libpriv/passwd: move passwd database to Rust

[lucab]

This moves to Rust the in-memory structure holding passwd entries
(users and groups).

[lucab]

Note: the cancellable was not really used even in the C logic, so I just dropped it here.

[lucab]

Self-shaming: I originally made a typo-mistake when porting the logic, and CI saved my bacon.

[travier]

LGTM

[cgwalters]

I'm not opposed to this and am OK merging mostly as is if you prefer but the added ratio of "unsafe FFI glue" here is the same reason I abandoned my attempt to use this approach for oxidizing the origin file.

To me the biggest value using Rust comes when we have nontrivial logic inside the Rust. The original usage of parsing the treefile was a perfect example; serde gives so much better error messages, allowed us to implement treefile include: and add inline unit tests conveniently etc. We aren't doing that here yet right?

So WDYT about trying this again after #2336 lands? It's getting closer.

[lucab]

/hold

[ashcrow]

Rebase needed

[cgwalters]

OK (next year or whenever you're ready) want to take a crack at rebasing on cxx-rs work from #2336 ?

stale

[lucab]

/hold cancel

Reworked on top of cxxbridge, this is now ready for review.

[lucab]

I'd like to get rid of the TODO after landing this PR. I can either look at adding fgetpwent_r to the libc crate, or port the existing logic to Rust.

I have a slight preference for the latter as it is a small line-based parser, and the unsafe string handling is quite cumbersome anyway. @cgwalters @jlebon thoughts?

[cgwalters]

Yeah, rewriting in Rust seems probably better here - if there's an existing crate that'd be an even more obvious path. But it's a simple format anyways.

[lucab]

https://github.com/kstep/parsswd looks a bit stale but it's the best candidate I found on crates.io.
But it doesn't look much aligned with the glibc logic above. I'll spelunk a bit more, possibly upstreaming a port of the glibc parser there.

[cgwalters]

Overall LGTM, a few minor bits.

[cgwalters]

This is totally fine, I am just personally trying to use combinators more lately, so it'd look more like

self.groups.get(&key).cloned().ok_or_else(|| anyhow!("failed to find group ID '{}'", gid))

[cgwalters]

Yeah, rewriting in Rust seems probably better here - if there's an existing crate that'd be an even more obvious path. But it's a simple format anyways.

[cgwalters]

I'd lean towards aborting here (i.e. panic!()) since it's a bad bug if it happens, and it really shouldn't - it's definitely not a "user error".

[lucab]

Ack, I've turned this one into an assert!(),

[cgwalters]

Thanks a ton for holding on this until the cxx-rs stuff had landed! I think the result is worth it.
This one will definitely be cleaner once we go pure Rust too.
/lgtm

[openshift-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: cgwalters, lucab

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• OWNERS [cgwalters,lucab]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment