This is the mail archive of the gcc@gcc.gnu.org mailing list for the GCC project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: Request for suppressing "warn_unused_result" warnings

From: Ian Lance Taylor <iant at google dot com>
To: Dave Korn <dave dot korn dot cygwin at gmail dot com>
Cc: "Vakatov\, Denis \(NIH\/NLM\/NCBI\) \[E\]" <vakatov at ncbi dot nlm dot nih dot gov>, Paolo Bonzini <bonzini at gnu dot org>, "Lavrentiev\, Anton \(NIH\/NLM\/NCBI\) \[C\]" <lavr at ncbi dot nlm dot nih dot gov>, "gcc\ at gcc dot gnu dot org" <gcc at gcc dot gnu dot org>
Date: Fri, 28 May 2010 17:14:03 -0700
Subject: Re: Request for suppressing "warn_unused_result" warnings
References: <A9D8BF3D8A74DF4A925FB541C0F39D2A01FD02135D@NIHMLBX15.nih.gov> <4BFFC134.8050900@gnu.org> <A9D8BF3D8A74DF4A925FB541C0F39D2A01FD021408@NIHMLBX15.nih.gov> <mcrhblrswq9.fsf@dhcp-172-17-9-151.mtv.corp.google.com> <4C0058FB.3010003@gmail.com>

Dave Korn <dave.korn.cygwin@gmail.com> writes:

> On 28/05/2010 19:32, Ian Lance Taylor wrote:
>
>> As the compiler documentation states, warn_unused_result was intended
>> for cases where failing to check the return value is always a security
>                                                        ^^^^^^
>     Note: "always".
>
>> risk or a bug. 
>
>   OK, that's reasonable as far as it goes, but there is *no* circumstances
> under which ignoring the return from *any* function is *always* a bug.  So we
> should provide a user override mechanism.

For practical purposes, it is always a bug to ignore the return value
of realloc (I disregard the unusual case of passing 0 as the second
argument in order to free the memory block).  The original patch
description (http://gcc.gnu.org/ml/gcc-patches/2003-09/msg00798.html)
said there are calls in the Linux kernel whose return value must never
be ignored.  So I assert that there are such cases.

We could certainly decide that we don't care about that fine
distinction, and just fall back to the weaker definition which permits
easy overriding with a cast to void.  But we shouldn't do it on the
basis that the current definition does not make sense.  We should only
do it on the basis that the current definition is not worth
preserving.

Ian

Follow-Ups:
- Re: Request for suppressing "warn_unused_result" warnings
  - From: Dave Korn

References:
- Request for suppressing "warn_unused_result" warnings
  - From: Lavrentiev, Anton (NIH/NLM/NCBI) [C]
- Re: Request for suppressing "warn_unused_result" warnings
  - From: Paolo Bonzini
- RE: Request for suppressing "warn_unused_result" warnings
  - From: Vakatov, Denis (NIH/NLM/NCBI) [E]
- Re: Request for suppressing "warn_unused_result" warnings
  - From: Ian Lance Taylor
- Re: Request for suppressing "warn_unused_result" warnings
  - From: Dave Korn

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]