Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Lockfile generation in sandbox broken for cargo on macOS #1288

Closed
maxrake opened this issue Nov 15, 2023 · 0 comments · Fixed by #1289
Closed

Lockfile generation in sandbox broken for cargo on macOS #1288

maxrake opened this issue Nov 15, 2023 · 0 comments · Fixed by #1289
Assignees
@cd-work
Labels
bug Something isn't working needs triage Needs to be reviewed or assigned

Comments

@maxrake
Copy link
Contributor

maxrake commented Nov 15, 2023
edited
Loading

Overview

Cargo lockfile generation with the Birdcage sandbox is broken for at least macOS.

How To Reproduce

# clone a rust library (no lockfiles, only manifests)
> git clone git@github.com:deepcausality-rs/deep_causality.git

# (go into that repo)

../deep_causality  9  19 on  main [?] via :crab: v1.73.0
❯ /Users/maxrake/dev/phylum/localdev/cli/target/debug/phylum --version
phylum v5.8.1-4-g732b0d3

../deep_causality  9  19 on  main [?] via :crab: v1.73.0
❯ type cargo
cargo is /Users/maxrake/.cargo/bin/cargo

../deep_causality  9  19 on  main [?] via :crab: v1.73.0
❯ /Users/maxrake/dev/phylum/localdev/cli/target/debug/phylum parse -t cargo ./Cargo.toml
Generating lockfile for manifest "Cargo.toml" using Cargo…
:exclamation: Error: could not parse lockfile: ./Cargo.toml

Caused by:
    0: Lockfile generation failed! For details, see: https://docs.phylum.io/docs/lockfile_generation
    1: package manager quit unexpectedly (code: Some(1)):

       error: command failed: 'cargo': Operation not permitted (os error 1)


../deep_causality  9  19 on  main [?] via :crab: v1.73.0
:x: 1 ❯ /Users/maxrake/dev/phylum/localdev/cli/target/debug/phylum parse -t cargo --skip-sandbox ./Cargo.toml
Generating lockfile for manifest "Cargo.toml" using Cargo…
[
  {
    "name": "adler",
    "version": "1.0.2",
    "type": "cargo",
    "lockfile": "Cargo.toml"
  },
  {
    "name": "ahash",
---TRIMMED---

Expected Behavior

Lockfile generation in a sandbox works for all supported lockfile generators and for all supported platforms.

Additional Context

It might be necessary to create a test suite that generates lockfiles with all supported lockfile generators and for all supported platforms. Perhaps the private isildurs_bane repo can be used for this. If so, it will need to be modified to include library directory examples where no lockfiles exist (only manifests).
@maxrake maxrake added bug Something isn't working needs triage Needs to be reviewed or assigned labels Nov 15, 2023
@cd-work cd-work self-assigned this Nov 15, 2023
cd-work added a commit that referenced this issue Nov 15, 2023
@cd-work
Fix cargo lockfile generation sandbox exceptions
c04c8ec 
Closes #1288.
@cd-work cd-work mentioned this issue Nov 15, 2023
Merged
cd-work added a commit that referenced this issue Nov 15, 2023
@cd-work
Fix cargo lockfile generation sandbox exceptions (#1289)
2a260a0 
Closes #1288.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@cd-work cd-work

Labels
bug Something isn't working needs triage Needs to be reviewed or assigned
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Fix cargo lockfile generation sandbox exceptions phylum-dev/cli
2 participants
@maxrake @cd-work