path.d: add overflow checks

[WalterBright]

No description provided.

[WalterBright]

This uncovered a latent bug, too. errno wasn't being set.

[schveiguy]

Shouldn't this check come inside the if clause above? I mean, I didn't think errno had any specified meaning if your return from the syscall was 0. It's always "if this returns nonzero, check errno".

[WalterBright]

The idea is to have a "not enough memory" error result in increasing the memory size, and that is different from some other error.

[quickfur]

ping @WalterBright

Can we move forward with this PR please?

[MetaLang]

I was going to leave a comment about how there should be an assert message, but is the message even printed when using assert(0)?

[JackStouffer]

yes

[jmdavis]

The message is printed if not built with -release, because in that case, assert(0) is compiled in like any assertion would be and throws an AssertError. However, with -release, when assertions are compiled out, it becomes a HLT instruction, and there is no message.

[MetaLang]

Is there a better solution here than just halting the program when there's an overflow? We're talking about people's programs potentially crashing and there being no indication as to what happened.

[JackStouffer]

Well, you could throw an exception, or you could throw a static error singleton as Andrei has proposed before. Both come with their own problems.

[JackStouffer]

Andrei kind of halted Walter's addition of overflow checks with his checked int module because he believed that was the right way to do things. I don't really see why these need to be stopped in the mean time though