler behavior:
```resinatorerror
test.rc:2:10: warning: the resource at index 0 of this cursor has the format 'png'; this would be an error in the Win32 RC compiler
2 CURSOR png.cur
^~~~~~~
```
miscompilation, utterly baffling
### Adversarial icons/cursors can lead to arbitrarily large `.res` files
Each image in a `.ico`/`.cur` file has a corresponding header entry which contains (a)
the size of the image in bytes, and (b) the offset of the image's data within the file. The Windows RC file fully trusts that this information is accurate; it will never error regardless of how malformed these two pieces of information are.
If the reported size of an image is larger than the size of the `.ico`/`.cur` file itself, the Windows RC compiler will:
- Write however many bytes there are before the end of the file
- Write zeroes for any bytes that are past the end of the file, except
- Once it has written 0x4000 bytes total, it will repeat these steps again and again until it reaches the full reported size
Because a `.ico`/`.cur` can contain up to 65535 images, and each image within can report its size as up to 2 GiB (more on this in the next bug/quirk), this means that a small (< 1 MiB) maliciously constructed `.ico`/`.cur` could cause the Windows RC compiler to attempt to write up to 127 TiB of data to the `.res` file.
#### `resinator`'s behavior
`resinator` errors if the reported file size of an image is larger than the size of the `.ico`/`.cur` file:
```resinatorerror
test.rc:1:8: error: unable to read icon file 'test.ico': ImpossibleDataSize
1 ICON test.ico
^~~~~~~~
```
miscompilation, utterly baffling
### Adversarial icons/cursors can lead to _**infinitely large**_ `.res` files
As mentioned in [*Adversarial icons/cursors can lead to arbitrarily large `.res` files*](#adversarial-icons-cursors-can-lead-to-arbitrarily-large-res-files), each image within an icon/cursor can report its size as up to 2 GiB. However, the field for the image size is actually 4 bytes wide, meaning the maximum should technically be 4 GiB.
The 2 GiB limit comes from the fact that the Windows RC compiler actually interprets this field as a *signed* integer, so if you try to define an image with a size larger than 2 GiB, it'll get interpreted as negative. We can somewhat confirm this by compiling with the verbose flag (`/v`):
```
Writing ICON:1, lang:0x409, size -6000000
```
When this happens, the Windows RC compiler seemingly enters into an infinite loop when writing the icon data to the `.res` file, meaning it will continue trying to write garbage until (presumably) all the space of the hard drive has been used up.
#### `resinator`'s behavior
`resinator` avoids misinterpreting the image size as signed, and allows images of up to 4 GiB to be specified if the `.ico`/`.cur` file actually is large enough to contain them.
miscompilation
### Icon/cursor images with impossibly small sizes lead to bogus `.res` files
Similar to [*Adversarial icons/cursors can lead to arbitrarily large `.res` files*](#adversarial-icons-cursors-can-lead-to-arbitrarily-large-res-files), it's also possible for images to specify their size as impossibly small:
- If the size of an image is reported as zero, then the Windows RC compiler will:
+ Write an arbitrary size for the resource's data
+ Not actually write any bytes to the data section of the resource
- If the size of an image is smaller than the header of the image format, then the Windows RC compiler will:
+ Read the full header for the image, even if it goes past the reported end of the image data
+ Write the reported number of bytes to the `.res` file, which can never be a valid image since it is smaller than the header size of the image format
#### `resinator`'s behavior
`resinator` errors if the reported size of an image within a `.ico`/`.cur` is too small to contain a valid image header:
```resinatorerror
test.rc:1:8: error: unable to read icon file 'test.ico': ImpossibleDataSize
1 ICON test.ico
^~~~~~~~
```
miscompilation
### Bitmaps with missing bytes in their color table
`BITMAP` resources expect `.bmp` files, which are roughly structured something like this:
The color table has a variable number of entries, dictated by either the `biClrUsed` field of the `BITMAPINFOHEADER`, or, if `biClrUsed` is zero, 2n where `n` is the number of bits per pixel (`biBitCount`). When the number of bits per pixel is 8 or fewer, this color table is used as a color palette for the pixels in the image:
This is relevant because the Windows resource compiler does not just write the bitmap data to the `.res` verbatim. Instead, it strips the `BITMAPFILEHEADER` and will always write the expected number of color table bytes, even if the number of color table bytes in the file doesn't match expectations.
..BITMAPFILEHEADER..
..BITMAPINFOHEADER..
....................
....color table.....
....................
....pixel data......
....................
....................
0
179
127
46
-
1
44
96
167
-
2
154
60
177
-
color index
color rgb
color
Example color table (above) and some pixel data that references the color table (below)
...
1
0
2
0
1
...
..BITMAPFILEHEADER..
..BITMAPINFOHEADER..
....................
....pixel data......
....................
....................
..BITMAPINFOHEADER..
....................
....color table.....
....................
....pixel data......
....................
....................
A bitmap file that omits the color table even though a color table is expected, and the data written to the .res for that bitmap
..BITMAPFILEHEADER..
..BITMAPINFOHEADER..
....................
....pixel data......
........................................
..BITMAPINFOHEADER..
....................
..."color table"....
........................pixel data......
....................
....................
When compiled with the Windows RC compiler, the bytes of the color table in the .res will consist of the bytes in the outlined region of the pixel data in the original bitmap file.
miscompilation
### Bitmaps with BITFIELDS and a color palette
When testing things using the bitmaps from [bmpsuite](https://entropymine.com/jason/bmpsuite/), there is one well-formed `.bmp` file that `rc.exe` and `resinator` handle differently:
> `g/rgb16-565pal.bmp`: A 16-bit image with both a BITFIELDS segment and a palette.
The details aren't too important here, so just know that the file is structured like this:
As mentioned earlier, the `BITMAPFILEHEADER` is dropped when compiling a `BITMAP` resource, but for whatever reason, `rc.exe` also drops the color table when compiling this `.bmp`, so it ends up like this in the compiled `.res`:
Note, though, that within the `BITMAPINFOHEADER`, it still says that there is a color table present (specifically, that there are 256 entries in the color table), so this is likely a miscompilation. One possibility here is that it's not intended to be valid for a `.bmp` to contain *both* color masks *and* a color table, but that seems dubious because Windows renders the original `.bmp` file just fine in Explorer/Photos.
#### `resinator`'s behavior
`resinator` does not drop the color table, so in the compiled `.res` the bitmap resource data looks like this:
and while I think this is correct, it turns out that...
#### `LoadBitmap` mangles both versions anyway
When the compiled resources are loaded with `LoadBitmap` and drawn [using `BitBlt`](http://parallel.vub.ac.be/education/modula2/technology/Win32_tutorial/bitmaps.html), neither the `rc.exe`-compiled version, nor the `resinator`-compiled version are drawn correctly:
My guess/hope is that this a bug in `LoadBitmap`, as I believe the `resinator`-compiled resource should be correct/valid.
..BITMAPFILEHEADER..
..BITMAPINFOHEADER..
....................
.....bitfields......
....color table.....
....................
....pixel data......
....................
....................
..BITMAPINFOHEADER..
....................
.....bitfields......
....pixel data......
....................
....................
..BITMAPINFOHEADER..
....................
.....bitfields......
....color table.....
....................
....pixel data......
....................
....................
intended image
bitmap resource from
rc.exebitmap resource from
resinator
parser bug/quirk, utterly baffling
### The strange power of the lonely close parenthesis
Likely due to some number expression parsing code gone haywire, a single close parenthesis `)` is occasionally treated as a 'valid' expression, with bizarre consequences.
Similar to what was detailed in ["*`BEGIN` or `{` as filename*"](#begin-or-as-filename), using `)` as a filename has the same interaction as `{` where the preceding token is treated as both the resource type and the filename.
But that's not all; take this, for example, where we define an `RCDATA` resource using a raw data block:
```rc
1 RCDATA { 1, ), ), ), 2 }
```
This should very clearly be a syntax error, but it's actually accepted by the Windows RC compiler. What does the RC compiler do, you ask? Well, it just skips right over all the `)`, of course, and the data of this resource ends up as:
` parameter of `1` with `)`, then all the parameters shift over and they get interpreted like this instead:
Instead, `(` was bestowed a different power, which we'll see next.
