Gitiles
Code Review Sign In
gerrit.openfyde.cn / chromium.googlesource.com / chromiumos / platform2 / d6faa01231f66a4ce947d6b9df5ac133c0ce2981 / . / patchpanel / crostini_service.cc
blob: 488274cad85238046187deb807951893aa644d11 [file] [log] [blame]
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]1// Copyright 2019 The Chromium OS Authors. All rights reserved.
2// Use of this source code is governed by a BSD-style license that can be
3// found in the LICENSE file.
4
Garrick Evans3388a032020-03-24 11:25:55 +0900[diff] [blame]5#include "patchpanel/crostini_service.h"
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]6
7#include <memory>
8#include <utility>
9
Qijiang Fan713061e2021-03-08 15:45:12 +0900[diff] [blame]10#include <base/check.h>
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]11#include <base/strings/string_number_conversions.h>
Garrick Evans02e6e872020-11-30 11:53:13 +0900[diff] [blame]12#include <base/strings/string_split.h>
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]13#include <base/strings/string_util.h>
14#include <base/strings/stringprintf.h>
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]15#include "base/threading/thread_task_runner_handle.h"
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]16#include <chromeos/constants/vm_tools.h>
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]17#include <chromeos/dbus/service_constants.h>
18#include <dbus/message.h>
19#include <dbus/object_path.h>
Hugo Benichi69c989d2021-03-01 00:23:39 +0900[diff] [blame]20#include <dbus/object_proxy.h>
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]21
Garrick Evans3388a032020-03-24 11:25:55 +0900[diff] [blame]22#include "patchpanel/adb_proxy.h"
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]23
Garrick Evans3388a032020-03-24 11:25:55 +0900[diff] [blame]24namespace patchpanel {
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]25namespace {
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]26constexpr int32_t kInvalidID = 0;
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]27constexpr int kDbusTimeoutMs = 200;
Jason Jeremy Iman10314a82020-05-12 00:09:53 +0900[diff] [blame]28// The maximum number of ADB sideloading query failures before stopping.
29constexpr int kAdbSideloadMaxTry = 5;
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]30constexpr base::TimeDelta kAdbSideloadUpdateDelay =
31 base::TimeDelta::FromMilliseconds(5000);
Jason Jeremy Imanbb8787e2019-12-13 14:08:20 +0900[diff] [blame]32
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]33std::string MakeKey(uint64_t vm_id, bool is_termina) {
34 return base::StringPrintf("%s:%s", is_termina ? "t" : "p",
35 base::NumberToString(vm_id).c_str());
36}
Garrick Evans1b1f67c2020-02-04 16:21:25 +0900[diff] [blame]37
Garrick Evans02e6e872020-11-30 11:53:13 +0900[diff] [blame]38bool ParseKey(const std::string& key, uint64_t* vm_id, bool* is_termina) {
39 auto s =
40 base::SplitString(key, ":", base::TRIM_WHITESPACE, base::SPLIT_WANT_ALL);
Jason Jeremy Imand6faa012021-04-05 09:15:38 +0900[diff] [blame^]41 if (s.size() != 2 || !base::StringToUint64(s[1], vm_id) ||
42 (s[0] != "t" && s[0] != "p")) {
Garrick Evans02e6e872020-11-30 11:53:13 +0900[diff] [blame]43 LOG(DFATAL) << "Invalid key: " + key;
44 return false;
45 }
46 *is_termina = s[0] == "t";
47 return true;
48}
49
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]50} // namespace
51
Garrick Evans209a80a2020-11-30 14:42:40 +0900[diff] [blame]52CrostiniService::CrostiniService(
Garrick Evans209a80a2020-11-30 14:42:40 +0900[diff] [blame]53 AddressManager* addr_mgr,
54 Datapath* datapath,
Garrick Evans209a80a2020-11-30 14:42:40 +0900[diff] [blame]55 Device::ChangeEventHandler device_changed_handler)
Hugo Benichi69c989d2021-03-01 00:23:39 +0900[diff] [blame]56 : addr_mgr_(addr_mgr),
Garrick Evans1b1f67c2020-02-04 16:21:25 +0900[diff] [blame]57 datapath_(datapath),
Garrick Evans209a80a2020-11-30 14:42:40 +0900[diff] [blame]58 device_changed_handler_(device_changed_handler),
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]59 adb_sideloading_enabled_(false) {
Garrick Evans1b1f67c2020-02-04 16:21:25 +0900[diff] [blame]60 DCHECK(addr_mgr_);
Garrick Evansf29f5a32019-12-06 11:34:25 +0900[diff] [blame]61 DCHECK(datapath_);
62
Jason Jeremy Imana7273a32020-08-04 11:25:31 +0900[diff] [blame]63 dbus::Bus::Options options;
64 options.bus_type = dbus::Bus::SYSTEM;
65
66 bus_ = new dbus::Bus(options);
67 if (!bus_->Connect()) {
68 LOG(ERROR) << "Failed to connect to system bus";
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]69 } else {
70 CheckAdbSideloadingStatus();
71 }
Garrick Evansf29f5a32019-12-06 11:34:25 +0900[diff] [blame]72}
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]73
Garrick Evansc1ac5c42020-03-31 15:31:22 +0900[diff] [blame]74CrostiniService::~CrostiniService() {
75 if (bus_)
76 bus_->ShutdownAndBlock();
77}
78
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]79bool CrostiniService::Start(uint64_t vm_id, bool is_termina, int subnet_index) {
80 if (vm_id == kInvalidID) {
81 LOG(ERROR) << "Invalid VM id";
Garrick Evansb1c93712020-01-22 09:28:25 +0900[diff] [blame]82 return false;
83 }
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]84
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]85 const auto key = MakeKey(vm_id, is_termina);
86 if (taps_.find(key) != taps_.end()) {
87 LOG(WARNING) << "Already started for {id: " << vm_id << "}";
Garrick Evansb1c93712020-01-22 09:28:25 +0900[diff] [blame]88 return false;
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]89 }
Garrick Evansb1c93712020-01-22 09:28:25 +0900[diff] [blame]90
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]91 auto tap = AddTAP(is_termina, subnet_index);
92 if (!tap) {
93 LOG(ERROR) << "Cannot start for {id: " << vm_id << "}";
94 return false;
95 }
Jason Jeremy Imanbb8787e2019-12-13 14:08:20 +0900[diff] [blame]96
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]97 LOG(INFO) << "Crostini network service started for {id: " << vm_id << "}";
Hugo Benichic6ae67c2020-08-14 15:02:13 +0900[diff] [blame]98 auto source = is_termina ? TrafficSource::CROSVM : TrafficSource::PLUGINVM;
99 datapath_->StartRoutingDevice("", tap->host_ifname(),
Hugo Benichi93306e52020-12-04 16:08:00 +0900[diff] [blame]100 tap->config().host_ipv4_addr(), source,
101 true /*route_on_vpn*/);
Garrick Evans6c7dcb82020-03-16 15:21:05 +0900[diff] [blame]102
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]103 if (adb_sideloading_enabled_)
Garrick Evans6c7dcb82020-03-16 15:21:05 +0900[diff] [blame]104 StartAdbPortForwarding(tap->phys_ifname());
105
Garrick Evans209a80a2020-11-30 14:42:40 +0900[diff] [blame]106 device_changed_handler_.Run(
107 *tap, Device::ChangeEvent::ADDED,
108 is_termina ? GuestMessage::TERMINA_VM : GuestMessage::PLUGIN_VM);
109
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]110 taps_.emplace(key, std::move(tap));
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]111 return true;
112}
113
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]114void CrostiniService::Stop(uint64_t vm_id, bool is_termina) {
115 const auto key = MakeKey(vm_id, is_termina);
116 const auto it = taps_.find(key);
Garrick Evansb1c93712020-01-22 09:28:25 +0900[diff] [blame]117 if (it == taps_.end()) {
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]118 LOG(WARNING) << "Unknown {id: " << vm_id << "}";
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]119 return;
120 }
121
Garrick Evans209a80a2020-11-30 14:42:40 +0900[diff] [blame]122 device_changed_handler_.Run(
123 *it->second, Device::ChangeEvent::REMOVED,
124 is_termina ? GuestMessage::TERMINA_VM : GuestMessage::PLUGIN_VM);
125
Garrick Evans6c7dcb82020-03-16 15:21:05 +0900[diff] [blame]126 const auto& ifname = it->second->host_ifname();
Hugo Benichic6ae67c2020-08-14 15:02:13 +0900[diff] [blame]127 auto source = is_termina ? TrafficSource::CROSVM : TrafficSource::PLUGINVM;
128 datapath_->StopRoutingDevice("", ifname,
Hugo Benichi93306e52020-12-04 16:08:00 +0900[diff] [blame]129 it->second->config().host_ipv4_addr(), source,
130 true /*route_on_vpn*/);
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]131 if (adb_sideloading_enabled_)
132 StopAdbPortForwarding(ifname);
Garrick Evans1b1f67c2020-02-04 16:21:25 +0900[diff] [blame]133 datapath_->RemoveInterface(ifname);
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]134 taps_.erase(key);
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]135
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]136 LOG(INFO) << "Crostini network service stopped for {id: " << vm_id << "}";
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]137}
138
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]139const Device* const CrostiniService::TAP(uint64_t vm_id,
140 bool is_termina) const {
141 const auto it = taps_.find(MakeKey(vm_id, is_termina));
Garrick Evansb1c93712020-01-22 09:28:25 +0900[diff] [blame]142 if (it == taps_.end()) {
143 return nullptr;
144 }
145 return it->second.get();
146}
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]147
Garrick Evans02e6e872020-11-30 11:53:13 +0900[diff] [blame]148void CrostiniService::ScanDevices(
149 base::RepeatingCallback<void(uint64_t, bool, const Device&)> callback)
150 const {
151 for (const auto& [key, dev] : taps_) {
152 uint64_t vm_id;
153 bool is_termina;
154 if (ParseKey(key, &vm_id, &is_termina))
155 callback.Run(vm_id, is_termina, *dev.get());
156 }
157}
158
Hugo Benichi69c989d2021-03-01 00:23:39 +0900[diff] [blame]159std::vector<const Device*> CrostiniService::GetDevices() const {
160 std::vector<const Device*> devices;
161 for (const auto& [_, dev] : taps_) {
162 devices.push_back(dev.get());
163 }
164 return devices;
165}
166
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]167std::unique_ptr<Device> CrostiniService::AddTAP(bool is_termina,
168 int subnet_index) {
Garrick Evans1b1f67c2020-02-04 16:21:25 +0900[diff] [blame]169 auto ipv4_subnet = addr_mgr_->AllocateIPv4Subnet(
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]170 is_termina ? AddressManager::Guest::VM_TERMINA
Garrick Evans1fa4e642020-03-13 11:43:41 +0900[diff] [blame]171 : AddressManager::Guest::VM_PLUGIN,
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]172 subnet_index);
Garrick Evansb1c93712020-01-22 09:28:25 +0900[diff] [blame]173 if (!ipv4_subnet) {
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]174 LOG(ERROR) << "Subnet already in use or unavailable.";
175 return nullptr;
Garrick Evansb1c93712020-01-22 09:28:25 +0900[diff] [blame]176 }
177 auto host_ipv4_addr = ipv4_subnet->AllocateAtOffset(0);
178 if (!host_ipv4_addr) {
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]179 LOG(ERROR) << "Host address already in use or unavailable.";
180 return nullptr;
Garrick Evansb1c93712020-01-22 09:28:25 +0900[diff] [blame]181 }
182 auto guest_ipv4_addr = ipv4_subnet->AllocateAtOffset(1);
183 if (!guest_ipv4_addr) {
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]184 LOG(ERROR) << "VM address already in use or unavailable.";
185 return nullptr;
Garrick Evansb1c93712020-01-22 09:28:25 +0900[diff] [blame]186 }
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]187 std::unique_ptr<Subnet> lxd_subnet;
188 if (is_termina) {
Garrick Evans1b1f67c2020-02-04 16:21:25 +0900[diff] [blame]189 lxd_subnet =
190 addr_mgr_->AllocateIPv4Subnet(AddressManager::Guest::CONTAINER);
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]191 if (!lxd_subnet) {
192 LOG(ERROR) << "lxd subnet already in use or unavailable.";
193 return nullptr;
194 }
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]195 }
196
Garrick Evans7d9a2322020-04-02 11:59:56 +0900[diff] [blame]197 const auto mac_addr = addr_mgr_->GenerateMacAddress(subnet_index);
Garrick Evansb1c93712020-01-22 09:28:25 +0900[diff] [blame]198 const std::string tap =
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]199 datapath_->AddTAP("" /* auto-generate name */, &mac_addr,
Garrick Evansb1c93712020-01-22 09:28:25 +0900[diff] [blame]200 host_ipv4_addr.get(), vm_tools::kCrosVmUser);
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]201 if (tap.empty()) {
Garrick Evans51d5b552020-01-30 10:42:06 +0900[diff] [blame]202 LOG(ERROR) << "Failed to create TAP device.";
203 return nullptr;
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]204 }
205
Garrick Evans3d97a392020-02-21 15:24:37 +0900[diff] [blame]206 if (lxd_subnet) {
207 // Setup lxd route for the container using the VM as a gateway.
208 if (!datapath_->AddIPv4Route(ipv4_subnet->AddressAtOffset(1),
209 lxd_subnet->AddressAtOffset(0),
210 lxd_subnet->Netmask())) {
211 LOG(ERROR) << "Failed to setup lxd route";
212 return nullptr;
213 }
214 }
215
Garrick Evansb1c93712020-01-22 09:28:25 +0900[diff] [blame]216 auto config = std::make_unique<Device::Config>(
Garrick Evans6c7dcb82020-03-16 15:21:05 +0900[diff] [blame]217 mac_addr, std::move(ipv4_subnet), std::move(host_ipv4_addr),
Garrick Evansb1c93712020-01-22 09:28:25 +0900[diff] [blame]218 std::move(guest_ipv4_addr), std::move(lxd_subnet));
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]219
Hugo Benichi6f118a32021-03-01 12:28:14 +0900[diff] [blame]220 return std::make_unique<Device>(tap, tap, "", std::move(config));
Garrick Evans47c19272019-11-21 10:58:21 +0900[diff] [blame]221}
222
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]223void CrostiniService::StartAdbPortForwarding(const std::string& ifname) {
Jason Jeremy Imana7273a32020-08-04 11:25:31 +0900[diff] [blame]224 if (!datapath_->AddAdbPortForwardRule(ifname)) {
225 LOG(ERROR) << "Error adding ADB port forwarding rule for " << ifname;
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]226 return;
227 }
228
Jason Jeremy Imana7273a32020-08-04 11:25:31 +0900[diff] [blame]229 if (!datapath_->AddAdbPortAccessRule(ifname)) {
230 datapath_->DeleteAdbPortForwardRule(ifname);
231 LOG(ERROR) << "Error adding ADB port access rule for " << ifname;
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]232 return;
233 }
234
235 if (datapath_->runner().sysctl_w(
236 "net.ipv4.conf." + ifname + ".route_localnet", "1") != 0) {
237 LOG(ERROR) << "Failed to set up route localnet for " << ifname;
238 return;
239 }
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]240}
241
242void CrostiniService::StopAdbPortForwarding(const std::string& ifname) {
Jason Jeremy Imana7273a32020-08-04 11:25:31 +0900[diff] [blame]243 datapath_->DeleteAdbPortForwardRule(ifname);
244 datapath_->DeleteAdbPortAccessRule(ifname);
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]245}
246
247void CrostiniService::CheckAdbSideloadingStatus() {
Jason Jeremy Iman10314a82020-05-12 00:09:53 +0900[diff] [blame]248 static int num_try = 0;
Jason Jeremy Imandd372fd2020-08-11 00:07:58 +0900[diff] [blame]249 if (num_try >= kAdbSideloadMaxTry) {
250 LOG(WARNING) << "Failed to get ADB sideloading status after " << num_try
251 << " tries. ADB sideloading will not work";
Jason Jeremy Iman10314a82020-05-12 00:09:53 +0900[diff] [blame]252 return;
Jason Jeremy Imandd372fd2020-08-11 00:07:58 +0900[diff] [blame]253 }
Jason Jeremy Iman10314a82020-05-12 00:09:53 +0900[diff] [blame]254
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]255 dbus::ObjectProxy* proxy = bus_->GetObjectProxy(
256 login_manager::kSessionManagerServiceName,
257 dbus::ObjectPath(login_manager::kSessionManagerServicePath));
258 dbus::MethodCall method_call(login_manager::kSessionManagerInterface,
259 login_manager::kSessionManagerQueryAdbSideload);
260 std::unique_ptr<dbus::Response> dbus_response =
261 proxy->CallMethodAndBlock(&method_call, kDbusTimeoutMs);
262
263 if (!dbus_response) {
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]264 base::ThreadTaskRunnerHandle::Get()->PostDelayedTask(
265 FROM_HERE,
266 base::BindOnce(&CrostiniService::CheckAdbSideloadingStatus,
267 weak_factory_.GetWeakPtr()),
268 kAdbSideloadUpdateDelay);
Jason Jeremy Iman10314a82020-05-12 00:09:53 +0900[diff] [blame]269 num_try++;
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]270 return;
271 }
272
273 dbus::MessageReader reader(dbus_response.get());
274 reader.PopBool(&adb_sideloading_enabled_);
275 if (!adb_sideloading_enabled_)
276 return;
277
278 // If ADB sideloading is enabled, start ADB forwarding on all configured
279 // Crostini's TAP interfaces.
280 for (const auto& tap : taps_) {
Garrick Evans6c7dcb82020-03-16 15:21:05 +0900[diff] [blame]281 StartAdbPortForwarding(tap.second->phys_ifname());
Jason Jeremy Imanfa8b6d22020-02-20 03:44:21 +0000[diff] [blame]282 }
283}
284
Garrick Evans3388a032020-03-24 11:25:55 +0900[diff] [blame]285} // namespace patchpanel