Re: [PATCH v4 1/3] fs: hoist EFSCORRUPTED definition into uapi header

From: Dave Chinner
Date: Mon Jan 21 2019 - 17:14:04 EST

Next message: Liam Mark: "Re: [PATCH 3/4] dma-buf: add support for mapping with dma mapping attributes"
Previous message: Liam Mark: "Re: [PATCH 3/4] dma-buf: add support for mapping with dma mapping attributes"
In reply to: Theodore Y. Ts'o: "Re: [PATCH v4 1/3] fs: hoist EFSCORRUPTED definition into uapi header"
Next in thread: David Sterba: "Re: [PATCH v4 1/3] fs: hoist EFSCORRUPTED definition into uapi header"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Jan 21, 2019 at 04:54:54PM -0500, Theodore Y. Ts'o wrote:
> On Fri, Jan 18, 2019 at 05:14:38PM +0100, Jann Horn wrote:
> > Multiple filesystems can already return EFSCORRUPTED errors to userspace;
> > however, so far, definitions of EFSCORRUPTED were in filesystem-private
> > headers.
> >
> > I wanted to use EUCLEAN to indicate data corruption in the VFS layer;
> > Dave Chinner says that I should instead hoist the definitions of
> > EFSCORRUPTED into the UAPI header and then use EFSCORRUPTED.
> >
> > This patch is marked for stable backport because it is a prerequisite for
> > the following patch.
> >
> > Cc: stable@xxxxxxxxxxxxxxx
> > Suggested-by: Dave Chinner <david@xxxxxxxxxxxxx>
> > Signed-off-by: Jann Horn <jannh@xxxxxxxxxx>
>
> Before we enshrine the overloading of EUCLEAN and EFSCORRUPTED, I
> wonder if we should at least consider the option of assigning a new
> error code number for EFSCORRUPTED.

No.

We've exposed filesystem corruption errors to userspace as errno 117
for many years now, so people are already familiar with this error
as indicating a filesystem problem.

> The downside of doing this is
> that for a while, older versions glibc won't have strerror/perror
> translation for the new error code.

And everyone will end up asking "WTF is this undefined error the
application just received?" until glibc, man pages and enough
occurrences of the question have been asked that the search engines
develop enough of a history record that they return useful results.
Not only won't users have a clue, but the app developers the users
first ask "what's this error mean" won't have a clue, either.

> On the other hand, I'm not sure
> it will be that much more confusing to the average user than
> "Structure needs cleaning". :-)

Go search for "XFS structure needs cleaning" on your preferred
search engine and will you get lots and lots of hits indicating what
you should do when you get that error. It's taken years to build up
that history such that it's extremely useful to the average user....

> The upside of assigning a new error code is that in a year or two,
> we'll actually have an intelligible error message showing up in log
> files and in user's terminals.

The downside is that it will take several years before people will
become familiar with the new error, and we'll have to deal with the
fallout repeatedly from it. Hence, IMO, there's no upside to
changing the errno of EFSCORRUPTED now that it is largely ubiquitous
in userspace.

Cheers,

Dave.
--
Dave Chinner
david@xxxxxxxxxxxxx

Next message: Liam Mark: "Re: [PATCH 3/4] dma-buf: add support for mapping with dma mapping attributes"
Previous message: Liam Mark: "Re: [PATCH 3/4] dma-buf: add support for mapping with dma mapping attributes"
In reply to: Theodore Y. Ts'o: "Re: [PATCH v4 1/3] fs: hoist EFSCORRUPTED definition into uapi header"
Next in thread: David Sterba: "Re: [PATCH v4 1/3] fs: hoist EFSCORRUPTED definition into uapi header"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]