Google Git
Sign in
fuchsia / fuchsia / 5c951495457e5ea53bf95773424723241cf8ca1a / . / src / sys / component_manager / src / builtin_environment.rs
blob: 5e019991c3f3eff355b7920184c9497f66c6cbe1 [file] [log] [blame]
// Copyright 2019 The Fuchsia Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
use {
crate::{
binder::BinderCapabilityHost,
bootfs::BootfsSvc,
builtin::{
arguments::Arguments as BootArguments,
capability::BuiltinCapability,
cpu_resource::CpuResource,
crash_introspect::{CrashIntrospectSvc, CrashRecords},
debug_resource::DebugResource,
factory_items::FactoryItems,
fuchsia_boot_resolver::{FuchsiaBootResolver, SCHEME as BOOT_SCHEME},
hypervisor_resource::HypervisorResource,
info_resource::InfoResource,
ioport_resource::IoportResource,
irq_resource::IrqResource,
items::Items,
kernel_stats::KernelStats,
lifecycle_controller::LifecycleController,
log::{ReadOnlyLog, WriteOnlyLog},
mmio_resource::MmioResource,
power_resource::PowerResource,
process_launcher::ProcessLauncher,
realm_builder::{
RealmBuilderResolver, RealmBuilderRunner, RUNNER_NAME as REALM_BUILDER_RUNNER_NAME,
SCHEME as REALM_BUILDER_SCHEME,
},
realm_explorer::RealmExplorer,
realm_query::RealmQuery,
root_job::{RootJob, ROOT_JOB_CAPABILITY_NAME, ROOT_JOB_FOR_INSPECT_CAPABILITY_NAME},
root_resource::RootResource,
route_validator::RouteValidator,
runner::{BuiltinRunner, BuiltinRunnerFactory},
smc_resource::SmcResource,
system_controller::SystemController,
time::{create_utc_clock, UtcTimeMaintainer},
vmex_resource::VmexResource,
},
collection::CollectionCapabilityHost,
diagnostics::ComponentTreeStats,
directory_ready_notifier::DirectoryReadyNotifier,
elf_runner::ElfRunner,
framework::RealmCapabilityHost,
fuchsia_pkg_resolver,
model::{
component::ComponentManagerInstance,
environment::Environment,
error::ModelError,
event_logger::EventLogger,
events::{
registry::{EventRegistry, ExecutionMode},
running_provider::RunningProvider,
source_factory::EventSourceFactory,
stream_provider::EventStreamProvider,
},
hooks::EventType,
hub::Hub,
model::{Model, ModelParams},
resolver::{BuiltinResolver, Resolver, ResolverRegistry},
storage::admin_protocol::StorageAdmin,
},
root_stop_notifier::RootStopNotifier,
},
::routing::{
config::RuntimeConfig,
environment::{DebugRegistry, RunnerRegistry},
},
anyhow::{anyhow, bail, format_err, Context as _, Error},
cm_rust::{CapabilityName, RunnerRegistration},
cm_types::Url,
fidl::{
endpoints::{create_endpoints, create_proxy, ServerEnd},
prelude::*,
AsHandleRef,
},
fidl_fuchsia_component_internal::{BuiltinBootResolver, BuiltinPkgResolver, OutDirContents},
fidl_fuchsia_diagnostics_types::Task as DiagnosticsTask,
fidl_fuchsia_io as fio,
fidl_fuchsia_sys::{LoaderMarker, LoaderProxy},
fuchsia_async as fasync,
fuchsia_component::{client, server::*},
fuchsia_inspect::{self as inspect, component, health::Reporter, Inspector},
fuchsia_runtime::{take_startup_handle, HandleInfo, HandleType},
fuchsia_zbi::{ZbiParser, ZbiType},
fuchsia_zircon::{self as zx, Clock, HandleBased, Resource},
futures::prelude::*,
lazy_static::lazy_static,
log::*,
moniker::{AbsoluteMoniker, AbsoluteMonikerBase},
std::{path::PathBuf, sync::Arc},
};
// Allow shutdown to take up to an hour.
pub static SHUTDOWN_TIMEOUT: std::time::Duration = std::time::Duration::from_secs(60 * 60);
fn take_vdso_vmo(index: u16, expected_name: &str) -> Result<zx::Vmo, anyhow::Error> {
let vmo = zx::Vmo::from(
fuchsia_runtime::take_startup_handle(HandleInfo::new(HandleType::VdsoVmo, index))
.ok_or(anyhow!("Failed to take vDSO {}", index))?,
);
let name = vmo.get_name()?.into_string()?;
if name == expected_name {
Ok(vmo)
} else {
Err(anyhow!("Unexpected vDSO, {} != {}", name, expected_name))
}
}
fn duplicate_vmo(vmo: &zx::Vmo) -> Result<zx::Vmo, Error> {
vmo.duplicate_handle(zx::Rights::SAME_RIGHTS)
.map_err(|e| anyhow!("Failed to duplicate vDSO VMO: {}", e))
}
/// Returns an owned VMO handle to the stable vDSO, duplicated from the handle
/// provided to this process through its processargs bootstrap message.
pub fn get_stable_vdso_vmo() -> Result<zx::Vmo, Error> {
lazy_static! {
static ref STABLE_VDSO_VMO: zx::Vmo =
take_vdso_vmo(0, "vdso/stable").expect("Failed to take stable vDSO VMO");
}
duplicate_vmo(&STABLE_VDSO_VMO)
}
/// Returns an owned VMO handle to the next vDSO, duplicated from the handle
/// provided to this process through its processargs bootstrap message.
pub fn get_next_vdso_vmo() -> Result<zx::Vmo, Error> {
lazy_static! {
static ref NEXT_VDSO_VMO: zx::Vmo =
take_vdso_vmo(1, "vdso/next").expect("Failed to take next vDSO VMO");
}
duplicate_vmo(&NEXT_VDSO_VMO)
}
pub struct BuiltinEnvironmentBuilder {
// TODO(60804): Make component manager's namespace injectable here.
runtime_config: Option<RuntimeConfig>,
bootfs_svc: Option<BootfsSvc>,
runners: Vec<(CapabilityName, Arc<dyn BuiltinRunnerFactory>)>,
resolvers: ResolverRegistry,
utc_clock: Option<Arc<Clock>>,
add_environment_resolvers: bool,
inspector: Option<Inspector>,
enable_introspection: bool,
crash_records: CrashRecords,
}
impl Default for BuiltinEnvironmentBuilder {
fn default() -> Self {
Self {
runtime_config: None,
bootfs_svc: None,
runners: vec![],
resolvers: ResolverRegistry::default(),
utc_clock: None,
add_environment_resolvers: false,
inspector: None,
enable_introspection: true,
crash_records: CrashRecords::new(),
}
}
}
impl BuiltinEnvironmentBuilder {
pub fn new() -> Self {
BuiltinEnvironmentBuilder::default()
}
pub fn use_default_config(self) -> Self {
self.set_runtime_config(RuntimeConfig::default())
}
pub fn set_runtime_config(mut self, runtime_config: RuntimeConfig) -> Self {
self.runtime_config = Some(runtime_config);
self
}
pub fn set_bootfs_svc(mut self, bootfs_svc: Option<BootfsSvc>) -> Self {
self.bootfs_svc = bootfs_svc;
self
}
pub fn set_inspector(mut self, inspector: Inspector) -> Self {
self.inspector = Some(inspector);
self
}
pub fn enable_introspection(mut self, val: bool) -> Self {
self.enable_introspection = val;
self
}
/// Create a UTC clock if required.
/// Not every instance of component_manager running on the system maintains a
/// UTC clock. Only the root component_manager should have the `maintain-utc-clock`
/// config flag set.
pub async fn create_utc_clock(mut self, bootfs: &Option<BootfsSvc>) -> Result<Self, Error> {
let runtime_config = self
.runtime_config
.as_ref()
.ok_or(format_err!("Runtime config should be set to create utc clock."))?;
self.utc_clock = if runtime_config.maintain_utc_clock {
Some(Arc::new(create_utc_clock(&bootfs).await.context("failed to create UTC clock")?))
} else {
None
};
Ok(self)
}
pub fn set_utc_clock(mut self, clock: Arc<Clock>) -> Self {
self.utc_clock = Some(clock);
self
}
pub fn add_elf_runner(self) -> Result<Self, Error> {
let runtime_config = self
.runtime_config
.as_ref()
.ok_or(format_err!("Runtime config should be set to add elf runner."))?;
let runner = Arc::new(ElfRunner::new(
&runtime_config,
self.utc_clock.clone(),
self.crash_records.clone(),
));
Ok(self.add_runner("elf".into(), runner))
}
pub fn add_runner(
mut self,
name: CapabilityName,
runner: Arc<dyn BuiltinRunnerFactory>,
) -> Self {
// We don't wrap these in a BuiltinRunner immediately because that requires the
// RuntimeConfig, which may be provided after this or may fall back to the default.
self.runners.push((name, runner));
self
}
pub fn add_resolver(
mut self,
scheme: String,
resolver: Box<dyn Resolver + Send + Sync + 'static>,
) -> Self {
self.resolvers.register(scheme, resolver);
self
}
/// Adds standard resolvers whose dependencies are available in the process's namespace and for
/// whose scheme no resolver is registered through `add_resolver` by the time `build()` is
/// is called. This includes:
/// - A fuchsia-boot resolver if /boot is available.
/// - A fuchsia-pkg resolver, if /svc/fuchsia.sys.Loader is present.
/// - This resolver implementation proxies to that protocol (which is the v1 resolver
/// equivalent). This is used for tests or other scenarios where component_manager runs
/// as a v1 component.
pub fn include_namespace_resolvers(mut self) -> Self {
self.add_environment_resolvers = true;
self
}
pub async fn build(mut self) -> Result<BuiltinEnvironment, Error> {
let system_resource_handle =
take_startup_handle(HandleType::SystemResource.into()).map(zx::Resource::from);
if self.bootfs_svc.is_some() {
// Set up the Rust bootfs VFS, and bind to the '/boot' namespace. This should
// happen as early as possible when building the component manager as other objects
// may require reading from '/boot' for configuration, etc.
self.bootfs_svc
.unwrap()
.ingest_bootfs_vmo(&system_resource_handle)?
.publish_kernel_vmo(get_stable_vdso_vmo()?)?
.publish_kernel_vmo(get_next_vdso_vmo()?)?
.publish_kernel_vmos(HandleType::VdsoVmo, 2)?
.publish_kernel_vmos(HandleType::KernelFileVmo, 0)?
.create_and_bind_vfs()?;
}
let runtime_config = self
.runtime_config
.ok_or(format_err!("Runtime config is required for BuiltinEnvironment."))?;
let root_component_url = match runtime_config.root_component_url.as_ref() {
Some(url) => url.clone(),
None => {
return Err(format_err!("Root component url is required from RuntimeConfig."));
}
};
let boot_resolver = if self.add_environment_resolvers {
let boot_resolver = register_boot_resolver(&mut self.resolvers, &runtime_config)?;
register_appmgr_resolver(&mut self.resolvers, &runtime_config)?;
boot_resolver
} else {
None
};
let realm_builder_resolver = match runtime_config.realm_builder_resolver_and_runner {
fidl_fuchsia_component_internal::RealmBuilderResolverAndRunner::Namespace => {
self.runners
.push((REALM_BUILDER_RUNNER_NAME.into(), Arc::new(RealmBuilderRunner::new()?)));
Some(register_realm_builder_resolver(&mut self.resolvers)?)
}
fidl_fuchsia_component_internal::RealmBuilderResolverAndRunner::None => None,
};
let runner_map = self
.runners
.iter()
.map(|(name, _)| {
(
name.clone(),
RunnerRegistration {
source_name: name.clone(),
target_name: name.clone(),
source: cm_rust::RegistrationSource::Self_,
},
)
})
.collect();
let runtime_config = Arc::new(runtime_config);
let top_instance = Arc::new(ComponentManagerInstance::new(
runtime_config.namespace_capabilities.clone(),
runtime_config.builtin_capabilities.clone(),
));
let params = ModelParams {
root_component_url: root_component_url.as_str().to_owned(),
root_environment: Environment::new_root(
&top_instance,
RunnerRegistry::new(runner_map),
self.resolvers,
DebugRegistry::default(),
),
runtime_config: Arc::clone(&runtime_config),
top_instance,
};
let model = Model::new(params).await?;
// Wrap BuiltinRunnerFactory in BuiltinRunner now that we have the definite RuntimeConfig.
let builtin_runners = self
.runners
.into_iter()
.map(|(name, runner)| {
Arc::new(BuiltinRunner::new(name, runner, Arc::downgrade(&runtime_config)))
})
.collect();
Ok(BuiltinEnvironment::new(
model,
root_component_url,
runtime_config,
system_resource_handle,
builtin_runners,
boot_resolver,
realm_builder_resolver,
self.utc_clock,
self.inspector.unwrap_or(component::inspector().clone()),
self.enable_introspection,
self.crash_records,
)
.await?)
}
}
/// The built-in environment consists of the set of the root services and framework services. Use
/// BuiltinEnvironmentBuilder to construct one.
///
/// The available built-in capabilities depends on the configuration provided in Arguments:
/// * If [RuntimeConfig::use_builtin_process_launcher] is true, a fuchsia.process.Launcher service
/// is available.
/// * If [RuntimeConfig::maintain_utc_clock] is true, a fuchsia.time.Maintenance service is
/// available.
pub struct BuiltinEnvironment {
pub model: Arc<Model>,
// Framework capabilities.
pub boot_args: Arc<BootArguments>,
pub cpu_resource: Option<Arc<CpuResource>>,
pub debug_resource: Option<Arc<DebugResource>>,
pub hypervisor_resource: Option<Arc<HypervisorResource>>,
pub info_resource: Option<Arc<InfoResource>>,
#[cfg(target_arch = "x86_64")]
pub ioport_resource: Option<Arc<IoportResource>>,
pub irq_resource: Option<Arc<IrqResource>>,
pub kernel_stats: Option<Arc<KernelStats>>,
pub process_launcher: Option<Arc<ProcessLauncher>>,
pub root_job: Arc<RootJob>,
pub root_job_for_inspect: Arc<RootJob>,
pub read_only_log: Option<Arc<ReadOnlyLog>>,
pub write_only_log: Option<Arc<WriteOnlyLog>>,
pub factory_items_service: Option<Arc<FactoryItems>>,
pub items_service: Option<Arc<Items>>,
pub mmio_resource: Option<Arc<MmioResource>>,
pub power_resource: Option<Arc<PowerResource>>,
pub root_resource: Option<Arc<RootResource>>,
#[cfg(target_arch = "aarch64")]
pub smc_resource: Option<Arc<SmcResource>>,
pub system_controller: Arc<SystemController>,
pub utc_time_maintainer: Option<Arc<UtcTimeMaintainer>>,
pub vmex_resource: Option<Arc<VmexResource>>,
pub crash_records_svc: Arc<CrashIntrospectSvc>,
pub binder_capability_host: Arc<BinderCapabilityHost>,
pub realm_capability_host: Arc<RealmCapabilityHost>,
pub collection_capability_host: Arc<CollectionCapabilityHost>,
pub storage_admin_capability_host: Arc<StorageAdmin>,
pub hub: Option<Arc<Hub>>,
pub realm_explorer: Option<Arc<RealmExplorer>>,
pub realm_query: Option<Arc<RealmQuery>>,
pub lifecycle_controller: Option<Arc<LifecycleController>>,
pub route_validator: Option<Arc<RouteValidator>>,
pub builtin_runners: Vec<Arc<BuiltinRunner>>,
pub event_registry: Arc<EventRegistry>,
pub event_source_factory: Arc<EventSourceFactory>,
pub stop_notifier: Arc<RootStopNotifier>,
pub directory_ready_notifier: Arc<DirectoryReadyNotifier>,
pub event_stream_provider: Arc<EventStreamProvider>,
pub event_logger: Option<Arc<EventLogger>>,
pub component_tree_stats: Arc<ComponentTreeStats<DiagnosticsTask>>,
pub execution_mode: ExecutionMode,
pub num_threads: usize,
pub out_dir_contents: OutDirContents,
pub inspector: Inspector,
pub realm_builder_resolver: Option<Arc<RealmBuilderResolver>>,
_service_fs_task: Option<fasync::Task<()>>,
}
impl BuiltinEnvironment {
async fn new(
model: Arc<Model>,
root_component_url: Url,
runtime_config: Arc<RuntimeConfig>,
system_resource_handle: Option<Resource>,
builtin_runners: Vec<Arc<BuiltinRunner>>,
boot_resolver: Option<Arc<FuchsiaBootResolver>>,
realm_builder_resolver: Option<Arc<RealmBuilderResolver>>,
utc_clock: Option<Arc<Clock>>,
inspector: Inspector,
enable_introspection: bool,
crash_records: CrashRecords,
) -> Result<BuiltinEnvironment, Error> {
let execution_mode = if runtime_config.debug {
warn!(
"Component Manager is in debug mode. In this mode, the root component will not \
be started. Use the LifecycleController protocol in the hub to start the root \
component."
);
ExecutionMode::Debug
} else {
ExecutionMode::Production
};
let num_threads = runtime_config.num_threads.clone();
let out_dir_contents = runtime_config.out_dir_contents.clone();
let event_logger = if runtime_config.log_all_events {
let event_logger = Arc::new(EventLogger::new());
model.root().hooks.install(event_logger.hooks()).await;
Some(event_logger)
} else {
None
};
// Set up ProcessLauncher if available.
let process_launcher = if runtime_config.use_builtin_process_launcher {
let process_launcher = Arc::new(ProcessLauncher::new());
model.root().hooks.install(process_launcher.hooks()).await;
Some(process_launcher)
} else {
None
};
// Set up RootJob service.
let root_job = RootJob::new(&ROOT_JOB_CAPABILITY_NAME, zx::Rights::SAME_RIGHTS);
model.root().hooks.install(root_job.hooks()).await;
// Set up RootJobForInspect service.
let root_job_for_inspect = RootJob::new(
&ROOT_JOB_FOR_INSPECT_CAPABILITY_NAME,
zx::Rights::INSPECT
| zx::Rights::ENUMERATE
| zx::Rights::DUPLICATE
| zx::Rights::TRANSFER
| zx::Rights::GET_PROPERTY,
);
model.root().hooks.install(root_job_for_inspect.hooks()).await;
let mmio_resource_handle =
take_startup_handle(HandleType::MmioResource.into()).map(zx::Resource::from);
let irq_resource_handle =
take_startup_handle(HandleType::IrqResource.into()).map(zx::Resource::from);
let root_resource_handle =
take_startup_handle(HandleType::Resource.into()).map(zx::Resource::from);
let zbi_vmo_handle = take_startup_handle(HandleType::BootdataVmo.into()).map(zx::Vmo::from);
let mut zbi_parser = match zbi_vmo_handle {
Some(zbi_vmo) => Some(
ZbiParser::new(zbi_vmo)
.set_store_item(ZbiType::Cmdline)
.set_store_item(ZbiType::ImageArgs)
.set_store_item(ZbiType::Crashlog)
.set_store_item(ZbiType::KernelDriver)
.set_store_item(ZbiType::PlatformId)
.set_store_item(ZbiType::StorageBootfsFactory)
.set_store_item(ZbiType::StorageRamdisk)
.set_store_item(ZbiType::SerialNumber)
.set_store_item(ZbiType::BootloaderFile)
.set_store_item(ZbiType::DeviceTree)
.set_store_item(ZbiType::DriverMetadata)
.set_store_item(ZbiType::CpuTopology)
.parse()?,
),
None => None,
};
// Set up BootArguments service.
let boot_args = BootArguments::new(&mut zbi_parser).await?;
model.root().hooks.install(boot_args.hooks()).await;
let (factory_items_service, items_service) = match zbi_parser {
None => (None, None),
Some(mut zbi_parser) => {
let factory_items = FactoryItems::new(&mut zbi_parser)?;
model.root().hooks.install(factory_items.hooks()).await;
let items = Items::new(zbi_parser)?;
model.root().hooks.install(items.hooks()).await;
(Some(factory_items), Some(items))
}
};
// Set up CrashRecords service.
let crash_records_svc = CrashIntrospectSvc::new(crash_records);
model.root().hooks.install(crash_records_svc.hooks()).await;
// Set up KernelStats service.
let info_resource_handle = system_resource_handle
.as_ref()
.map(|handle| {
match handle.create_child(
zx::ResourceKind::SYSTEM,
None,
zx::sys::ZX_RSRC_SYSTEM_INFO_BASE,
1,
b"info",
) {
Ok(resource) => Some(resource),
Err(_) => None,
}
})
.flatten();
let kernel_stats = info_resource_handle.map(KernelStats::new);
if let Some(kernel_stats) = kernel_stats.as_ref() {
model.root().hooks.install(kernel_stats.hooks()).await;
}
// Set up ReadOnlyLog service.
let read_only_log = root_resource_handle.as_ref().map(|handle| {
ReadOnlyLog::new(
handle
.duplicate_handle(zx::Rights::SAME_RIGHTS)
.expect("Failed to duplicate root resource handle"),
)
});
if let Some(read_only_log) = read_only_log.as_ref() {
model.root().hooks.install(read_only_log.hooks()).await;
}
// Set up WriteOnlyLog service.
let write_only_log = root_resource_handle.as_ref().map(|handle| {
WriteOnlyLog::new(zx::DebugLog::create(handle, zx::DebugLogOpts::empty()).unwrap())
});
if let Some(write_only_log) = write_only_log.as_ref() {
model.root().hooks.install(write_only_log.hooks()).await;
}
// Register the UTC time maintainer.
let utc_time_maintainer = if let Some(clock) = utc_clock {
let utc_time_maintainer = Arc::new(UtcTimeMaintainer::new(clock));
model.root().hooks.install(utc_time_maintainer.hooks()).await;
Some(utc_time_maintainer)
} else {
None
};
// Set up the MmioResource service.
let mmio_resource = mmio_resource_handle.map(MmioResource::new);
if let Some(mmio_resource) = mmio_resource.as_ref() {
model.root().hooks.install(mmio_resource.hooks()).await;
}
let _ioport_resource: Option<Arc<IoportResource>>;
#[cfg(target_arch = "x86_64")]
{
let ioport_resource_handle =
take_startup_handle(HandleType::IoportResource.into()).map(zx::Resource::from);
_ioport_resource = ioport_resource_handle.map(IoportResource::new);
if let Some(_ioport_resource) = _ioport_resource.as_ref() {
model.root().hooks.install(_ioport_resource.hooks()).await;
}
}
// Set up the IrqResource service.
let irq_resource = irq_resource_handle.map(IrqResource::new);
if let Some(irq_resource) = irq_resource.as_ref() {
model.root().hooks.install(irq_resource.hooks()).await;
}
// Set up RootResource service.
let root_resource = root_resource_handle.map(RootResource::new);
if let Some(root_resource) = root_resource.as_ref() {
model.root().hooks.install(root_resource.hooks()).await;
}
// Set up the SMC resource.
let _smc_resource: Option<Arc<SmcResource>>;
#[cfg(target_arch = "aarch64")]
{
let smc_resource_handle =
take_startup_handle(HandleType::SmcResource.into()).map(zx::Resource::from);
_smc_resource = smc_resource_handle.map(SmcResource::new);
if let Some(_smc_resource) = _smc_resource.as_ref() {
model.root().hooks.install(_smc_resource.hooks()).await;
}
}
// Set up the CpuResource service.
let cpu_resource_handle = system_resource_handle
.as_ref()
.map(|handle| {
match handle.create_child(
zx::ResourceKind::SYSTEM,
None,
zx::sys::ZX_RSRC_SYSTEM_CPU_BASE,
1,
b"cpu",
) {
Ok(resource) => Some(resource),
Err(_) => None,
}
})
.flatten();
let cpu_resource = cpu_resource_handle.map(CpuResource::new);
if let Some(cpu_resource) = cpu_resource.as_ref() {
model.root().hooks.install(cpu_resource.hooks()).await;
}
// Set up the DebugResource service.
let debug_resource_handle = system_resource_handle
.as_ref()
.map(|handle| {
match handle.create_child(
zx::ResourceKind::SYSTEM,
None,
zx::sys::ZX_RSRC_SYSTEM_DEBUG_BASE,
1,
b"debug",
) {
Ok(resource) => Some(resource),
Err(_) => None,
}
})
.flatten();
let debug_resource = debug_resource_handle.map(DebugResource::new);
if let Some(debug_resource) = debug_resource.as_ref() {
model.root().hooks.install(debug_resource.hooks()).await;
}
// Set up the HypervisorResource service.
let hypervisor_resource_handle = system_resource_handle
.as_ref()
.map(|handle| {
match handle.create_child(
zx::ResourceKind::SYSTEM,
None,
zx::sys::ZX_RSRC_SYSTEM_HYPERVISOR_BASE,
1,
b"hypervisor",
) {
Ok(resource) => Some(resource),
Err(_) => None,
}
})
.flatten();
let hypervisor_resource = hypervisor_resource_handle.map(HypervisorResource::new);
if let Some(hypervisor_resource) = hypervisor_resource.as_ref() {
model.root().hooks.install(hypervisor_resource.hooks()).await;
}
// Set up the InfoResource service.
let info_resource_handle = system_resource_handle
.as_ref()
.map(|handle| {
match handle.create_child(
zx::ResourceKind::SYSTEM,
None,
zx::sys::ZX_RSRC_SYSTEM_INFO_BASE,
1,
b"info",
) {
Ok(resource) => Some(resource),
Err(_) => None,
}
})
.flatten();
let info_resource = info_resource_handle.map(InfoResource::new);
if let Some(info_resource) = info_resource.as_ref() {
model.root().hooks.install(info_resource.hooks()).await;
}
// Set up the PowerResource service.
let power_resource_handle = system_resource_handle
.as_ref()
.map(|handle| {
match handle.create_child(
zx::ResourceKind::SYSTEM,
None,
zx::sys::ZX_RSRC_SYSTEM_POWER_BASE,
1,
b"power",
) {
Ok(resource) => Some(resource),
Err(_) => None,
}
})
.flatten();
let power_resource = power_resource_handle.map(PowerResource::new);
if let Some(power_resource) = power_resource.as_ref() {
model.root().hooks.install(power_resource.hooks()).await;
}
// Set up the VmexResource service.
let vmex_resource_handle = system_resource_handle
.as_ref()
.map(|handle| {
match handle.create_child(
zx::ResourceKind::SYSTEM,
None,
zx::sys::ZX_RSRC_SYSTEM_VMEX_BASE,
1,
b"vmex",
) {
Ok(resource) => Some(resource),
Err(_) => None,
}
})
.flatten();
let vmex_resource = vmex_resource_handle.map(VmexResource::new);
if let Some(vmex_resource) = vmex_resource.as_ref() {
model.root().hooks.install(vmex_resource.hooks()).await;
}
// Set up System Controller service.
let system_controller =
Arc::new(SystemController::new(Arc::downgrade(&model), SHUTDOWN_TIMEOUT));
model.root().hooks.install(system_controller.hooks()).await;
// Set up the realm service.
let realm_capability_host =
Arc::new(RealmCapabilityHost::new(Arc::downgrade(&model), runtime_config.clone()));
model.root().hooks.install(realm_capability_host.hooks()).await;
// Set up the binder service.
let binder_capability_host = Arc::new(BinderCapabilityHost::new(Arc::downgrade(&model)));
model.root().hooks.install(binder_capability_host.hooks()).await;
// Set up the provider of capabilities that originate from collections.
let collection_capability_host =
Arc::new(CollectionCapabilityHost::new(Arc::downgrade(&model)));
model.root().hooks.install(collection_capability_host.hooks()).await;
// Set up the storage admin protocol
let storage_admin_capability_host = Arc::new(StorageAdmin::new(Arc::downgrade(&model)));
model.root().hooks.install(storage_admin_capability_host.hooks()).await;
// Set up the builtin runners.
for runner in &builtin_runners {
model.root().hooks.install(runner.hooks()).await;
}
// Set up the boot resolver so it is routable from "above root".
if let Some(boot_resolver) = boot_resolver {
model.root().hooks.install(boot_resolver.hooks()).await;
}
// Set up the root realm stop notifier.
let stop_notifier = Arc::new(RootStopNotifier::new());
model.root().hooks.install(stop_notifier.hooks()).await;
let realm_explorer = if enable_introspection {
let realm_explorer = Arc::new(RealmExplorer::new(model.clone()));
model.root().hooks.install(realm_explorer.hooks()).await;
Some(realm_explorer)
} else {
None
};
let realm_query = if enable_introspection {
let realm_query = Arc::new(RealmQuery::new(model.clone()));
model.root().hooks.install(realm_query.hooks()).await;
Some(realm_query)
} else {
None
};
let lifecycle_controller = if enable_introspection {
let realm_control = Arc::new(LifecycleController::new(model.clone()));
model.root().hooks.install(realm_control.hooks()).await;
Some(realm_control)
} else {
None
};
let hub = if enable_introspection {
let hub = Arc::new(Hub::new(root_component_url.as_str().to_owned())?);
model.root().hooks.install(hub.hooks()).await;
Some(hub)
} else {
None
};
let route_validator = if enable_introspection {
let route_validator = Arc::new(RouteValidator::new(model.clone()));
model.root().hooks.install(route_validator.hooks()).await;
Some(route_validator)
} else {
None
};
// Set up the Component Tree Diagnostics runtime statistics.
let component_tree_stats =
ComponentTreeStats::new(inspector.root().create_child("cpu_stats")).await;
component_tree_stats.track_component_manager_stats().await;
component_tree_stats.start_measuring().await;
model.root().hooks.install(component_tree_stats.hooks()).await;
// Serve stats about inspect in a lazy node.
let node = inspect::stats::Node::new(&inspector, inspector.root());
inspector.root().record(node.take());
// Set up the directory ready notifier.
let directory_ready_notifier =
Arc::new(DirectoryReadyNotifier::new(Arc::downgrade(&model)));
model.root().hooks.install(directory_ready_notifier.hooks()).await;
// Set up the event registry.
let event_registry = {
let mut event_registry = EventRegistry::new(Arc::downgrade(&model));
event_registry.register_synthesis_provider(
EventType::DirectoryReady,
directory_ready_notifier.clone(),
);
event_registry
.register_synthesis_provider(EventType::Running, Arc::new(RunningProvider::new()));
Arc::new(event_registry)
};
model.root().hooks.install(event_registry.hooks()).await;
let event_stream_provider = Arc::new(EventStreamProvider::new(
Arc::downgrade(&event_registry),
execution_mode.clone(),
));
// Set up the event source factory.
let event_source_factory = Arc::new(EventSourceFactory::new(
Arc::downgrade(&model),
Arc::downgrade(&event_registry),
Arc::downgrade(&event_stream_provider),
execution_mode.clone(),
));
model.root().hooks.install(event_source_factory.hooks()).await;
model.root().hooks.install(event_stream_provider.hooks()).await;
Ok(BuiltinEnvironment {
model,
boot_args,
process_launcher,
root_job,
root_job_for_inspect,
kernel_stats,
read_only_log,
write_only_log,
factory_items_service,
items_service,
cpu_resource,
debug_resource,
mmio_resource,
hypervisor_resource,
info_resource,
irq_resource,
power_resource,
#[cfg(target_arch = "x86_64")]
ioport_resource: _ioport_resource,
#[cfg(target_arch = "aarch64")]
smc_resource: _smc_resource,
vmex_resource,
crash_records_svc,
root_resource,
system_controller,
utc_time_maintainer,
binder_capability_host,
realm_capability_host,
collection_capability_host,
storage_admin_capability_host,
hub,
realm_explorer,
realm_query,
lifecycle_controller,
route_validator,
builtin_runners,
event_registry,
event_source_factory,
stop_notifier,
directory_ready_notifier,
event_stream_provider,
event_logger,
component_tree_stats,
execution_mode,
num_threads,
out_dir_contents,
inspector,
realm_builder_resolver,
_service_fs_task: None,
})
}
/// Setup a ServiceFs that contains debug capabilities like the root Hub, LifecycleController,
/// and EventSource.
