From: Duncan <1i5t5.duncan@cox.net>
To: linux-btrfs@vger.kernel.org
Subject: Re: Carefully crafted BTRFS-image causes kernel to crash
Date: Thu, 30 Apr 2015 06:45:29 +0000 (UTC) [thread overview]
Message-ID: <pan$ed01c$e6116e7b$212a3ca1$143655a4@cox.net> (raw)
In-Reply-To: CAJF-kY=eqWA_hc+XCHYUEH58x7=hKQ0rm+bSGiaXoWv+tppGyQ@mail.gmail.com
Lukas Lueg posted on Wed, 29 Apr 2015 21:50:23 +0200 as excerpted:
> To give some context: Testing the userland tools to some depths comes
> back with around 13 percent of all execution paths in around 40 million
> runs to result in a segmentation fault, an uncatched divide-by-zero or
> self-destruction due to a heap buffer overflow catched by glibc. That is
> to be compared with zero crashes in the ext2fs userland tools.
In a field of 40 million trinity fuzz tester runs, one out of eight btrfs-
tools userspace runs crashed due to some abnormality, compared to 0
crashes for e2fsprogs.
That's _very_ impressive for e2fs. I'm sure it's because people have
been doing just that, beating on it with trinity and the like, for
awhile, and the problems have been fixed already, but that makes it no
less impressive. It takes both work and loving care to get to that
point, and this demonstrates just how much of that it gets, to get to the
_zero_ crash (in tens of millions of runs) point.
Meanwhile, one of eight for btrfs-progs. Of course the focus has so far
been pretty much on just getting the tools and basic functionality, so
there's a reason, but it has a _long_ way to go from one of eight to
_zero_ of 40-million!
Just one more demonstration of the fact that btrfs really isn't and can't
be called stable yet, even if from about a year ago they _have_ pretty
well stripped all the warnings telling people that.
Of course userspace is only the half of it, but _zero_ fuzzer crashes in
40 million runs... userspace or kernelspace regardless, that's quite some
work showing off there, and they have a right to be proud of it. Btrfs
would be so lucky! But your beating on it and Qu's fixup patches are a
start at getting us there. Thanks! =:^)
--
Duncan - List replies preferred. No HTML msgs.
"Every nonfree program has a lord, a master --
and if you use the program, he is your master." Richard Stallman
prev parent reply other threads:[~2015-04-30 6:45 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-04-20 23:04 Carefully crafted BTRFS-image causes kernel to crash Lukas Lueg
2015-04-21 3:16 ` Qu Wenruo
2015-04-21 9:38 ` Russell Coker
2015-04-21 11:44 ` Austin S Hemmelgarn
2016-08-29 17:11 ` David Sterba
2015-04-21 15:17 ` Zygo Blaxell
2015-04-22 0:28 ` Qu Wenruo
2015-04-29 19:50 ` Lukas Lueg
2015-04-30 6:45 ` Duncan [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='pan$ed01c$e6116e7b$212a3ca1$143655a4@cox.net' \
--to=1i5t5.duncan@cox.net \
--cc=linux-btrfs@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.