Guard uses of lutimes, for portability

[puffnfresh]

Fixes #7045

[puffnfresh]

Nix emits a warning when this returns false but I have assumed that's acceptable.

[thufschmitt]

Mh, that's sad (and apologies, at least some of these are my doing).

Dropping these is annoying because it can make things non-reproducible (and in a way that Nix might very much not like). Not sure whether there's a good way around this

[thufschmitt]

That guard (and the one below which acts on essentially duplicated code :/ ) is a bit annoying because it changes the semantics and affects reproducibility. Do you know whether there's a way to emulate lutimes if it's absent?

Or maybe we can just ignore setting the time for the symlinks if lutimes isn't available and pray that it doesn't matter in practice

[Et7f3]

futimes() is available since glibc 2.3. lutimes() is available since glibc 2.6, and is implemented using the utimensat(2) system call, which is supported since kernel 2.6.22.

[Et7f3]

@jugendhacker Does termux has the mentioned function ?

[Ericson2314]

Triaged in the Nix team meeting:

• @thufschmitt: lutimes is a syscall that's not available everywhere
  • its for getting file timestamps while observing symlinks
  • this is relevant for termux
• @edolstra: don't really believe in autoconf checks and its philosophy
  • should just have conditionals
• no decision
• assigned to @Ericson2314 to try a different approach and make the autoconf checks mandatory for now
  • related: lutimes not optional #7045
  • @Ericson2314: if we added a cross-compilation target for the platform to the CI, it would justify the additional CPP

[nixos-discourse]

This pull request has been mentioned on NixOS Discourse. There might be relevant details there:

https://discourse.nixos.org/t/2023-03-03-nix-team-meeting-minutes-37/25998/1

[fricklerhandwerk]

@Ericson2314 and me checked the code, and found #8495 (which you are welcome to implement, it's an almost trivial change).

Other than that, we agree with @thufschmitt. For any remaining occurrences of lutime we should do the following:

• Factor out a utility function such that all uses of lutime go through it
• Use lutime if possible, fall back to utime if the file in question is not a symlink, fail with an error message otherwise

Making this PR a draft until these changes are implemented.

[Ericson2314]

#8504 removed the dead code, now there are just two lutimes to deduplicate left.

[nixos-discourse]

This pull request has been mentioned on NixOS Discourse. There might be relevant details there:

https://discourse.nixos.org/t/2023-06-12-nix-team-meeting-minutes-62/29315/1

[fricklerhandwerk]

This should be good to go, @thufschmitt @Ericson2314 do you want to take another look?

[thufschmitt]

I don't think that precision really makes sense without the context of that PR (what's “fallback mode”?)

Besides that, I don't think we should trust st to tell us whether the file is a symlink or not. Barring possible race conditions (which I think we can't avoid any way), there's no guaranty that st refers to the path at path (might have been a totally made up struct just to set the time, or taken from another file). We should rather re-check within the function (std::filesystem::is_symlink being our friend here I guess)

[Ericson2314]

fallback mode is without lutimes, with just utimes (yes, this should be reworded)

Besides that, I don't think we should trust st to tell us whether the file is a symlink or not.

Note that this is not a new thing. I agree in principle, but how would you update canonicaliseTimestampAndPermissions in practice? It is, already, very geared about working from a prior stat (in a context that we don't think things would change without them looking.

Unless we want to scope creep and overhaul canonicaliseTimestampAndPermissions, I think it would be good to just document the race condition on this function and say callers must be confident st is up to date.

[thufschmitt]

Note that this is not a new thing. I agree in principle, but how would you update canonicaliseTimestampAndPermissions in practice? It is, already, very geared about working from a prior stat (in a context that we don't think things would change without them looking.

That's indeed already the case for canonicaliseTimestampAndPermissions, but I'd rather not also make it the case here when we can just replace the S_ISLNK(st.st_mode) calls by std::filesystem::is_symlink(path)

[Ericson2314]

OK this is done now. the struct stat way still exists, but is not forced upon everyone else.

[Ericson2314]

@thufschmitt's request is addressed. All the compat is a bit gnarly, but future improvements are possible.

addressed