The 25-Year-Old BSD Bug

sproketboy writes with news that a developer named Marc Balmer has recently fixed a bug in a bit of BSD code which is roughly 25 years old. In addition to the OSnews summary, you can read Balmer's comments and a technical description of the bug. "This code will not work as expected when seeking to the second entry of a block where the first has been deleted: seekdir() calls readdir() which happily skips the first entry (it has inode set to zero), and advance to the second entry. When the user now calls readdir() to read the directory entry to which he just seekdir()ed, he does not get the second entry but the third. Much to my surprise I not only found this problem in all other BSDs or BSD derived systems like Mac OS X, but also in very old BSD versions. I first checked 4.4BSD Lite 2, and Otto confirmed it is also in 4.2BSD. The bug has been around for roughly 25 years or more."

Many eyes make bugs shallow...

[pclminion]

My ass. There are arguments for open source. The shallow bugs argument is not one of them.

Re:Many eyes make bugs shallow...

Isn't it? The bug WAS found, wasn't it?

Re:Many eyes make bugs shallow...

[DannyO152]

How many "eyes" were watching BSD systems use Samba for a DOS filesystem? Seems to me, someone saw behavior and exactly because it was open source, looked into it, found the coding error and filed a bug report. It will be fixed, because everyone now knows about this, and that too is a side effect of open source, even if it's related to the politics.

Re:Many eyes make bugs shallow...

[garett_spencley]

From the sounds of it, this was a bug that was not triggered very often. When it was finally triggered, investigated and fixed the person who found it released the info publicly, thanks to the beauty of Open Source, and everyone affected, commercial entities and FOSS users using the code alike, benefited. If this were a proprietary system that were licensed out to various companies stricken by NDAs etc. it's quite likely that if one company discovered the bug the others would never learn about it.

Re:Many eyes make bugs shallow...

[TheRaven64]

This bug has been around for a long time, but is only visible if you have large directories and delete files from them in between calls to readdir and seekdir. This is quite uncommon behaviour, and was incredibly uncommon 25 years ago when filesystems were much smaller and directories almost never contained enough files to require more than one or two disk blocks to store the directory.

When the Samba people found it, they decided to just code a work-around and not bother to report it to any of the BSD teams. If they had done, it would probably have been fixed in 22 years.

Now that it has been fixed in OpenBSD, the change can easily be taken and incorporated into FreeBSD, NetBSD, DragonFlyBSD and Darwin.

Re:Many eyes make bugs shallow...

[Goaway]

Except that the bug had been triggered many times before, seeing as how Samba had code in place to work around it.

Re:Many eyes make bugs shallow...

[pclminion]

This bug has been around for a long time, but is only visible if you have large directories and delete files from them in between calls to readdir and seekdir.

But that's exactly my point, isn't it? The bug was only "visible" through its behavior, not its manifestation in code. The shallow bugs argument basically says that if enough people stare at the code, they will find the bugs. Clearly that did not happen here.

Whether the bug fix can propagate rapidly has nothing to do with what I'm talking about. I'm not trying to disparage the concept of open source, I'm arguing that the shallow-bugs argument should be rejected.

Re:Many eyes make bugs shallow...

[InvisblePinkUnicorn]

This is like saying global warming either does exist because today was the hottest on record, or does not exist because today was the coldest on record. Why are these analogous? Because in both situations, you're only considering one data point, which does not even begin to indicate a trend.

Re:Many eyes make bugs shallow...

[kithrup]

seekdir and readdir are unreliable when you're modifying the directory being read. The API requirement is that readdir return each directory entry that existed at the time the directory was opened exactly once. In the traditional UNIX implementation, the directory is simply a sequential stream of bytes; this is pretty easy -- you can simply lseek to the position that telldir returned. However, other systems don't use something that simple -- Mac OS X, for example, uses a B-Tree for the catalog file. Worse, they use a single catalog file for the entire filesystem's catalog, meaning that any modifications (adding, removing, or renaming files anywhere) causes the layout to change.

And telldir only returns a long, which -- in most implementations -- is smaller than off_t, so a simplistic implementation can have some problems. Of course, having a directory that's larger than 4GBytes could result in some other problems 8-).

Re:Many eyes make bugs shallow...

[Peganthyrus]

You see what you're looking for, most of the time. This sounds like a subtle bug that you're not going to find until you go looking for it; it's hard to invoke under normal usage patterns. Nobody stared at that code looking for this problem until now. But if it was closed source, the guy who fixed it wouldn't have been able to look at it and find the problem.

A quick googling of "many eyes make all bugs shallow" brings me the more complete statement that adage is simplified from: "Given a large enough beta-tester and co-developer base, almost every problem will be characterized quickly and the fix will be obvious to someone." (Linus via ESR). Clearly this 25-year-old bug is one of the exceptions that calls for the 'almost'.

Re:Many eyes make bugs shallow...

[Derek+Pomery]

Erm. That's not what "many eyes make bugs shallow" means.
Well. Just reading the source is part of it, but not all.
Fact is, if I run into odd behaviour when testing/using - if the source is available I can read it, I can breakpoint.
I cannot do that with a binary.

So yes. Things did occur as they were supposed to. Someone found something odd, they were able to look at code in question, and fix it.

The shallowness is the fact that there is a direct connection between the thousands of testers/users and the code in question.
Instant turnaround. No "user reports behaviour in detailed fashion, including testcase, to some corporate e-mail address, and maybe it eventually gets a to a developer three layers down who may be able to figure it out and fix it if he has the time"

Re:Many eyes make bugs shallow...

[bsantos]

I don't think it should be rejected, but taken as part of the set of advantages OSS has. After all that one argument of many, which sometimes applies others doesn't. There's bugs you have in the code itself and others in the way the code is supposed to work, the first you can catch by looking at the code, the second is more difficult if you don't know what the code intends to do, or don't have lots of experience with the language and paradigm. The argument that many eyes make bugs in the code shallow isn't a rule that could apply to bugs in the program itself.

Re:Many eyes make bugs shallow...

[jimicus]

Except that the bug had been triggered many times before, seeing as how Samba had code in place to work around it. Yeah, I noticed that. Had the Samba team not reported the bug upstream? Most of them seem to be a fairly professional bunch, it seems unlikely they'd spot a bug like this and just code a workaround without at least a quick email to one of the BSD mailing lists.

Re:Many eyes make bugs shallow...

[pclminion]

"Many-eyes-shallow-bugs" == absolute statement "Many-eyes-yet-bug-wasn't-found" == clear contradiction of absolute statement.

Re:Many eyes make bugs shallow...

[HiThere]

Were you to claim it was an overstatement, I'd agree. That doesn't seem to be what you're claiming.

"Many eyes make all bugs shallow" is clearly wrong, in detail. There do exist bugs that can't be traced that way, e.g. (The one I'm thinking of is the infamous C compiler that was jiggered to insert a binary mod into itself whenever it recompiled itself.)

However, being wrong in detail isn't the same as being wrong in principle. Very few statements that use an un-circumscribed "all" are actually TRUE!!!, but that doesn't keep them from being true. You just need to use a bit of sense in interpreting them. Once you do, you realize that the "Many eyes..." statement is a good first approximation to the truth, and possibly a good second approximation. (I.e., it's pretty close to always true.) Depending on how you define many and shallow, of course. With proper (and reasonable) definitions I could make an argument that this particular case was, indeed, an example of that rule working out in practice just as it claims to work. (My chosen approach would be to adopt a historical perspective, but there are other approaches that would also work.)

OTOH, if you adopt a definition of many == three or more, and shallow == found within a day then the rule is a massive failure. To me this would reveal more a misunderstanding of the rule than a defect in it, but it would be a legitimately defensible interpretation of it from the viewpoint of simple English rules of speech.

Re:Many eyes make bugs shallow...

[Goaway]

Perhaps they didn't feel like doing the "no, it's supposed to work like that, you're wrong" dance.

Re:Many eyes make bugs shallow...

[TheLink]

Sure it's found, but after 20+ years? That's not what I call a good approach.

"many eyes make bugs shallow" is equivalent to the "infinite number of monkeys..." thing.

In my experience it's better to have quality than quantity when it comes to the eyes used for finding bugs.

Any idiot can tell you about obvious bugs, and it's kind of waste of time to see 1 million duplicate bug reports, because it's too slow to search through 100 million other bugs (with dupes) for dupes ;).

For UI stuff, you get the naive (as in not yet unexposed to your evil software ;) ) users in and watch them, and even then you MUST have _trained_ eyes to watch them. The trained eyes can often spot problems the naive users are experiencing - the naive users may not even realize they are experiencing problems or realize what is wrong...

Re:Many eyes make bugs shallow...

[KGIII]

The shallow bugs argument basically says that if enough people stare at the code, they will find the bugs. Clearly that did not happen here.

I am not an open source zealot or anything, in fact I'm more inclined to use proprietary software at home and open source, almost exclusively, for my business. I say this so that I'm clear about my disclosing my personal views. (In other words, I believe in all things moderation and think zealotry is absurd and I probably shouldn't be confused with an open source zealot or even an advocate.)

