[03/14] tree-diff: clear parent array in path_appendnew()

Message ID	20250109083310.GC2748836@coredump.intra.peff.net (mailing list archive)
State	New
Headers	show Received: from cloud.peff.net (cloud.peff.net [104.130.231.41]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 491E71FDA for <git@vger.kernel.org>; Thu, 9 Jan 2025 08:33:12 +0000 (UTC) Date: Thu, 9 Jan 2025 03:33:10 -0500 From: Jeff King <peff@peff.net> To: Git List <git@vger.kernel.org> Cc: Junio C Hamano <gitster@pobox.com>, Wink Saville <wink@saville.com> Subject: [PATCH 03/14] tree-diff: clear parent array in path_appendnew() Message-ID: <20250109083310.GC2748836@coredump.intra.peff.net> References: <20250109082723.GA2748497@coredump.intra.peff.net> Precedence: bulk MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: <20250109082723.GA2748497@coredump.intra.peff.net>
Series	combine-diff cleanups \| expand [0/14] combine-diff cleanups [01/14] run_diff_files(): delay allocation of combine_diff_path [02/14] combine-diff: add combine_diff_path_new() [03/14] tree-diff: clear parent array in path_appendnew() [04/14] combine-diff: use pointer for parent paths [05/14] diff: add a comment about combine_diff_path.parent.path [06/14] run_diff_files(): de-mystify the size of combine_diff_path struct [07/14] tree-diff: drop path_appendnew() alloc optimization [08/14] tree-diff: pass whole path string to path_appendnew() [09/14] tree-diff: inline path_appendnew() [10/14] combine-diff: drop public declaration of combine_diff_path_size() [11/14] tree-diff: drop list-tail argument to diff_tree_paths() [12/14] tree-diff: use the name "tail" to refer to list tail [13/14] tree-diff: simplify emit_path() list management [14/14] tree-diff: make list tail-passing more explicit

Message ID

20250109083310.GC2748836@coredump.intra.peff.net (mailing list archive)

State

New

Headers

Date: Thu, 9 Jan 2025 03:33:10 -0500
From: Jeff King <peff@peff.net>
To: Git List <git@vger.kernel.org>
Cc: Junio C Hamano <gitster@pobox.com>, Wink Saville <wink@saville.com>
Subject: [PATCH 03/14] tree-diff: clear parent array in path_appendnew()
Message-ID: <20250109083310.GC2748836@coredump.intra.peff.net>
References: <20250109082723.GA2748497@coredump.intra.peff.net>
Precedence: bulk
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
In-Reply-To: <20250109082723.GA2748497@coredump.intra.peff.net>

Series

combine-diff cleanups | expand

Commit Message

Jeff King Jan. 9, 2025, 8:33 a.m. UTC

All of the other functions which allocate a combine_diff_path struct
zero out the parent array, but this code path does not. There's no bug,
since our caller will fill in most of the fields. But leaving the unused
fields (like combine_diff_parent.path) uninitialized makes working with
the struct more error-prone than it needs to be.

Let's just zero the parent field to be consistent with the
combine_diff_path_new() allocator.

Signed-off-by: Jeff King <peff@peff.net>
---
 tree-diff.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

Comments

Junio C Hamano Jan. 9, 2025, 6:28 p.m. UTC | #1

Jeff King <peff@peff.net> writes:

> All of the other functions which allocate a combine_diff_path struct
> zero out the parent array, but this code path does not. There's no bug,
> since our caller will fill in most of the fields. But leaving the unused
> fields (like combine_diff_parent.path) uninitialized makes working with
> the struct more error-prone than it needs to be.

OK.  We however will still not use the array at all when we do not
need it, so it would be between accessing uninitialized bytes vs
accessing 0-bytes by mistake?  With my devil's advocate hat on, I
wonder if this would lead to more sloppy users saying "I am not
following the pointer; I am merely stopping when I see a NULL
pointer at the end of the array" or something silly like that
without checking the validity of the array itself (which presumably
can be inferred by inspecting some other member in the containing
struct, right?)".

> Let's just zero the parent field to be consistent with the
> combine_diff_path_new() allocator.

But I like the "let's be consistent" reasoning, so I wouldn't
complain ;-)

> Signed-off-by: Jeff King <peff@peff.net>
> ---
>  tree-diff.c | 4 ++--
>  1 file changed, 2 insertions(+), 2 deletions(-)
>
> diff --git a/tree-diff.c b/tree-diff.c
> index d9237ffd9b..24f7b5912c 100644
> --- a/tree-diff.c
> +++ b/tree-diff.c
> @@ -151,8 +151,6 @@ static int emit_diff_first_parent_only(struct diff_options *opt, struct combine_
>   *	process(p);
>   *	p = pprev;
>   *	; don't forget to free tail->next in the end
> - *
> - * p->parent[] remains uninitialized.
>   */
>  static struct combine_diff_path *path_appendnew(struct combine_diff_path *last,
>  	int nparent, const struct strbuf *base, const char *path, int pathlen,
> @@ -187,6 +185,8 @@ static struct combine_diff_path *path_appendnew(struct combine_diff_path *last,
>  	p->mode = mode;
>  	oidcpy(&p->oid, oid ? oid : null_oid());
>  
> +	memset(p->parent, 0, sizeof(p->parent[0]) * nparent);
> +
>  	return p;
>  }

diff --git a/tree-diff.c b/tree-diff.c
index d9237ffd9b..24f7b5912c 100644
--- a/tree-diff.c
+++ b/tree-diff.c
@@ -151,8 +151,6 @@  static int emit_diff_first_parent_only(struct diff_options *opt, struct combine_
  *	process(p);
  *	p = pprev;
  *	; don't forget to free tail->next in the end
- *
- * p->parent[] remains uninitialized.
  */
 static struct combine_diff_path *path_appendnew(struct combine_diff_path *last,
 	int nparent, const struct strbuf *base, const char *path, int pathlen,
@@ -187,6 +185,8 @@  static struct combine_diff_path *path_appendnew(struct combine_diff_path *last,
 	p->mode = mode;
 	oidcpy(&p->oid, oid ? oid : null_oid());
 
+	memset(p->parent, 0, sizeof(p->parent[0]) * nparent);
+
 	return p;
 }

[03/14] tree-diff: clear parent array in path_appendnew()

Commit Message

Comments

Patch