+1 -2

Cargo.toml

··· 90 90 multiple_crate_versions = "allow" 91 91 expect_used = "allow" 92 92 # # Temporary Allows - Restriction 93 93 - shadow_reuse = "allow" 94 94 - shadow_unrelated = "allow" 95 93 min_ident_chars = "allow" 96 94 # arbitrary_source_item_ordering = "allow" 97 95 renamed_function_params = "allow" ··· 117 115 tests_outside_test_module = "allow" 118 116 ref_patterns = "allow" 119 117 question_mark_used = "allow" 118 118 + shadow_reuse = "allow" 120 119 # Warns 121 120 missing_docs_in_private_items = "warn" 122 121 use_self = "warn"

+10 -7

src/auth.rs

··· 52 52 53 53 // N.B: We ignore all fields inside of the token up until this point because they can be 54 54 // attacker-controlled. 55 55 - let (typ, claims) = verify(&state.signing_key.did(), token).map_err(|e| { 56 56 - Error::with_status( 57 57 - StatusCode::UNAUTHORIZED, 58 58 - e.context("failed to verify auth token"), 59 59 - ) 60 60 - }).context("token auth should be verify")?; 55 55 + let (typ, claims) = verify(&state.signing_key.did(), token) 56 56 + .map_err(|e| { 57 57 + Error::with_status( 58 58 + StatusCode::UNAUTHORIZED, 59 59 + e.context("failed to verify auth token"), 60 60 + ) 61 61 + }) 62 62 + .context("token auth should be verify")?; 61 63 62 64 // Ensure this is an authentication token. 63 65 if typ != "at+jwt" { ··· 92 94 let _status = sqlx::query_scalar!(r#"SELECT status FROM accounts WHERE did = ?"#, did) 93 95 .fetch_one(&state.db) 94 96 .await 95 95 - .with_context(|| format!("failed to query account {did}")).context("should fetch account status")?; 97 97 + .with_context(|| format!("failed to query account {did}")) 98 98 + .context("should fetch account status")?; 96 99 97 100 Ok(Self { 98 101 did: did.to_owned(),

+1 -2

src/endpoints/identity.rs

··· 153 153 .await 154 154 .context("failed to open did doc")?; 155 155 156 156 - let op_bytes = serde_ipld_dagcbor::to_vec(&op) 157 157 - .context("failed to encode plc op")?; 156 156 + let op_bytes = serde_ipld_dagcbor::to_vec(&op).context("failed to encode plc op")?; 158 157 159 158 let plc_cid = CarStore::open(doc) 160 159 .await

+10 -32

src/endpoints/repo.rs

··· 169 169 if let (Some(blob_type), Some(blob_ref)) = (map.get("$type"), map.get("ref")) { 170 170 if blob_type == &serde_json::Value::String("blob".to_owned()) { 171 171 if let Ok(rf) = serde_json::from_value::<BlobRef>(blob_ref.clone()) { 172 172 - cids.push( 173 173 - Cid::from_str(&rf.link) 174 174 - .context("failed to convert cid")?, 175 175 - ); 172 172 + cids.push(Cid::from_str(&rf.link).context("failed to convert cid")?); 176 173 } 177 174 } 178 175 } ··· 398 395 .context("failed to extract key")?; 399 396 } 400 397 401 401 - let mut tx = db 402 402 - .begin() 403 403 - .await 404 404 - .context("failed to begin transaction")?; 398 398 + let mut tx = db.begin().await.context("failed to begin transaction")?; 405 399 406 400 if !swap_commit( 407 401 &mut *tx, ··· 638 632 }; 639 633 Ok(Json( 640 634 repo::put_record::OutputData { 641 641 - cid: cid 642 642 - .context("missing cid")?, 635 635 + cid: cid.context("missing cid")?, 643 636 commit: write_result.commit.to_owned(), 644 644 - uri: uri 645 645 - .context("missing uri")?, 637 637 + uri: uri.context("missing uri")?, 646 638 validation_status: Some("unknown".to_owned()), 647 639 } 648 640 .into(), ··· 710 702 711 703 let mut tree = repo.tree(); 712 704 let mut it = Box::pin(tree.keys()); 713 713 - while let Some(key) = it 714 714 - .try_next() 715 715 - .await 716 716 - .context("failed to iterate repo keys")? 717 717 - { 705 705 + while let Some(key) = it.try_next().await.context("failed to iterate repo keys")? { 718 706 if let Some((collection, _rkey)) = key.split_once('/') { 719 707 _ = collections.insert(collection.to_owned()); 720 708 } ··· 764 752 .await 765 753 .context("failed to find record")?; 766 754 767 767 - let record: Option<serde_json::Value> = repo 768 768 - .get_raw(&key) 769 769 - .await 770 770 - .context("failed to read record")?; 755 755 + let record: Option<serde_json::Value> = 756 756 + repo.get_raw(&key).await.context("failed to read record")?; 771 757 772 758 record.map_or_else( 773 759 || { ··· 898 884 let mut len = 0_usize; 899 885 let mut sha = Sha256::new(); 900 886 let mut stream = request.into_body().into_data_stream(); 901 901 - while let Some(bytes) = stream 902 902 - .try_next() 903 903 - .await 904 904 - .context("failed to receive file")? 905 905 - { 906 906 - len = len 907 907 - .checked_add(bytes.len()) 908 908 - .context("size overflow")?; 887 887 + while let Some(bytes) = stream.try_next().await.context("failed to receive file")? { 888 888 + len = len.checked_add(bytes.len()).context("size overflow")?; 909 889 910 890 // Deal with any sneaky end-users trying to bypass size limitations. 911 911 - let len_u64: u64 = len 912 912 - .try_into() 913 913 - .context("failed to convert `len`")?; 891 891 + let len_u64: u64 = len.try_into().context("failed to convert `len`")?; 914 892 if len_u64 > config.blob.limit { 915 893 drop(file); 916 894 tokio::fs::remove_file(&filename)

+11 -23

src/endpoints/server.rs

··· 79 79 State(fhp): State<FirehoseProducer>, 80 80 Json(input): Json<server::create_account::Input>, 81 81 ) -> Result<Json<server::create_account::Output>> { 82 82 - let email = input 83 83 - .email 84 84 - .as_deref() 85 85 - .context("no email provided")?; 82 82 + let email = input.email.as_deref().context("no email provided")?; 86 83 // Hash the user's password. 87 84 let pass = Argon2::default() 88 85 .hash_password( ··· 124 121 125 122 // Begin a new transaction to actually create the user's profile. 126 123 // Unless committed, the transaction will be automatically rolled back. 127 127 - let mut tx = db 128 128 - .begin() 129 129 - .await 130 130 - .context("failed to begin transaction")?; 124 124 + let mut tx = db.begin().await.context("failed to begin transaction")?; 131 125 132 126 let _invite = match input.invite_code { 133 127 Some(ref code) => { ··· 145 139 .await 146 140 .context("failed to check invite code")?; 147 141 148 148 - invite 149 149 - .context("invalid invite code")? 142 142 + invite.context("invalid invite code")? 150 143 } 151 144 None => { 152 145 return Err(anyhow!("invite code required").into()); ··· 173 166 ) 174 167 .await 175 168 .context("failed to sign genesis op")?; 176 176 - let op_bytes = serde_ipld_dagcbor::to_vec(&op) 177 177 - .context("failed to encode genesis op")?; 169 169 + let op_bytes = serde_ipld_dagcbor::to_vec(&op).context("failed to encode genesis op")?; 178 170 179 171 let did_hash = { 180 172 let digest = base32::encode( ··· 283 275 .context("failed to create new account")?; 284 276 285 277 // The account is fully created. Commit the SQL transaction to the database. 286 286 - tx.commit() 287 287 - .await 288 288 - .context("failed to commit transaction")?; 278 278 + tx.commit().await.context("failed to commit transaction")?; 289 279 290 280 // Broadcast the identity event now that the new identity is resolvable on the public directory. 291 281 fhp.identity( ··· 415 405 416 406 match Argon2::default().verify_password( 417 407 password.as_bytes(), 418 418 - &PasswordHash::new(account.password.as_str()) 419 419 - .context("invalid password hash in db")?, 408 408 + &PasswordHash::new(account.password.as_str()).context("invalid password hash in db")?, 420 409 ) { 421 410 Ok(_) => {} 422 411 Err(_e) => { ··· 482 471 req: Request, 483 472 ) -> Result<Json<server::refresh_session::Output>> { 484 473 // TODO: store hashes of refresh tokens and enforce single-use 485 485 - let auth = req 474 474 + let auth_token = req 486 475 .headers() 487 476 .get(axum::http::header::AUTHORIZATION) 488 488 - .context("no authorization header provided")?; 489 489 - let token = auth 477 477 + .context("no authorization header provided")? 490 478 .to_str() 491 479 .ok() 492 480 .and_then(|auth| auth.strip_prefix("Bearer ")) 493 481 .context("invalid authentication token")?; 494 482 495 495 - let (typ, claims) = auth::verify(&skey.did(), token) 496 496 - .context("failed to verify refresh token")?; 483 483 + let (typ, claims) = 484 484 + auth::verify(&skey.did(), auth_token).context("failed to verify refresh token")?; 497 485 if typ != "refresh+jwt" { 498 486 return Err(Error::with_status( 499 487 StatusCode::UNAUTHORIZED, ··· 630 618 State(db): State<Db>, 631 619 ) -> Result<Json<server::get_session::Output>> { 632 620 let did = user.did(); 633 633 - 621 621 + #[expect(clippy::shadow_unrelated, reason = "is related")] 634 622 if let Some(user) = sqlx::query!( 635 623 r#" 636 624 SELECT a.email, a.status, (

+2 -3

src/endpoints/sync.rs

··· 318 318 } 319 319 320 320 async fn subscribe_repos( 321 321 - ws: WebSocketUpgrade, 321 321 + ws_up: WebSocketUpgrade, 322 322 State(fh): State<FirehoseProducer>, 323 323 Query(input): Query<SubscribeReposParametersData>, 324 324 ) -> impl IntoResponse { ··· 331 331 .expect("should be a valid response"); 332 332 } 333 333 }; 334 334 - 335 335 - ws.on_upgrade(async move |ws| { 334 334 + ws_up.on_upgrade(async move |ws| { 336 335 fh.client_connection(ws, cursor).await; 337 336 }) 338 337 }

+3 -8

src/firehose.rs

··· 277 277 let msg = sync::subscribe_repos::Error::FutureCursor(Some(format!( 278 278 "cursor {cursor} is greater than the current sequence number {seq}" 279 279 ))); 280 280 - 281 280 serde_ipld_dagcbor::to_writer(&mut frame, &hdr).expect("should serialize header"); 282 281 serde_ipld_dagcbor::to_writer(&mut frame, &msg).expect("should serialize message"); 283 283 - 284 282 // Drop the connection. 285 283 drop(ws.send(Message::binary(frame)).await); 286 284 bail!( ··· 288 286 ); 289 287 } 290 288 291 291 - for &(seq, ty, ref msg) in history.iter() { 292 292 - if seq > cursor { 293 293 - break; 289 289 + for &(historical_seq, ty, ref msg) in history.iter() { 290 290 + if cursor > historical_seq { 291 291 + continue; 294 292 } 295 295 - 296 293 let hdr = FrameHeader::Message(ty.to_owned()); 297 294 serde_ipld_dagcbor::to_writer(&mut frame, &hdr).expect("should serialize header"); 298 295 serde_ipld_dagcbor::to_writer(&mut frame, msg).expect("should serialize message"); 299 299 - 300 296 if let Err(e) = ws.send(Message::binary(frame.clone())).await { 301 297 debug!("Firehose client disconnected during backfill: {e}"); 302 298 break; 303 299 } 304 304 - 305 300 // Clear out the frame to begin a new one. 306 301 frame.clear(); 307 302 }

+2 -2

src/main.rs

··· 227 227 /// 228 228 /// Reference: https://atproto.com/specs/xrpc#service-proxying 229 229 async fn service_proxy( 230 230 - url: Uri, 230 230 + uri: Uri, 231 231 user: AuthenticatedUser, 232 232 State(skey): State<SigningKey>, 233 233 State(client): State<reqwest::Client>, 234 234 headers: HeaderMap, 235 235 request: Request<Body>, 236 236 ) -> Result<Response<Body>> { 237 237 - let url_path = url.path_and_query().context("invalid service proxy url")?; 237 237 + let url_path = uri.path_and_query().context("invalid service proxy url")?; 238 238 let lxm = url_path 239 239 .path() 240 240 .strip_prefix("/")