ansaurus

Question

Answer 1

+1 A:

I prefer to do my input validation upfront, but will often perform the tests all at once

i.e.

if(!p || !p->getB()){
    return;
}

If the input is required for the function to operate, and the language supports it, I throw Argument Exceptions (see .NET ArgumentNullException, ArgumentException) so that the code doesn't do clean returns in the case of invalid states. This lets the caller know that the arguments were not sufficient to complete the operation.

Jay S 2009-01-23 19:09:30

And this is different from NullPointerException how?

Arkadiy 2009-01-23 20:02:41

input prerequisites aren't constrained to the case where a pointer is non-null

Dustin Getz 2009-01-26 16:01:52

Answer 2

+6 A:

The first way is easier to read and less complex (by depth) than the second one. In the second one, the complexity and depth increase as the number of parameters goes up. But in the first example, it's just linear.

Mark Canlas 2009-01-23 19:13:48

The guys saying multiple returns are bad are 'structured programming' hippies. Supposedly having multiple return statements makes code hard to read. I think this example highlights the fact this isn't always true.

ceretullis 2009-01-24 03:06:44

Answer 3

A:

Ideally, you'd pass by reference and then you wouldn't have to worry about this as much. That's not always an option, though. Otherwise it's a matter of preference.

I prefer the first, personally, as I don't really have much of a problem with multiple returns. I think that functions should basically fit on one or two screens anyway, so as long as you have syntax highlighting it shouldn't be hard to see all of a function's exit points.

Evan Shaw 2009-01-23 19:15:57

Answer 4

A:

I use the first method you posted, which allows me, in most cases, to provide either: meaningfull return values or messages to the user:


btnNext_OnClick(...)
{
if(!ValidateData())
 return;

// do things here
}


boolean ValidateData()
{
if(!condition)
{
 MessageBox.Show("Message", "Title", MessageBoxButtons.OK, MessageBoxIcons.Information);
 return false;
}

return true;
}

That way, when I add a field that needs form level validation, I can add another if statement check to the validation method.

SnOrfus 2009-01-23 19:20:46

Answer 5

+1 A:

I prefer the first, to the point where I have a set of macros to handle the common cases (and typically assert at the same time for debugging purposes). The downside of this approach is that your function return types have to be fairly uniform for your macro usage to be uniform; the upside is that the usage/effect is very clear. So, for example, my code might read:

class A;
void fun(A* p)
{
  ASSERT_NONZERO_RETURN_ON_FAIL( p );

  B* pB = p->getB();
  ASSERT_NONZERO_RETURN_ON_FAIL( pB );

  .......
}

This leads to much more readable code which also alerts you to errors. Also, as an added bonus, you can easily disable to checking in a release build if you find you value the marginal speed increase over the value of the runtime checks.

Added note: In my experience, the reason some people say multiple return points from functions are bad is because they are doing resource de-allocation explicitly before function exit, and thus you don't want to duplicate the de-allocation code. If you're using RIIA correctly and uniformly, though, this should not be an issue. As this is what I try to always do also, multiple return points is preferable to nesting for me.

Nick 2009-01-23 19:57:54

Answer 6

+4 A:

Multiple returns: people and coding standards go both ways. in C++, imo there is no reason not to prefer multiple returns (and exceptions), if you are using RAII etc. Many C coding standards enforce single-entry-single-exit to make sure all cleanup code gets executed, because there is no RAII and scope-based destruction/resource cleanup.

http://stackoverflow.com/questions/36707/should-a-function-have-only-one-return-statement

Dustin Getz 2009-01-23 20:56:37

Answer 7

+1 A:

I tend to use these type of checks and returns at the beginning of the method. So that I sort of emulate Eiffel like design by contract preconditions and assertions, as described in Bertrand Meyer's book Object-Oriented Software Construction, second edition, Prentice Hall.

For your example, instead of returning void, I would return an enum identifying the violation something like:

enum Violation { inviolate = 0, p_unspecified_unavailable, p_B_unspecified_unavailable,..... };

Violation fun(A* p)
{
//__Preconditions:___________________________________
  if (! p)         return p_unspecified_unavailable:
  if (! p->getB()) return pB_unspecified_unavailable;
//__Body:____________________________________________
   ....
//__Postconditions: _________________________________
   ..(if any)..
   return inviolate;
}

My point being that, I consider the precondition (and any post condition) validation to be a wrapping around implementation of the body of method/function and tend to distinguish and separate the flow of control conditional logic from the expressions of the body.

Roger Nelson 2009-01-24 00:32:42

or just use assert()

Dustin Getz 2009-01-26 16:02:42

assert() will abort the program. It may be completely valid to simply not proceed with the function (in this case it is apparent a null pointer indicates no object to be operated on, not an error). My point was to return some reason why. In this case there were two possible reasons.

Roger Nelson 2009-01-26 23:18:42

ansaurus

tags:

views:

answers:

Coding style - Input validation

related questions