-
Notifications
You must be signed in to change notification settings - Fork 544
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[neighorch] Replace hasNextHop() asserts with .at() #1894
base: master
Are you sure you want to change the base?
Conversation
* Replaced occurences of assert(hasNextHop()) with .at() calls to avoid bugs in release Signed-off-by: Alexandru Banu <v-albanu@microsoft.com>
How to simulate this issue?. We don't want to crash the process if the entry does not exist. Agree that the assert is a no-op, but if you prefer, you check for |
That would work too, along with an error log at least. The way I see it is that as long as there isn't an external factor that would cause the code to misbehave, I'd rather have the daemon crashing as it means there's some faulty code, as otherwise it may hide the problem. That's pretty much how I came across this no-op assert issue - I was writing some new code and while testing the code it misbehaved without any obvious reasons. It took a while to figure out that my code was doing something wrong, which would have been easier to diagnose if it crashed straight away. If you do not want the daemon to that non-fault tolerant, I can change the code as you suggest, along with an error log for easier diagnose. |
This is a legacy code and has been working so far. I'm still not sure how you simulated in the normal flow. Prefer to keep it as it is. If you've a sequence to create the failure, let me know. |
Didn't encounter it in a normal flow. I encountered it when writing some new code (for MPLS) where I was adding/removing new next hops but there was a bug in the code which was trying to remove MPLS next hops that weren't added yet. I'll change the code as you suggested. |
@prsunny Can you please check the updates and let me know if it's okay with you? |
@prsunny Could you re-review please? |
@prsunny could you have another look at this, following Alex's changes? |
bugs in release
Signed-off-by: Alexandru Banu v-albanu@microsoft.com
What I did
I've changed
assert(hasNextHop())
calls withmap::at()
calls.Why I did it
When the Debian package is being built, the asserts will be disabled and
map::[]
calls will create a new element in the map if it doesn't already exist. To prevent such bugs, it's better if we usemap::at()
calls which will throw an exception, providing theassert()
benefits in production releases.How I verified it
Enforced such a bug in the code, making sure the UTs error out because of the thrown exception, then removed that piece of code.
Details if related