[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20190122155255.GA20142@kroah.com>
Date: Tue, 22 Jan 2019 16:52:55 +0100
From: Greg Kroah-Hartman <gregkh@...uxfoundation.org>
To: Michal Hocko <mhocko@...nel.org>
Cc: linux-kernel@...r.kernel.org,
Andrew Morton <akpm@...ux-foundation.org>,
Vlastimil Babka <vbabka@...e.cz>,
David Rientjes <rientjes@...gle.com>,
Laura Abbott <labbott@...hat.com>, linux-mm@...ck.org
Subject: Re: [PATCH] mm: no need to check return value of debugfs_create
functions
On Tue, Jan 22, 2019 at 04:31:02PM +0100, Michal Hocko wrote:
> On Tue 22-01-19 16:21:13, Greg KH wrote:
> [...]
> > diff --git a/mm/memblock.c b/mm/memblock.c
> > index 022d4cbb3618..18ee657fb918 100644
> > --- a/mm/memblock.c
> > +++ b/mm/memblock.c
> > @@ -1998,8 +1998,7 @@ DEFINE_SHOW_ATTRIBUTE(memblock_debug);
> > static int __init memblock_init_debugfs(void)
> > {
> > struct dentry *root = debugfs_create_dir("memblock", NULL);
> > - if (!root)
> > - return -ENXIO;
> > +
> > debugfs_create_file("memory", 0444, root,
> > &memblock.memory, &memblock_debug_fops);
> > debugfs_create_file("reserved", 0444, root,
>
> I haven't really read the whole patch but this has just hit my eyes. Is
> this a correct behavior?
>
> Documentations says:
> * @parent: a pointer to the parent dentry for this file. This should be a
> * directory dentry if set. If this parameter is NULL, then the
> * file will be created in the root of the debugfs filesystem.
>
> so in case of failure we would get those debugfs files outside of their
> intended scope. I believe it is much more correct to simply not create
> anything, no?
If debugfs_create_dir() returns NULL, then something is really wrong
(you passed it an invalid pointer as the parent dentry, or free memory
is gone), so there's nothing you can do except keep moving forward and
take that result and pass it as any parent pointer you want to. Your
code logic should never care if a debugfs file is created or not, it is
"fire and forget".
And any result of a debugfs call, like this one, that is to be passed
into another debugfs call, will work just fine if the first one failed
(the second one usually will also fail, which is fine.)
Also, and this is the biggest problem, everyone gets the return value
check wrong thinking NULL will be an error, it is one type of error, but
other ones are also returned and no one checks them properly. So just
don't check at all, that is the design goal here.
hope this helps,
greg k-h
Powered by blists - more mailing lists