This is the mail archive of the gdb-patches@sourceware.org mailing list for the GDB project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [PATCH] Tracepoint source strings

From: Stan Shebs <stan at codesourcery dot com>
To: Eli Zaretskii <eliz at gnu dot org>
Cc: Stan Shebs <stan at codesourcery dot com>, gdb-patches at sourceware dot org
Date: Fri, 26 Mar 2010 11:38:01 -0700
Subject: Re: [PATCH] Tracepoint source strings
References: <4BABDD35.2000209@codesourcery.com> <83aatvh4pf.fsf@gnu.org> <4BACF406.7080701@codesourcery.com> <83zl1vezan.fsf@gnu.org>

Eli Zaretskii wrote:

Date: Fri, 26 Mar 2010 10:51:02 -0700
From: Stan Shebs <stan@codesourcery.com>
CC: Stan Shebs <stan@codesourcery.com>, gdb-patches@sourceware.org
Eli Zaretskii wrote:
struct breakpoint * create_tracepoint_from_upload (struct uploaded_tp *utp) { ! char *addr_str, small_buf[100]; [...] ! sprintf (small_buf, "*%s", hex_string (utp->addr));
Tz-tz-tz... Using a constant-size buffer in sprintf without any check for overflow? Are you sure that calling the buffer ``small'' will magically keep you from trouble? ;-)
Presumably even a hypothetical future 128-bit address won't need more than 65 chars to print. :-)
Yes, and then someone comes up and changes the code to put there
something in addition to the address (you already prepend an asterisk
to it).
But if I'm the only one who is bothered by this, I withdraw my objections.

What's a better thing to do then? Am I missing something in our current coding preferences for this kind of thing? (Which is entirely possible, oldtimers often get out of date on best practices... :-) )

written = fwrite ("\x7fTRACE0\n", 8, 1, fp); ! if (written < 8) perror_with_name (pathname); /* Write descriptive info. */ --- 2468,2474 ---- binary file, plus a hint as what this file is, and a version number in case of future needs. */ written = fwrite ("\x7fTRACE0\n", 8, 1, fp); ! if (written < 1) perror_with_name (pathname);
Why did you change this to accept partial writes?
I was hoping to fix a major brain cramp of mine without anybody noticing - oh well. :-) The two numeric arguments to fwrite are semi-redundant a la calloc, and the return result is based on the *second* argument, which is the number of "items".
So you are writing a string as if it were an 8-byte int? Won't that swap bytes on some architectures? And why pretend that a string is a number, anyway?

fwrite doesn't know about ints and such; as the man page says, it's just doing repeated putc starting at the given address. The only effect of the two arguments is the way the results are reported, so if you ask to write 2 elements of size 4, but low-level writing fails at byte 6, it's going to report that it wrote 1 element. Kind of a weak API concept, I suspect there are few production uses where neither argument is 1...

As for the rest, my questions were meant to signal that portions of
the description are not clear enough, and could use some more explicit
description and/or references to other parts of the manual.

Indeed, and I will be working on that. Having been so close to this stuff for a while, it's good to get the fresh perspective!

Stan

Follow-Ups:
- Re: [PATCH] Tracepoint source strings
  - From: Eli Zaretskii

References:
- [PATCH] Tracepoint source strings
  - From: Stan Shebs
- Re: [PATCH] Tracepoint source strings
  - From: Eli Zaretskii
- Re: [PATCH] Tracepoint source strings
  - From: Stan Shebs
- Re: [PATCH] Tracepoint source strings
  - From: Eli Zaretskii

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]