Replace nix with rustix

[notgull]

Closes #770 by replacing nix with rustix. rustix has several advantages over nix, the prime one being that, on Linux, system calls are done without going through the libc. This means that, in certain cases, the system calls can be directly inlined into the functioned that call them.

The only issue right now is with RawFdContainer. rustix doesn't deal with RawFds, it uses I/O-safe BorrowedFd and OwnedFd types (not the ones used in Rustc 1.63). This means that I have to reimplement RawFdContainer as a newtype around OwnedFd. This is a breaking change, and I would like to avoid it if possible, but as far as I know there isn't a real way around it.

I'm filing this as a draft for now to discuss if there is a way around this.

[psychon]

Basically 👍 . I didn't find anything that made me go "ewww" and I am fine with trying this out.

To answer to your original comment:

The only issue right now is with RawFdContainer. rustix doesn't deal with RawFds, it uses I/O-safe BorrowedFd and OwnedFd types (not the ones used in Rustc 1.63). This means that I have to reimplement RawFdContainer as a newtype around OwnedFd. This is a breaking change, and I would like to avoid it if possible, but as far as I know there isn't a real way around it.

These are actually the fd types from 1.63 if you use that compiler version, I think? Rustix uses io_lifetimes and that auto-detects std support: https://github.com/sunfishcode/io-lifetimes/blob/8aa962eb169deba71b1785076b8f769a41d3d8c8/build.rs#L99-L112

So... this actually starts the conversion away from RawFdContainer to using OwnedFd instead. The two conversions (rustix and io_lifetimes) should IMHO not be entangled. Doing it the way you are starting now means we can use the re-exports from rustix and do not have to explicitly depend on io_lifetimes. ;-)

[psychon]

Well... this comment could be updated. The Drop impl of RawFdContainer is no longer relevant for this, since this is already an OwnedFd, right? (In fact, there is no longer a Drop impl)

[notgull]

So... this actually starts the conversion away from RawFdContainer to using OwnedFd instead. The two conversions (rustix and io_lifetimes) should IMHO not be entangled. Doing it the way you are starting now means we can use the re-exports from rustix and do not have to explicitly depend on io_lifetimes. ;-)

The thing is, though, that we'd have a public dependency on rustix instead. Not the worst thing in the world, but rustix breaks pretty frequently and it would be rough keeping up with that.

I'd rather wait for a month or so for Debian Bookworm to release with Rust 1.63, and then just use OwnedFd from the standard library.

[psychon]

Alternatively, we could have a public dependency on io_lifetimes.

I'm not quite sure whether there is much of a difference between the two options: Since rustix uses io_lifetimes and re-exports that, would we really have a public dependency on rustix? No matter which rustix version we use, other code could just use io_lifetimes and that would work. Or, they could just use OwnedFd from the standard library and that would work on Rust 1.63 and newer (but not on older versions).

[psychon]

I took the liberty of pushing a commit fixing most of my review comments and fixing compilation of the shared_memory example. Feel free to throw these commits away and do things differently, if you want.

My only remaining comment is this one: #815 (comment)

Running the shared_memory example suggests that I was right and there is something wrong with buffer sizes. Since I am not sure about the C / kernel API for FD passing, I'd prefer if you took a look at this and fixed it. I suppose you know exactly what to do.

$ cargo run -p x11rb --example shared_memory --features "libc shm"
    Finished dev [unoptimized + debuginfo] target(s) in 0.06s
     Running `target/debug/examples/shared_memory`
thread 'main' panicked at 'assertion failed: `(left == right)`
  left: `48`,
 right: `0`', /home/psychon/.cargo/registry/src/github.com-1ecc6299db9ec823/rustix-0.37.19/src/backend/linux_raw/net/read_sockaddr.rs:158:17
note: run with `RUST_BACKTRACE=1` environment variable to display a backtrace

Actually... why does this fail with something sockaddr-related? That's not hte error I was expecting. Relevant part of the backtrace:

   3: core::panicking::assert_failed
             at /usr/src/rustc-1.63.0/library/core/src/panicking.rs:181:5
   4: rustix::backend::net::read_sockaddr::read_sockaddr_os
             at /home/psychon/.cargo/registry/src/github.com-1ecc6299db9ec823/rustix-0.37.19/src/backend/linux_raw/net/read_sockaddr.rs:158:17
   5: rustix::backend::net::read_sockaddr::maybe_read_sockaddr_os
             at /home/psychon/.cargo/registry/src/github.com-1ecc6299db9ec823/rustix-0.37.19/src/backend/linux_raw/net/read_sockaddr.rs:120:14
   6: rustix::backend::net::syscalls::recvmsg::{{closure}}::{{closure}}
             at /home/psychon/.cargo/registry/src/github.com-1ecc6299db9ec823/rustix-0.37.19/src/backend/linux_raw/net/syscalls.rs:284:26
   7: core::result::Result<T,E>::map
             at /usr/src/rustc-1.63.0/library/core/src/result.rs:769:25
   8: rustix::backend::net::syscalls::recvmsg::{{closure}}
             at /home/psychon/.cargo/registry/src/github.com-1ecc6299db9ec823/rustix-0.37.19/src/backend/linux_raw/net/syscalls.rs:281:9
   9: rustix::backend::net::msghdr::with_recv_msghdr
             at /home/psychon/.cargo/registry/src/github.com-1ecc6299db9ec823/rustix-0.37.19/src/backend/linux_raw/net/msghdr.rs:49:15
  10: rustix::backend::net::syscalls::recvmsg
             at /home/psychon/.cargo/registry/src/github.com-1ecc6299db9ec823/rustix-0.37.19/src/backend/linux_raw/net/syscalls.rs:257:5
  11: rustix::net::send_recv::msg::recvmsg
             at /home/psychon/.cargo/registry/src/github.com-1ecc6299db9ec823/rustix-0.37.19/src/net/send_recv/msg.rs:568:5
  12: <x11rb::rust_connection::stream::DefaultStream as x11rb::rust_connection::stream::Stream>::read
             at ./x11rb/src/rust_connection/stream.rs:447:23