However... You are mistaken. Clearly that DID happen here. That is exactly what happened. It took a long time, granted, but it was found, it was fixed, and (seeing as no one was really bothered by it too much) it was even done in a "timely manner." (Albeit a very long time but it didn't seem to impact anyone to any great length.)

The bug was found, the code was open, the bug was fixed. Hell, it isn't even newsworthy. It's just a squished bug that had no real impact in the majority of people's experiences. The impact was so small that people coded around it, so be it. Open source doesn't even demand that it be bug free. Coding around an existing bug is perfectly okay (I think). Fixing the bug may have taken valuable developer time away from their core projects for all I know. Either way, it was found, it was fixed, and because of the open source nature of the software these two things were possible.

Re:Many eyes make bugs shallow...

[morgan_greywolf]

Hmmm....if the bug was found in 4.2BSD, then how do we know that that bug was not also in original AT&T UNIX that 4.2 BSD is derived from? One could always look in the source released by Caldera (now known as "The SCO Group") some years back.

Re:Many eyes make bugs shallow...

[AndGodSed]

True, but you misquoted the statement. The correct statement is not absolute. It reads, and I quote a guy called Linus:

"Given a large enough beta-tester and co-developer base, almost every problem will be characterized quickly and the fix will be obvious to someone." I am sure you will agree that the correct statement sans flamebait modifications does not warrant a "clear contradiction" as many detractors of FOSS who are jumping at this opportunity to point out a example of a fixed bug that was not necessarily a security risk and saying "see, the OSS model is clearly flawed! BSD has a 25year old bug that was only fixed now!"

Heck, how many other bugs have been fixed over the years?

These detracting arguments smack of FUD mongering...

Re:Many eyes make bugs shallow...

[JoeBuck]

You write: "This bug has been around for a long time, but is only visible if you have large directories and delete files from them in between calls to readdir and seekdir." Go back and read the link: the bug can be reliably reproduced in a directory with only 27 files, if the right file is deleted (the file whose directory entry is the first file in the second block). You assume that the Samba people didn't report the bug to any BSD people, but that's unclear. The problem is that they didn't have a reproducible way of demonstrating the bug, which tends to lead to responses like "we don't believe you" from upstream developers.

Re:Many eyes make bugs shallow...

[pclminion]

I am sure you will agree that the correct statement sans flamebait modifications does not warrant a "clear contradiction" as many detractors of FOSS who are jumping at this opportunity to point out a example of a fixed bug that was not necessarily a security risk and saying "see, the OSS model is clearly flawed! BSD has a 25year old bug that was only fixed now!"

Take off your paranoid hat. Holy crap. I am an open source author myself. I just have always hated this particular argument.

Re:Many eyes make bugs shallow...

[AndGodSed]

Well then I was mistaken. I did not react out of paranoia however.

Re:Many eyes make bugs shallow...

[fudoniten]

BSD has been checked over by 'quality' eyes--when it was used as the basis of NeXT/OSX, for example. They missed it too.

If the code wasn't open (i.e. if there weren't many eyes), this bug would have remained forever, or at least until the code was dumped.

Re:Many eyes make bugs shallow...

[ahem]

My parent said:

(In other words, I believe in all things moderation and think zealotry is absurd and I probably shouldn't be confused with an open source zealot or even an advocate.)

Sounds like you're a bit of a moderation zealot...

Re:Many eyes make bugs shallow...

[TheLink]

"this bug would have remained forever, or at least until the code was dumped"

The "good old" weaknesses of proprietary code make it likely to get dumped way before 25 years.
a) the company having the source could go bust, or decide to do something different.
b) people could lose track and/or understanding of the source and since it's not "mirrored and documented by everyone", it's gone.
c) someone could decide to throw it away and write a new version from scratch, and so the old version will vanish.

Often you don't have to wait longer than 7 years before the code is dumped.

I have found security bugs in proprietary software, and notified the vendor to get it fixed, but they had trouble getting the fixes right, in the end they only fixed it properly in version 5 (I first found it in version 2, found a different variation of it in version 3 and 4).

Lastly, there aren't that many quality eyes, and they often have more fun things to do, so they just copy old BSD code "as is"...

Re:Many eyes make bugs shallow...

[KGIII]

All too true - I sometimes joke with my girlfriend about how I'm zealous about moderation or I'm zealous in my anti-zealotry. I'm not sure why she stays with me.

Re:Many eyes make bugs shallow...

[RiotingPacifist]

Dammit I hate those guys, with all their, reason is the best way to win an argument crap, and their logic is much better than spouting crap.
I swear if I see another moderation fanboy im going to smash up a moderator.

Re:Many eyes make bugs shallow...

[iminplaya]

If this were a proprietary system that were licensed out to various companies stricken by NDAs etc. it's quite likely that if one company discovered the bug the others would never learn about it.

That, or the individual who discovers it would be fired, blacklisted, and possibly be arrested and charged with some criminal act.

Re:Many eyes make bugs shallow...

[Stefanwulf]

That only holds true if "shallow bugs" meant "All bugs are found"...which implies bug-free software, and I sincerely hope that nobody has been zealous enough to make that claim to you.

Generally speaking, nobody can actually produce bug-free software. The goal in dealing with bugs is to asymptotically reduce both their number and severity.

Now the claim I've heard generally associated with the saying "shallow bugs" is that open source will on average approach zero bugs and lowest average severity faster than other methods, due to greater exposure/more people working on fixing them.

I'm not going to weigh in on that claim one way or another--there are plenty of people here who I'm sure can argue the point better than I can. I just wanted to say that if you've heard this claim expressed in terms of averages, be careful with regard to your reasoning when you're trying to refute it. A single exception doesn't negate an average, and I've always heard "shallow bugs" to be a statement about a statistical behavior, not a claim that open source software is universally bug-free past a certain age.

Think about it this way: all software has bugs. A corollary of this is that old software will have old bugs. That's really all we're seeing here.

Re:Many eyes make bugs shallow...

by saying hottest on record you are comparing more than 1 point, assuming you didn't start recording temperatures today, thus being the hottest

Re:Many eyes make bugs shallow...

Maybe they didn't want to deal with the "lol, fuckoff stallman lovers" comments.

Re:Many eyes make bugs shallow...

[KGIII]

Damn you and your insensitivity to my moderate needs!

Re:Many eyes make bugs shallow...

[auric_dude]

Surly a bug this old should be reclassified as a scrab beetle?

Re:Many eyes make bugs shallow...

[VGPowerlord]

Samba could have reported it, but perhaps when they noticed in 2005, they also noticed that the July 2003 discussion on freebsd-hackers already acknowledged the existance of the bug, but never actually fixed it.

Re:Many eyes make bugs shallow...

[LS]

Wuh? thousands of projects that prove the point, and one single bug that doesn't, so reject the whole argument?

You sound like those people that don't like evolution. The concept of shallow bugs is an approximate description of how things work, not a methodology. Also, if enough people stare at the code and use it, they will find the bugs that matter.

Re:Many eyes make bugs shallow...

Because the bug was found in the libdir code in 4.2BSD, which was never in SysV. Every non-BSD system that implemented the same API did it themselves, and won't have the (same) bug.

Re:Many eyes make bugs shallow...

In my experience it's better to have quality than quantity when it comes to the eyes used for finding bugs.

Innovation happens elsewhere. -- Bill Joy

And most commercial companies have neither. There are only a fixed number (in absolute terms) of quality programs, what are the odds they are working for your company?

Now MS, Google, etc. may be able to attract some good people, because of the positions and influence they hold, but most companies aren't that lucky.

So it it better to bet that you managed to snag some of these stars, or to leverage open-source and, while you have a larger quantity of coders that may be so-so, you may have a better chance of having some of the excellent programs in your community? In the latter you would also have to worry about the sucky programs trampling on the work of the stars.

Re:Many eyes make bugs shallow...

[xtracto]

And not only that, there have been 6 year old *known* bugs which people just refuse to fix (like the Firefox large tooltip bugs).

I completely agree with the you on the thousand monkeys. And it might be even worse. It may turn out to be something like "El Farol" problem. As, it is common knowledge that other people will look at the bugs, then nobody will care to look at the bugs because, at the end, other people surely have looked at the bugs.

Or, be honest, how many of you have really looked at Firefox (and done a complete verification, validation and accreditation testing after reading the test and then compiling it) before using it?

I know didn't, after all, the code is there, and a surely lots of people have already seen it

Re:Many eyes make bugs shallow...

[xtracto]

So, it is just another Open Source bug which the developers did not care to fix because it was not the itch to scratch. Similar to plenty of other bugs which are notified in bugzilla kind of systems and the developers just ignore for months and even years.

Re:Many eyes make bugs shallow...

[Stormx2]

Well, not really. If you're saying it's the coldest/warmest day on record then you're comparing it to previous data points. Of course this only works when there are previous points on record, but you wouldn't really be saying it if there weren't, unless you're Captain Spin.

Even so, this still doesn't indicate a trend.

Re:Many eyes make bugs shallow...

[renoX]

>large directories

Large as in with more than 25 files, so no not so large.

As written above, Samba had reported the issue in 2005, but apparently it wasn't handled properly..

Re:Many eyes make bugs shallow...

That's a different bug.

Re:Many eyes make bugs shallow...

[Haeleth]

Fact is, if I run into odd behaviour when testing/using - if the source is available I can read it, I can breakpoint.
I cannot do that with a binary.

Nitpick: you most certainly can use breakpoints without the source code. Having source code makes debugging a million times easier, but it's not absolutely essential.

Of course, you're likely to be violating the EULA by running a non-free program in a debugger in the first place. In many ways, the value of free software is as much the freedom to do what you like with it, as the availability of source code...

Re:Many eyes make bugs shallow...

[dissy]

The shallow bugs argument basically says that if enough people stare at the code, they will find the bugs. Clearly that did not happen here. But it was reported before.. twice!

You can't say reporting it twice means no one ever saw it, since clearly at least three times it was noticed, the first two times when it was reported, then later when the samba devs coded around it after they were ignored by the bsd devs.

In this case, I would say the shallow bugs argument holds up perfectly, and annoying politics let us down.

Re:Many eyes make bugs shallow...

[Jeremy+Allison+-+Sam]

No, we did report it. The answer at the time was "this is allowed by POSIX, deal with it", can be seen in the bug report here :

https://bugzilla.samba.org/show_bug.cgi?id=4715

I did point out that no other POSIX system behaved like that, but that didn't seem to make much difference :-). Eventually I just added a parameter that allowed our open directory cache to be turned off on *BSD. Once it got into the hands of Marc Balmer he took us seriously and fixed the bug.

Jeremy.

Re:Many eyes make bugs shallow...

Why do you think this bug exists in NetBSD? Have you looked at the source?

Re:Many eyes make bugs shallow...

[MobileTatsu-NJG]

This is like saying global warming either does exist because today was the hottest on record, or does not exist because today was the coldest on record. Why are these analogous? Because in both situations, you're only considering one data point, which does not even begin to indicate a trend. If statements like that are annoying, this should be considered before making grandiose claims about Open Source down the road. The higher the pedestal you put it on, the bigger the noise when something comes along to show that it's imperfect.

Re:Many eyes make bugs shallow...

[VGPowerlord]

That's a different bug.

No, it's the same bug. If you'd read TFA and the posts I'd linked to, you'd have noticed that all 3 mention seekdir() and telldir(), in reference to seekdir() not moving to the correct location using the value returned by telldir().

From the link in my previous post titled July 2003 Discussion:

"On FreeBSD, seekdir() doesn't seem to behave as I expect it to."

"On other platforms, the first and second telldir() return the same value.
On the two FreeBSD machines I've tried it on, the first telldir() returns 1
and the second returns 0."

From the link in my previous post titled acknowledged the existance of the bug:

"It seems you're wrong; what follows is a quote from the SUSv3:
'If the most recent operation on the directory stream was a
seekdir(), the directory position returned from the telldir() shall
be the same as that supplied as a loc argument for seekdir().'"

From TFA:

"Samba makes use of telldir()/readir(), seekdir()/readdir() to build an internal cache of (large) directories to speed up directory accesses by CIFS clients (Windows machines)."

"Apparently there are two problems: seekdir() not returning to the position initially retrieved using telldir() and a performance problem."

Re:Many eyes make bugs shallow...

[dwater]

I wonder if one could sue SCO for crappy code?

I mean, a burglar can sue the owner of the property they're burgling for leaving it in a dangerous condition, so why not this too?

That's if it were true, of course.

Re:Many eyes make bugs shallow...

[kesuki]

i find it kind of ironic that the samba developers, rather than finding the code, and fixing it, coded a workaround instead.

I realize, that they got the whole 'we know about this bug and it's not a priority' business, but this guy came a long and fixed the bug... even though it's been know about since 2003, and samba wrote a work around in 2005, and now in 2008 someone finally wrote a fix for it...

what was so special about this code that the samba developers couldn't have just written a patch rather than a work around?

Re:Many eyes make bugs shallow...

[fabs64]

You think this only happens in the open source world? Let me show you what the "defect priority analysis" would look like at my work were we to receive a report about this bug: Reproducible: Yes Frequency of occurrence: Extremely low, only comes manifests for a very rare corner case. Systems known to be impacted: None, systems that have noticed defect previously have already implemented a workaround. Current known impact upon the functionality of the system: None Systems currently using code where defect is present with no impact: All systems accessing a directory Potential negative impact of an incorrect fix: Extremely high, potentially crippling filesystem traversal. Proposed solution: Wait till people stop using DOS filesystems.

Re:Many eyes make bugs shallow...

[dissy]

what was so special about this code that the samba developers couldn't have just written a patch rather than a work around? Well, if you wrote a program with a bug, and I wrote a program that used yours, and i found your bug, what would you expect me to do if i told you about it and you said "that isnt a bug, and we wont be fixing it"?

Why would I write a fix to give to you when I know you wont be adding it to your program at all?

Why would I write it at all? Specifically in this case, its usually considered 'bad' for a user level application to require you to patch your kernel, and only on a certain OS but none of the others. I realize this is done, but no one likes it.
Especially when you can replace 'if you are on bsd, you must patch your kernel' with the current 'you do nothing, the software will figure it out and it will just work'.

The samba team can not force the BSD team to change bits of their software. All the samba team can control is their own code, which they used to code the work around so it would still work, without having to tell bsd users "sorry, a feature of your os (that every other os calls a bug) prevents our software from running". Someone else would patch samba to work around this non-bug 'feature' and then you get the same situation as now.

Of course of the original bsd dev would have dropped his ego and code-political agenda for a minute and just admit it was a bug, none of this would have happened, and it would have been fixed right after it was reported the first time.

Re:Many eyes make bugs shallow...

[Derek+Pomery]

That's a rather weak nitpick.
We had a consistent crasher in the ATI driver when I was doing windows dev.
The most frustrating thing was to breakpoint the crash, dive past our lovely debugged source into incomprehensible graphics driver assembly.
All we could do was send a reproducing testcase to ATI and hope for the best.
It never did get fixed.

Re:Many eyes make bugs shallow...

[kesuki]

"But that's exactly my point, isn't it? The bug was only "visible" through its behavior, not its manifestation in code."

No, actually it was quite easy to identify from it's code. the problem wasn't that it wasn't visible in the code, it was you had to look at the code of 2 different programs to figure out why what was happening was happening. Since the problem was first noticed in very large directories (250,000+ entries) it was hard to reproduce and track what was happening.

but this guy came along and found something out, if you made 28 files, deleted file 25, then seeked file 26 you'd get file 27!

the reason why it always did this is simple, block 25 is the first entry of the second block (24 entries per block) but until this guy had done all this work, figuring out how to reproduce problem (without 250,000 files) nobody had thought of looking at the code of 2 different programs and how they 'didn't work together' it was a really simple rewrite, he just added a 'if called from subcall' function that fixed the automatic skipping of the first entry code.

So really the hard part was looking at 2 pieces of code and how they work together, neither code had a bug, the bug was only triggered when a specific call, called on a piece of code that tried to always skip the first entry of every block.

the annoying thing is that while this bug was 25 years old anyone complaining about it got to play the 'prove that this bug is real' conundrum, and it's really hard if you don't know the 'trick' that this guy found to make it reproducible.

Frankly, this kind of bug is easy to code, you write a function to work a certain way, then a different function calls it and uses it differently than normal, and create a hard to track down bug. with windows, this bug might never get caught, because reproducing it's hard, and Microsoft will just dump the code a few years later, with all the bugs still in tact, for those using an 'unofficially supported' operating system.

With open source, there are very few reasons to abandon old source code, so hard to reproduce bugs (or hard for the people who've noticed the bug) will take the kind of person willing to write programs to try and reproduce the bug to actually pin down where the bug is being triggered, when it's not immediately 'obvious' where in the code the bug is. It would be nice if there were MORE of these pedantic types, willing to spend a couple days messing around with code trying to trigger a bug in a reproducible way..

but unless more people use open source, these pedantic types won't be exposed to the problems that others just gave up on reproducing.

I remember coding old irc scripts 'around' bugs in various versions of mirc, it really annoyed me because those kind of bugs wound up being fixed in later version of mirc, which would break my code, that depended on things working the way i had noticed things worked(regardless of how they were documented)... so eventually i stopped upgrading mirc, and then finally gave up on mirc entirely and then my coding script days ended.

Re:Many eyes make bugs shallow...

[joshv]

That's "scarab" beetle, and don't call me Surly.

Re:Many eyes make bugs shallow...

[kesuki]

"Also, if enough people stare at the code and use it, they will find the bugs that matter."

