From: Jeff King <peff@peff.net>
To: Michael Haggerty <mhagger@alum.mit.edu>
Cc: "Andreas Schwab" <schwab@linux-m68k.org>,
"Junio C Hamano" <gitster@pobox.com>,
"Jáchym Barvínek" <jachymb@gmail.com>,
git@vger.kernel.org
Subject: Re: [PATCH] tempfile: avoid "ferror | fclose" trick
Date: Fri, 17 Feb 2017 16:07:49 -0500 [thread overview]
Message-ID: <20170217210749.6dqmaotleefid76y@sigill.intra.peff.net> (raw)
In-Reply-To: <20170217205442.wnldfsxbj3dnnqvj@sigill.intra.peff.net>
On Fri, Feb 17, 2017 at 03:54:42PM -0500, Jeff King wrote:
> I guess we are simultaneously assuming that it is OK to munge errno on
> success in our function, but that fclose() will not do so. Which seems a
> bit hypocritical. Maybe the "if" dance is better.
So here's that patch with a justification.
At this point, this snippet of code would be appropriate to pull into
xfclose() if we wanted. But possibly that is the wrong direction, as it
encourages callers to do:
if (xfclose(fp))
err = error_errno("failure writing to ...");
when they could do:
if (ferror(fp))
err = error("failure writing to ...");
if (fclose(fp))
err = error_errno("failure writing to ...");
While longer, it's arguably better for them to distinguish the two
cases. It's only worth doing the errno magic when the close is deep
inside a callstack, and passing out the two cases is awkward.
-- >8 --
Subject: tempfile: set errno to a known value before calling ferror()
In close_tempfile(), we return an error if ferror()
indicated a previous failure, or if fclose() failed. In the
latter case, errno is set and it is useful for callers to
report it.
However, if _only_ ferror() triggers, then the value of
errno is based on whatever syscall happened to last fail,
which may not be related to our filehandle at all. A caller
cannot tell the difference between the two cases, and may
use "die_errno()" or similar to report a nonsense errno value.
One solution would be to actually pass back separate return
values for the two cases, so a caller can write a more
appropriate message for each case. But that makes the
interface clunky.
Instead, let's just set errno to the generic EIO in this case.
That's not as descriptive as we'd like, but at least it's
predictable. So it's better than the status quo in all cases
but one: when the last syscall really did involve a failure
on our filehandle, we'll be wiping that out. But that's a
fragile thing for us to rely on.
In any case, we'll let the errno result from fclose() take
precedence over our value, as we know that's recent and
accurate (and many I/O errors will persist through the
fclose anyway).
Signed-off-by: Jeff King <peff@peff.net>
---
tempfile.c | 9 +++++++--
1 file changed, 7 insertions(+), 2 deletions(-)
diff --git a/tempfile.c b/tempfile.c
index ffcc27237..684371067 100644
--- a/tempfile.c
+++ b/tempfile.c
@@ -247,8 +247,13 @@ int close_tempfile(struct tempfile *tempfile)
tempfile->fd = -1;
if (fp) {
tempfile->fp = NULL;
- err = ferror(fp);
- err |= fclose(fp);
+ if (ferror(fp)) {
+ err = -1;
+ if (!fclose(fp))
+ errno = EIO;
+ } else {
+ err = fclose(fp);
+ }
} else {
err = close(fd);
}
--
2.12.0.rc1.612.ga5f664feb
next prev parent reply other threads:[~2017-02-17 21:07 UTC|newest]
Thread overview: 24+ messages / expand[flat|nested] mbox.gz Atom feed top
2017-02-12 16:37 Confusing git messages when disk is full Jáchym Barvínek
2017-02-15 21:32 ` Jeff King
2017-02-15 21:47 ` Junio C Hamano
2017-02-15 21:51 ` Jeff King
2017-02-15 22:28 ` Junio C Hamano
2017-02-15 22:32 ` Jeff King
2017-02-15 22:50 ` Junio C Hamano
2017-02-15 23:18 ` Jeff King
2017-02-16 10:10 ` Andreas Schwab
2017-02-16 16:44 ` Jeff King
2017-02-16 21:31 ` [PATCH] tempfile: avoid "ferror | fclose" trick Jeff King
2017-02-17 8:00 ` Michael Haggerty
2017-02-17 8:07 ` Jeff King
2017-02-17 10:42 ` Michael Haggerty
2017-02-17 20:54 ` Jeff King
2017-02-17 21:07 ` Jeff King [this message]
2017-02-17 21:17 ` Junio C Hamano
2017-02-17 21:21 ` Jeff King
2017-02-17 21:42 ` Junio C Hamano
2017-02-17 22:10 ` Jeff King
2017-02-17 22:40 ` Junio C Hamano
2017-02-17 23:39 ` Jeff King
2017-02-17 23:52 ` Junio C Hamano
2017-02-17 23:54 ` Jeff King
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: http://vger.kernel.org/majordomo-info.html
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20170217210749.6dqmaotleefid76y@sigill.intra.peff.net \
--to=peff@peff.net \
--cc=git@vger.kernel.org \
--cc=gitster@pobox.com \
--cc=jachymb@gmail.com \
--cc=mhagger@alum.mit.edu \
--cc=schwab@linux-m68k.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://80x24.org/mirrors/git.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).