async fn create_service_fs<'a>(&self) -> Result<ServiceFs<ServiceObj<'a, ()>>, Error> {
if let None = self.hub {
bail!("Hub must be enabled if OutDirContents is not `None`");
}
// Create the ServiceFs
let mut service_fs = ServiceFs::new();
// Setup the hub
let (hub_proxy, hub_server_end) = create_proxy::<fio::DirectoryMarker>().unwrap();
if let Some(hub) = &self.hub {
hub.open_root(
fio::OpenFlags::RIGHT_READABLE | fio::OpenFlags::RIGHT_WRITABLE,
hub_server_end.into_channel(),
)
.await?;
service_fs.add_remote("hub", hub_proxy);
}
// Install the root fuchsia.sys2.LifecycleController
if let Some(lifecycle_controller) = &self.lifecycle_controller {
let lifecycle_controller = lifecycle_controller.clone();
let scope = self.model.top_instance().task_scope().clone();
service_fs.dir("svc").add_fidl_service(move |stream| {
let lifecycle_controller = lifecycle_controller.clone();
let scope = scope.clone();
// Spawn a short-lived task that adds the lifecycle controller serve to
// component manager's task scope.
fasync::Task::spawn(async move {
scope
.add_task(async move {
lifecycle_controller.serve(AbsoluteMoniker::root(), stream).await;
})
.await;
})
.detach();
});
}
// If component manager is in debug mode, create an event source scoped at the
// root and offer it via ServiceFs to the outside world.
if self.execution_mode.is_debug() {
let event_source = self.event_source_factory.create_for_debug().await?;
let scope = self.model.top_instance().task_scope().clone();
service_fs.dir("svc").add_fidl_service(move |stream| {
let event_source = event_source.clone();
let scope = scope.clone();
// Spawn a short-lived task that adds the EventSource serve to
// component manager's task scope.
fasync::Task::spawn(async move {
scope
.add_task(async move {
event_source.serve(stream).await;
})
.await;
})
.detach();
});
}
inspect_runtime::serve(component::inspector(), &mut service_fs)
.map_err(|err| ModelError::Inspect { err })
.unwrap_or_else(|err| {
warn!("Failed to serve inspect: {:?}", err);
});
Ok(service_fs)
}
/// Bind ServiceFs to a provided channel
async fn bind_service_fs(&mut self, channel: zx::Channel) -> Result<(), Error> {
let mut service_fs = self.create_service_fs().await?;
// Bind to the channel
service_fs
.serve_connection(channel)
.map_err(|err| ModelError::namespace_creation_failed(err))?;
self.emit_diagnostics(&mut service_fs).unwrap_or_else(|err| {
warn!("Failed to serve diagnostics: {:?}", err);
});
// Start up ServiceFs
self._service_fs_task = Some(fasync::Task::spawn(async move {
service_fs.collect::<()>().await;
}));
Ok(())
}
/// Bind ServiceFs to the outgoing directory of this component, if it exists.
pub async fn bind_service_fs_to_out(&mut self) -> Result<(), Error> {
if let Some(handle) = fuchsia_runtime::take_startup_handle(
fuchsia_runtime::HandleType::DirectoryRequest.into(),
) {
self.bind_service_fs(zx::Channel::from(handle)).await?;
} else {
// The component manager running on startup does not get a directory handle. If it was
// to run as a component itself, it'd get one. When we don't have a handle to the out
// directory, create one.
self.bind_service_fs(zx::Channel::create().unwrap().1).await?;
}
Ok(())
}
/// Bind ServiceFs to a new channel and return the Hub directory.
/// Used mainly by integration tests.
