Skip to content

Add support for name_to_handle_at(2), open_by_handle_at(2) on Linux #1517

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 4 commits into
base: main
Choose a base branch
from
Open

Add support for name_to_handle_at(2), open_by_handle_at(2) on Linux #1517

wants to merge 4 commits into from

Conversation

bertschingert
Copy link

This adds support for {name_to,open_by}_handle_at(2) on Linux.

I have a Rust application that wants to use these syscalls and it would be really nice to use a standard library rather than roll my own wrappers.

I would consider this an RFC at this point because I do have a few open questions about the API:

  1. I don't believe it's valid for user applications to interpret or modify the handle_bytes and handle_type fields, even though they are exposed in the C struct definition. (The handle_bytes field does need to be accessed to size the handle correctly, but that is handled by this library, so user apps need not worry about that.) So this API makes struct FileHandle entirely opaque. If I'm wrong and there is a valid reason for a user app to access those fields, I think getter/setters could be added in the future without breaking the API...
  2. It could be useful to have some kind of BorrowedFileHandle type that contains &[u8] instead of Box<[u8]> -- I don't immediately have a use case for it, so I didn't implement it, but putting it out there in case the idea does seem useful
  3. name_to_handle_at(2) is interesting in that its signature is different depending on the flag AT_HANDLE_MNT_ID_UNIQUE -- the mount_id parameter is either an int *, or u64 *. I thought of two ways to handle this in rust: create a separate name_to_handle_at_unique() function for the u64 variant, or create an Enum so that one function can return both kinds of mount_id. I went with the latter, but I could see an argument for the former being better. Thoughts?

I want to be able to store a filehandle and/or send it over the network, and then use it again when I get it back, so that is the reason for adding public from_raw() and into_raw() methods onto struct FileHandle.

Another question is how to test this -- since open_by_handle_at(2) requires CAP_DAC_READ_SEARCH privilege, programs that use it typically run as root. Is there a precedent for how to write unit/integration tests that require root in Rustix? (I have an external test program I ran with sudo to test this, I can share it if that would be helpful.)

@bertschingert
fs: introduce name_to_handle_at()
bdb8a1b
@bertschingert
fs: introduce open_by_handle_at()
35587db
@bertschingert
filehandle: trim the filehandle slice before returning it to user
60ea286 
This way, once the user gets it, the filehandle slice is only as large
as it needs to be. Then if the user copies it, excess unused bytes are
not copied.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@bertschingert