#### `resinator`'s behavior
A single close parenthesis is never a valid expression in `resinator`:
```resinatorerror
test.rc:2:20: error: expected number or number expression; got ')'
CHECKBOX "test", ), 2, 3, 4, 5, 6
^
test.rc:2:20: note: the Win32 RC compiler would accept ')' as a valid expression, but it would be skipped over and potentially lead to unexpected outcomes
```
```rc style="display: flex; flex-direction: column; justify-content: center; align-items: center; flex-grow: 1; margin-top: 0;"
1 RCDATA )
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0;"
test.rc(2) : error RC2135 : file not found: RCDATA
```
the 1 (u16 little endian) → 01 00 02 00 ← the 2 (u16 little endian)
I said 'skip' because that's truly what seems to happen. For example, for resource definitions that take positional parameters like so:
1 DIALOGEX 1, 2, 3, 4 {
// <text> <id> <x> <y> <w> <h> <style>
CHECKBOX "test", 1, 2, 3, 4, 5, 6
}
1 DIALOGEX 1, 2, 3, 4 {
// <text> <id> <x> <y> <w> <h>
CHECKBOX "test", ), 2, 3, 4, 5, 6
}
```rc style="display: flex; flex-direction: column; justify-content: center; align-items: center; flex-grow: 1; margin-top: 0;"
1 RCDATA { 1, (, 2 }
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0;"
test.rc(1) : error RC2237 : numeric value expected at 1
test.rc(1) : error RC1013 : mismatched parentheses
```
parser bug/quirk, utterly baffling
### The strange power of the sociable open parenthesis
While the [close parenthesis](#the-strange-power-of-the-lonely-close-parenthesis) has a bug/quirk involving being isolated, the open parenthesis has a bug/quirk regarding being snug up against another token.
This is (somehow) allowed:
```rc
1 DIALOGEX 1(, (2, (3(, ((((4(((( {}
```
In the above case, the parameters are interpreted as if the `(` characters don't exist, e.g. they compile to the values `1`, `2`, `3`, and `4`.
This power of `(` does not have infinite reach, though—in other places a `(` leads to an mismatched parentheses error as you might expect:
There's no chance I'm interested in bug-for-bug compatibility with this behavior, so I haven't investigated it beyond the shallow examples above. I'm sure there are more strange implications of this bug lurking for those willing to dive deeper.
#### `resinator`'s behavior
An unclosed open parenthesis is always an error `resinator`:
```resinatorerror
test.rc:1:14: error: expected number or number expression; got ','
1 DIALOGEX 1(, (2, (3(, ((((4(((( {}
^
```
```rc style="display: flex; flex-direction: column; justify-content: center; align-items: center; flex-grow: 1; margin-top: 0;"
1 RCDATA { 1, (2, 3, 4 }
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0;"
test.rc(1) : error RC1013 : mismatched parentheses
```
parser bug/quirk
### General comma-related inconsistencies
The rules around commas within statements can be one of the following depending on the context:
- Exactly one comma
- Zero or one comma
- Zero or any number of commas
And these rules can be mixed and matched within statements. I've tried to codify my understanding of the rules around commas in a [test `.rc` file I wrote](https://github.com/squeek502/resinator/blob/9a6e50b0c0859e0dee5fd1871d93329e0e1194ef/test/data/reference.rc). Here's an example statement that contains all 3 rules:
```rc
AUTO3STATE,, "mytext",, 900,, 1/*,*/ 2/*,*/ 3/*,*/ 4, 3 | NOT 1L, NOT 1 | 3L
```
However, there are a few places where empty parameters are accepted, and therefore `,,` is not a compile error, e.g. in the `MENUITEM` of a `MENUEX` resource:
```rc
1 MENUEX {
// The three statements below are equivalent
MENUITEM "foo", 0, 0, 0,
MENUITEM "foo", /*id*/, /*type*/, /*state*/,
MENUITEM "foo",,,,
// The parameters are optional, so this is also equivalent
MENUITEM "foo"
}
```
Adding one more comma will cause a compile error:
#### Italic is singled out
`DIALOGEX` resources can specify a font to use using a `FONT` optional statement like so:
```rc
1 DIALOGEX 1, 2, 3, 4
FONT 16, "Foo"
{
// ...
}
```
The full syntax of the `FONT` statement in this context is:
but this succeeds:
```rc
1 DIALOGEX 1, 2, 3, 4
FONT 16, "Foo", /*weight*/, 0, /*charset*/
{
// ...
}
```
Due to the strangeness of the error, I'm assuming that this `italic`-parameter-specific-behavior is unintended.
#### Further weirdness
Continuing on with the `FONT` statement of `DIALOGEX` resources: as we saw in ["*If you're not last, you're irrelevant*"](#if-you-re-not-last-you-re-irrelevant), if there are duplicate statements of the same type, all but the last one is ignored:
```rc
1 DIALOGEX 1, 2, 3, 4
FONT 16, "Foo", 1, 2, 3 // Ignored
FONT 32, "Bar", 4, 5, 6
{
// ...
}
```
In the above example, the values-as-compiled will all come from this `FONT` statement:
```rc
FONT 32, "Bar", 4, 5, 6
```
However, given that the `weight`, `italic`, and `charset` parameters are optional, if you don't specify them, then their values from the previous `FONT` statement(s) *do* actually carry over, with the exception of the `charset` parameter:
```rc
1 DIALOGEX 1, 2, 3, 4
FONT 16, "Foo", 1, 2, 3
FONT 32, "Bar"
{
// ...
}
```
With the above, the `FONT` statement that ends up being compiled will effectively be:
```rc
FONT 32, "Bar", 1, 2, 1
```
where the last `1` is the `charset` parameter's default value (`DEFAULT_CHARSET`) rather than the `3` we might expect from the duplicate `FONT` statement.
#### `resinator`'s behavior
`resinator` matches the Windows RC compiler behavior, but has better error messages/additonal warnings where appropriate:
```resinatorerror
test.rc:2:21: error: expected number or number expression; got ','
FONT 16, "Foo", , ,
^
test.rc:2:21: note: this line originated from line 2 of file 'test.rc'
FONT 16, "Foo", /*weight*/, /*italic*/, /*charset*/
```
```resinatorerror
test.rc:2:3: warning: this statement was ignored; when multiple statements of the same type are specified, only the last takes precedence
FONT 16, "Foo", 1, 2, 3
^~~~~~~~~~~~~~~~~~~~~~~
```
,, indicates "zero or any number of commas", /*,*/ indicates "zero or one comma", and , indicates "exactly 1 comma"
```rc style="display: flex; flex-direction: column; justify-content: center; flex-grow: 1; margin-top: 0;"
1 ACCELERATORS {
"^b",, 1
}
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0; justify-content: center;"
test.rc(2) : error RC2107 : expected numeric command value
```
```rc style="display: flex; flex-direction: column; justify-content: center; flex-grow: 1; margin-top: 0;"
1 MENUEX {
MENUITEM "foo",,,,,
}
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0; justify-content: center;"
test.rc(2) : error RC2235 : too many arguments supplied
```
FONT pointsize16, typeface"Foo", weight1, italic2, charset3weight, italic, and charset are optional
```rc style="display: flex; flex-direction: column; justify-content: center; flex-grow: 1; margin-top: 0;"
1 DIALOGEX 1, 2, 3, 4
FONT 16, "Foo", /*weight*/, /*italic*/, /*charset*/
{
// ...
}
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0; justify-content: center;"
test.rc(2) : error RC2112 : BEGIN expected in dialog
test.rc(6) : error RC2135 : file not found: }
```
parser bug/quirk
### `NUL` in filenames
If a filename evaluates to a string that contains a `NUL` (`0x00`) character, the Windows RC compiler treats it as a terminator. For example,
```rc
1 RCDATA "hello\x00world"
```
will try to read from the file `hello`. This is understandable considering how C handles strings, but doesn't exactly seem like desirable behavior since it happens silently.
#### `resinator`'s behavior
Any evaluated filename string containing a `NUL` is an error:
```resinatorerror
test.rc:1:10: error: evaluated filename contains a disallowed codepoint:
1 RCDATA "hello\x00world"
^~~~~~~~~~~~~~~~
```
parser bug/quirk, utterly baffling
### Subtracting zero can lead to bizarre results
This compiles:
```rc
1 DIALOGEX 1, 2, 3, 4 - 0 {}
```
This doesn't:
I don't have a complete understanding as to why, but it seems to be related to subtracting the value zero within certain contexts.
Resource definitions that compile:
- `1 RCDATA { 4-0 }`
- `1 DIALOGEX 1, 2, 3, 4--0 {}`
- `1 DIALOGEX 1, 2, 3, 4-(0) {}`
Resource definitions that error:
- `1 DIALOGEX 1, 2, 3, 4-0x0 {}`
- `1 DIALOGEX 1, 2, 3, (4-0) {}`
The only additional information I have is that the following:
```rc
1 DIALOGEX 1, 2, 3, 10-0x0+5 {} hello
```
will error, and with the `/v` flag (meaning 'verbose') set, `rc.exe` will output:
```
test.rc.
test.rc(1) : error RC2112 : BEGIN expected in dialog
Writing DIALOG:1, lang:0x409, size 0.
test.rc(1) : error RC2135 : file not found: hello
Writing {}:+5, lang:0x409, size 0
```
The verbose output gives us a hint that the Windows RC compiler is interpreting the `+5 {} hello` as a new resource definition like so:
```rc style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0;"
1 DIALOGEX 1, 2, 3, 4-0 {}
```
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0;"
test.rc(1) : error RC2112 : BEGIN expected in dialog
```
id+5 type{} filenamehello
parser bug/quirk
### All operators have equal precedence
In the Windows RC compiler, all operators have equal precedence, which is not the case in C. This means that there is a mismatch between the precedence used by the preprocessor (C/C++ operator precedence) and the precedence used by the compiler.
Instead of detailing this bug/quirk, though, I'm just going to link to Raymond Chen's excellent description (complete with the potential consequences):
[What is the expression language used by the Resource Compiler for non-preprocessor expressions? - The Old New Thing](https://devblogs.microsoft.com/oldnewthing/20230313-00/?p=107928)
#### `resinator`'s behavior
`resinator` matches the behavior of the Windows RC compiler with regards to operator precedence (i.e. it also contains an operator-precedence-mismatch between the preprocessor and the compiler)
parser bug/quirk
### That's not *my* `\a`
The Windows RC compiler supports some (but not all) [C escape sequences](https://en.wikipedia.org/wiki/Escape_sequences_in_C) within string literals.
All of the supported escape sequences behave similarly to how they do in C, with the exception of `\a`. In C, `\a` is translated to the hex value `0x07` (aka the "Alert (Beep, Bell)" control character), while the Windows RC compiler translates `\a` to `0x08` (aka the "Backspace" control character).
On first glance, this seems like a bug, but there may be some historical reason for this that I'm missing the context for.
#### `resinator`'s behavior
`resinator` matches the behavior of the Windows RC compiler, translating `\a` to `0x08`.
Supported
- `\a` - `\n` - `\r` - `\t` - `\nnn` (or `\nnnnnnn` in wide literals) - `\xhh` (or `\xhhhh` in wide literals)
(side note: In the Windows RC compiler, `\a` and `\t` are case-insensitive, while `\n` and `\r` are case-sensitive)
Unsupported
- `\b` - `\e` - `\f` - `\v` - `\'` - `\"` (see ["*Escaping quotes is fraught*"](#escaping-quotes-is-fraught)) - `\?` - `\uhhhh` - `\Uhhhhhhhh`
undocumented, cli bug/quirk
### Undocumented/strange command-line options
#### `/sl`: Maximum string length, with a twist
From the help text of the Windows RC compiler (`rc.exe /?`):
```
/sl Specify the resource string length limit in percentage
```
No further information is given, and the [CLI documentation](https://learn.microsoft.com/en-us/windows/win32/menurc/using-rc-the-rc-command-line-) doesn't even mention the option. It turns out that the `/sl` option expects a number between 1 and 100:
What this option controls is the maximum number of characters within a string literal. For example, 4098 `a` characters within a string literal will fail with `string literal too long`:
: warning: option /a has no effect (it is undocumented and its function is unknown in the Win32 RC compiler)
... /a ...
~^
```
#### `/?c` and friends: LCX/LCE hidden options
Either one of `/?c` or `/hc` will add a normally hidden 'Comments extracting switches:' section to the help menu, with `/t` and `/t`-prefixed options dealing with `.LCX` and `.LCE` files.
```none
Comments extracting switches:
/t Generate .LCX output file
/tp: Extract only comments starting with
/tm Do not save mnemonics into the output file
/tc Do not save comments into the output file
/tw Display warning if custom resources does not have LCX file
/te Treat all warnings as errors
/ti Save source file information for each resource
/ta Extract data for all resources
/tn Rename .LCE file
```
I can find zero info about any of this online. A generated `.LCE` file seems to be an XML file with some info about the comments and resources in the `.rc` file(s).
##### `resinator`'s behavior
```resinatorerror
: error: the /t option is unsupported
... /t ...
~^
```
(and similar errors for all of the other related options)
#### `/p`: Okay, I'll only preprocess, but you're not going to like it
The undocumented `/p` option will output the preprocessed version of the `.rc` file to `.rcpp` instead of outputting a `.res` file (i.e. it will only run the preprocessor). However, there are two slightly strange things about this option:
- There doesn't appear to be any way to control the name of the `.rcpp` file (`/fo` does not affect it)
- `rc.exe` will always exit with exit code 1 when the `/p` option is used, even on success
##### `resinator`'s behavior
`resinator` recognizes the `/p` option, but (1) it allows `/fo` to control the file name of the preprocessed output file, and (2) it exits with 0 on success.
#### `/s`: What's HWB?
The option `/s ` will insert a bunch of resources with name `HWB` into the `.res`. I can't find any info on this except a note [on this page](https://learn.microsoft.com/en-us/cpp/windows/how-to-create-a-resource-script-file?view=msvc-170) saying that `HWB` is a resource name that is reserved by Visual Studio. The option seems to need a value but the value doesn't seem to have any affect on the `.res` contents and it seems to accept any value without complaint.
##### `resinator`'s behavior
```resinatorerror
: error: the /s option is unsupported
... /s ...
~^
```
#### `/z`: Mysterious font substitution
The undocumented `/z` option almost always errors with
```
fatal error RC1212: invalid option - /z argument missing substitute font name
```
To avoid this error, a value with `/` in it seems to do the trick (e.g. `rc.exe /z foo/bar test.rc`), but it's still unclear to me what purpose (if any) this option has. The title of ["*No one has thought about `FONT` resources for decades*"](#no-one-has-thought-about-font-resources-for-decades) is probably relevant here, too.
##### `resinator`'s behavior
```resinatorerror
: error: the /z option is unsupported
... /z ...
~^
```
```none style="display: flex; flex-direction: column; justify-content: center; flex-grow: 1; margin-top: 0;"
rc.exe /sl foo test.rc
```
```none style="display: flex; flex-direction: column; flex-grow: 1; justify-content: center; margin-top: 0; white-space: pre-wrap;"
fatal error RC1235: invalid option - string length limit percentage should be between 1 and 100 inclusive
```
1 RCDATA { "aaaa<...>aaaa" }
undocumented
### Undocumented resource types
Most predefined resource types have some level of documentation [here](https://learn.microsoft.com/en-us/windows/win32/menurc/resource-definition-statements) (or are at least listed), but there are a few that are recognized but not documented.
#### `DLGINCLUDE`
The tiny bit of available documentation I could find for `DLGINCLUDE` comes from [Microsoft KB Archive/91697](https://www.betaarchive.com/wiki/index.php/Microsoft_KB_Archive/91697):
> The dialog editor needs a way to know what include file is associated with a resource file that it opens. Rather than prompt the user for the name of the include file, the name of the include file is embedded in the resource file in most cases.
Here's an example from [`sdkdiff.rc` in Windows-classic-samples](https://github.com/microsoft/Windows-classic-samples/blob/be3df303c13bcf5526250a2e1659e8add8d2e35d/Samples/Win7Samples/begin/sdkdiff/sdkdiff.rc#L281):
```
1 DLGINCLUDE "wdiffrc.h"
```
Further details from [Microsoft KB Archive/91697](https://www.betaarchive.com/wiki/index.php/Microsoft_KB_Archive/91697):
> In the Win32 SDK, changes were made so that this resource has its own resource type; it was changed from an RCDATA-type resource with the special name, DLGINCLUDE, to a DLGINCLUDE resource type whose name can be specified.
So, in the 16-bit Windows RC compiler, a DLGINCLUDE would have looked something like this:
```rc
DLGINCLUDE RCDATA DISCARDABLE
BEGIN
"GUTILSRC.H\0"
END
```
`DLGINCLUDE` resources get compiled into the `.res`, but subsequently get ignored by `cvtres.exe` (the tool that turns the `.res` into a COFF object file) and therefore do not make it into the final linked binary. So, in practical terms, `DLGINCLUDE` is entirely meaningless outside of the Visual Studio dialog editor GUI as far as I know.
#### `DLGINIT`
The purpose of this resource seems like it could be similar to `controlData` in `DIALOGEX` resources (as detailed in ["*That's odd, I thought you needed more padding*"](#that-s-odd-i-thought-you-needed-more-padding))—that is, it is used to specify control-specific data that is loaded/utilized when initializing a particular control within a dialog.
Here's an example from [`bits_ie.rc` of Windows-classic-samples](https://github.com/microsoft/Windows-classic-samples/blob/main/Samples/Win7Samples/web/bits/bits_ie/bits_ie.rc):
```rc
IDD_DIALOG DLGINIT
BEGIN
IDC_PRIORITY, 0x403, 11, 0
0x6f46, 0x6572, 0x7267, 0x756f, 0x646e, "\000"
IDC_PRIORITY, 0x403, 5, 0
0x6948, 0x6867, "\000"
IDC_PRIORITY, 0x403, 7, 0
0x6f4e, 0x6d72, 0x6c61, "\000"
IDC_PRIORITY, 0x403, 4, 0
0x6f4c, 0x0077,
0
END
```
The resource itself is compiled the same way an `RCDATA` or User-defined resource would be when using a raw data block, so each number is compiled as a 16-bit little-endian integer. The expected structure of the data seems to be dependent on the type of control it's for (in this case, `IDC_PRIORITY` is the ID for a `COMBOBOX` control). In the above example, the format seems to be something like:
```rc
, , ,
```
The particular format is not very relevant, though, as it is (1) also entirely undocumented, and (2) generated by the Visual Studio dialog editor.
It is worth noting, though, that the `` parts of the above example, when written as little-endian `u16` integers, correspond to the bytes for the ASCII string `Foreground`, `High`, `Normal`, and `Low`. These strings can also be seen in the Properties window of the dialog editor in Visual Studio (and the dialog editor is almost certainly how the `DLGINIT` was generated in the first place):
While it would make sense for these strings to be used to populate the initial options in the combo box, I couldn't actually get modifications to the `DLGINIT` to affect anything in the compiled program in my testing. I'm guessing that's due to a mistake on my part, though; my knowledge of the Visual Studio GUI side of `.rc` files is essentially zero.
#### `TOOLBAR`
The undocumented `TOOLBAR` resource seems to be used in combination with [`CreateToolbarEx`](https://learn.microsoft.com/en-us/windows/win32/api/commctrl/nf-commctrl-createtoolbarex) to create a toolbar of buttons from a bitmap. Here's the syntax:
```rc
TOOLBAR
The Data section of Combo-box Controls in Visual Studio corresponds to the DLGINIT data
utterly baffling
### Certain `DLGINCLUDE` filenames break the preprocessor
The following script, when encoded as Windows-1252, will cause the `rc.exe` preprocessor to freak out and output what seems to be garbage:
```rc
1 DLGINCLUDE "\001ýA\001\001\x1aý\xFF"
```
If we run this through the preprocessor like so:
```shellsession
> rc.exe /p test.rc
Preprocessed file created in: test.rcpp
```
Then, in this particular case, it outputs mostly CJK characters and `test.rcpp` ends up looking like this:
```c
#line 1 "C:\\Users\\Ryan\\Programming\\Zig\\resinator\\tmp\\RCa18588"
#line 1 "test.rc"
#line 1 "test.rc"
‱䱄䥇䍎啌䕄∠ぜ䇽ぜぜ硜愱峽䙸≆
```
The most minimal reproduction I've found is:
```rc
1 DLGINCLUDE "â"""
```
which outputs:
```c
#line 1 "C:\\Users\\Ryan\\Programming\\Zig\\resinator\\tmp\\RCa21256"
#line 1 "test.rc"
#line 1 "test.rc"
‱䱄䥇䍎啌䕄∠⋢∢
```
As mentioned in ["*The Windows RC compiler 'speaks' UTF-16*"](#the-windows-rc-compiler-speaks-utf-16), the result of the preprocessor is always encoded as UTF-16, and the above is the result of interpreting the preprocessed file as UTF-16. If, instead, we interpret the preprocessed file as UTF-8 (or ASCII), we would see something like this instead:
#<0x00>l<0x00>i<0x00>n<0x00>e<0x00> <0x00>1<0x00> <0x00>"<0x00>C<0x00>:<0x00>\<0x00>\<0x00>U<0x00>s<0x00>e<0x00>r<0x00>s<0x00>\<0x00>\<0x00>R<0x00>y<0x00>a<0x00>n<0x00>\<0x00>\<0x00>P<0x00>r<0x00>o<0x00>g<0x00>r<0x00>a<0x00>m<0x00>m<0x00>i<0x00>n<0x00>g<0x00>\<0x00>\<0x00>Z<0x00>i<0x00>g<0x00>\<0x00>\<0x00>r<0x00>e<0x00>s<0x00>i<0x00>n<0x00>a<0x00>t<0x00>o<0x00>r<0x00>\<0x00>\<0x00>t<0x00>m<0x00>p<0x00>\<0x00>\<0x00>R<0x00>C<0x00>a<0x00>2<0x00>2<0x00>9<0x00>4<0x00>0<0x00>"<0x00>
<0x00>
<0x00>#<0x00>l<0x00>i<0x00>n<0x00>e<0x00> <0x00>1<0x00> <0x00>"<0x00>t<0x00>e<0x00>s<0x00>t<0x00>.<0x00>r<0x00>c<0x00>"<0x00>
<0x00>
<0x00>#<0x00>l<0x00>i<0x00>n<0x00>e<0x00> <0x00>1<0x00> <0x00>"<0x00>t<0x00>e<0x00>s<0x00>t<0x00>.<0x00>r<0x00>c<0x00>"<0x00>
<0x00>
<0x00>1 DLGINCLUDE "?"""
<0x00>
<0x00>
<0x00> bytes). The file mixing encodings like this means that it is completely unusable, but at least we know a little bit about what's going on. As to *why* or *how* this bug could manifest, that is *completely* unknowable. I can't even hazard a guess as to why certain `DLGINCLUDE` string literals would cause the preprocessor to output parts of the file with a single-byte-encoding.
Some commonalities between all the reproductions of this bug I've found so far:
- The byte count of the `.rc` file is even, no reproduction has had a filesize with an odd byte count.
- The number of distinct sequences (a byte, an escaped integer, or an escaped quote) in the filename string has to be small (min: 2, max: 18)
#### `resinator`'s behavior
`resinator` avoids this bug and handles the affected strings the same way that other `DLGINCLUDE` strings are handled by the Windows RC compiler
utterly baffling
### Certain `DLGINCLUDE` filenames trigger `missing '=' in EXSTYLE=` errors
Certain strings, when used with the `DLGINCLUDE` resource, will cause a seemingly entirely disconnected error. Here's one example (truncated, the full reproduction is just a longer sequence of random characters/escapes):
```
Not only do I not know why this error would ever be triggered for `DLGINCLUDE` (`EXSTYLE` is specific to `DIALOG`/`DIALOGEX`), I'm not even sure what this error means or how it could be triggered *normally*, since [`EXSTYLE` doesn't use the syntax `EXSTYLE=` at all](https://learn.microsoft.com/en-us/windows/win32/menurc/exstyle-statement). If we actually try to use the `EXSTYLE=` syntax, it gives us an error, so this is not a case of an error message for an undocumented feature:
I have two possible theories of what might be going on here:
1. The error is intended but the error message is wrong, i.e. it's using some internal code for an error message that never got its message updated accordingly
2. There's a lot of undefined behavior being invoked here, and it just so happens that some random (normally impossible?) error is the result
I'm leaning more towards option 2, since there's no obvious reason why the strings that reproduce the error would cause any error at all. One point against it, though, is that I've found quite a few different reproductions that all trigger the same error—the only real commonality in the reproductions is that they all have around 240 to 250 distinct characters/escape sequences within the `DLGINCLUDE` string literal.
#### `resinator`'s behavior
`resinator` avoids the error and handles the affected strings the same way that other `DLGINCLUDE` strings are handled by the Windows RC compiler
1 DLGINCLUDE "\06f\x2\x2b\445q\105[ð\134\x90<...truncated...>"
```rc style="display: flex; flex-direction: column; justify-content: center; flex-grow: 1; margin-top: 0;"
1 DIALOG 1, 2, 3, 4
EXSTYLE=1
{
// ...
}
```
```none style="display: flex; flex-direction: column; justify-content: center; flex-grow: 1; margin-top: 0;"
test.rc(2) : error RC2112 : BEGIN expected in dialog
test.rc(4) : error RC2135 : file not found: END
```
undocumented
### Various other undocumented/misdocumented things
#### Predefined macros
The [documentation](https://learn.microsoft.com/en-us/windows/win32/menurc/predefined-macros) only mentions `RC_INVOKED`, but `_WIN32` is also defined by default by the Windows RC compiler. For example, this successfully compiles and the `.res` contains the `RCDATA` resource.
```rc
#ifdef _WIN32
1 RCDATA { "hello" }
#endif
```
#### Dialog controls
In the ["Edit Control Statements"](https://learn.microsoft.com/en-us/windows/win32/menurc/dialogex-resource#edit-control-statements) documentation:
- `BEDIT` is listed, but is unrecognized by the Windows RC compiler and will error with `undefined keyword or key name: BEDIT` if you attempt to use it
- `HEDIT` and `IEDIT` are listed and are recognized, but have no further documentation
In the ["GROUPBOX control"](https://learn.microsoft.com/en-us/windows/win32/menurc/groupbox-control) documentation, it says:
> The GROUPBOX statement, which you can use only in a DIALOGEX statement, defines the text, identifier, dimensions, and attributes of a control window.
However, the "can use only in a `DIALOGEX` statement" (meaning it's not allowed in a `DIALOG` resource) is not actually true, since this compiles successfully:
```rc
1 DIALOG 0, 0, 640, 480 {
GROUPBOX "text", 1, 2, 3, 4, 5
}
```
In the ["Button Control Statements"](https://learn.microsoft.com/en-us/windows/win32/menurc/dialogex-resource#button-control-statements) documentation, `USERBUTTON` is listed (and is recognized by the Windows RC compiler), but contains no further documentation.
#### `HTML` can use a raw data block, too
In the [`RCDATA`](https://learn.microsoft.com/en-us/windows/win32/menurc/rcdata-resource) and [User-defined resource documentation](https://learn.microsoft.com/en-us/windows/win32/menurc/user-defined-resource), it mentions that they can use raw data blocks:
> The data can have any format and can be defined [...] as a series of numbers and strings (if the raw-data block is specified).
The [`HTML` resource documentation](https://learn.microsoft.com/en-us/windows/win32/menurc/html-resource) does not mention raw data blocks, even though it, too, can use them:
```rc
1 HTML { "foo" }
```
#### `GRAYED` and `INACTIVE`
In both the [`MENUITEM`](https://learn.microsoft.com/en-us/windows/win32/menurc/menuitem-statement#optionlist) and [`POPUP`](https://learn.microsoft.com/en-us/windows/win32/menurc/popup-resource#optionlist) documentation:
,
```
Some examples:
```rc
1 VERSIONINFO {
VALUE "numbers", 123, 456
VALUE "strings", "foo", "bar"
}
```
There are also `BLOCK` statements, which themselves can contain `BLOCK`/`VALUE` statements:
```rc
1 VERSIONINFO {
BLOCK "foo" {
VALUE "child", "of", "foo"
BLOCK "bar" {
VALUE "nested", "value"
}
}
}
```
What is not mentioned anywhere that I've seen, though, is that `BLOCK` statements can also have `` after their name parameter like so:
```rc
1 VERSIONINFO {
BLOCK "foo", "bar", "baz" {
// ...
}
}
```
In practice, this capability is almost entirely irrelevant. Even though `VERSIONINFO` allows you to specify any arbitrary tree structure that you'd like, consumers of the `VERSIONINFO` resource expect a [very particular structure](https://learn.microsoft.com/en-us/windows/win32/menurc/versioninfo-resource#examples) with certain `BLOCK` names. In fact, it's understandable that this is left out of the documentation, since the `VERSIONINFO` documentation doesn't document `BLOCK`/`VALUE` statements in general, but rather only [StringFileInfo BLOCK](https://learn.microsoft.com/en-us/windows/win32/menurc/stringfileinfo-block) and [VarFileInfo BLOCK](https://learn.microsoft.com/en-us/windows/win32/menurc/varfileinfo-block), specifically.
#### `resinator`'s behavior
For all of the undocumented things detailed in this section, `resinator` attempts to match the behavior of the Windows RC compiler 1:1 (or, as closely as my current understanding of the Windows RC compiler's behavior allows).
However, there is no warning or error if they *are* used together: ```rc 1 MENU { POPUP "bar", GRAYED, INACTIVE { MENUITEM "foo", 1, GRAYED, INACTIVE } } ``` It's not clear to me why the documentation says that they cannot be used together, and I haven't (yet) put in the effort to investigate if there are any practical consequences of doing so. #### Semicolon comments From the [Comments documentation](https://learn.microsoft.com/en-us/windows/win32/menurc/comments): > RC supports C-style syntax for both single-line comments and block comments. Single-line comments begin with two forward slashes (//) and run to the end of the line. What's not mentioned is that a semicolon (`;`) is treated roughly the same as `//`: ```rc ; this is treated as a comment 1 RCDATA { "foo" } ; this is also treated as a comment ``` There is one difference, though, and that's how each is treated within a resource ID/type. As mentioned in ["*Special tokenization rules for names/IDs*"](#special-tokenization-rules-for-names-ids), resource ID/type tokens are basically only terminated by whitespace. However, `//` within an ID/type is treated as the start of a comment, so this, for example, errors:
Option Description GRAYED [...]. This option cannot be used with the INACTIVE option. INACTIVE [...]. This option cannot be used with the GRAYED option.
```rc style="display: flex; flex-direction: column; justify-content: center; flex-grow: 1; margin-top: 0;"
1 RC//DATA { "foo" }
```
```none style="display: flex; flex-direction: column; flex-grow: 1; justify-content: center; margin-top: 0;"
test.rc(2) : error RC2135 : file not found: RC
```
See "Incomplete resource at EOF" for an explanation of the error
This is not the case for semicolons, though, where the following example compiles into a resource with the type `RC;DATA`: ```rc 1 RC;DATA { "foo" } ``` We can be reasonably sure that the semicolon comment is an intentional feature due to its presence in [a file within Windows-classic-samples](https://github.com/microsoft/Windows-classic-samples/blob/7af17c73750469ed2b5732a49e5cb26cbb716094/Samples/Win7Samples/netds/winsock/ipxchat/IpxChat.Rc): ```rc ; Version stamping information: VS_VERSION_INFO VERSIONINFO ... ; String table STRINGTABLE ... ``` but it is wholly undocumented. #### `BLOCK` statements support values, too As detailed in ["*Mismatch in length units in `VERSIONINFO` nodes*"](#mismatch-in-length-units-in-versioninfo-nodes), `VALUE` statements within `VERSIONINFO` resources are specified like so: ```rc VALUE
parser bug/quirk, miscompilation
### Non-ASCII accelerator characters
The [`ACCELERATORS`](https://learn.microsoft.com/en-us/windows/win32/menurc/accelerators-resource) resource can be used to essentially define hotkeys for a program. In the message loop of a Win32 program, the `TranslateAccelerator` function can be used to automatically turn the relevant keystrokes into `WM_COMMAND` messages with the associated `idvalue` as the parameter (meaning it can be handled like any other message coming from a menu, button, etc).
Simplified example from [Using Keyboard Accelerators](https://learn.microsoft.com/en-us/windows/win32/menurc/using-keyboard-accelerators):
```rc
1 ACCELERATORS {
"B", 300, CONTROL, VIRTKEY
}
```
This associates the key combination `Ctrl + B` with the ID `300` which can then be handled in Win32 message loop processing code like this:
```c
// ...
case WM_COMMAND:
switch (LOWORD(wParam))
{
case 300:
// ...
```
There are also a number of ways to specify the keys for an accelerator, but the relevant form here is specifying "control characters" using a string literal with a `^` character, e.g. `"^B"`.
