lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <20120731200458.GE32228@thunk.org> Date: Tue, 31 Jul 2012 16:04:58 -0400 From: Theodore Ts'o <tytso@....edu> To: Andreas Dilger <adilger@...mcloud.com> Cc: Ext4 Developers List <linux-ext4@...r.kernel.org>, "tony@...eyournoodle.com" <tony@...eyournoodle.com> Subject: Re: [PATCH 2/7] libext2fs: use abort() instead of perror()/exit() On Tue, Jul 31, 2012 at 11:34:38AM -0700, Andreas Dilger wrote: > On 2012-07-30, at 14:47, Theodore Ts'o <tytso@....edu> wrote: > > > This simplifies the number of C library symbols needed by boot loader > > systems such as yaboot. > > This doesn't improve the debugability of the code at all. Instead of > getting an error message (as cryptic as it was), now there is no > error and the process will just die. Well, at least for e2fsck, which is the program I was most concerned about, the debuggability will actually improve, since e2fsck/sigcatcher.c will give you a very nice stack backtrace (at least, if your libc has the backtrace function). > I'm guessing from the original coding that there is no error > handling for this case? Yes, the problem is that the ext2fs_{mark,unmark}_{block,inode}_bitmap() functions return void, and changing this would require massive changes all up and down the stack. Even if they had originally return an errcode_t, given that with the simple bit array implementation, they could Never Fail(tm), it's likely that most if not all of the code sites would not have checked them, and even if they did, all they could really do at that point is die. And if they didn't, then it would be even harder to debug why the bitmap function was became a no-op due to a memory allocation failure. Sigh; I've become convinced that the Go language's philosphy not letting memory allocation fail (and just simply dying if you can't allocate the memory you need) is the Right Thing 99.99% of the time. - Ted -- To unsubscribe from this list: send the line "unsubscribe linux-ext4" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists