netbird/gvisor
0
0
Fork 0
mirror of https://github.com/netbirdio/gvisor.git synced 2026-05-22 17:12:49 -07:00
Code Issues Packages Projects Releases Wiki Activity
Files
master
gvisor/runsc/boot/loader.go
T
Nayana Bidari c68fb31992 Save runsc version in the metadata during save to compare it during restore. 
PiperOrigin-RevId: 736035156
2025-03-12 01:02:48 -07:00

2046 lines
66 KiB
Go
Raw Permalink Blame History

// Copyright 2018 The gVisor Authors.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
// Package boot loads the kernel and runs a container.
package boot
import (
"encoding/json"
"errors"
"fmt"
"os"
"runtime"
"strconv"
gtime "time"
specs "github.com/opencontainers/runtime-spec/specs-go"
"github.com/syndtr/gocapability/capability"
"golang.org/x/sys/unix"
"gvisor.dev/gvisor/pkg/abi/linux"
"gvisor.dev/gvisor/pkg/bpf"
"gvisor.dev/gvisor/pkg/cleanup"
"gvisor.dev/gvisor/pkg/context"
"gvisor.dev/gvisor/pkg/coverage"
"gvisor.dev/gvisor/pkg/cpuid"
"gvisor.dev/gvisor/pkg/fd"
"gvisor.dev/gvisor/pkg/gomaxprocs"
"gvisor.dev/gvisor/pkg/log"
"gvisor.dev/gvisor/pkg/memutil"
"gvisor.dev/gvisor/pkg/metric"
"gvisor.dev/gvisor/pkg/rand"
"gvisor.dev/gvisor/pkg/refs"
"gvisor.dev/gvisor/pkg/sentry/control"
"gvisor.dev/gvisor/pkg/sentry/devices/nvproxy"
"gvisor.dev/gvisor/pkg/sentry/devices/nvproxy/nvconf"
"gvisor.dev/gvisor/pkg/sentry/fdimport"
"gvisor.dev/gvisor/pkg/sentry/fsimpl/host"
"gvisor.dev/gvisor/pkg/sentry/fsimpl/tmpfs"
"gvisor.dev/gvisor/pkg/sentry/fsimpl/user"
"gvisor.dev/gvisor/pkg/sentry/inet"
"gvisor.dev/gvisor/pkg/sentry/kernel"
"gvisor.dev/gvisor/pkg/sentry/kernel/auth"
"gvisor.dev/gvisor/pkg/sentry/loader"
"gvisor.dev/gvisor/pkg/sentry/pgalloc"
"gvisor.dev/gvisor/pkg/sentry/platform"
_ "gvisor.dev/gvisor/pkg/sentry/platform/platforms" // register all platforms.
"gvisor.dev/gvisor/pkg/sentry/seccheck"
pb "gvisor.dev/gvisor/pkg/sentry/seccheck/points/points_go_proto"
"gvisor.dev/gvisor/pkg/sentry/socket/netfilter"
"gvisor.dev/gvisor/pkg/sentry/socket/plugin"
"gvisor.dev/gvisor/pkg/sentry/socket/unix/transport"
"gvisor.dev/gvisor/pkg/sentry/time"
"gvisor.dev/gvisor/pkg/sentry/usage"
"gvisor.dev/gvisor/pkg/sentry/vfs"
"gvisor.dev/gvisor/pkg/sentry/watchdog"
"gvisor.dev/gvisor/pkg/sighandling"
"gvisor.dev/gvisor/pkg/sync"
"gvisor.dev/gvisor/pkg/tcpip"
"gvisor.dev/gvisor/pkg/tcpip/link/ethernet"
"gvisor.dev/gvisor/pkg/tcpip/link/loopback"
"gvisor.dev/gvisor/pkg/tcpip/link/sniffer"
"gvisor.dev/gvisor/pkg/tcpip/network/arp"
"gvisor.dev/gvisor/pkg/tcpip/network/ipv4"
"gvisor.dev/gvisor/pkg/tcpip/network/ipv6"
"gvisor.dev/gvisor/pkg/tcpip/stack"
"gvisor.dev/gvisor/pkg/tcpip/transport/icmp"
"gvisor.dev/gvisor/pkg/tcpip/transport/raw"
"gvisor.dev/gvisor/pkg/tcpip/transport/tcp"
"gvisor.dev/gvisor/pkg/tcpip/transport/udp"
"gvisor.dev/gvisor/runsc/boot/filter"
pf "gvisor.dev/gvisor/runsc/boot/portforward"
"gvisor.dev/gvisor/runsc/boot/pprof"
"gvisor.dev/gvisor/runsc/config"
"gvisor.dev/gvisor/runsc/profile"
"gvisor.dev/gvisor/runsc/specutils"
"gvisor.dev/gvisor/runsc/specutils/seccomp"
// Top-level inet providers.
"gvisor.dev/gvisor/pkg/sentry/socket/hostinet"
"gvisor.dev/gvisor/pkg/sentry/socket/netstack"
// Include other supported socket providers.
_ "gvisor.dev/gvisor/pkg/sentry/socket/netlink"
_ "gvisor.dev/gvisor/pkg/sentry/socket/netlink/route"
_ "gvisor.dev/gvisor/pkg/sentry/socket/netlink/uevent"
_ "gvisor.dev/gvisor/pkg/sentry/socket/unix"
)
// ContainerRuntimeState is the runtime state of a container.
type ContainerRuntimeState int
const (
// RuntimeStateInvalid used just in case of error.
RuntimeStateInvalid ContainerRuntimeState = iota
// RuntimeStateCreating indicates that the container is being
// created, but has not started running yet.
RuntimeStateCreating
// RuntimeStateRunning indicates that the container is running.
RuntimeStateRunning
// RuntimeStateStopped indicates that the container has stopped.
RuntimeStateStopped
)
type containerInfo struct {
cid string
containerName string
conf *config.Config
// spec is the base configuration for the root container.
spec *specs.Spec
// procArgs refers to the container's init task.
procArgs kernel.CreateProcessArgs
// stdioFDs contains stdin, stdout, and stderr.
stdioFDs []*fd.FD
// passFDs are mappings of user-supplied host to guest file descriptors.
passFDs []fdMapping
// execFD is the host file descriptor used for program execution.
execFD *fd.FD
// goferFDs are the FDs that attach the sandbox to the gofers.
goferFDs []*fd.FD
// devGoferFD is the FD to attach the sandbox to the dev gofer.
devGoferFD *fd.FD
// goferFilestoreFDs are FDs to the regular files that will back the tmpfs or
// overlayfs mount for certain gofer mounts.
goferFilestoreFDs []*fd.FD
// goferMountConfs contains information about how the gofer mounts have been
// configured. The first entry is for rootfs and the following entries are
// for bind mounts in Spec.Mounts (in the same order).
goferMountConfs []GoferMountConf
// nvidiaUVMDevMajor is the device major number used for nvidia-uvm.
nvidiaUVMDevMajor uint32
// nvidiaDriverVersion is the NVIDIA driver ABI version to use for
// communicating with NVIDIA devices on the host.
nvidiaDriverVersion nvconf.DriverVersion
}
type loaderState int
const (
// created indicates that the Loader has been created, but not started yet.
created loaderState = iota
// started indicates that the Loader has been started.
started
// restoring indicates that the Loader has been created and is restoring
// containers. It will change to started after restore is completed.
restoring
)
// Loader keeps state needed to start the kernel and run the container.
type Loader struct {
// k is the kernel.
k *kernel.Kernel
// ctrl is the control server.
ctrl *controller
// root contains information about the root container in the sandbox.
root containerInfo
watchdog *watchdog.Watchdog
// stopSignalForwarding disables forwarding of signals to the sandboxed
// container. It should be called when a sandbox is destroyed.
stopSignalForwarding func()
// stopProfiling stops profiling started at container creation. It
// should be called when a sandbox is destroyed.
stopProfiling func()
// PreSeccompCallback is called right before installing seccomp filters.
PreSeccompCallback func()
// restore is set to true if we are restoring a container.
restore bool
restoreWaiters *sync.Cond
// sandboxID is the ID for the whole sandbox.
sandboxID string
// mountHints provides extra information about mounts for containers that
// apply to the entire pod.
mountHints *PodMountHints
// productName is the value to show in
// /sys/devices/virtual/dmi/id/product_name.
productName string
hostTHP HostTHP
// mu guards the fields below.
mu sync.Mutex
// +checklocks:mu
state loaderState
// sharedMounts holds VFS mounts that may be shared between containers within
// the same pod. It is mapped by mount source.
//
// +checklocks:mu
sharedMounts map[string]*vfs.Mount
// processes maps containers init process and invocation of exec. Root
// processes are keyed with container ID and pid=0, while exec invocations
// have the corresponding pid set.
//
// +checklocks:mu
processes map[execID]*execProcess
// containerIDs store container names and IDs to assist with restore and container
// naming when user didn't provide one.
//
// Mapping: name -> cid.
// +checklocks:mu
containerIDs map[string]string
// containerSpecs stores container specs for each container in sandbox.
//
// Mapping: name -> spec.
// +checklocks:mu
containerSpecs map[string]*specs.Spec
// portForwardProxies is a list of active port forwarding connections.
//
// +checklocks:mu
portForwardProxies []*pf.Proxy
// +checklocks:mu
saveFDs []*fd.FD
// saveRestoreNet indicates if the saved network stack should be used
// during restore.
saveRestoreNet bool
}
// execID uniquely identifies a sentry process that is executed in a container.
type execID struct {
cid string
pid kernel.ThreadID
}
// execProcess contains the thread group and host TTY of a sentry process.
type execProcess struct {
// tg will be nil for containers that haven't started yet.
tg *kernel.ThreadGroup
// tty will be nil if the process is not attached to a terminal.
tty *host.TTYFileDescription
// pidnsPath is the pid namespace path in spec
pidnsPath string
// hostTTY is present when creating a sub-container with terminal enabled.
// TTY file is passed during container create and must be saved until
// container start.
hostTTY *fd.FD
}
// fdMapping maps guest to host file descriptors. Guest file descriptors are
// exposed to the application inside the sandbox through the FD table.
type fdMapping struct {
guest int
host *fd.FD
}
// FDMapping is a helper type to represent a mapping from guest to host file
// descriptors. In contrast to the unexported fdMapping type, it does not imply
// file ownership.
type FDMapping struct {
Guest int
Host int
}
// Args are the arguments for New().
type Args struct {
// Id is the sandbox ID.
ID string
// Spec is the sandbox specification.
Spec *specs.Spec
// Conf is the system configuration.
Conf *config.Config
// ControllerFD is the FD to the URPC controller. The Loader takes ownership
// of this FD and may close it at any time.
ControllerFD int
// Device is an optional argument that is passed to the platform. The Loader
// takes ownership of this file and may close it at any time.
Device *fd.FD
// GoferFDs is an array of FDs used to connect with the Gofer. The Loader
// takes ownership of these FDs and may close them at any time.
GoferFDs []int
// DevGoferFD is the FD for the dev gofer connection. The Loader takes
// ownership of this FD and may close it at any time.
DevGoferFD int
// StdioFDs is the stdio for the application. The Loader takes ownership of
// these FDs and may close them at any time.
StdioFDs []int
// PassFDs are user-supplied FD mappings from host to guest descriptors.
// The Loader takes ownership of these FDs and may close them at any time.
PassFDs []FDMapping
// ExecFD is the host file descriptor used for program execution.
ExecFD int
// GoferFilestoreFDs are FDs to the regular files that will back the tmpfs or
// overlayfs mount for certain gofer mounts.
GoferFilestoreFDs []int
// GoferMountConfs contains information about how the gofer mounts have been
// configured. The first entry is for rootfs and the following entries are
// for bind mounts in Spec.Mounts (in the same order).
GoferMountConfs []GoferMountConf
// NumCPU is the number of CPUs to create inside the sandbox.
NumCPU int
// TotalMem is the initial amount of total memory to report back to the
// container.
TotalMem uint64
// TotalHostMem is the total memory reported by host /proc/meminfo.
TotalHostMem uint64
// UserLogFD is the file descriptor to write user logs to.
UserLogFD int
// ProductName is the value to show in
// /sys/devices/virtual/dmi/id/product_name.
ProductName string
// PodInitConfigFD is the file descriptor to a file passed in the
// --pod-init-config flag
PodInitConfigFD int
// SinkFDs is an ordered array of file descriptors to be used by seccheck
// sinks configured from the --pod-init-config file.
SinkFDs []int
// ProfileOpts contains the set of profiles to enable and the
// corresponding FDs where profile data will be written.
ProfileOpts profile.Opts
// NvidiaDriverVersion is the NVIDIA driver ABI version to use for
// communicating with NVIDIA devices on the host.
NvidiaDriverVersion nvconf.DriverVersion
// HostTHP contains host transparent hugepage settings.
HostTHP HostTHP
SaveFDs []*fd.FD
}
// HostTHP holds host transparent hugepage settings.
type HostTHP struct {
// ShmemEnabled is the selected option in
// /sys/kernel/mm/transparent_hugepage/shmem_enabled.
ShmemEnabled string
// Defrag is the selected option in
// /sys/kernel/mm/transparent_hugepage/defrag.
Defrag string
}
const (
// startingStdioFD is the starting stdioFD number used during sandbox
// start and restore. This makes sure the stdioFDs are always the same
// on initial start and on restore.
startingStdioFD = 256
// containerSpecsKey is the key used to add and pop the container specs to the
// kernel during save/restore.
containerSpecsKey = "container_specs"
)
func getRootCredentials(spec *specs.Spec, conf *config.Config, userNs *auth.UserNamespace) *auth.Credentials {
// Create capabilities.
caps, err := specutils.Capabilities(conf.EnableRaw, spec.Process.Capabilities)
if err != nil {
return nil
}
// Convert the spec's additional GIDs to KGIDs.
extraKGIDs := make([]auth.KGID, 0, len(spec.Process.User.AdditionalGids))
for _, GID := range spec.Process.User.AdditionalGids {
extraKGIDs = append(extraKGIDs, auth.KGID(GID))
}
if userNs == nil {
userNs = auth.NewRootUserNamespace()
}
// Create credentials.
creds := auth.NewUserCredentials(
auth.KUID(spec.Process.User.UID),
auth.KGID(spec.Process.User.GID),
extraKGIDs,
caps,
userNs)
return creds
}
// New initializes a new kernel loader configured by spec.
// New also handles setting up a kernel for restoring a container.
func New(args Args) (*Loader, error) {
stopProfilingRuntime := profile.Start(args.ProfileOpts)
stopProfiling := func() {
stopProfilingRuntime()
metric.StopProfilingMetrics()
}
// Initialize seccheck points.
seccheck.Initialize()
// We initialize the rand package now to make sure /dev/urandom is pre-opened
// on kernels that do not support getrandom(2).
if err := rand.Init(); err != nil {
return nil, fmt.Errorf("setting up rand: %w", err)
}
if err := usage.Init(); err != nil {
return nil, fmt.Errorf("setting up memory usage: %w", err)
}
if specutils.NVProxyEnabled(args.Spec, args.Conf) {
nvproxy.Init()
}
kernel.IOUringEnabled = args.Conf.IOUring
eid := execID{cid: args.ID}
l := &Loader{
sandboxID: args.ID,
processes: map[execID]*execProcess{eid: {}},
sharedMounts: make(map[string]*vfs.Mount),
stopProfiling: stopProfiling,
productName: args.ProductName,
hostTHP: args.HostTHP,
containerIDs: make(map[string]string),
containerSpecs: make(map[string]*specs.Spec),
saveFDs: args.SaveFDs,
}
containerName := l.registerContainer(args.Spec, args.ID)
l.root = containerInfo{
cid: args.ID,
containerName: containerName,
conf: args.Conf,
spec: args.Spec,
goferMountConfs: args.GoferMountConfs,
nvidiaDriverVersion: args.NvidiaDriverVersion,
}
// Make host FDs stable between invocations. Host FDs must map to the exact
// same number when the sandbox is restored. Otherwise the wrong FD will be
// used.
newfd := startingStdioFD
for _, stdioFD := range args.StdioFDs {
// Check that newfd is unused to avoid clobbering over it.
if _, err := unix.FcntlInt(uintptr(newfd), unix.F_GETFD, 0); !errors.Is(err, unix.EBADF) {
if err != nil {
return nil, fmt.Errorf("error checking for FD (%d) conflict: %w", newfd, err)
}
return nil, fmt.Errorf("unable to remap stdios, FD %d is already in use", newfd)
}
err := unix.Dup3(stdioFD, newfd, unix.O_CLOEXEC)
if err != nil {
return nil, fmt.Errorf("dup3 of stdios failed: %w", err)
}
l.root.stdioFDs = append(l.root.stdioFDs, fd.New(newfd))
_ = unix.Close(stdioFD)
newfd++
}
for _, goferFD := range args.GoferFDs {
l.root.goferFDs = append(l.root.goferFDs, fd.New(goferFD))
}
for _, filestoreFD := range args.GoferFilestoreFDs {
l.root.goferFilestoreFDs = append(l.root.goferFilestoreFDs, fd.New(filestoreFD))
}
if args.DevGoferFD >= 0 {
l.root.devGoferFD = fd.New(args.DevGoferFD)
}
if args.ExecFD >= 0 {
l.root.execFD = fd.New(args.ExecFD)
}
for _, customFD := range args.PassFDs {
l.root.passFDs = append(l.root.passFDs, fdMapping{
host: fd.New(customFD.Host),
guest: customFD.Guest,
})
}
// Create kernel and platform.
p, err := createPlatform(args.Conf, args.Device)
if err != nil {
return nil, fmt.Errorf("creating platform: %w", err)
}
if specutils.NVProxyEnabled(args.Spec, args.Conf) && p.OwnsPageTables() {
return nil, fmt.Errorf("--nvproxy is incompatible with platform %s: owns page tables", args.Conf.Platform)
}
l.k = &kernel.Kernel{Platform: p}
// Create memory file.
mf, err := createMemoryFile(args.Conf.AppHugePages, args.HostTHP)
if err != nil {
return nil, fmt.Errorf("creating memory file: %w", err)
}
l.k.SetMemoryFile(mf)
// Create VDSO.
//
// Pass k as the platform since it is savable, unlike the actual platform.
vdso, err := loader.PrepareVDSO(l.k.MemoryFile())
if err != nil {
return nil, fmt.Errorf("creating vdso: %w", err)
}
// Create timekeeper.
tk := kernel.NewTimekeeper()
params := kernel.NewVDSOParamPage(l.k.MemoryFile(), vdso.ParamPage.FileRange())
tk.SetClocks(time.NewCalibratedClocks(), params)
if err := enableStrace(args.Conf); err != nil {
return nil, fmt.Errorf("enabling strace: %w", err)
}
creds := getRootCredentials(args.Spec, args.Conf, nil /* UserNamespace */)
if creds == nil {
return nil, fmt.Errorf("getting root credentials")
}
// Create root network namespace/stack.
netns, err := newRootNetworkNamespace(args.Conf, tk, creds.UserNamespace)
if err != nil {
return nil, fmt.Errorf("creating network: %w", err)
}
// S/R is not supported for hostinet.
if l.root.conf.Network != config.NetworkHost && args.Conf.TestOnlySaveRestoreNetstack {
l.saveRestoreNet = true
if err := netns.Stack().EnableSaveRestore(); err != nil {
return nil, fmt.Errorf("enable s/r: %w", err)
}
}
if args.NumCPU == 0 {
args.NumCPU = runtime.NumCPU()
}
log.Infof("CPUs: %d", args.NumCPU)
gomaxprocs.SetBase(args.NumCPU)
if args.TotalHostMem > 0 {
// As per tmpfs(5), the default size limit is 50% of total physical RAM.
// See mm/shmem.c:shmem_default_max_blocks().
tmpfs.SetDefaultSizeLimit(args.TotalHostMem / 2)
}
if args.TotalMem > 0 {
// Adjust the total memory returned by the Sentry so that applications that
// use /proc/meminfo can make allocations based on this limit.
usage.MinimumTotalMemoryBytes = args.TotalMem
usage.MaximumTotalMemoryBytes = args.TotalMem
log.Infof("Setting total memory to %.2f GB", float64(args.TotalMem)/(1<<30))
}
maxFDLimit := kernel.MaxFdLimit
if args.Spec.Linux != nil && args.Spec.Linux.Sysctl != nil {
if val, ok := args.Spec.Linux.Sysctl["fs.nr_open"]; ok {
nrOpen, err := strconv.Atoi(val)
if err != nil {
return nil, fmt.Errorf("setting fs.nr_open=%s: %w", val, err)
}
if nrOpen <= 0 || nrOpen > int(kernel.MaxFdLimit) {
return nil, fmt.Errorf("setting fs.nr_open=%s", val)
}
maxFDLimit = int32(nrOpen)
}
}
// Initiate the Kernel object, which is required by the Context passed
// to createVFS in order to mount (among other things) procfs.
unixSocketOpts := transport.UnixSocketOpts{
DisconnectOnSave: args.Conf.NetDisconnectOk,
}
if err = l.k.Init(kernel.InitKernelArgs{
FeatureSet: cpuid.HostFeatureSet().Fixed(),
Timekeeper: tk,
RootUserNamespace: creds.UserNamespace,
RootNetworkNamespace: netns,
ApplicationCores: uint(args.NumCPU),
Vdso: vdso,
VdsoParams: params,
RootUTSNamespace: kernel.NewUTSNamespace(args.Spec.Hostname, args.Spec.Hostname, creds.UserNamespace),
RootIPCNamespace: kernel.NewIPCNamespace(creds.UserNamespace),
PIDNamespace: kernel.NewRootPIDNamespace(creds.UserNamespace),
MaxFDLimit: maxFDLimit,
UnixSocketOpts: unixSocketOpts,
}); err != nil {
return nil, fmt.Errorf("initializing kernel: %w", err)
}
if err := registerFilesystems(l.k, &l.root); err != nil {
return nil, fmt.Errorf("registering filesystems: %w", err)
}
// Turn on packet logging if enabled.
if args.Conf.LogPackets {
log.Infof("Packet logging enabled")
sniffer.LogPackets.Store(1)
} else {
log.Infof("Packet logging disabled")
sniffer.LogPackets.Store(0)
}
// Create a watchdog.
dogOpts := watchdog.DefaultOpts
dogOpts.TaskTimeoutAction = args.Conf.WatchdogAction
l.watchdog = watchdog.New(l.k, dogOpts)
procArgs, err := createProcessArgs(args.ID, args.Spec, args.Conf, creds, l.k, l.k.RootPIDNamespace())
if err != nil {
return nil, fmt.Errorf("creating init process for root container: %w", err)
}
l.root.procArgs = procArgs
if err := initCompatLogs(args.UserLogFD); err != nil {
return nil, fmt.Errorf("initializing compat logs: %w", err)
}
l.mountHints, err = NewPodMountHints(args.Spec)
if err != nil {
return nil, fmt.Errorf("creating pod mount hints: %w", err)
}
// Set up host mount that will be used for imported fds.
hostFilesystem, err := host.NewFilesystem(l.k.VFS())
if err != nil {
return nil, fmt.Errorf("failed to create hostfs filesystem: %w", err)
}
defer hostFilesystem.DecRef(l.k.SupervisorContext())
l.k.SetHostMount(l.k.VFS().NewDisconnectedMount(hostFilesystem, nil, &vfs.MountOptions{}))
if args.PodInitConfigFD >= 0 {
if err := setupSeccheck(args.PodInitConfigFD, args.SinkFDs); err != nil {
log.Warningf("unable to configure event session: %v", err)
}
}
l.k.RegisterContainerName(args.ID, l.root.containerName)
// We don't care about child signals; some platforms can generate a
// tremendous number of useless ones (I'm looking at you, ptrace).
if err := sighandling.IgnoreChildStop(); err != nil {
return nil, fmt.Errorf("ignore child stop signals failed: %w", err)
}
if len(args.Conf.TestOnlyAutosaveImagePath) != 0 {
enableAutosave(l, args.Conf.TestOnlyAutosaveResume, l.saveFDs)
}
l.kernelInitExtra()
// Create the control server using the provided FD.
//
// This must be done *after* we have initialized the kernel since the
// controller is used to configure the kernel's network stack.
ctrl, err := newController(args.ControllerFD, l)
if err != nil {
return nil, fmt.Errorf("creating control server: %w", err)
}
l.ctrl = ctrl
// Only start serving after Loader is set to controller and controller is set
// to Loader, because they are both used in the urpc methods.
if err := ctrl.srv.StartServing(); err != nil {
return nil, fmt.Errorf("starting control server: %w", err)
}
return l, nil
}
// createProcessArgs creates args that can be used with kernel.CreateProcess.
func createProcessArgs(id string, spec *specs.Spec, conf *config.Config, creds *auth.Credentials, k *kernel.Kernel, pidns *kernel.PIDNamespace) (kernel.CreateProcessArgs, error) {
// Create initial limits.
ls, err := createLimitSet(spec, specutils.TPUProxyIsEnabled(spec, conf))
if err != nil {
return kernel.CreateProcessArgs{}, fmt.Errorf("creating limits: %w", err)
}
env, err := specutils.ResolveEnvs(spec.Process.Env)
if err != nil {
return kernel.CreateProcessArgs{}, fmt.Errorf("resolving env: %w", err)
}
wd := spec.Process.Cwd
if wd == "" {
wd = "/"
}
umask := uint(0022)
if spec.Process.User.Umask != nil {
umask = uint(*spec.Process.User.Umask) & 0777
}
// Create the process arguments.
procArgs := kernel.CreateProcessArgs{
Argv: spec.Process.Args,
Envv: env,
WorkingDirectory: wd,
Credentials: creds,
Umask: umask,
Limits: ls,
MaxSymlinkTraversals: linux.MaxSymlinkTraversals,
UTSNamespace: k.RootUTSNamespace(),
IPCNamespace: k.RootIPCNamespace(),
ContainerID: id,
PIDNamespace: pidns,
}
return procArgs, nil
}
// Destroy cleans up all resources used by the loader.
//
// Note that this will block until all open control server connections have
// been closed. For that reason, this should NOT be called in a defer, because
// a panic in a control server rpc would then hang forever.
func (l *Loader) Destroy() {
if l.stopSignalForwarding != nil {
l.stopSignalForwarding()
}
l.watchdog.Stop()
ctx := l.k.SupervisorContext()
l.mu.Lock()
for _, m := range l.sharedMounts {
m.DecRef(ctx)
}
l.mu.Unlock()
// Stop the control server. This will indirectly stop any
// long-running control operations that are in flight, e.g.
// profiling operations.
l.ctrl.stop()
// Release all kernel resources. This is only safe after we can no longer
// save/restore.
l.k.Release()
// Release any dangling tcp connections.
tcpip.ReleaseDanglingEndpoints()
// In the success case, all FDs in l.root will only contain released/closed
// FDs whose ownership has been passed over to host FDs and gofer sessions.
// Close them here in case of failure.
for _, f := range l.root.stdioFDs {
_ = f.Close()
}
for _, f := range l.root.passFDs {
_ = f.host.Close()
}
for _, f := range l.root.goferFDs {
_ = f.Close()
}
for _, f := range l.root.goferFilestoreFDs {
_ = f.Close()
}
if l.root.devGoferFD != nil {
_ = l.root.devGoferFD.Close()
}
l.stopProfiling()
// Check all references.
refs.OnExit()
}
func createPlatform(conf *config.Config, deviceFile *fd.FD) (platform.Platform, error) {
p, err := platform.Lookup(conf.Platform)
if err != nil {
panic(fmt.Sprintf("invalid platform %s: %s", conf.Platform, err))
}
log.Infof("Platform: %s", conf.Platform)
return p.New(deviceFile)
}
func createMemoryFile(appHugePages bool, hostTHP HostTHP) (*pgalloc.MemoryFile, error) {
const memfileName = "runsc-memory"
memfd, err := memutil.CreateMemFD(memfileName, 0)
if err != nil {
return nil, fmt.Errorf("error creating memfd: %w", err)
}
memfile := os.NewFile(uintptr(memfd), memfileName)
mfopts := pgalloc.MemoryFileOpts{
// We can't enable pgalloc.MemoryFileOpts.UseHostMemcgPressure even if
// there are memory cgroups specified, because at this point we're already
// in a mount namespace in which the relevant cgroupfs is not visible.
}
if appHugePages {
switch hostTHP.ShmemEnabled {
case "":
log.Infof("Disabling application huge pages: host shmem_enabled is unknown")
case "never", "deny":
log.Infof("Disabling application huge pages: host shmem_enabled is %q", hostTHP.ShmemEnabled)
case "advise":
switch hostTHP.Defrag {
case "":
log.Infof("Disabling application huge pages: host shmem_enabled is %q, host defrag is unknown", hostTHP.ShmemEnabled)
case "always", "defer", "never":
// Allocations on MADV_HUGEPAGE pages will invoke direct
// compaction ("always"), wake kcompactd ("defer"), or do
// neither ("never"), consistent with host private anonymous
// memory mappings, so using MADV_HUGEPAGE shouldn't cause a
// regression vs. running natively.
log.Infof("Enabling application huge pages: host shmem_enabled is %q, host defrag is %q", hostTHP.ShmemEnabled, hostTHP.Defrag)
mfopts.ExpectHugepages = true
mfopts.AdviseHugepage = true
case "defer+madvise", "madvise":
// Allocations on MADV_HUGEPAGE pages may invoke direct
// compaction whereas allocations on host private anonymous
// memory mappings will not, so using MADV_HUGEPAGE may degrade
// performance.
log.Infof("Disabling application huge pages: host shmem_enabled is %q, host defrag is %q", hostTHP.ShmemEnabled, hostTHP.Defrag)
default:
log.Warningf("Disabling application huge pages: host shmem_enabled is %q, host defrag is unknown value %q", hostTHP.ShmemEnabled, hostTHP.Defrag)
}
case "always", "within_size":
log.Infof("Enabling application huge pages: host shmem_enabled is %q", hostTHP.ShmemEnabled)
// In these cases, memfds will default to using huge pages, and we have to
// explicitly ask for small pages.
mfopts.ExpectHugepages = true
mfopts.AdviseNoHugepage = true
case "force":
log.Infof("Enabling application huge pages: host shmem_enabled is %q", hostTHP.ShmemEnabled)
// The kernel will ignore MADV_NOHUGEPAGE, so don't bother.
mfopts.ExpectHugepages = true
default:
log.Warningf("Disabling application huge pages: host shmem_enabled is unknown value %q", hostTHP.ShmemEnabled)
}
}
mf, err := pgalloc.NewMemoryFile(memfile, mfopts)
if err != nil {
_ = memfile.Close()
return nil, fmt.Errorf("error creating pgalloc.MemoryFile: %w", err)
}
return mf, nil
}
// installSeccompFilters installs sandbox seccomp filters with the host.
func (l *Loader) installSeccompFilters() error {
if l.PreSeccompCallback != nil {
l.PreSeccompCallback()
}
if l.root.conf.DisableSeccomp {
log.Warningf("*** SECCOMP WARNING: syscall filter is DISABLED. Running in less secure mode.")
} else {
hostnet := l.root.conf.Network == config.NetworkHost
var nvproxyCaps nvconf.DriverCaps
nvproxyEnabled := specutils.NVProxyEnabled(l.root.spec, l.root.conf)
if nvproxyEnabled {
var err error
// We use the set of allowed capabilities here, not the subset of them
// that the root container requests. This is because we need to support
// subsequent containers being able to execute with a wider set than the
// set that the root container requests. Seccomp filters are only
// applied once at sandbox startup, so they need to be as wide as the
// set of capabilities that may ever be requested.
if nvproxyCaps, err = specutils.NVProxyDriverCapsAllowed(l.root.conf); err != nil {
return fmt.Errorf("NVIDIA capabilities: %w", err)
}
}
opts := filter.Options{
Platform: l.k.Platform.SeccompInfo(),
HostNetwork: hostnet,
HostNetworkRawSockets: hostnet && l.root.conf.EnableRaw,
HostFilesystem: l.root.conf.DirectFS,
ProfileEnable: l.root.conf.ProfileEnable,
NVProxy: nvproxyEnabled,
NVProxyCaps: nvproxyCaps,
TPUProxy: specutils.TPUProxyIsEnabled(l.root.spec, l.root.conf),
ControllerFD: uint32(l.ctrl.srv.FD()),
CgoEnabled: config.CgoEnabled,
PluginNetwork: l.root.conf.Network == config.NetworkPlugin,
}
if err := filter.Install(opts); err != nil {
return fmt.Errorf("installing seccomp filters: %w", err)
}
}
return nil
}
// Run runs the root container.
func (l *Loader) Run() error {
err := l.run()
l.ctrl.manager.startResultChan <- err
if err != nil {
// Give the controller some time to send the error to the
// runtime. If we return too quickly here the process will exit
// and the control connection will be closed before the error
// is returned.
gtime.Sleep(2 * gtime.Second)
return err
}
return nil
}
func (l *Loader) run() error {
if l.root.conf.Network == config.NetworkHost {
// Delay host network configuration to this point because network namespace
// is configured after the loader is created and before Run() is called.
log.Debugf("Configuring host network")
s := l.k.RootNetworkNamespace().Stack().(*hostinet.Stack)
if err := s.Configure(l.root.conf.EnableRaw); err != nil {
return err
}
}
l.mu.Lock()
defer l.mu.Unlock()
eid := execID{cid: l.sandboxID}
ep, ok := l.processes[eid]
if !ok {
return fmt.Errorf("trying to start deleted container %q", l.sandboxID)
}
// If we are restoring, we do not want to create a process.
// l.restore is set by the container manager when a restore call is made.
if !l.restore {
if l.root.conf.ProfileEnable {
pprof.Initialize()
}
// Finally done with all configuration. Setup filters before user code
// is loaded.
if err := l.installSeccompFilters(); err != nil {
return err
}
// Create the root container init task. It will begin running
// when the kernel is started.
var (
tg *kernel.ThreadGroup
err error
)
tg, ep.tty, err = l.createContainerProcess(&l.root)
if err != nil {
return err
}
if seccheck.Global.Enabled(seccheck.PointContainerStart) {
evt := pb.Start{
Id: l.sandboxID,
Cwd: l.root.spec.Process.Cwd,
Args: l.root.spec.Process.Args,
Terminal: l.root.spec.Process.Terminal,
}
fields := seccheck.Global.GetFieldSet(seccheck.PointContainerStart)
if fields.Local.Contains(seccheck.FieldContainerStartEnv) {
evt.Env = l.root.spec.Process.Env
}
if !fields.Context.Empty() {
evt.ContextData = &pb.ContextData{}
kernel.LoadSeccheckData(tg.Leader(), fields.Context, evt.ContextData)
}
_ = seccheck.Global.SentToSinks(func(c seccheck.Sink) error {
return c.ContainerStart(context.Background(), fields, &evt)
})
}
}
ep.tg = l.k.GlobalInit()
if ns, ok := specutils.GetNS(specs.PIDNamespace, l.root.spec); ok {
ep.pidnsPath = ns.Path
}
// Handle signals by forwarding them to the root container process
// (except for panic signal, which should cause a panic).
l.stopSignalForwarding = sighandling.StartSignalForwarding(func(sig linux.Signal) {
// Panic signal should cause a panic.
if l.root.conf.PanicSignal != -1 && sig == linux.Signal(l.root.conf.PanicSignal) {
panic("Signal-induced panic")
}
// Otherwise forward to root container.
deliveryMode := DeliverToProcess
if l.root.spec.Process.Terminal {
// Since we are running with a console, we should forward the signal to
// the foreground process group so that job control signals like ^C can
// be handled properly.
deliveryMode = DeliverToForegroundProcessGroup
}
log.Infof("Received external signal %d, mode: %s", sig, deliveryMode)
if err := l.signal(l.sandboxID, 0, int32(sig), deliveryMode); err != nil {
log.Warningf("error sending signal %s to container %q: %s", sig, l.sandboxID, err)
}
})
log.Infof("Process should have started...")
l.watchdog.Start()
if err := l.k.Start(); err != nil {
return err
}
l.state = started
return nil
}
// createSubcontainer creates a new container inside the sandbox.
func (l *Loader) createSubcontainer(cid string, tty *fd.FD) error {
l.mu.Lock()
defer l.mu.Unlock()
eid := execID{cid: cid}
if _, ok := l.processes[eid]; ok {
return fmt.Errorf("container %q already exists", cid)
}
l.processes[eid] = &execProcess{hostTTY: tty}
return nil
}
// startSubcontainer starts a child container. It returns the thread group ID of
// the newly created process. Used FDs are either closed or released. It's safe
// for the caller to close any remaining files upon return.
func (l *Loader) startSubcontainer(spec *specs.Spec, conf *config.Config, cid string, stdioFDs, goferFDs, goferFilestoreFDs []*fd.FD, devGoferFD *fd.FD, goferMountConfs []GoferMountConf) error {
l.mu.Lock()
defer l.mu.Unlock()
ep := l.processes[execID{cid: cid}]
if ep == nil {
return fmt.Errorf("trying to start a deleted container %q", cid)
}
// Create credentials. We reuse the root user namespace because the
// sentry currently supports only 1 mount namespace, which is tied to a
// single user namespace. Thus we must run in the same user namespace
// to access mounts.
creds := getRootCredentials(spec, conf, l.k.RootUserNamespace())
if creds == nil {
return fmt.Errorf("getting root credentials")
}
var pidns *kernel.PIDNamespace
if ns, ok := specutils.GetNS(specs.PIDNamespace, spec); ok {
if ns.Path != "" {
for _, p := range l.processes {
if ns.Path == p.pidnsPath {
log.Debugf("Joining PID namespace named %q", ns.Path)
pidns = p.tg.PIDNamespace()
break
}
}
}
if pidns == nil {
log.Warningf("PID namespace %q not found, running in new PID namespace", ns.Path)
pidns = l.k.RootPIDNamespace().NewChild(l.k.RootUserNamespace())
}
ep.pidnsPath = ns.Path
} else {
pidns = l.k.RootPIDNamespace()
}
containerName := l.registerContainerLocked(spec, cid)
l.k.RegisterContainerName(cid, containerName)
info := &containerInfo{
cid: cid,
containerName: containerName,
conf: conf,
spec: spec,
goferFDs: goferFDs,
devGoferFD: devGoferFD,
goferFilestoreFDs: goferFilestoreFDs,
goferMountConfs: goferMountConfs,
nvidiaUVMDevMajor: l.root.nvidiaUVMDevMajor,
nvidiaDriverVersion: l.root.nvidiaDriverVersion,
}
var err error
info.procArgs, err = createProcessArgs(cid, spec, conf, creds, l.k, pidns)
if err != nil {
return fmt.Errorf("creating new process: %w", err)
}
// Use stdios or TTY depending on the spec configuration.
if spec.Process.Terminal {
if l := len(stdioFDs); l != 0 {
return fmt.Errorf("using TTY, stdios not expected: %d", l)
}
if ep.hostTTY == nil {
return fmt.Errorf("terminal enabled but no TTY provided. Did you set --console-socket on create?")
}
info.stdioFDs = []*fd.FD{ep.hostTTY, ep.hostTTY, ep.hostTTY}
ep.hostTTY = nil
} else {
info.stdioFDs = stdioFDs
}
var cu cleanup.Cleanup
defer cu.Clean()
if devGoferFD != nil {
cu.Add(func() {
// createContainerProcess() will consume devGoferFD and initialize a gofer
// connection. This connection is owned by l.k. In case of failure, we want
// to clean up this gofer connection so that the gofer process can exit.
l.k.RemoveDevGofer(containerName)
})
}
ep.tg, ep.tty, err = l.createContainerProcess(info)
if err != nil {
return err
}
if seccheck.Global.Enabled(seccheck.PointContainerStart) {
evt := pb.Start{
Id: cid,
Cwd: spec.Process.Cwd,
Args: spec.Process.Args,
Terminal: spec.Process.Terminal,
}
fields := seccheck.Global.GetFieldSet(seccheck.PointContainerStart)
if fields.Local.Contains(seccheck.FieldContainerStartEnv) {
evt.Env = spec.Process.Env
}
if !fields.Context.Empty() {
evt.ContextData = &pb.ContextData{}
kernel.LoadSeccheckData(ep.tg.Leader(), fields.Context, evt.ContextData)
}
_ = seccheck.Global.SentToSinks(func(c seccheck.Sink) error {
return c.ContainerStart(context.Background(), fields, &evt)
})
}
l.k.StartProcess(ep.tg)
// No more failures from this point on.
cu.Release()
return nil
}
// +checklocks:l.mu
func (l *Loader) createContainerProcess(info *containerInfo) (*kernel.ThreadGroup, *host.TTYFileDescription, error) {
// Create the FD map, which will set stdin, stdout, and stderr.
ctx := info.procArgs.NewContext(l.k)
fdTable, ttyFile, err := createFDTable(ctx, info.spec.Process.Terminal, info.stdioFDs, info.passFDs, info.spec.Process.User, info.containerName)
if err != nil {
return nil, nil, fmt.Errorf("importing fds: %w", err)
}
// CreateProcess takes a reference on fdTable if successful. We won't need
// ours either way.
info.procArgs.FDTable = fdTable
if ttyFile != nil {
info.procArgs.TTY = ttyFile.TTY()
}
if info.execFD != nil {
if info.procArgs.Filename != "" {
return nil, nil, fmt.Errorf("process must either be started from a file or a filename, not both")
}
file, err := host.NewFD(ctx, l.k.HostMount(), info.execFD.FD(), &host.NewFDOptions{
Readonly: true,
Savable: true,
VirtualOwner: true,
UID: auth.KUID(info.spec.Process.User.UID),
GID: auth.KGID(info.spec.Process.User.GID),
})
if err != nil {
return nil, nil, err
}
defer file.DecRef(ctx)
info.execFD.Release()
info.procArgs.File = file
}
// Gofer FDs must be ordered and the first FD is always the rootfs.
if len(info.goferFDs) < 1 {
return nil, nil, fmt.Errorf("rootfs gofer FD not found")
}
l.startGoferMonitor(info)
if l.root.cid == l.sandboxID {
// Mounts cgroups for all the controllers.
if err := l.mountCgroupMounts(info.conf, info.procArgs.Credentials); err != nil {
return nil, nil, err
}
}
// We can share l.sharedMounts with containerMounter since l.mu is locked.
// Hence, mntr must only be used within this function (while l.mu is locked).
mntr := newContainerMounter(info, l.k, l.mountHints, l.sharedMounts, l.productName, l.sandboxID)
if err := setupContainerVFS(ctx, info, mntr, &info.procArgs); err != nil {
return nil, nil, err
}
defer func() {
for cg := range info.procArgs.InitialCgroups {
cg.Dentry.DecRef(ctx)
}
}()
// Add the HOME environment variable if it is not already set.
info.procArgs.Envv, err = user.MaybeAddExecUserHome(ctx, info.procArgs.MountNamespace,
info.procArgs.Credentials.RealKUID, info.procArgs.Envv)
if err != nil {
return nil, nil, err
}
// Create and start the new process.
tg, _, err := l.k.CreateProcess(info.procArgs)
if err != nil {
return nil, nil, fmt.Errorf("creating process: %w", err)
}
// CreateProcess takes a reference on FDTable if successful.
info.procArgs.FDTable.DecRef(ctx)
// Install seccomp filters with the new task if there are any.
if info.conf.OCISeccomp {
if info.spec.Linux != nil && info.spec.Linux.Seccomp != nil {
program, err := seccomp.BuildProgram(info.spec.Linux.Seccomp)
if err != nil {
return nil, nil, fmt.Errorf("building seccomp program: %w", err)
}
if log.IsLogging(log.Debug) {
out, _ := bpf.DecodeProgram(program)
log.Debugf("Installing OCI seccomp filters\nProgram:\n%s", out)
}
task := tg.Leader()
// NOTE: It seems Flags are ignored by runc so we ignore them too.
if err := task.AppendSyscallFilter(program, true); err != nil {
return nil, nil, fmt.Errorf("appending seccomp filters: %w", err)
}
}
} else {
if info.spec.Linux != nil && info.spec.Linux.Seccomp != nil {
log.Warningf("Seccomp spec is being ignored")
}
}
return tg, ttyFile, nil
}
// startGoferMonitor runs a goroutine to monitor gofer's health. It polls on
// the gofer FD looking for disconnects, and kills the container processes if
// the gofer connection disconnects.
func (l *Loader) startGoferMonitor(info *containerInfo) {
// We need to pick a suitable gofer connection that is expected to be alive
// for the entire container lifecycle. Only the following can be used:
// 1. Rootfs gofer connection
// 2. Device gofer connection
//
// Note that other gofer mounts are allowed to be unmounted and disconnected.
goferFD := -1
if info.goferMountConfs[0].ShouldUseLisafs() {
goferFD = info.goferFDs[0].FD()
} else if info.devGoferFD != nil {
goferFD = info.devGoferFD.FD()
}
if goferFD < 0 {
log.Warningf("could not find a suitable gofer FD to monitor")
return
}
go func() {
log.Debugf("Monitoring gofer health for container %q", info.cid)
events := []unix.PollFd{
{
Fd: int32(goferFD),
Events: unix.POLLHUP | unix.POLLRDHUP,
},
}
_, _, err := specutils.RetryEintr(func() (uintptr, uintptr, error) {
// Use ppoll instead of poll because it's already allowed in seccomp.
n, err := unix.Ppoll(events, nil, nil)
return uintptr(n), 0, err
})
if err != nil {
panic(fmt.Sprintf("Error monitoring gofer FDs: %s", err))
}
l.mu.Lock()
defer l.mu.Unlock()
// The gofer could have been stopped due to a normal container shutdown.
// Check if the container has not stopped yet.
if tg, _ := l.tryThreadGroupFromIDLocked(execID{cid: info.cid}); tg != nil {
log.Infof("Gofer socket disconnected, killing container %q", info.cid)
if err := l.signalAllProcesses(info.cid, int32(linux.SIGKILL)); err != nil {
log.Warningf("Error killing container %q after gofer stopped: %s", info.cid, err)
}
}
}()
}
// destroySubcontainer stops a container if it is still running and cleans up
// its filesystem.
func (l *Loader) destroySubcontainer(cid string) error {
l.mu.Lock()
defer l.mu.Unlock()
tg, err := l.tryThreadGroupFromIDLocked(execID{cid: cid})
if err != nil {
// Container doesn't exist.
return err
}
// The container exists, but has it been started?
if tg != nil {
if err := l.signalAllProcesses(cid, int32(linux.SIGKILL)); err != nil {
return fmt.Errorf("sending SIGKILL to all container processes: %w", err)
}
// Wait for all processes that belong to the container to exit (including
// exec'd processes).
for _, t := range l.k.TaskSet().Root.Tasks() {
if t.ContainerID() == cid {
t.ThreadGroup().WaitExited()
}
}
}
// No more failure from this point on.
// Remove all container thread groups from the map.
for key := range l.processes {
if key.cid == cid {
delete(l.processes, key)
}
}
// Cleanup the device gofer.
l.k.RemoveDevGofer(l.k.ContainerName(cid))
log.Debugf("Container destroyed, cid: %s", cid)
return nil
}
func (l *Loader) executeAsync(args *control.ExecArgs) (kernel.ThreadID, error) {
// Hold the lock for the entire operation to ensure that exec'd process is
// added to 'processes' in case it races with destroyContainer().
l.mu.Lock()
defer l.mu.Unlock()
tg, err := l.tryThreadGroupFromIDLocked(execID{cid: args.ContainerID})
if err != nil {
return 0, err
}
if tg == nil {
return 0, fmt.Errorf("container %q not started", args.ContainerID)
}
// Get the container MountNamespace from the Task. Try to acquire ref may fail
// in case it raced with task exit.
// task.MountNamespace() does not take a ref, so we must do so ourselves.
args.MountNamespace = tg.Leader().MountNamespace()
if args.MountNamespace == nil || !args.MountNamespace.TryIncRef() {
return 0, fmt.Errorf("container %q has stopped", args.ContainerID)
}
sctx := l.k.SupervisorContext()
root := args.MountNamespace.Root(sctx)
defer root.DecRef(sctx)
ctx := vfs.WithRoot(sctx, root)
defer args.MountNamespace.DecRef(ctx)
args.Envv, err = specutils.ResolveEnvs(args.Envv)
if err != nil {
return 0, fmt.Errorf("resolving env: %w", err)
}
// Add the HOME environment variable if it is not already set.
args.Envv, err = user.MaybeAddExecUserHome(ctx, args.MountNamespace, args.KUID, args.Envv)
if err != nil {
return 0, err
}
args.PIDNamespace = tg.PIDNamespace()
args.Limits, err = createLimitSet(l.root.spec, specutils.TPUProxyIsEnabled(l.root.spec, l.root.conf))
if err != nil {
return 0, fmt.Errorf("creating limits: %w", err)
}
// Start the process.
proc := control.Proc{Kernel: l.k}
newTG, tgid, ttyFile, err := control.ExecAsync(&proc, args)
if err != nil {
return 0, err
}
eid := execID{cid: args.ContainerID, pid: tgid}
l.processes[eid] = &execProcess{
tg: newTG,
tty: ttyFile,
}
log.Debugf("updated processes: %v", l.processes)
return tgid, nil
}
// waitContainer waits for the init process of a container to exit.
func (l *Loader) waitContainer(cid string, waitStatus *uint32) error {
// Don't defer unlock, as doing so would make it impossible for
// multiple clients to wait on the same container.
key := execID{cid: cid}
tg, err := l.threadGroupFromID(key)
if err != nil {
l.mu.Lock()
// Extra handling is needed if the container is restoring.
if l.state != restoring {
l.mu.Unlock()
return err
}
// Container could be restoring, first check if container exists.
if _, err := l.findProcessLocked(key); err != nil {
l.mu.Unlock()
return err
}
log.Infof("Waiting for container being restored, CID: %q", cid)
l.restoreWaiters.Wait()
l.mu.Unlock()
log.Infof("Restore is completed, trying to wait for container %q again.", cid)
return l.waitContainer(cid, waitStatus)
}
// If the thread either has already exited or exits during waiting,
// consider the container exited.
ws := l.wait(tg)
*waitStatus = ws
// Check for leaks and write coverage report after the root container has
// exited. This guarantees that the report is written in cases where the
// sandbox is killed by a signal after the ContMgrWait request is completed.
if l.root.procArgs.ContainerID == cid {
// All sentry-created resources should have been released at this point.
_ = coverage.Report()
}
return nil
}
func (l *Loader) waitPID(tgid kernel.ThreadID, cid string, waitStatus *uint32) error {
if tgid <= 0 {
return fmt.Errorf("PID (%d) must be positive", tgid)
}
// Try to find a process that was exec'd
eid := execID{cid: cid, pid: tgid}
execTG, err := l.threadGroupFromID(eid)
if err == nil {
ws := l.wait(execTG)
*waitStatus = ws
l.mu.Lock()
delete(l.processes, eid)
log.Debugf("updated processes (removal): %v", l.processes)
l.mu.Unlock()
return nil
}
// The caller may be waiting on a process not started directly via exec.
// In this case, find the process in the container's PID namespace.
initTG, err := l.threadGroupFromID(execID{cid: cid})
if err != nil {
return fmt.Errorf("waiting for PID %d: %w", tgid, err)
}
tg := initTG.PIDNamespace().ThreadGroupWithID(tgid)
if tg == nil {
return fmt.Errorf("waiting for PID %d: no such process", tgid)
}
if tg.Leader().ContainerID() != cid {
return fmt.Errorf("process %d is part of a different container: %q", tgid, tg.Leader().ContainerID())
}
ws := l.wait(tg)
*waitStatus = ws
return nil
}
// wait waits for the process with TGID 'tgid' in a container's PID namespace
// to exit.
func (l *Loader) wait(tg *kernel.ThreadGroup) uint32 {
tg.WaitExited()
return uint32(tg.ExitStatus())
}
// WaitForStartSignal waits for a start signal from the control server.
func (l *Loader) WaitForStartSignal() {
<-l.ctrl.manager.startChan
}
// WaitExit waits for the root container to exit, and returns its exit status.
func (l *Loader) WaitExit() linux.WaitStatus {
// Wait for container.
l.k.WaitExited()
return l.k.GlobalInit().ExitStatus()
}
func newRootNetworkNamespace(conf *config.Config, clock tcpip.Clock, userns *auth.UserNamespace) (*inet.Namespace, error) {
// Create an empty network stack because the network namespace may be empty at
// this point. Netns is configured before Run() is called. Netstack is
// configured using a control uRPC message. Host network is configured inside
// Run().
switch conf.Network {
case config.NetworkHost:
// If configured for raw socket support with host network
// stack, make sure that we have CAP_NET_RAW the host,
// otherwise we can't make raw sockets.
if conf.EnableRaw && !specutils.HasCapabilities(capability.CAP_NET_RAW) {
return nil, fmt.Errorf("configuring network=host with raw sockets requires CAP_NET_RAW capability")
}
// No network namespacing support for hostinet yet, hence creator is nil.
return inet.NewRootNamespace(hostinet.NewStack(), nil, userns), nil
case config.NetworkNone, config.NetworkSandbox:
s, err := newEmptySandboxNetworkStack(clock, conf.AllowPacketEndpointWrite)
if err != nil {
return nil, err
}
creator := &sandboxNetstackCreator{
clock: clock,
allowPacketEndpointWrite: conf.AllowPacketEndpointWrite,
}
return inet.NewRootNamespace(s, creator, userns), nil
case config.NetworkPlugin:
return inet.NewRootNamespace(plugin.GetPluginStack(), nil, userns), nil
default:
panic(fmt.Sprintf("invalid network configuration: %v", conf.Network))
}
}
func newEmptySandboxNetworkStack(clock tcpip.Clock, allowPacketEndpointWrite bool) (*netstack.Stack, error) {
netProtos := []stack.NetworkProtocolFactory{ipv4.NewProtocol, ipv6.NewProtocol, arp.NewProtocol}
transProtos := []stack.TransportProtocolFactory{
tcp.NewProtocol,
udp.NewProtocol,
icmp.NewProtocol4,
icmp.NewProtocol6,
}
s := netstack.Stack{Stack: stack.New(stack.Options{
NetworkProtocols: netProtos,
TransportProtocols: transProtos,
Clock: clock,
Stats: netstack.Metrics,
HandleLocal: true,
// Enable raw sockets for users with sufficient
// privileges.
RawFactory: raw.EndpointFactory{},
AllowPacketEndpointWrite: allowPacketEndpointWrite,
DefaultIPTables: netfilter.DefaultLinuxTables,
})}
// Enable SACK Recovery.
{
opt := tcpip.TCPSACKEnabled(true)
if err := s.Stack.SetTransportProtocolOption(tcp.ProtocolNumber, &opt); err != nil {
return nil, fmt.Errorf("SetTransportProtocolOption(%d, &%T(%t)): %s", tcp.ProtocolNumber, opt, opt, err)
}
}
// Set default TTLs as required by socket/netstack.
{
opt := tcpip.DefaultTTLOption(netstack.DefaultTTL)
if err := s.Stack.SetNetworkProtocolOption(ipv4.ProtocolNumber, &opt); err != nil {
return nil, fmt.Errorf("SetNetworkProtocolOption(%d, &%T(%d)): %s", ipv4.ProtocolNumber, opt, opt, err)
}
if err := s.Stack.SetNetworkProtocolOption(ipv6.ProtocolNumber, &opt); err != nil {
return nil, fmt.Errorf("SetNetworkProtocolOption(%d, &%T(%d)): %s", ipv6.ProtocolNumber, opt, opt, err)
}
}
// Enable Receive Buffer Auto-Tuning.
{
opt := tcpip.TCPModerateReceiveBufferOption(true)
if err := s.Stack.SetTransportProtocolOption(tcp.ProtocolNumber, &opt); err != nil {
return nil, fmt.Errorf("SetTransportProtocolOption(%d, &%T(%t)): %s", tcp.ProtocolNumber, opt, opt, err)
}
}
return &s, nil
}
// sandboxNetstackCreator implements kernel.NetworkStackCreator.
//
// +stateify savable
type sandboxNetstackCreator struct {
clock tcpip.Clock
allowPacketEndpointWrite bool
}
// CreateStack implements kernel.NetworkStackCreator.CreateStack.
func (f *sandboxNetstackCreator) CreateStack() (inet.Stack, error) {
s, err := newEmptySandboxNetworkStack(f.clock, f.allowPacketEndpointWrite)
if err != nil {
return nil, err
}
// Setup loopback.
n := &Network{Stack: s.Stack}
nicID := s.Stack.NextNICID()
if nicID != linux.LOOPBACK_IFINDEX {
return nil, fmt.Errorf("loopback device should always have index %d, got %d", linux.LOOPBACK_IFINDEX, nicID)
}
link := DefaultLoopbackLink
linkEP := ethernet.New(loopback.New())
opts := stack.NICOptions{
Name: link.Name,
DeliverLinkPackets: true,
}
if err := n.createNICWithAddrs(nicID, linkEP, opts, link.Addresses); err != nil {
return nil, err
}
return s, nil
}
// signal sends a signal to one or more processes in a container. If PID is 0,
// then the container init process is used. Depending on the SignalDeliveryMode
// option, the signal may be sent directly to the indicated process, to all
// processes in the container, or to the foreground process group. pid is
// relative to the root PID namespace, not the container's.
func (l *Loader) signal(cid string, pid, signo int32, mode SignalDeliveryMode) error {
if pid < 0 {
return fmt.Errorf("PID (%d) must be positive", pid)
}
switch mode {
case DeliverToProcess:
if err := l.signalProcess(cid, kernel.ThreadID(pid), signo); err != nil {
return fmt.Errorf("signaling process in container %q PID %d: %w", cid, pid, err)
}
return nil
case DeliverToForegroundProcessGroup:
if err := l.signalForegrondProcessGroup(cid, kernel.ThreadID(pid), signo); err != nil {
return fmt.Errorf("signaling foreground process group in container %q PID %d: %w", cid, pid, err)
}
return nil
case DeliverToAllProcesses:
if pid != 0 {
return fmt.Errorf("PID (%d) cannot be set when signaling all processes", pid)
}
// Check that the container has actually started before signaling it.
if _, err := l.threadGroupFromID(execID{cid: cid}); err != nil {
return err
}
if err := l.signalAllProcesses(cid, signo); err != nil {
return fmt.Errorf("signaling all processes in container %q: %w", cid, err)
}
return nil
default:
panic(fmt.Sprintf("unknown signal delivery mode %v", mode))
}
}
// signalProcess sends signal to process in the given container. tgid is
// relative to the root PID namespace, not the container's.
func (l *Loader) signalProcess(cid string, tgid kernel.ThreadID, signo int32) error {
execTG, err := l.threadGroupFromID(execID{cid: cid, pid: tgid})
if err == nil {
// Send signal directly to the identified process.
return l.k.SendExternalSignalThreadGroup(execTG, &linux.SignalInfo{Signo: signo})
}
// The caller may be signaling a process not started directly via exec.
// In this case, find the process and check that the process belongs to the
// container in question.
tg := l.k.RootPIDNamespace().ThreadGroupWithID(tgid)
if tg == nil {
return fmt.Errorf("no such process with PID %d", tgid)
}
if tg.Leader().ContainerID() != cid {
return fmt.Errorf("process %d belongs to a different container: %q", tgid, tg.Leader().ContainerID())
}
return l.k.SendExternalSignalThreadGroup(tg, &linux.SignalInfo{Signo: signo})
}
// signalForegrondProcessGroup looks up foreground process group from the TTY
// for the given "tgid" inside container "cid", and send the signal to it.
func (l *Loader) signalForegrondProcessGroup(cid string, tgid kernel.ThreadID, signo int32) error {
l.mu.Lock()
tg, err := l.tryThreadGroupFromIDLocked(execID{cid: cid, pid: tgid})
if err != nil {
l.mu.Unlock()
return fmt.Errorf("no thread group found: %w", err)
}
if tg == nil {
l.mu.Unlock()
return fmt.Errorf("container %q not started", cid)
}
tty, err := l.ttyFromIDLocked(execID{cid: cid, pid: tgid})
l.mu.Unlock()
if err != nil {
return fmt.Errorf("no thread group found: %w", err)
}
if tty == nil {
return fmt.Errorf("no TTY attached")
}
si := &linux.SignalInfo{Signo: signo}
ttyTg := tty.ThreadGroup()
if ttyTg == nil {
// No thread group has been set. Signal the original thread
// group.
log.Warningf("No thread group for container %q and PID %d. Sending signal directly to PID %d.", cid, tgid, tgid)
return l.k.SendExternalSignalThreadGroup(tg, si)
}
pg, _ := ttyTg.ForegroundProcessGroup(tty.TTY())
if pg == nil {
// No foreground process group has been set. Signal the
// original thread group.
log.Warningf("No foreground process group for container %q and PID %d. Sending signal directly to PID %d.", cid, tgid, tgid)
return l.k.SendExternalSignalThreadGroup(tg, si)
}
// Send the signal to all processes in the process group.
return l.k.SendExternalSignalProcessGroup(pg, si)
}
// signalAllProcesses that belong to specified container. It's a noop if the
// container hasn't started or has exited.
func (l *Loader) signalAllProcesses(cid string, signo int32) error {
// Pause the kernel to prevent new processes from being created while
// the signal is delivered. This prevents process leaks when SIGKILL is
// sent to the entire container.
l.k.Pause()
defer l.k.Unpause()
return l.k.SendContainerSignal(cid, &linux.SignalInfo{Signo: signo})
}
// threadGroupFromID is similar to tryThreadGroupFromIDLocked except that it
// acquires mutex before calling it and fails in case container hasn't started
// yet.
func (l *Loader) threadGroupFromID(key execID) (*kernel.ThreadGroup, error) {
l.mu.Lock()
defer l.mu.Unlock()
tg, err := l.tryThreadGroupFromIDLocked(key)
if err != nil {
return nil, err
}
if tg == nil {
return nil, fmt.Errorf("container %q not started", key.cid)
}
return tg, nil
}
// tryThreadGroupFromIDLocked returns the thread group for the given execution
// ID. It may return nil in case the container has not started yet. Returns
// error if execution ID is invalid or if the container cannot be found (maybe
// it has been deleted).
// +checklocks:l.mu
func (l *Loader) tryThreadGroupFromIDLocked(key execID) (*kernel.ThreadGroup, error) {
ep, err := l.findProcessLocked(key)
if err != nil {
return nil, err
}
return ep.tg, nil
}
// ttyFromIDLocked returns the TTY files for the given execution ID. It may
// return nil in case the container has not started yet. Returns error if
// execution ID is invalid or if the container cannot be found (maybe it has
// been deleted).
// +checklocks:l.mu
func (l *Loader) ttyFromIDLocked(key execID) (*host.TTYFileDescription, error) {
ep, err := l.findProcessLocked(key)
if err != nil {
return nil, err
}
return ep.tty, nil
}
func createFDTable(ctx context.Context, console bool, stdioFDs []*fd.FD, passFDs []fdMapping, user specs.User, containerName string) (*kernel.FDTable, *host.TTYFileDescription, error) {
if len(stdioFDs) != 3 {
return nil, nil, fmt.Errorf("stdioFDs should contain exactly 3 FDs (stdin, stdout, and stderr), but %d FDs received", len(stdioFDs))
}
fdMap := map[int]*fd.FD{
0: stdioFDs[0],
1: stdioFDs[1],
2: stdioFDs[2],
}
// Create the entries for the host files that were passed to our app.
for _, customFD := range passFDs {
if customFD.guest < 0 {
return nil, nil, fmt.Errorf("guest file descriptors must be 0 or greater")
}
fdMap[customFD.guest] = customFD.host
}
k := kernel.KernelFromContext(ctx)
fdTable := k.NewFDTable()
opts := fdimport.ImportOptions{
Console: console,
Restorable: true,
UID: auth.KUID(user.UID),
GID: auth.KGID(user.GID),
ContainerName: containerName,
}
ttyFile, err := fdimport.Import(ctx, fdTable, fdMap, opts)
if err != nil {
fdTable.DecRef(ctx)
return nil, nil, err
}
return fdTable, ttyFile, nil
}
// portForward implements initiating a portForward connection in the sandbox. portForwardProxies
// represent a two connections each copying to each other (read ends to write ends) in goroutines.
// The proxies are stored and can be cleaned up, or clean up after themselves if the connection
// is broken.
func (l *Loader) portForward(opts *PortForwardOpts) error {
// Validate that we have a stream FD to write to. If this happens then
// it means there is a misbehaved urpc client or a bug has occurred.
if len(opts.Files) != 1 {
return fmt.Errorf("stream FD is required for port forward")
}
l.mu.Lock()
defer l.mu.Unlock()
cid := opts.ContainerID
tg, err := l.tryThreadGroupFromIDLocked(execID{cid: cid})
if err != nil {
return fmt.Errorf("failed to get threadgroup from %q: %w", cid, err)
}
if tg == nil {
return fmt.Errorf("container %q not started", cid)
}
// Import the fd for the UDS.
ctx := l.k.SupervisorContext()
fd, err := l.importFD(ctx, opts.Files[0])
if err != nil {
return fmt.Errorf("importing stream fd: %w", err)
}
cu := cleanup.Make(func() { fd.DecRef(ctx) })
defer cu.Clean()
fdConn := pf.NewFileDescriptionConn(fd)
// Create a proxy to forward data between the fdConn and the sandboxed application.
pair := pf.ProxyPair{To: fdConn}
switch l.root.conf.Network {
case config.NetworkSandbox:
stack := l.k.RootNetworkNamespace().Stack().(*netstack.Stack).Stack
nsConn, err := pf.NewNetstackConn(stack, opts.Port)
if err != nil {
return fmt.Errorf("creating netstack port forward connection: %w", err)
}
pair.From = nsConn
case config.NetworkHost:
hConn, err := pf.NewHostInetConn(opts.Port)
if err != nil {
return fmt.Errorf("creating hostinet port forward connection: %w", err)
}
pair.From = hConn
default:
return fmt.Errorf("unsupported network type %q for container %q", l.root.conf.Network, cid)
}
cu.Release()
proxy := pf.NewProxy(pair, opts.ContainerID)
// Add to the list of port forward connections and remove when the
// connection closes.
l.portForwardProxies = append(l.portForwardProxies, proxy)
proxy.AddCleanup(func() {
l.mu.Lock()
defer l.mu.Unlock()
for i := range l.portForwardProxies {
if l.portForwardProxies[i] == proxy {
l.portForwardProxies = append(l.portForwardProxies[:i], l.portForwardProxies[i+1:]...)
break
}
}
})
// Start forwarding on the connection.
proxy.Start(ctx)
return nil
}
// importFD generically imports a host file descriptor without adding it to any
// fd table.
func (l *Loader) importFD(ctx context.Context, f *os.File) (*vfs.FileDescription, error) {
hostFD, err := fd.NewFromFile(f)
if err != nil {
return nil, err
}
defer hostFD.Close()
fd, err := host.NewFD(ctx, l.k.HostMount(), hostFD.FD(), &host.NewFDOptions{
Savable: false, // We disconnect and close on save.
IsTTY: false,
VirtualOwner: false, // FD not visible to the sandboxed app so user can't be changed.
})
if err != nil {
return nil, err
}
hostFD.Release()
return fd, nil
}
func (l *Loader) containerCount() int {
l.mu.Lock()
defer l.mu.Unlock()
containers := 0
for id := range l.processes {
if id.pid == 0 {
// pid==0 represents the init process of a container. There is
// only one of such process per container.
containers++
}
}
return containers
}
func (l *Loader) pidsCount(cid string) (int, error) {
l.mu.Lock()
defer l.mu.Unlock()
if _, err := l.tryThreadGroupFromIDLocked(execID{cid: cid}); err != nil {
// Container doesn't exist.
return 0, err
}
return l.k.TaskSet().Root.NumTasksPerContainer(cid), nil
}
func (l *Loader) networkStats() ([]*NetworkInterface, error) {
var stats []*NetworkInterface
stack := l.k.RootNetworkNamespace().Stack()
for _, i := range stack.Interfaces() {
var stat inet.StatDev
if err := stack.Statistics(&stat, i.Name); err != nil {
return nil, err
}
stats = append(stats, &NetworkInterface{
Name: i.Name,
RxBytes: stat[0],
RxPackets: stat[1],
RxErrors: stat[2],
RxDropped: stat[3],
TxBytes: stat[8],
TxPackets: stat[9],
TxErrors: stat[10],
TxDropped: stat[11],
})
}
return stats, nil
}
// +checklocks:l.mu
func (l *Loader) findProcessLocked(key execID) (*execProcess, error) {
ep := l.processes[key]
if ep == nil {
return nil, fmt.Errorf("container %q not found", key.cid)
}
return ep, nil
}
func (l *Loader) registerContainer(spec *specs.Spec, cid string) string {
l.mu.Lock()
defer l.mu.Unlock()
return l.registerContainerLocked(spec, cid)
}
// +checklocks:l.mu
func (l *Loader) registerContainerLocked(spec *specs.Spec, cid string) string {
containerName := specutils.ContainerName(spec)
if len(containerName) == 0 {
// If no name was provided, require containers to be restored in the same order
// they were created.
containerName = "__no_name_" + strconv.Itoa(len(l.containerIDs))
}
l.containerIDs[containerName] = cid
l.containerSpecs[containerName] = spec
return containerName
}
func (l *Loader) getContainerSpec(containerName string) *specs.Spec {
l.mu.Lock()
defer l.mu.Unlock()
return l.containerSpecs[containerName]
}
func (l *Loader) containerRuntimeState(cid string) ContainerRuntimeState {
l.mu.Lock()
defer l.mu.Unlock()
exec, ok := l.processes[execID{cid: cid}]
if !ok {
// Can't distinguish between invalid CID and stopped container, assume that
// CID is valid.
return RuntimeStateStopped
}
if exec.tg == nil {
// Container has no thread group assigned, so it has started yet.
return RuntimeStateCreating
}
if exec.tg.Leader().ExitState() == kernel.TaskExitNone {
// Init process is still running.
return RuntimeStateRunning
}
// Init process has stopped, but no one has called wait on it yet.
return RuntimeStateStopped
}
// addContainerSpecsToCheckpoint adds the container specs to the kernel.
func (l *Loader) addContainerSpecsToCheckpoint() {
l.mu.Lock()
s := l.containerSpecs
l.mu.Unlock()
specsMap := make(map[string][]byte)
for k, v := range s {
data, err := json.Marshal(v)
if err != nil {
log.Warningf("json marshal error for specs %v", err)
return
}
specsMap[k] = data
}
l.k.AddStateToCheckpoint(containerSpecsKey, specsMap)
}
// popContainerSpecsFromCheckpoint pops all the container specs from the kernel.
func popContainerSpecsFromCheckpoint(k *kernel.Kernel) (map[string]*specs.Spec, error) {
specsMap := (k.PopCheckpointState(containerSpecsKey)).(map[string][]byte)
oldSpecs := make(map[string]*specs.Spec)
for k, v := range specsMap {
var s specs.Spec
if err := json.Unmarshal(v, &s); err != nil {
return nil, fmt.Errorf("json unmarshal error for specs %v", err)
}
oldSpecs[k] = &s
}
return oldSpecs, nil
}
Reference in New Issue View Git Blame Copy Permalink