When specifying a control character using `^` with an ASCII character that is outside of the range of `A-Z` (case insensitive), the Windows RC compiler will give the following error:
However, contrary to what the error implies, many (but not all) non-ASCII characters outside the `A-Z` range are actually accepted. For example, this is *not* an error (when the file is encoded as UTF-8):
```rc
#pragma code_page(65001)
1 ACCELERATORS {
"^Ξ", 300
}
```
When evaluating these `^` strings, the final 'control character' value is determined by subtracting `0x40` from the ASCII uppercased value of the character following the `^`, so in the case of `^b` that would look like:
The same process is used for any allowed codepoints outside the `A-Z` range, but the uppercasing is only done for ASCII values, so in the example above with `Ξ` (the codepoint `U+039E`; Greek Capital Letter Xi), the value is calculated like this:
I believe this is a bogus value, since the final value of a control character is meant to be in the range of `0x01` (`^A`) through `0x1A` (`^Z`), which are treated specially. My assumption is that a value of `0x035E` would just be treated as the Unicode codepoint `U+035E` (Combining Double Macron), but I'm unsure exactly how I would go about testing this assumption since all aspects of the interaction between accelerators and non-ASCII key values are still fully opaque to me.
#### `resinator`'s behavior
In `resinator`, control characters specified as a quoted string with a `^` in an `ACCELERATORS` resource (e.g. `"^C"`) must be in the range of `A-Z` (case insensitive).
```resinatorerror
test.rc:3:3: error: invalid accelerator key '"^Ξ"': ControlCharacterOutOfRange
"^Ξ", 1
^~~~~
```
```rc style="display: flex; flex-direction: column; justify-content: center; flex-grow: 1; margin-top: 0;"
1 ACCELERATORS {
"^!", 300
}
```
```none style="display: flex; flex-direction: column; flex-grow: 1; justify-content: center; margin-top: 0;"
test.rc(2) : error RC2154 : control character out of range [^A - ^Z]
```
```c style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
b (0x62)
```
```c style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
B (0x42)
```
```c style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
0x42 - 0x40 = 0x02
```
character (hex value)
uppercased (hex value)
control character value
```c style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
Ξ (0x039E)
```
```c style="display: flex; flex-grow: 1; justify-content: center; align-items: center; margin: 0;"
0x039E - 0x40 = 0x035E
```
codepoint (hex value)
control character value
fundamental concept
### The entirely undocumented concept of the 'output' code page
As mentioned in ["*The Windows RC compiler 'speaks' UTF-16*"](#the-windows-rc-compiler-speaks-utf-16), there are `#pragma code_page` preprocessor directives that can modify how each line of the input `.rc` file is interpreted. Additionally, the default code page for a file can also be set via the CLI `/c` option, e.g. `/c65001` to set the default code page to UTF-8.
What was not mentioned, however, is that the code page affects both how the input is interpreted *and* how the output is encoded. Take the following example:
```rc
1 RCDATA { "Ó" }
```
When saved as Windows-1252 (the default code page for the Windows RC compiler), the `0xD3` byte in the string will be interpreted as `Ó` and written to the `.res` as its Windows-1252 representation (`0xD3`).
If the same Windows-1252-encoded file is compiled with the default code page set to UTF-8 (`rc.exe /c65001`), then the `0xD3` byte in the `.rc` file will be an invalid UTF-8 byte sequence and get replaced with � during preprocessing, and because the code page is UTF-8, the *output* in the `.res` file will also be encoded as UTF-8, so the bytes `0xEF 0xBF 0xBD` (the UTF-8 sequence for �) will be written.
This is all pretty reasonable, but things start to get truly bizarre when you add `#pragma code_page` into the mix:
```rc
#pragma code_page(1252)
1 RCDATA { "Ó" }
```
When saved as Windows-1252 and compiled with Windows-1252 as the default code page, this will work the same as described above. However, if we compile the same Windows-1252-encoded `.rc` file with the default code page set to UTF-8 (`rc.exe /c65001`), we see something rather strange:
- The input `0xD3` byte is interpreted as `Ó`, as expected since the `#pragma code_page` changed the code page to 1252
- The output in the `.res` is `0xC3 0x93`, the UTF-8 sequence for `Ó` (instead of the expected `0xD3` which is the Windows-1252 encoding of `Ó`)
That is, the `#pragma code_page` changed the *input* code page, but there is a distinct *output* code page that can be out-of-sync with the input code page. In this instance, the input code page for the `1 RCDATA ...` line is Windows-1252, but the output code page is still the default set from the CLI option (in this case, UTF-8).
Even more bizarrely, this disjointedness can *only* occur when a `#pragma code_page` is the first 'thing' in the file:
```rc
// For example, a comment before the #pragma code_page avoids the input/output code page desync
#pragma code_page(1252)
1 RCDATA { "Ó" }
```
With this, still saved as Windows-1252, the code page from the CLI option no longer matters—even when compiled with `/c65001`, the `0xD3` in the file is both interpreted as Windows-1252 (`Ó`) *and* outputted as Windows-1252 (`0xD3`).
I used the nebulous term 'thing' because the rules for what stops the disjoint code page phenomenon is equally nebulous. Here's what I currently know can come before the first `#pragma code_page` while still causing the input/output code page desync:
- Any whitespace
- A non-`code_page` pragma directive (e.g. `#pragma foo`)
- An `#include` that includes a file with a `.h` or `.c` extension ([the contents of those files are ignored after preprocessing](https://learn.microsoft.com/en-us/windows/win32/menurc/preprocessor-directives))
- A `code_page` pragma with an invalid code page, but only if the `/w` CLI option is set which turns invalid code page pragmas into warnings instead of errors
I have a feeling this list is incomplete, though, as I only recently figured out that it's not an inherent bug/quirk of the first `#pragma code_page` in the file. Here's a file containing all of the above elements:
```rc
#include "empty.h"
#pragma code_page(123456789)
#pragma foo
#pragma code_page(1252)
1 RCDATA { "Ó" }
```
When compiled with `rc.exe /c65001 /w`, the above still exhibits the input/output code page desync (i.e. the `Ó` is interpreted as Windows-1252 but compiled into UTF-8).
So, to summarize, this is how things seem to work:
- The CLI `/c` option sets both the input and output code pages
- If the first `#pragma code_page` in the file is also the first 'thing' in the file, then it *only* sets the input code page, and does not modify the output code page
- Any other `#pragma code_page` directives set *both* the input and output code pages
This behavior is baffling and I've not seen it mentioned anywhere on the internet at any point in time. Even the concept of the code page affecting the encoding of the output is fully undocumented as far as I can tell.
#### `resinator`'s behavior
`resinator` emulates the behavior of the Windows RC compiler, but emits a warning:
```resinatorerror
test.rc:1:1: warning: #pragma code_page as the first thing in the .rc script can cause the input and output code pages to become out-of-sync
#pragma code_page ( 1252 )
^~~~~~~~~~~~~~~~~~~~~~~~~~
test.rc:1:1: note: this line originated from line 1 of file 'test.rc'
#pragma code_page(1252)
test.rc:1:1: note: to avoid unexpected behavior, add a comment (or anything else) above the #pragma code_page line
```
It's possible that `resinator` will not emulate the input/output code page desync in the future, but still emit a warning about the Windows RC compiler behavior when the situation is detected.
preprocessor bug/quirk
### That's not whitespace, *this* is whitespace
As touched on in ["*The collapse of whitespace is imminent*"](#the-collapse-of-whitespace-is-imminent), the preprocessor trims whitespace. What wasn't mentioned explicitly, though, is that this whitespace trimming happens for every line in the file (and it only trims leading whitespace). So, for example, if you run this simple example through the preprocessor:
```rc
1 RCDATA {
"this was indented"
}
```
it becomes this after preprocessing:
```rc
1 RCDATA {
"this was indented"
}
```
Additionally, as briefly mentioned in ["*Special tokenization rules for names/IDs*"](#special-tokenization-rules-for-names-ids), the Windows RC compiler treats any ASCII character from `0x05` to `0x20` (inclusive) as whitespace for the purpose of tokenization. However, it turns out that this is *not* the set of characters that the *preprocessor* treats as whitespace.
To determine what the preprocessor considers to be whitespace, we can take advantage of its whitespace collapsing behavior. For example, if we run the following script through the preprocessor, we will see that it does not get collapsed, so therefore we know the preprocessor does not consider
<0x05> to be whitespace:
1 RCDATA {
<0x05> "this was indented"
}
- U+0009 Horizontal Tab (
\t) - U+000A Line Feed (
\n) - U+000B Vertical Tab
- U+000C Form Feed
- U+000D Carriage Return (
\r) - U+0020 Space
- U+00A0 No-Break Space
- U+1680 Ogham Space Mark
- U+180E Mongolian Vowel Separator
- U+2000 En Quad
- U+2001 Em Quad
- U+2002 En Space
- U+2003 Em Space
- U+2004 Three-Per-Em Space
- U+2005 Four-Per-Em Space
- U+2006 Six-Per-Em Space
- U+2007 Figure Space
- U+2008 Punctuation Space
- U+2009 Thin Space
- U+200A Hair Space
- U+2028 Line Separator
- U+2029 Paragraph Separator
- U+202F Narrow No-Break Space
- U+205F Medium Mathematical Space
- U+3000 Ideographic Space
<U+00A0><U+1680><U+180E>
#pragma code_page(1252)
1 RCDATA { "Ó" }
parser bug/quirk, utterly baffling
### String literals that are forced to be 'wide'
There are two types of string literals in `.rc` files. For lack of better terminology, I'm going to call them normal (`"foo"`) and wide (`L"foo"`, note the `L` prefix). In the context of raw data blocks, this difference is meaningful with regards to the compiled result, since normal string literals are encoded using the current output code page (see ["*The entirely undocumented concept of the 'output' code page*"](#the-entirely-undocumented-concept-of-the-output-code-page)), while wide string literals are encoded as UTF-16:
1 RCDATA {
"foo", ────► 66 6F 6F foo
L"foo" ────► 66 00 6F 00 6F 00 f.o.o.
}
STRINGTABLE {
1 "foo" ────► 66 00 6F 00 6F 00 f.o.o.
2 L"foo" ────► 66 00 6F 00 6F 00 f.o.o.
}
1 RCDATA {
"\x80", ────► 80
L"\x80" ────► 80 00
}
STRINGTABLE {
1 L"\x80" ────► 80 00
}STRINGTABLE {
1 "\x80" ────► AC 20
}STRINGTABLE {
1 "\x80" ────► FD FF
}<0xFF>. If we do so, this is the result:
1 RCDATA {
"<0xFF>", ────► EF BF BD
L"<0xFF>" ────► FD FF
}Compiled using the UTF-8 code page via rc.exe /c65001
STRINGTABLE {
1 "\xE2\x82\xAC" ────► FD FF FD FF FD FF
2 "\xE2<0x82><0xAC>" ────► FD FF FD FF FD FF
}E2 82 AC is the UTF-8 encoding of € (U+20AC)
STRINGTABLE {
1 "\x80" ────► 0x80 ─► € ─► AC 20
2 "\200" ────► 0x80 ─► € ─► AC 20
3 "\600" ────► 0x180 ─► 0x80 ─► € ─► AC 20
}Compiled using the Windows-1252 code page, so 0x80 is re-interpreted as € (U+20AC)
utterly baffling, miscompilation
### Codepoint misbehavior/miscompilation
There are a few different ASCII control characters/Unicode codepoints that cause strange behavior in the Windows RC compiler if they are put certain places in a `.rc` file. Each case is sufficiently different that they might warrant their own section, but I'm just going to lump them together into one section here.
#### U+0000 Null
The Windows RC compiler behaves very strangely when embedded `NUL` (`<0x00>`) characters are in a `.rc` file. Some examples with regards to string literals:
Even stranger is that the character count of the file seems to matter in some fashion for these examples. The first example has an odd character count, so it errors, but add one more character (or any odd number of characters; doesn't matter what/where they are, can even be whitespace) and it will not error. The second example has an even character count, so adding another character (again, anywhere) would induce the `unexpected end of file in string literal` error.
#### U+0004 End of Transmission
The Windows RC compiler seemingly treats 'End of Transmission' (`<0x04>`) characters outside of string literals as a 'skip the next character' instruction when parsing. This means that:
while
#### U+007F Delete
The Windows RC compiler seemingly treats 'Delete' (`<0x7F>`) characters as a terminator in some capacity. A few examples:
#### U+001A Substitute
The Windows RC compiler treats 'Substitute' (`<0x1A>`) characters as an 'end of file' marker:
but use of the `<0x1A>` character can also lead to a (presumed) infinite loop in certain scenarios, like this one:
The expected result is the resource's data to contain the UTF-8 encoding of each codepoint, one after another, but that is not at all what we get:
`, and `<0x0A>` is `\n`. My guess as to what's going on here is that there's some whitespace detection code going seriously haywire, in combination with some sort of endianness heuristic. If we run the example through the preprocessor only (`rc.exe /p /c65001 test.rc`), we can see that things have already gone wrong (note: I've emphasized some whitespace characters):
`)
For `U+0A0D` and `U+0D00`, we need another piece of information: carriage returns (`<0x0D>`, `\r`) are completely ignored by the preprocessor (i.e.
As detailed in ["*The column of a tab character matters*"](#the-column-of-a-tab-character-matters), an embedded tab character gets converted to a variable number of spaces depending on which column it's at in the file. It just so happens that it gets converted to 4 spaces in this case, and the remaining ` is an embedded tab character, it gets compiled into `<0x09>` rather than converted to space characters.
- Normally, an undocumented-but-accepted multiline string literal has its whitespace collapsed, but even though the Windows RC compiler seems to *think* `` and `` are new lines and `` is a space, it doesn't collapse them.
So, to summarize, these codepoints likely confuse the Windows RC compiler into thinking they are whitespace, and the compiler treats them as the whitespace character in some ways, but introduces novel behavior for those characters in other ways. In any case, this is a miscompilation, because these codepoints have no *real* relationship to the whitespace characters the Windows RC compiler mistakes them for.
#### U+FEFF Byte Order Mark
For the most part, the Windows RC compiler skips over `` ([byte-order mark or BOM](https://codepoints.net/U+FEFF)) everywhere, even within string literals, within names, etc. (e.g. `RCDATA` will compile as if it were `RCDATA`). However, there are edge cases where a BOM will cause cryptic and unexplained errors, like this:
#### U+E000 Private Use Character
This behaves similarly to the byte-order mark (it gets skipped/ignored wherever it is), although `` seems to avoid causing errors like the BOM does.
#### U+FFFE, U+FFFF Noncharacter
The behavior of these codepoints on their own is strange, but it's not the most interesting part about them, so it's up to you if you want to expand this:
The *interesting* part about `U+FFFE` and `U+FFFF` is that their presence affects how *every non-ASCII codepoint in the file* is interpreted/compiled. That is, if either one appears anywhere in a file, it affects the interpretation of the entire file. Let's start with this example and try to understand what might be happening with the `䄀` characters in the `RCD䄀T䄀` resource type:
If we run this through the preprocessor only (`rc /c65001 /p test.rc`), then it ends up as:
```rc
1 RCDATA { "��" }
```
The interpretation of the `` codepoint itself is the same as described above, but we can also see that the following transformation is occurring for the `䄀` codepoint:
In many cases, the endianness of the encoding can be inferred, but in order to make it unambiguous, a [byte-order mark](https://en.wikipedia.org/wiki/Byte_order_mark) (BOM) can be included (usually at the start of a file). The codepoint of the BOM is [`U+FEFF`](https://codepoints.net/U+FEFF), so that's either encoded as `FF FE` for little-endian or `FE FF` for big-endian.
With this in mind, consider how one might handle a big-endian UTF-16 byte-order mark in a file when starting with the assumption that the file is little-endian.
So, starting with the assumption that a file is little-endian, treating the decoded codepoint `` as a trigger for switching to interpreting the file as big-endian can make sense. However, it *only* makes sense when you are working with an encoding where endianness matters (e.g. UTF-16 or UTF-32). It appears, though, that the Windows RC compiler is using this *"``? Oh, the file is big-endian and I should byteswap every codepoint"* heuristic even when it's dealing with UTF-8, which doesn't make any sense—endianness is irrelevant for UTF-8, since its code units are a single byte.
As mentioned in [`U+0900`, `U+0A00`, etc](#u-0900-u-0a00-u-0a0d-u-0d00-u-2000), this endianness handling is likely happening in the wrong phase of the compiler pipeline; it's acting on already-decoded codepoints rather than affecting how the bytes of the file are decoded.
