upstream/mercurial-mirror Files · rust/chg/src/attachio.rs

rust-cpython: mark all PyLeaked methods as unsafe...

rust-cpython: mark all PyLeaked methods as unsafe Unfortunately, these methods can be abused to obtain the inner 'static reference. The simplest (pseudo-code) example is: let leaked: PyLeaked<&'static _> = shared.leak_immutable(); let static_ref: &'static _ = &*leaked.try_borrow(py)?; // PyLeakedRef::deref() tries to bound the lifetime to itself, but // the underlying data is a &'static reference, so the returned // reference can be &'static. This problem can be easily fixed by coercing the lifetime, but there are many other ways to achieve that, and there wouldn't be a generic solution: let leaked: PyLeaked<&'static [_]> = shared.leak_immutable(); let leaked_iter: PyLeaked<slice::Iter<'static, _>> = unsafe { leaked.map(|v| v.iter()) }; let static_slice: &'static [_] = leaked_iter.try_borrow(py)?.as_slice(); So basically I failed to design the safe borrowing interface. Maybe we'll instead have to add much more restricted interface on top of the unsafe PyLeaked methods? For instance, Iterator::next() could be implemented if its Item type is not &'a (where 'a may be cheated.) Anyway, this seems not an easy issue, so it's probably better to leave the current interface as unsafe, and get broader comments while upstreaming this feature.

Gregory Szorc - - Load All Authors

File last commit:

r44270:ce088b38 default


                r44689:e960c30d

default

Download file

             attachio.rs
        
                    114 lines
            
             | 3.7 KiB
            
                | application/rls-services+xml
            
             |
                RustLexer
            
             / rust / chg / src / attachio.rs
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

      // Copyright 2018 Yuya Nishihara <yuya@tcha.org>

      //

      // This software may be used and distributed according to the terms of the

      // GNU General Public License version 2 or any later version.

      //! Functions to send client-side fds over the command server channel.

      use futures::{Async, Future, Poll};

      use std::io;

      use std::os::unix::io::AsRawFd;

      use tokio_hglib::codec::ChannelMessage;

      use tokio_hglib::protocol::MessageLoop;

      use tokio_hglib::{Client, Connection};

      use super::message;

      use super::procutil;

      /// Future to send client-side fds over the command server channel.

      ///

      /// This works as follows:

      /// 1. Client sends "attachio" request.

      /// 2. Server sends back 1-byte input request.

      /// 3. Client sends fds with 1-byte dummy payload in response.

      /// 4. Server returns the number of the fds received.

      ///

      /// If the stderr is omitted, it will be redirected to the stdout. This

      /// allows us to attach the pager stdin to both stdout and stderr, and

      /// dispose of the client-side handle once attached.

      #[must_use = "futures do nothing unless polled"]

      pub struct AttachIo<C, I, O, E>

      where

          C: Connection,

      {

          msg_loop: MessageLoop<C>,

          stdin: I,

          stdout: O,

          stderr: Option<E>,

      }

      impl<C, I, O, E> AttachIo<C, I, O, E>

      where

          C: Connection + AsRawFd,

          I: AsRawFd,

          O: AsRawFd,

          E: AsRawFd,

      {

          pub fn with_client(

              client: Client<C>,

              stdin: I,

              stdout: O,

              stderr: Option<E>,

          ) -> AttachIo<C, I, O, E> {

              let msg_loop = MessageLoop::start(client, b"attachio");

              AttachIo {

                  msg_loop,

                  stdin,

                  stdout,

                  stderr,

              }

          }

      }

      impl<C, I, O, E> Future for AttachIo<C, I, O, E>

      where

          C: Connection + AsRawFd,

          I: AsRawFd,

          O: AsRawFd,

          E: AsRawFd,

      {

          type Item = Client<C>;

          type Error = io::Error;

          fn poll(&mut self) -> Poll<Self::Item, Self::Error> {

              loop {

                  let (client, msg) = try_ready!(self.msg_loop.poll());

                  match msg {

                      ChannelMessage::Data(b'r', data) => {

                          let fd_cnt = message::parse_result_code(data)?;

                          if fd_cnt == 3 {

                              return Ok(Async::Ready(client));

                          } else {

                              return Err(io::Error::new(

                                  io::ErrorKind::InvalidData,

                                  "unexpected attachio result",

                              ));

                          }

                      }

                      ChannelMessage::Data(..) => {

                          // just ignore data sent to uninteresting (optional) channel

                          self.msg_loop = MessageLoop::resume(client);

