refactor(nix-compat/nar/reader): always enable poisoning *API*
The poisoning API is now always available, whether debug_assertions is enabled or not. When debug assertions are not enabled, it is equivalent to a unit struct, and is always considered ready and unpoisoned. Change-Id: I950237f4816d480330d9acab32661ed4f1663049 Reviewed-on: https://cl.tvl.fyi/c/depot/+/11525 Tested-by: BuildkiteCI Reviewed-by: flokli <flokli@flokli.de>
This commit is contained in:
edef
parent
98b85b4580
commit
5070f9eff7
1 changed files with 66 additions and 64 deletions
|
|
@ -10,6 +10,9 @@ use std::io::{
|
||||||
Read, Write,
|
Read, Write,
|
||||||
};
|
};
|
||||||
|
|
||||||
|
#[cfg(not(debug_assertions))]
|
||||||
|
use std::marker::PhantomData;
|
||||||
|
|
||||||
// Required reading for understanding this module.
|
// Required reading for understanding this module.
|
||||||
use crate::nar::wire;
|
use crate::nar::wire;
|
||||||
|
|
||||||
|
|
@ -27,25 +30,15 @@ struct ArchiveReader<'a, 'r> {
|
||||||
/// * An error is encountered at any point
|
/// * An error is encountered at any point
|
||||||
/// * A file or directory reader is dropped before being read entirely.
|
/// * A file or directory reader is dropped before being read entirely.
|
||||||
/// All of these checks vanish in release mode.
|
/// All of these checks vanish in release mode.
|
||||||
#[cfg(debug_assertions)]
|
|
||||||
status: ArchiveReaderStatus<'a>,
|
status: ArchiveReaderStatus<'a>,
|
||||||
}
|
}
|
||||||
|
|
||||||
macro_rules! poison {
|
|
||||||
($it:expr) => {
|
|
||||||
#[cfg(debug_assertions)]
|
|
||||||
{
|
|
||||||
$it.status.poison();
|
|
||||||
}
|
|
||||||
};
|
|
||||||
}
|
|
||||||
|
|
||||||
macro_rules! try_or_poison {
|
macro_rules! try_or_poison {
|
||||||
($it:expr, $ex:expr) => {
|
($it:expr, $ex:expr) => {
|
||||||
match $ex {
|
match $ex {
|
||||||
Ok(x) => x,
|
Ok(x) => x,
|
||||||
Err(e) => {
|
Err(e) => {
|
||||||
poison!($it);
|
$it.status.poison();
|
||||||
return Err(e.into());
|
return Err(e.into());
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
@ -56,11 +49,7 @@ pub fn open<'a, 'r>(reader: &'a mut Reader<'r>) -> io::Result<Node<'a, 'r>> {
|
||||||
read::token(reader, &wire::TOK_NAR)?;
|
read::token(reader, &wire::TOK_NAR)?;
|
||||||
Node::new(ArchiveReader {
|
Node::new(ArchiveReader {
|
||||||
inner: reader,
|
inner: reader,
|
||||||
#[cfg(debug_assertions)]
|
status: ArchiveReaderStatus::top(),
|
||||||
status: ArchiveReaderStatus::StackTop {
|
|
||||||
poisoned: false,
|
|
||||||
ready: true,
|
|
||||||
},
|
|
||||||
})
|
})
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -80,7 +69,6 @@ impl<'a, 'r> Node<'a, 'r> {
|
||||||
///
|
///
|
||||||
/// Reading the terminating [wire::TOK_PAR] is done immediately for [Node::Symlink],
|
/// Reading the terminating [wire::TOK_PAR] is done immediately for [Node::Symlink],
|
||||||
/// but is otherwise left to [DirReader] or [FileReader].
|
/// but is otherwise left to [DirReader] or [FileReader].
|
||||||
#[allow(unused_mut)] // due to debug_assertions code
|
|
||||||
fn new(mut reader: ArchiveReader<'a, 'r>) -> io::Result<Self> {
|
fn new(mut reader: ArchiveReader<'a, 'r>) -> io::Result<Self> {
|
||||||
Ok(match read::tag(reader.inner)? {
|
Ok(match read::tag(reader.inner)? {
|
||||||
wire::Node::Sym => {
|
wire::Node::Sym => {
|
||||||
|
|
@ -88,15 +76,12 @@ impl<'a, 'r> Node<'a, 'r> {
|
||||||
try_or_poison!(reader, read::bytes(reader.inner, wire::MAX_TARGET_LEN));
|
try_or_poison!(reader, read::bytes(reader.inner, wire::MAX_TARGET_LEN));
|
||||||
|
|
||||||
if target.is_empty() || target.contains(&0) {
|
if target.is_empty() || target.contains(&0) {
|
||||||
poison!(reader);
|
reader.status.poison();
|
||||||
return Err(InvalidData.into());
|
return Err(InvalidData.into());
|
||||||
}
|
}
|
||||||
|
|
||||||
try_or_poison!(reader, read::token(reader.inner, &wire::TOK_PAR));
|
try_or_poison!(reader, read::token(reader.inner, &wire::TOK_PAR));
|
||||||
#[cfg(debug_assertions)]
|
reader.status.ready_parent(); // Immediately allow reading from parent again
|
||||||
{
|
|
||||||
reader.status.ready_parent(); // Immediately allow reading from parent again
|
|
||||||
}
|
|
||||||
|
|
||||||
Node::Symlink { target }
|
Node::Symlink { target }
|
||||||
}
|
}
|
||||||
|
|
@ -131,17 +116,13 @@ pub struct FileReader<'a, 'r> {
|
||||||
impl<'a, 'r> FileReader<'a, 'r> {
|
impl<'a, 'r> FileReader<'a, 'r> {
|
||||||
/// Instantiate a new reader, starting after [wire::TOK_REG] or [wire::TOK_EXE].
|
/// Instantiate a new reader, starting after [wire::TOK_REG] or [wire::TOK_EXE].
|
||||||
/// We handle the terminating [wire::TOK_PAR] on semantic EOF.
|
/// We handle the terminating [wire::TOK_PAR] on semantic EOF.
|
||||||
#[allow(unused_mut)] // due to debug_assertions code
|
|
||||||
fn new(mut reader: ArchiveReader<'a, 'r>, len: u64) -> io::Result<Self> {
|
fn new(mut reader: ArchiveReader<'a, 'r>, len: u64) -> io::Result<Self> {
|
||||||
// For zero-length files, we have to read the terminating TOK_PAR
|
// For zero-length files, we have to read the terminating TOK_PAR
|
||||||
// immediately, since FileReader::read may never be called; we've
|
// immediately, since FileReader::read may never be called; we've
|
||||||
// already reached semantic EOF by definition.
|
// already reached semantic EOF by definition.
|
||||||
if len == 0 {
|
if len == 0 {
|
||||||
read::token(reader.inner, &wire::TOK_PAR)?;
|
read::token(reader.inner, &wire::TOK_PAR)?;
|
||||||
#[cfg(debug_assertions)]
|
reader.status.ready_parent();
|
||||||
{
|
|
||||||
reader.status.ready_parent();
|
|
||||||
}
|
|
||||||
}
|
}
|
||||||
|
|
||||||
Ok(Self {
|
Ok(Self {
|
||||||
|
|
@ -175,7 +156,7 @@ impl FileReader<'_, '_> {
|
||||||
let mut buf = try_or_poison!(self.reader, self.reader.inner.fill_buf());
|
let mut buf = try_or_poison!(self.reader, self.reader.inner.fill_buf());
|
||||||
|
|
||||||
if buf.is_empty() {
|
if buf.is_empty() {
|
||||||
poison!(self.reader);
|
self.reader.status.poison();
|
||||||
return Err(UnexpectedEof.into());
|
return Err(UnexpectedEof.into());
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -237,7 +218,7 @@ impl Read for FileReader<'_, '_> {
|
||||||
self.len -= n as u64;
|
self.len -= n as u64;
|
||||||
|
|
||||||
if n == 0 {
|
if n == 0 {
|
||||||
poison!(self.reader);
|
self.reader.status.poison();
|
||||||
return Err(UnexpectedEof.into());
|
return Err(UnexpectedEof.into());
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -260,18 +241,15 @@ impl FileReader<'_, '_> {
|
||||||
try_or_poison!(self.reader, self.reader.inner.read_exact(&mut buf[pad..]));
|
try_or_poison!(self.reader, self.reader.inner.read_exact(&mut buf[pad..]));
|
||||||
|
|
||||||
if buf != [0; 8] {
|
if buf != [0; 8] {
|
||||||
poison!(self.reader);
|
self.reader.status.poison();
|
||||||
return Err(InvalidData.into());
|
return Err(InvalidData.into());
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
try_or_poison!(self.reader, read::token(self.reader.inner, &wire::TOK_PAR));
|
try_or_poison!(self.reader, read::token(self.reader.inner, &wire::TOK_PAR));
|
||||||
|
|
||||||
#[cfg(debug_assertions)]
|
// Done with reading this file, allow going back up the chain of readers
|
||||||
{
|
self.reader.status.ready_parent();
|
||||||
// Done with reading this file, allow going back up the chain of readers
|
|
||||||
self.reader.status.ready_parent();
|
|
||||||
}
|
|
||||||
|
|
||||||
Ok(())
|
Ok(())
|
||||||
}
|
}
|
||||||
|
|
@ -321,10 +299,7 @@ impl<'a, 'r> DirReader<'a, 'r> {
|
||||||
// Determine if there are more entries to follow
|
// Determine if there are more entries to follow
|
||||||
if let wire::Entry::None = try_or_poison!(self.reader, read::tag(self.reader.inner)) {
|
if let wire::Entry::None = try_or_poison!(self.reader, read::tag(self.reader.inner)) {
|
||||||
// We've reached the end of this directory.