If I had to guess as to what's going on here, it would be something like:
- The preprocessor decodes all codepoints, and internally assumes little-endian in some fashion
- If the preprocessor ever encounters the decoded codepoint ``, it assumes it must be a byteswapped byte-order mark, indicating that the file is encoded as big-endian, and sets some internal 'big-endian' flag
- When writing the result after preprocessing, that 'big-endian' flag is used to determine whether or not to byteswap every codepoint in the file before writing it (except ASCII codepoints for some reason)
This would explain the behavior with `䄀` we saw earlier, where this `.rc` file:
`:
1 RCDATA { "a<0x00>" }will error with
unexpected end of file in string literal1 RCDATA { "<0x00>" }"succeeds" but results in an empty
.res file (no RCDATA resource)1 RCDATA<0x04>! { "foo" }gets treated as if it were:
```rc
1 RCDATA { "foo" }
```
1 RCDATA<0x04>!?! { "foo" }gets treated as if it were:
1 RCDATA?! { "foo" }1 RC<0x7F>DATA {}gets parsed as
1 RC DATA {}, leading to the compile error file not found: DATA<0x7F>1 RCDATA {}"succeeds" but results in an empty
.res file (no RCDATA resource)1 RCDATA { "<0x7F>" }fails with
unexpected end of file in string literal1 RCDATA {}
<0x1A>
2 RCDATA {}Only the
1 RCDATA {} resource makes it into the .res, everything after the <0x1A> is ignored1 MENUEX FIXED<0x1A>VERSION1 RCDATA { ऀഀ " }
Encoded as UTF-8 and compiled with
rc /c65001 test.rc, meaning both the input and output code pages are UTF-8 (see "The entirely undocumented concept of the 'output' code page")Expected bytes: E0 A4 80 E0 A8 80 E0 A8 8D E0 B4 80 E2 80 80
Actual bytes: 09 20 0A 20 0A 20<U+0900> ────► 09
<U+0A00> ────► 20 0A
<U+0A0D> ────► 20 0A
<U+0D00> ────► <omitted entirely>
<U+2000> ────► 20#line 1 "test.rc"
1 RCDATA { "────
·" }
RC<0x0D>DATA gets interpreted as `RCDATA`). With this in mind:
- `U+0A0D`, ignoring the `0D` part, could be confused for a byteswapped `<0x0A>` (`\n`)
- `U+0D00` could be confused for a byteswapped `<0x0D>` (`\r`), and therefore is ignored
Now that we have a theory about what might be going wrong in the preprocessor, we can examine the preprocessed version of the example:
#line 1 "test.rc"
1 RCDATA { "────
·" }
20 0A sequence. In fact, if we take the output of the preprocessor and copy it into a new file and compile *that*, we get a completely different result that's more in line with what we expect:
```rc style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0; justify-content: center;"
1 RCDATA { "
" }
```
Compiled data: 20 20 20 20 20 0A20 0A is the collapsed whitespace following the tab character.
However, what we actually see when compiling the `1 RCDATA { "ऀഀ " }` example is:
09 20 0A 20 0A 20<U+0900> ────► 09
<U+0A00> ────► 20 0A
<U+0A0D> ────► 20 0A
<U+0D00> ────► <omitted entirely>
<U+2000> ────► 20#pragma code_page(65001)
1 RCDATA { 1<U+FEFF>1 }
```none style="display: flex; flex-direction: column; flex-grow: 1; margin-top: 0; justify-content: center;"
test.rc(2) : fatal error RC1011: compiler limit : '1 }
': macro definition too big
```
Behavior of U+FFFE and U+FFFF on their own
1 RCDATA { "<U+FFFE>" }Encoded as UTF-8 and compiled with
rc /c65001 test.rc, meaning both the input and output code pages are UTF-8 (see "The entirely undocumented concept of the 'output' code page")Expected bytes: EF BF BE
Actual bytes: EF BF BD EF BF BD (UTF-8 encoding of �, twice)1 RCDATA { L"<U+FFFE>" }Encoded as UTF-8 and compiled with
rc /c65001 test.rc, meaning both the input and output code pages are UTF-8 (see "The entirely undocumented concept of the 'output' code page")Expected bytes: FE FF
Actual bytes: FD FF FD FF (UTF-16 LE encoding of �, twice)#pragma code_page(65001)
1 RCDATA { "<U+FFFE>" }Encoded as UTF-8 and compiled with
rc test.rc, meaning the input code page is UTF-8, but the output code page is Windows-1252 (see "The entirely undocumented concept of the 'output' code page")Expected bytes: 3F
Actual bytes: FE FF#pragma code_page(65001)
1 RCDATA { L"<U+FFFE>" }Encoded as UTF-8 and compiled with
rc test.rc, meaning the input code page is UTF-8, but the output code page is Windows-1252 (see "The entirely undocumented concept of the 'output' code page")Expected bytes: FE FF
Actual bytes: FE 00 FF 001 RCD䄀T䄀 { "<U+FFFE>" }Encoded as UTF-8 and compiled with
rc /c65001 test.rc, meaning both the input and output code pages are UTF-8 (see "The entirely undocumented concept of the 'output' code page")<U+4100> (䄀) ────► <U+0041> (A)Codepoints:
<U+0041> <U+ABCD> <U+4100>Little-Endian UTF-16:
41 00 CD AB 00 41Big-Endian UTF-16:
00 41 AB CD 41 00Big-endian UTF-16 encoded byte-order mark:
FE FFDecoded codepoint, assuming little-endian:
<U+FFFE>1 RCD䄀T䄀 { "<U+FFFE>" }<U+4100> (䄀) ────► <U+0041> (A)test.rc:1:12: warning: codepoint U+0900 within a string literal would be miscompiled by the Win32 RC compiler (it would get treated as U+0009)
1 RCDATA { "ऀഀ " }
^~~~~~~
test.rc:1:12: warning: codepoint U+FFFF within a string literal would cause the entire file to be miscompiled by the Win32 RC compiler
1 RCDATA { "" }
^~~
test.rc:1:12: note: the presence of this codepoint causes all non-ASCII codepoints to be byteswapped by the Win32 RC preprocessor
preprocessor bug/quirk
### The sad state of the lonely forward slash
If a line consists of nothing but a `/` character, then the `/` is ignored entirely (note: the line can have any amount of whitespace preceding the `/`, but nothing after the `/`). The following example compiles just fine:
```rc
/
1 RCDATA {
/
/
}
/
```
and is effectively equivalent to
```rc
1 RCDATA {}
```
This seems to be a bug/quirk of the preprocessor of `rc.exe`; if we use `rc.exe /p` to only run the preprocessor, we see this output:
```rc
1 RCDATA {
}
```
It is very like that this is a bug/quirk in the code responsible for parsing and removing comments. In fact, it's pretty easy to understand how such a bug could come about if we think about a state machine that parses and removes comments. In such a state machine, once you see a `/` character, there are three relevant possibilities:
- It is not part of a comment, in which case it should be emitted
- It is the start of a line comment (`//`)
- It is the start of a multiline comment (`/*`)
So, for a parser that removes comments, it makes sense to hold off on emitting the `/` until we determine whether or not it's part of a comment. My guess is that the in-between state is not being handled fully correctly, and so instead of emitting the `/` when it is followed immediately by a line break, it is accidentally being treated as if it is part of a comment.
#### `resinator`'s behavior
`resinator` does not currently attempt to emulate the behavior of the Windows RC compiler, so `/` is treated as any other character would be and the file is parsed accordingly. In the case of the above example, it ends up erroring with:
```resinatorerror
test.rc:6:2: error: expected quoted string literal or unquoted literal; got ''
/
^
```
What `resinator` *should* do in this instance [is an open question](https://github.com/squeek502/resinator/issues/14).
## Conclusion
Well, that's all I've got. There's a few things I left out due to them being too insignificant, or because I have forgotten about some weird behavior I added support for at some point, or because I'm not (yet) aware of some bugs/quirks of the Windows RC compiler. If you got this far, thanks for reading. Like [`resinator`](https://github.com/squeek502/resinator) itself, this ended up taking a lot more effort than I initially anticipated.
If there's anything to take away from this article, I hope it'd be something about the usefulness of fuzzing (or adjacent techniques) in exposing obscure bugs/behaviors. If you have written software that lends itself to fuzz testing in any way, I highly encourage you to consider trying it out. On `resinator`'s end, there's still a lot left to explore in terms of fuzz testing. I'm not fully happy with my current approach, and there are aspects of `resinator` that I know are not being properly fuzz tested yet.
I've just [released an initial version of `resinator` as a standalone program](https://github.com/squeek502/resinator/releases) if you'd like to try it out. If you're a Zig user, see [this post](https://www.ryanliptak.com/blog/zig-is-a-windows-resource-compiler/) for details on how to use the version of `resinator` included in the Zig compiler. My next steps will be [adding support for converting `.res` files to COFF object files](https://github.com/squeek502/resinator/issues/7) in order for Zig to be able to [use its self-hosted linker for Windows resources](https://github.com/ziglang/zig/issues/17751). As always, I'm expecting this COFF object file stuff to be pretty straightforward to implement, but the precedence is definitely not in my favor for that assumption holding.