Google Git
Sign in
fuchsia / fuchsia / refs/heads/sandbox/mseaborn/test-branch / . / src / starnix / kernel / execution / container.rs
blob: 831bd4d6c58d40d9e397181dedf987aabb99eee1 [file] [log] [blame] [edit]
// Copyright 2022 The Fuchsia Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
use anyhow::{anyhow, bail, Error};
use bstr::BString;
use fidl::{
endpoints::{ControlHandle, RequestStream},
AsyncChannel,
};
use fidl_fuchsia_component as fcomponent;
use fidl_fuchsia_component_runner as frunner;
use fidl_fuchsia_element as felement;
use fidl_fuchsia_io as fio;
use fidl_fuchsia_starnix_container as fstarcontainer;
use fuchsia_async as fasync;
use fuchsia_async::DurationExt;
use fuchsia_component::server::ServiceFs;
use fuchsia_inspect as inspect;
use fuchsia_runtime as fruntime;
use fuchsia_zircon as zx;
use fuchsia_zircon::Task as _;
use futures::{channel::oneshot, FutureExt, StreamExt, TryStreamExt};
use runner::{get_program_string, get_program_strvec};
use starnix_kernel_config::Config;
use std::{collections::BTreeMap, ffi::CString, sync::Arc};
use crate::{
auth::Credentials,
device::{init_common_devices, parse_features, run_container_features},
execution::*,
fs::{layeredfs::LayeredFs, tmpfs::TmpFs, *},
logging::*,
task::*,
time::utc::update_utc_clock,
types::*,
};
/// A temporary wrapper struct that contains both a `Config` for the container, as well as optional
/// handles for the container's component controller and `/pkg` directory.
///
/// When using structured_config, the `component_controller` handle will not be set. When all
/// containers are run as components, by starnix_runner, the `component_controller` will always
/// exist.
struct ConfigWrapper {
config: Config,
/// The `/pkg` directory of the container.
pkg_dir: Option<zx::Channel>,
/// The outgoing directory of the container, used to serve protocols on behalf of the container.
/// For example, the starnix_kernel serves a component runner in the containers' outgoing
/// directory.
outgoing_dir: Option<zx::Channel>,
/// The svc directory of the container, used to access protocols from the container.
svc_dir: Option<zx::Channel>,
/// The data directory of the container, used to persist data.
data_dir: Option<zx::Channel>,
}
impl std::ops::Deref for ConfigWrapper {
type Target = Config;
fn deref(&self) -> &Self::Target {
&self.config
}
}
fn get_ns_entry(
ns: &mut Option<Vec<frunner::ComponentNamespaceEntry>>,
entry_name: &str,
) -> Option<zx::Channel> {
ns.as_mut().and_then(|ns| {
ns.iter_mut()
.find(|entry| entry.path == Some(entry_name.to_string()))
.and_then(|entry| entry.directory.take())
.map(|dir| dir.into_channel())
})
}
fn get_config_from_component_start_info(
mut start_info: frunner::ComponentStartInfo,
) -> ConfigWrapper {
let get_strvec = |key| {
get_program_strvec(&start_info, key)
.unwrap_or_default()
.map(|value| value.to_owned())
.unwrap_or_default()
};
let get_string = |key| get_program_string(&start_info, key).unwrap_or_default().to_owned();
let features = get_strvec("features");
let init = get_strvec("init");
let kernel_cmdline = get_string("kernel_cmdline");
let mounts = get_strvec("mounts");
let rlimits = get_strvec("rlimits");
let name = get_string("name");
let startup_file_path = get_string("startup_file_path");
let mut ns = start_info.ns.take();
let pkg_dir = get_ns_entry(&mut ns, "/pkg");
let svc_dir = get_ns_entry(&mut ns, "/svc");
let data_dir = get_ns_entry(&mut ns, "/data");
let outgoing_dir = start_info.outgoing_dir.take().map(|dir| dir.into_channel());
ConfigWrapper {
config: Config { features, init, kernel_cmdline, mounts, rlimits, name, startup_file_path },
pkg_dir,
outgoing_dir,
svc_dir,
data_dir,
}
}
// Creates a CString from a String. Calling this with an invalid CString will panic.
fn to_cstr(str: &str) -> CString {
CString::new(str.to_string()).unwrap()
}
#[must_use = "The container must run serve on this config"]
pub struct ContainerServiceConfig {
config: ConfigWrapper,
request_stream: frunner::ComponentControllerRequestStream,
receiver: oneshot::Receiver<Result<ExitStatus, Error>>,
}
pub struct Container {
/// The `Kernel` object that is associated with the container.
pub kernel: Arc<Kernel>,
/// Inspect node holding information about the state of the container.
_node: inspect::Node,
}
impl Container {
async fn serve_outgoing_directory(
&self,
outgoing_dir: Option<zx::Channel>,
) -> Result<(), Error> {
if let Some(outgoing_dir) = outgoing_dir {
// Add `ComponentRunner` to the exposed services of the container, and then serve the
// outgoing directory.
let mut fs = ServiceFs::new_local();
fs.dir("svc")
.add_fidl_service(ExposedServices::ComponentRunner)
.add_fidl_service(ExposedServices::ContainerController)
.add_fidl_service(ExposedServices::GrahicalPresenter);
// Expose the root of the container's filesystem.
let (fs_root, fs_root_server_end) = fidl::endpoints::create_proxy()?;
fs.add_remote("fs_root", fs_root);
expose_root(self, fs_root_server_end)?;
fs.serve_connection(outgoing_dir.into()).map_err(|_| errno!(EINVAL))?;
fs.for_each_concurrent(None, |request_stream| async {
match request_stream {
ExposedServices::ComponentRunner(request_stream) => {
match serve_component_runner(request_stream, self).await {
Ok(_) => {}
Err(e) => {
log_error!("Error serving component runner: {:?}", e);
}
}
}
ExposedServices::ContainerController(request_stream) => {
serve_container_controller(request_stream, self)
.await
.expect("failed to start container.")
}
ExposedServices::GrahicalPresenter(request_stream) => {
serve_graphical_presenter(request_stream, self)
.await
.expect("failed to start GrahicalPresenter.")
}
}
})
.await
}
Ok(())
}
pub async fn serve(&self, service_config: ContainerServiceConfig) -> Result<(), Error> {
let (r, _) = futures::join!(
self.serve_outgoing_directory(service_config.config.outgoing_dir),
server_component_controller(service_config.request_stream, service_config.receiver)
);
r
}
}
/// The services that are exposed in the container component's outgoing directory.
enum ExposedServices {
ComponentRunner(frunner::ComponentRunnerRequestStream),
ContainerController(fstarcontainer::ControllerRequestStream),
GrahicalPresenter(felement::GraphicalPresenterRequestStream),
}
type TaskResult = Result<ExitStatus, Error>;
async fn server_component_controller(
request_stream: frunner::ComponentControllerRequestStream,
task_complete: oneshot::Receiver<TaskResult>,
) {
let request_stream_control = request_stream.control_handle();
enum Event<T, U> {
Controller(T),
Completion(U),
}
let mut stream = futures::stream::select(
request_stream.map(Event::Controller),
task_complete.into_stream().map(Event::Completion),
);
if let Some(event) = stream.next().await {
match event {
Event::Controller(_) => {
// If we get a `Stop` request, we would ideally like to ask userspace to shut
// down gracefully.
}
Event::Completion(result) => {
match result {
Ok(Ok(ExitStatus::Exit(0))) => {
request_stream_control.shutdown_with_epitaph(zx::Status::OK)
}
_ => request_stream_control.shutdown_with_epitaph(zx::Status::from_raw(
fcomponent::Error::InstanceDied.into_primitive() as i32,
)),
};
}
}
}
// Kill the starnix_kernel job, as the kernel is expected to reboot when init exits.
fruntime::job_default().kill().expect("Failed to kill job");
}
pub async fn create_component_from_stream(
mut request_stream: frunner::ComponentRunnerRequestStream,
) -> Result<(Container, ContainerServiceConfig), Error> {
if let Some(event) = request_stream.try_next().await? {
match event {
frunner::ComponentRunnerRequest::Start { start_info, controller, .. } => {
let request_stream = controller.into_stream()?;
let mut config = get_config_from_component_start_info(start_info);
let (sender, receiver) = oneshot::channel::<TaskResult>();
let container =
create_container(&mut config, sender).await.with_source_context(|| {
format!("creating container \"{}\"", &config.config.name)
})?;
let service_config = ContainerServiceConfig { config, request_stream, receiver };
let kernel = &container.kernel;
let vvar = kernel.vdso.vvar_writeable.clone();
kernel.kthreads.spawner.spawn(move || loop {
// TODO(fxb/129367): Replace polling for the clock transformation with having
// some sort of a wait for a clock transform update notification.
std::thread::sleep(std::time::Duration::from_millis(500));
update_utc_clock(&vvar);
});
return Ok((container, service_config));
}
}
}
bail!("did not receive Start request");
}
async fn create_container(
config: &mut ConfigWrapper,
task_complete: oneshot::Sender<TaskResult>,
) -> Result<Container, Error> {
trace_duration!(trace_category_starnix!(), trace_name_create_container!());
const DEFAULT_INIT: &str = "/container/init";
// Install container svc into the kernel namespace
let svc_dir = if let Some(svc_dir) = config.svc_dir.take() {
Some(fio::DirectoryProxy::new(AsyncChannel::from_channel(svc_dir)?))
} else {
None
};
let data_dir = if let Some(data_dir) = config.data_dir.take() {
Some(fio::DirectorySynchronousProxy::new(data_dir))
} else {
None
};
let pkg_dir_proxy = fio::DirectorySynchronousProxy::new(config.pkg_dir.take().unwrap());
let features = parse_features(&config.features)?;
let mut kernel_cmdline = BString::from(config.kernel_cmdline.as_bytes());
if features.android_serialno {
match crate::device::get_serial_number().await {
Ok(serial) => {
kernel_cmdline.extend(b" androidboot.serialno=");
kernel_cmdline.extend(&*serial);
}
Err(err) => log_warn!("could not get serial number: {err:?}"),
}
}
let node = inspect::component::inspector().root().create_child("container");
let kernel =
Kernel::new(kernel_cmdline, features, svc_dir, data_dir, node.create_child("kernel"))
.with_source_context(|| format!("creating Kernel: {}", &config.name))?;
let mut init_task = create_init_task(&kernel, config)
.with_source_context(|| format!("creating init task: {:?}", &config.init))?;
release_on_error!(init_task, (), {
let fs_context = create_fs_context(&init_task, config, &pkg_dir_proxy)
.source_context("creating FsContext")?;
init_task.set_fs(fs_context.clone());
kernel.kthreads.init(&kernel, fs_context).source_context("initializing kthreads")?;
let system_task = kernel.kthreads.system_task();
// Register common devices and add them in sysfs and devtmpfs.
init_common_devices(&kernel);
mount_filesystems(system_task, config, &pkg_dir_proxy)
.source_context("mounting filesystems")?;
// Run all common features that were specified in the .cml.
run_container_features(&kernel)?;
// If there is an init binary path, run it, optionally waiting for the
// startup_file_path to be created. The task struct is still used
// to initialize the system up until this point, regardless of whether
// or not there is an actual init to be run.
let argv = if config.init.is_empty() {
vec![DEFAULT_INIT.to_string()]
} else {
config.init.clone()
}
.iter()
.map(|s| to_cstr(s))
.collect::<Vec<_>>();
let executable = init_task
.open_file(argv[0].as_bytes(), OpenFlags::RDONLY)
.with_source_context(|| format!("opening init: {:?}", &argv[0]))?;
init_task
.exec(executable, argv[0].clone(), argv.clone(), vec![])
.with_source_context(|| format!("executing init: {:?}", &argv))?;
Ok(())
});
execute_task(init_task, move |result| {
log_info!("Finished running init process: {:?}", result);
let _ = task_complete.send(result);
});
if !config.startup_file_path.is_empty() {
wait_for_init_file(&config.startup_file_path, kernel.kthreads.system_task()).await?;
};
Ok(Container { kernel, _node: node })
}
fn create_fs_context(
current_task: &CurrentTask,
config: &ConfigWrapper,
pkg_dir_proxy: &fio::DirectorySynchronousProxy,
) -> Result<Arc<FsContext>, Error> {
// The mounts are applied in the order listed. Mounting will fail if the designated mount
// point doesn't exist in a previous mount. The root must be first so other mounts can be
// applied on top of it.
let mut mounts_iter = config.mounts.iter();
let (root_point, root_fs) = create_filesystem_from_spec(
current_task.kernel(),
pkg_dir_proxy,
mounts_iter.next().ok_or_else(|| anyhow!("Mounts list is empty"))?,
)?;
if root_point != b"/" {
anyhow::bail!("First mount in mounts list is not the root");
}
// Create a layered fs to handle /container and /container/component
// /container will mount the container pkg
// /container/component will be a tmpfs where component using the starnix kernel will have their
// package mounted.
let kernel = current_task.kernel();
let rights = fio::OpenFlags::RIGHT_READABLE | fio::OpenFlags::RIGHT_EXECUTABLE;
let container_fs = LayeredFs::new_fs(
kernel,
create_remotefs_filesystem(
kernel,
pkg_dir_proxy,
rights,
FileSystemOptions { source: b"data".to_vec(), ..Default::default() },
)?,
BTreeMap::from([(b"component".to_vec(), TmpFs::new_fs(kernel))]),
);
let mut mappings =
vec![(b"container".to_vec(), container_fs), (b"data".to_vec(), TmpFs::new_fs(kernel))];
if current_task.kernel().features.custom_artifacts {
mappings.push((b"custom_artifacts".to_vec(), TmpFs::new_fs(kernel)));
}
if current_task.kernel().features.test_data {
mappings.push((b"test_data".to_vec(), TmpFs::new_fs(kernel)));
}
let root_fs = LayeredFs::new_fs(kernel, root_fs, mappings.into_iter().collect());
Ok(FsContext::new(root_fs))
}
pub fn set_rlimits(current_task: &CurrentTask, rlimits: &[String]) -> Result<(), Error> {
let set_rlimit = |resource, value| {
current_task
.thread_group
.limits
.lock()
.set(resource, rlimit { rlim_cur: value, rlim_max: value });
};
for rlimit in rlimits.iter() {
let (key, value) =
rlimit.split_once('=').ok_or_else(|| anyhow!("Invalid rlimit: {rlimit}"))?;
let value = value.parse::<u64>()?;
match key {
"RLIMIT_NOFILE" => set_rlimit(Resource::NOFILE, value),
_ => {
bail!("Unknown rlimit: {key}");
}
}
}
Ok(())
}
fn create_init_task(kernel: &Arc<Kernel>, config: &ConfigWrapper) -> Result<CurrentTask, Error> {
let credentials = Credentials::root();
let initial_name = if config.init.is_empty() {
CString::default()
} else {
CString::new(config.init[0].clone())?
};
let task = Task::create_process_without_parent(kernel, initial_name, None)?;
release_on_error!(task, (), {
task.set_creds(credentials);
set_rlimits(&task, &config.rlimits)?;
Ok(())
});
Ok(task)
}
fn mount_filesystems(
system_task: &CurrentTask,
config: &ConfigWrapper,
pkg_dir_proxy: &fio::DirectorySynchronousProxy,
) -> Result<(), Error> {
let mut mounts_iter = config.mounts.iter();
// Skip the first mount, that was used to create the root filesystem.
let _ = mounts_iter.next();
for mount_spec in mounts_iter {
let (mount_point, child_fs) =
create_filesystem_from_spec(system_task.kernel(), pkg_dir_proxy, mount_spec)
.with_source_context(|| {
format!("creating filesystem from spec: {}", &mount_spec)
})?;
let mount_point =
system_task.lookup_path_from_root(mount_point).with_source_context(|| {
format!("lookup path from root: {}", String::from_utf8_lossy(mount_point))
})?;
mount_point.mount(WhatToMount::Fs(child_fs), MountFlags::empty())?;
}
Ok(())
}
async fn wait_for_init_file(
startup_file_path: &str,
current_task: &CurrentTask,
) -> Result<(), Error> {
// TODO(fxb/96299): Use inotify machinery to wait for the file.
loop {
fasync::Timer::new(fasync::Duration::from_millis(100).after_now()).await;
let root = current_task.fs().root();
let mut context = LookupContext::default();
match current_task.lookup_path(&mut context, root, startup_file_path.as_bytes()) {
Ok(_) => break,
Err(error) if error == ENOENT => continue,
Err(error) => return Err(anyhow::Error::from(error)),
}
}
Ok(())
}
#[cfg(test)]
mod test {
use super::wait_for_init_file;
use crate::{fs::FdNumber, testing::create_kernel_and_task, types::*};
use fuchsia_async as fasync;
use futures::{SinkExt, StreamExt};
#[fuchsia::test]
async fn test_init_file_already_exists() {
let (_kernel, current_task) = create_kernel_and_task();
let (mut sender, mut receiver) = futures::channel::mpsc::unbounded();
let path = "/path";
current_task
.open_file_at(
FdNumber::AT_FDCWD,
path.as_bytes(),
OpenFlags::CREAT,
FileMode::default(),
)
.expect("Failed to create file");
fasync::Task::local(async move {
wait_for_init_file(path, &current_task).await.expect("failed to wait for file");
sender.send(()).await.expect("failed to send message");
})
.detach();
// Wait for the file creation to have been detected.
assert!(receiver.next().await.is_some());
}
#[fuchsia::test]
async fn test_init_file_wait_required() {
let (_kernel, current_task) = create_kernel_and_task();
let (mut sender, mut receiver) = futures::channel::mpsc::unbounded();
let init_task = current_task.clone_task_for_test(CLONE_FS as u64, Some(SIGCHLD));
let path = "/path";
fasync::Task::local(async move {
sender.send(()).await.expect("failed to send message");
wait_for_init_file(path, &init_task).await.expect("failed to wait for file");
sender.send(()).await.expect("failed to send message");
})
.detach();
// Wait for message that file check has started.
assert!(receiver.next().await.is_some());
// Create the file that is being waited on.
current_task
.open_file_at(
FdNumber::AT_FDCWD,
path.as_bytes(),
OpenFlags::CREAT,
FileMode::default(),
)
.expect("Failed to create file");
// Wait for the file creation to be detected.
assert!(receiver.next().await.is_some());
}
}