git.ipfire.org Git - thirdparty/git.git/commit

author	Ævar Arnfjörð Bjarmason <avarab@gmail.com>
	Wed, 31 Aug 2022 23:18:12 +0000 (01:18 +0200)
committer	Junio C Hamano <gitster@pobox.com>
	Fri, 2 Sep 2022 16:16:24 +0000 (09:16 -0700)
commit	1e8697b5c4ed7c2762a0858251efa8feb8126038
tree	28f0b911e068272f676656aa368f3d4d6ea7ff8f	tree \| snapshot
parent	ac350155de34767e132b383fb1b819ff74e23842	commit \| diff

submodule--helper: check repo{_submodule,}_init() return values

Fix code added in ce125d431aa (submodule: extract path to submodule
gitdir func, 2021-09-15) and a77c3fcb5ec (submodule--helper: get
remote names from any repository, 2022-03-04) which failed to check
the return values of repo_init() and repo_submodule_init(). If we
failed to initialize the repository or submodule we could segfault
when trying to access the invalid repository structs.

Let's also check that these were the only such logic errors in the
codebase by making use of the "warn_unused_result" attribute. This is
valid as of GCC 3.4.0 (and clang will catch it via its faking of
__GNUC__ ).

As the comment being added to git-compat-util.h we're piggy-backing on
the LAST_ARG_MUST_BE_NULL version check out of lazyness. See
9fe3edc47f1 (Add the LAST_ARG_MUST_BE_NULL macro, 2013-07-18) for its
addition. The marginal benefit of covering gcc 3.4.0..4.0.0 is
near-zero (or zero) at this point. It mostly matters that we catch
this somewhere.

Signed-off-by: Ævar Arnfjörð Bjarmason <avarab@gmail.com>
Reviewed-by: Glen Choo <chooglen@google.com>
Signed-off-by: Junio C Hamano <gitster@pobox.com>

builtin/submodule--helper.c		diff \| blob \| blame \| history
git-compat-util.h		diff \| blob \| blame \| history
repository.h		diff \| blob \| blame \| history