From: Karsten Blees <karsten.blees@gmail.com>
To: Junio C Hamano <gitster@pobox.com>
Cc: Jeff King <peff@peff.net>, Duy Nguyen <pclouds@gmail.com>,
kusmabite@gmail.com, Ramkumar Ramachandra <artagnon@gmail.com>,
Robert Zeh <robert.allan.zeh@gmail.com>,
Git List <git@vger.kernel.org>,
finnag@pvv.org
Subject: Re: [PATCH] name-hash.c: fix endless loop with core.ignorecase=true
Date: Wed, 27 Feb 2013 22:52:20 +0100 [thread overview]
Message-ID: <512E8014.3090107@gmail.com> (raw)
In-Reply-To: <7v621dk8aa.fsf@alter.siamese.dyndns.org>
Am 27.02.2013 17:53, schrieb Junio C Hamano:
> Karsten Blees <karsten.blees@gmail.com> writes:
>
>> With core.ignorecase=true, name-hash.c builds a case insensitive index of
>> all tracked directories. Currently, the existing cache entry structures are
>> added multiple times to the same hashtable (with different name lengths and
>> hash codes). However, there's only one dir_next pointer, which gets
>> completely messed up in case of hash collisions. In the worst case, this
>> causes an endless loop if ce == ce->dir_next:
>>
>> ---8<---
>> # "V/", "V/XQANY/" and "WURZAUP/" all have the same hash_name
>> mkdir V
>> mkdir V/XQANY
>> mkdir WURZAUP
>> touch V/XQANY/test
>> git init
>> git config core.ignorecase true
>> git add .
>> git status
>> ---8<---
>
> Instead of using the scissors mark to confuse "am -c", indenting
> this block would have been easier to later readers.
>
> Also it is somewhat a shame that we do not use the above sample
> collisions in a new test case.
>
Duly noted.
Is there a way to run 'git status' with timeout? A test that doesn't complete (instead of failing) isn't nice...
>> +static struct dir_entry *hash_dir_entry(struct index_state *istate,
>> + struct cache_entry *ce, int namelen, int add)
>> {
>> /*
>> * Throw each directory component in the hash for quick lookup
>> * during a git status. Directory components are stored with their
>> - * closing slash. Despite submodules being a directory, they never
>> - * reach this point, because they are stored without a closing slash
>> - * in the cache.
>
> Is the description of submodule no longer relevant?
>
>> - * Note that the cache_entry stored with the directory does not
>> - * represent the directory itself. It is a pointer to an existing
>> - * filename, and its only purpose is to represent existence of the
>> - * directory in the cache. It is very possible multiple directory
>> - * hash entries may point to the same cache_entry.
>
> Is this paragraph no longer relevant? It seems to me that it still
> holds true, given the way how dir->ce points at the given ce.
>
I interpreted this as an explanation why it was safe to add the same cache_entry to the same name_hash multiple times...now that we have separate dir_entries and index_state.dir_hash, that's no longer a problem. But rereading that paragraph again, it is still mostly true (except for the 'existance' part, which is solved by reference counting).
>> + * closing slash.
>> */
>> + struct dir_entry *dir, *p;
>> +
>> + /* get length of parent directory */
>> + while (namelen > 0 && !is_dir_sep(ce->name[namelen - 1]))
>> + namelen--;
>> + if (namelen <= 0)
>> + return NULL;
>> +
>> + /* lookup existing entry for that directory */
>> + dir = find_dir_entry(istate, ce->name, namelen);
>> + if (add && !dir) {
>> ...
>> }
>> +
>> + /* add or release reference to this entry (and parents if 0) */
>> + p = dir;
>> + if (add) {
>> + while (p && !(p->nr++))
>> + p = p->parent;
>> + } else {
>> + while (p && p->nr && !(--p->nr))
>> + p = p->parent;
>> + }
>
> Can we free the entry when its refcnt goes down to zero? If yes, is
> it worth doing so?
>
There's no remove_hash in hash.[ch], and dir_entry.next may point to another dir_entry with the same hash code, so we must not free the memory (same problem as CE_UNHASHED).
