blob: 79dd98dfaf04751e654dba8c7b9fde31a97a49cb [file] [log] [blame]
// Copyright 2018 The Fuchsia Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "src/virtualization/tests/enclosed_guest.h"
#include <fcntl.h>
#include <fuchsia/kernel/cpp/fidl.h>
#include <fuchsia/netstack/cpp/fidl.h>
#include <fuchsia/sysinfo/cpp/fidl.h>
#include <fuchsia/ui/scenic/cpp/fidl.h>
#include <lib/fdio/directory.h>
#include <lib/fitx/result.h>
#include <lib/fpromise/single_threaded_executor.h>
#include <lib/syslog/cpp/macros.h>
#include <lib/zx/clock.h>
#include <string.h>
#include <sys/mount.h>
#include <unistd.h>
#include <zircon/errors.h>
#include <zircon/status.h>
#include <algorithm>
#include <optional>
#include <string>
#include "src/lib/fxl/strings/string_printf.h"
#include "src/virtualization/lib/grpc/grpc_vsock_stub.h"
#include "src/virtualization/tests/logger.h"
#include "src/virtualization/tests/periodic_logger.h"
namespace {
constexpr char kGuestManagerUrl[] =
constexpr char kRealm[] = "realmguestintegrationtest";
// TODO( Use consistent naming for the test utils here.
constexpr char kFuchsiaTestUtilsUrl[] = "fuchsia-pkg://";
constexpr char kDebianTestUtilDir[] = "/test_utils";
constexpr zx::duration kLoopConditionStep = zx::msec(10);
constexpr zx::duration kRetryStep = zx::msec(200);
constexpr uint32_t kTerminaStartupListenerPort = 7777;
constexpr uint32_t kTerminaMaitredPort = 8888;
// Linux kernel command line params for additional serial debug logs during boot.
constexpr std::string_view kLinuxKernelSerialDebugCmdline[] = {
// Add early UART output from kernel.
#if defined(__x86_64__)
// Tell Linux to keep the console in polling mode instead of trying to switch
// to a real UART driver. The latter assumes a working transmit interrupt,
// but we don't implement one yet.
// TODO( Ideally, Machina's UART would support IRQs allowing
// us to just use the full UART driver.
// Tell Linux to not try and use the UART as a console, but use the virtual
// console tty0 instead.
// TODO( If Machina's UART had full IRQ support, using
// ttyS0 as a console would be fine.
bool RunLoopUntil(async::Loop* loop, fit::function<bool()> condition, zx::time deadline) {
while (zx::clock::get_monotonic() < deadline) {
// Check our condition.
if (condition()) {
return true;
// Wait until next polling interval.
return condition();
std::string JoinArgVector(const std::vector<std::string>& argv) {
std::string result;
for (const auto& arg : argv) {
result += arg;
result += " ";
return result;
} // namespace
// Execute |command| on the guest serial and wait for the |result|.
zx_status_t EnclosedGuest::Execute(const std::vector<std::string>& argv,
const std::unordered_map<std::string, std::string>& env,
zx::time deadline, std::string* result, int32_t* return_code) {
if (!env.empty()) {
FX_LOGS(ERROR) << "Only TerminaEnclosedGuest::Execute accepts environment variables.";
auto command = JoinArgVector(argv);
return console_->ExecuteBlocking(command, ShellPrompt(), deadline, result);
zx_status_t EnclosedGuest::Start(zx::time deadline) {
PeriodicLogger logger;
logger.Start("Creating guest environment", zx::sec(5));
auto services = sys::testing::EnvironmentServices::Create(real_env_, loop_.dispatcher());
fuchsia::sys::LaunchInfo launch_info;
launch_info.url = kGuestManagerUrl;
zx_status_t status = services->AddServiceWithLaunchInfo(std::move(launch_info),
if (status != ZX_OK) {
FX_LOGS(ERROR) << "Failure launching virtualization manager: " << zx_status_get_string(status);
return status;
status = services->AddService(fake_netstack_.GetHandler(), fuchsia::netstack::Netstack::Name_);
if (status != ZX_OK) {
FX_LOGS(ERROR) << "Failure launching mock netstack: " << zx_status_get_string(status);
return status;
status = services->AddService(fake_scenic_.GetHandler(), fuchsia::ui::scenic::Scenic::Name_);
if (status != ZX_OK) {
FX_LOGS(ERROR) << "Failure launching fake scenic service: " << zx_status_get_string(status);
return status;
status = services->AllowParentService(fuchsia::sysinfo::SysInfo::Name_);
if (status != ZX_OK) {
FX_LOGS(ERROR) << "Failure adding sysinfo service: " << zx_status_get_string(status);
return status;
status = services->AllowParentService(fuchsia::kernel::HypervisorResource::Name_);
