refactor: enable lint unsafe_op_in_unsafe_fn

nix-rust · Nov 19, 2023 · d7c67f8 · d7c67f8
1 parent 6bacfe0
commit d7c67f8
Show file tree

Hide file tree

Showing 18 changed files with 308 additions and 228 deletions.
diff --git a/src/env.rs b/src/env.rs
@@ -46,7 +46,7 @@ pub unsafe fn clearenv() -> std::result::Result<(), ClearEnvError> {
  target_os = "linux",
  target_os = "android",
  target_os = "emscripten"))] {
- let ret = libc::clearenv();
+ let ret = unsafe { libc::clearenv() };
  } else {
  use std::env;
  for (name, _) in env::vars_os() {

diff --git a/src/errno.rs b/src/errno.rs
@@ -10,32 +10,32 @@ cfg_if! {
  if #[cfg(any(target_os = "freebsd",
  apple_targets,))] {
  unsafe fn errno_location() -> *mut c_int {
- libc::__error()
+ unsafe { libc::__error() }
  }
  } else if #[cfg(any(target_os = "android",
  target_os = "netbsd",
  target_os = "openbsd"))] {
  unsafe fn errno_location() -> *mut c_int {
- libc::__errno()
+ unsafe { libc::__errno() }
  }
  } else if #[cfg(any(target_os = "linux",
  target_os = "redox",
  target_os = "dragonfly",
  target_os = "fuchsia"))] {
  unsafe fn errno_location() -> *mut c_int {
- libc::__errno_location()
+ unsafe { libc::__errno_location() }
  }
  } else if #[cfg(any(target_os = "illumos", target_os = "solaris"))] {
  unsafe fn errno_location() -> *mut c_int {
- libc::___errno()
+ unsafe { libc::___errno() }
  }
  } else if #[cfg(any(target_os = "haiku",))] {
  unsafe fn errno_location() -> *mut c_int {
- libc::_errnop()
+ unsafe { libc::_errnop() }
  }
  } else if #[cfg(any(target_os = "aix"))] {
  unsafe fn errno_location() -> *mut c_int {
- libc::_Errno()
+ unsafe { libc::_Errno() }
  }
  }
 }

diff --git a/src/ifaddrs.rs b/src/ifaddrs.rs
@@ -62,22 +62,24 @@ unsafe fn workaround_xnu_bug(info: &libc::ifaddrs) -> Option<SockaddrStorage> {
 
  let mut dst_sock = mem::MaybeUninit::<libc::sockaddr_storage>::zeroed();
 
- // memcpy only sa_len bytes, assume the rest is zero
- std::ptr::copy_nonoverlapping(
- src_sock as *const u8,
- dst_sock.as_mut_ptr().cast(),
- (*src_sock).sa_len.into(),
- );
-
- // Initialize ss_len to sizeof(libc::sockaddr_storage).
- (*dst_sock.as_mut_ptr()).ss_len =
- u8::try_from(mem::size_of::<libc::sockaddr_storage>()).unwrap();
- let dst_sock = dst_sock.assume_init();
+ let dst_sock = unsafe {
+ // memcpy only sa_len bytes, assume the rest is zero
+ std::ptr::copy_nonoverlapping(
+ src_sock as *const u8,
+ dst_sock.as_mut_ptr().cast(),
+ (*src_sock).sa_len.into(),
+ );
+
+ // Initialize ss_len to sizeof(libc::sockaddr_storage).
+ (*dst_sock.as_mut_ptr()).ss_len =
+ u8::try_from(mem::size_of::<libc::sockaddr_storage>()).unwrap();
+ dst_sock.assume_init()
+ };
 
  let dst_sock_ptr =
  &dst_sock as *const libc::sockaddr_storage as *const libc::sockaddr;
 
- SockaddrStorage::from_raw(dst_sock_ptr, None)
+ unsafe { SockaddrStorage::from_raw(dst_sock_ptr, None) }
 }
 
 impl InterfaceAddress {

diff --git a/src/lib.rs b/src/lib.rs
@@ -89,6 +89,7 @@
 #![warn(missing_docs)]
 #![cfg_attr(docsrs, feature(doc_cfg))]
 #![deny(clippy::cast_ptr_alignment)]
+#![deny(unsafe_op_in_unsafe_fn)]
 
 // Re-exported external crates
 pub use libc;

diff --git a/src/pty.rs b/src/pty.rs
@@ -169,12 +169,12 @@ pub fn posix_openpt(flags: fcntl::OFlag) -> Result<PtyMaster> {
 /// For a threadsafe and non-`unsafe` alternative on Linux, see `ptsname_r()`.
 #[inline]
 pub unsafe fn ptsname(fd: &PtyMaster) -> Result<String> {
- let name_ptr = libc::ptsname(fd.as_raw_fd());
+ let name_ptr = unsafe { libc::ptsname(fd.as_raw_fd()) };
  if name_ptr.is_null() {
  return Err(Errno::last());
  }
 
- let name = CStr::from_ptr(name_ptr);
+ let name = unsafe { CStr::from_ptr(name_ptr) };
  Ok(name.to_string_lossy().into_owned())
 }
 
@@ -341,15 +341,15 @@ pub unsafe fn forkpty<'a, 'b, T: Into<Option<&'a Winsize>>, U: Into<Option<&'b T
  .map(|ws| ws as *const Winsize as *mut _)
  .unwrap_or(ptr::null_mut());
 
- let res = libc::forkpty(master.as_mut_ptr(), ptr::null_mut(), term, win);
+ let res = unsafe { libc::forkpty(master.as_mut_ptr(), ptr::null_mut(), term, win) };
 
  let fork_result = Errno::result(res).map(|res| match res {
  0 => ForkResult::Child,
  res => ForkResult::Parent { child: Pid::from_raw(res) },
  })?;
 
  Ok(ForkptyResult {
- master: OwnedFd::from_raw_fd(master.assume_init()),
+ master: unsafe { OwnedFd::from_raw_fd( master.assume_init() ) },
  fork_result,
  })
 }

diff --git a/src/sched.rs b/src/sched.rs
@@ -116,17 +116,19 @@ mod sched_linux_like {
  }
 
  let combined = flags.bits() | signal.unwrap_or(0);
- let ptr = stack.as_mut_ptr().add(stack.len());
- let ptr_aligned = ptr.sub(ptr as usize % 16);
- let res = libc::clone(
- mem::transmute(
- callback
- as extern "C" fn(*mut Box<dyn FnMut() -> isize>) -> i32,
- ),
- ptr_aligned as *mut c_void,
- combined,
- &mut cb as *mut _ as *mut c_void,
- );
+ let res = unsafe {
+ let ptr = stack.as_mut_ptr().add(stack.len());
+ let ptr_aligned = ptr.sub(ptr as usize % 16);
+ libc::clone(
+ mem::transmute(
+ callback
+ as extern "C" fn(*mut Box<dyn FnMut() -> isize>) -> i32,
+ ),
+ ptr_aligned as *mut c_void,
+ combined,
+ &mut cb as *mut _ as *mut c_void,
+ )
+ };
 
  Errno::result(res).map(Pid::from_raw)
  }

diff --git a/src/sys/inotify.rs b/src/sys/inotify.rs
@@ -244,7 +244,7 @@ impl Inotify {
 impl FromRawFd for Inotify {
  unsafe fn from_raw_fd(fd: RawFd) -> Self {
  Inotify {
- fd: OwnedFd::from_raw_fd(fd),
+ fd: unsafe { OwnedFd::from_raw_fd(fd) },
  }
  }
 }

