unistd: add {get,set}domainname #816
Conversation
lucab
force-pushed
the
ups/domainname
branch
from
124a05a to
19e29a6
Compare
src/unistd.rs
Outdated
| /// and store it in a provided buffer. The buffer will be populated with bytes up | ||
| /// to the length of the provided slice including a NUL terminating byte. | ||
| #[cfg(target_os = "linux")] | ||
| pub fn getdomainname<'a>(buffer: &'a mut [u8]) -> Result<&'a CStr> { |
There was a problem hiding this comment.
I'm not super-happy about the ergonomics of this signature, but I just followed gethostname example. Can we rework these to allocate internally and return an owning CString?
There was a problem hiding this comment.
I agree. I too would rather allocate internally.
src/unistd.rs
Outdated
| @@ -756,6 +756,36 @@ pub fn gethostname<'a>(buffer: &'a mut [u8]) -> Result<&'a CStr> { | |||
| }) | |||
| } | |||
|
|
|||
| /// Set the NIS domain name (see | |||
| /// [setdomainname(2)](http://man7.org/linux/man-pages/man2/setdomainname.2.html)). | |||
| #[cfg(target_os = "linux")] | |||
There was a problem hiding this comment.
Both of these functions are available on FreeBSD too. And while I haven't checked, I would bet that they're available on all of the BSDs based on their age.
There was a problem hiding this comment.
They're also declared on emscripten, so I'd add both on those platforms as well.
There was a problem hiding this comment.
I did a quick check and indeed they seem to be available on all BSD (plus ES) too.
There was a problem hiding this comment.
It looks like libc does not expose them, so rust-lang/libc#868 needs to be fixed first.
lucab
force-pushed
the
ups/domainname
branch
from
19e29a6 to
08e405f
Compare
This changes `gethostname` signature to be more idiomatic, by internally allocating the buffer for result. Ref: nix-rust#816 (comment)
lucab
force-pushed
the
ups/domainname
branch
from
08e405f to
1590258
Compare
|
Rebased, PTAL. In this iteration:
|
|
libc's maintainers probably aren't going to add the definitions themselves, even for reported issues. Like Nix, they mostly rely on pull requests from their users. Could you please open a PR for libc? |
|
This got stale due to lack of time on my side, but I'll eventually get back to this (just not high priority at the moment). In the meanwhile, @gnzlbg is pushing forward the BSD libc fix, kudos to them. |
This changes `gethostname` signature to be more idiomatic, by internally allocating the buffer for result. Ref: nix-rust#816 (comment)
lucab
force-pushed
the
ups/domainname
branch
4 times, most recently
from
8dfbb87 to
91aa28e
Compare
|
Rebased to take care of BSD and Apple, PTAL. |
src/unistd.rs
Outdated
| let ptr = buffer.as_mut_ptr() as *mut c_char; | ||
| let len = buffer.len() as size_t; | ||
| pub fn gethostname() -> Result<CString> { | ||
| const MAXHOSTNAMELEN: usize = 256; |
There was a problem hiding this comment.
We should document why we use the value we use here. Is there some reference example you pulled this from?
There was a problem hiding this comment.
This is _POSIX_HOST_NAME_MAX plus the trailing null, from http://pubs.opengroup.org/onlinepubs/9699919799/basedefs/limits.h.html.
I'll rename, add a reference, and leave the trailing byte out of this.
src/unistd.rs
Outdated
| unsafe { CStr::from_ptr(buffer.as_ptr() as *const c_char) } | ||
| unsafe { | ||
| // Ensure returned string is always null-terminated | ||
| *ptr.offset((MAXHOSTNAMELEN - 1) as isize) = 0; |
There was a problem hiding this comment.
Couldn't you instead use a MAXHOSTNAMELEN of 255 here and be able to skip this step?
There was a problem hiding this comment.
Yes, that's probably better, I'll do.
This changes `gethostname` signature to be more idiomatic, by internally allocating the buffer for result. Ref: nix-rust#816 (comment)
|
@Susurrus I adjusted and documented |
This changes `gethostname` signature to be more idiomatic, by internally allocating the buffer for result. Ref: nix-rust#816 (comment)
|
Gentle ping for a review. |
src/unistd.rs
Outdated
| pub fn gethostname() -> Result<CString> { | ||
| // Hostname maximum length as defined by POSIX, | ||
| // http://pubs.opengroup.org/onlinepubs/9699919799/basedefs/limits.h.html | ||
| const POSIX_HOST_NAME_MAX: usize = 255; |
There was a problem hiding this comment.
According to this link the max host name length is 64 on Linux, and that's confirmed on my system. _POSIX_HOST_NAME_MAX on my system is 255, however. We should figure out the appropriate values here and get them into libc to use them here.
src/unistd.rs
Outdated
| /// | ||
| /// # Examples | ||
| /// | ||
| /// ```no_run |
There was a problem hiding this comment.
Why use a CString here but an OsStr for setdomainname? We should be consistent in our choice of C vs OS strings.
There was a problem hiding this comment.
@asomers This follows the split currently in master for the hostname, see gethostname vs sethostname types. Perhaps it can be left out of this PR? Otherwise, in which direction do you want to resolve this?
There was a problem hiding this comment.
Most Nix consumers will probably be using ordinary Rust Strings, and converting between String and OsString is easier than converting between String and CString. So I think that our API should prefer to expose OsString/OsStr.
src/unistd.rs
Outdated
|
|
||
| /// Set the NIS domain name (see | ||
| /// [setdomainname(2)](http://man7.org/linux/man-pages/man2/setdomainname.2.html)). | ||
| #[cfg(not(target_os = "android"))] |
There was a problem hiding this comment.
We prefer to use whitelists instead of blacklists for listing targets. Please do so here and for getdomainname.
src/unistd.rs
Outdated
| Errno::result(res).map(|_| { | ||
| unsafe { | ||
| // Ensure returned string is always null-terminated | ||
| *ptr.offset(POSIX_HOST_NAME_MAX as isize) = 0; |
There was a problem hiding this comment.
You shouldn't need to do this because gethostname won't overrun the buffer. Same for the other functions.
There was a problem hiding this comment.
Actually, according to the man page the result is not guaranteed to be null-terminated if the buffer was insufficiently large. So it's a good idea to manually null terminate it.
test/test_unistd.rs
Outdated
| #[cfg(not(target_os = "android"))] | ||
| fn test_getdomainname() { | ||
| let dn = getdomainname(); | ||
| assert!(dn.is_ok(), "Error: {:?}", dn.unwrap_err()); |
There was a problem hiding this comment.
Replace this with dn.expect("") on the above line.
test/test_unistd.rs
Outdated
| #[test] | ||
| fn test_gethostname() { | ||
| let hn = gethostname(); | ||
| assert!(hn.is_ok(), "Error: {:?}", hn.unwrap_err()); |
There was a problem hiding this comment.
Replace this with hn.expect("") on the above line.
CHANGELOG.md
Outdated
| @@ -6,10 +6,14 @@ This project adheres to [Semantic Versioning](http://semver.org/). | |||
| ## [Unreleased] | |||
|
|
|||
| ### Added | |||
| - Added `nix::unistd::{getdomainname, setdomainname}`. | |||
There was a problem hiding this comment.
Please specify which platforms this applies to.
src/unistd.rs
Outdated
| pub fn gethostname() -> Result<CString> { | ||
| // Hostname maximum length as defined by POSIX, | ||
| // http://pubs.opengroup.org/onlinepubs/9699919799/basedefs/limits.h.html | ||
| const POSIX_HOST_NAME_MAX: usize = 255; |
src/unistd.rs
Outdated
| Errno::result(res).map(|_| { | ||
| unsafe { | ||
| // Ensure returned string is always null-terminated | ||
| *ptr.offset(POSIX_HOST_NAME_MAX as isize) = 0; |
There was a problem hiding this comment.
Actually, according to the man page the result is not guaranteed to be null-terminated if the buffer was insufficiently large. So it's a good idea to manually null terminate it.
src/unistd.rs
Outdated
| *ptr.offset(POSIX_HOST_NAME_MAX as isize) = 0; | ||
| CString::from_raw(ptr) | ||
| } | ||
| }) |
There was a problem hiding this comment.
If libc::gethostname returns ENAMETOOLONG, then it's nix's fault and there's nothing that our consumer can do about it. We should therefore panic! on ENAMETOOLONG.
There was a problem hiding this comment.
@asomers Does this comment still stand or is it not relevant anymore?
There was a problem hiding this comment.
Unfortunately GitHub has forgotten the context of that comment. But I think my objection was because he tried to handle that error condition and didn't do it correctly. Now, he isn't handling any error conditions, which is better.
src/unistd.rs
Outdated
| #[cfg(not(target_os = "android"))] | ||
| pub fn setdomainname<S: AsRef<OsStr>>(name: S) -> Result<()> { | ||
| let ptr = name.as_ref().as_bytes().as_ptr() as *const c_char; | ||
| let len = name.as_ref().len() as namelen_t; |
There was a problem hiding this comment.
I think it would probably be more pedantically correct to do len = name.as_ref().as_bytes().len().
src/unistd.rs
Outdated
| /// | ||
| /// # Examples | ||
| /// | ||
| /// ```no_run |
There was a problem hiding this comment.
Why use a CString here but an OsStr for setdomainname? We should be consistent in our choice of C vs OS strings.
src/unistd.rs
Outdated
| /// ``` | ||
| #[cfg(not(target_os = "android"))] | ||
| pub fn getdomainname() -> Result<CString> { | ||
| const MAXDOMAINNAMELEN: usize = 256; |
There was a problem hiding this comment.
According to the man page, MAXHOSTNAMELEN applies to the domain name, too.
|
@lucab Are you planning on coming back to this? |
|
@Susurrus yes but I need to figure out the story with |
|
@lucab Did the |
|
So, the full story is as follows. Host names returned by @Susurrus @asomers what would you like to do out of this? I'm inclined to just switch to using |
|
Yes, sysconf sounds like the safest approach. |
This changes `gethostname` signature to be more idiomatic, by internally allocating the buffer for result. Ref: nix-rust#816 (comment)
lucab
force-pushed
the
ups/domainname
branch
2 times, most recently
from
b13c577 to
d904bce
Compare
This changes `gethostname` signature to be more idiomatic, by internally allocating the buffer for result. Ref: nix-rust#816 (comment)
lucab
force-pushed
the
ups/domainname
branch
3 times, most recently
from
85e119a to
09ff9d5
Compare
This changes `gethostname` signature to be more idiomatic, by internally allocating the buffer for result. Ref: nix-rust#816 (comment)
|
Travis is red due to android missing POSIX constants in libc crate, see rust-lang/libc#990. |
This changes `gethostname` signature to be more idiomatic, by internally allocating the buffer for result. Ref: nix-rust#816 (comment)
|
Rebased, this is now green. I think I've addressed all comments in reviews so far, but at this point this PR is quite different from its initial version. PTAL. |
src/unistd.rs
Outdated
| let buf = vec![0; buf_len as usize]; | ||
| let ptr = unsafe { CString::from_vec_unchecked(buf).into_raw() }; | ||
|
|
||
| let res = unsafe { libc::gethostname(ptr, buf_len as usize) }; |
There was a problem hiding this comment.
You don't need to convert the buffer to a CString first. You can just do libc::gethostname(buf.as_mut() as *mut c_char, buf_len as usize
src/unistd.rs
Outdated
| let cstr = unsafe { | ||
| // Ensure CString is null-terminated | ||
| *ptr.offset((buf_len - 1) as isize) = 0; | ||
| CString::from_raw(ptr) |
There was a problem hiding this comment.
I don't think CString::from_raw is necessary. You can use OsStringExt::from_vec(buf) directly.
| #[cfg(any(target_os = "dragonfly", target_os = "freebsd", target_os = "ios", | ||
| target_os = "linux", target_os = "macos", target_os = "netbsd", | ||
| target_os = "openbsd"))] | ||
| pub fn getdomainname() -> Result<OsString> { |
There was a problem hiding this comment.
Ditto my comments about CString as in gethostname
This changes `gethostname` signature to be more idiomatic, by internally allocating the buffer for result. Ref: nix-rust#816 (comment)
|
@asomers I was a bit unsure about the safety of your comments so I added some idempotency checks to the tests. You are indeed right, so I pushed the rework and the additional testing logic. Everything is green, PTAL. |
|
Ok, everything looks good to me! It only needs a squash. @Susurrus do you have any comments? |
This changes `gethostname` signature to be more idiomatic, by internally allocating the buffer for result. Ref: nix-rust#816 (comment)
This implements `getdomainname(2)` and `setdomainname(2)`, which are common UNIX extensions not covered by POSIX. References: * http://man7.org/linux/man-pages/man2/getdomainname.2.html * http://man7.org/linux/man-pages/man2/setdomainname.2.html
|
@asomers ack. I squashed one commit out. I'm keeping two commits for the two separate changelog entries. Let me know if you prefer everything together. |
| /// # Examples | ||
| /// | ||
| /// ``` | ||
| /// use nix::unistd; |
There was a problem hiding this comment.
Please prefix this line with a # so they don't render in the final help. You can then also delete the blank line below.
| /// ``` | ||
| /// use nix::unistd; | ||
| /// | ||
| /// let domainname_os = unistd::getdomainname().expect("Failed getting domain name"); |
There was a problem hiding this comment.
You can reuse the name domainname here because of Rust's variable shadowing. Doing this is idiomatic. Please rename this variable to domainname.
| pub fn getdomainname() -> Result<OsString> { | ||
| // Minimum hostname maximum length as defined by POSIX, | ||
| // http://pubs.opengroup.org/onlinepubs/9699919799/basedefs/limits.h.html | ||
| const _POSIX_HOST_NAME_MAX: c_long = 255; |
There was a problem hiding this comment.
Why isn't this constant pulled from libc? I didn't see anywhere in the discussion a comment touching on this.
src/unistd.rs
Outdated
| *ptr.offset(POSIX_HOST_NAME_MAX as isize) = 0; | ||
| CString::from_raw(ptr) | ||
| } | ||
| }) |
There was a problem hiding this comment.
@asomers Does this comment still stand or is it not relevant anymore?
This implements
getdomainname(2)andsetdomainname(2), which arecommon UNIX extensions not covered by POSIX. References: