Cozi Tech Blog

The documentation for setting up Git to work well in a headless Windows environments is surprisingly sparse and the process is extremely frustrating (in my experience). Hopefully this will help!

Setup Git

• To run commands as the SYSTEM user, you can use psexec.exe from SysInternals.
  • From an Administrator cmd.exe prompt, psexec -i -s cmd.exe will open a new shell as the SYSTEM user.

General Advice when Setting Up Git

• Define a HOME env var equal to %USERPROFILE%.
• Create passphrase-less rsa keys and put them in %HOME%/.ssh. These keys should be setup on whatever server hosts the Git repos. In GitHub, for example, you would need to add the public keys to your account.
• Do an initial ssh [email protected] to add GitHub to the known_hosts.
• Get rid of any GIT_SSH env vars if using the default OpenSSL ssh client for auth (as opposed to plink.exe, etc). GIT_SSH=c:\…\plink.exe may exist if you have previously used PuTTY/Pageant/TortoiseGit/etc to access Git repos.
• ssh [email protected] (or wherever your repo is) is very useful for debugging. One to three -v flags (i.e. ssh -vv [email protected]) may be added to help debug the connection process.
• Set the %HOME%/.ssh/config to specify which authentication to use:

Host github.com
    User git
    Hostname github.com
    PreferredAuthentications publickey

• If you see the following error message and your files do have the correct perms (0600), then you are suffering from a bug in the msysgit ssh executable. Unix permissions (0644) don't map to NTFS ACLs. Msys just fakes the behavior of chmod, but it can't fake a chmod to a restrictive enough permissions set. Steps to fix are below.

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: UNPROTECTED PRIVATE KEY FILE! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0644 for '/path/to/key' are too open.
It is recommended that your private key files are NOT accessible by others.
This private key will be ignored.
bad permissions: ignore key: /path/to/key

@rem From an Administrator cmd.exe
@rem This works for 32bit Windows. Adjust accordingly for 64bit.
c:
ren "C:\Program Files\Git\bin\ssh.exe" "C:\Program Files\Git\bin\ssh.bak.exe"
copy "C:\cygwin\bin\ssh.exe" "C:\Program Files\Git\bin\ssh.exe"
copy "C:\cygwin\bin\cyg*.dll" "C:\Program Files\Git\bin\"

*** This is an excerpt from Jenkins Windows Slave and Git, originally published on Thomas Van Doren's blog.

Appreciated feedback from: George Reilly

Note: git fsck --lost-found may not work if you have run git gc recently, as it removes dangling commits.

Sources
http://techblog.ironfroggy.com/2007/12/how-to-recover-lost-git-branches.html
http://programblings.com/2008/06/07/the-illustrated-guide-to-recovering-lost-commits-with-git/

I spent some time earlier this week trying to fix a SerializationException in some .NET code. The fix ultimately turned out to be quite simple, but it took a while for me to understand what the exception message was actually telling me.

We were seeing occasional SerializationExceptions in our logs, with callstacks like this:

System.Runtime.Serialization.SerializationException: The constructor
to deserialize an object of type 'Cozi.WebClient.AccountTagsMap'
was not found.
  at System.Runtime.Serialization.ObjectManager.GetConstructor(
        Type t, Type[] ctorParams)
  at System.Runtime.Serialization.ObjectManager.CompleteISerializableObject(
        Object obj, SerializationInfo info, StreamingContext context)
  --- End of inner exception stack trace ---
  at System.Runtime.Serialization.ObjectManager.CompleteISerializableObject(
        Object obj, SerializationInfo info, StreamingContext context)
  at System.Runtime.Serialization.ObjectManager.FixupSpecialObject(ObjectHolder holder)
  at System.Runtime.Serialization.ObjectManager.DoFixups()
  at System.Runtime.Serialization.Formatters.Binary.ObjectReader.Deserialize(
        HeaderHandler handler,__BinaryParser serParser, Boolean fCheck,
        Boolean isCrossAppDomain, IMethodCallMessage methodCallMessage)
  at System.Runtime.Serialization.Formatters.Binary.BinaryFormatter.Deserialize(
        Stream serializationStream, HeaderHandler handler, Boolean fCheck,
        Boolean isCrossAppDomain, IMethodCallMessage methodCallMessage)
  at System.Web.Util.AltSerialization.ReadValueFromStream(BinaryReader reader)
  at System.Web.SessionState.SessionStateItemCollection.ReadValueFromStreamWithAssert()
  at System.Web.SessionState.SessionStateItemCollection.DeserializeItem(
        String name, Boolean check)
  at System.Web.SessionState.SessionStateItemCollection.DeserializeAllItems()
  at System.Web.SessionState.SessionStateItemCollection.get_Keys()
  at System.Web.SessionState.HttpSessionStateContainer.get_Keys()
  at System.Web.SessionState.HttpSessionState.get_Keys()
  ...

where AccountTagsMap looked like this:

[Serializable]
public class AccountTagsMap : Dictionary<string, DateTime>
{
    // Various irrelevant methods, but no additional data
    // and no constructors
}

It needed to be marked [Serializable] as it was sometimes being stashed in HttpContext.Current.Session.

Understandably, I assumed from the error message that simply adding a default constructor, AccountTagsMap(), would fix the problem.

It took me some time, with the help of Reflector, to realize that I also needed to add a serialization constructor:

[Serializable]
public class AccountTagsMap : Dictionary<string, DateTime>
{
    public AccountTagsMap() : base() { }
    protected AccountTagsMap(
        SerializationInfo info, StreamingContext context)
    : base(info, context) {}
    // ...
}

This isn't a full implementation of serialization. That's handled by the base class, Dictionary<K,V>. We wrongly assumed that inheriting from Dictionary was all we needed to do.

Here's some test code that demonstrates the problem. Comment out the serialization constructor to see the tests fail.

using System;
using System.Collections.Generic;
using System.Reflection;
using System.Runtime.Serialization;
using System.Runtime.Serialization.Formatters.Binary;
using System.IO;
using NUnit.Framework;

namespace Cozi.Test
{
    [TestFixture]
    public class MapSerializationTests
    {
        [Test]
        public void SerializationCtor()
        {
            Assert.IsNotNull(
                SerializationTester.GetConstructor(
                    typeof(AccountTagsMap)));
        }

        [Test]
        public void SerializationRoundtrip_AccountTagsMap()
        {
            AccountTagsMap map1 = new AccountTagsMap();
            map1["foo"] = DateTime.Now;
            map1["bar"] = DateTime.Now;
            AccountTagsMap map2 = SerializationTester.RoundTrip(map1);
            Assert.AreEqual(map1["foo"], map2["foo"]);
            Assert.AreEqual(map1["bar"], map2["bar"]);
        }
    }

    public static class SerializationTester
    {
    // http://msdn.microsoft.com/en-us/library/ms182342(v=vs.80).aspx
        public static T RoundTrip<T>(T value)
        {
            if (value == null)
                throw new ArgumentNullException("value");
            using (MemoryStream stream = new MemoryStream())
            {
                BinaryFormatter formatter = new BinaryFormatter();
                formatter.Serialize(stream, value);
                stream.Seek(0, SeekOrigin.Begin);
                return (T)formatter.Deserialize(stream);
            }
        }

        // Reverse-engineered from System.Runtime.Serialization
        // .ObjectManager.GetConstructor with Reflector
        public static ConstructorInfo GetConstructor(Type t)
        {
            ConstructorInfo info = t.GetConstructor(
                BindingFlags.NonPublic | BindingFlags.Public
                    | BindingFlags.Instance,
                null,
                CallingConventions.Any,
                new Type[] { typeof(SerializationInfo),
                             typeof(StreamingContext) },
                null) as ConstructorInfo;
            if (info == null)
            {
                throw new SerializationException(
                    String.Format(
                        "Serialization_ConstructorNotFound: {0}",
                        new object[] { t.FullName }));
            }
            return info;
        }
    }
}

I hope this saves you some time.

A few weeks ago, Andrew Abrahamowicz and I gave an introductory presentation on Secure Programming for Developers to the Cozi Dev Team.

As it may be of interest to other developers, I uploaded it to SlideShare.

Other Resources:

• 24 Deadly Sins of Software Security: Programming Flaws and How to Fix Them
• Writing Secure Code, Second Edition

A UUID is a universally unique 128-bit number, which can be generated without recourse to a central registry. UUIDs are used in many places, including database keys.

Version 1 UUIDs were generated from a combination of a network MAC address and a timestamp. Due to privacy concerns, most UUIDS are now RFC 4122 Version 4 UUIDs, generated from random data.

Most languages provide facilities to generate UUIDs, often built on top of the operating system's entropy pool of random data. JavaScript has a mediocre library and provides no way to generate UUIDs.

Robert Kieffer supplies one implementation at Broofa.com. It uses Math.random, JavaScript's built-in pseudo-random number generator.

I looked around and found a much better seedable random number generator for JavaScript by David Bau. The only downside is that if you don't specify an explicit random seed, its default method of gathering entropy is a recursive traversal of the window object. This traversal takes several hundred milliseconds on Firefox, though it's much faster on other modern browsers. Better, then, to supply seed data randomly generated on the server, such as Math.seedrandom('<%= Guid.NewGuid %>').

Here's another implementation of UUID generation. If you're using Bau's seedrandom.js, it overrides Math.random; otherwise, you're using JavaScript's built-in RNG.

var UUID = {
 // Return a randomly generated v4 UUID, per RFC 4122
 uuid4: function()
 {
  return this._uuid(
    this.randomInt(), this.randomInt(),
    this.randomInt(), this.randomInt(), 4);
 },

 // Create a versioned UUID from w1..w4, 32-bit non-negative ints
 _uuid: function(w1, w2, w3, w4, version)
 {
  var uuid = new Array(36);
  var data = [
   (w1 & 0xFFFFFFFF),
   (w2 & 0xFFFF0FFF) | ((version || 4) << 12), // version (1-5)
   (w3 & 0x3FFFFFFF) | 0x80000000,    // rfc 4122 variant
   (w4 & 0xFFFFFFFF)
  ];
  for (var i = 0, k = 0; i < 4; i++)
  {
   var rnd = data[i];
   for (var j = 0; j < 8; j++)
   {
    if (k == 8 || k == 13 || k == 18 || k == 23) {
     uuid[k++] = '-';
    }
    var r = (rnd >>> 28) & 0xf; // Take the high-order nybble
    rnd = (rnd & 0x0FFFFFFF) << 4;
    uuid[k++] = this.hex.charAt(r);
   }
  }
  return uuid.join('');
 },

 hex: '0123456789abcdef',

 // Return a random integer in [0, 2^32).
 randomInt: function()
 {
  return Math.floor(0x100000000 * Math.random());
 }
};

This should do a good-enough job of generating UUIDs. If these UUIDs are being sent to your servers, remember that you must never trust data from a client. If you're expecting unique UUIDs, an attacker might get past your defenses by repeatedly sending you an already used UUID.

Some time ago, we sharded our production database, splitting accounts onto a couple of partitions. We're using Consistent Hashing on account_ids to determine in which partition a particular account is located.

Our older services are written in C#; our newer, in Python. We use the SQLAlchemy object-relational mapper in the Python codebase, and we based our sharding code on the supplied example for SQLAlchemy 0.5.

Recently, it became apparent that some database queries that should have been sharded, weren't. These queries were querying all partitions. That's not too costly when there are only two partitions, but it will not scale.

SQLAlchemy's ShardedQuery calls our query_chooser for each query, to compute a set of shard ids on which to execute the query. To restrict a query to just one of our shards, the query must include an explicit account_id, so that we can compute the shard id.

There were several reasons why these queries didn't shard properly.

• ForeignKey relationships were not fully declared in some tables. SQLAlchemy was smart enough to create queries that worked, but did not have enough information to infer that the account_id should be included in the query.

class CalendarItem(Base):
  __tablename__ = 'calendar_items'
  calendar_item_id = Column(UUID, nullable=False, primary_key=True)
  calendar_id = Column(UUID, ForeignKey(Calendar.calendar_id),
                       nullable=False, index=True)
  account_id  = Column(UUID, ForeignKey(Account.account_id),
                       nullable=False)
  # ...

class CalendarItemRecurrence(Base):
  __tablename__ = 'calendar_item_recurrences'
  calendar_item_recurrence_id = Column(UUID, nullable=False,
                                       primary_key=True)
  account_id = Column(UUID, ForeignKey(CalendarItem.account_id),
                      nullable=False, index=True)
  calendar_item_id = Column(UUID,
                       ForeignKey(CalendarItem.calendar_item_id),
                       nullable=False, index=True)
  # ...

