[llvm] r312582 - Revert "[Decompression] Fail gracefully when out of memory"
Kostya Serebryany via llvm-commits
llvm-commits at lists.llvm.org
Fri Sep 8 13:24:03 PDT 2017
>
> I'm not sure I understand what you mean.
>
> It seems unfortunate to me to build fixed memory limits into programs -
> it's nice if they scale up with bigger inputs and more memory on the
> machine to do more of whatever it is they do - only limited by the memory
> available on the machine, not some fixed limit in the program.
>
> If this means making programs robust to allocation failure (failing
> gracefully rather than 'crashing') for them to be fuzzable - that seems, to
> me at least, an OK tradeoff.
>
This is subtle, but let me try again.
1. IMHO any code that tries to recover from malloc (or new!!) returning
nullptr is much more complicated than adding an artificial limit as a flag
(by default the flag could be arbitrarily large).
It's also much harder to test.
2. malloc is not guaranteed to return nullptr even in cases when there is
actually not enough memory. It may instead return something backed by swap
and this can easily kill your machine.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.llvm.org/pipermail/llvm-commits/attachments/20170908/16dd52fb/attachment.html>
More information about the llvm-commits
mailing list