From: Dennis Bliefernicht <itsme.nospam@triphoenix.de>
To: linux-kernel@vger.kernel.org
Subject: Re: Style question: Should one check for NULL pointers?
Date: Thu, 10 Jul 2003 23:00:45 +0200 [thread overview]
Message-ID: <3F0DD3FD.3030403@triphoenix.de> (raw)
In-Reply-To: <7QmZ.5RP.17@gated-at.bofh.it>
Alan Stern wrote:
> On the other hand, what if on rare occasions the pointer actually is NULL,
> even though it's not supposed to be? This can only be the result of an
> error somewhere else in the kernel (such as incorrect locking during a
> data structure update). Detecting the NULL pointer and returning an error
> code will hide the existence of the true underlying error. But if the
> check _isn't_ made, then as soon as the pointer is derefenced there will
> be a nice big segfault. This will immediately alert people to the
> existence of a problem, something they otherwise might not be aware of at
> all.
The problem is IMHO code where some pretty fragile things are handled,
especially file systems. I'd say: DO the paranoia checks if some fragile
things are involved like key structures of the file system that can take
_permanent_ damage. If you check for a NULL pointer you still have the
chance to properly leave the system in a consistent state and no user
will be happy if his filesystem goes messy just because someone saved a
check to have nicer code, even if the original of the NULL pointer
wasn't his fault, even if it's a developing version. So if the check
isn't a total performace disaster, do it whenever permanent damage could
occur.
On other sections where, let's say just a user memory allocation would
crash, checks could be ommitted, because it isn't that fatal and leaves
no permanent destruction.
Just my opinion :)
TriPhoenix
next parent reply other threads:[~2003-07-10 20:49 UTC|newest]
Thread overview: 22+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <7QmZ.5RP.17@gated-at.bofh.it>
2003-07-10 21:00 ` Dennis Bliefernicht [this message]
2003-07-10 22:13 ` Style question: Should one check for NULL pointers? H. Peter Anvin
2003-07-10 22:28 ` Larry McVoy
2003-07-10 20:28 Alan Stern
2003-07-10 20:52 ` Eli Carter
2003-07-10 22:12 ` H. Peter Anvin
2003-07-11 2:35 ` Alan Stern
2003-07-11 14:29 ` Eli Carter
2003-07-11 15:16 ` Alan Stern
2003-07-12 18:40 ` Horst von Brand
2003-07-13 21:42 ` Alan Stern
2003-07-11 20:33 ` H. Peter Anvin
2003-07-10 22:54 ` David D. Hagood
2003-07-11 4:02 ` Hollis Blanchard
2003-07-11 4:38 ` Hua Zhong
2003-07-11 14:13 ` David D. Hagood
2003-07-11 14:52 ` Richard B. Johnson
2003-07-11 15:39 ` Alan Stern
2003-07-11 19:32 ` Horst von Brand
2003-07-11 20:36 ` H. Peter Anvin
2003-07-11 21:21 ` Alan Stern
2003-07-13 22:53 ` Ingo Oeser
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=3F0DD3FD.3030403@triphoenix.de \
--to=itsme.nospam@triphoenix.de \
--cc=linux-kernel@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox