...
| Code Block | ||
|---|---|---|
| ||
if (false) { /* use of critical security method no
* longer necessary, for now */
/*NOTREACHED*/
security_critical_method();
/* some other comment */
}
|
This is an instance of the an exceptional situation described in MSC57-JG. Detect and remove dead superfluous code and values.
Applicability
Confusion over which instructions are executed and which are not can lead to serious programming errors and vulnerabilities, including denial of service, abnormal program termination, and data integrity violation. This problem is mitigated by the use of interactive development environments (IDEs) and editors that use fonts, colors, or other mechanisms to differentiate between comments and code. However, the problem can still manifest, for example, when reviewing source code printed on a black-and-white printer.
...