This is an archive of the discontinued LLVM Phabricator instance.

Differential D91170

[15/N] [libcxx] Implement the canonical function for windows
ClosedPublic

Authored by mstorsjo on Nov 10 2020, 8:36 AM.

Details

Reviewers
amccarth
EricWF
ldionne
Group Reviewers
Restricted Project
Commits
rG83d705adb2e0: [libcxx] Implement the canonical function for windows

Diff Detail

Event Timeline

mstorsjo created this revision.Nov 10 2020, 8:36 AM
Herald added a project: Restricted Project. · View Herald TranscriptNov 10 2020, 8:36 AM
Herald added 1 blocking reviewer(s): Restricted Project. · View Herald Transcript
mstorsjo requested review of this revision.Nov 10 2020, 8:36 AM
mstorsjo added a parent revision: D91169: [14/N] [libcxx] Implement the current_path function for windows.
Harbormaster completed remote builds in B78304: Diff 304206.Nov 10 2020, 8:37 AM
mstorsjo added a child revision: D91171: [16/N] [libcxx] Implement the permissions function for windows.Nov 10 2020, 8:38 AM
mstorsjo updated this revision to Diff 305082.Nov 13 2020, 3:45 AM
mstorsjo added a reviewer: amccarth.

Rebased on top of updated patches.

mstorsjo added a reviewer: EricWF.Nov 21 2020, 6:20 AM
amccarth requested changes to this revision.Dec 3 2020, 2:56 PM
amccarth added inline comments.
libcxx/src/filesystem/operations.cpp
863

This return value needs to be checked more carefully.

If the final path is longer than the buffer, then GetFinalPathNameByHandleW will return the actual length needed, which will convince this if statement that the call succeeded when it didn't, and then we'll process the uninitialized buffer.

How can the final path require a buffer longer than MAX_PATH? Two ways:

  1. The function always returns the \\?\ prefix, so a path that (with it's terminating L'\0') is exactly MAX_PATH will require MAX_PATH+4 when the prefix is added.
  1. MAX_PATH applies to most Windows APIs, but not to the actual filesystem. It's possible to have a final path that's longer than MAX_PATH (especially since it's using the \\?\ prefix). If we don't think it's worth handling those, fine, but we'd need to detect that case so that we can return an error. (A common way this happens is when the user uses subst to replace a long prefix with a fictitious drive letter. This is, in fact, how we get certain LLDB source paths under the MAX_PATH limit on some of the Windows build bots.)
This revision now requires changes to proceed.Dec 3 2020, 2:56 PM
mstorsjo added inline comments.Dec 4 2020, 4:05 AM
libcxx/src/filesystem/operations.cpp
863

Thanks, good catch. Will update with a stack buffer that should fit all practical cases (MAX_PATH+10) and fall back on dynamic allocation if that wasn't big enough.

mstorsjo updated this revision to Diff 309509.Dec 4 2020, 4:07 AM

Check the return value of GetFinalPathNameFromHandleW if it overflowed the buffer size and handle it appropriately.

amccarth accepted this revision.Dec 11 2020, 2:28 PM

LGTM.

mstorsjo mentioned this in D91141: [9/N] [libcxx] Implement the stat function family on top of native windows APIs.Jan 18 2021, 11:07 AM
mstorsjo updated this revision to Diff 317581.Jan 19 2021, 8:25 AM

Made a new realpath posix-like helper for windows, change explicit char to path::value_type in calling code.

ldionne set the repository for this revision to rG LLVM Github Monorepo.Jan 28 2021, 3:18 PM
mstorsjo removed rG LLVM Github Monorepo as the repository for this revision.Jan 29 2021, 4:33 AM
mstorsjo updated this revision to Diff 320103.Jan 29 2021, 4:37 AM
mstorsjo set the repository for this revision to rG LLVM Github Monorepo.

Rebased, retriggering CI.

Compared to the older version that @amccarth approved, this is a little bit reworked to fit into the POSIX realpath() interface, which means it returns a malloc() allocated buffer, so the end of the function uses a bit of memmove/wcscpy to assemble paths, instead of the slightly simpler version before (when operating on the level of the __canonical function that returns a std::filesystem::path).

This touches the existing code a little bit to just change char into path::value_type, and add the detail:: prefix on the calls to realpath().

Harbormaster completed remote builds in B87148: Diff 320103.Jan 29 2021, 7:18 AM
amccarth accepted this revision.Jan 29 2021, 10:45 AM

The changes to provide realpath on Windows looks right. Since it's relying on a system call, it would be difficult to create tests for the \\?\ and UNC cases. I'm assuming the more mainstream cases will be tested by existing tests. So LGTM.

ldionne accepted this revision.Feb 2 2021, 12:30 PM
This revision is now accepted and ready to land.Feb 2 2021, 12:30 PM
Closed by commit rG83d705adb2e0: [libcxx] Implement the canonical function for windows (authored by mstorsjo). · Explain WhyFeb 2 2021, 1:04 PM
This revision was automatically updated to reflect the committed changes.
mstorsjo added a commit: rG83d705adb2e0: [libcxx] Implement the canonical function for windows.

Revision Contents

PathSize
libcxx/
src/
filesystem/
12 lines
38 lines

Diff 317581

libcxx/src/filesystem/operations.cpp

Context not available.
ErrorHandler<path> err("canonical", ec, &orig_p, &cwd); ErrorHandler<path> err("canonical", ec, &orig_p, &cwd);
path p = __do_absolute(orig_p, &cwd, ec); path p = __do_absolute(orig_p, &cwd, ec);
#if defined(_POSIX_VERSION) && _POSIX_VERSION >= 200112 #if (defined(_POSIX_VERSION) && _POSIX_VERSION >= 200112) || defined(_LIBCPP_WIN32API)
std::unique_ptr<char, decltype(&::free)> std::unique_ptr<path::value_type, decltype(&::free)>
hold(::realpath(p.c_str(), nullptr), &::free); hold(detail::realpath(p.c_str(), nullptr), &::free);
if (hold.get() == nullptr) if (hold.get() == nullptr)
return err.report(capture_errno()); return err.report(capture_errno());
return {hold.get()}; return {hold.get()};
#else #else
char buff[PATH_MAX + 1]; path::value_type buff[PATH_MAX + 1];
char* ret; path::value_type* ret;
if ((ret = ::realpath(p.c_str(), buff)) == nullptr) if ((ret = detail::realpath(p.c_str(), buff)) == nullptr)
return err.report(capture_errno()); return err.report(capture_errno());
return {ret}; return {ret};
#endif #endif
Context not available.
amccarthUnsubmitted
Not Done
ReplyInline Actions

This return value needs to be checked more carefully.

If the final path is longer than the buffer, then GetFinalPathNameByHandleW will return the actual length needed, which will convince this if statement that the call succeeded when it didn't, and then we'll process the uninitialized buffer.

How can the final path require a buffer longer than MAX_PATH? Two ways:

  1. The function always returns the \\?\ prefix, so a path that (with it's terminating L'\0') is exactly MAX_PATH will require MAX_PATH+4 when the prefix is added.
  1. MAX_PATH applies to most Windows APIs, but not to the actual filesystem. It's possible to have a final path that's longer than MAX_PATH (especially since it's using the \\?\ prefix). If we don't think it's worth handling those, fine, but we'd need to detect that case so that we can return an error. (A common way this happens is when the user uses subst to replace a long prefix with a fictitious drive letter. This is, in fact, how we get certain LLDB source paths under the MAX_PATH limit on some of the Windows build bots.)
amccarth: This return value needs to be checked more carefully. If the final path is longer than the…
mstorsjoAuthorUnsubmitted
Done
ReplyInline Actions

Thanks, good catch. Will update with a stack buffer that should fit all practical cases (MAX_PATH+10) and fall back on dynamic allocation if that wasn't big enough.

mstorsjo: Thanks, good catch. Will update with a stack buffer that should fit all practical cases…

libcxx/src/filesystem/posix_compat.h

Context not available.
int chdir(const wchar_t *path) { return _wchdir(path); } int chdir(const wchar_t *path) { return _wchdir(path); }
wchar_t *getcwd(wchar_t *buff, size_t size) { return _wgetcwd(buff, size); } wchar_t *getcwd(wchar_t *buff, size_t size) { return _wgetcwd(buff, size); }
wchar_t *realpath(const wchar_t *path, wchar_t *resolved_name) {
// Only expected to be used with us allocating the buffer.
_LIBCPP_ASSERT(resolved_name == nullptr,
"Windows realpath() assumes a null resolved_name");
WinHandle h(path, FILE_READ_ATTRIBUTES, 0);
if (!h) {
set_errno();
return nullptr;
}
size_t buff_size = MAX_PATH + 10;
std::unique_ptr<wchar_t, decltype(&::free)> buff(
static_cast<wchar_t *>(malloc(buff_size * sizeof(wchar_t))), &::free);
DWORD retval = GetFinalPathNameByHandleW(
h, buff.get(), buff_size, FILE_NAME_NORMALIZED | VOLUME_NAME_DOS);
if (retval > buff_size) {
buff_size = retval;
buff.reset(static_cast<wchar_t *>(malloc(buff_size * sizeof(wchar_t))));
retval = GetFinalPathNameByHandleW(h, buff.get(), buff_size,
FILE_NAME_NORMALIZED | VOLUME_NAME_DOS);
}
if (!retval) {
set_errno();
return nullptr;
}
wchar_t *ptr = buff.get();
if (!wcsncmp(ptr, L"\\\\?\\", 4)) {
if (ptr[5] == ':') { // \\?\X: -> X:
memmove(&ptr[0], &ptr[4], (wcslen(&ptr[4]) + 1) * sizeof(wchar_t));
} else if (!wcsncmp(&ptr[4], L"UNC\\", 4)) { // \\?\UNC\server -> \\server
wcscpy(&ptr[0], L"\\\\");
memmove(&ptr[2], &ptr[8], (wcslen(&ptr[8]) + 1) * sizeof(wchar_t));
}
}
return buff.release();
}
#else #else
int symlink_file(const char *oldname, const char *newname) { int symlink_file(const char *oldname, const char *newname) {
return ::symlink(oldname, newname); return ::symlink(oldname, newname);
Context not available.
using ::lstat; using ::lstat;
using ::mkdir; using ::mkdir;
using ::open; using ::open;
using ::realpath;
using ::remove; using ::remove;
using ::rename; using ::rename;
using ::stat; using ::stat;
Context not available.