include_absolute_path 0.1.7

Macro to returns absolute path of a specified file or directory
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195

extern crate proc_macro;

use std::path::{Path, PathBuf};

use proc_macro::TokenStream;
use quote::quote;
use syn::{Error, LitStr, parse_macro_input};

/// Returns the absolute path of a file or directory at compile time.
///
/// This macro resolves both relative and absolute paths. Relative paths are resolved
/// relative to the file where the macro is called. The macro also supports environment
/// variable expansion using `$VAR` or `${VAR}` syntax.
///
/// # Features
///
/// - Resolves relative paths from the calling file's location
/// - Expands environment variables (e.g., `$HOME`, `${USER}`)
/// - Validates paths exist at compile time
/// - Provides detailed error messages with context
/// - Prevents path traversal attacks
///
/// # Usage
///
/// ```rust,ignore
/// use include_absolute_path::include_absolute_path;
///
/// // Relative path from current file
/// const CONFIG: &str = include_absolute_path!("../config.toml");
///
/// // Absolute path
/// const HOSTS: &str = include_absolute_path!("/etc/hosts");
///
/// // With environment variable
/// const HOME_DIR: &str = include_absolute_path!("$HOME");
/// const USER_CONFIG: &str = include_absolute_path!("$HOME/.config/app.conf");
/// ```
///
/// # Panics
///
/// This macro will panic at compile time if:
/// - The specified file or directory does not exist
/// - The path contains invalid UTF-8 characters
/// - Environment variable expansion fails
/// - The path contains suspicious traversal patterns (security check)
///
/// # Security
///
/// The macro includes basic security checks to prevent excessive path traversal
/// attempts. Paths with more than 3 `..` segments or where more than half the
/// components are `..` will be rejected.
///
/// # Examples
///
/// ## Relative path resolution
/// ```rust,ignore
/// use include_absolute_path::include_absolute_path;
///
/// // If called from src/main.rs, resolves to absolute path of Cargo.toml
/// const MANIFEST: &str = include_absolute_path!("../Cargo.toml");
/// ```
///
/// ## Environment variable expansion
/// ```rust
/// use include_absolute_path::include_absolute_path;
///
/// // Expands $HOME to user's home directory
/// const HOME: &str = include_absolute_path!("$HOME");
/// ```
///
/// ## Compile-time validation
/// ```compile_fail
/// use include_absolute_path::include_absolute_path;
///
/// // This will fail at compile time if the file doesn't exist
/// const MISSING: &str = include_absolute_path!("non_existent_file.txt");
/// ```
///
/// ## Security validation
/// ```compile_fail
/// use include_absolute_path::include_absolute_path;
///
/// // This will fail due to excessive path traversal
/// const SUSPICIOUS: &str = include_absolute_path!("../../../../../../../../etc/passwd");
/// ```
#[proc_macro]
pub fn include_absolute_path(input: TokenStream) -> TokenStream {
    // Parse the input tokens into a string
    let lit_str = parse_macro_input!(input as LitStr);
    let path = lit_str.value();
    let span = lit_str.span();

    // Get the file path where macro is called
    let caller_file_str = proc_macro::Span::call_site()
        .local_file()
        .unwrap_or_else(|| {
            panic!(
                "Failed to get the source file location. \
            This should not happen on stable Rust."
            )
        });

    let caller_file = Path::new(&caller_file_str);

    // Expand environment variables in the path
    let expanded_path = match shellexpand::env(&path) {
        Ok(expanded) => expanded,
        Err(e) => panic!(
            "Failed to expand environment variable in path '{path}': {e}. \
            Make sure the environment variable exists and is valid."
        ),
    };

    // Convert the expanded path to a Path
    let path_buf = PathBuf::from(expanded_path.as_ref());

    // Validate for suspicious path patterns
    if contains_suspicious_patterns(&path_buf) {
        return Error::new(
            span,
            format!(
                "Path '{path}' contains suspicious traversal patterns. \
                For security reasons, paths with excessive '..' segments are not allowed."
            ),
        )
        .to_compile_error()
        .into();
    }

    // Check if the path is absolute
    let raw_path = if path_buf.is_absolute() {
        // If the path is absolute, use it as is
        path_buf
    } else {
        // Get parent directory of the caller file
        let parent = caller_file.parent().unwrap_or_else(|| {
            panic!(
                "Failed to get parent directory of the source file '{}'. \
                The file appears to be in the root directory.",
                caller_file.display()
            )
        });
        parent.join(&path_buf)
    };

    // Canonicalize the path
    let absolute_path = match raw_path.canonicalize() {
        Ok(path) => path,
        Err(e) => {
            let cwd = std::env::current_dir()
                .map(|p| p.display().to_string())
                .unwrap_or_else(|_| "<unknown>".to_string());
            panic!(
                "Failed to resolve path '{}': {e}. \
                Make sure the file or directory exists and is accessible. \
                Current working directory: {cwd}",
                raw_path.display()
            )
        }
    };

    // Convert the path to a string
    let absolute_path_str = absolute_path.to_str().unwrap_or_else(|| {
        panic!(
            "Path '{}' contains invalid UTF-8 characters. \
            This is common on systems with non-UTF-8 file paths. \
            Consider using ASCII-only paths.",
            absolute_path.display()
        )
    });

    // Return the absolute path as a string literal
    let expanded = quote! {
        #absolute_path_str
    };

    TokenStream::from(expanded)
}

/// Check if a path contains suspicious traversal patterns
fn contains_suspicious_patterns(path: &Path) -> bool {
    let mut up_count = 0;
    let mut total_components = 0;

    for component in path.components() {
        total_components += 1;
        if matches!(component, std::path::Component::ParentDir) {
            up_count += 1;
        }
    }

    // Flag as suspicious if more than half the components are '..'
    // or if there are more than 3 consecutive '..' segments
    up_count > 3 || (total_components > 0 && up_count > total_components / 2)
}