Re: [PATCH] gfs2: fix 'passing zero to ERR_PTR()' warning

From: drv
Date: Fri Sep 29 2023 - 03:39:37 EST

Next message: Wolfram Sang: "Re: [PATCH v2] i2c: aspeed: Fix i2c bus hang in slave read"
Previous message: Geert Uytterhoeven: "Re: [PATCH/RFC 3/3] drm: Split drm_modeset_helper_vtables.h"
In reply to: Dan Carpenter: "Re: [PATCH] gfs2: fix 'passing zero to ERR_PTR()' warning"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 2023-09-29 at 10:06 +0300, Dan Carpenter wrote:
> On Thu, Sep 28, 2023 at 11:37:42PM +0530, Deepak R Varma wrote:
> > Resolve the following Smatch static checker warning:
> >         fs/gfs2/acl.c:54 __gfs2_get_acl() warn: passing zero to
> > 'ERR_PTR'
> >
> > by returning NULL when an extended attribute length is zero,
> > instead of
> > passing on zero to the ERR_PTR().
> >
> > Signed-off-by: Deepak R Varma <drv@xxxxxxxxx>
> > ---
>
> Passing zero to ERR_PTR() is not a bug.
>
> You're patch doesn't change how the code works at all, right? So
> it's
> like a cleanup patch. But the code was nicer in the original.
>
> This is just a false positive. Ignore static checker false
> positives.
> Fix the checker instead. Although in this case, I can't think of an
> easy way fix the checker. Perhaps don't print a warning if the
> callers
> check for NULL?
>
> The passing zero to ERR_PTR() warning is actually a pretty good
> heuristic. 90% of the time in new code this is a real bug. But in
> old
> code then probably it's 0% real bugs because we've been reviewing
> these
> warnings for over a decade.
>
> I have a blog which might be useful.
> https://staticthinking.wordpress.com/2022/08/01/mixing-error-pointers-and-null/
>
> When I'm reviewing this patch I think:
> 1) Does gfs2_xattr_acl_get() return zero? And it does.
> 2) Does that look intentional. It's harder to tell because there
> aren't
>    comments and it looks like it might be a missing error code. But
>    when you read it closely then actually it does look intentional.
>    In terms of Smatch, I consider it "intentional" if there is an
>    "error = 0;" within 5 lines for the goto. (Other languages like
> Rust
>    are better than C because they force everyone to follow the rules.
>    #trolling).
> 3) Do the callers of __gfs2_get_acl() check for NULL and they do.
>
> So this code is fine.
>
> I hope this helps you in your review process. 1) Ignore old
> warnings.
> 2) Ignore false positives. 3) If you think it is a bug, then try
> to
> figure out how it will cause a crash. Look at the caller etc.
>
Hi Dan,
Thank you for the review, feedback and guidance. This is really
helpful.

regards,
deepak.

> regards,
> dan carpenter
>

Next message: Wolfram Sang: "Re: [PATCH v2] i2c: aspeed: Fix i2c bus hang in slave read"
Previous message: Geert Uytterhoeven: "Re: [PATCH/RFC 3/3] drm: Split drm_modeset_helper_vtables.h"
In reply to: Dan Carpenter: "Re: [PATCH] gfs2: fix 'passing zero to ERR_PTR()' warning"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]