diff --git a/src/sys/ioctl/mod.rs b/src/sys/ioctl/mod.rs
@@ -72,7 +72,7 @@
 //! # const SPI_IOC_MAGIC: u8 = b'k'; // Defined in linux/spi/spidev.h
 //! # const SPI_IOC_TYPE_MODE: u8 = 1;
 //! pub unsafe fn spi_read_mode(fd: c_int, data: *mut u8) -> Result<c_int> {
-//! let res = libc::ioctl(fd, request_code_read!(SPI_IOC_MAGIC, SPI_IOC_TYPE_MODE, mem::size_of::<u8>()), data);
+//! let res = unsafe { libc::ioctl(fd, request_code_read!(SPI_IOC_MAGIC, SPI_IOC_TYPE_MODE, mem::size_of::<u8>()), data) };
 //! Errno::result(res)
 //! }
 //! # fn main() {}
@@ -179,9 +179,13 @@
 //! # const SPI_IOC_TYPE_MESSAGE: u8 = 0;
 //! # pub struct spi_ioc_transfer(u64);
 //! pub unsafe fn spi_message(fd: c_int, data: &mut [spi_ioc_transfer]) -> Result<c_int> {
-//! let res = libc::ioctl(fd,
-//! request_code_write!(SPI_IOC_MAGIC, SPI_IOC_TYPE_MESSAGE, data.len() * mem::size_of::<spi_ioc_transfer>()),
-//! data.as_ptr());
+//! let res = unsafe {
+//! libc::ioctl(
+//! fd,
+//! request_code_write!(SPI_IOC_MAGIC, SPI_IOC_TYPE_MESSAGE, data.len() * mem::size_of::<spi_ioc_transfer>()),
+//! data
+//! )
+//! };
 //! Errno::result(res)
 //! }
 //! # fn main() {}
@@ -303,7 +307,9 @@ macro_rules! ioctl_none {
  $(#[$attr])*
  pub unsafe fn $name(fd: $crate::libc::c_int)
  -> $crate::Result<$crate::libc::c_int> {
- convert_ioctl_res!($crate::libc::ioctl(fd, request_code_none!($ioty, $nr) as $crate::sys::ioctl::ioctl_num_type))
+ unsafe {
+ convert_ioctl_res!($crate::libc::ioctl(fd, request_code_none!($ioty, $nr) as $crate::sys::ioctl::ioctl_num_type))
+ }
  }
  )
 }
@@ -343,7 +349,9 @@ macro_rules! ioctl_none_bad {
  $(#[$attr])*
  pub unsafe fn $name(fd: $crate::libc::c_int)
  -> $crate::Result<$crate::libc::c_int> {
- convert_ioctl_res!($crate::libc::ioctl(fd, $nr as $crate::sys::ioctl::ioctl_num_type))
+ unsafe {
+ convert_ioctl_res!($crate::libc::ioctl(fd, $nr as $crate::sys::ioctl::ioctl_num_type))
+ }
  }
  )
 }
@@ -381,7 +389,9 @@ macro_rules! ioctl_read {
  pub unsafe fn $name(fd: $crate::libc::c_int,
  data: *mut $ty)
  -> $crate::Result<$crate::libc::c_int> {
- convert_ioctl_res!($crate::libc::ioctl(fd, request_code_read!($ioty, $nr, ::std::mem::size_of::<$ty>()) as $crate::sys::ioctl::ioctl_num_type, data))
+ unsafe {
+ convert_ioctl_res!($crate::libc::ioctl(fd, request_code_read!($ioty, $nr, ::std::mem::size_of::<$ty>()) as $crate::sys::ioctl::ioctl_num_type, data))
+ }
  }
  )
 }
@@ -417,7 +427,9 @@ macro_rules! ioctl_read_bad {
  pub unsafe fn $name(fd: $crate::libc::c_int,
  data: *mut $ty)
  -> $crate::Result<$crate::libc::c_int> {
- convert_ioctl_res!($crate::libc::ioctl(fd, $nr as $crate::sys::ioctl::ioctl_num_type, data))
+ unsafe {
+ convert_ioctl_res!($crate::libc::ioctl(fd, $nr as $crate::sys::ioctl::ioctl_num_type, data))
+ }
  }
  )
 }
@@ -454,7 +466,9 @@ macro_rules! ioctl_write_ptr {
  pub unsafe fn $name(fd: $crate::libc::c_int,
  data: *const $ty)
  -> $crate::Result<$crate::libc::c_int> {
- convert_ioctl_res!($crate::libc::ioctl(fd, request_code_write!($ioty, $nr, ::std::mem::size_of::<$ty>()) as $crate::sys::ioctl::ioctl_num_type, data))
+ unsafe {
+ convert_ioctl_res!($crate::libc::ioctl(fd, request_code_write!($ioty, $nr, ::std::mem::size_of::<$ty>()) as $crate::sys::ioctl::ioctl_num_type, data))
+ }
  }
  )
 }
@@ -490,7 +504,9 @@ macro_rules! ioctl_write_ptr_bad {
  pub unsafe fn $name(fd: $crate::libc::c_int,
  data: *const $ty)
  -> $crate::Result<$crate::libc::c_int> {
- convert_ioctl_res!($crate::libc::ioctl(fd, $nr as $crate::sys::ioctl::ioctl_num_type, data))
+ unsafe {
+ convert_ioctl_res!($crate::libc::ioctl(fd, $nr as $crate::sys::ioctl::ioctl_num_type, data))
+ }
  }
  )
 }
@@ -531,7 +547,9 @@ cfg_if! {
  pub unsafe fn $name(fd: $crate::libc::c_int,