• ForeignKeys need to be directly to the foreign table, not to the transitive closure. In this case, CalendarItemRecurrence.account_id is a FK to CalendarItem.account_id, not to Account.account_id.
• Some inter-table relations needed explicit primaryjoins

CalendarItem.recurrence_dates = relation(
  CalendarItemRecurrenceDate,
  lazy=True,
  primaryjoin=and_(
      CalendarItemRecurrenceDate.account_id
            == CalendarItem.account_id,
      CalendarItemRecurrenceDate.calendar_item_id
            == CalendarItem.calendar_item_id
      ),
  uselist=True,
  cascade='all, delete-orphan',
  passive_updates=False,
  )

• Some explicit queries in our code should have filtered by account_id, but didn't.
• The provided example assumes that constants occur only on the right-hand side of binary expressions. We found that in lazy-load relations, constants could occur on the left-hand side.
• Some SQLAlchemy-generated queries had _BindParamClauses instead of constants

SELECT shopping_list_items.version AS shopping_list_items_version
FROM shopping_list_items
WHERE shopping_list_items.account_id = :param_1
  AND shopping_list_items.shopping_list_item_id = :param_2

I posted to the SQLAlchemy discussion list about the last two issues. After a couple of iterations, Michael Bayer came up with a much cleaner solution for traversing a query to choose ids, which has been checked into the 0.6 trunk.

Update: 2010/4/5: We discovered our non-sharded queries by adding some logging to the end of query_chooser, in the case where len(ids) == 0.

Cozi is hiring. We have positions in Web Development, Software Engineering, and System Engineering at our headquarters in Seattle.

Iframes have their uses, but they are not easy to deal with.

I added some text advertisements to our product this week. The standard technique for including advertising is to use an iframe. This works well for banner ads which come in well-known sizes.

I immediately ran into a problem with text ads in an iframe: there's no easy way to apply CSS to the contents of the iframe. Styles do not cascade through the iframe barrier. Normally, this is what you want, a self-contained unit on the page. It's fine for a banner ad, which requires no styling, but Times Roman text is jarring in a page of Arial.

It's difficult, perhaps outright impossible, to inject styles into an iframe coming from another domain.

Another problem is knowing how big to make the iframe. They don't autosize and the ad text could be one or more lines long.

I needed another way.

Making an Ajax call to fetch just the raw data that I cared about (title, body copy, link) was the obvious answer. A little wad of JSON would be much easier to deal with than trying to style an iframe. Unfortunately, the XMLHTTPRequest object cannot make cross-domain calls. But I read up on JSONP last week, so I knew that I could inject a script tag into my HTML DOM and set the src attribute to the adserver.

jQuery makes this easy: jQuery.getScript injects the script tag and removes it after the script has loaded.

We uploaded a custom template to the adserver:

setAdText({
  "adTitle": "%%TITLE%%",
  "bodyCopy": "%%BODYCOPY%%",
  "clickUrl": "%%CLICKURL%%"
});

I put this call to invoke the adserver's template in my page:

$.getScript(adServerUrl + cache_busting_random_token());

And the setAdText handler in my HTML page looks like this:

function setAdText(data)
{
  console.log("setAdText: adTitle=[%s], bodyCopy=[%s], clickUrl=%s."
    data.adTitle, data.bodyCopy, data.clickUrl);
  // add the ad to the DOM
}

Problem solved.

The strftime function is the prescribed way to format dates and times in Python (and other languages). It has limitations, such as forcing a leading zero on days of the month, 01-31, and on 12-hour clock hours, 01-12.

Edit I noticed that we were repeatedly writing expressions like these

d.strftime('%A, %B ') + str(d.day)
t.strftime("%I:%M").lstrip('0') + ('a' if t.hour < 12 else 'p')

and realized that there had to be a better way.

Here's a straightforward way to augment the directives: preprocess the format string, replacing new directives with their values, then let the underlying strftime implementation take care of the rest.

import re

_re_aux_format = re.compile("%([DiP])")

def strftime_aux(d, format):
    """
    Augmented strftime that handles additional directives.

    %D  Day of the month as a decimal number [1,31] (no leading zero)
    %i  Hour (12-hour clock) as a decimal number [1,12] (no leading zero)
    %P  'a' for AM, 'p' for PM

    >>> import datetime
    >>> d = datetime.datetime(2009, 4, 1, 9+12, 37)
    >>> strftime_aux(d, '%A, %B %d, %I:%M %p')
    'Wednesday, April 01, 09:37 PM'
    >>> strftime_aux(d, '%A, %B %D, %i:%M%P')
    'Wednesday, April 1, 9:37p'
    """

    # Precompute the values of the augmented directives
    directive_map = {
        'D': str(d.day),
        'i': '12' if d.hour in (0, 12) else str(d.hour % 12),
        'P': 'a' if d.hour < 12 else 'p',
    }
    # Substitute those values into the format string
    new_format = _re_aux_format.sub(
        lambda match: directive_map.get( match.group(1), ''),
        format)
    # Let the stock implementation of strftime handle everything else
    return d.strftime(new_format)

if __name__ == "__main__":
    import doctest
    doctest.testmod()

At Cozi, our family-oriented software depends on several web services.  We have our own deployment tool, called Artemis to deploy our web services.  Artemis has a simple web interface that processes commands using the same quoting rules as Unix's Bourne shell.

Had we written Artemis in Python, we could have simply used Python's built-in shlex module.  However, as we chose Erlang for its robust and intelligent built-in support for concurrency and network communication, I found there to be no built-in or easily available version, so I decided to write one myself (if any reader does know of such a thing, please add a comment).

The goals (and non-goals) of the Erlang version of shlex are as follows:

• mimic the behavior of shlex.split, minus the posix and infile options
• performance is not a major concern, as this code is called infrequently
• try to use an Erlang-y coding style

Originally, this code was about half the present length, but it failed many of the unit tests, in particular the ones involving using quoting at the end of the string.  Probably the most interesting thing about the code (especially for someone, such as myself, with more experience using C-like languages), is the lack of explicit control structures (i.e., there are no if statements).  Instead, the "function head" style is used.

%%% See the documentation for Python's built-in shlex module for what
%%% this does: http://docs.python.org/lib/module-shlex.html

-module(shlex).
-include_lib("eunit.hrl").

-export([split/1]).

%% Must be macros so we can use them in guard clauses.
-define(IS_WHITESPACE(Char), 
        Char =:= $\s; Char =:= $\t; Char =:= $\r; Char =:= $\n).
-define(IS_QUOTE(Char), Char =:= $\'; Char =:= $\").

%% Rough equivalent of Python's shlex.split(). We support its
%% optional 'comment' argument, though.
split(String) ->
 split(String, _Word = "", _Line = "", _ActiveQuote=none, _Escape=false).

%% Explanation of these lines: Each line handles a different case. The
%% first argument is the input (which is processed recursively). Next
%% is the word currently being built up. Next is whether or not
%% quoting is currently active (and what the quote char actually is),
%% and lastly is whether escaping is currently active (e.g., whether
%% we're just after a backslash).
split([], _Word, _Line, _QuoteChar, _Escape=true) ->
 {error, trailing_backslash};
split([], _Word, _Line, $\", _Escape=false) ->
 {error, unterminated_double_quote};
split([], _Word, _Line, $\', _Escape=false) ->
 {error, unterminated_single_quote};
split([], [], Line, _QuoteChar=none, _Escape=false) ->
 {ok, Line};
split([], Word, Line, _QuoteChar=none, _Escape=false) ->
 {ok, Line ++ [Word]};
split([AnyChar|Rest], Word, Line, QuoteChar, _Escape = true) ->
 split(Rest, Word ++ [AnyChar], Line, QuoteChar, false);
split([$\\|Rest], Word, Line, QuoteChar, _Escape = false) ->
 split(Rest, Word, Line, QuoteChar, true);
split([Whitespace|Rest], [], Line, none, false) 
  when ?IS_WHITESPACE(Whitespace) ->
 split(Rest, [], Line, none, false);
split([Whitespace|Rest], Word, Line, none, false) 
  when ?IS_WHITESPACE(Whitespace) ->
 split(Rest, [], Line ++ [Word], none, false);
split([QuoteChar|Rest], Word, Line, none, false) 
  when ?IS_QUOTE(QuoteChar) ->
 split(Rest, Word, Line, QuoteChar, false);
split([Char | Rest], Word, Line, none, false) ->
 split(Rest, Word ++ [Char], Line, none, false);
split([QuoteChar], Word, Line = [_Head|_Rest], QuoteChar, false) ->
 %% Special case: "a ''" -> ["a", []]. Don't want this to fire
 %% when Line is empty b/c that would mess up "''" -> [].
 split([], [], Line ++ [Word], none, false);
split([QuoteChar, Whitespace | Rest], Word, Line, QuoteChar, false) 
  when ?IS_WHITESPACE(Whitespace) ->
 %% Special case: "a '' b" -> ["a", [], "b"]
 split(Rest, [], Line ++ [Word], none, false);
split([QuoteChar|Rest], Word, Line, QuoteChar, false) ->
 split(Rest, Word, Line, none, false);
split([NonQuoteChar|Rest], Word, Line, QuoteChar, false) ->
 split(Rest, Word ++ [NonQuoteChar], Line, QuoteChar, false).

%%% Tests

test_happy([]) ->
 ok;
test_happy([[Input|Output]|Rest]) ->
 ?debugFmt("testing ~p -> ~p", [Input, Output]),
 {ok, Output} = split(Input),
 test_happy(Rest).

test_sad([]) ->
 ok;
test_sad([[Input, ErrorAtom]|Rest]) ->
 ?debugFmt("testing ~p -> {error, ~p}", [Input, ErrorAtom]),
 {error, ErrorAtom} = split(Input),
 test_sad(Rest).


big_test() ->
 HappyCases =
 [[""],
 [" "],
 [" "],
 [" \t\n\r\t "],
 ["abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ", 
  "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ"],
 ["0123456789", "0123456789"],
 ["a ", "a"],
 ["a", "a"],
 [" a", "a"],
 ["\"a\"", "a"],
 ["'a'", "a"],
 ["a''", "a"],
 ["a\"\"", "a"],
 ["\"\"a", "a"],
 ["''a", "a"],
 ["''"],
 [" ''"],
 ["a '' b", "a", "", "b"],
 ["a '' ", "a", ""],
 ["a \"\"", "a", ""],
 ["a ''", "a", ""],
 ["a ' '", "a", " "],
 ["a \" \"", "a", " "],
 ["a \" \" b", "a", " ", "b"],
 ["a \" \" b ' ' c", "a", " ", "b", " ", "c"],
 ["a \"\" b", "a", "", "b"],
 ["12 \"\" 34", "12", "", "34"],
 ["a", "a"],
 ["ab", "ab"],
 ["\\\"ab\\\"", "\"ab\""],
 ["a a", "a", "a"],
 ["a a a", "a", "a", "a"],
 ["a ", "a"],
 ["a ", "a"],
 ["a ", "a"],
 ["a b", "a", "b"],
 ["xy", "xy"],
 ["xyb", "xyb"],
 ["xy xy", "xy", "xy"],
 ["xy xy xy", "xy", "xy", "xy"],
 ["xy ", "xy"],
 ["xy ", "xy"],
 ["xy ", "xy"],
 ["xy b", "xy", "b"],
 ["margle", "margle"],
 ["margle margle", "margle", "margle"],
 ["margle margle margle", "margle", "margle", "margle"],
 ["margle ", "margle"],
 ["margle ", "margle"],
 ["margle ", "margle"],
 ["margle b", "margle", "b"],
 ["\"\""]],
 test_happy(HappyCases),
 SadCases =
 [
 ["\"", unterminated_double_quote],
 ["'", unterminated_single_quote],
 ["\\", trailing_backslash],
 ["\\\\\\", trailing_backslash],
 ["\"\"\"", unterminated_double_quote],
 ["'''", unterminated_single_quote],
 ["a \"", unterminated_double_quote],
 ["a '", unterminated_single_quote],
 ["a \\", trailing_backslash],
 ["a \\\\\\", trailing_backslash],
 ["a \"\"\"", unterminated_double_quote],
 ["a '''", unterminated_single_quote],
 ["a '''a", unterminated_single_quote],
 ["a '''a b", unterminated_single_quote],
 ["a '''a b c", unterminated_single_quote]
 ],
 test_sad(SadCases).