Re: [PATCH v6 00/17] Fix 'notmuch new' atomicity issues

Subject: Re: [PATCH v6 00/17] Fix 'notmuch new' atomicity issues

Date: Fri, 30 Sep 2011 11:21:38 +0200

To: Austin Clements

Cc: notmuch@notmuchmail.org

From: Sebastian Spaeth

On Thu, 29 Sep 2011 11:01:47 -0400, Austin Clements <amdragon@MIT.EDU> wrote:
> Quoth Sebastian Spaeth on Sep 28 at  6:36 pm:
> > db.find_message_by_filename("moo")
> > Internal error: Failure to ensure database is writable
> > (lib/directory.cc:100).

> It appears that looking up a directory requires a writable database
> because notmuch will try to *create* a database document for the
> directory if one doesn't already exist.  This is clearly wrong
> behavior for a "find" function.

First of all, I consider libnotmuch exiting, taking python down, an
outright bug. So we should modify this case to return:
NOTMUCH_STATUS_READ_ONLY_DATABASE

so I can at least give some sensible error than having an angry mob run
with pitchforks towards me.

Ideally, we don't need READ-WRITE dbs for the find :-)

As it is, the same issue happens with the
notmuch_database_get_directory call, which should be protected in the
same manner (and probably has the same root cause). It is debatable
whether get_directory should be creating a directory on demand, I guess,
but it should never crash.

I have documented this in the python bindings, so it's not super urgent.
But it's dangerous and wrong nonetheless.

Sebastian

• Previous message (by thread): Re: [PATCH v6 00/17] Fix 'notmuch new' atomicity issues

Thread:

• Austin Clements—[PATCH 00/10] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
  • Austin Clements—[PATCH 01/10] test: Test atomicity of notmuch new. [inbox, notmuch::pushed, unread]
    • Austin Clements—[PATCH 01/10 v2] test: Test atomicity of notmuch new. [inbox, notmuch::pushed, unread]
  • Austin Clements—[PATCH 02/10] new: Don't loose messages on SIGINT. [inbox, notmuch::pushed, unread]
  • Austin Clements—[PATCH 03/10] new: Defer updating directory mtimes until the end. [inbox, notmuch::pushed, unread]
  • Austin Clements—[PATCH 04/10] lib: Make _notmuch_message_sync capable of deleting a message. [inbox, notmuch::pushed, unread]
  • Austin Clements—[PATCH 05/10] lib: Indicate if there are more filenames after removal. [inbox, notmuch::pushed, unread]
  • Austin Clements—[PATCH 06/10] lib: Add API's to find by filename and remove a filename from a message. [inbox, notmuch::pushed, unread]
  • Austin Clements—[PATCH 07/10] new: Use the new filename removal API. [inbox, notmuch::pushed, unread]
  • Austin Clements—[PATCH 08/10] new: Synchronize maildir flags eagerly. [inbox, notmuch::pushed, unread]
  • Austin Clements—[PATCH 09/10] lib: Add notmuch_database_{begin,end}_atomic. [inbox, notmuch::pushed, unread]
  • Austin Clements—[PATCH 10/10] new: Wrap adding a message in an atomic section. [inbox, notmuch::pushed, unread]
  • Austin Clements—Re: [PATCH 00/10] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
    • Austin Clements—Re: [PATCH 00/10] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
      • Austin Clements—Re: [PATCH 00/10] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
        • Carl Worth—Re: [PATCH 00/10] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, signed, unread]
          • Austin Clements—Re: [PATCH 00/10] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
            • Carl Worth—Re: [PATCH 00/10] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, signed, unread]
              • Austin Clements—Re: [PATCH 00/10] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
          • Austin Clements—[PATCH v6 00/17] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 02/17] test: Report test failures from test_expect_* [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 03/17] lib: Add missing status check in _notmuch_message_remove_filename. [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 04/17] test: Test atomicity of notmuch new. [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 05/17] new: Don't lose messages on SIGINT. [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 06/17] new: Defer updating directory mtimes until the end. [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 07/17] lib: Add notmuch_database_{begin,end}_atomic. [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 08/17] lib: Add support for nested atomic sections. [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 09/17] lib: Indicate if there are more filenames after removal. [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 10/17] lib: Remove message document directly after removing the last file name. [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 11/17] lib: Add an API to find a message by filename. [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 12/17] lib: Wrap notmuch_database_add_message in an atomic section. [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 13/17] new: Cleanup. Put removed/renamed message count in add_files_state_t. [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 14/17] new: Cleanup. De-duplicate file name removal code. [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 15/17] new: Synchronize maildir flags eagerly. [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 16/17] new: Wrap adding and removing messages in atomic sections. [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 17/17] lib: Improve notmuch_database_{add, remove}_message documentation. [inbox, notmuch::pushed, unread]
            • Austin Clements—[PATCH 01/17] test: Fix message when skipping test_expect_equal* tests [inbox, notmuch::pushed, unread]
            • Austin Clements—Re: [PATCH v6 00/17] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
            • Austin Clements—Re: [PATCH v6 00/17] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
              • Austin Clements—Re: [PATCH v6 00/17] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
              • Austin Clements—Re: [PATCH v6 00/17] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
                • David Bremner—Re: [PATCH v6 00/17] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
                  • David Bremner—Re: [PATCH v6 00/17] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
                    • Austin Clements—Re: [PATCH v6 00/17] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
                      • David Bremner—Re: [PATCH v6 00/17] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
                        • Austin Clements—Re: [PATCH v6 00/17] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
                          • David Bremner—NEWS for 0.9 [inbox, notmuch::pushed, unread]
                            • Ali Polatel—Re: NEWS for 0.9 [inbox, notmuch::pushed, signed, unread]
            • Sebastian Spaeth—Re: [PATCH v6 00/17] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, signed, unread]
              • Austin Clements—Re: [PATCH v6 00/17] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, unread]
                • Sebastian Spaeth—Re: [PATCH v6 00/17] Fix 'notmuch new' atomicity issues [inbox, notmuch::pushed, signed, unread]