if (status != ZX_OK) {
FX_LOGS(ERROR) << "Failure adding hypervisor resource service: "
<< zx_status_get_string(status);
return status;
status = services->AllowParentService(fuchsia::kernel::VmexResource::Name_);
if (status != ZX_OK) {
FX_LOGS(ERROR) << "Failure adding vmex resource service: " << zx_status_get_string(status);
return status;
logger.Start("Creating guest sandbox", zx::sec(5));
enclosing_environment_ =
sys::testing::EnclosingEnvironment::Create(kRealm, real_env_, std::move(services));
bool environment_running = RunLoopUntil(
GetLoop(), [this] { return enclosing_environment_->is_running(); }, deadline);
if (!environment_running) {
FX_LOGS(ERROR) << "Timed out waiting for guest sandbox environment to become ready.";
std::string url;
fuchsia::virtualization::GuestConfig cfg;
status = LaunchInfo(&url, &cfg);
if (status != ZX_OK) {
FX_LOGS(ERROR) << "Failure launching guest image: " << zx_status_get_string(status);
return status;
manager_->Create("EnclosedGuest", realm_.NewRequest());
status = SetupVsockServices(deadline);
if (status != ZX_OK) {
return status;
// Launch the guest.
logger.Start("Launching guest", zx::sec(5));
bool launch_complete = false;
realm_->LaunchInstance(url, cpp17::nullopt, std::move(cfg), guest_.NewRequest(),
[this, &launch_complete](uint32_t cid) {
guest_cid_ = cid;
launch_complete = true;
GetLoop(), [&launch_complete]() { return launch_complete; }, deadline);
// Connect to guest serial, and log it to the logger.
logger.Start("Connecting to guest serial", zx::sec(10));
zx::socket serial_socket;
guest_->GetSerial([&serial_socket](zx::socket socket) { serial_socket = std::move(socket); });
bool success = RunLoopUntil(
GetLoop(), [&serial_socket] { return serial_socket.is_valid(); }, deadline);
if (!success) {
FX_LOGS(ERROR) << "Timed out waiting to connect to guest's serial.";
serial_logger_.emplace(&Logger::Get(), std::move(serial_socket));
// Connect to guest console.
logger.Start("Connecting to guest console", zx::sec(10));
std::optional<fuchsia::virtualization::Guest_GetConsole_Result> get_console_result;
[&get_console_result](fuchsia::virtualization::Guest_GetConsole_Result result) {
get_console_result = std::move(result);
success = RunLoopUntil(
GetLoop(), [&get_console_result] { return get_console_result.has_value(); }, deadline);
if (!success) {
FX_LOGS(ERROR) << "Timed out waiting to connect to guest's console";
if (get_console_result->is_err()) {
FX_PLOGS(ERROR, get_console_result->err()) << "Failed to open guest console";
return get_console_result->err();
console_ = std::make_unique<GuestConsole>(
// Wait for output to appear on the console.
logger.Start("Waiting for output to appear on guest console", zx::sec(10));
status = console_->Start(deadline);
if (status != ZX_OK) {
FX_LOGS(ERROR) << "Error waiting for output on guest console: " << zx_status_get_string(status);
return status;
// Poll the system for all services to come up.
logger.Start("Waiting for system to become ready", zx::sec(10));
status = WaitForSystemReady(deadline);
if (status != ZX_OK) {
FX_LOGS(ERROR) << "Failure while waiting for guest system to become ready: "
<< zx_status_get_string(status);
return status;
ready_ = true;
return ZX_OK;
zx_status_t EnclosedGuest::Stop(zx::time deadline) {
zx_status_t status = ShutdownAndWait(deadline);
if (status != ZX_OK) {
return status;
return ZX_OK;
zx_status_t EnclosedGuest::RunUtil(const std::string& util, const std::vector<std::string>& argv,
zx::time deadline, std::string* result) {
return Execute(GetTestUtilCommand(util, argv), {}, deadline, result);
zx_status_t ZirconEnclosedGuest::LaunchInfo(std::string* url,
fuchsia::virtualization::GuestConfig* cfg) {
*url = kZirconGuestUrl;
return ZX_OK;
namespace {
fitx::result<std::string> EnsureValidZirconPsOutput(std::string_view ps_output) {
if (ps_output.find("appmgr") == std::string::npos) {
return fitx::error("'appmgr' cannot be found in 'ps' output");
if (ps_output.find("virtual-console") == std::string::npos) {
return fitx::error("'virtual-console' cannot be found in 'ps' output");
return fitx::ok();
} // namespace
zx_status_t ZirconEnclosedGuest::WaitForSystemReady(zx::time deadline) {
std::string ps;
// Keep running `ps` until we get a reasonable result or run out of time.
do {
// Execute `ps`.
constexpr zx::duration kPsWaitTime = zx::sec(5);
zx_status_t status =
Execute({"ps"}, {}, std::min(zx::deadline_after(kPsWaitTime), deadline), &ps);
if (status == ZX_OK && EnsureValidZirconPsOutput(ps).is_ok()) {
return ZX_OK;
// Keep trying until we run out of time.
zx::nanosleep(std::min(zx::deadline_after(kRetryStep), deadline));
} while (zx::clock::get_monotonic() < deadline);
FX_LOGS(ERROR) << "Failed to wait for appmgr and virtual-console: "
<< EnsureValidZirconPsOutput(ps).error_value();
zx_status_t ZirconEnclosedGuest::ShutdownAndWait(zx::time deadline) {
zx_status_t status = GetConsole()->SendBlocking("dm shutdown\n", deadline);
if (status != ZX_OK) {
return status;
return GetConsole()->WaitForSocketClosed(deadline);
std::vector<std::string> ZirconEnclosedGuest::GetTestUtilCommand(
const std::string& util, const std::vector<std::string>& argv) {
std::string fuchsia_url = fxl::StringPrintf("%s#meta/%s.cmx", kFuchsiaTestUtilsUrl, util.c_str());
std::vector<std::string> exec_argv = {"/bin/run", fuchsia_url};
exec_argv.insert(exec_argv.end(), argv.begin(), argv.end());
return exec_argv;
zx_status_t DebianEnclosedGuest::LaunchInfo(std::string* url,
fuchsia::virtualization::GuestConfig* cfg) {
*url = kDebianGuestUrl;
// Enable kernel debugging serial output.
for (std::string_view cmd : kLinuxKernelSerialDebugCmdline) {
return ZX_OK;
zx_status_t DebianEnclosedGuest::WaitForSystemReady(zx::time deadline) {
// Keep running a simple command until we get a valid response.
do {
// Execute `echo "guest ready"`.
constexpr zx::duration kEchoWaitTime = zx::sec(1);
std::string response;
zx_status_t status = Execute({"echo", "guest ready"}, {},
std::min(zx::deadline_after(kEchoWaitTime), deadline), &response);
if (status == ZX_OK && response.find("guest ready") != std::string::npos) {
return ZX_OK;
// Keep trying until we run out of time.
zx::nanosleep(std::min(zx::deadline_after(kRetryStep), deadline));
} while (zx::clock::get_monotonic() < deadline);
FX_LOGS(ERROR) << "Failed to wait for shell";
zx_status_t DebianEnclosedGuest::ShutdownAndWait(zx::time deadline) {
PeriodicLogger logger("Attempting to shut down guest", zx::sec(10));
zx_status_t status = GetConsole()->SendBlocking("shutdown now\n", deadline);
if (status != ZX_OK) {
return status;
return GetConsole()->WaitForSocketClosed(deadline);
std::vector<std::string> DebianEnclosedGuest::GetTestUtilCommand(
const std::string& util, const std::vector<std::string>& argv) {
std::string bin_path = fxl::StringPrintf("%s/%s", kDebianTestUtilDir, util.c_str());
std::vector<std::string> exec_argv = {bin_path};
exec_argv.insert(exec_argv.end(), argv.begin(), argv.end());
return exec_argv;
zx_status_t TerminaEnclosedGuest::LaunchInfo(std::string* url,
fuchsia::virtualization::GuestConfig* cfg) {
*url = kTerminaGuestUrl;
// Add the block device that contains the test binaries.
int fd = open("/pkg/data/linux_tests.img", O_RDONLY);
if (fd < 0) {
zx::channel channel;
zx_status_t status = fdio_get_service_handle(fd, channel.reset_and_get_address());
if (status != ZX_OK) {
return status;
// Add non-prebuilt test extras.
fd = open("/pkg/data/extras.img", O_RDONLY);
if (fd < 0) {
status = fdio_get_service_handle(fd, channel.reset_and_get_address());
if (status != ZX_OK) {
return status;
// Enable kernel debugging serial output.
for (std::string_view cmd : kLinuxKernelSerialDebugCmdline) {
return ZX_OK;
zx_status_t TerminaEnclosedGuest::SetupVsockServices(zx::time deadline) {
fuchsia::virtualization::HostVsockEndpointPtr grpc_endpoint;
GrpcVsockServerBuilder builder(std::move(grpc_endpoint));
builder.Build().and_then([this](std::unique_ptr<GrpcVsockServer>& result) mutable {
server_ = std::move(result);
return fpromise::ok();
if (!RunLoopUntil(
GetLoop(), [this] { return server_ != nullptr; }, deadline)) {
return ZX_OK;
grpc::Status TerminaEnclosedGuest::VmReady(grpc::ServerContext* context,
const vm_tools::EmptyMessage* request,
vm_tools::EmptyMessage* response) {
auto p = NewGrpcVsockStub<vm_tools::Maitred>(vsock_, GetGuestCid(), kTerminaMaitredPort);
auto result = fpromise::run_single_threaded(std::move(p));
if (result.is_ok()) {
maitred_ = std::move(result.value());
} else {
FX_PLOGS(ERROR, result.error()) << "Failed to connect to maitred";
return grpc::Status::OK;
// Use Maitred to mount the given block device at the given location.
// The destination directory will be created if required.
zx_status_t MountDeviceInGuest(vm_tools::Maitred::Stub& maitred, std::string_view block_device,
std::string_view mount_point, std::string_view fs_type,
uint64_t mount_flags) {
grpc::ClientContext context;
vm_tools::MountRequest request;
vm_tools::MountResponse response;
auto grpc_status = maitred.Mount(&context, request, &response);
if (!grpc_status.ok()) {
FX_LOGS(ERROR) << "Request to mount block device '" << block_device
<< "' failed: " << grpc_status.error_message();
return ZX_ERR_IO;
if (response.error() != 0) {
FX_LOGS(ERROR) << "Mounting block device '" << block_device << "' failed: " << response.error();
return ZX_ERR_IO;
return ZX_OK;
zx_status_t TerminaEnclosedGuest::WaitForSystemReady(zx::time deadline) {
// The VM will connect to the StartupListener port when it's ready and we'll
// create the maitred stub in |VmReady|.
PeriodicLogger logger("Wait for maitred", zx::sec(1));
if (!RunLoopUntil(
GetLoop(), [this] { return maitred_ != nullptr; }, deadline)) {
FX_CHECK(maitred_) << "No maitred connection";
// Connect to vshd.
fuchsia::virtualization::HostVsockEndpointPtr endpoint;
command_runner_ =
std::make_unique<vsh::BlockingCommandRunner>(std::move(endpoint), GetGuestCid());
// Create mountpoints for test utils and extras. The root filesystem is read only so we
// put these under /tmp.
zx_status_t status;
status = MountDeviceInGuest(*maitred_, "/dev/vdc", "/tmp/test_utils", "ext2", MS_RDONLY);
if (status != ZX_OK) {
return status;
status = MountDeviceInGuest(*maitred_, "/dev/vdd", "/tmp/extras", "romfs", MS_RDONLY);
if (status != ZX_OK) {
return status;
return ZX_OK;
zx_status_t TerminaEnclosedGuest::ShutdownAndWait(zx::time deadline) {
if (server_) {
return ZX_OK;
zx_status_t TerminaEnclosedGuest::Execute(const std::vector<std::string>& argv,
const std::unordered_map<std::string, std::string>& env,
zx::time deadline, std::string* result,
int32_t* return_code) {
auto command_result = command_runner_->Execute({argv, env});
if (command_result.is_error()) {
return command_result.error();
if (result) {
*result = std::move(command_result.value().out);
if (!command_result.value().err.empty()) {
*result += "\n";
*result += command_result.value().err;
if (return_code) {
*return_code = command_result.value().return_code;
return ZX_OK;
std::vector<std::string> TerminaEnclosedGuest::GetTestUtilCommand(
const std::string& util, const std::vector<std::string>& argv) {
std::vector<std::string> final_argv;
final_argv.emplace_back("/tmp/test_utils/" + util);
final_argv.insert(final_argv.end(), argv.begin(), argv.end());
return final_argv;