Advertisement
Front, Kernel, Security, Distributions, Development. See your byline here on LWN.net.
| |||||||||||||
|
| |||||||||||||
Linux kernel design patterns - part 2Linux kernel design patterns - part 2Posted Jun 13, 2009 13:21 UTC (Sat) by johill (subscriber, #25196)Parent article: Linux kernel design patterns - part 2 The fourth paragraph makes it sound like the kernel always favours opening up structs/data types over making them opaque (abstract). I disagree with this assertion, there can be value in making structures opaque, if only to guarantee properly locked access or deter abuse of visible parts of structures. Of course, the examples you give are perfectly valid examples where there is no value in making things opaque -- abuse is unlikely, performance concerns require using inlines and similar -- however there are also many examples in the kernel for exactly the opposite. In code I maintain, I have often combined both approaches, like this:
public.h:
struct foo {
int public;
u8 priv[] __align(sizeof(void*));
};
struct foo *foo_alloc(int privsz);
void foo_destroy(struct foo *f);
foo_do_something(struct foo *f);
internal.c:
struct internal_foo {
int internal;
/* ... */
/* keep last */
struct foo pub;
};
struct foo *foo_alloc(int privsz)
{
struct internal_foo *res = kzalloc(sizeof(*res) + privsz);
if (!res)
return NULL;
return &res->pub;
}
/* etc */
This pretty much combines the best of both worlds -- purely internal details are invisible to API users, and members that are part of the API and can safely be used by API users are made public.
(Log in to post comments)
Linux kernel design patterns - part 2 Posted Jun 15, 2009 23:34 UTC (Mon) by neilbrown (subscriber, #359) [Link]
Yes, I guess that paragraph could be read as making a stronger statement than I can justify ... but if that sparks some discussion, maybe it isn't all bad.
My main goal was not to describe the best patterns, but to describe the value of patterns in general, and illustrate that with a few that I was aware of. The pattern that you describe is not one I have seen, and I suspect there are many more that I am not aware of. One of my hopes in writing the series was that it would encourage others to describe patterns they had seen and liked. You have at least partially realised this - thanks!
I imagine there would be a number of situations where that pattern would be very apt - possibly more apt than the pattern of simply exposing everything. What would be really useful (for any pattern) would be some analysis of strengths and weaknesses which could guide the choice of when it is a good one to use, and when it would best be avoided. Enumerating examples can help a lot there.
Thanks.
Linux kernel design patterns - part 2 Posted Jun 16, 2009 10:13 UTC (Tue) by johill (subscriber, #25196) [Link] Yes, I don't think you could possibly be aware of all patterns used. And it may well be possible that I brought this "partial exposure pattern" to the kernel myself, I've used it across the wireless code a lot but I don't know whether it is used elsewhere.
As for comparing, let me start with a very short comparison to the "expose everything" pattern:
For the cases where I've done it this way, the fact that it cannot be embedded or on the stack is not important because it serves more as the container itself rather than being a helper that can be embedded into something else. The one exception could be rfkill, but I made that completely opaque because it had been abused so much in the past.
|
|
||||||||||||