| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 9 Jan 2013 09:44:16 -0500 (EST) From: Nicolas Pitre <nicolas.pitre@...aro.org> To: Russell King - ARM Linux <linux@....linux.org.uk> cc: Arnd Bergmann <arnd@...db.de>, linux-arch@...r.kernel.org, Linus Walleij <linus.walleij@...aro.org>, Linux Kernel Mailing List <linux-kernel@...r.kernel.org>, Grant Likely <grant.likely@...retlab.ca>, Alexandre Courbot <acourbot@...dia.com>, Guenter Roeck <linux@...ck-us.net>, "devicetree-discuss@...ts.ozlabs.org" <devicetree-discuss@...ts.ozlabs.org>, "linux-arm-kernel@...ts.infradead.org" <linux-arm-kernel@...ts.infradead.org> Subject: Re: [PATCH 1/4] gpiolib: introduce descriptor-based GPIO interface On Wed, 9 Jan 2013, Russell King - ARM Linux wrote: > On Wed, Jan 09, 2013 at 10:44:14AM +0000, Russell King - ARM Linux wrote: > > On Wed, Jan 09, 2013 at 10:35:22AM +0000, Arnd Bergmann wrote: > > > On Wednesday 09 January 2013, Alexandre Courbot wrote: > > > > On Tue, Jan 8, 2013 at 9:59 PM, Arnd Bergmann <arnd@...db.de> wrote: > > > > > Please avoid the use of IS_ERR_OR_NULL(), especially on interfaces you > > > > > introduce yourself. AFAICT, gpiod_get cannot return NULL, so you > > > > > should not check for that. > > > > > > > > Sure - you sound like IS_ERR_OR_NULL() is generally considered evil, > > > > > > Correct. > > > > > > > may I ask why this is the case? > > > > > > It's very hard to get right: either you are interested in the error code, > > > and then you don't have one in some cases, or you don't care but have > > > to check for it anyway. When you define a function, just make it clear > > > what the expected return values are, either NULL for error or a negative > > > ERR_PTR value, but not both. > > > > Indeed, and any code which does this: > > > > if (IS_ERR_OR_NULL(ptr)) > > return PTR_ERR(ptr); > > > > is buggy because on NULL it returns 0, which is generally accepted as being > > "success". > [ examples of broken code skipped ] > These are just a few of the issues I've picked out at random from grepping > the kernel source for IS_ERR_OR_NULL(). Yes, there's some valid use cases > but the above are all horrid, buggy or down right wrong, and I wouldn't be > at all surprised if that was all too common. I do agree with Russell here. Despite the original intentions behind IS_ERR_OR_NULL() which were certainly legitimate, the end result in practice is less reliable code with increased maintenance costs. Unlike other convenience macros in the kernel, this one is giving a false sense of correctness with too many people falling in the trap of using it just because it is available. I strongly think this macro should simply be removed from the source tree entirely and the code reverted to explicit tests against NULL when appropriate. Nicolas -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists