diff options
| author | mo khan <mo@mokhan.ca> | 2025-07-15 16:37:08 -0600 |
|---|---|---|
| committer | mo khan <mo@mokhan.ca> | 2025-07-17 16:30:22 -0600 |
| commit | 45df4d0d9b577fecee798d672695fe24ff57fb1b (patch) | |
| tree | 1b99bf645035b58e0d6db08c7a83521f41f7a75b /vendor/rustix/src/rand/getrandom.rs | |
| parent | f94f79608393d4ab127db63cc41668445ef6b243 (diff) | |
feat: migrate from Cedar to SpiceDB authorization system
This is a major architectural change that replaces the Cedar policy-based
authorization system with SpiceDB's relation-based authorization.
Key changes:
- Migrate from Rust to Go implementation
- Replace Cedar policies with SpiceDB schema and relationships
- Switch from envoy `ext_authz` with Cedar to SpiceDB permission checks
- Update build system and dependencies for Go ecosystem
- Maintain Envoy integration for external authorization
This change enables more flexible permission modeling through SpiceDB's
Google Zanzibar inspired relation-based system, supporting complex
hierarchical permissions that were difficult to express in Cedar.
Breaking change: Existing Cedar policies and Rust-based configuration
will no longer work and need to be migrated to SpiceDB schema.
Diffstat (limited to 'vendor/rustix/src/rand/getrandom.rs')
| -rw-r--r-- | vendor/rustix/src/rand/getrandom.rs | 33 |
1 files changed, 0 insertions, 33 deletions
diff --git a/vendor/rustix/src/rand/getrandom.rs b/vendor/rustix/src/rand/getrandom.rs deleted file mode 100644 index 69af9a3d..00000000 --- a/vendor/rustix/src/rand/getrandom.rs +++ /dev/null @@ -1,33 +0,0 @@ -//! Wrappers for `getrandom`. - -#![allow(unsafe_code)] - -use crate::buffer::Buffer; -use crate::{backend, io}; - -pub use backend::rand::types::GetRandomFlags; - -/// `getrandom(buf, flags)`—Reads a sequence of random bytes. -/// -/// This is a very low-level API which may be difficult to use correctly. Most -/// users should prefer to use [`getrandom`] or [`rand`] APIs instead. -/// -/// This function is implemented using a system call, and not the -/// [vDSO mechanism] introduced in Linux 6.11. See [#1185] for details. -/// -/// [`getrandom`]: https://crates.io/crates/getrandom -/// [`rand`]: https://crates.io/crates/rand -/// [vDSO mechanism]: https://lwn.net/Articles/983186/ -/// [#1185]: https://github.com/bytecodealliance/rustix/issues/1185 -/// -/// # References -/// - [Linux] -/// -/// [Linux]: https://man7.org/linux/man-pages/man2/getrandom.2.html -#[inline] -pub fn getrandom<Buf: Buffer<u8>>(mut buf: Buf, flags: GetRandomFlags) -> io::Result<Buf::Output> { - // SAFETY: `getrandom` behaves. - let len = unsafe { backend::rand::syscalls::getrandom(buf.parts_mut(), flags)? }; - // SAFETY: `getrandom` behaves. - unsafe { Ok(buf.assume_init(len)) } -} |