Re: [PATCH] Use of getblk differs between locations

From: Glauber de Oliveira Costa
Date: Mon Oct 10 2005 - 17:26:48 EST

Next message: Daniel Walker: "Re: Latency data - 2.6.14-rc3-rt13"
Previous message: Anton Altaparmakov: "Re: [PATCH] Use of getblk differs between locations"
In reply to: Anton Altaparmakov: "Re: [PATCH] Use of getblk differs between locations"
Next in thread: Anton Altaparmakov: "Re: [PATCH] Use of getblk differs between locations"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> >>If you had read the source code rather than just the comments you would
> >>have seen that this is not true. It can return NULL (see
> >>fs/buffer.c::__getblk_slow()). Certainly I would prefer to keep the
> >>checks in NTFS, please. They may only be good for catching bugs but I
> >>like catching bugs rather than segfaulting due to a NULL dereference.
>
> The check should be rather a BUG() than dump_stack() and return NULL --- I
> think it's not right to write code to recover from programming errors.
> Filesystem drivers are supposed to pass correct blocksize to getblk(). ---
> even for users it's better to crash, because user whose machine has locked
> up on BUG() will report bug more likely than user whose machine has
> written stack dump into log and corrupted filesystem --- by the time he
> discovers the corruption and mesage he might not even remember what
> triggered it.

That was what I meant by having the opposite problem here. I think
dumping the stack and returning NULL is okay, as long as all programmers
test its return value, and decide to fail in an alternative way, just
like Anton does, for example. But unfortunately, that's not what happen.

In a lot of cases, we see uses like these: (This one from affs.h)

bh = sb_getblk(sb, block);
lock_buffer(bh);
memset(bh->b_data, 0 , sb->s_blocksize);
set_buffer_uptodate(bh);
unlock_buffer(bh);

Which does not seem to be the right usage for it.

As I said, I took away the checks because I missed that return
statement. I usually don't think that hanging is the preferred solution
in the cases in which you can stop gracefully - But in case you do stop
gracefully, not dereference a NULL pointer.

>
> As comment in buffer.c says, getblk will deadlock if the machine is out of
> memory. It is questionable whether to deadlock or return NULL and corrupt
> filesystem in this case --- deadlock is probably better.
>
> Mikulas

Maybe the best solution is neither one nor another. Testing and failing
gracefully seems better.

What do you think?

Glauber

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Daniel Walker: "Re: Latency data - 2.6.14-rc3-rt13"
Previous message: Anton Altaparmakov: "Re: [PATCH] Use of getblk differs between locations"
In reply to: Anton Altaparmakov: "Re: [PATCH] Use of getblk differs between locations"
Next in thread: Anton Altaparmakov: "Re: [PATCH] Use of getblk differs between locations"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]