[lttng-dev] [PATCH lttng-tools] lttng cli: Accept human readable sizes for --subbuf-size

Simon Marchi simon.marchi at polymtl.ca
Tue Apr 2 23:37:43 EDT 2013 

On 2 April 2013 22:39, Christian Babeux <christian.babeux at efficios.com> wrote:
> Hi Simon,
>
>> I wanted to add some unit tests for parse_human_size, but the current
>> test system does not make it easy. They will come later.
>
> Could you describe the issues you had on a separate thread so we can
> further discuss it?

Will do.

> Here a few comments on your patch:
>
>> +       char *buffer = malloc(length);
>> +
>> +       if (buffer) {
>> +               /* Get and print error message */
>> +               regerror(errcode, regex, buffer, length);
>> +               ERR("%s\n", buffer);
>> +               free(buffer);
>> +       }
>
> What if malloc() fails? Printing an error message would be appropriate
> to handle that case.

Ok.

>> +       /* Compile regex */
>> +       ret = regcomp(&regex, "^[0-9][0-9]*\\([kmg]\\{0,1\\}\\)$", REG_ICASE);
>
> This regex could be simplified to: "^[:digit:]+\\([kmg]\\)?$"

I preferred not to use extended regex. + and ? is included in the
extended posix regexes [1]. I also prefer [0-9] over [:digit:],
because it is as clear and less characters, but I don't mind :).

>> +               *size = atol(str);
>
> atol() can return negative numbers and the result is stored in an
> unsigned (size_t). This could lead to enormous subbuffers allocated by
> accident. A check should be added to allow only positive numbers.
>
> Also, atol() does not detect conversion errors, returning 0 in error
> cases [1]. Perhaps using strtol() would be more appropriate?

True. But here, we are safe because the regex test passed We know for
sure that we have a positive number that atol will correctly parse.

>> +               /* Check if there is a suffix */
>> +               regmatch_t suffix_match = matches[1];
>> +               if (suffix_match.rm_eo - suffix_match.rm_so > 0) {
>> +                       switch (*(str + suffix_match.rm_so)) {
>> +                       case 'k':
>> +                       case 'K':
>> +                               *size = *size * 1024;
>> +                               break;
>> +                       case 'm':
>> +                       case 'M':
>> +                               *size = *size * 1024 * 1024;
>> +                               break;
>> +                       case 'g':
>> +                       case 'G':
>> +                               *size = *size * 1024 * 1024 * 1024;
>> +                               break;
>> +                       }
>
> I think you could split the computation of the human size in two
> separate variables (size, computed_size perhaps?).

Do you want to return both values to the caller, or simply use two
intermediate variables and multiply them at the end ?

> Also, you could add checks for possible overflows/truncation in the
> computation/store  (e.g. a user could specify 4194304K (SIZE_MAX/1024
> + 1), quite unlikely but still possible!). This might be a bit
> overkill though...

Do you have an idea in mind on ho to do this ?

> Could you also add a default case with perhaps ERR() or assert()?

Like earlier, we are safe because we passed the regex test. But it's
still good idea to add this default to catch eventual dev mistakes.

>> +               ret = 1;
>> [...]
>> +               regfree(&regex);
>> +               return 1;
>
> ret seems to be unused here. Maybe you meant return ret?

Oops.

> You might also want to add negative numbers and large number testcases
> to your unit tests.

Of course.

> Looking forward to the corrected patch + unit tests :).
>
> Thanks!
>
> Christian
>
> P.S.: This new feature seems in part related to bug #228 [1].
>
> [1] - http://stackoverflow.com/questions/3792663/atol-v-s-strtol
> [2] - http://bugs.lttng.org/issues/228

Thanks for the comments.

Simon

[1] http://en.wikipedia.org/wiki/Regular_expression#POSIX_Basic_Regular_Expressions

More information about the lttng-dev mailing list