|
// We've reached the end of this directory.
|
||||||
#[cfg(debug_assertions)]
|
self.reader.status.ready_parent();
|
||||||
{
|
|
||||||
self.reader.status.ready_parent();
|
|
||||||
}
|
|
||||||
return Ok(None);
|
return Ok(None);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -339,7 +314,7 @@ impl<'a, 'r> DirReader<'a, 'r> {
|
||||||
|| name == b"."
|
|| name == b"."
|
||||||
|| name == b".."
|
|| name == b".."
|
||||||
{
|
{
|
||||||
poison!(self.reader);
|
self.reader.status.poison();
|
||||||
return Err(InvalidData.into());
|
return Err(InvalidData.into());
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -350,7 +325,7 @@ impl<'a, 'r> DirReader<'a, 'r> {
|
||||||
}
|
}
|
||||||
Some(prev_name) => {
|
Some(prev_name) => {
|
||||||
if *prev_name >= name {
|
if *prev_name >= name {
|
||||||
poison!(self.reader);
|
self.reader.status.poison();
|
||||||
return Err(InvalidData.into());
|
return Err(InvalidData.into());
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -373,12 +348,12 @@ impl<'a, 'r> DirReader<'a, 'r> {
|
||||||
/// so we can check they are abandoned when an error occurs
|
/// so we can check they are abandoned when an error occurs
|
||||||
/// * Make sure only the most recently created object is read from, and is fully exhausted
|
/// * Make sure only the most recently created object is read from, and is fully exhausted
|
||||||
/// before anything it was created from is used again.
|
/// before anything it was created from is used again.
|
||||||
#[cfg(debug_assertions)]
|
|
||||||
enum ArchiveReaderStatus<'a> {
|
enum ArchiveReaderStatus<'a> {
|
||||||
StackTop {
|
#[cfg(not(debug_assertions))]
|
||||||
poisoned: bool,
|
None(PhantomData<&'a ()>),
|
||||||
ready: bool,
|
#[cfg(debug_assertions)]
|
||||||
},
|
StackTop { poisoned: bool, ready: bool },
|
||||||
|
#[cfg(debug_assertions)]
|
||||||
StackChild {
|
StackChild {
|
||||||
poisoned: &'a mut bool,
|
poisoned: &'a mut bool,
|
||||||
parent_ready: &'a mut bool,
|
parent_ready: &'a mut bool,
|
||||||
|
|
@ -386,12 +361,28 @@ enum ArchiveReaderStatus<'a> {
|
||||||
},
|
},
|
||||||
}
|
}
|
||||||
|
|
||||||
#[cfg(debug_assertions)]
|
|
||||||
impl ArchiveReaderStatus<'_> {
|
impl ArchiveReaderStatus<'_> {
|
||||||
|
fn top() -> Self {
|
||||||
|
#[cfg(debug_assertions)]
|
||||||
|
{
|
||||||
|
ArchiveReaderStatus::StackTop {
|
||||||
|
poisoned: false,
|
||||||
|
ready: true,
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
#[cfg(not(debug_assertions))]
|
||||||
|
ArchiveReaderStatus::None(PhantomData)
|
||||||
|
}
|
||||||
|
|
||||||
/// Poison all the objects sharing the same reader, to be used when an error occurs
|
/// Poison all the objects sharing the same reader, to be used when an error occurs
|
||||||
fn poison(&mut self) {
|
fn poison(&mut self) {
|
||||||
match self {
|
match self {
|
||||||
|
#[cfg(not(debug_assertions))]
|
||||||
|
ArchiveReaderStatus::None(_) => {}
|
||||||
|
#[cfg(debug_assertions)]
|
||||||
ArchiveReaderStatus::StackTop { poisoned: x, .. } => *x = true,
|
ArchiveReaderStatus::StackTop { poisoned: x, .. } => *x = true,
|
||||||
|
#[cfg(debug_assertions)]
|
||||||
ArchiveReaderStatus::StackChild { poisoned: x, .. } => **x = true,
|
ArchiveReaderStatus::StackChild { poisoned: x, .. } => **x = true,
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
@ -399,10 +390,14 @@ impl ArchiveReaderStatus<'_> {
|
||||||
/// Mark the parent as ready, allowing it to be used again and preventing this reference to the reader being used again.
|
/// Mark the parent as ready, allowing it to be used again and preventing this reference to the reader being used again.
|
||||||
fn ready_parent(&mut self) {
|
fn ready_parent(&mut self) {
|
||||||
match self {
|
match self {
|
||||||
Self::StackTop { ready, .. } => {
|
#[cfg(not(debug_assertions))]
|
||||||
|
ArchiveReaderStatus::None(_) => {}
|
||||||
|
#[cfg(debug_assertions)]
|
||||||
|
ArchiveReaderStatus::StackTop { ready, .. } => {
|
||||||
*ready = false;
|
*ready = false;
|
||||||
}
|
}
|
||||||
Self::StackChild {
|
#[cfg(debug_assertions)]
|
||||||
|
ArchiveReaderStatus::StackChild {
|
||||||
ready,
|
ready,
|
||||||
parent_ready,
|
parent_ready,
|
||||||
..
|
..
|
||||||
|
|
@ -415,15 +410,23 @@ impl ArchiveReaderStatus<'_> {
|
||||||
|
|
||||||
fn poisoned(&self) -> bool {
|
fn poisoned(&self) -> bool {
|
||||||
match self {
|
match self {
|
||||||
Self::StackTop { poisoned, .. } => *poisoned,
|
#[cfg(not(debug_assertions))]
|
||||||
Self::StackChild { poisoned, .. } => **poisoned,
|
ArchiveReaderStatus::None(_) => false,
|
||||||
|
#[cfg(debug_assertions)]
|
||||||
|
ArchiveReaderStatus::StackTop { poisoned, .. } => *poisoned,
|
||||||
|
#[cfg(debug_assertions)]
|
||||||
|
ArchiveReaderStatus::StackChild { poisoned, .. } => **poisoned,
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
fn ready(&self) -> bool {
|
fn ready(&self) -> bool {
|
||||||
match self {
|
match self {
|
||||||
Self::StackTop { ready, .. } => *ready,
|
#[cfg(not(debug_assertions))]
|
||||||
Self::StackChild { ready, .. } => *ready,
|
ArchiveReaderStatus::None(_) => true,
|
||||||
|
#[cfg(debug_assertions)]
|
||||||
|
ArchiveReaderStatus::StackTop { ready, .. } => *ready,
|
||||||
|
#[cfg(debug_assertions)]
|
||||||
|
ArchiveReaderStatus::StackChild { ready, .. } => *ready,
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
@ -434,6 +437,8 @@ impl<'a, 'r> ArchiveReader<'a, 'r> {
|
||||||
fn child(&mut self) -> ArchiveReader<'_, 'r> {
|
fn child(&mut self) -> ArchiveReader<'_, 'r> {
|
||||||
ArchiveReader {
|
ArchiveReader {
|
||||||
inner: self.inner,
|
inner: self.inner,
|
||||||
|
#[cfg(not(debug_assertions))]
|
||||||
|
status: ArchiveReaderStatus::None(PhantomData),
|
||||||
#[cfg(debug_assertions)]
|
#[cfg(debug_assertions)]
|
||||||
status: match &mut self.status {
|
status: match &mut self.status {
|
||||||
ArchiveReaderStatus::StackTop { poisoned, ready } => {
|
ArchiveReaderStatus::StackTop { poisoned, ready } => {
|
||||||
|
|
@ -462,16 +467,13 @@ impl<'a, 'r> ArchiveReader<'a, 'r> {
|
||||||
/// Only does anything when debug assertions are on.
|
/// Only does anything when debug assertions are on.
|
||||||
#[inline(always)]
|
#[inline(always)]
|
||||||
fn check_correct(&self) {
|
fn check_correct(&self) {
|
||||||
#[cfg(debug_assertions)]
|
assert!(
|
||||||
{
|
!self.status.poisoned(),
|
||||||
debug_assert!(
|
"Archive reader used after it was meant to be abandoned!"
|
||||||
!self.status.poisoned(),
|
);
|
||||||
"Archive reader used after it was meant to be abandoned!"
|
assert!(
|
||||||
);
|
self.status.ready(),
|
||||||
debug_assert!(
|
"Non-ready archive reader used! (Should've been reading from something else)"
|
||||||
self.status.ready(),
|
);
|
||||||
"Non-ready archive reader used! (Should've been reading from something else)"
|
|
||||||
)
|
|
||||||
}
|
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue