| package hcsshim |
| |
| import ( |
| "encoding/json" |
| "errors" |
| "fmt" |
| "runtime" |
| "syscall" |
| "time" |
| |
| "github.com/Sirupsen/logrus" |
| ) |
| |
| var ( |
| defaultTimeout = time.Minute * 4 |
| ) |
| |
| const pendingUpdatesQuery = `{ "PropertyTypes" : ["PendingUpdates"]}` |
| |
| // ContainerError is an error encountered in HCS |
| type ContainerError struct { |
| Container *container |
| Operation string |
| ExtraInfo string |
| Err error |
| } |
| |
| type container struct { |
| handle hcsSystem |
| id string |
| callbackNumber uintptr |
| } |
| |
| type containerProperties struct { |
| ID string `json:"Id"` |
| Name string |
| SystemType string |
| Owner string |
| SiloGUID string `json:"SiloGuid,omitempty"` |
| IsDummy bool `json:",omitempty"` |
| RuntimeID string `json:"RuntimeId,omitempty"` |
| Stopped bool `json:",omitempty"` |
| ExitType string `json:",omitempty"` |
| AreUpdatesPending bool `json:",omitempty"` |
| } |
| |
| // CreateContainer creates a new container with the given configuration but does not start it. |
| func CreateContainer(id string, c *ContainerConfig) (Container, error) { |
| operation := "CreateContainer" |
| title := "HCSShim::" + operation |
| |
| container := &container{ |
| id: id, |
| } |
| |
| configurationb, err := json.Marshal(c) |
| if err != nil { |
| return nil, err |
| } |
| |
| configuration := string(configurationb) |
| logrus.Debugf(title+" id=%s config=%s", id, configuration) |
| |
| var ( |
| resultp *uint16 |
| createError error |
| ) |
| if hcsCallbacksSupported { |
| var identity syscall.Handle |
| createError = hcsCreateComputeSystem(id, configuration, identity, &container.handle, &resultp) |
| |
| if createError == nil || createError == ErrVmcomputeOperationPending { |
| if err := container.registerCallback(); err != nil { |
| return nil, makeContainerError(container, operation, "", err) |
| } |
| } |
| } else { |
| createError = hcsCreateComputeSystemTP5(id, configuration, &container.handle, &resultp) |
| } |
| |
| err = processAsyncHcsResult(createError, resultp, container.callbackNumber, hcsNotificationSystemCreateCompleted, &defaultTimeout) |
| if err != nil { |
| return nil, makeContainerError(container, operation, configuration, err) |
| } |
| |
| logrus.Debugf(title+" succeeded id=%s handle=%d", id, container.handle) |
| runtime.SetFinalizer(container, closeContainer) |
| return container, nil |
| } |
| |
| // OpenContainer opens an existing container by ID. |
| func OpenContainer(id string) (Container, error) { |
| operation := "OpenContainer" |
| title := "HCSShim::" + operation |
| logrus.Debugf(title+" id=%s", id) |
| |
| container := &container{ |
| id: id, |
| } |
| |
| var ( |
| handle hcsSystem |
| resultp *uint16 |
| ) |
| err := hcsOpenComputeSystem(id, &handle, &resultp) |
| err = processHcsResult(err, resultp) |
| if err != nil { |
| return nil, makeContainerError(container, operation, "", err) |
| } |
| |
| container.handle = handle |
| |
| logrus.Debugf(title+" succeeded id=%s handle=%d", id, handle) |
| runtime.SetFinalizer(container, closeContainer) |
| return container, nil |
| } |
| |
| // Start synchronously starts the container. |
| func (container *container) Start() error { |
| operation := "Start" |
| title := "HCSShim::Container::" + operation |
| logrus.Debugf(title+" id=%s", container.id) |
| |
| var resultp *uint16 |
| err := hcsStartComputeSystemTP5(container.handle, nil, &resultp) |
| err = processAsyncHcsResult(err, resultp, container.callbackNumber, hcsNotificationSystemStartCompleted, &defaultTimeout) |
| if err != nil { |
| return makeContainerError(container, operation, "", err) |
| } |
| |
| logrus.Debugf(title+" succeeded id=%s", container.id) |
| return nil |
| } |
| |
| // Shutdown requests a container shutdown, but it may not actually be shut down until Wait() succeeds. |
| // It returns ErrVmcomputeOperationPending if the shutdown is in progress, nil if the shutdown is complete. |
| func (container *container) Shutdown() error { |
| operation := "Shutdown" |
| title := "HCSShim::Container::" + operation |
| logrus.Debugf(title+" id=%s", container.id) |
| |
| var resultp *uint16 |
| err := hcsShutdownComputeSystemTP5(container.handle, nil, &resultp) |
| err = processHcsResult(err, resultp) |
| if err != nil { |
| if err == ErrVmcomputeOperationPending { |
| return ErrVmcomputeOperationPending |
| } |
| return makeContainerError(container, operation, "", err) |
| } |
| |
| logrus.Debugf(title+" succeeded id=%s", container.id) |
| return nil |
| } |
| |
| // Terminate requests a container terminate, but it may not actually be terminated until Wait() succeeds. |
| // It returns ErrVmcomputeOperationPending if the shutdown is in progress, nil if the shutdown is complete. |
| func (container *container) Terminate() error { |
| operation := "Terminate" |
| title := "HCSShim::Container::" + operation |
| logrus.Debugf(title+" id=%s", container.id) |
| |
| var resultp *uint16 |
| err := hcsTerminateComputeSystemTP5(container.handle, nil, &resultp) |
| err = processHcsResult(err, resultp) |
| if err != nil { |
| if err == ErrVmcomputeOperationPending { |
| return ErrVmcomputeOperationPending |
| } |
| return makeContainerError(container, operation, "", err) |
| } |
| |
| logrus.Debugf(title+" succeeded id=%s", container.id) |
| return nil |
| } |
| |
| // Wait synchronously waits for the container to shutdown or terminate. |
| func (container *container) Wait() error { |
| operation := "Wait" |
| title := "HCSShim::Container::" + operation |
| logrus.Debugf(title+" id=%s", container.id) |
| |
| if hcsCallbacksSupported { |
| err := waitForNotification(container.callbackNumber, hcsNotificationSystemExited, nil) |
| if err != nil { |
| return makeContainerError(container, operation, "", err) |
| } |
| } else { |
| _, err := container.waitTimeoutInternal(syscall.INFINITE) |
| if err != nil { |
| return makeContainerError(container, operation, "", err) |
| } |
| } |
| |
| logrus.Debugf(title+" succeeded id=%s", container.id) |
| return nil |
| } |
| |
| func (container *container) waitTimeoutInternal(timeout uint32) (bool, error) { |
| return waitTimeoutInternalHelper(container, timeout) |
| } |
| |
| // WaitTimeout synchronously waits for the container to terminate or the duration to elapse. It returns |
| // ErrTimeout if the timeout duration expires before the container is shut down. |
| func (container *container) WaitTimeout(timeout time.Duration) error { |
| operation := "WaitTimeout" |
| title := "HCSShim::Container::" + operation |
| logrus.Debugf(title+" id=%s", container.id) |
| |
| if hcsCallbacksSupported { |
| err := waitForNotification(container.callbackNumber, hcsNotificationSystemExited, &timeout) |
| if err != nil { |
| return makeContainerError(container, operation, "", err) |
| } |
| } else { |
| finished, err := waitTimeoutHelper(container, timeout) |
| if !finished { |
| return ErrTimeout |
| } else if err != nil { |
| return makeContainerError(container, operation, "", err) |
| } |
| } |
| |
| logrus.Debugf(title+" succeeded id=%s", container.id) |
| return nil |
| } |
| |
| func (container *container) hcsWait(timeout uint32) (bool, error) { |
| var ( |
| resultp *uint16 |
| exitEvent syscall.Handle |
| ) |
| |
| err := hcsCreateComputeSystemWait(container.handle, &exitEvent, &resultp) |
| err = processHcsResult(err, resultp) |
| if err != nil { |
| return false, err |
| } |
| defer syscall.CloseHandle(exitEvent) |
| |
| return waitForSingleObject(exitEvent, timeout) |
| } |
| |
| func (container *container) properties(query string) (*containerProperties, error) { |
| var ( |
| resultp *uint16 |
| propertiesp *uint16 |
| ) |
| err := hcsGetComputeSystemProperties(container.handle, query, &propertiesp, &resultp) |
| err = processHcsResult(err, resultp) |
| if err != nil { |
| return nil, err |
| } |
| |
| if propertiesp == nil { |
| return nil, errors.New("Unexpected result from hcsGetComputeSystemProperties, properties should never be nil") |
| } |
| propertiesRaw := convertAndFreeCoTaskMemBytes(propertiesp) |
| |
| properties := &containerProperties{} |
| if err := json.Unmarshal(propertiesRaw, properties); err != nil { |
| return nil, err |
| } |
| |
| return properties, nil |
| } |
| |
| // HasPendingUpdates returns true if the container has updates pending to install |
| func (container *container) HasPendingUpdates() (bool, error) { |
| operation := "HasPendingUpdates" |
| title := "HCSShim::Container::" + operation |
| logrus.Debugf(title+" id=%s", container.id) |
| properties, err := container.properties(pendingUpdatesQuery) |
| if err != nil { |
| return false, makeContainerError(container, operation, "", err) |
| } |
| |
| logrus.Debugf(title+" succeeded id=%s", container.id) |
| return properties.AreUpdatesPending, nil |
| } |
| |
| // Pause pauses the execution of the container. This feature is not enabled in TP5. |
| func (container *container) Pause() error { |
| operation := "Pause" |
| title := "HCSShim::Container::" + operation |
| logrus.Debugf(title+" id=%s", container.id) |
| |
| var resultp *uint16 |
| err := hcsPauseComputeSystemTP5(container.handle, nil, &resultp) |
| err = processAsyncHcsResult(err, resultp, container.callbackNumber, hcsNotificationSystemPauseCompleted, &defaultTimeout) |
| if err != nil { |
| return makeContainerError(container, operation, "", err) |
| } |
| |
| logrus.Debugf(title+" succeeded id=%s", container.id) |
| return nil |
| } |
| |
| // Resume resumes the execution of the container. This feature is not enabled in TP5. |
| func (container *container) Resume() error { |
| operation := "Resume" |
| title := "HCSShim::Container::" + operation |
| logrus.Debugf(title+" id=%s", container.id) |
| var ( |
| resultp *uint16 |
| ) |
| |
| err := hcsResumeComputeSystemTP5(container.handle, nil, &resultp) |
| err = processAsyncHcsResult(err, resultp, container.callbackNumber, hcsNotificationSystemResumeCompleted, &defaultTimeout) |
| if err != nil { |
| return makeContainerError(container, operation, "", err) |
| } |
| |
| logrus.Debugf(title+" succeeded id=%s", container.id) |
| return nil |
| } |
| |
| // CreateProcess launches a new process within the container. |
| func (container *container) CreateProcess(c *ProcessConfig) (Process, error) { |
| operation := "CreateProcess" |
| title := "HCSShim::Container::" + operation |
| var ( |
| processInfo hcsProcessInformation |
| processHandle hcsProcess |
| resultp *uint16 |
| ) |
| |
| // If we are not emulating a console, ignore any console size passed to us |
| if !c.EmulateConsole { |
| c.ConsoleSize[0] = 0 |
| c.ConsoleSize[1] = 0 |
| } |
| |
| configurationb, err := json.Marshal(c) |
| if err != nil { |
| return nil, err |
| } |
| |
| configuration := string(configurationb) |
| logrus.Debugf(title+" id=%s config=%s", container.id, configuration) |
| |
| err = hcsCreateProcess(container.handle, configuration, &processInfo, &processHandle, &resultp) |
| err = processHcsResult(err, resultp) |
| if err != nil { |
| return nil, makeContainerError(container, operation, configuration, err) |
| } |
| |
| process := &process{ |
| handle: processHandle, |
| processID: int(processInfo.ProcessId), |
| container: container, |
| cachedPipes: &cachedPipes{ |
| stdIn: processInfo.StdInput, |
| stdOut: processInfo.StdOutput, |
| stdErr: processInfo.StdError, |
| }, |
| } |
| |
| if hcsCallbacksSupported { |
| if err := process.registerCallback(); err != nil { |
| return nil, makeContainerError(container, operation, "", err) |
| } |
| } |
| |
| logrus.Debugf(title+" succeeded id=%s processid=%s", container.id, process.processID) |
| runtime.SetFinalizer(process, closeProcess) |
| return process, nil |
| } |
| |
| // OpenProcess gets an interface to an existing process within the container. |
| func (container *container) OpenProcess(pid int) (Process, error) { |
| operation := "OpenProcess" |
| title := "HCSShim::Container::" + operation |
| logrus.Debugf(title+" id=%s, processid=%d", container.id, pid) |
| var ( |
| processHandle hcsProcess |
| resultp *uint16 |
| ) |
| |
| err := hcsOpenProcess(container.handle, uint32(pid), &processHandle, &resultp) |
| err = processHcsResult(err, resultp) |
| if err != nil { |
| return nil, makeContainerError(container, operation, "", err) |
| } |
| |
| process := &process{ |
| handle: processHandle, |
| processID: pid, |
| container: container, |
| } |
| |
| if err := process.registerCallback(); err != nil { |
| return nil, makeContainerError(container, operation, "", err) |
| } |
| |
| logrus.Debugf(title+" succeeded id=%s processid=%s", container.id, process.processID) |
| runtime.SetFinalizer(process, closeProcess) |
| return process, nil |
| } |
| |
| // Close cleans up any state associated with the container but does not terminate or wait for it. |
| func (container *container) Close() error { |
| operation := "Close" |
| title := "HCSShim::Container::" + operation |
| logrus.Debugf(title+" id=%s", container.id) |
| |
| // Don't double free this |
| if container.handle == 0 { |
| return nil |
| } |
| |
| if hcsCallbacksSupported { |
| if err := container.unregisterCallback(); err != nil { |
| return makeContainerError(container, operation, "", err) |
| } |
| } |
| |
| if err := hcsCloseComputeSystem(container.handle); err != nil { |
| return makeContainerError(container, operation, "", err) |
| } |
| |
| container.handle = 0 |
| |
| logrus.Debugf(title+" succeeded id=%s", container.id) |
| return nil |
| } |
| |
| // closeContainer wraps container.Close for use by a finalizer |
| func closeContainer(container *container) { |
| container.Close() |
| } |
| |
| func (container *container) registerCallback() error { |
| context := ¬ifcationWatcherContext{ |
| channels: newChannels(), |
| } |
| |
| callbackMapLock.Lock() |
| callbackNumber := nextCallback |
| nextCallback++ |
| callbackMap[callbackNumber] = context |
| callbackMapLock.Unlock() |
| |
| var callbackHandle hcsCallback |
| err := hcsRegisterComputeSystemCallback(container.handle, notificationWatcherCallback, callbackNumber, &callbackHandle) |
| if err != nil { |
| return err |
| } |
| context.handle = callbackHandle |
| container.callbackNumber = callbackNumber |
| |
| return nil |
| } |
| |
| func (container *container) unregisterCallback() error { |
| callbackNumber := container.callbackNumber |
| |
| callbackMapLock.RLock() |
| context := callbackMap[callbackNumber] |
| callbackMapLock.RUnlock() |
| |
| if context == nil { |
| return nil |
| } |
| |
| handle := context.handle |
| |
| if handle == 0 { |
| return nil |
| } |
| |
| // hcsUnregisterComputeSystemCallback has its own syncronization |
| // to wait for all callbacks to complete. We must NOT hold the callbackMapLock. |
| err := hcsUnregisterComputeSystemCallback(handle) |
| if err != nil { |
| return err |
| } |
| |
| closeChannels(context.channels) |
| |
| callbackMapLock.Lock() |
| callbackMap[callbackNumber] = nil |
| callbackMapLock.Unlock() |
| |
| handle = 0 |
| |
| return nil |
| } |
| |
| func (e *ContainerError) Error() string { |
| if e == nil { |
| return "<nil>" |
| } |
| |
| if e.Container == nil { |
| return "unexpected nil container for error: " + e.Err.Error() |
| } |
| |
| s := "container " + e.Container.id |
| |
| if e.Operation != "" { |
| s += " encountered an error during " + e.Operation |
| } |
| |
| if e.Err != nil { |
| s += fmt.Sprintf(" failed in Win32: %s (0x%x)", e.Err, win32FromError(e.Err)) |
| } |
| |
| if e.ExtraInfo != "" { |
| s += " extra info: " + e.ExtraInfo |
| } |
| |
| return s |
| } |
| |
| func makeContainerError(container *container, operation string, extraInfo string, err error) error { |
| // Don't wrap errors created in hcsshim |
| if err == ErrTimeout || |
| err == ErrUnexpectedProcessAbort || |
| err == ErrUnexpectedContainerExit || |
| err == ErrHandleClose || |
| err == ErrInvalidProcessState || |
| err == ErrInvalidNotificationType || |
| err == ErrVmcomputeOperationPending { |
| return err |
| } |
| |
| containerError := &ContainerError{Container: container, Operation: operation, ExtraInfo: extraInfo, Err: err} |
| logrus.Error(containerError) |
| return containerError |
| } |
