Skip to content

Commit

Permalink
Reusable handle to thread-local replaceable stdout/err
Browse files Browse the repository at this point in the history 
Lays the groundwork for mitigating:
- rust-lang#12309
- rust-lang#31983
- rust-lang#40298
- rust-lang#42474
  • Loading branch information
@CAD97
CAD97 committed May 5, 2018
1 parent 91db9dc commit db999dc
Show file tree
Hide file tree
Showing 3 changed files with 103 additions and 62 deletions.
5 changes: 5 additions & 0 deletions src/libstd/io/mod.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -297,6 +297,11 @@ pub use self::stdio::{_print, _eprint};
#[unstable(feature = "libstd_io_internals", issue = "42788")]
#[doc(no_inline, hidden)]
pub use self::stdio::{set_panic, set_print};
#[unstable(feature = "set_stdio",
reason = "this may disappear completely or be replaced \
with a more general mechanism",
issue = "0")]
pub use self::stdio::{LocalStderr, LocalStdout};

pub mod prelude;
mod buffered;
Expand Down
134 changes: 95 additions & 39 deletions src/libstd/io/stdio.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,6 +26,97 @@ thread_local! {
}
}

/// Stderr used by the default panic handler, eprint!, and eprintln! macros
thread_local! {
pub(crate) static LOCAL_STDERR: RefCell<Option<Box<Write + Send>>> = {
RefCell::new(None)
}
}

/// Get a handle to the `local` output stream if possible,
/// falling back to using `global` otherwise.
///
/// This function is used to print error messages, so it takes extra
/// care to avoid causing a panic when `local_stream` is unusable.
/// For instance, if the TLS key for the local stream is
/// already destroyed, or if the local stream is locked by another
/// thread, it will just fall back to the global stream.
#[inline]
fn with_write<W: Write, R, F: Fn(&mut io::Write) -> R>(
local: &'static LocalKey<RefCell<Option<Box<Write+Send>>>>,
global: fn() -> W,
f: F,
) -> R {
local.try_with(|s| {
if let Ok(mut borrowed) = s.try_borrow_mut() {
if let Some(w) = borrowed.as_mut() {
return f(w);
}
}
f(&mut global())
}).unwrap_or_else(|_| {
f(&mut global())
})
}

/// A `Write` handle that is usually the same as using [`io::stdout()`],
/// but is overridden during test runs thread-locally to capture output.
/// This is how `println!` family macros work during test runs.
#[unstable(feature = "set_stdio",
reason = "this may disappear completely or be replaced \
with a more general mechanism",
issue = "0")]
#[derive(Debug)]
pub struct LocalStdout;

/// A `Write` handle that is usually the same as using [`io::stderr()`],
/// but is overridden during test runs thread-locally to capture output.
/// This is how `eprintln!` family macros work during test runs.
#[unstable(feature = "set_stdio",
reason = "this may disappear completely or be replaced \
with a more general mechanism",
issue = "0")]
#[derive(Debug)]
pub struct LocalStderr;

#[unstable(feature = "set_stdio",
reason = "this may disappear completely or be replaced \
with a more general mechanism",
issue = "0")]
impl Write for LocalStdout {
fn write(&mut self, buf: &[u8]) -> io::Result<usize> {
with_write(&LOCAL_STDOUT, stdout, move |w| w.write(buf))
}
fn flush(&mut self) -> io::Result<()> {
with_write(&LOCAL_STDOUT, stdout, move |w| w.flush())
}
fn write_all(&mut self, buf: &[u8]) -> io::Result<()> {
with_write(&LOCAL_STDOUT, stdout, move |w| w.write_all(buf))
}
fn write_fmt(&mut self, fmt: fmt::Arguments) -> io::Result<()> {
with_write(&LOCAL_STDOUT, stdout, move |w| w.write_fmt(fmt))
}
}

#[unstable(feature = "set_stdio",
reason = "this may disappear completely or be replaced \
with a more general mechanism",
issue = "0")]
impl Write for LocalStderr {
fn write(&mut self, buf: &[u8]) -> io::Result<usize> {
with_write(&LOCAL_STDERR, stderr, move |w| w.write(buf))
}
fn flush(&mut self) -> io::Result<()> {
with_write(&LOCAL_STDERR, stderr, move |w| w.flush())
}
fn write_all(&mut self, buf: &[u8]) -> io::Result<()> {
with_write(&LOCAL_STDERR, stderr, move |w| w.write_all(buf))
}
fn write_fmt(&mut self, fmt: fmt::Arguments) -> io::Result<()> {
with_write(&LOCAL_STDERR, stderr, move |w| w.write_fmt(fmt))
}
}

