Remove FFI types from the public API

[tamird]

Extracted from #184 @Thomasdezeeuw.

[Thomasdezeeuw]

After discussing this in #184 (comment), I'm ok with the change.

[Thomasdezeeuw]

P.S: You don't need to use as _.

[tamird]

Ack. I usually do this with traits to avoid bringing the trait name into the local namespace.

[Thomasdezeeuw]

Let's leave the original code. The buf initialisation is the same as MaybeUninit::uninit_array to which we should move in the future. And we know that IFNAMSIZ can't be larger than libc::socklen_t::MAX so the as usage is fine, I don't like unwrap too much.

[tamird]

The buf initialization is the same as the original code (in this PR, not in #184); I've just removed some repeated type parameters.

I agree that IFNAMSIZ in practice can't fail this conversion, but why think about it? This code is safer and should compile to the same thing.

[Thomasdezeeuw]

Let's not use transmute, it's too easy to misuse. Also let's keep the same code as in MaybeUninit::slice_assume_init_ref so we can switch to that easily once stable.

It think the following would be shortest.

// Safety: `len` bytes are writen by the OS, this includes a null
// terminator. However we don't need the null terminator.
let buf = unsafe { slice::from_raw_parts(buf.as_ptr().cast(), (len - 1) as usize) };
Ok(Some(buf.into_vec()))

[tamird]

len does not include a null terminator AFAIK.

Other than that, this code is the same as it would be with slice_assume_init_ref. That code would be:

let buf = &buf[..len.try_into().unwrap()];
Ok(Some(unsafe { MaybeUninit::slice_assume_init_ref(buf) }.into()))

[Thomasdezeeuw]

len does include a null terminate, I've just manually tried this patch. The test currently doesn't fail it it doesn't have permissions (mainly for the CI), but we might have to change that. I'll fiddle with this a bit more and merge this changing the signature to [u8] rather than CStr.

P.S. it requires sudo setcap cap_net_raw=ep $test_bin, something that we might have to do in the CI as well.

[tamird]

I'm about 95% sure that len does not include the null terminator when the name is IFNAMSIZ characters long. That is probably an edge case worth testing.

[Thomasdezeeuw]

After a bit more manual testing. I couldn't create an interface with a name larger than 15 bytes, with IFNAMSIZ being 16.

sudo ip link add test_interface0 type bridge  # Fine.
sudo ip link add test_interface01 type bridge # Error: Attribute failed policy validation.

I also tested binding to test_interface01 with the implementation in #187 which worked.

[Thomasdezeeuw]

@tamird created #187 which works. I've put ignore attribute to the test as it doesn't run without the CAP_NET_RAW capability (on Linux).

[tamird]

@Thomasdezeeuw you should be able to push to this PR rather than working in a separate one.

[Thomasdezeeuw]

@tamird I didn't know I could push to some else's branch.

[tamird]

@Thomasdezeeuw https://docs.github.com/en/free-pro-team@latest/github/collaborating-with-issues-and-pull-requests/allowing-changes-to-a-pull-request-branch-created-from-a-fork

[Thomasdezeeuw]

@tamird I've pushed the changes to this branch.

[tamird]

Should this mention whatever flag is necessary to run this test case given the ignore attribute?

[Thomasdezeeuw]

I've changed it to just say "failed to bind to any device", the other info is already in the ignore attribute.

With flag do you mean --ignore passed to cargo test, or do mean another flag? If the first than I don't it's needed.