|
|
Safe refactoring on heap-allocated object
The following code demonstrate the similar problem I found during a
code review:
class Foo
{
public: bool bar();
private: // The contents is irrelevant to the question
};
int main(int argc, char **argv)
{
Foo *pFoo =new Foo;
if (!pFoo->bar())
{
delete pFoo;
// Log the failure
return 1;
}
delete pFoo;
return 0;
}
I would suggest the Foo object should be allocated from stack to
achieve exception safety. Like this ...
int main(int argc, char **argv)
{
Foo foo;
if (!foo.bar())
{
// Log the failure
return 1;
}
return 0;
}
But my colleague claims the code is copied and pasted from some other
module already working on production. We shouldn't change the pattern.
Or should we ? Could the suggested refactoring possibly break
anything ?
--
[ See http://www.gotw.ca/resources/clcm.htm for info about ]
[ comp.lang.c++.moderated. First time posters: Do this! ]
|
|
0
|
|
|
|
Reply
|
 Buck
|
12/13/2007 5:09:10 PM |
|
* Buck Yeh:
> The following code demonstrate the similar problem I found during a
> code review:
>
> class Foo
> {
> public: bool bar();
> private: // The contents is irrelevant to the question
> };
>
> int main(int argc, char **argv)
> {
> Foo *pFoo =new Foo;
> if (!pFoo->bar())
> {
> delete pFoo;
> // Log the failure
> return 1;
> }
> delete pFoo;
> return 0;
> }
This is an anti-pattern, two-phase initialization. The code says the
object is unusable unless bar(). In the context of well-designed other
code that handles exceptions, that check should be in the class'
constructor, which should throw if not bar().
> I would suggest the Foo object should be allocated from stack to
> achieve exception safety. Like this ...
>
> int main(int argc, char **argv)
> {
> Foo foo;
> if (!foo.bar())
> {
> // Log the failure
> return 1;
> }
> return 0;
> }
>
> But my colleague claims the code is copied and pasted from some other
> module already working on production. We shouldn't change the pattern.
> Or should we ? Could the suggested refactoring possibly break
> anything ?
Yes. Assuming the code isn't really in 'main', but in a function 'bar',
and that the Foo object is used in some way before it's deleted:
consider where some of the code called before delete stores a pointer to
the object in some global data structure and throws an exception that
effectively (but probably unwittingly) avoids the delete in 'bar'. The
original code would then work, the changed code would not.
Unless you're prepared to check whether that situation occurs and fix
that in turn, don't fix.
--
A: Because it messes up the order in which people normally read text.
Q: Why is it such a bad thing?
A: Top-posting.
Q: What is the most annoying thing on usenet and in e-mail?
[ See http://www.gotw.ca/resources/clcm.htm for info about ]
[ comp.lang.c++.moderated. First time posters: Do this! ]
|
|
|
0
|
|
|
|
Reply
|
Alf
|
12/13/2007 6:55:56 PM
|
|
In article
<b10db5ad-4d62-4f74-ba47-3ae88cf7a434@b40g2000prf.googlegroups.com>,
Buck Yeh <buck.yeh@gmail.com> wrote:
> The following code demonstrate the similar problem I found during a
> code review:
>
> class Foo
> {
> public: bool bar();
> private: // The contents is irrelevant to the question
> };
>
> int main(int argc, char **argv)
> {
> Foo *pFoo =new Foo;
> if (!pFoo->bar())
> {
> delete pFoo;
> // Log the failure
> return 1;
> }
> delete pFoo;
> return 0;
> }
>
> I would suggest the Foo object should be allocated from stack to
> achieve exception safety. Like this ...
>
> int main(int argc, char **argv)
> {
> Foo foo;
> if (!foo.bar())
> {
> // Log the failure
> return 1;
> }
> return 0;
> }
>
> But my colleague claims the code is copied and pasted from some other
> module already working on production. We shouldn't change the pattern.
> Or should we ? Could the suggested refactoring possibly break
> anything ?
>
Depends on the pasted code.
case 1) code does not delete anything then
then having a Foo on the stack and passing a pointer to
the pasted code should be fine.
case 2) code takes ownership of pointer and deletes it.
then an auto_ptr in main with a release before the pasted
code should work,
case 3) pasted code deletes sometimes and indicates it to
the calling function then you release the auto_ptr and reset
it if the code indicates it was not deleted.
case 4) pasted code deletes blindly [does not indicate to calling
function it deleted the ptr] there is no solution other than care in
the original code.
Does this make sense??
--
[ See http://www.gotw.ca/resources/clcm.htm for info about ]
[ comp.lang.c++.moderated. First time posters: Do this! ]
|
|
|
0
|
|
|
|
Reply
|
 cbarron413 (16)
|
12/14/2007 12:01:23 AM
|
|
|
2 Replies
106 Views
(page loaded in 0.201 seconds)
Similiar Articles: Examples of C++ in Safety Critical Systems - comp.lang.c++ ...... which are using C++ within safety ... str1 originally points to a string allocated ... Unbounded_String ensures that the heap memory used for the Unbounded_String object ... How to check whether malloc has allocated memory properly in case ...... check after calling malloc whether allocation ... Examples of C++ in Safety Critical ... String ensures that the heap memory used for the Unbounded_String object is properly ... Down-cast a polymorphic pointer? - comp.lang.fortran... using of terminology. Background: I have an object... ... Presumably, your pointer b will have been allocated with a ... Given a pointer to a base class, it might be safe to ... S10 malloc performance vs tcmalloc - comp.unix.solaris....and it's NOT thread-safe, and ... created and destroyed objects; this is particularly well suited for use w/ C++. strndup: RFC - comp.compilers.lcc... subset of C++ just so I'll have string objects ... the heap (if the implementation uses a "heap" for dynamic memory allocation ... This is not thread-safe/re-entrant, and ... CS, DS, and SS Segments Together? - comp.lang.asm.x86The heap functions use VirtualAlloc to allocate pages of ... Is it safe for me to write byte, word, and dword to $ ... the free encyclopedia... are also used in object files of ... Dos and don'ts in C++ unit testing? - comp.lang.c++.moderated ...... names ought to reflect the responsibilities of objects ... you know of some way to effectively test thread safety ... process of doing this you'll discover a way to refactor ... improve strlen - comp.lang.asm.x86If it is possible to refactor the code not to ... instance which reserves memory in *heap* using new/malloc in 8 byte chunks. top 10 uses for random data compression?? anyone? - comp ...How will you object the latin ugly destinations before ... Almost no outside safe winners still assure as the ... connecting, solves almost exclusively, as the heap ... ReLooper: Refactoring for Loop Parallelismshared (heap-allocated) and mutable objects, the above ana-lysis is not ... from the refactoring menu. ReLooper performs the safety analysis and warns the programmer if ... RAII is Overrated - Carlos Oliveira... to the pool only when the object is done. Now, the problem with heap allocated ... try/finally blocks to match the safety ... Day 24: Refactoring Code Frequently; The ... 7/16/2012 8:41:29 PM
|
|
|
|
|
|
|
|
|
Search |
Post Question |
Groups |
Stream |
About |
Register
6 followers. 