Teach universal variables to not overwrite future file formats

2025-01-22 15:29:47 +08:00 · 2018-10-21 00:31:30 -07:00 · 2018-10-21 00:31:30 -07:00 · 7b5296817a
commit 7b5296817a
parent d18e2d970c
3 changed files with 83 additions and 28 deletions
--- a/src/env_universal_common.cpp
+++ b/src/env_universal_common.cpp
@ -381,7 +381,14 @@ void env_universal_t::load_from_fd(int fd, callback_data_list_t &callbacks) {
        debug(5, L"universal log sync elided based on fstat()");
    } else {
        // Read a variables table from the file.
-        var_table_t new_vars = this->read_message_internal(fd);
+        var_table_t new_vars;
+        uvar_format_t format = this->read_message_internal(fd, &new_vars);
+
+        // Hacky: if the read format is in the future, avoid overwriting the file: never try to
+        // save.
+        if (format == uvar_format_t::future) {
+            ok_to_save = false;
+        }

        // Announce changes.
        this->generate_callbacks(new_vars, callbacks);
@ -659,8 +666,6 @@ bool env_universal_t::sync(callback_data_list_t &callbacks) {
    const wcstring directory = wdirname(vars_path);
    bool success = true;
    int vars_fd = -1;
-    int private_fd = -1;
-    wcstring private_file_path;

    debug(5, L"universal log performing full sync");

@ -676,12 +681,30 @@ bool env_universal_t::sync(callback_data_list_t &callbacks) {
        this->load_from_fd(vars_fd, callbacks);
    }

-    // Open adjacent temporary file.
-    if (success) {
-        success = this->open_temporary_file(directory, &private_file_path, &private_fd);
-        if (!success) debug(5, L"universal log open_temporary_file() failed");
+    if (success && ok_to_save) {
+        success = this->save(directory, vars_path);
    }

+    // Clean up.
+    if (vars_fd >= 0) {
+        close(vars_fd);
+    }
+
+    return success;
+}
+
+// Write our file contents.
+// \return true on success, false on failure.
+bool env_universal_t::save(const wcstring &directory, const wcstring &vars_path) {
+    assert(ok_to_save && "It's not OK to save");
+
+    int private_fd = -1;
+    wcstring private_file_path;
+
+    // Open adjacent temporary file.
+    bool success = this->open_temporary_file(directory, &private_file_path, &private_fd);
+    if (!success) debug(5, L"universal log open_temporary_file() failed");
+
    // Write to it.
    if (success) {
        assert(private_fd >= 0);
@ -698,14 +721,14 @@ bool env_universal_t::sync(callback_data_list_t &callbacks) {
            if (fchmod(private_fd, sbuf.st_mode) == -1) debug(5, L"universal log fchmod() failed");
        }

-// Linux by default stores the mtime with low precision, low enough that updates that occur in quick
-// succession may result in the same mtime (even the nanoseconds field). So manually set the mtime
-// of the new file to a high-precision clock. Note that this is only necessary because Linux
-// aggressively reuses inodes, causing the ABA problem; on other platforms we tend to notice the
-// file has changed due to a different inode (or file size!)
-//
-// It's probably worth finding a simpler solution to this. The tests ran into this, but it's
-// unlikely to affect users.
+        // Linux by default stores the mtime with low precision, low enough that updates that occur
+        // in quick succession may result in the same mtime (even the nanoseconds field). So
+        // manually set the mtime of the new file to a high-precision clock. Note that this is only
+        // necessary because Linux aggressively reuses inodes, causing the ABA problem; on other
+        // platforms we tend to notice the file has changed due to a different inode (or file size!)
+        //
+        // It's probably worth finding a simpler solution to this. The tests ran into this, but it's
+        // unlikely to affect users.
 #if HAVE_CLOCK_GETTIME && HAVE_FUTIMENS
        struct timespec times[2] = {};
        times[0].tv_nsec = UTIME_OMIT;  // don't change ctime
@ -725,27 +748,20 @@ bool env_universal_t::sync(callback_data_list_t &callbacks) {
    }

    // Clean up.
-    if (vars_fd >= 0) {
-        close(vars_fd);
-    }
    if (private_fd >= 0) {
        close(private_fd);
    }
    if (!private_file_path.empty()) {
        wunlink(private_file_path);
    }
-
    if (success) {
        // All of our modified variables have now been written out.
        modified.clear();
    }
-
    return success;
 }

-var_table_t env_universal_t::read_message_internal(int fd) {
-    var_table_t result;
-
+uvar_format_t env_universal_t::read_message_internal(int fd, var_table_t *vars) {
    // Read everything from the fd. Put a sane limit on it.
    std::string contents;
    while (contents.size() < k_max_read_size) {
@ -765,8 +781,7 @@ var_table_t env_universal_t::read_message_internal(int fd) {
        contents.resize(newline == wcstring::npos ? 0 : newline);
    }

-    populate_variables(contents, &result);
-    return result;
+    return populate_variables(contents, vars);
 }

 /// \return the format corresponding to file contents \p s.
@ -796,7 +811,7 @@ uvar_format_t env_universal_t::format_for_contents(const std::string &s) {
    return uvar_format_t::fish_2_x;
 }

-void env_universal_t::populate_variables(const std::string &s, var_table_t *out_vars) {
+uvar_format_t env_universal_t::populate_variables(const std::string &s, var_table_t *out_vars) {
    // Decide on the format.
    const uvar_format_t format = format_for_contents(s);

@ -823,6 +838,7 @@ void env_universal_t::populate_variables(const std::string &s, var_table_t *out_
                break;
        }
    }
+    return format;
 }

 static const wchar_t *skip_spaces(const wchar_t *str) {
--- a/src/env_universal_common.h
+++ b/src/env_universal_common.h
@ -48,6 +48,10 @@ class env_universal_t {
    // Path that we save to. If empty, use the default.
    const wcstring explicit_vars_path;

+    // Whether it's OK to save. This may be set to false if we discover that a future version of
+    // fish wrote the uvars contents.
+    bool ok_to_save{true};
+
    mutable fish_mutex_t lock;
    bool load_from_path(const wcstring &path, callback_data_list_t &callbacks);
    void load_from_fd(int fd, callback_data_list_t &callbacks);
@ -79,7 +83,9 @@ class env_universal_t {
                                          wcstring *storage);
    static void parse_message_30_internal(const wcstring &msg, var_table_t *vars,
                                          wcstring *storage);
-    static var_table_t read_message_internal(int fd);
+    static uvar_format_t read_message_internal(int fd, var_table_t *vars);
+
+    bool save(const wcstring &directory, const wcstring &vars_path);

   public:
    explicit env_universal_t(wcstring path);
@ -108,13 +114,17 @@ class env_universal_t {

    /// Populate a variable table \p out_vars from a \p s string.
    /// This is exposed for testing only.
-    static void populate_variables(const std::string &s, var_table_t *out_vars);
+    /// \return the format of the file that we read.
+    static uvar_format_t populate_variables(const std::string &s, var_table_t *out_vars);

    /// Guess a file format. Exposed for testing only.
    static uvar_format_t format_for_contents(const std::string &s);

    /// Serialize a variable list. Exposed for testing only.
    static std::string serialize_with_vars(const var_table_t &vars);
+
+    /// Exposed for testing only.
+    bool is_ok_to_save() const { return ok_to_save; }
 };

 /// The "universal notifier" is an object responsible for broadcasting and receiving universal
--- a/src/fish_tests.cpp
+++ b/src/fish_tests.cpp
@ -3028,6 +3028,34 @@ static void test_universal_formats() {
    }
 }

+static void test_universal_ok_to_save() {
+    // Ensure we don't try to save after reading from a newer fish.
+    say(L"Testing universal Ok to save");
+    if (system("mkdir -p test/fish_uvars_test/")) err(L"mkdir failed");
+    const char *contents = "# VERSION: 99999.99\n";
+    FILE *fp = wfopen(UVARS_TEST_PATH, "w");
+    assert(fp && "Failed to open UVARS_TEST_PATH for writing");
+    fwrite(contents, strlen(contents), 1, fp);
+    fclose(fp);
+
+    file_id_t before_id = file_id_for_path(UVARS_TEST_PATH);
+    do_test(before_id != kInvalidFileID && "UVARS_TEST_PATH should be readable");
+
+    callback_data_list_t cbs;
+    env_universal_t uvars(UVARS_TEST_PATH);
+    do_test(uvars.is_ok_to_save() && "Should be OK to save before sync");
+    uvars.sync(cbs);
+    cbs.clear();
+    do_test(!uvars.is_ok_to_save() && "Should no longer be OK to save");
+    uvars.set(L"SOMEVAR", {L"SOMEVALUE"}, false);
+    uvars.sync(cbs);
+
+    // Ensure file is same.
+    file_id_t after_id = file_id_for_path(UVARS_TEST_PATH);
+    do_test(before_id == after_id && "UVARS_TEST_PATH should not have changed");
+    (void)system("rm -Rf test/fish_uvars_test/");
+}
+
 bool poll_notifier(const std::unique_ptr<universal_notifier_t> &note) {
    bool result = false;
    if (note->usec_delay_between_polls() > 0) {
@ -4924,6 +4952,7 @@ int main(int argc, char **argv) {
    if (should_test_function("universal")) test_universal_parsing_legacy();
    if (should_test_function("universal")) test_universal_callbacks();
    if (should_test_function("universal")) test_universal_formats();
+    if (should_test_function("universal")) test_universal_ok_to_save();
    if (should_test_function("notifiers")) test_universal_notifiers();
    if (should_test_function("completion_insertions")) test_completion_insertions();
    if (should_test_function("autosuggestion_ignores")) test_autosuggestion_ignores();