lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <1484507599.2405.16.camel@HansenPartnership.com>
Date:   Sun, 15 Jan 2017 11:13:19 -0800
From:   James Bottomley <James.Bottomley@...senPartnership.com>
To:     Linus Torvalds <torvalds@...ux-foundation.org>
Cc:     Ingo Molnar <mingo@...nel.org>,
        Andrew Morton <akpm@...ux-foundation.org>,
        Sathya Prakash <sathya.prakash@...adcom.com>,
        Chaitra P B <chaitra.basappa@...adcom.com>,
        Suganath Prabu Subramani 
        <suganath-prabu.subramani@...adcom.com>,
        Sreekanth Reddy <Sreekanth.Reddy@...adcom.com>,
        Hannes Reinecke <hare@...e.de>,
        linux-scsi <linux-scsi@...r.kernel.org>,
        linux-kernel <linux-kernel@...r.kernel.org>,
        Thomas Gleixner <tglx@...utronix.de>
Subject: Re: [PATCH] Revert "scsi: mpt3sas: Fix secure erase premature
 termination"

On Sun, 2017-01-15 at 10:54 -0800, Linus Torvalds wrote:
> On Sun, Jan 15, 2017 at 8:11 AM, James Bottomley
> <James.Bottomley@...senpartnership.com> wrote:
> > 
> > We're not reverting a fix that would cause regressions for others.
> 
> Oh HELL YES we are.
> 
> The rule is that we never break old stuff. Some new fix that fixes
> something that never used to work, but breaks something else, gets
> reverted very aggressively.
> 
> So if a new bugfix or workaround causes problems for existing users,
> it gets reverted. The fact that it fixed something else is COMPLETELY
> IRRELEVANT.
> 
> We do not do the "one step forward, two steps back" dance. If you
> can't fix a bug without breaking old systems, the "fix" gets
> reverted.
> 
> Apparently there is already a possible real fix in flight, so I won't
> actually do the revert, but I very much want to object to your
> statement.
> 
> Reverts happen.

Can we compromise on "try not to revert a fix ...".  The problem with
bugs in regression fixes is that we now have two constituencies: the
people who get the regression back if we revert the fix and the people
who are bitten by the bug in the original regression fix.  In this
particular case, I think we should always try to fix the fix because
reversion also violates "never break old stuff".  There are corner
cases, of course, like if the latter constituency is much bigger and
the fix is hard to fix, then we might revert and try again.

James

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