David Turner <dturner@xxxxxxxxxxxxxxxx> writes: >> This one smelled iffy. I think it is safe because the caller does >> not look at src[] other than src[0] after this function returns, and >> this setting to NULL happens only when o->merge is set to 1, so I do >> not think this is buggy, but at the same time I do not think setting >> to NULL is necessary. >> >> Other than that, looks nice. Thanks. > > I like to set a pointer to NULL after I free the thing pointed to by it, > because it helps make use-after-free bugs easier to detect. Yes, but it also helps unintended bugs to creep in if done blindly, and that is why I vetted what happens in the codepath of the caller of this function after src[] entries are NULLed (the caller could be expecting to do things only to NULLed fields, for example, in which case clearing them like this patch would have changed the behaviour of the caller after this function returns). Thanks. -- To unsubscribe from this list: send the line "unsubscribe git" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html