yanguangshaonian
/
aya
mirror of https://github.com/aya-rs/aya
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
create-pull-request/codegen
main
fix-verifier-blixt
linker-bindep
gh-pages
aya-v0.13.1
aya-obj-v0.2.1
aya-log-v0.2.1
aya-log-common-v0.1.15
aya-ebpf-bindings-v0.1.1
aya-ebpf-cty-v0.2.2
aya-v0.13.0
aya-obj-v0.2.0
aya-log-ebpf-v0.1.0
aya-log-ebpf-macros-v0.1.0
aya-log-parser-v0.1.13
aya-ebpf-v0.1.0
aya-ebpf-macros-v0.1.0
aya-ebpf-bindings-v0.1.0
aya-ebpf-cty-v0.2.1
aya-log-v0.2.0
aya-log-common-v0.1.14
aya-v0.12.0
aya-obj-v0.1.0
aya-log-common-v0.1.13
aya-log-v0.1.13
aya-log-common-v0.1.11
aya-log-v0.1.11
aya-log-common-v0.1.10
aya-log-v0.1.10
aya-v0.11.0
aya-log-common-v0.1.9
aya-log-v0.1.9
aya-v0.10.7
aya-v0.10.6
aya-log-v0.1.1
aya-v0.10.5
aya-v0.10.4
aya-v0.10.3
aya-v0.10.2
aya-v0.10.1
aya-v0.10.0
aya-ebpf-macros-v0.1.1
aya-ebpf-v0.1.1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '4b4ce8cf2e'
${ noResults }
aya/xtask/src/run.rs

720 lines
30 KiB
Rust
Raw Blame History

use std::{
ffi::{OsStr, OsString},
fmt::Write as _,
fs::{self, OpenOptions},
io::{BufRead as _, BufReader, Write as _},
ops::Deref as _,
path::{self, Path, PathBuf},
process::{Child, ChildStdin, Command, Output, Stdio},
sync::{Arc, Mutex},
thread,
};
use anyhow::{Context as _, Result, anyhow, bail};
use cargo_metadata::{Artifact, CompilerMessage, Message, Target};
use clap::Parser;
use walkdir::WalkDir;
use xtask::{AYA_BUILD_INTEGRATION_BPF, Errors};
const GEN_INIT_CPIO_PATCH: &str = include_str!("../patches/gen_init_cpio.c.macos.diff");
#[derive(Parser)]
enum Environment {
/// Runs the integration tests locally.
Local {
/// The command used to wrap your application.
#[clap(short, long, default_value = "sudo -E")]
runner: String,
},
/// Runs the integration tests in a VM.
VM {
/// The cache directory in which to store intermediate artifacts.
#[clap(long)]
cache_dir: PathBuf,
/// The Github API token to use if network requests to Github are made.
///
/// This may be required if Github rate limits are exceeded.
#[clap(long)]
github_api_token: Option<String>,
/// Debian kernel archives (.deb) to boot in the VM.
#[clap(required = true)]
kernel_archives: Vec<PathBuf>,
},
}
#[derive(Parser)]
pub(crate) struct Options {
#[clap(subcommand)]
environment: Environment,
/// Arguments to pass to your application.
#[clap(global = true, last = true)]
run_args: Vec<OsString>,
}
pub(crate) fn build<F>(target: Option<&str>, f: F) -> Result<Vec<(String, PathBuf)>>
where
F: FnOnce(&mut Command) -> &mut Command,
{
// Always use rust-lld in case we're cross-compiling.
let mut cargo = Command::new("cargo");
cargo.args(["build", "--message-format=json"]);
if let Some(target) = target {
cargo.args(["--target", target]);
}
f(&mut cargo);
let mut cargo_child = cargo
.stdout(Stdio::piped())
.spawn()
.with_context(|| format!("failed to spawn {cargo:?}"))?;
let Child { stdout, .. } = &mut cargo_child;
let stdout = stdout.take().unwrap();
let stdout = BufReader::new(stdout);
let mut executables = Vec::new();
for message in Message::parse_stream(stdout) {
#[expect(clippy::collapsible_match)]
match message.context("valid JSON")? {
Message::CompilerArtifact(Artifact {
executable,
target: Target { name, .. },
..
}) => {
if let Some(executable) = executable {
executables.push((name, executable.into()));
}
}
Message::CompilerMessage(CompilerMessage { message, .. }) => {
for line in message.rendered.unwrap_or_default().split('\n') {
println!("cargo:warning={line}");
}
}
Message::TextLine(line) => {
println!("{line}");
}
_ => {}
}
}
let status = cargo_child
.wait()
.with_context(|| format!("failed to wait for {cargo:?}"))?;
if status.code() != Some(0) {
bail!("{cargo:?} failed: {status:?}")
}
Ok(executables)
}
/// Build and run the project.
pub(crate) fn run(opts: Options) -> Result<()> {
let Options {
environment,
run_args,
} = opts;
type Binary = (String, PathBuf);
fn binaries(target: Option<&str>) -> Result<Vec<(&str, Vec<Binary>)>> {
["dev", "release"]
.into_iter()
.map(|profile| {
let binaries = build(target, |cmd| {
cmd.env(AYA_BUILD_INTEGRATION_BPF, "true").args([
"--package",
"integration-test",
"--tests",
"--profile",
profile,
])
})?;
anyhow::Ok((profile, binaries))
})
.collect()
}
// Use --test-threads=1 to prevent tests from interacting with shared
// kernel state due to the lack of inter-test isolation.
let default_args = [OsString::from("--test-threads=1")];
let run_args = default_args.iter().chain(run_args.iter());
match environment {
Environment::Local { runner } => {
let mut args = runner.trim().split_terminator(' ');
let runner = args.next().ok_or(anyhow!("no first argument"))?;
let args = args.collect::<Vec<_>>();
let binaries = binaries(None)?;
let mut failures = String::new();
for (profile, binaries) in binaries {
for (name, binary) in binaries {
let mut cmd = Command::new(runner);
cmd.args(args.iter())
.arg(binary)
.args(run_args.clone())
.env("RUST_BACKTRACE", "1")
.env("RUST_LOG", "debug");
println!("{profile}:{name} running {cmd:?}");
let status = cmd
.status()
.with_context(|| format!("failed to run {cmd:?}"))?;
if status.code() != Some(0) {
writeln!(&mut failures, "{profile}:{name} failed: {status:?}")
.context("String write failed")?
}
}
}
if failures.is_empty() {
Ok(())
} else {
Err(anyhow!("failures:\n{}", failures))
}
}
Environment::VM {
cache_dir,
github_api_token,
kernel_archives,
} => {
// The user has asked us to run the tests on a VM. This is involved; strap in.
//
// We need tools to build the initramfs; we use gen_init_cpio from the Linux repository,
// taking care to cache it.
//
// We iterate the kernel images, using the `file` program to guess the target
// architecture. We then build the init program and our test binaries for that
// architecture, and use gen_init_cpio to build an initramfs containing the test
// binaries. We're ready to run the VM.
//
// We start QEMU with the provided kernel image and the initramfs we built.
//
// We consume the output of QEMU, looking for the output of our init program. This is
// the only way to distinguish success from failure. We batch up the errors across all
// VM images and report to the user.
//
// The end.
fs::create_dir_all(&cache_dir).context("failed to create cache dir")?;
let gen_init_cpio = cache_dir.join("gen_init_cpio");
{
let dest_path = cache_dir.join("gen_init_cpio.c");
let etag_path = cache_dir.join("gen_init_cpio.etag");
let dest_path_exists = dest_path.try_exists().with_context(|| {
format!("failed to check existence of {}", dest_path.display())
})?;
let etag_path_exists = etag_path.try_exists().with_context(|| {
format!("failed to check existence of {}", etag_path.display())
})?;
if !dest_path_exists && etag_path_exists {
println!(
"cargo:warning=({}).exists()={} != ({})={} (mismatch)",
dest_path.display(),
dest_path_exists,
etag_path.display(),
etag_path_exists,
)
}
// Currently unused. Can be used for authenticated requests if needed in the future.
drop(github_api_token);
let mut curl = Command::new("curl");
curl.args([
"-sfSL",
"https://raw.githubusercontent.com/torvalds/linux/master/usr/gen_init_cpio.c",
"--output",
])
.arg(&dest_path);
for arg in ["--etag-compare", "--etag-save"] {
curl.arg(arg).arg(&etag_path);
}
let output = curl
.output()
.with_context(|| format!("failed to run {curl:?}"))?;
let Output { status, .. } = &output;
if status.code() != Some(0) {
bail!("{curl:?} failed: {output:?}")
}
let mut patch = Command::new("patch");
patch
.current_dir(&cache_dir)
.args(["--quiet", "--forward", "--output", "-"])
.stdin(Stdio::piped())
.stdout(Stdio::piped());
let mut patch_child = patch
.spawn()
.with_context(|| format!("failed to spawn {patch:?}"))?;
let Child { stdin, stdout, .. } = &mut patch_child;
let mut stdin = stdin.take().unwrap();
stdin
.write_all(GEN_INIT_CPIO_PATCH.as_bytes())
.with_context(|| format!("failed to write to {patch:?} stdin"))?;
drop(stdin); // Must explicitly close to signal EOF.
let stdout = stdout.take().unwrap();
let mut clang = Command::new("clang");
clang
.args(["-g", "-O2", "-x", "c", "-", "-o"])
.arg(&gen_init_cpio)
.stdin(stdout);
let clang_child = clang
.spawn()
.with_context(|| format!("failed to spawn {clang:?}"))?;
let output = patch_child
.wait_with_output()
.with_context(|| format!("failed to wait for {patch:?}"))?;
let Output { status, .. } = &output;
if status.code() != Some(0) {
bail!("{patch:?} failed: {output:?}")
}
let output = clang_child
.wait_with_output()
.with_context(|| format!("failed to wait for {clang:?}"))?;
let Output { status, .. } = &output;
if status.code() != Some(0) {
bail!("{clang:?} failed: {output:?}")
}
}
let extraction_root = tempfile::tempdir().context("tempdir failed")?;
let mut errors = Vec::new();
for (index, archive) in kernel_archives.iter().enumerate() {
let archive_dir = extraction_root
.path()
.join(format!("kernel-archive-{index}"));
fs::create_dir_all(&archive_dir)
.with_context(|| format!("failed to create {}", archive_dir.display()))?;
let mut dpkg = Command::new("dpkg-deb");
dpkg.arg("--fsys-tarfile")
.arg(archive)
.stdout(Stdio::piped());
let mut dpkg_child = dpkg
.spawn()
.with_context(|| format!("failed to spawn {dpkg:?}"))?;
let Child { stdout, .. } = &mut dpkg_child;
let stdout = stdout.take().unwrap();
let mut archive_reader = tar::Archive::new(stdout);
archive_reader.unpack(&archive_dir).with_context(|| {
format!(
"failed to unpack archive {} to {}",
archive.display(),
archive_dir.display()
)
})?;
let status = dpkg_child
.wait()
.with_context(|| format!("failed to wait for {dpkg:?}"))?;
if !status.success() {
bail!("{dpkg:?} exited with {status}");
}
let mut kernel_images = Vec::new();
let mut configs = Vec::new();
for entry in WalkDir::new(&archive_dir) {
let entry = entry.with_context(|| {
format!("failed to read entry in {}", archive_dir.display())
})?;
if !entry.file_type().is_file() {
continue;
}
let path = entry.into_path();
if let Some(file_name) = path.file_name() {
match file_name.as_encoded_bytes() {
// "vmlinuz-"
[
b'v',
b'm',
b'l',
b'i',
b'n',
b'u',
b'z',
b'-',
kernel_version @ ..,
] => {
let kernel_version =
unsafe { OsStr::from_encoded_bytes_unchecked(kernel_version) }
.to_os_string();
kernel_images.push((path, kernel_version))
}
// "config-"
[b'c', b'o', b'n', b'f', b'i', b'g', b'-', ..] => {
configs.push(path);
}
_ => {}
}
}
}
let (kernel_image, kernel_version) = match kernel_images.as_slice() {
[kernel_image] => kernel_image,
[] => bail!("no kernel images in {}", archive.display()),
kernel_images => bail!(
"multiple kernel images in {}: {:?}",
archive.display(),
kernel_images
),
};
let config = match configs.as_slice() {
[config] => config,
configs => bail!("multiple configs in {}: {:?}", archive.display(), configs),
};
let mut modules_dirs = Vec::new();
for entry in WalkDir::new(&archive_dir) {
let entry = entry.with_context(|| {
format!("failed to read entry in {}", archive_dir.display())
})?;
if !entry.file_type().is_dir() {
continue;
}
let path = entry.into_path();
let mut components = path.components().rev();
if components.next() != Some(path::Component::Normal(kernel_version)) {
continue;
}
if components.next() != Some(path::Component::Normal(OsStr::new("modules"))) {
continue;
}
modules_dirs.push(path);
}
let modules_dir = match modules_dirs.as_slice() {
[modules_dir] => modules_dir,
[] => bail!("no modules directories in {}", archive.display()),
modules_dirs => bail!(
"multiple modules directories in {}: {:?}",
archive.display(),
modules_dirs
),
};
// Guess the guest architecture.
let mut file = Command::new("file");
let output = file
.arg("--brief")
.arg(kernel_image)
.output()
.with_context(|| format!("failed to run {file:?}"))?;
let Output { status, .. } = &output;
if status.code() != Some(0) {
bail!("{file:?} failed: {output:?}")
}
let Output { stdout, .. } = output;
// Now parse the output of the file command, which looks something like
//
// - Linux kernel ARM64 boot executable Image, little-endian, 4K pages
//
// - Linux kernel x86 boot executable bzImage, version 6.1.0-10-cloud-amd64 [..]
let stdout = String::from_utf8(stdout)
.with_context(|| format!("invalid UTF-8 in {file:?} stdout"))?;
let (_, stdout) = stdout
.split_once("Linux kernel")
.ok_or_else(|| anyhow!("failed to parse {file:?} stdout: {stdout}"))?;
let (guest_arch, _) = stdout
.split_once("boot executable")
.ok_or_else(|| anyhow!("failed to parse {file:?} stdout: {stdout}"))?;
let guest_arch = guest_arch.trim();
let (guest_arch, machine, cpu, console) = match guest_arch {
"ARM64" => ("aarch64", Some("virt"), Some("max"), "ttyAMA0"),
"x86" => ("x86_64", None, None, "ttyS0"),
guest_arch => (guest_arch, None, None, "ttyS0"),
};
let target = format!("{guest_arch}-unknown-linux-musl");
let test_distro_args =
["--package", "test-distro", "--release", "--features", "xz2"];
let test_distro: Vec<(String, PathBuf)> =
build(Some(&target), |cmd| cmd.args(test_distro_args))
.context("building test-distro package failed")?;
let binaries = binaries(Some(&target))?;
let tmp_dir = tempfile::tempdir().context("tempdir failed")?;
let initrd_image = tmp_dir.path().join("qemu-initramfs.img");
let initrd_image_file = OpenOptions::new()
.create_new(true)
.write(true)
.open(&initrd_image)
.with_context(|| {
format!("failed to create {} for writing", initrd_image.display())
})?;
let mut gen_init_cpio = Command::new(&gen_init_cpio);
let mut gen_init_cpio_child = gen_init_cpio
.arg("-")
.stdin(Stdio::piped())
.stdout(initrd_image_file)
.spawn()
.with_context(|| format!("failed to spawn {gen_init_cpio:?}"))?;
let Child { stdin, .. } = &mut gen_init_cpio_child;
let stdin = Arc::new(stdin.take().unwrap());
use std::os::unix::ffi::OsStrExt as _;
// Send input into gen_init_cpio for directories
//
// dir /bin 755 0 0
let write_dir = |out_path: &Path| {
for bytes in [
"dir ".as_bytes(),
out_path.as_os_str().as_bytes(),
" ".as_bytes(),
"755 0 0\n".as_bytes(),
] {
stdin.deref().write_all(bytes).expect("write");
}
};
// Send input into gen_init_cpio for files
//
// file /init path-to-init 755 0 0
let write_file = |out_path: &Path, in_path: &Path, mode: &str| {
for bytes in [
"file ".as_bytes(),
out_path.as_os_str().as_bytes(),
" ".as_bytes(),
in_path.as_os_str().as_bytes(),
" ".as_bytes(),
mode.as_bytes(),
"\n".as_bytes(),
] {
stdin.deref().write_all(bytes).expect("write");
}
};
write_dir(Path::new("/bin"));
write_dir(Path::new("/sbin"));
write_dir(Path::new("/boot"));
write_dir(Path::new("/lib"));
write_dir(Path::new("/lib/modules"));
write_file(Path::new("/boot/config"), config, "644 0 0");
if let Some(name) = config.file_name() {
write_file(&Path::new("/boot").join(name), config, "644 0 0");
}
test_distro.iter().for_each(|(name, path)| {
if name == "init" {
write_file(Path::new("/init"), path, "755 0 0");
} else {
write_file(&Path::new("/sbin").join(name), path, "755 0 0");
}
});
// At this point we need to make a slight detour!
// Preparing the `modules.alias` file inside the VM as part of
// `/init` is slow. It's faster to prepare it here.
let mut cargo = Command::new("cargo");
let output = cargo
.arg("run")
.args(test_distro_args)
.args(["--bin", "depmod", "--", "-b"])
.arg(modules_dir)
.output()
.with_context(|| format!("failed to run {cargo:?}"))?;
let Output { status, .. } = &output;
if status.code() != Some(0) {
bail!("{cargo:?} failed: {output:?}")
}
// Now our modules.alias file is built, we can recursively
// walk the modules directory and add all the files to the
// initramfs.
for entry in WalkDir::new(modules_dir) {
let entry = entry.context("read_dir failed")?;
let path = entry.path();
let metadata = entry.metadata().context("metadata failed")?;
let out_path = Path::new("/lib/modules").join(
path.strip_prefix(modules_dir).with_context(|| {
format!(
"strip prefix {} failed for {}",
path.display(),
modules_dir.display()
)
})?,
);
if metadata.file_type().is_dir() {
write_dir(&out_path);
} else if metadata.file_type().is_file() {
write_file(&out_path, path, "644 0 0");
}
}
for (profile, binaries) in binaries {
for (name, binary) in binaries {
let name = format!("{profile}-{name}");
let path = tmp_dir.path().join(&name);
fs::copy(&binary, &path).with_context(|| {
format!("copy({}, {}) failed", binary.display(), path.display())
})?;
let out_path = Path::new("/bin").join(&name);
write_file(&out_path, &path, "755 0 0");
}
}
// Must explicitly close to signal EOF.
drop(stdin);
let output = gen_init_cpio_child
.wait_with_output()
.with_context(|| format!("failed to wait for {gen_init_cpio:?}"))?;
let Output { status, .. } = &output;
if status.code() != Some(0) {
bail!("{gen_init_cpio:?} failed: {output:?}")
}
let mut qemu = Command::new(format!("qemu-system-{guest_arch}"));
if let Some(machine) = machine {
qemu.args(["-machine", machine]);
}
if let Some(cpu) = cpu {
qemu.args(["-cpu", cpu]);
}
for accel in ["kvm", "hvf", "tcg"] {
qemu.args(["-accel", accel]);
}
let console = OsString::from(console);
let mut kernel_args = std::iter::once(("console", &console))
.chain(run_args.clone().map(|run_arg| ("init.arg", run_arg)))
.enumerate()
.fold(OsString::new(), |mut acc, (i, (k, v))| {
if i != 0 {
acc.push(" ");
}
acc.push(k);
acc.push("=");
acc.push(v);
acc
});
// We sometimes see kernel panics containing:
//
// [ 0.064000] Kernel panic - not syncing: IO-APIC + timer doesn't work! Boot with apic=debug and send a report. Then try booting with the 'noapic' option.
//
// Heed the advice and boot with noapic. We don't know why this happens.
kernel_args.push(" noapic");
qemu.args(["-no-reboot", "-nographic", "-m", "1024M", "-smp", "2"])
.arg("-append")
.arg(kernel_args)
.arg("-kernel")
.arg(kernel_image)
.arg("-initrd")
.arg(&initrd_image);
let mut qemu_child = qemu
.stdin(Stdio::piped())
.stdout(Stdio::piped())
.stderr(Stdio::piped())
.spawn()
.with_context(|| format!("failed to spawn {qemu:?}"))?;
let Child {
stdin,
stdout,
stderr,
..
} = &mut qemu_child;
let stdin = stdin.take().unwrap();
let stdin = Arc::new(Mutex::new(stdin));
let stdout = stdout.take().unwrap();
let stdout = BufReader::new(stdout);
let stderr = stderr.take().unwrap();
let stderr = BufReader::new(stderr);
const TERMINATE_AFTER_COUNT: &[(&str, usize)] = &[
("end Kernel panic", 0),
("rcu: RCU grace-period kthread stack dump:", 0),
("watchdog: BUG: soft lockup", 1),
];
let mut counts = [0; TERMINATE_AFTER_COUNT.len()];
let mut terminate_if_kernel_hang =
move |line: &str, stdin: &Arc<Mutex<ChildStdin>>| -> anyhow::Result<()> {
if let Some(i) = TERMINATE_AFTER_COUNT
.iter()
.position(|(marker, _)| line.contains(marker))
{
counts[i] += 1;
let (marker, max) = TERMINATE_AFTER_COUNT[i];
if counts[i] > max {
println!("{marker} detected > {max} times; terminating QEMU");
let mut stdin = stdin.lock().unwrap();
stdin
.write_all(&[0x01, b'x'])
.context("failed to write to stdin")?;
println!("waiting for QEMU to terminate");
}
}
Ok(())
};
let stderr = {
let stdin = stdin.clone();
thread::Builder::new()
.spawn(move || {
for line in stderr.lines() {
let line = line.context("failed to read line from stderr")?;
eprintln!("{line}");
terminate_if_kernel_hang(&line, &stdin)?;
}
anyhow::Ok(())
})
.unwrap()
};
let mut outcome = None;
for line in stdout.lines() {
let line = line.context("failed to read line from stdout")?;
println!("{line}");
terminate_if_kernel_hang(&line, &stdin)?;
// The init program will print "init: success" or "init: failure" to indicate
// the outcome of running the binaries it found in /bin.
if let Some(line) = line.strip_prefix("init: ") {
let previous = match line {
"success" => outcome.replace(Ok(())),
"failure" => outcome.replace(Err(())),
line => bail!("unexpected init output: {}", line),
};
if let Some(previous) = previous {
bail!("multiple exit status: previous={previous:?}, current={line}");
}
}
}
let output = qemu_child
.wait_with_output()
.with_context(|| format!("failed to wait for {qemu:?}"))?;
let Output { status, .. } = &output;
if status.code() != Some(0) {
bail!("{qemu:?} failed: {output:?}")
}
stderr.join().unwrap()?;
let outcome = outcome.ok_or(anyhow!("init did not exit"))?;
match outcome {
Ok(()) => {}
Err(()) => {
errors.push(anyhow!("VM binaries failed on {}", kernel_image.display()))
}
}
}
if errors.is_empty() {
Ok(())
} else {
Err(Errors::new(errors).into())
}
}
}
}
Reference in New Issue View Git Blame Copy Permalink