From 7f8b48644bb8a7bc413b48fc7f8018a15969cf18 Mon Sep 17 00:00:00 2001 From: Daniel Wagner-Hall Date: Tue, 10 Sep 2024 18:03:26 +0100 Subject: [PATCH] Error on absolute src paths These lead to non-deterministic lockfile contents because they depend on the depth of the directory the repo is checked out into. This may possibly introduce false positives because of hard-coded /dev/null or similar in actual published crates - hopefully it doesn't (ideally people aren't publishing this kind of thing to crates.io), but if it does, we can loosen those to a warning or add a per-crate opt-out or something. --- crate_universe/src/context.rs | 8 +- crate_universe/src/context/crate_context.rs | 74 ++++++++++++++----- crate_universe/src/test.rs | 16 ++++ .../test_data/metadata/abspath/Cargo.lock | 7 ++ .../test_data/metadata/abspath/Cargo.toml | 7 ++ .../test_data/metadata/abspath/metadata.json | 66 +++++++++++++++++ 6 files changed, 154 insertions(+), 24 deletions(-) create mode 100644 crate_universe/test_data/metadata/abspath/Cargo.lock create mode 100644 crate_universe/test_data/metadata/abspath/Cargo.toml create mode 100644 crate_universe/test_data/metadata/abspath/metadata.json diff --git a/crate_universe/src/context.rs b/crate_universe/src/context.rs index 204bdaff3c..8129c11ef1 100644 --- a/crate_universe/src/context.rs +++ b/crate_universe/src/context.rs @@ -52,7 +52,7 @@ impl Context { Ok(serde_json::from_str(&data)?) } - pub(crate) fn new(annotations: Annotations, sources_are_present: bool) -> Result { + pub(crate) fn new(annotations: Annotations, sources_are_present: bool) -> anyhow::Result { // Build a map of crate contexts let crates: BTreeMap = annotations .metadata @@ -68,11 +68,11 @@ impl Context { annotations.config.generate_binaries, annotations.config.generate_build_scripts, sources_are_present, - ); + )?; let id = CrateId::new(context.name.clone(), context.version.clone()); - (id, context) + Ok::<_, anyhow::Error>((id, context)) }) - .collect(); + .collect::>()?; // Filter for any crate that contains a binary let binary_crates: BTreeSet = crates diff --git a/crate_universe/src/context/crate_context.rs b/crate_universe/src/context/crate_context.rs index 88cb11bfa2..65b9bcd5ac 100644 --- a/crate_universe/src/context/crate_context.rs +++ b/crate_universe/src/context/crate_context.rs @@ -352,7 +352,7 @@ impl CrateContext { include_binaries: bool, include_build_scripts: bool, sources_are_present: bool, - ) -> Self { + ) -> anyhow::Result { let package: &Package = &packages[&annotation.node.id]; let current_crate_id = CrateId::new(package.name.clone(), package.version.clone()); @@ -430,7 +430,7 @@ impl CrateContext { gen_binaries, include_build_scripts, sources_are_present, - ); + )?; // Parse the library crate name from the set of included targets let library_target_name = { @@ -511,7 +511,7 @@ impl CrateContext { }; // Create the crate's context and apply extra settings - CrateContext { + Ok(CrateContext { name: package.name.clone(), version: package.version.clone(), license: package.license.clone(), @@ -529,7 +529,7 @@ impl CrateContext { alias_rule: None, override_targets: BTreeMap::new(), } - .with_overrides(extras) + .with_overrides(extras)) } fn with_overrides(mut self, extras: &BTreeMap) -> Self { @@ -755,7 +755,7 @@ impl CrateContext { gen_binaries: &GenBinaries, include_build_scripts: bool, sources_are_present: bool, - ) -> BTreeSet { + ) -> anyhow::Result> { let package = &packages[&node.id]; let package_root = package @@ -774,6 +774,10 @@ impl CrateContext { // content to align when rendering, the package target names are always sanitized. let crate_name = sanitize_module_name(&target.name); + if !target.src_path.starts_with(package_root) { + return Some(Err(anyhow::anyhow!("Package {:?} target {:?} had an absolute source path {:?}, which is not supported", package.name, target.name, target.src_path))); + } + // Locate the crate's root source file relative to the package root normalized for unix let crate_root = pathdiff::diff_paths(&target.src_path, package_root).map( // Normalize the path so that it always renders the same regardless of platform @@ -782,29 +786,29 @@ impl CrateContext { // Conditionally check to see if the dependencies is a build-script target if include_build_scripts && kind == "custom-build" { - return Some(Rule::BuildScript(TargetAttributes { + return Some(Ok(Rule::BuildScript(TargetAttributes { crate_name, crate_root, srcs: Glob::new_rust_srcs(!sources_are_present), - })); + }))); } // Check to see if the dependencies is a proc-macro target if kind == "proc-macro" { - return Some(Rule::ProcMacro(TargetAttributes { + return Some(Ok(Rule::ProcMacro(TargetAttributes { crate_name, crate_root, srcs: Glob::new_rust_srcs(!sources_are_present), - })); + }))); } // Check to see if the dependencies is a library target if ["lib", "rlib"].contains(&kind.as_str()) { - return Some(Rule::Library(TargetAttributes { + return Some(Ok(Rule::Library(TargetAttributes { crate_name, crate_root, srcs: Glob::new_rust_srcs(!sources_are_present), - })); + }))); } // Check if the target kind is binary and is one of the ones included in gen_binaries @@ -814,11 +818,11 @@ impl CrateContext { GenBinaries::Some(set) => set.contains(&target.name), } { - return Some(Rule::Binary(TargetAttributes { + return Some(Ok(Rule::Binary(TargetAttributes { crate_name: target.name.clone(), crate_root, srcs: Glob::new_rust_srcs(!sources_are_present), - })); + }))); } None @@ -866,7 +870,7 @@ mod test { include_binaries, include_build_scripts, are_sources_present, - ); + ).unwrap(); assert_eq!(context.name, "common"); assert_eq!( @@ -914,7 +918,7 @@ mod test { include_binaries, include_build_scripts, are_sources_present, - ); + ).unwrap(); assert_eq!(context.name, "common"); assert_eq!( @@ -979,7 +983,7 @@ mod test { include_binaries, include_build_scripts, are_sources_present, - ); + ).unwrap(); assert_eq!(context.name, "openssl-sys"); assert!(context.build_script_attrs.is_some()); @@ -1026,7 +1030,7 @@ mod test { include_binaries, include_build_scripts, are_sources_present, - ); + ).unwrap(); assert_eq!(context.name, "openssl-sys"); assert!(context.build_script_attrs.is_none()); @@ -1062,7 +1066,7 @@ mod test { include_binaries, include_build_scripts, are_sources_present, - ); + ).unwrap(); assert_eq!(context.name, "sysinfo"); assert!(context.build_script_attrs.is_none()); @@ -1104,7 +1108,7 @@ mod test { include_binaries, include_build_scripts, are_sources_present, - ); + ).unwrap(); assert_eq!(context.name, "common"); check_context(context); @@ -1236,11 +1240,41 @@ mod test { include_binaries, include_build_scripts, are_sources_present, - ); + ).unwrap(); let mut expected = Select::new(); expected.insert("unique_feature".to_owned(), None); assert_eq!(context.common_attrs.crate_features, expected); } + + #[test] + fn absolute_paths_for_srcs_are_errors() { + let annotations = Annotations::new( + crate::test::metadata::abspath(), + crate::test::lockfile::abspath(), + crate::config::Config::default(), + ) + .unwrap(); + + let crate_annotation = &annotations.metadata.crates[&PackageId { + repr: "path+file://{TEMP_DIR}/common#0.1.0".to_owned(), + }]; + + let include_binaries = false; + let include_build_scripts = false; + let are_sources_present = false; + let err = CrateContext::new( + crate_annotation, + &annotations.metadata.packages, + &annotations.lockfile.crates, + &annotations.pairred_extras, + &annotations.metadata.workspace_metadata.tree_metadata, + include_binaries, + include_build_scripts, + are_sources_present, + ).unwrap_err().to_string(); + + assert_eq!(err, "Package \"common\" target \"common\" had an absolute source path \"/dev/null\", which is not supported"); + } } diff --git a/crate_universe/src/test.rs b/crate_universe/src/test.rs index 88da0a657f..0531ce465c 100644 --- a/crate_universe/src/test.rs +++ b/crate_universe/src/test.rs @@ -170,6 +170,14 @@ pub(crate) mod metadata { ))) .unwrap() } + + pub(crate) fn abspath() -> cargo_metadata::Metadata { + serde_json::from_str(include_str!(concat!( + env!("CARGO_MANIFEST_DIR"), + "/test_data/metadata/abspath/metadata.json" + ))) + .unwrap() + } } pub(crate) mod lockfile { @@ -238,4 +246,12 @@ pub(crate) mod lockfile { ))) .unwrap() } + + pub(crate) fn abspath() -> cargo_lock::Lockfile { + cargo_lock::Lockfile::from_str(include_str!(concat!( + env!("CARGO_MANIFEST_DIR"), + "/test_data/metadata/abspath/Cargo.lock" + ))) + .unwrap() + } } diff --git a/crate_universe/test_data/metadata/abspath/Cargo.lock b/crate_universe/test_data/metadata/abspath/Cargo.lock new file mode 100644 index 0000000000..db83ec7346 --- /dev/null +++ b/crate_universe/test_data/metadata/abspath/Cargo.lock @@ -0,0 +1,7 @@ +# This file is automatically @generated by Cargo. +# It is not intended for manual editing. +version = 3 + +[[package]] +name = "common" +version = "0.1.0" diff --git a/crate_universe/test_data/metadata/abspath/Cargo.toml b/crate_universe/test_data/metadata/abspath/Cargo.toml new file mode 100644 index 0000000000..7b62a08f59 --- /dev/null +++ b/crate_universe/test_data/metadata/abspath/Cargo.toml @@ -0,0 +1,7 @@ +[package] +name = "common" +version = "0.1.0" +edition = "2018" + +[lib] +path = "/dev/null" diff --git a/crate_universe/test_data/metadata/abspath/metadata.json b/crate_universe/test_data/metadata/abspath/metadata.json new file mode 100644 index 0000000000..27c479b4b7 --- /dev/null +++ b/crate_universe/test_data/metadata/abspath/metadata.json @@ -0,0 +1,66 @@ +{ + "packages": [ + { + "name": "common", + "version": "0.1.0", + "id": "path+file://{TEMP_DIR}/common#0.1.0", + "license": null, + "license_file": null, + "description": null, + "source": null, + "dependencies": [], + "targets": [ + { + "kind": [ + "lib" + ], + "crate_types": [ + "lib" + ], + "name": "common", + "src_path": "/dev/null", + "edition": "2018", + "doc": true, + "doctest": true, + "test": true + } + ], + "features": {}, + "manifest_path": "{TEMP_DIR}/common/Cargo.toml", + "metadata": null, + "publish": null, + "authors": [], + "categories": [], + "keywords": [], + "readme": null, + "repository": null, + "homepage": null, + "documentation": null, + "edition": "2018", + "links": null, + "default_run": null, + "rust_version": null + } + ], + "workspace_members": [ + "path+file://{TEMP_DIR}/common#0.1.0" + ], + "workspace_default_members": [ + "path+file://{TEMP_DIR}/common#0.1.0" + ], + "resolve": { + "nodes": [ + { + "id": "path+file://{TEMP_DIR}/common#0.1.0", + "dependencies": [], + "deps": [], + "features": [] + } + ], + "root": "path+file://{TEMP_DIR}/common#0.1.0" + }, + "target_directory": "{TEMP_DIR}/common/target", + "version": 1, + "workspace_root": "{TEMP_DIR}/common", + "metadata": null +}