Skip to content

Check for null pointer after MIDIPacketListAdd/MIDIEventListAdd#58

Closed
Boddlnagg wants to merge 4 commits intochris-zen:masterfrom
Boddlnagg:null-check
Closed

Check for null pointer after MIDIPacketListAdd/MIDIEventListAdd#58
Boddlnagg wants to merge 4 commits intochris-zen:masterfrom
Boddlnagg:null-check

Conversation

@Boddlnagg
Copy link
Contributor

@Boddlnagg Boddlnagg commented Nov 3, 2025

MIDIPacketListAdd/MIDIEventListAdd can return null pointers. This leads to unsoundness (see #57).

Ideally the error would be handled by the caller, but that requires a changed signature. So a panic is the best we can do for now.

@Boddlnagg
Check for null pointer after MIDIPacketListAdd/MIDIEventListAdd
540b2e6 
MIDIPacketListAdd/MIDIEventListAdd can return null pointers. This leads to unsoundness.

Ideally the error would be handled by the caller, but that requires a changed signature. So a panic is the best we can do for now.
@Boddlnagg Boddlnagg mentioned this pull request Nov 3, 2025
Open
@Boddlnagg
Copy link
Contributor Author

Boddlnagg commented Nov 3, 2025

The CI seems broken/outdated:

Downloaded libc v0.2.177
error: package `libc v0.2.177` cannot be built because it requires rustc 1.63 or newer, while the currently active rustc version is 1.58.1

xtqqczze
xtqqczze reviewed Dec 8, 2025
View reviewed changes
@xtqqczze xtqqczze mentioned this pull request Dec 8, 2025
Merged
chris-zen and others added 3 commits February 12, 2026 21:03
@chris-zen @xtqqczze
Apply suggestion from @xtqqczze
de2508f 
Co-authored-by: xtqqczze <45661989+xtqqczze@users.noreply.github.com>
@chris-zen @xtqqczze
Apply suggestion from @xtqqczze
9f21f74 
Co-authored-by: xtqqczze <45661989+xtqqczze@users.noreply.github.com>
@chris-zen @xtqqczze
Apply suggestion from @xtqqczze
5aade75 
Co-authored-by: xtqqczze <45661989+xtqqczze@users.noreply.github.com>
@chris-zen
Copy link
Owner

chris-zen commented Feb 12, 2026
edited
Loading

Hi @Boddlnagg @xtqqczze thanks for the contributions.

I was considering adding an alternative API that handles errors more explicitly (e.g., try_push / try_new), but I wanted to check whether it would actually be used in midir before investing time in it.

Another thing I would consider is to release a major version that breaks compatibility but makes the push fallible. I would take the chance to create proper Errors instead of OSStatus.

@Boddlnagg
Copy link
Contributor Author

Boddlnagg commented Feb 13, 2026

I would appreciate an additional fallible API. Using that in midir requires a breaking change there, but having it in this crate is a necessary precondition.

@chris-zen
Copy link
Owner

chris-zen commented Feb 13, 2026
edited
Loading

@Boddlnagg One important question for me is whether to go for a major release with breaking changes (my preference), or to do a minor release with an additional fallible API (which would result in a less clean API).

I’d really appreciate feedback from a user’s perspective, especially since midir is a key downstream user.

@chris-zen
Copy link
Owner

chris-zen commented Feb 13, 2026

I addressed this in #63

@chris-zen chris-zen closed this Feb 13, 2026
@Boddlnagg
Copy link
Contributor Author

Boddlnagg commented Feb 14, 2026
edited
Loading

One important question for me is whether to go for a major release with breaking changes (my preference), or to do a minor release with an additional fallible API (which would result in a less clean API).

Why not both? It is an unsoundness after all, so you could do a minor release without breaking changes, with panic upon failure (this PR), and major release with breaking changes and better error handling.

That way you leave it to the crate user to decide.

@chris-zen
Copy link
Owner

chris-zen commented Feb 16, 2026

Yeah, that makes sense. If you don't mind, I'll address this in my PR. I got different changes there to modernise the project.

What version do you suggest? 0.8.2 or 0.9.0?

@xtqqczze
Copy link
Contributor

xtqqczze commented Feb 16, 2026

I think by convention for pre-1.0 versions, 0.8.2 would typically be considered a minor release, whereas 0.9.0 would be treated more like a major bump.

Of course, it’s still pre-1.0...

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@xtqqczze xtqqczze xtqqczze left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@Boddlnagg @chris-zen @xtqqczze