[Top] [All Lists]

Re: potential argument order bug in fs/xfs/xfs_dir2_node.c:xfs_dir2_leaf

To: Dave Jones <davej@xxxxxxxxxx>
Subject: Re: potential argument order bug in fs/xfs/xfs_dir2_node.c:xfs_dir2_leafn_unbalance
From: Dave Chinner <david@xxxxxxxxxxxxx>
Date: Thu, 5 Sep 2013 13:11:28 +1000
Cc: xfs@xxxxxxxxxxx
Delivered-to: xfs@xxxxxxxxxxx
In-reply-to: <20130905023818.GA10694@xxxxxxxxxx>
References: <20130905023818.GA10694@xxxxxxxxxx>
User-agent: Mutt/1.5.21 (2010-09-15)
On Wed, Sep 04, 2013 at 10:38:18PM -0400, Dave Jones wrote:
> I'm picking through some of the bugs in coverity's database,
> and I came across this one, which I'm unsure of..
> In xfs_dir2_leafn_unbalance we have this code..
> 1583         if (xfs_dir2_leafn_order(save_blk->bp, drop_blk->bp))
> 1584                 xfs_dir3_leafn_moveents(args, drop_blk->bp, &drophdr, 
> dents, 0,
> 1585                                         save_blk->bp, &savehdr, sents, 0,
> 1586                                         drophdr.count);
> 1587         else
> 1588                 xfs_dir3_leafn_moveents(args, drop_blk->bp, &drophdr, 
> dents, 0,
> 1589                                         save_blk->bp, &savehdr, sents,
> 1590                                         savehdr.count, drophdr.count);
> The issue that coverity picked up in both cases, is that 'sents' and 'dents' 
> are in
> a different order to how the xfs_dir3_leafn_moveents function expects them.

What does "order" mean to coverity? Is it really complaining about
function parameters being ordered (src, dst) rather than (dst, src)?
Or is it detecting that we are passing parameters names (dxxx, sxxx)
into a function that declares those parameters (syyy, dyyy) and it
throws based on that?

In more detail, the function prototype is effectively
xfs_dir3_leafn_moveents(source, destination, count), and so in both
cases here objects are being moved from the block being dropped
(freed) to the block being saved (merged block).

What the xfs_dir2_leafn_order() call tells us is whether the objects
in the drop block get inserted into the save block before or after
the objects in the save block. i.e. if we are merging from the left
or right sibling....

So I don't see that there's a problem here.

> Is this intentional ? If so I'll mark it as such in their db.

The code looks fine to me...


Dave Chinner

<Prev in Thread] Current Thread [Next in Thread>