>> +
>> + return dir;
>> }
>>
>> static void hash_index_entry(struct index_state *istate, struct cache_entry *ce)
>> @@ -74,7 +111,7 @@ static void hash_index_entry(struct index_state *istate, struct cache_entry *ce)
>> if (ce->ce_flags & CE_HASHED)
>> return;
>> ce->ce_flags |= CE_HASHED;
>> - ce->next = ce->dir_next = NULL;
>> + ce->next = NULL;
>> hash = hash_name(ce->name, ce_namelen(ce));
>> pos = insert_hash(hash, ce, &istate->name_hash);
>> if (pos) {
>> @@ -82,8 +119,8 @@ static void hash_index_entry(struct index_state *istate, struct cache_entry *ce)
>> *pos = ce;
>> }
>>
>> - if (ignore_case)
>> - hash_index_entry_directories(istate, ce);
>> + if (ignore_case && !(ce->ce_flags & CE_UNHASHED))
>> + hash_dir_entry(istate, ce, ce_namelen(ce), 1);
>> }
>>
>> static void lazy_init_name_hash(struct index_state *istate)
>> @@ -99,11 +136,33 @@ static void lazy_init_name_hash(struct index_state *istate)
>>
>> void add_name_hash(struct index_state *istate, struct cache_entry *ce)
>> {
>> + /* if already hashed, add reference to directory entries */
>> + if (ignore_case && (ce->ce_flags & CE_STATE_MASK) == CE_STATE_MASK)
>> + hash_dir_entry(istate, ce, ce_namelen(ce), 1);
>
> Instead of a single function with "are we adding or removing?"
> parameter, it would be a lot easier to read the callers if they are
> wrapped in two helpers, add_dir_entry() and del_dir_entry() or
> something, especially when the add=[0|1] parameter is constant for
> each and every callsite (i.e. the codeflow determines it, not the
> data).
>
OK
>> ce->ce_flags &= ~CE_UNHASHED;
>> if (istate->name_hash_initialized)
>> hash_index_entry(istate, ce);
>> }
>>
>> +/*
>> + * We don't actually *remove* it, we can just mark it invalid so that
>> + * we won't find it in lookups.
>> + *
>> + * Not only would we have to search the lists (simple enough), but
>> + * we'd also have to rehash other hash buckets in case this makes the
>> + * hash bucket empty (common). So it's much better to just mark
>> + * it.
>> + */
>> +void remove_name_hash(struct index_state *istate, struct cache_entry *ce)
>> +{
>> + /* if already hashed, release reference to directory entries */
>> + if (ignore_case && (ce->ce_flags & CE_STATE_MASK) == CE_HASHED)
>> + hash_dir_entry(istate, ce, ce_namelen(ce), 0);
>
> And here as well.
>
>> +
>> + ce->ce_flags |= CE_UNHASHED;
>> +}
>> +
>> static int slow_same_name(const char *name1, int len1, const char *name2, int len2)
>> {
>> if (len1 != len2)
>> @@ -137,18 +196,7 @@ static int same_name(const struct cache_entry *ce, const char *name, int namelen
>> if (!icase)
>> return 0;
>>
>> - /*
>> - * If the entry we're comparing is a filename (no trailing slash), then compare
>> - * the lengths exactly.
>> - */
>> - if (name[namelen - 1] != '/')
>> - return slow_same_name(name, namelen, ce->name, len);
>> -
>> - /*
>> - * For a directory, we point to an arbitrary cache_entry filename. Just
>> - * make sure the directory portion matches.
>> - */
>> - return slow_same_name(name, namelen, ce->name, namelen < len ? namelen : len);
>> + return slow_same_name(name, namelen, ce->name, len);
>
> Hmph, what is this change about? Nobody calls same_name() with a
> directory name anymore or something?
>
dir_entries (with trailing /) are in index_state.dir_hash, so we wouldn't expect to find anything in index_state.name_hash, especially not a cache_entry. find_dir_entry simply uses strncasecmp, as we only do directory indexing with core.ignorecase=true.
> Thanks.
>
next prev parent reply other threads:[~2013-02-27 21:52 UTC|newest]
Thread overview: 88+ messages / expand[flat|nested] mbox.gz Atom feed top
2013-02-08 21:10 inotify to minimize stat() calls Ramkumar Ramachandra
2013-02-08 22:15 ` Junio C Hamano
2013-02-08 22:45 ` Junio C Hamano
2013-02-09 2:10 ` Duy Nguyen
2013-02-09 2:37 ` Junio C Hamano
2013-02-09 2:56 ` Junio C Hamano
2013-02-09 3:36 ` Robert Zeh
2013-02-09 12:05 ` Ramkumar Ramachandra
2013-02-09 12:11 ` Ramkumar Ramachandra
2013-02-09 12:53 ` Ramkumar Ramachandra
2013-02-09 12:59 ` Duy Nguyen
2013-02-09 17:10 ` Ramkumar Ramachandra
2013-02-09 18:56 ` Ramkumar Ramachandra
2013-02-10 5:24 ` Duy Nguyen
2013-02-10 11:17 ` Duy Nguyen
2013-02-10 11:22 ` Duy Nguyen
2013-02-10 20:16 ` Junio C Hamano
2013-02-11 2:56 ` Duy Nguyen
2013-02-11 11:12 ` Duy Nguyen
2013-03-07 22:16 ` Torsten Bögershausen
2013-03-08 0:04 ` Junio C Hamano
2013-03-08 7:01 ` Torsten Bögershausen
2013-03-08 8:15 ` Junio C Hamano
2013-03-08 9:24 ` Torsten Bögershausen
2013-03-08 10:53 ` Duy Nguyen
2013-03-10 8:23 ` Ramkumar Ramachandra
2013-03-13 12:59 ` [PATCH] status: hint the user about -uno if read_directory takes too long Nguyễn Thái Ngọc Duy
2013-03-13 15:21 ` Torsten Bögershausen
2013-03-13 16:16 ` Junio C Hamano
2013-03-14 10:22 ` Duy Nguyen
2013-03-14 15:05 ` Junio C Hamano
2013-03-15 12:30 ` Duy Nguyen
2013-03-15 15:52 ` Torsten Bögershausen
2013-03-15 15:57 ` Ramkumar Ramachandra
2013-03-15 16:53 ` Junio C Hamano
2013-03-15 17:41 ` Torsten Bögershausen
2013-03-15 20:06 ` Junio C Hamano
2013-03-15 21:14 ` Torsten Bögershausen
2013-03-15 21:59 ` Junio C Hamano
2013-03-16 7:21 ` Torsten Bögershausen
2013-03-17 4:47 ` Junio C Hamano
2013-03-16 1:51 ` Duy Nguyen
2013-02-10 13:26 ` inotify to minimize stat() calls demerphq
2013-02-10 15:35 ` Duy Nguyen
2013-02-14 14:36 ` Magnus Bäck
2013-02-10 16:45 ` Ramkumar Ramachandra
2013-02-11 3:03 ` Duy Nguyen
2013-02-10 16:58 ` Erik Faye-Lund
2013-02-11 3:53 ` Duy Nguyen
2013-02-12 20:48 ` Karsten Blees
2013-02-13 10:06 ` Duy Nguyen
2013-02-13 12:15 ` Duy Nguyen
2013-02-13 18:18 ` Jeff King
2013-02-13 19:47 ` Jeff King
2013-02-13 20:25 ` Karsten Blees
2013-02-13 22:55 ` Jeff King
2013-02-14 0:48 ` Karsten Blees
2013-02-27 14:45 ` [PATCH] name-hash.c: fix endless loop with core.ignorecase=true Karsten Blees
2013-02-27 16:53 ` Junio C Hamano
2013-02-27 21:52 ` Karsten Blees [this message]
2013-02-27 23:57 ` [PATCH v2] " Karsten Blees
2013-02-28 0:27 ` Junio C Hamano
2013-02-19 9:49 ` inotify to minimize stat() calls Ramkumar Ramachandra
2013-02-19 14:25 ` Karsten Blees
2013-02-19 13:16 ` Drew Northup
2013-02-19 13:47 ` Duy Nguyen
2013-02-09 19:35 ` Junio C Hamano
2013-02-10 19:03 ` Robert Zeh
2013-02-10 19:26 ` Martin Fick
2013-02-10 20:18 ` Robert Zeh
2013-02-11 3:21 ` Duy Nguyen
2013-02-11 14:13 ` Robert Zeh
2013-02-19 9:57 ` Ramkumar Ramachandra
2013-04-24 17:20 ` [PATCH] " Robert Zeh
2013-04-24 21:32 ` Duy Nguyen
2013-04-25 19:44 ` Robert Zeh
2013-04-25 21:20 ` Duy Nguyen
2013-04-26 15:35 ` Robert Zeh
2013-04-25 8:18 ` Thomas Rast
2013-04-25 19:37 ` Robert Zeh
2013-04-25 19:59 ` Thomas Rast
2013-04-27 13:51 ` Thomas Rast
2013-04-27 23:56 ` Duy Nguyen
[not found] ` <CAKXa9=r2A7UeBV2s2H3wVGdPkS1zZ9huNJhtvTC-p0S5Ed12xA@mail.gmail.com>
2013-04-30 0:27 ` Duy Nguyen
2013-02-09 11:32 ` Ramkumar Ramachandra
2013-02-14 15:16 ` Ævar Arnfjörð Bjarmason
2013-02-14 16:31 ` Junio C Hamano
2013-02-19 9:40 ` Ramkumar Ramachandra
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=512E8014.3090107@gmail.com \
--to=karsten.blees@gmail.com \
--cc=artagnon@gmail.com \
--cc=finnag@pvv.org \
--cc=git@vger.kernel.org \
--cc=gitster@pobox.com \
--cc=kusmabite@gmail.com \
--cc=pclouds@gmail.com \
--cc=peff@peff.net \
--cc=robert.allan.zeh@gmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).