From: Dennis Bliefernicht <itsme.nospam@triphoenix.de>
To: linux-kernel@vger.kernel.org
Subject: Re: Style question: Should one check for NULL pointers?
Date: Thu, 10 Jul 2003 23:00:45 +0200 [thread overview]
Message-ID: <3F0DD3FD.3030403@triphoenix.de> (raw)
In-Reply-To: <7QmZ.5RP.17@gated-at.bofh.it>
Alan Stern wrote:
> On the other hand, what if on rare occasions the pointer actually is NULL,
> even though it's not supposed to be? This can only be the result of an
> error somewhere else in the kernel (such as incorrect locking during a
> data structure update). Detecting the NULL pointer and returning an error
> code will hide the existence of the true underlying error. But if the
> check _isn't_ made, then as soon as the pointer is derefenced there will
> be a nice big segfault. This will immediately alert people to the
> existence of a problem, something they otherwise might not be aware of at
> all.
The problem is IMHO code where some pretty fragile things are handled,
especially file systems. I'd say: DO the paranoia checks if some fragile
things are involved like key structures of the file system that can take
_permanent_ damage. If you check for a NULL pointer you still have the
chance to properly leave the system in a consistent state and no user
will be happy if his filesystem goes messy just because someone saved a
check to have nicer code, even if the original of the NULL pointer
wasn't his fault, even if it's a developing version. So if the check
isn't a total performace disaster, do it whenever permanent damage could
occur.
On other sections where, let's say just a user memory allocation would
crash, checks could be ommitted, because it isn't that fatal and leaves
no permanent destruction.
Just my opinion :)
TriPhoenix
next parent reply other threads:[~2003-07-10 20:49 UTC|newest]
Thread overview: 22+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <7QmZ.5RP.17@gated-at.bofh.it>
2003-07-10 21:00 ` Dennis Bliefernicht [this message]
2003-07-10 22:13 ` Style question: Should one check for NULL pointers? H. Peter Anvin
2003-07-10 22:28 ` Larry McVoy
2003-07-10 20:28 Alan Stern
2003-07-10 20:52 ` Eli Carter
2003-07-10 22:12 ` H. Peter Anvin
2003-07-11 2:35 ` Alan Stern
2003-07-11 14:29 ` Eli Carter
2003-07-11 15:16 ` Alan Stern
2003-07-12 18:40 ` Horst von Brand
2003-07-13 21:42 ` Alan Stern
2003-07-11 20:33 ` H. Peter Anvin
2003-07-10 22:54 ` David D. Hagood
2003-07-11 4:02 ` Hollis Blanchard
2003-07-11 4:38 ` Hua Zhong
2003-07-11 14:13 ` David D. Hagood
2003-07-11 14:52 ` Richard B. Johnson
2003-07-11 15:39 ` Alan Stern
2003-07-11 19:32 ` Horst von Brand
2003-07-11 20:36 ` H. Peter Anvin
2003-07-11 21:21 ` Alan Stern
2003-07-13 22:53 ` Ingo Oeser
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=3F0DD3FD.3030403@triphoenix.de \
--to=itsme.nospam@triphoenix.de \
--cc=linux-kernel@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.