In this case it's not a matter of staring at code until your eyes bleed, you could stare at the 4.2 BSD code all week and not ever notice how this bug got triggered.

In this case, you have to USE the program, Detect when the bug happens, and then Reproduce the bug. That last part was where everyone else failed.
They could create a program that created and deleted files, and did seeking the nodes, and detect the bug, but then the next time that ran the code, the bug didn't show up, or it showed up in a different place every time.

the lack of consistency was why no one staring at the code could figure out what was happening... looking at the code of a half dozen basic operating system functionality source files without knowing why the problem was happening would have been useless..

Re:Many eyes make bugs shallow...

[Sparr0]

a) large "tooltips" (by which I assume you mean img title attributes) render "properly" instead of truncated in FF3b5

b) truncating title attributes is not a bug

Re:Many eyes make bugs shallow...

Samba actually uses seekdir? Where?

My first guess hearing about this bug was that the actual reason for this problem is that any program doing anything with directories is going to either look up individual entries or read the entire thing, either all-at-once or incrementally, neither of which use would benefit in any way from telldir/seekdir.

Re:Many eyes make bugs shallow...

[XO]

Not exactly - a test case was written that did it in exactly 28 files, and considering that block sizes were significantly smaller back then, it might've actually been even MORE common in old days.

Re:Many eyes make bugs shallow...

[dave87656]

You seem to argue that the BDS developers working on not "quality" developers. Are you suggesting that commercial developers are better?

I've worked for two large commercial development groups. There were some excellent programmers, engineers and thinkers in all of them. But one thing about commercial development work is that it is often limited by financial constraints. Finding bugs doesn't add to the bottom line. When we would finish one software project we were on to the next.

I find that open source developers have a sense of personal responsibility for "their" code and they want to see it perfected.

Re:Many eyes make bugs shallow...

[LS]

Did you even read my post? I quote myself:

enough people stare at the code and USE IT

LS

Re:Many eyes make bugs shallow...

[Chrisq]

Except that the bug had been triggered many times before, seeing as how Samba had code in place to work around it. Which makes me wonder if there will be applications that will break when the bug is fixed. This would not surprise me in the slightest, I have seen really obscure bugs relied on. I worked on a Wordplex system that would hang if you gave the display instructions to roll zero lines of the display up zero lines starting at line zero. We fixed it to do nothing and someone complained that they used this to "lock the system" if someone entered the wrong code too many times!

Re:Many eyes make bugs shallow...

[chrysalis]

The change has already been incorporated to DragonFlyBSD and FreeBSD.

Re:Many eyes make bugs shallow...

[bytesex]

It's all to do with the old perspective of having only small directories.

If you're using a stream, that means that someone will have to fill a pipe/piece of memory somewhere at the call to opendir(). That works, but starts to have an impact when you have very large directories. Also, you risk seeing 'ghost' entries; entries that have been deleted in between the call to opendir() and readdir(). You can defend that by saying it's a transaction; the user 'sees' the directory as it was at the time of creation of the cursor (your DIR*). But then again, that would be only useful if you could do other things during the same transaction. And there is no such mechanism in UNIX.

In the mean time, the whole issue could be fixed by saying that when there are changes to the structure of a directory during an iteration of it, you forfeit your cursor (as you would in any other database like system outside a transaction). Essentially, you would flag the DIR* to become useless. On top of that, of course, you would like to have an exclusive lock on a directory, so you can make sure that those changes can't be made. Either that, or you have to make your filesystem fully transactional.

Sorting is another thing; at opendir() the user must be able to choose offset, limit, field to sort on and search criteria. The WIN32 API went this way a bit, but it didn't go far enough. To expect userland to gobble, match, sort and paginate when the kernel can do it so much better - well, it works in a buffered way for small directories, as I said. But if we want true database-like capabilities on our filesystem (and I know I do) then the spec must be changed. Since all of the calls involved in this refer to process-global resources, you wouldn't necessarily have to change the C-API, you could just extend it.

Re:Many eyes make bugs shallow...

[auric_dude]

Dude, don't dis my lexia.

Re:Many eyes make bugs shallow...

[hostyle]

Sorry Curt :(

Re:Many eyes make bugs shallow...

[sofla]

Thanks for the link, it made for an interesting read. The "allowed by POSIX" argument is amusing given that if you flip the manual page (in the linked POSIX site) over to seekdir it clearly states that seekdir(telldir()) works as the Samba code needed it to. Ah well, at least the fix finally happened three years later.

Re:Many eyes make bugs shallow...

[Devout_IPUite]

I'm quite certain that my anecdotal evidence is sufficient for establishing trends without statistical studies thank you. For one, the bug got fixed, so obviously open source is better. For two, the bug existed so obviously open source sucks. For three, contradiction, so obviously banana sunday!

Re:Many eyes make bugs shallow...

[TheLink]

I judge by developer track record, not by whether some thing is OSS or commercial.

I was in the IT security line for some years, in my experience developers who produce good code, continue to produce good code (and often better). Whereas developers who produce crap, tend to continue producing crap (maybe a bit better after years).

Just look at bugtraq, bug reports, and the sort of bugs that get found, and you'll have a good idea how good the developers are, and what the future holds for the code. Of course with OSS you often can see the mailing lists so that gives you even better insight on how the developers think.

So for example, I have reasonable confidence in the Postgresql developers, and that they will try to do the right thing for the long run.

The Linux kernel bunch seem a lot more "yeehaw cowboy", so it's a good thing the various distros are around, and you can pick a distro that matches your risk aversion levels ;).

As for "personal responsibility", I'm not an OSS developer and I also have a sense of personal responsibility for my code. So far I have had very few bugs reported with the stuff I wrote for the company. I don't actually think I'm a great programmer just my IT security background makes me more paranoid than most coders (hey it's not paranoia when they're really out to get you!), and I'm really lazy, so I try to write/do things as correctly the first time round. Maybe I pick the easy projects too (I stick to using perl and avoid things that require C or C++ if I can). Leaves me a lot more time to post on slashdot ;).

I think my dhcpd is better than the ISC's, but it's closed source so you'll just have to take my biased word for it :). So far people don't seem to complain about it that much. Except the config part, which honestly is not my fault - someone had the bright idea of outsourcing the development of the web config frontend for all our stuff to India (and we're cheaper than the Indians! ). Summary - now some people in other depts actually prefer to use SQL statements to configure our stuff... Sad.

Re:Many eyes make bugs shallow...

[kelnos]

i find it kind of ironic that the samba developers, rather than finding the code, and fixing it, coded a workaround instead. I don't. The Samba guys encountered an incorrect behavior based on user-space code. Who knows how long it would've taken to find the cause of the bug.

And even more important, they would have to code a workaround anyway, to unbreak older BSD systems running Samba.

Re:Many eyes make bugs shallow...

[jknapka]

"many eyes make bugs shallow" is equivalent to the "infinite number of monkeys..." thing. experiencing problems or realize what is wrong... No. The many eyes are filtering existing code, not trying to generate something useful at random. You sound like a creationist.

Re:Many eyes make bugs shallow...

[kesuki]

"Of course of the original bsd dev would have dropped his ego and code-political agenda for a minute and just admit it was a bug, none of this would have happened, and it would have been fixed right after it was reported the first time."

well, it is true they did handle the problem poorly, the bug was reported first by hackers, then by a fellow FOSS development team, and both times the BSD developers wanted code that would reproduce the bug reliably.

But the other thing is though, none of this code was ever really written by any of the Free/Net/Open-BSD developers it was written by the 4.2 BSD guys... and the *BSD guys had never run into the problem(or if they had, they ignored it), so they believed it wasn't a real bug...

the problem is Very Hard to run into, outside of complex server usage... which makes me wonder, how come the yahoo BSD coder guys never ran into the problem? did they code their own code for file management?

Wait... Would you ever hit this?

[ivan256]

Isn't the first entry usually '.'? How often would that be deleted?

Re:Wait... Would you ever hit this?

[ivan256]

Of course, now that I've R'd the FA, I understand that it's the first entry in the block (of which a directory with a sufficient number of files would have multiple), and not the first entry in the directory. Kindly ignore my previous response... Nothing to see here...

Re:Wait... Would you ever hit this?

[TheRaven64]

The first entry in a disk block, not the first entry in a directory. Each disk block is 512 bytes, so you can store around 30 files in there with shortish file names (each stores the name, the inode and a cumulative free space counter). For large directories you have around a one in 30 chance that the deleted file will be the first one in a block. Delete a dozen files from a large directory and there's a pretty large chance you'll hit this bug.

Re:Wait... Would you ever hit this?

[youthoftoday]

an existential philosopher turned empiricist perhaps?

Re:Wait... Would you ever hit this?

[solafide]

If you RTA, you'd see that it's a bug where the first entry in a block is deleted. If a directory spans more than one block, there are multiple first-entries-for-a-block, not just '.'. Thus, in the article's example, in a 28-file directory, deleting file 25 and seeking to file 26 would return file 27.

Re:Wait... Would you ever hit this?

[njcoder]

Hahaha, you were modded insightful and interesting.

Re:Wait... Would you ever hit this?

[Namlak]

Kindly ignore my previous response What previous response?

more proof

...of the superiority of Microsoft.

Re:more proof

[rubycodez]

that's funny, since Microsoft has used gobs of BSD code over the years

Re:more proof

[Keyper7]

Unless you present some proof that this never happened in a Microsoft product, you have nothing.

I'm not saying it did, but you have to take Microsoft's word that it didn't, and no more evidence than that.

I'd rather go with the more transparent option, thank you.

Re:more proof

Woooooooooooooooooooooooooshhhhhh!

The joke flies right over your head at the speed of sound!

Re:more proof

[kabloom]

Of course. Because they keep 25 year old bugs as compatibility features, while we break compatibility and fix them.

Re:more proof

[gnasher719]

Of course. Because they keep 25 year old bugs as compatibility features, while we break compatibility and fix them. Actually, it would be an important consideration before fixing a bug like this to check very carefully whether the fix could reasonably cause problems. Now in this case, the most likely effect other than making no difference whatsoever is that some software that occasionally crashes will crash less often. But it would be conceivable that some software actively works around the problem in a way that causes it to malfunction if the problem is fixed.

Re:more proof

[Fast+Thick+Pants]

Let's take Microsoft's word that it did: Try find "California" < %windir%\system32\ftp.exe

Nothing shady about it either; that's the beauty of BSD code.

Re:more proof

[mserms]

Woooooooooooooooooooooooooshhhhhh!

The joke flies right over your head at the speed of sound!

I think that should be "ba-boom!" rather than "Woooooooooooooooooooooooooshhhhhh!".

the developers probably knew about it

but they had more important things to do. At least until Balmer started throwing chairs.

Re:the developers probably knew about it

Modded Offtopic?

Marc Balmer uncovered the bug.

Marc Balmer confirmed the bug was sitting in the code of all BSDs (including Mac OS X), including a lot of old releases.

Marc Balmer confirmed the bug was already in 4.2BSD, released in August of 1983.

Mildly amusing, so +1 Funny in my book.

Re:the developers probably knew about it

[Cheapy]

At that point they had far more important things to do.

Such as dodging chairs.

They actually do...

After all, someone closed a 25-year bug... how many hidden bugs will remain that way in os/2 warp? windows 95? other proprietary systems?

And sometimes, people who collaborate on a given open-source project are from different parts of the world and not subjected to corporate rules. So when you get creative people with different mindsets and no reason to pull back their punches when they see something wrong, you have quality.

Re:They actually do...

[Goaway]

After all, someone closed a 25-year bug... how many hidden bugs will remain that way in os/2 warp? windows 95? other proprietary systems? Er, this bug was in current versions, too, you know.

Re:They actually do...

And Microsoft tries to keep Win32 bug compatible with previous versions...

Now it's time for a little housekeeping

[rocjoe71]

Will we be hearing alot of "How did that get there?" as versions of BSD get patched up?

That is, wouldn't somebody in the past quarter century have exploited this bug to hide a malicious executable file or two?

Not sayin', just wonderin'...

Re:Now it's time for a little housekeeping

[TheRaven64]

It doesn't let you hide an executable. Something like ls, which iterates over the directory entries, will see the executable. It's only things which maintain an internal cache of directory entries which will have the problem. The 'fix' for Samba was to turn off directory caching and this made all of the files visible again.

Re:Now it's time for a little housekeeping

[hitmark]

i dont think its easy to trigger this reliably enough to use it to hide files.

See? SEE?

[Frosty+Piss]

See? See?

This is the power of Open Source!

With all those eyes looking at the code, stuff like this gets ID'd and fixed LICKITY SPLIT!

(runs and hides)

Re:See? SEE?

[Spy+der+Mann]

No need to run and hide. The only reason the bug's so old is because the OS is that old. And remember that 25 years ago, we didn't have web 2.0.

In comparison, Microsoft has been around for what... 20 years? And who knows what bugs in Windows are there, lurking, just waiting to bite us?

Re:See? SEE?

we don't have "web 2.0" now, because it doesn't exist. if you want to give version numbers that really doesn't have version numbers anyway, we are more like 1.2.

it's nothing more than a bullshit buzzword with no real meaning.

Re:See? SEE?

Is this a good time to make a Mozilla WONTFIX joke?
No?
Alrighty then. /vote yes +1

Re:See? SEE?

[neumayr]

Really?
Buzzwords are not entirely derived of meaning, it's just that they don't convey a clear message, more of an idea. Granted, most of the time, that idea has a lot of different interpretations, making the buzzword nearly meaningless.
But you wouldn't really argue that when someone calls something "Web 2.0", that there's no way to know what is meant, would you?

Re:See? SEE?

> And remember that 25 years ago, we didn't have web 2.0

Huh?

Re:See? SEE?

[driftingwalrus]

In comparison, Microsoft has been around for what... 20 years? And who knows what bugs in Windows are there, lurking, just waiting to bite us? Microsoft was founded in 1988?!

Re:See? SEE?

Marc - has you'n Uncle named Steve?

Re:See? SEE?

[Tyler+Durden]

But you wouldn't really argue that when someone calls something "Web 2.0", that there's no way to know what is meant, would you?

Of course not. But was is meant is, "Watch as I pretend to say something worthwhile."

Re:See? SEE?

"In comparison, Microsoft has been around for what... 20 years?" - by Anonymous Coward on Sunday May 11, @09:01PM & in that 20 yrs., Windows NT-based OS have proven to be the "baby hercules" that toppled the "UNIX TITAN", period...

(OR, is Windows NOT the most used OS on the planet, from home/end user systems, thru clients on departmental LANS, into their SERVERS as well, & ALL THE WAY UP TO MISSION CRITICAL SERVERS APPLICATIONS?)

Come ON, *NIX-based fan - you can come back off the floor now, after having fallen down from the clouds!

Now, I see you are also an A/C like myself (& you're making us A/C's look bad, with that comment man)...

Mainly, because this existence of a bug in BSD for 25 yrs. now is just showing the planet that *NIX is "not above flaws"!

(& the points made in the post above yours, about "we have more people looking @ our 'Open Sores', & thus, it gets patched faster" apparently IS more "F.U.D." from the *NIX camp, the usual attempt @ "propoganda" by any failing party, in most any arena)...

That's b.s. & this thread @ SLASHDOT's JUST ILLUSTRATING IT PLAINLY!

(Any look @ SECUNIA shows that Windows gets LESS PATCHES than LINUX does & its variants, & when viewed in say, a yearly timeframe... NOT just LINUX, this goes in addition to other *NIX's out there in the mix too (since they're ALL *NIX variants, & yes, LINUX IS A UNIX & SO IS MacOS X - *NIX gets more patches as a whole certainly, there IS more errors in it, apparently!).

The problem you *NIX people have, & it killed you before (& Linus Torvalds is smart enough to @ least TRY TO STOP from happening to LINUX, by controlling its core code)? You're all trying to build N-versions of *NIX, instead of 1 SOLID one.

(We should have all had somekind of unified UNIX on our PC's, not Windows, if you think about it - what killed that? The *NIX vendors of 90 diff. kinds of NIX, fighting w/ one another instead of consolidating... you bunch dropped the ball there, bigtime, period!)

What's kicking UNIX's butt (BSD variant too especially) nowadays though?

Ironically - One of your own: LINUX! It @ least has somekind of chance, vs. "UMIX INFIGHTING BETWEEN *NIX VENDORS" (greed)... but, Windows STILL has LINUX by huge margins from home end user systems up thru servers, & certainly supports more peripheral hardwares better & more of them than LINUX does, & Win32 software has more of it out there by far, than Linux does, for any imaginable purpose.

APK

P.S..=> I'm not even sure if ALL the *NIX variants period put together no less, could show a greater % of use, PC-to-Server, than Windows variants do (especially the better/newer ones, like Windows 2000/XP/Server 2003)... but, I doubt it, on the x86 platform (again, the MOST USED HARDWARE PLATFORM there is in personal computers up to servers)... apk

Re:See? SEE?

[Spy+der+Mann]

I was talking about collaborative environments like Sourceforge or berlios (user generated content, remember?), news blogs focused on software bugs, and all those elements that make software developer far much easier than 20 years ago.

Sometimes you need...

Sometimes you need some heavier unit tests just to pick up little bugs like these. Just because everyone assumes code is correct and a few mission critical systems have been working fine on it, doesn't mean some corner case won't blow the world away tomorrow.

Re:Sometimes you need...

[j-pimp]

Sometimes you need some heavier unit tests just to pick up little bugs like these.

Was that flamebait aimed at stirring up responses from all the people that were thinking about looking into unit tests until they got permission from Knuth to not use them in his recent interview? BTW, this bug didn't exactly blow the world away, and this is the sort of heavy load testing that you don't have time to run in your "make tests" phase or your xUnit derived unit testing platform.

BSD is dying!

[Doug52392]

It is official. Netcraft now confirms: *BSD is dying Get over it and move on with your lives.....

Re:BSD is Dying!

[MillionthMonkey]

No, this story proves that BSD is dying because there was a bug in it and no complaints were heard for 25 years.

Re:BSD is Dying!

[Grey_14]

hey sure, and while we're randomly defining things to make stupid meme jokes, how about we define you as a goddamn idiot and therefor in soviet russia, you ARE THE JOKE!

Re:BSD is Dying!

[Doc+Ruby]

How about fuck you?

Anyone with enough competence in BSD to have an opinion about it worth caring about would be able to tell that if BSD isn't defined as a collection of bugs, then BSD isn't dying.

A sense of humor would also suffice instead. Likewise you fail it.

Re:BSD is Dying!

But complaints are heard NOW !
What does this mean ?
Resurrection ?

Re:BSD is Dying!

Paugh! You're just jealous because Linux hasn't been around long enough for the 25-year bugs to surface.

"When you are 25 years old, look this good you will not"

Trac

[extirpater]

Bug tracking software missed this because it's bug #1. lol.

Re:Trac

[v1]

or because it was bug #0 and someone started keeping track of them at #1.

(hate those boundary bugs!)

Re:Trac

[chooks]

I program in FORTRAN, you insensitive clod!

Re:Trac

[Boronx]

I program in Lua, you old fart.

Samba knew, but didn't pass it on?

[quarrel]

The most telling thing in TFA for me was that the bug had been identified by the Samba team and a workaround implemented for Samba.

Surely both the samba communities and the *BSD communities are active enough that this could have been passed on for further investigation by the *BSD crowd? (Sure, samba probably would still need a workaround, particularly given the long uptimes and widespread deployment of *BSDs)

I know nothing of the devs at Samba and *BSD, but seems a bit strange. Perhaps they did try..

Meanwhile, congrats to Marc on fixing a bug. One of the most touted benefits of open source (whatever your license) code.

--Q

Re:Samba knew, but didn't pass it on?

It never takes very long for the BSD zealots to start finger pointing. Yes, folks, BSD had a bug that was there for 25 years that many people knew about and noone bothered to fix, but it is SAMBA's fault for not doing.... what exactly.... to force the theo the rats of the world to acknowledge it? You guys really are shamelessly arrogant.

Re:Samba knew, but didn't pass it on?

Many people did NOT know about the bug otherwise it would have been fixed. You stupid idiotic douche bag.

Re:Samba knew, but didn't pass it on?

[irc.goatse.cx+troll]

I wouldn't pass it on either if it meant having to deal with Theo.

Re:Samba knew, but didn't pass it on?

[Grey_14]

Theo, Is that you?

Re:Samba knew, but didn't pass it on?

[id10ts]

Yes, Samba did pass on what it found and it appears they were promptly shot down by someone on the *BSD side.

The Samba e-mail archives contain a message from over 3 years ago, but it doesn't give attribution to the *BSD source.

The Samba Bugzilla also has a bug reported more recently involving the same issue. Reading through the bug history, you can see there was one FreeBSD dev involved in the bug discussion, and he referenced a prior conversation between Tridge (Samba) and PHK (FreeBSD) where PHK said there was no bug in FreeBSD.

Re:Samba knew, but didn't pass it on?

Even if they did try, Samba would still need the workaround. Not all BSD releases are updated or even have source published.

Re:Samba knew, but didn't pass it on?

no, the you would have been called a hypocrite/asshole

Re:Samba knew, but didn't pass it on?

People like you are the reason why, despite a solid technical foundation, BSD sucks ass. Finger point at Samba all you want. Whine, bitch, moan and complain about other people doing everything except sending you a stripper-gram to inform you of the bug. Your attitude is exactly the reason why so many of us have left BSD behind and moved on to better things.

Re:Samba knew, but didn't pass it on?

[eggnoglatte]

Mod parent up!

Re:Samba knew, but didn't pass it on?

[funky+womble]

"promptly shot down by someone on the *BSD side"

You can't take a single email from a single developer of a single BSD-derived OS and extrapolate that to "the *BSD side" (if there even is such a thing)...

Re:Samba knew, but didn't pass it on?

You can keep your crappy Linsux.

Would this be a "Critical" or "Important?"

[FurtiveGlancer]

If no one has cared enough to fix it for 25 years, I'm guessing this should be rated as "inconsequential."

Must have been a really slow news day at OSNews.

Re:Would this be a "Critical" or "Important?"

[Goaway]

Samba cared enough to implement a workaround.

Old Code

[Frosty+Piss]

One would think that after all these years, Windows source would have leaked, Microsoft being what they are. Everyone knows that your most secret secrets are the first things to leak... And yes, I've seen the "secret MS code" joke.

Re:Old Code

[swb]

Hasn't Windows source code leaked? I seem to recall a leak of either 2000 or XP a couple of years ago, although it wasn't complete and not readily buildable, IIRC.

Re:Old Code

[rubycodez]

windows 2000 and NT source had been leaked to usenet in 2004

Re:Old Code

[irc.goatse.cx+troll]

Windows 2000 & NT4 source code leak
Only 4 years ago.

Re:Old Code

[gweihir]

Indeed. Not surptisingly nobody was really interessted.

Re:Old Code

[dHagger]

The virus-makers were! IIRC there were some virus-outbreaks shortly after the leak, using flaws supposedly found in the leaked code.

Re:Old Code

[EpsCylonB]

http://www.kuro5hin.org/story/2004/2/15/71552/7795

analysis of th win2000 source code

Re:Old Code

The real questions is... Would anyone care if it had been?

It's not like its halflife2 source code or anything.

Re:Old Code

[bogie]

Thanks. I was just about to ask for that. I remember at the time it was a big deal but nothing seemed to come of it. I certainly haven't heard of any of the giant bot nets out there exploiting Windows because of that code.

Perhaps someone could use that out in the open Win2k networking code to fix Vista's POS network code.

GNAA Penis Rocket To The Moon Project

GNAA Penis Rocket To The Moon Project - $5Million Received! - Our Goal: $1 Billion

Dear friends,

We're getting closer!

http://www.gnaa.us/penis-rocket-to-the-moon-project.html

Re:GNAA Penis Rocket To The Moon Project

Why is this not modded funny?

Re:GNAA Penis Rocket To The Moon Project

The link goes nowhere. I'm disappointed.

Re:GNAA Penis Rocket To The Moon Project

[Eco-Mono]

Why haven't I seen a press release about this? You guys are getting lazy.

BSD is Dying!

[Doc+Ruby]

If you define BSD as a collection of bugs, this story proves that BSD is dying.

Must have been a CockRoach.

[arthurpaliden]

After all it had survived for 25 years. Are we sure that it really is dead and did not just scurry away when the light was shined on it?

Re:Must have been a CockRoach.

shone

yeah, sure

[someone1234]

I wonder how it still remained in MacOSX :>

Re:yeah, sure

[AndGodSed]

Excellent point.

This is touted as a slip up (or flaw) in the Open Source model of doing things, yet a proprietary software developer, and one of the largest mind you, failed to spot this completely.

Re:yeah, sure

When OS X 10.0 came out, the Unix stuff was mostly 15 years old.
Next/Apple just copied a bunch of stuff, and nobody has been maintaining it until recently.

Re:yeah, sure

[Lars+T.]

Gee, I have been waiting, and here it is: the "Apple doesn't fix bug for 25 years, OpenSource fixes it 25 minutes after it is found" comment.

Well, maybe nobody at Apple ever even used the code with the bug? It's not like they wrote it.

Can Marc look at ...

Can Marc look at that file dialog in GNOME? That's been around for a while as well ...

After this long

[Hawkeye477]

After this long would this not be considered a feature? :)

Re:After this long

[Ibn+al-Hazardous]

Obviously, that was the approach taken by Samba (thus the workaround). What does this imply?
That too long time messing with MS products/protocols makes you treat all software as if it works like MS software (ie it makes you a bit soft in the head).

Should it be fixed?

[CaroKann]

Considering how old this bug is, and how much work-around code probably exists as a result, I wonder how many new bugs this bug fix will create.

Re:Should it be fixed?

[iamhigh]

Yeah, imagine if you had, like 90% market share, and your OS supported everything from 8 bit games to 64 bit collaborative applications... then it would be a real bitch to fix stuff.

Re:Should it be fixed?

[irc.goatse.cx+troll]

Most workarounds involve disabling caching. As a result they could re-enable caching for a performance increase, but leaving it off should have no iller effects with the patch than without.

Re:Should it be fixed?

[andi75]

What the parent is hinting at is that Microsoft knows about a LOT of bugs in their operating system, but decided not to fix them, because that would break many many application already working around these bugs.

Re:Should it be fixed?

I just read on the OpenBSD Journal discussion of the bug, a post from Otto that suggests this bug even made it into the POSIX standard:

The single Unix standard talks about that on some types of filesystems seekdir(3) cannot work:

"The original standard developers perceived that there were restrictions on the use of the seekdir() and telldir() functions related to implementation details, and for that reason these functions need not be supported on all POSIX-conforming systems. They are required on implementations supporting the XSI extension.

One of the perceived problems of implementation is that returning to a given point in a directory is quite difficult to describe formally, in spite of its intuitive appeal, when systems that use B-trees, hashing functions, or other similar mechanisms to order their directories are considered. The definition of seekdir() and telldir() does not specify whether, when using these interfaces, a given directory entry will be seen at all, or more than once."

So it seems like POSIX says, "this function is not guaranteed to work". Sounds like people were aware of the problem for a long time.

Re:Should it be fixed?

[Guy+Harris]

So it seems like POSIX says, "this function is not guaranteed to work".

Yes.

Sounds like people were aware of the problem for a long time.

People were aware that the notion of a directory being a sequence of entries, with each entry having a position such that you can get the position of an entry and later seek to that position and have the next read return that entry even if changes were made to the directory in the interim, was wrong.

That doesn't mean that they were just trying to avoid having the standard imply that particular bug was fixed - it means that they were trying to avoid making a promise that some reasonable implementations of directories can't keep even if those implementations have no bugs.

Re:Should it be fixed?

[hawk]

See, it's not a bug, it's a feature!

hawk, a veteran of testing early PC clones, which had to crash under the same circumstances as the PC did.

Re:Should it be fixed?

[Just+Some+Guy]

Welcome back. Semester's over?

Re:Should it be fixed?

[hawk]

Actually, I haven't been teaching for more than a year.

Litigating full time, of all things. But time for frivolity has been so tight . . .

Known defect?

[oso]

What really intrigues me is that this had been discovered, years earlier, by the Samba folk.
Did the Samba folk not tell the BSD folk of the issue?

Please tag "stumbled"

It is not coincidental that I happened to find this page on stumbleupon hours before it appeared on the slashdot front page. Is there such a grave deficiency of technology news that slashdot has to rely on social bookmarking sites to generate news-worthy material??

Re:Please tag "stumbled"

[sveard]

This is not CNN. News isn't supposed to appear only minutes after breaking. Who cares if it takes some time (only a few hours in this case!) for news to propagate across websites.

bug blassification, side effects and Insults!

[JonTurner]

3 thoughts on this:

1. I think this bug would be classified "archeological".

2. The question now is what happens to the Samba work-around patches. Now that the bug is fixed, do the patches cause a side-effect (i.e. "a new bug")?

3. This gives rise to a new meme of nerd insults. "You call yourself a programmer? Why I've fixed bugs older than you!" Of course, only one man is entitled to use that line.

Re:bug blassification, side effects and Insults!

[FurtiveGlancer]

1. Excellent point! Wish I'd thought of it before submitting.

2. It's still a feature that now will need remediation. Argues well against using work-arounds for long periods, rather than fixing the root problem. Think ITIL or Y2K.

3. Actually others have solved older bugs, they just haven't had a slashdot article with their names in light. Think COBOL/FORTRAN.

Re:bug blassification, side effects and Insults!

[flyingfsck]

Hmm, I fixed a dumb Direction Flag bug in an Intel C compiler in 1989. That same bug was recently recreated (and fixed a few weeks later) in GCC.

If the GCC guys had access to the old Intel source code, would thay have made the same mistake?

Re:bug blassification, side effects and Insults!

[rishistar]

1. I think this bug would be classified "archeological".

Only if the bug was found encased in amber.

Re:bug blassification, side effects and Insults!

[felix9x]

2. The question now is what happens to the Samba work-around patches. Now that the bug is fixed, do the patches cause a side-effect (i.e. "a new bug")? The Samba people can easily remove their workaround at this time. Whats more of a concern is that this may break any number of thousands of systems when the BSD based OS on which they run are upgraded. Usually one does not upgrade the OS on which a legacy app is running on but since this fix is so recent relatively new code may be effected. People should go an audit their use of telldir and seekdir if they run on BSD.

Excuses Excuses...

[wolferz]

I see a lot of people making excuses for this bug not being fixed sooner. If this happened to Windows the comments would be over flowing with "MS SUCKS" and "Switch to Linux/BSD" comments. Yet, when it happens to BSD the comments are more along the line of "this is no big deal..." and "so what... it still got fixed didn't it?"

Hi Kids! Today's word is: Hypocrisy!

I don't disagree that open source is less prone to have bugs that dont get fixed for long periods of time. Nor do I disagree that open source bugs are easier to find fixes for. However... this seems to indicate that the difference between open source and closed source in this regard is not as big as open source proponents have been trying to claim. All the excuses and explanations in the world wont change that this is EXACTLY what open source proponents have been saying wouldn't happen with open source.

Re:Excuses Excuses...

[Paradise+Pete]

All the excuses and explanations in the world wont change that this is EXACTLY what open source proponents have been saying wouldn't happen with open source.

Nobody's saying that - that would be retarded. What's said is that there would be fewer undiscovered bugs, and more rapid and complete fixes. Notice how he began his investigation by looking at the SAMBA source code. You might also note that he was able to look into the second issue as well, making both SAMBA and FreeBSD a tiny bit better along the way.

If this fix had happened at a closed shop the biggest difference is that you probably wouldn't be reading about it.

Re:Excuses Excuses...

Hi Kids! Today's word is: Hypocrisy!

From reading your post and the other reply, I'd say that today's word, kid, is Strawman, narrowly edging out clueless.

This couldn't have happened with Linux...

[Baumi]

...because currently, no Linux bug could possibly be older than roughly 17 years. :-)

Re:This couldn't have happened with Linux...

[AlgorithMan]

except for the code parts from Xenix (which is 28 years old) that was renamed to "SCO Unix" in 1989, which was - as we all know - stolen and illegally put completely into linux... (we have a suitcase full of evidence!!!)

Re:This couldn't have happened with Linux...

[Nimey]

In other news, SCO stock has been sitting at $0.10 for days with minimal volume.

http://finance.yahoo.com/q?s=SCOXQ.PK

Re:This couldn't have happened with Linux...

[driftingwalrus]

except for the code parts from Xenix (which is 28 years old) that was renamed to "SCO Unix" in 1989, which was - as we all know - stolen and illegally put completely into linux... (we have a suitcase full of evidence!!!) And, no, you may not look within the Evidentiary Suitcase!

Re:This couldn't have happened with Linux...

[tygt]

It would be interesting to see if Linux has this bug as well.

If so, is it due to parallel bug creation? Or copying of code?

Re:This couldn't have happened with Linux...

[Anonymuous+Coward]

I've hit a similar bug when trying to do a seekdir/telldir on a NFS filesystem.

(both the NFS server and client were linux machines).

Re:This couldn't have happened with Linux...

[Anonymuous+Coward]

And telldir/seekdir are a PITA to implement on any FS where directories aren't just regular files (formatted as a list of dir entries).

I think those interfaces should be deprecated, rather than forcing people to do horrible things under the hood, and give the false impression that this kind of stream-like approach to directories still makes any sense.

Re:This couldn't have happened with Linux...

[Brandybuck]

Hmmm, ripe for a takeover! Too bad they got de-listed, or I could have bought it on my credit card, and we could all have had a party!

-1 Offtopic

What the fuck is slashdot doing popping up "please take a survey" windows on me?

Re:-1 Offtopic

[Tranzistors]

Aren't you, by any chance, running windows ;)

Re:-1 Offtopic

[Anne+Thwacks]

I had a take-a-survey popup, and I am running FreeBSD. Perhaps its the revenge of the bug!

Re:-1 Offtopic

No, Firefox on Mac OSX Leopard :(

Long live the Code

[GuldKalle]

Am I the only one who thinks it's quite impressive to have 25 year old code still being used and employed on new systems?

Re:Long live the Code

[martin-boundary]

Shh. Don't tell anyone:

The current GNU Emacs codebase is at least 23 years old.

The current vi codebase goes back about 32 years.

One reason why those editors are so great is that they haven't been scrapped and rewritten from scratch every five years, so the features have been accumulating.

Re:Long live the Code

[Rod+Beauvex]

Don't we criticize another company for this practice? :D

There's a bug in a piece of Microsoft software

[mr_lizard13]

that's 23 years old.

It's called Windows.

Another common old bug

[Solandri]

Is the MPEG Chroma bug. That was created by someone who wrote one of the original MPEG decoders that was eventually sold/distributed to most of the companies making the first DVD players (pre-1993). This one just won't go away either - initially most of the DVD manufacturers refused to acknowledge it even existed (probably because they didn't want to recall millions of DVD players with non-upgradeable firmware). I still see it every now and then on TV (indicating one of the upstream broadcasting companies is still using equipment afflicted with the bug). I notice it most often when diagonal red lines end up staircased like they're poorly interlaced (see pictures in the above link).

