Implement RFC 3289: source replacement ambiguity #10907
Conversation
rust-highfive
added
the
S-waiting-on-review
arlosi
force-pushed
the
sr2
branch
2 times, most recently
from
1134053
to
028aa47
Compare
There was a problem hiding this comment.
The code changes themselves are surprisingly small and clear. They look good. Thank you.
However I would like to see tests that explicitly use all the new functionality. Off the top of my head replace-with pointing to a registry. Making sure all the suggested arguments actually work. Making sure that the correct API token goes to the correct server in places where we were doing it wrong before. (And confirming it in the places we were doing it right before.) To be fair maybe these are being tested by existing tests, and I didn't notice in all of the mechanical changes that were required. If so I'm sorry.
On a meta-note: as are reviewing bandwidth continues to be very limited, I want to push to have more of the "obviously correct things" tested. There are very few people who can keep all of the implications of all of cargoes functionality in their head, and at the moment there's only one of them on the team. Inevitably there are gonna be some PR's that are merged without fully realizing all of the implications, the closer we can get to "all the existing tests still pass, so it's safe to ship" the better.
|
@arlosi do we have good testing for "Making sure that the correct API token goes to the correct server in places where we were doing it wrong before. (And confirming it in the places we were doing it right before.)" aside from that, this looks good to me except for the questions about how to test |
This comment was marked as outdated.
This comment was marked as outdated.
bors
added
S-waiting-on-bors
This comment was marked as outdated.
This comment was marked as outdated.
Implement RFC 3289: source replacement ambiguity ### Implements [RFC 3289](rust-lang/rfcs#3289) * When the crates-io source is replaced, the user needs to specify `--registry <NAME>` when running an API operation to disambiguate which registry to use. Otherwise, cargo will issue a new error. * In source replacement, the `replace-with` key can reference the name of an alt registry in the `[registries]` table. * Publishing to source-replaced crates.io is no longer permitted using the crates.io token (`registry.token`). We have had a deprecation warning in place since #7973 (1.45.0). ### Testing * Tests are updated to add the `--registry dummy-registry` parameter to specify the test registry (otherwise they would get the new error message) * A few tests that need to verify crates-io-specific configuration use an internal `allow_silent_crates_io_replacement` function to allow the previous behavior of silently replacing crates.io within the testing framework. Changes are insta-stable. cc #10894 r? `@Eh2406`
|
@bors r- |
bors
added
S-waiting-on-author
This comment was marked as outdated.
This comment was marked as outdated.
bors
added
S-waiting-on-review
arlosi
force-pushed
the
sr2
branch
3 times, most recently
from
52d330c
to
a620d05
Compare
|
The changes look good, and well tested. I would just approve, but this is insta-stable. So I'm going to ask for some checkmarks. By the way, rereading the RFC I'm not seeing code for " @rfcbot merge |
|
Team member @Eh2406 has proposed to merge this. The next step is review by the rest of the tagged team members: No concerns currently listed. Once a majority of reviewers approve (and at most 2 approvals are outstanding), this will enter its final comment period. If you spot a major issue that hasn't been raised at any point in this process, please speak up! See this document for info about what commands tagged team members can give me. |
rfcbot
added
proposed-final-comment-period
There was a problem hiding this comment.
Looks great, thank you very much!
Can you update the config documentation for replace-with to also mention it can use a name from the [registries] table? here
Just to double-check: What is the behavior of the verification step when crates.io is replaced? Does it resolve using the replaced source, or does it use crates.io? I can't find a test for that scenario, and I vaguely recall discussing this situation, but I don't remember the details.
bors
added
the
S-waiting-on-review
This new test needs to disambiguate as well. cargo/tests/testsuite/login.rs Lines 95 to 120 in 882c5dd |
|
@bors r=ehuss |
bors
added
S-waiting-on-bors
|
☀️ Test successful - checks-actions |
Ran into confusion on this when updating rust-lang#11062 to be on top of rust-lang#10907. This now threads both types of sources through which comments explaining each so callers will always have to explicitly acknowledge which they are dealing with.
9 commits in 3cdf1ab25dc4fe56f890e8c7330d53a23ad905d3..b8f30cb23c4e5f20854a4f683325782b7cff9837 2022-10-07 17:34:03 +0000 to 2022-10-10 19:16:06 +0000 - Add more doc comments for three modules (rust-lang/cargo#11207) - docs: fix (rust-lang/cargo#11208) - Add completions for `cargo remove` (rust-lang/cargo#11204) - Config file loaded via CLI takes priority over env vars (rust-lang/cargo#11077) - Use `#[default]` when possible (rust-lang/cargo#11197) - Implement RFC 3289: source replacement ambiguity (rust-lang/cargo#10907) - Use correct version of cargo in test (rust-lang/cargo#11193) - Check empty input for login (rust-lang/cargo#11145) - Add retry support to sparse registries (rust-lang/cargo#11069)
Update cargo 9 commits in 3cdf1ab25dc4fe56f890e8c7330d53a23ad905d3..b8f30cb23c4e5f20854a4f683325782b7cff9837 2022-10-07 17:34:03 +0000 to 2022-10-10 19:16:06 +0000 - Add more doc comments for three modules (rust-lang/cargo#11207) - docs: fix (rust-lang/cargo#11208) - Add completions for `cargo remove` (rust-lang/cargo#11204) - Config file loaded via CLI takes priority over env vars (rust-lang/cargo#11077) - Use `#[default]` when possible (rust-lang/cargo#11197) - Implement RFC 3289: source replacement ambiguity (rust-lang/cargo#10907) - Use correct version of cargo in test (rust-lang/cargo#11193) - Check empty input for login (rust-lang/cargo#11145) - Add retry support to sparse registries (rust-lang/cargo#11069)
Ran into confusion on this when updating rust-lang#11062 to be on top of rust-lang#10907. This now threads both types of sources through which comments explaining each so callers will always have to explicitly acknowledge which they are dealing with.
Ran into confusion on this when updating rust-lang#11062 to be on top of rust-lang#10907. This now threads both types of sources through which comments explaining each so callers will always have to explicitly acknowledge which they are dealing with.
Fix old_cargos tests Some of these tests have bitrotted a bit since they aren't enabled by default. The issues are: * Change to `config` to `config.toml` shouldn't have been made to this test since old cargos can't read config.toml. * Cargo's own `Carog.toml` now using dotted keys breaks parsing on some old versions, ignore them. * `cargo pkgid` is now emitting a different format. * #13085 changed how packages are published in the testsuite to correctly include the `[features]` table in the generated `Cargo.toml`. This exposed an oversight in the `old_cargos::new_features` test wasn't actually testing things correctly. It now correctly illustrates the errors received in older versions. I have a vague memory of this, but I don't remember why it was done this way. * #10907 changed the default config to use `[registries]` instead of `[source]` to implement source replacement of crates.io. Older versions can't handle that. Some of these tests probably should just be deleted, since I don't think they are really bringing much value. Or at least they should have some floor that they won't test under. However, I'm not quite ready to do that.
Implements RFC 3289
--registry <NAME>when running an API operation to disambiguate which registry to use. Otherwise, cargo will issue a new error.replace-withkey can reference the name of an alt registry in the[registries]table.registry.token). We have had a deprecation warning in place since Several updates to token/index handling. #7973 (1.45.0).Testing
replace_crates_iofunction, which internally sets an environment variable to change the URL of crates.io.Changes are insta-stable.
cc #10894
r? @Eh2406