| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 6 May 2008 18:20:06 -0700 From: Andrew Morton <akpm@...ux-foundation.org> To: benh@...nel.crashing.org Cc: David Miller <davem@...emloft.net>, tony@...eyournoodle.com, linux-kernel@...r.kernel.org Subject: Re: [PATCH] Silence 'ignoring return value' warnings in drivers/video/aty/radeon_base.c On Wed, 07 May 2008 10:54:43 +1000 Benjamin Herrenschmidt <benh@...nel.crashing.org> wrote: > > On Tue, 2008-05-06 at 14:43 -0700, David Miller wrote: > > > So I rewrote the title to "drivers/video/aty/radeon_base.c: notify > > user if > > > sysfs_create_bin_file() failed". > > > > > > And your fix looks appropriate - if sysfs_create_bin_file() fails we > > will now get > > > reports of this and we can find out what kernel bug caused this to > > happen. > > > > The last time someone "fixed" this warning in the radeon driver, > > people lost their consoles. > > > > Just giving a heads up... > > I asked Tony to only warn. I still don't like it tho. As I (and paulus) > have explained several times in the past, but I'm not going to veto the > patch because I'm tired of that argument. > > We have something like 99% of users of sysfs_create_file not supposed to > fail right ? > > So what we are effectively doing is adding -hundreds- of printk's all > over the place (bloat bloat bloat) while instead we could have warned > inside sysfs_create_file itself, and provided a __sysfs_create_file or > sysfs_create_file_nowarn, or whatever you want to call it for the > handful of users that actually want to explicitely deal with failures. > > And it's the same for a whole bunch of those must check things. We are > just adding bloat often for nothing useful. You said "not useful". But you're just wrong. Look at the history of this. A couple of years ago we were seeing a huge number of mysterious crashes and warnings in and around sysfs and driver code and we just didn't have a clue what was causing it, because those crashes were happening long, long after the buggy code had done its work. So I went in there and found a tremendous amount of code in driver core, sysfs and in callers of both which was just ignoring error returns and blundering on. It was a comnplete undebuggable unmaintainable mess. And the reason why it was undebuggable was because the code was failing to detect errors *when they occurred*. So we (me, Cornelia, Greg, others) set about fixing all of that. And to support that effort we marked all the things which should be checked with __must_check. Now you come along and cherrypick a few callsites where you'd rather not bother checking and assert that the entire effort was wrong-headed. Well sorry, no, it wasn't. Sure, there's a little bit of undesirable fallout but the whole thing had. to. be. done. > In some case, even harmful > as we prevent entire modules from initializing due to what is often just > a minor failure. There is no such thing as a "minor failure". Code either works as designed or it doesn't. If it doesn't work as designed then we cannot state how serious the problem is until we've understood its causes. If you have sysfs files which aren't needed then remove the damn things. If they _are_ needed then they should be available to all users of the driver. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists