lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <20190201091203.GA30619@kroah.com>
Date:   Fri, 1 Feb 2019 10:12:03 +0100
From:   Greg Kroah-Hartman <gregkh@...uxfoundation.org>
To:     Peter Zijlstra <peterz@...radead.org>
Cc:     linux-kernel@...r.kernel.org, Ingo Molnar <mingo@...hat.com>,
        Will Deacon <will.deacon@....com>
Subject: Re: [PATCH] qspinlock: no need to check return value of
 debugfs_create functions

Sorry for the delay, got stuck with other things...

On Wed, Jan 23, 2019 at 09:14:41AM +0100, Peter Zijlstra wrote:
> On Tue, Jan 22, 2019 at 04:21:43PM +0100, Greg Kroah-Hartman wrote:
> > When calling debugfs functions, there is no need to ever check the
> > return value.  The function can work or not, but the code logic should
> > never do something different based on this.
> 
> So I've seen you do a fair number of these patches; but I don't
> fully understand.
> 
> The existing code rolls back the created files such that we either have
> all files or none at all. Why is this wrong?

Normally you should not care if debugfs files can, or can not, be
created.  So just call the debugfs code and move on.  The worst case is
where valid kernel code aborts just because debugging files could not be
created for some reason, which is not ok.

> It for some daft reason one of the debugfs calls fails (imagine this was
> a module and we did modprobe while under memory pressure), why should we
> present a partial interface to the 'user' ?

Because it's not an interface anyone should ever depend on :)

But, for some code, that only uses debugfs, maybe it does make sense to
just abort the whole thing and keep going on.  If this code should work
that way, my mistake, let's leave it alone.

The overall goal with these patches is to make the code surrounding
using debugfs easier and simpler.  You should not need to handle any
errors from debugfs, as it should never be used for anything that
actually matters to the system, except when trying to debug it.

thanks,

greg k-h

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