Edit: strace has no problem with the recvmsg parameters:

recvmsg(4, {msg_name={sa_family=AF_UNIX, sun_path=@"/tmp/.X11-unix/X0"}, msg_namelen=128 => 20, msg_iov=[{iov_base="\1\0\v\0\0\0C\16", iov_len=8}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_CMSG_CLOEXEC}, MSG_CMSG_CLOEXEC) = 8

Edit: Opened bytecodealliance/rustix#660

[notgull]

Thanks for pushing! rustix's socket code still might have a few holes in it... probably causes this, yeah

[notgull]

It looks like the maintainer of gethostname would like to avoid switching to rustix. Not a problem for now, but to get libc out of our dependency graph it would be nice to either fork it or find something else.

[notgull]

Realized that I forgot to mark this as ready when 1.63 dropped in Debian Stable. Oh well. It's about ready now, just needs some straightening out.

[eduardosm]

Realized that I forgot to mark this as ready when 1.63 dropped in Debian Stable. Oh well. It's about ready now, just needs some straightening out.

Did I miss something? This PR does not bump the MSRV to 1.63 and uses rustix::fd::OwnedFd.

[notgull]

I was waiting until Debian Stable released with v1.63.0 in order to make sure DS users aren't left behind.

[psychon]

This adds a dependency on rustix 0.37. rustix bumped its msrv to Rust 1.63 in version 0.38. So, we would be stuck on Rustix 0.37 until our next MSRV bump.

Rustix' readme says:

This crate currently works on the version of Rust on Debian stable, which is currently Rust 1.63. This policy may change in the future, in minor version releases, so users using a fixed version of Rust should pin to a specific version of this crate.

Uhm... we are a lib, we can't really pin this. This makes me feel uneasy since we already had enough msrv-related problems in the past.

On the other hand, x11rb's de-facto MSRV policy is "never update, unless a dependency forces us". Perhaps something like "Debian stable" would actually be a better policy. Dunno.

[codecov]

Codecov Report

Patch coverage: 3.57% and project coverage change: +0.04% 🎉

Comparison is base (74ae136) 12.73% compared to head (343be5e) 12.78%.
Report is 8 commits behind head on master.

Additional details and impacted files

@@            Coverage Diff             @@
##           master     #815      +/-   ##
==========================================
+ Coverage   12.73%   12.78%   +0.04%     
==========================================
  Files         189      189              
  Lines      137972   138331     +359     
==========================================
+ Hits        17568    17679     +111     
- Misses     120404   120652     +248     

Flag	Coverage Δ
tests	12.78% <3.57%> (+0.04%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

Files Changed	Coverage Δ
x11rb-async/examples/shared_memory_async.rs	0.00% <ø> (ø)
x11rb-async/src/rust_connection/extensions.rs	1.33% <0.00%> (+0.18%)	⬆️
x11rb-protocol/src/protocol/dri3.rs	0.00% <0.00%> (ø)
x11rb-protocol/src/protocol/randr.rs	0.43% <0.00%> (ø)
x11rb-protocol/src/protocol/shm.rs	0.00% <0.00%> (ø)
x11rb-protocol/src/utils.rs	100.00% <ø> (+16.10%)	⬆️
x11rb/src/rust_connection/stream.rs	4.80% <0.00%> (+0.45%)	⬆️
x11rb/src/xcb_ffi/mod.rs	22.22% <0.00%> (-1.42%)	⬇️
generator/src/generator/namespace/mod.rs	98.26% <100.00%> (+<0.01%)	⬆️
x11rb-async/tests/connection_regression_tests.rs	83.33% <100.00%> (ø)

... and 7 files with indirect coverage changes

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[notgull]

I've updated to rustix 0.38. This involves an MSRV bump to 1.63. I've also completely replaced RawFdContainer with OwnedFd.

[notgull]

I think I've addressed the rest of the review comments.

On the other hand, x11rb's de-facto MSRV policy is "never update, unless a dependency forces us". Perhaps something like "Debian stable" would actually be a better policy. Dunno.

smol-rs's MSRV policy is basically this and it's worked well for us. I would support it.

[eduardosm]

LGTM

@psychon We'll wait for your final review before merging.

[psychon]

I am not too happy about the MSRV bump, but I guess I am being too conservative here, so whatever. Basically 👍 except for some nits.

(Do I get the steak dinner also if I write a program to run into this error on purpose, instead of just stumbling upon it accidentally? ;-) )

---

@eduardosm

@psychon We'll wait for your final review before merging.

Heh, feel free to approve things if you think it is fine. I'm trying not to be a BDFL. ;-)

[psychon]

Thanks! And nice solution for de-duplicating the doc comment on the former RawFdContainer.