/// A handle to a raw instance of the standard input stream of this process.
///
/// This handle is not synchronized or buffered in any fashion. Constructed via
Expand Down Expand Up @@ -625,7 +716,6 @@ impl<'a> fmt::Debug for StderrLock<'a> {
issue = "0")]
#[doc(hidden)]
pub fn set_panic(sink: Option<Box<Write + Send>>) -> Option<Box<Write + Send>> {
use panicking::LOCAL_STDERR;
use mem;
LOCAL_STDERR.with(move |slot| {
mem::replace(&mut *slot.borrow_mut(), sink)
Expand Down Expand Up @@ -658,56 +748,22 @@ pub fn set_print(sink: Option<Box<Write + Send>>) -> Option<Box<Write + Send>> {
})
}

/// Write `args` to output stream `local_s` if possible, `global_s`
/// otherwise. `label` identifies the stream in a panic message.
///
/// This function is used to print error messages, so it takes extra
/// care to avoid causing a panic when `local_stream` is unusable.
/// For instance, if the TLS key for the local stream is
/// already destroyed, or if the local stream is locked by another
/// thread, it will just fall back to the global stream.
///
/// However, if the actual I/O causes an error, this function does panic.
fn print_to<T>(
args: fmt::Arguments,
local_s: &'static LocalKey<RefCell<Option<Box<Write+Send>>>>,
global_s: fn() -> T,
label: &str,
)
where
T: Write,
{
let result = local_s.try_with(|s| {
if let Ok(mut borrowed) = s.try_borrow_mut() {
if let Some(w) = borrowed.as_mut() {
return w.write_fmt(args);
}
}
global_s().write_fmt(args)
}).unwrap_or_else(|_| {
global_s().write_fmt(args)
});

if let Err(e) = result {
panic!("failed printing to {}: {}", label, e);
}
}

#[unstable(feature = "print_internals",
reason = "implementation detail which may disappear or be replaced at any time",
issue = "0")]
#[doc(hidden)]
pub fn _print(args: fmt::Arguments) {
print_to(args, &LOCAL_STDOUT, stdout, "stdout");
LocalStdout.write_fmt(args)
.unwrap_or_else(|e| panic!("failed printing to stdout: {}", e));
}

#[unstable(feature = "print_internals",
reason = "implementation detail which may disappear or be replaced at any time",
issue = "0")]
#[doc(hidden)]
pub fn _eprint(args: fmt::Arguments) {
use panicking::LOCAL_STDERR;
print_to(args, &LOCAL_STDERR, stderr, "stderr");
LocalStderr.write_fmt(args)
.unwrap_or_else(|e| panic!("failed printing to stderr: {}", e));
}

#[cfg(test)]
Expand Down
26 changes: 3 additions & 23 deletions src/libstd/panicking.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,28 +19,20 @@
use core::panic::BoxMeUp;

use io::prelude::*;

use any::Any;
use cell::RefCell;
use core::panic::{PanicInfo, Location};
use fmt;
use intrinsics;
use io::LocalStderr;
use mem;
use ptr;
use raw;
use sys::stdio::{Stderr, stderr_prints_nothing};
use sys::stdio::stderr_prints_nothing;
use sys_common::rwlock::RWLock;
use sys_common::thread_info;
use sys_common::util;
use thread;

thread_local! {
pub static LOCAL_STDERR: RefCell<Option<Box<Write + Send>>> = {
RefCell::new(None)
}
}

// Binary interface to the panic runtime that the standard library depends on.
//
// The standard library is tagged with `#![needs_panic_runtime]` (introduced in
Expand Down Expand Up @@ -193,7 +185,6 @@ fn default_hook(info: &PanicInfo) {
None => "Box<Any>",
}
};
let mut err = Stderr::new().ok();
let thread = thread_info::current_thread();
let name = thread.as_ref().and_then(|t| t.name()).unwrap_or("<unnamed>");

Expand All @@ -215,18 +206,7 @@ fn default_hook(info: &PanicInfo) {
}
};

let prev = LOCAL_STDERR.with(|s| s.borrow_mut().take());
match (prev, err.as_mut()) {
(Some(mut stderr), _) => {
write(&mut *stderr);
let mut s = Some(stderr);
LOCAL_STDERR.with(|slot| {
*slot.borrow_mut() = s.take();
});
}
(None, Some(ref mut err)) => { write(err) }
_ => {}
}
write(&mut LocalStderr);
}


Expand Down

0 comments on commit db999dc

Please sign in to comment.