pub async fn bind_service_fs_for_hub(&mut self) -> Result<fio::DirectoryProxy, Error> {
// Create a channel that ServiceFs will operate on
let (service_fs_proxy, service_fs_server_end) =
create_proxy::<fio::DirectoryMarker>().unwrap();
self.bind_service_fs(service_fs_server_end.into_channel()).await?;
// Open the Hub from within ServiceFs
let (hub_client_end, hub_server_end) = create_endpoints::<fio::DirectoryMarker>().unwrap();
service_fs_proxy
.open(
fio::OpenFlags::RIGHT_READABLE | fio::OpenFlags::RIGHT_WRITABLE,
fio::MODE_TYPE_DIRECTORY,
"hub",
ServerEnd::new(hub_server_end.into_channel()),
)
.map_err(|err| ModelError::namespace_creation_failed(err))?;
let hub_proxy = hub_client_end.into_proxy().unwrap();
Ok(hub_proxy)
}
fn emit_diagnostics<'a>(
&self,
service_fs: &mut ServiceFs<ServiceObj<'a, ()>>,
) -> Result<(), ModelError> {
let (service_fs_proxy, service_fs_server_end) =
create_proxy::<fio::DirectoryMarker>().unwrap();
service_fs
.serve_connection(service_fs_server_end.into_channel())
.map_err(|err| ModelError::namespace_creation_failed(err))?;
let (node, server_end) = fidl::endpoints::create_proxy::<fio::NodeMarker>().unwrap();
service_fs_proxy
.open(
fio::OpenFlags::RIGHT_READABLE | fio::OpenFlags::RIGHT_WRITABLE,
fio::MODE_TYPE_DIRECTORY,
"diagnostics",
ServerEnd::new(server_end.into_channel()),
)
.map_err(|err| ModelError::namespace_creation_failed(err))?;
self.directory_ready_notifier.register_component_manager_capability("diagnostics", node);
Ok(())
}
#[cfg(test)]
pub(crate) fn emit_diagnostics_for_test<'a>(
&self,
service_fs: &mut ServiceFs<ServiceObj<'a, ()>>,
) -> Result<(), ModelError> {
self.emit_diagnostics(service_fs)
}
pub async fn wait_for_root_stop(&self) {
self.stop_notifier.wait_for_root_stop().await;
}
pub async fn run_root(&mut self) -> Result<(), Error> {
match self.out_dir_contents {
OutDirContents::None => {
info!("Field `out_dir_contents` is set to None.");
Ok(())
}
OutDirContents::Hub => {
info!("Field `out_dir_contents` is set to Hub.");
self.bind_service_fs_to_out().await?;
self.model.start().await;
component::health().set_ok();
self.wait_for_root_stop().await;
// Stop serving the out directory, so that more connections to debug capabilities
// cannot be made.
drop(self._service_fs_task.take());
Ok(())
}
OutDirContents::Svc => {
info!("Field `out_dir_contents` is set to Svc.");
if self.execution_mode.is_debug() {
panic!(
"Debug mode requires `out_dir_contents` to be `hub`. This is because the
component tree can only be started from the `fuchsia.sys2.EventSource`
protocol which is available when `out_dir_contents` is set to `hub`."
)
}
let hub_proxy = self.bind_service_fs_for_hub().await?;
self.model.start().await;
// List the services exposed by the root component.
let expose_dir_proxy = fuchsia_fs::open_directory(
&hub_proxy,
&PathBuf::from("exec/expose"),
fio::OpenFlags::RIGHT_READABLE | fio::OpenFlags::RIGHT_WRITABLE,
)
.expect("Failed to open directory");
// Bind the root component's expose/ to out/svc of this component, so sysmgr can
// find it and route service connections to it.
let mut fs = ServiceFs::<ServiceObj<'_, ()>>::new();
fs.add_remote("svc", expose_dir_proxy);
fs.take_and_serve_directory_handle()?;
component::health().set_ok();
Ok(fs.collect::<()>().await)
}
}
}
}
// Creates a FuchsiaBootResolver if the /boot directory is installed in component_manager's
// namespace, and registers it with the ResolverRegistry. The resolver is returned to so that
// it can be installed as a Builtin capability.
fn register_boot_resolver(
resolvers: &mut ResolverRegistry,
runtime_config: &RuntimeConfig,
) -> Result<Option<Arc<FuchsiaBootResolver>>, Error> {
let path = match &runtime_config.builtin_boot_resolver {
BuiltinBootResolver::Boot => "/boot",
BuiltinBootResolver::None => return Ok(None),
};
let boot_resolver = FuchsiaBootResolver::new(path).context("Failed to create boot resolver")?;
match boot_resolver {
None => {
info!("No {} directory in namespace, fuchsia-boot resolver unavailable", path);
Ok(None)
}
Some(boot_resolver) => {
let resolver = Arc::new(boot_resolver);
resolvers
.register(BOOT_SCHEME.to_string(), Box::new(BuiltinResolver(resolver.clone())));
Ok(Some(resolver))
}
}
}
fn register_realm_builder_resolver(
resolvers: &mut ResolverRegistry,
) -> Result<Arc<RealmBuilderResolver>, Error> {
let realm_builder_resolver =
RealmBuilderResolver::new().context("Failed to create realm builder resolver")?;
let resolver = Arc::new(realm_builder_resolver);
resolvers
.register(REALM_BUILDER_SCHEME.to_string(), Box::new(BuiltinResolver(resolver.clone())));
Ok(resolver)
}
/// Adds the namespace resolvers according to the policy in the RuntimeConfig.
fn register_appmgr_resolver(
resolvers: &mut ResolverRegistry,
runtime_config: &RuntimeConfig,
) -> Result<(), Error> {
match &runtime_config.builtin_pkg_resolver {
BuiltinPkgResolver::AppmgrBridge => {
if let Some(loader) = connect_sys_loader()? {
resolvers.register(
fuchsia_pkg_resolver::SCHEME.to_string(),
Box::new(fuchsia_pkg_resolver::FuchsiaPkgResolver::new(loader)),
);
} else {
warn!("Could not create appmgr bridge resolver because fuchsia.sys.Loader was not found in component manager namespace. Verify configuration correctness.");
}
}
BuiltinPkgResolver::None => {}
}
Ok(())
}
/// Checks if the appmgr loader service is available through our namespace and connects to it if
/// so. If not available, returns Ok(None).
fn connect_sys_loader() -> Result<Option<LoaderProxy>, Error> {
let service_path = PathBuf::from(format!("/svc/{}", LoaderMarker::PROTOCOL_NAME));
if !service_path.exists() {
return Ok(None);
}
let loader = client::connect_to_protocol::<LoaderMarker>()
.context("error connecting to system loader")?;
return Ok(Some(loader));
}