From: Paul Winalski <paul.winalski@gmail.com>
To: TUHS main list <tuhs@tuhs.org>
Subject: [TUHS] Re: A fuzzy awk. (Was: The 'usage: ...' message.)
Date: Mon, 20 May 2024 12:06:49 -0400 [thread overview]
Message-ID: <CABH=_VSDFUhcXnH707nTP3UrQyQBXDdZBFJ077EizFCO1eM=Xw@mail.gmail.com> (raw)
In-Reply-To: <CAKH6PiXQDOxRuZDMvzMVqzHbdgykMtWkdSVWNe4EeHEk9oXoxQ@mail.gmail.com>
[-- Attachment #1: Type: text/plain, Size: 2182 bytes --]
On Mon, May 20, 2024 at 9:17 AM Douglas McIlroy <
douglas.mcilroy@dartmouth.edu> wrote:
> I'm surprised by nonchalance about bad inputs evoking bad program
> behavior. That attitude may have been excusable 50 years ago. By now,
> though, we have seen so much malicious exploitation of open avenues of
> "undefined behavior" that we can no longer ignore bugs that "can't happen
> when using the tool correctly". Mature software should not brook incorrect
> usage.
>
> Accepting bad inputs can also lead to security issues. The data breaches
from SQL-based attacks are a modern case in point.
IMO, as a programmer you owe it to your users to do your best to detect bad
input and to handle it in a graceful fashion. Nothing is more frustrating
to a user than to have a program blow up in their face with a seg fault, or
even worse, simply exit silently.
As the DEC compiler team's expert on object files, I was called on to add
object file support to a compiler back end originally targeted to VMS
only. I inherited support of the object file generator for Unix COFF and
later wrote the support for Microsoft PECOFF and ELF. When our group was
bought by Intel I did the object file support for Apple OS X MACH-O in the
Intel compiler back end.
I found that the folks who write linkers are particularly lazy about error
checking and error handling. They assume that the compiler always
generates clean object files. That's OK I suppose if the compiler and
linker people are in the same organization. If the linker falls over you
can just go down the hall and have the linker developer debug the issue and
tell you where you went wrong. But that doesn't work when they work for
different companies and the compiler person doesn't have access to the
linker sources. I ran into a lot of cases where my buggy object file
caused the linker to seg fault or, even worse, simply exit without an error
message.
I ended up writing a very thorough formatted dumper for each object file
format that did very thorough checking for proper syntax and as many
semantic errors (e.g., symbol table index number out of range) as I could.
-Paul W.
[-- Attachment #2: Type: text/html, Size: 2610 bytes --]
next prev parent reply other threads:[~2024-05-20 16:07 UTC|newest]
Thread overview: 20+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-05-20 13:06 [TUHS] " Douglas McIlroy
2024-05-20 13:14 ` [TUHS] " arnold
2024-05-20 14:00 ` G. Branden Robinson
2024-05-20 13:25 ` Chet Ramey
2024-05-20 13:41 ` [TUHS] Re: A fuzzy awk Ralph Corderoy
2024-05-20 14:26 ` Chet Ramey
2024-05-22 13:44 ` arnold
2024-05-20 13:54 ` Ralph Corderoy
2024-05-20 15:39 ` [TUHS] OT: LangSec (Re: A fuzzy awk.) Åke Nordin
2024-05-20 16:09 ` [TUHS] " Ben Kallus
2024-05-20 20:02 ` John Levine
2024-05-20 20:11 ` Larry McVoy
2024-05-20 21:00 ` Ben Kallus
2024-05-20 21:03 ` John R Levine
2024-05-20 21:14 ` Larry McVoy
2024-05-20 21:46 ` Ben Kallus
2024-05-20 21:57 ` Larry McVoy
2024-05-20 16:06 ` Paul Winalski [this message]
-- strict thread matches above, loose matches on Subject: below --
2024-05-19 23:08 [TUHS] The 'usage: ...' message. (Was: On Bloat...) Douglas McIlroy
2024-05-20 0:58 ` [TUHS] " Rob Pike
2024-05-20 3:19 ` arnold
2024-05-20 9:20 ` [TUHS] A fuzzy awk. (Was: The 'usage: ...' message.) Ralph Corderoy
2024-05-20 11:58 ` [TUHS] " arnold
2024-05-20 13:10 ` Chet Ramey
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='CABH=_VSDFUhcXnH707nTP3UrQyQBXDdZBFJ077EizFCO1eM=Xw@mail.gmail.com' \
--to=paul.winalski@gmail.com \
--cc=tuhs@tuhs.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).