Re:Another common old bug

[pinkfloydhomer]

Yes. The chroma bug lives on. Even in HD-DVD and Blu-ray players :( /David

Re:Another common old bug

[NoMaster]

Interesting ... I knew of this bug, but not the related "alternating flag" problem. Not surprising, really, since it would seem to occur only with certain encoders and 3:2 NTSC content.

It certainly explains why the Faroudja deinterlacers / upsamplers are/were generally considered to be the best, despite showing no / minimal advantages over most others when it came to PAL content. I always wondered about that...

Re:Another common old bug

1993?

http://www.dvdfile.com/news/special_report/features/timeline/timeline.htm

Microsoft's response

Steve Ballmer responded saying that not only does Windows have older and more easily accessable than BSD, but that it also holds a patent on leaving bugs unpatched for a significant amount of time.

I like the "balmer" tag...

I like the "balmer" tag...

As in "one who balms"?

Or, some Microsoft basher that can't spell?

Seems like a strawman arguement to me

[shis-ka-bob]

Newton's Law of Gravitation doesn't correctly predict the precession of perihelion of Mercury, so perhaps we should stop teaching Newtonian mechanics. If a law isn't perfect, it can still have value.

I don't believe that many in the open source community dogmatically accept the shallow-bugs arguement as a universally applicable rule of software development. It seems to me that any reasonable person would agree that

• Not all eyeballs are equal. Theo and Linus are vastly better at code reviews than the average Slashdot reader, for example. So, there is a wide range of eyeball quality.
• Bugs have a wide distribution of subtlety. The bug in this article seems to be high on the subtlety scale.
• The 'with enough eyes all bugs are shallow' statement is universally recoginized as simplification. For example, ESR states that a better statement is:

  What is true is that (1) with many eyes, shallow bugs get caught very quickly, and (2) that the more eyes there are, the more likely it is that some member of the group has sufficiently penetrating vision to catch the deeper-swimming bugs.

So, yes, if you start with the sound bite version of a 'law' and apply it to a statistical anomaly, you can 'disprove' the law. We now agree that the sound bite doesn't perfectly correlate with 'real world' So, you are now forced to decide if the relationship expressed in the 'law' is uncorrelated (bug fixing uncorrelated with eyeballs) , anti-correlated (eyeballs hinder bug fixing) or correlated (eyeballs often help bug fixing). I believe that the law is still a good rule of thumb and that the correlation between 'many eyes' and 'bug get found' is strong.

OMNI learns the first rule of Slashdot

[OMNIpotusCOM]

I know this... because Tyler knows this

One real advantage of OSS

[Britz]

No matter what legacy app you are using. If it is open source, you could fix it, if the bugfix would break it. Or you could pay someone to fix it for you.

Need a new system call to really fix this.

[m.dillon]

The problem is that the stdio directory scanning routines cache multiple directory entries with a single getdirentries() system call, but then may try to 'seek' into the middle of that buffer later on.

Any filesystem based on a non-linear-file directory format, such as a B-Tree, will simply never produce consistent offsets or indices within such a buffer.

The only way to *REALLY* fix this is to add a cookie field to the filesystem-independant dirent structure (and if your BSD isn't using a filesystem-independant dirent structure, it needs to be first fixed to do that). lseek()ing to a directory cookie works just fine, and always will (or at least will far more robustly then trying to scan a re-cached buffer from getdirentries()).

When DragonFly went to a filesystem-independant dirent structure I very stupidly only added ~40 reserved bits to the dirent structure, instead of the 64 we need to properly implement per-entry directory cookies. I'm still pissed at myself for that gaff.

In anycase, a per-entry directory cookie effectively solves the problem. The only other way to get such cookies, if it can't be embedded in the dirent structure, is to create a new system call similar to getdirentries() but which also populates an array of directory cookies. FreeBSD and DragonFly have kernel implementations of readdir which supply per-entry directory cookies so it is really just a matter of creating the new system call and then making libc use it.

-Matt

Lurch's Corollary

[Max+Threshold]

"Given a large enough beta-tester and co-developer base, almost every problem will be characterized quickly and the fix will be obvious to someone."

Lurch's Corollary: Even after a hundred detailed bug reports have been posted on the official forums, Blizzard still won't fix it.

Demonstration of the bug

[ChrisDolan]

The Perl program below demonstrates this bug. Tested only on OS X...

#!/usr/bin/perl -w
use strict;
use File::Temp qw(tempdir);
use File::Slurp qw(write_file read_dir);
use Test::More tests => 9;
 
# Create some temp files
my $dir = tempdir(CLEANUP => 1);
write_file("$dir/one", '1');
write_file("$dir/two", '2');
write_file("$dir/three", '3');
 
# Confirm that the directory contains the files
is_deeply([read_dir($dir)], ['one', 'three', 'two']);
 
# Open a directory handle and read through all files
opendir(my $dirh, $dir);
is(scalar readdir($dirh), '.');
is(scalar readdir($dirh), '..');
my $file1 = readdir($dirh);
is($file1, 'one');
my $file2 = readdir($dirh);
is($file2, 'three');
# Record the position of the second file
my $pos2 = telldir($dirh);
my $file3 = readdir($dirh);
is($file3, 'two');
 
# Rewind to the second file's pos, and confirm that the next read is the third files
seekdir($dirh, $pos2);
is(scalar readdir($dirh), $file3);
 
# Delete the first file and try the above test again. It *should* have the same results
ok(unlink("$dir/$file1"));
seekdir($dirh, $pos2);
is(scalar readdir($dirh), $file3);
 
closedir($dirh);

The output of the program is:

% perl bsdbug.pl
1..9
ok 1
ok 2
ok 3
ok 4
ok 5
ok 6
ok 7
ok 8
not ok 9
# Failed test at bsdbug.pl line 30.
# got: undef
# expected: 'two'
# Looks like you failed 1 test of 9.

Don't click that link!!!

[Spy+der+Mann]

If you're going to work in Open Source projects related to Operating Systems, stay away. The dreaded "trade secrets" accusation could ruin your whole career.

Here is why

[Solr_Flare]

BSD and the *nixes were designed to be simple, effective, modular operating systems. As long as you have the drivers and know how, you can easily port them over and install them on a variety of hardware. Then, thanks to their modular nature, you can then plug in all the extra bells and whistles you need for your particular system and go to town.

That is why they are still around and still popular. They are K.I.S.S., work as they are supposed to, and the modular code that is plugged into them can just be sloughed away when it becomes out dated, and newer, better code plugged in to modernize the OS as you go.

That's also why Windows has had so many problems over the years. Windows was designed to be everything you need in a single package. That means everything is all tied up together. So, unlike BSD and the *nixes, when part of the OS becomes out dated, MS can't just unplug the old stuff and plug in new stuff. It's all interlinked from the ground up. That means a large portion of development time getting is spent fixing bugs caused by new additions, which then cause even more problems down the line when you go to update again. It also makes it bloated as legacy code ends up stuck in the mix because without it the patched together additions wouldn't function right.

And, unfortunately for MS, their market dominance is based on the windows "feel" being familiar and backwards compatibility. If they could, I'm sure they'd re-write windows from the ground up, but now they are in a catch 22 where doing so might significantly kill their market share.

I'm guessing Bill and company sometimes look back and kick themselves for not having the guts to go for broke and re-do the OS from the ground up for Windows XP. Because, back then MS was still king, Apple was at its low point with a very small and stagnant market share, and the *nixes were still primarily a hard core enthusiast hobby. Today, if MS were to completely change Windows, they'd probably lose a significant amount of market share to a variety of alternatives.

Re:Here is why

[Arcko]

monolithic kernel

microkernel

OpenBSD is good at fixing this kind of bug

[chrysalis]

This is not the first time the OpenBSD time does an excellent job at finding obscure bugs that were lying around for one or two decades in every BSD derivative. Congratulations !

BSD

[slyborg]

Bugs Slowly Decomposing

orly?

that's longer than microsoft!

Extremely complex systems cannot be perfect.

I am astounded that some people are claiming that this shows OSS does not work, BSD sucks, etc.

Operating Systems are extremely complex and created by man. It is therefore impossible for any of them to be absolutely perfect.

For a bug to be hidden for 25 years (the bug itself and not the symptom), it would have to be obscure and occur only in fringe cases. Well, this bug was obscure and only occurs in fringe cases!

If this were happening in closed source software, the bug would be near the bottom of priorities, since it only occurs under rare conditions. Nobody will bother going to the trouble of analyzing the binary, so to be fixed it would need to be taken seriously by the company behind to closed code.

In this OSS case, it only had to be taken seriously by one talented person.

BSDi and Apple didn't find it. Some person who was empowered with the code being open found it and fixed it. In fact, this fix to Apple's OSX, comes courtesy of the O in OSS.

Proof that OSS works, from one of the oldest OSS bases around. You would expect a bug to be pretty obscure in such old OSS code and that is exactly what this bug is. Is it any wonder that the BSD's are so incredibly stable?

Other UNIX's

Any chance this bug might be in AIX, HPUX, or Solaris? Just curious. Or did they fix it and not give it back!