From: Johannes Schindelin <Johannes.Schindelin@gmx.de>
To: "Shawn O. Pearce" <spearce@spearce.org>
Cc: Jan Engelhardt <jengelh@computergmbh.de>, git@vger.kernel.org
Subject: Re: git-log segfault on 00 graft
Date: Wed, 5 Mar 2008 13:43:31 +0100 (CET) [thread overview]
Message-ID: <alpine.LSU.1.00.0803051335440.4448@racer.site> (raw)
In-Reply-To: <20080305050630.GX8410@spearce.org>
Hi,
On Wed, 5 Mar 2008, Shawn O. Pearce wrote:
> Johannes Schindelin <Johannes.Schindelin@gmx.de> wrote:
> > On Tue, 4 Mar 2008, Jan Engelhardt wrote:
> >
> > > I was playing a bit with grafts, and actually did this:
> > >
> > > echo '839affa3313011da783b5b8074a5c9805ee8503a
> > > 0000000000000000000000000000000000000000' >.git/info/grafts
> > >
> > > running `git log --topo-order` causes a segfault. Yes, I probably
> > > "should not be doing that", but I think it at least should not
> > > segfault.
> >
> > Well, I agree with the first, but not the latter. grafts are a really
> > core and plumbing thing, and if you set it to something nonsensical, I
> > think you should expect something like a segmentation fault.
>
> I'm sorry, I don't know where you learned to program Dscho, but my
> mentors always taught me that user input should be handled with care,
> and SIGSEGV / SIGBUS / SIGILL is not handling with care!
I agree.
> We tell users to popuate the .git/info/grafts file. By hand.
> Its user input. We shouldn't segfault over a malformed entry.
Well, I disagree about the user input. .git/info/grafts can break tons of
things, just by _existing_. So you definitely need to know what you are
doing.
Just inserting random strings into the grafts file is not an option. It is
not something that we should take pains to catch... just like a Unix
system does not prevent "rm -rf /" as root.
So again, I do think that a segmentation fault is not good. But I
disagree that you have to go to great lengths to prevent a segmentation
fault when a user is fiddling with internals without even knowing what
could happen.
IOW in this case, the _user input_ would have better been crafted with
care, and it was clearly not.
But as has been pointed out, the segfault has been already fixed (most
likely by one of Martin's patches), so the discussion about this
particular problem is moot.
Ciao,
Dscho
next prev parent reply other threads:[~2008-03-05 12:44 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-03-04 18:57 git-log segfault on 00 graft Jan Engelhardt
2008-03-04 19:09 ` Johannes Schindelin
2008-03-05 5:06 ` Shawn O. Pearce
2008-03-05 12:43 ` Johannes Schindelin [this message]
2008-03-05 5:27 ` Björn Steinbrink
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=alpine.LSU.1.00.0803051335440.4448@racer.site \
--to=johannes.schindelin@gmx.de \
--cc=git@vger.kernel.org \
--cc=jengelh@computergmbh.de \
--cc=spearce@spearce.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox