Coming from Google doesn't mean it's good code to learn from. Be careful not to ... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

clarry on Aug 14, 2013 | parent | context | favorite | on: Google Open-Sources Gumbo: C Library for Parsing H...

Coming from Google doesn't mean it's good code to learn from. Be careful not to pick up bad (and potentially disasterous, security-wise) habits like not checking for arithmetic overflows in functions such as enlarge_vector_if_full (vector.c) or maybe_resize_string_buffer (string_buffer.c) -- or not checking the return value from malloc.

nostrademons on Aug 14, 2013 [–]

You could file bugs for these rather than posting them in a comment thread that will likely be soon forgotten.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact