Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix UB when interacting with Stream::Null(_) #2802

Open
wants to merge 3 commits into
base: master
Choose a base branch
from
Open

Fix UB when interacting with Stream::Null(_) #2802

wants to merge 3 commits into from

Conversation

adri326
Copy link
Contributor

@adri326 adri326 commented Jan 31, 2025
edited
Loading

The following test triggers UB on master, while using public-facing APIs:

#[test]
fn write_null_input_stream() {
    let mut machine = MachineBuilder::new()
        .with_streams(StreamConfig::in_memory())
        .build();

    let results = machine
        .run_query("current_input(Stream), write(Stream, hello).")
        .collect::<Vec<_>>();

    assert_eq!(results.len(), 1);
    assert!(results[0].is_err());
}

This PR fixes #2801, by:

  • Ensuring that null streams aren't returned as null Cons (they instead return atom!("null_stream"), which is mapped to Stream::Null(Default::default()) in Machine::configure_streams().
  • Turning the stream_as_cell! macro into an impl From<Stream> for HeapCellValue.
  • Making it so that null streams can be written to (voiding the stuff written) and read from (always returning eof).

I left in the sanity checks used while debugging the issue, in case someone inadvertently creates another null Cons in the future.

@adri326
Add debug asserts to UntypedArenaPtr::build_with, ::get_tag and raw_p…
079a693 
…tr_as_cell!

These two functions are pretty unsafe, but having these assertions makes
it easier to catch UB in testing.
@adri326 adri326 mentioned this pull request Jan 31, 2025
Open
@bakaq
Copy link
Contributor

bakaq commented Jan 31, 2025

Heads up: Remember to #[cfg(miri, ignore)] tests that create a Machine. Currently they take forever and eventually fail anyway.

@Skgland
Copy link
Contributor

Skgland commented Jan 31, 2025

(This is left as a draft since I have to take a flight this evening and I'm still unsure as to what the behavior of a null stream should be. Right now they cannot be read/written from/to, and errors are thrown)

I would expect a null stream to act like reading/writing to /dev/null

@bakaq bakaq mentioned this pull request Feb 1, 2025
Open
@adri326 adri326 force-pushed the null-stream-safety branch from f2a4ef8 to c31e369 Compare February 2, 2025 23:08
@adri326 adri326 marked this pull request as ready for review February 2, 2025 23:08
@adri326 adri326 force-pushed the null-stream-safety branch from c31e369 to 7108e87 Compare February 2, 2025 23:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Doing anything with a null stream crashes
3 participants
@adri326 @bakaq @Skgland