Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Make the Buildpack API version check more robust #421

Merged
merged 2 commits into from
Jun 22, 2022
Merged

Make the Buildpack API version check more robust #421

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
6d5d9aa
Make the Buildpack API version check more robust
edmorley Jun 21, 2022
85655e6
Make `BuildpackDescriptorApiOnly` private
edmorley Jun 22, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions libcnb/CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@

## [Unreleased]

- Make the "Buildpack API version mismatch" check still work when `buildpack.toml` doesn't match the spec or custom buildpack type ([#421](https://github.com/heroku/libcnb.rs/pull/421)).
- Remove support for custom exit codes from `Buildpack::on_error`. Exit codes are part of the CNB spec and there are cases where some exit codes have special meaning to the CNB lifecycle. This put the burden on the buildpack author to not pick exit codes with special meanings, dependent on the currently executing phase. This makes `Buildpack::on_error` more consistent with the rest of the framework where we don't expose the interface between the buildpack and the CNB lifecycle directly but use abstractions for easier forward-compatibility and to prevent accidental misuse. ([#415](https://github.com/heroku/libcnb.rs/pull/415)).

## [0.7.0] 2022-04-12
Expand Down
2 changes: 1 addition & 1 deletion libcnb/src/exit_code.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@

pub(crate) const GENERIC_SUCCESS: i32 = 0;
pub(crate) const GENERIC_UNSPECIFIED_ERROR: i32 = 1;
pub(crate) const GENERIC_CNB_API_MISMATCH_ERROR: i32 = 254;
pub(crate) const GENERIC_CNB_API_VERSION_ERROR: i32 = 254;
pub(crate) const GENERIC_UNEXPECTED_EXECUTABLE_NAME_ERROR: i32 = 255;

pub(crate) const DETECT_DETECTION_PASSED: i32 = 0;
Expand Down
47 changes: 31 additions & 16 deletions libcnb/src/runtime.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,12 +1,13 @@
use crate::build::{BuildContext, InnerBuildResult};
use crate::buildpack::Buildpack;
use crate::data::buildpack::{SingleBuildpackDescriptor, StackId};
use crate::data::buildpack::{BuildpackApi, StackId};
use crate::detect::{DetectContext, InnerDetectResult};
use crate::error::Error;
use crate::platform::Platform;
use crate::toml_file::{read_toml_file, write_toml_file};
use crate::{exit_code, LIBCNB_SUPPORTED_BUILDPACK_API};
use serde::de::DeserializeOwned;
use serde::Deserialize;
use std::env;
use std::ffi::OsStr;
use std::fmt::Debug;
Expand All @@ -26,22 +27,31 @@ use std::process::exit;
/// Don't implement this directly and use the [`buildpack_main`] macro instead!
#[doc(hidden)]
pub fn libcnb_runtime<B: Buildpack>(buildpack: &B) {
match read_buildpack_descriptor::<B::Metadata, B::Error>() {
// Before we do anything else, we must validate that the Buildpack's API version
// matches that supported by libcnb, to improve the UX in cases where the lifecycle
// passes us arguments or env vars we don't expect, due to changes between API versions.
// We use a cut-down buildpack descriptor type, to ensure we can still read the API
// version even if the rest of buildpack.toml doesn't match the spec (or the buildpack's
// chosen custom `metadata` type).
match read_buildpack_descriptor::<BuildpackDescriptorApiOnly, B::Error>() {
Ok(buildpack_descriptor) => {
if buildpack_descriptor.api != LIBCNB_SUPPORTED_BUILDPACK_API {
eprintln!("Error: Cloud Native Buildpack API mismatch");
eprintln!(
"This buildpack ({}) uses Cloud Native Buildpacks API version {}.",
&buildpack_descriptor.buildpack.id, &buildpack_descriptor.api,
"This buildpack uses Cloud Native Buildpacks API version {} (specified in buildpack.toml).",
&buildpack_descriptor.api,
);
eprintln!("But the underlying libcnb.rs library requires CNB API {LIBCNB_SUPPORTED_BUILDPACK_API}.");

exit(exit_code::GENERIC_CNB_API_MISMATCH_ERROR)
eprintln!("However, the underlying libcnb.rs library only supports CNB API {LIBCNB_SUPPORTED_BUILDPACK_API}.");
exit(exit_code::GENERIC_CNB_API_VERSION_ERROR)
}
}
Err(lib_cnb_error) => {
buildpack.on_error(lib_cnb_error);
exit(exit_code::GENERIC_UNSPECIFIED_ERROR);
Err(libcnb_error) => {
// This case will likely never occur, since Pack/lifecycle validates each buildpack's
// `buildpack.toml` before the buildpack even runs, so the file being missing or the
// `api` key not being set will have already resulted in an error much earlier.
eprintln!("Error: Unable to determine Buildpack API version");
eprintln!("Cause: {libcnb_error}");
exit(exit_code::GENERIC_CNB_API_VERSION_ERROR);
}
}

Expand All @@ -51,7 +61,6 @@ pub fn libcnb_runtime<B: Buildpack>(buildpack: &B) {
// symlinks to their target on some platforms, whereas we need the original filename.
let current_exe = args.first();
let current_exe_file_name = current_exe
.as_ref()
.map(Path::new)
.and_then(Path::file_name)
.and_then(OsStr::to_str);
Expand Down Expand Up @@ -84,7 +93,6 @@ pub fn libcnb_runtime<B: Buildpack>(buildpack: &B) {
"Error: Expected the name of this executable to be 'detect' or 'build', but it was '{}'",
other.unwrap_or("<unknown>")
);

eprintln!("The executable name is used to determine the current buildpack phase.");
eprintln!("You might want to create 'detect' and 'build' links to this executable and run those instead.");
exit(exit_code::GENERIC_UNEXPECTED_EXECUTABLE_NAME_ERROR)
Expand All @@ -93,8 +101,8 @@ pub fn libcnb_runtime<B: Buildpack>(buildpack: &B) {

match result {
Ok(code) => exit(code),
Err(lib_cnb_error) => {
buildpack.on_error(lib_cnb_error);
Err(libcnb_error) => {
buildpack.on_error(libcnb_error);
exit(exit_code::GENERIC_UNSPECIFIED_ERROR);
}
}
Expand Down Expand Up @@ -189,6 +197,14 @@ pub fn libcnb_runtime_build<B: Buildpack>(
}
}

// A partial representation of buildpack.toml that contains only the Buildpack API version,
// so that the version can still be read when the buildpack descriptor doesn't match the
// supported spec version.
#[derive(Deserialize)]
struct BuildpackDescriptorApiOnly {
pub api: BuildpackApi,
}

#[doc(hidden)]
pub struct DetectArgs {
pub platform_dir_path: PathBuf,
Expand Down Expand Up @@ -247,8 +263,7 @@ fn read_buildpack_dir<E: Debug>() -> crate::Result<PathBuf, E> {
.map(PathBuf::from)
}

fn read_buildpack_descriptor<BM: DeserializeOwned, E: Debug>(
) -> crate::Result<SingleBuildpackDescriptor<BM>, E> {
fn read_buildpack_descriptor<BD: DeserializeOwned, E: Debug>() -> crate::Result<BD, E> {
read_buildpack_dir().and_then(|buildpack_dir| {
read_toml_file(buildpack_dir.join("buildpack.toml"))
.map_err(Error::CannotReadBuildpackDescriptor)
Expand Down