  data: $crate::sys::ioctl::ioctl_param_type)
  -> $crate::Result<$crate::libc::c_int> {
- convert_ioctl_res!($crate::libc::ioctl(fd, request_code_write_int!($ioty, $nr) as $crate::sys::ioctl::ioctl_num_type, data))
+ unsafe {
+ convert_ioctl_res!($crate::libc::ioctl(fd, request_code_write_int!($ioty, $nr) as $crate::sys::ioctl::ioctl_num_type, data))
+ }
  }
  )
  }
@@ -572,7 +590,9 @@ cfg_if! {
  pub unsafe fn $name(fd: $crate::libc::c_int,
  data: $crate::sys::ioctl::ioctl_param_type)
  -> $crate::Result<$crate::libc::c_int> {
- convert_ioctl_res!($crate::libc::ioctl(fd, request_code_write!($ioty, $nr, ::std::mem::size_of::<$crate::libc::c_int>()) as $crate::sys::ioctl::ioctl_num_type, data))
+ unsafe {
+ convert_ioctl_res!($crate::libc::ioctl(fd, request_code_write!($ioty, $nr, ::std::mem::size_of::<$crate::libc::c_int>()) as $crate::sys::ioctl::ioctl_num_type, data))
+ }
  }
  )
  }
@@ -616,7 +636,9 @@ macro_rules! ioctl_write_int_bad {
  pub unsafe fn $name(fd: $crate::libc::c_int,
  data: $crate::libc::c_int)
  -> $crate::Result<$crate::libc::c_int> {
- convert_ioctl_res!($crate::libc::ioctl(fd, $nr as $crate::sys::ioctl::ioctl_num_type, data))
+ unsafe {
+ convert_ioctl_res!($crate::libc::ioctl(fd, $nr as $crate::sys::ioctl::ioctl_num_type, data))
+ }
  }
  )
 }
@@ -653,7 +675,9 @@ macro_rules! ioctl_readwrite {
  pub unsafe fn $name(fd: $crate::libc::c_int,
  data: *mut $ty)
  -> $crate::Result<$crate::libc::c_int> {
- convert_ioctl_res!($crate::libc::ioctl(fd, request_code_readwrite!($ioty, $nr, ::std::mem::size_of::<$ty>()) as $crate::sys::ioctl::ioctl_num_type, data))
+ unsafe {
+ convert_ioctl_res!($crate::libc::ioctl(fd, request_code_readwrite!($ioty, $nr, ::std::mem::size_of::<$ty>()) as $crate::sys::ioctl::ioctl_num_type, data))
+ }
  }
  )
 }
@@ -681,7 +705,9 @@ macro_rules! ioctl_readwrite_bad {
  pub unsafe fn $name(fd: $crate::libc::c_int,
  data: *mut $ty)
  -> $crate::Result<$crate::libc::c_int> {
- convert_ioctl_res!($crate::libc::ioctl(fd, $nr as $crate::sys::ioctl::ioctl_num_type, data))
+ unsafe {
+ convert_ioctl_res!($crate::libc::ioctl(fd, $nr as $crate::sys::ioctl::ioctl_num_type, data))
+ }
  }
  )
 }
@@ -710,7 +736,9 @@ macro_rules! ioctl_read_buf {
  pub unsafe fn $name(fd: $crate::libc::c_int,
  data: &mut [$ty])
  -> $crate::Result<$crate::libc::c_int> {
- convert_ioctl_res!($crate::libc::ioctl(fd, request_code_read!($ioty, $nr, ::std::mem::size_of_val(data)) as $crate::sys::ioctl::ioctl_num_type, data.as_mut_ptr()))
+ unsafe {
+ convert_ioctl_res!($crate::libc::ioctl(fd, request_code_read!($ioty, $nr, ::std::mem::size_of_val(data)) as $crate::sys::ioctl::ioctl_num_type, data.as_mut_ptr()))
+ }
  }
  )
 }
@@ -749,7 +777,9 @@ macro_rules! ioctl_write_buf {
  pub unsafe fn $name(fd: $crate::libc::c_int,
  data: &[$ty])
  -> $crate::Result<$crate::libc::c_int> {
- convert_ioctl_res!($crate::libc::ioctl(fd, request_code_write!($ioty, $nr, ::std::mem::size_of_val(data)) as $crate::sys::ioctl::ioctl_num_type, data.as_ptr()))
+ unsafe {
+ convert_ioctl_res!($crate::libc::ioctl(fd, request_code_write!($ioty, $nr, ::std::mem::size_of_val(data)) as $crate::sys::ioctl::ioctl_num_type, data.as_ptr()))
+ }
  }
  )
 }
@@ -778,7 +808,9 @@ macro_rules! ioctl_readwrite_buf {
  pub unsafe fn $name(fd: $crate::libc::c_int,
  data: &mut [$ty])
  -> $crate::Result<$crate::libc::c_int> {
- convert_ioctl_res!($crate::libc::ioctl(fd, request_code_readwrite!($ioty, $nr, ::std::mem::size_of_val(data)) as $crate::sys::ioctl::ioctl_num_type, data.as_mut_ptr()))
+ unsafe {
+ convert_ioctl_res!($crate::libc::ioctl(fd, request_code_readwrite!($ioty, $nr, ::std::mem::size_of_val(data)) as $crate::sys::ioctl::ioctl_num_type, data.as_mut_ptr()))
+ }
  }
  )
 }