                      }

                      ChannelMessage::InputRequest(1) => {

                          // this may fail with EWOULDBLOCK in theory, but the

                          // payload is quite small, and the send buffer should

                          // be empty so the operation will complete immediately

                          let sock_fd = client.as_raw_fd();

                          let ifd = self.stdin.as_raw_fd();

                          let ofd = self.stdout.as_raw_fd();

                          let efd = self.stderr.as_ref().map_or(ofd, |f| f.as_raw_fd());

                          procutil::send_raw_fds(sock_fd, &[ifd, ofd, efd])?;

                          self.msg_loop = MessageLoop::resume(client);

                      }

                      ChannelMessage::InputRequest(..)

                      | ChannelMessage::LineRequest(..)

                      | ChannelMessage::SystemRequest(..) => {

                          return Err(io::Error::new(

                              io::ErrorKind::InvalidData,

                              "unsupported request while attaching io",

                          ));

                      }

                  }

              }

          }

      }

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				// Copyright 2018 Yuya Nishihara <yuya@tcha.org>
				//
				// This software may be used and distributed according to the terms of the
				// GNU General Public License version 2 or any later version.

				//! Functions to send client-side fds over the command server channel.

				use futures::{Async, Future, Poll};
				use std::io;
				use std::os::unix::io::AsRawFd;
				use tokio_hglib::codec::ChannelMessage;
				use tokio_hglib::protocol::MessageLoop;
				use tokio_hglib::{Client, Connection};

				use super::message;
				use super::procutil;

				/// Future to send client-side fds over the command server channel.
				///
				/// This works as follows:
				/// 1. Client sends "attachio" request.
				/// 2. Server sends back 1-byte input request.
				/// 3. Client sends fds with 1-byte dummy payload in response.
				/// 4. Server returns the number of the fds received.
				///
				/// If the stderr is omitted, it will be redirected to the stdout. This
				/// allows us to attach the pager stdin to both stdout and stderr, and
				/// dispose of the client-side handle once attached.
				#[must_use = "futures do nothing unless polled"]
				pub struct AttachIo<C, I, O, E>
				where
				C: Connection,
				{
				msg_loop: MessageLoop<C>,
				stdin: I,
				stdout: O,
				stderr: Option<E>,
				}

				impl<C, I, O, E> AttachIo<C, I, O, E>
				where
				C: Connection + AsRawFd,
				I: AsRawFd,
				O: AsRawFd,
				E: AsRawFd,
				{
				pub fn with_client(
				client: Client<C>,
				stdin: I,
				stdout: O,
				stderr: Option<E>,
				) -> AttachIo<C, I, O, E> {
				let msg_loop = MessageLoop::start(client, b"attachio");
				AttachIo {
				msg_loop,
				stdin,
				stdout,
				stderr,
				}
				}
				}

				impl<C, I, O, E> Future for AttachIo<C, I, O, E>
				where
				C: Connection + AsRawFd,
				I: AsRawFd,
				O: AsRawFd,
				E: AsRawFd,
				{
				type Item = Client<C>;
				type Error = io::Error;

				fn poll(&mut self) -> Poll<Self::Item, Self::Error> {
				loop {
				let (client, msg) = try_ready!(self.msg_loop.poll());
				match msg {
				ChannelMessage::Data(b'r', data) => {
				let fd_cnt = message::parse_result_code(data)?;
				if fd_cnt == 3 {
				return Ok(Async::Ready(client));
				} else {
				return Err(io::Error::new(
				io::ErrorKind::InvalidData,
				"unexpected attachio result",
				));
				}
				}
				ChannelMessage::Data(..) => {
				// just ignore data sent to uninteresting (optional) channel
				self.msg_loop = MessageLoop::resume(client);
				}
				ChannelMessage::InputRequest(1) => {
				// this may fail with EWOULDBLOCK in theory, but the
				// payload is quite small, and the send buffer should
				// be empty so the operation will complete immediately
				let sock_fd = client.as_raw_fd();
				let ifd = self.stdin.as_raw_fd();
				let ofd = self.stdout.as_raw_fd();
				let efd = self.stderr.as_ref().map_or(ofd, \|f\| f.as_raw_fd());
				procutil::send_raw_fds(sock_fd, &[ifd, ofd, efd])?;
				self.msg_loop = MessageLoop::resume(client);
				}
				ChannelMessage::InputRequest(..)
				\| ChannelMessage::LineRequest(..)
				\| ChannelMessage::SystemRequest(..) => {
				return Err(io::Error::new(
				io::ErrorKind::InvalidData,
				"unsupported request while attaching io",
				));
				}
				}
				}
				}
				}