Replace Qt with std in critical parts of sftp_server

[andrei-toterman]

No description provided.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (8bc1e83) 83.91% compared to head (147abc0) 83.90%.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #3270      +/-   ##
==========================================
- Coverage   83.91%   83.90%   -0.02%     
==========================================
  Files         250      250              
  Lines       13526    13547      +21     
==========================================
+ Hits        11351    11367      +16     
- Misses       2175     2180       +5     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[townsend2010]

Hey @andrei-toterman!

Thanks for this! Unfortunately, it is not working for me. If I create a mount, shell into the instance, cd to the mounted directory, I get the following:

$ git clone https://github.com/canonical/multipass.git
Cloning into 'multipass'...
error: Unable to create '/home/ubuntu/test/multipass/.git/HEAD.lock': Operation not permitted

Also, I haven't full reviewed, but I did leave one comment below.

[georgeliao]

Maybe using static_cast which has some compile time checks instead of reinterpret_cast.

[andrei-toterman]

Yup, makes sense.

[georgeliao]

Nice wrapper utility class, besides that, I have a few small comments.

1. About the data member current, it holds the same information as *iter. I think you did this double bookkeeping because you need to return DirectoryEntry reference. I am wondering if it is gotta be better if you return by value and remove all the current related code.
2. There are some implicit constructions from fs::directory_entry to DirectoryEntry, maybe it is better to change the constructor DirectoryEntry(const fs::directory_entry& _entry) to explicit and explicitly convert these.

[andrei-toterman]

You are right, current is necessary for returning a DirectoryEntry reference. But the reason it returns a reference instead of a value is so that it can return a MockDirectoryEntry reference when writing unit tests.
As for the explicit constructors, sure, I will convert them.

[georgeliao]

Maybe change from void (*)(NamedFd*) to std::function<void(NamedFd*)>, so we can have a more readable functor signature. The same goes to other occurrences of void (*)(NamedFd*).

[andrei-toterman]

Good call. At first I avoided std::function because I thought it always involves a dynamic allocation, but after reading the docs better, I understand that in the case of free function pointers, small object optimization is guaranteed and no dynamic allocation takes place. So I'll change it.

[georgeliao]

I think it is the responsibility of the custom deleter to delete the memory explicitly. So a line delete named_fd; will have to be added after the if branch.

        if (named_fd->second != -1)
            ::close(named_fd->second);
        delete named_fd;

Besides that, maybe move the new NamedFd{path, fd}; into the return statement that makes return {new NamedFd{path, fd}, deleter}; and remove the line const auto named_fd = new NamedFd{path, fd};.

[andrei-toterman]

Oh, really good catch!

[andrei-toterman]

Given that I made this mistake regarding the destructor, and the std::fucntion over simple function pointer comment, do you think that it would be worth it to change NamedFd from a simple std::pair to a proper struct that has its own destructor? That way, we can use a simple std::unique_ptr<NamedFd> and not worry about providing a correct deleter. Initially I used std::pair because I wanted to keep things simple, but maybe they are not as simple as I thought.

[georgeliao]

Actually, that is an even better idea. Having a proper struct with the proper RAII and avoiding all the custom deleter hassle.

[georgeliao]

Maybe static_cast<fs::perms>(msg->attr->permissions) -> fs::perms(msg->attr->permissions)? both interpret uint32_t into bitmask, but the second one is cleaner.

[andrei-toterman]

Agreed

[ricab]

Hey guys, sorry I noticed this flying by. Why is a functional cast here preferable to a static_cast?

[georgeliao]

My take would be that they both rely on the underneath type conversion, but the direct cast is cleaner.

[ricab]

Perhaps I am missing something in this case, but to me it looks like this would apply: https://isocpp.github.io/CppCoreGuidelines/CppCoreGuidelines#Res-casts-named

[ricab]

I guess {} is OK too if no narrowing is involved.

[andrei-toterman]

Yes, I think {} is the cleanest. I understand that a C-style cast is not really recommended and, if this was a conversion between more complex data types i.e. classes, I would also definitely prefer named casts. In this case, since it's just an integer to enum conversion, I initially agreed to the C-style cast since it would simply act like the static_cast that it replaced. But now that you mention {}, I think that is preferable. Thanks for pointing it out!

[georgeliao]

I guess {} is OK too if no narrowing is involved.

That is what the item of the guideline said. On the top of that, () and {} functional cast are also slightly different in terms of narrowing prevention.

Yes, I think {} is the cleanest. I understand that a C-style cast is not really recommended and,

I think you mean functional cast, C-style is the (T) var based on the guideline.

[andrei-toterman]

Well, unfortunately using {} doesn't compile on windows, so I'll just go back to the static_cast for correctness.

[ricab]

Ahaa! And thus we just prevented a narrowing conversion.

[georgeliao]

This _ variable is not used. I think.

[andrei-toterman]

True. Must've forgotten it there from a previous attempt.

[georgeliao]

The pair can be const, maybe do a auto [file_ops, mock_file_ops_guard] = mpt::MockFileOps::inject(); -> const auto [file_ops, mock_file_ops_guard] = mpt::MockFileOps::inject(); string replacement in the whole file.

[georgeliao]

Hi @andrei-toterman , excellent work on the refactoring and some utility function addition. Only a few comments need to be processed and most of them are small ones.

[georgeliao]

@andrei-toterman , I have done the functional testing on various platforms and backends. The testing includes mounting the folder via classic mount and using the folder for creating/deleting files, git clone repo and delete the cloned folder, etc. They all work fine. @townsend2010 , I could not reproduce your permission denied error. Maybe that was based on the old version of the code.

[townsend2010]

Hi @georgeliao! Yes, that issue I ran into was with an older version of this branch and I have verified that it is now fixed as well. Thanks!

[townsend2010]

Hey @andrei-toterman,

Just a question about test coverage...this branch is not very well covered. Is this due to a difficulty in testing the actual changes or is it an oversight?

[andrei-toterman]

Hey, @townsend2010! Most of the uncovered code comes from wrapper functions for file IO and filesystem information. I could write some tests for those, but they would probably look like "make sure that the wrapper function does the same thing as the wrapped function". But I agree that it's not nice to decrease the coverage, so I will add some simple tests for those. As for the uncovered lines from the sftp server code, that is indeed an oversight on my part, and I'll fix it!

[georgeliao]

I do not think we need the header streambuf.

[georgeliao]

@andrei-toterman I have done another round of functional testing. It includes qemu and lxd on linux; Hyper-v and VirtualBox on virtualized windows; qemu on macOs. They all work fine. I think now it is ready to merge. @townsend2010 can you also remove the change request?

[townsend2010]

LGTM now too, thanks!