RE: Why is the kfree() argument const? | KernelTrap

RE: Why is the kfree() argument const?

view
thread

!MAILaRCHIVE_VOTE_RePLACE

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: David Schwartz <davids@...>

To: <torvalds@...>

Cc: Johannes Weiner <hannes@...>, Linux Kernel Mailing List <linux-kernel@...>, <clameter@...>, <penberg@...>

Subject: RE: Why is the kfree() argument const?

Date: Friday, January 18, 2008 - 1:02 am

> On Thu, 17 Jan 2008, David Schwartz wrote:

quoted text> > > "const" has nothing to do with "logical state".  It has one
> > > meaning, and
> > > one meaning only: the compiler should complain if that
> > > particular type is
> > > used to do a write access.
> >
> > Right, exactly.

quoted text> So why do you complain?
>
> kfree() literally doesn't write to the object.

Because the object ceases to exist. However, any modification requires write
access, whether or not that modification is a write.

quoted text> > You are the only one who has suggested it has anything to do
> > with changes
> > through other pointers or in other ways. So you are arguing against only
> > yourself here.

quoted text> No, I'm saying that "const" has absolutely *zero* meaning on writes to an
> object through _other_ pointers (or direct access) to the object.

Nobody disagrees with that.

quoted text> And you're seemingly not understanding that *lack* of meaning.

No, I understand that.

quoted text> kfree() doesn't do *squat* to the object pointed to by the pointer it is
> passed. It only uses it to look up its own data structures, of which the
> pointer is but a small detail.

quoted text> And those other data structures aren't constant.

Nonsense. The 'kfree' function *destroys* the object pointer to by the
pointer. How can you describe that as not doing anything to the object?

quoted text> > Nobody has said it has anything to do with anything but
> > operations through
> > that pointer.

quoted text> .. and I'm telling you: kfree() does *nothing* conceptually through that
> pointer. No writes, and not even any reads! Which is exactly why it's
> const.

It destroys the object the pointer points to. Destroying an object requires
write access to it.

quoted text> The only thing kfree does through that pointer is to update its own
> concept of what memory it has free.

That is not what it does, that is how it does it. What it does is destroy
the object.

quoted text> Now, what it does to its own free memory is just an
> implementation detail,
> and has nothing what-so-ever to do with the pointer you passed it.

I agree, except that it destroys the object the pointer points to.

quoted text> See?

I now have a much better understanding of what you're saying, but I still
think it's nonsense.

1) An operation that modifies the logical state of an object should not
normally be done through a 'const' pointer. The reason you make a pointer
'const' is to indicate that this pointer should not be used to change the
logical state of the object pointed to.

2) The 'kfree' operation changes the logical state of the object pointed to,
as the object goes from existent to non-existent.

3) It is most useful for 'kfree' to be non-const because destroying an
object through a const pointer can easily be done in error. One of the
reasons you provide a const pointer is because you need the function you
pass the pointer to not to modify the object. Since this is an unusual
operation that could be an error, it is logical to force the person doing it
to clearly indicate that he knows the pointer is const and that he knows it
is right anyway.

I'm curious to hear how some other people on this feel. You are the first
competent coder I have *ever* heard make this argument.

By the way, I disagree with your metadata versus data argument. I would
agree that a function that changes only an object's metadata could be done
through a const pointer without needed a cast. A good example would be a
function that updates a "last time this object was read" variable.

However, *destroying* an object is not a metadata operation -- it destroys
the data as well. This is kind of a philosophical point, but an object does
not have a "does this object exist" piece of metadata. If an object does not
exist, it has no data. So destroying an object destroys the data and is thus
a write/modification operation on the data.

DS

--
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

RE: Why is the kfree() argument const?, Linus Torvalds, (Thu Jan 17, 5:25 pm)

Re: Why is the kfree() argument const?, Jakob Oestergaard, (Fri Jan 18, 5:48 am)

Re: Why is the kfree() argument const?, Björn, (Fri Jan 18, 9:31 am)

Re: Why is the kfree() argument const?, Jakob Oestergaard, (Fri Jan 18, 10:53 am)

Re: Why is the kfree() argument const?, Giacomo A. Catenazzi, (Fri Jan 18, 7:47 am)

Re: Why is the kfree() argument const?, Vadim Lobanov, (Fri Jan 18, 3:06 pm)

Re: Why is the kfree() argument const?, Jakob Oestergaard, (Fri Jan 18, 10:39 am)

RE: Why is the kfree() argument const?, David Schwartz, (Thu Jan 17, 6:28 pm)

RE: Why is the kfree() argument const?, Linus Torvalds, (Thu Jan 17, 7:10 pm)

RE: Why is the kfree() argument const?, David Schwartz, (Thu Jan 17, 8:56 pm)

RE: Why is the kfree() argument const?, Linus Torvalds, (Thu Jan 17, 9:15 pm)

Re: Why is the kfree() argument const?, Giacomo Catenazzi, (Fri Jan 18, 3:51 am)

Re: Why is the kfree() argument const?, Vadim Lobanov, (Fri Jan 18, 4:30 am)

Re: Why is the kfree() argument const?, Giacomo Catenazzi, (Fri Jan 18, 4:20 am)

Re: Why is the kfree() argument const?, Andy Lutomirski, (Fri Jan 18, 9:54 am)

Re: Why is the kfree() argument const?, Vadim Lobanov, (Fri Jan 18, 3:14 pm)

Re: Why is the kfree() argument const?, Zan Lynx, (Fri Jan 18, 3:31 pm)

Re: Why is the kfree() argument const?, Vadim Lobanov, (Fri Jan 18, 3:55 pm)

Re: Why is the kfree() argument const?, Andy Lutomirski, (Fri Jan 18, 9:53 am)

Re: Why is the kfree() argument const?, Olivier Galibert, (Fri Jan 18, 1:24 pm)

Re: Why is the kfree() argument const?, J.A. , (Fri Jan 18, 6:29 pm)

Re: Why is the kfree() argument const?, Krzysztof Halasa, (Fri Jan 18, 7:44 pm)

RE: Why is the kfree() argument const?, David Schwartz, (Fri Jan 18, 1:02 am)

Re: Why is the kfree() argument const?, DM, (Fri Jan 18, 2:06 pm)

Re: Why is the kfree() argument const?, Olivier Galibert, (Fri Jan 18, 1:37 pm)

RE: Why is the kfree() argument const?, Linus Torvalds, (Fri Jan 18, 12:10 pm)

RE: Why is the kfree() argument const?, David Schwartz, (Fri Jan 18, 4:55 pm)

Re: Why is the kfree() argument const?, Chris Friesen, (Fri Jan 18, 11:38 am)

Navigation

Popular discussions


linux-kernel:
Greg KH	[GIT PATCH] driver core patches against 2.6.24
Tarkan Erimer	Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3
Bart Van Assche	Integration of SCST in the mainstream Linux kernel
Jeff Garzik	Re: fallocate-implementation-on-i86-x86_64-and-powerpc.patch
git:

linux-netdev:
David Miller	Re: [PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
Arjan van de Ven	Re: [GIT]: Networking
Gerrit Renker	[PATCH 15/37] dccp: Set per-connection CCIDs via socket options
Natalie Protasevich	[BUG] New Kernel Bugs
openbsd-misc:

Colocation donated by:

Who's online

There are currently 1 user and 655 guests online.

Online users

genesiscoom

Syndicate