Skip to content
Snippets Groups Projects

config load: Move mistrust checking to load()

Merged config load: Move mistrust checking to load()
Diziet/arti:mistrust-load into main
2 unresolved threads
Merged Ian Jackson requested to merge Diziet/arti:mistrust-load into main
2 unresolved threads

As per #472 (closed)

Experimentation convinced me the Mistrust should be within the ConfigurationSources.

Merge request reports

Loading
Loading

Activity

Filter activity
  • Approvals
  • Assignees & reviewers
  • Comments (from bots)
  • Comments (from users)
  • Commits & branches
  • Edits
  • Labels
  • Lock status
  • Mentions
  • Merge request status
  • Tracking
crates/arti-config/src/lib.rs
66 68 files: Vec<(PathBuf, MustRead)>,
67 69 /// A list of command-line options to apply after parsing the files.
68 70 options: Vec<String>,
71 /// We will check all files we read
72 mistrust: fs_mistrust::Mistrust,
  • Nick Mathewson
    Nick Mathewson @nickm ·
    Owner

    Eventually we might want this to be an option so that we can take our default from the environment at load-time if it hasn't been set. That doesn't need to be done in this branch, though.

  • Ian Jackson
    Ian Jackson @Diziet ·
    Author Maintainer

    To do that, either load ought to take the env var name to check for, or we should change the name of the mistrust-disabling env var to be more general and implement it lower down.

    Maybe the "Disable via env var" ought to be in fs-mistrust?

  • Please register or sign in to reply
  • Nick Mathewson
    Nick Mathewson @nickm started a thread on an outdated change in commit fec43373
    • crates/arti-config/src/lib.rs
    182 189 /// builder.
    183 190 fn add_sources<P>(
    184 191 mut builder: ConfigBuilder,
    192 mistrust: &fs_mistrust::Mistrust,
    185 193 files: &[(P, MustRead)],
    186 194 opts: &[String],
    187 ) -> ConfigBuilder
    195 ) -> Result<ConfigBuilder, ConfigError>
    188 196 where
    189 197 P: AsRef<Path>,
    190 198 {
    191 199 for (path, must_read) in files {
    192 200 // Not going to use File::with_name here, since it doesn't
  • Nick Mathewson
    Nick Mathewson @nickm ·
    Owner

    This mostly lgtm; please feel free to merge after fixing (or not) the issues above.

  • Nick Mathewson approved this merge request

    approved this merge request

  • Ian Jackson added 1 commit

    added 1 commit

    Compare with previous version

  • Ian Jackson
    Ian Jackson @Diziet ·
    Author Maintainer

    Thanks. Have fixed the comment. Will merge this now, but let's keep talking about the mistrust env var / load configuration aspects.

  • Ian Jackson added 28 commits

    added 28 commits

    • e4d4a15f...f0eac618 - 25 commits from branch tpo/core:main
    • 58c75342 - arti-bench: Disable all fs permissions (fs-mistrust) checks
    • d7f84b92 - config load: Move mistrust checking to load()
    • bdb7cb7a - Fix comment location

    Compare with previous version

    Toggle commit list
  • Ian Jackson enabled an automatic merge when the pipeline for bdb7cb7a succeeds

    enabled an automatic merge when the pipeline for bdb7cb7a succeeds

  • Ian Jackson merged

    merged

  • Ian Jackson mentioned in commit 4115ce50

    mentioned in commit 4115ce50

  • Nick Mathewson mentioned in issue #472 (closed)

    mentioned in issue #472 (closed)

    • Please register or sign in to reply