#spectrum on 2019-12-20

00:44 <IdleBot_5e50c57d> There are many moving parts! Curent status: CrosVM in a private network namespace with socat-proxied Squid-Cache access and socat-proxies rust-9p sharing /nix/store access, with CrosVM sandbox enabled, with no initramfs and no need to rebuild root squashfs, boots then runs curl from 9p-mounted /nix/store via host proxy

00:45 <IdleBot_5e50c57d> Of course, in the host network namespace there is no port talking 9p (only unix sockets)

00:47 <IdleBot_5e50c57d> https://github.com/7c6f434c/7c6f434c-configurations/blob/master/crosvm/crosvm-runner — all the Nix expressions are here, and I tried to separate my local container magic from the arguments with positive reuse chances

00:48 <IdleBot_5e50c57d> qyliss: so basically, if we do not want any overlay magic (argh, overlayfs), rust-9p over TAP works fine

00:50 <IdleBot_5e50c57d> Fun stuff: I need both ip tuntap and mktuntap, and then I run ip tuntap in the setup phase as in-container root (already in the inner FS and NET namespace) to allow later running mktuntap which is mostly necessary to select the TAP interface

15:28 <IdleBot_5e50c57d> Pushed a cleanup. Now the call is showing off the flexibility: $( test-build ./crosvm-runner.nix crosvm-launcher) "curl tum.de --proxy http://10.0.2.2:3128; exit" "3128:tcp"

15:37 <IdleBot_5e50c57d> (this requires no rebuilds, just writing and bind-mounting a single file; the general interface will be obviously complicated and probably different on my system and in SpectrumOS)

15:39 <IdleBot_5e50c57d> qyliss: I guess my complicated Lisp wrapper-generating stuff is not useful for you as long as it is clear what are the commands run inside the container? Or I could make sure that enough support to try out my examples can be provided by a single nix-buildable Common Lisp daemon running as root… (main question: provide settings that make sense outside my exact deployment)

15:44 <IdleBot_5e50c57d> Note that there is no point in compiling too much into the kernel: once you have opened the SquashFS, you have all the modules you might ever want

16:44 <qyliss> IdleBot_5e50c57d: so, what should I be looking for here?

16:50 <IdleBot_5e50c57d> Well, you can now just look for the commands that are lists of arguments. I have a _minimal_ set of compiled-in stuff, a pretty static squashfs, and plan-9-mounting of the rest, if you wondered how it would work

16:51 <qyliss> Oh, cool

16:55 <IdleBot_5e50c57d> And IPv6 9p mounts are apparently nontrivial…

16:55 <qyliss> oh :(

16:57 <IdleBot_5e50c57d> Alternatively, I have missed something in my Socat option autogeneration

16:57 <qyliss> Hopefully soon enough this can be virtio-fs

16:58 <IdleBot_5e50c57d> (In that case, you do not have to care until cross-VM sockets actually become relevant for you)

16:58 <IdleBot_5e50c57d> I guess for some cases you will still use 9p as a better studied protocol…

17:13 <qyliss> Oh hey weston-terminal works now

17:13 <qyliss> At least when I SSH in and run it manually

17:13 <qyliss> Wonder what changed..

17:15 <qyliss> That's exciting, anyway

17:19 <qyliss> puck: if I SSH to a VM and run weston-terminal it works, but not if I start it directly in init. Could that be something to do with seats or something?

17:25 <puck> maybe, but i'm suspecting it's simpler

17:25 <qyliss> Looks like it's something in the environment.

17:25 <puck> do you have SHELL set?

17:25 <qyliss> no

17:26 <qyliss> let's try with it

17:26 <puck> it defaults to /bin/bash

17:26 <qyliss> ffs

17:26 <puck> you can also --shell apparently

17:26 <qyliss> I think before we had that and it still didn't work?

17:26 <qyliss> Pretty sure you had --shell

17:26 <puck> hrmm

17:26 <qyliss> When you tried it

17:26 <puck> not sure

17:26 <puck> what's the error message?

17:28 <qyliss> isn't one

17:28 <qyliss> that's what's made it so hard to debug

17:28 <puck> oh, as in' it immediately closes?

17:29 <puck> ... oh, wait a sec, yeah, that's about right i think. if exec'ing into the terminal fails it probably ends up printing an error message inside the terminal, then immediately closes

17:30 <puck> if you strace -f or something that might tell you more

18:59 <qyliss> Yeah, copying the environment works.

18:59 <qyliss> So now I just figure out what it needed

19:14 <qyliss> Yeah, --shell works now

19:21 <qyliss> I'm sure it didn't used to

19:25 <puck> yeah

19:25 <puck> i presume pre-procfs mounting

19:26 <puck> or well, devpts probably

19:26 <qyliss> No, I've had that since the start

19:26 <qyliss> And you had procfs

19:26 <qyliss> Oh, not devpts

19:26 <puck> i'm not entirely sure you did, i remember mounting those in when working on the sommi

19:26 <puck> sommelier patch

19:26 <qyliss> But you had that when you worked on it

19:26 <qyliss> Definitely

19:26 <puck> yeah, but i don't think i called it with --shell

19:27 <qyliss> I'm sure you did

19:27 <puck> also i was not aware s6-mount was a thing, interestingly

19:27 <qyliss> There are s6- implementations of most commands

19:27 <qyliss> not much reason to use them mostly

19:27 <qyliss> but I thought I might get away without busybox or coreutils

19:27 <puck> heh

19:28 <multi> i think skarnet started writing a whole bunch of reimplementations in s6-{portable,linux}-utils, and then later on realised that there wasn't much sense in doing so and has kind of stopped doing that

19:29 <puck> s6-syscall

19:29 <puck> :p

19:29 <qyliss> puck: https://skarnet.org/software/s6-portable-utils/

19:29 <qyliss> s6-ln is good

19:29 <qyliss> It can atomically relink

19:29 <puck> oh, interesting

19:29 <qyliss> Which POSIX ln is forbidden from doing

19:29 <multi> iirc s6-p-u is now meant to be portable utilities which don't really have equivalents elsewhere, like s6-hiercopy and s6-nuke

19:29 <qyliss> NixOS should use it, but doesn't.

19:30 <qyliss> I could probably introduce that though

19:30 <puck> multi: i think you can do kill -1 to kill all but pid 1, hrmm

19:30 <multi> puck: that might be an implementation dependent thing

19:31 <multi> puck: also entirely possible that skarnet did a survey of existing kill(1) implementations and decided, "eh, fuck that, i'm writing my own thing which does this one very specific thing i need"

19:31 <puck> multi: huh, it's actually POSIX

19:32 <qyliss> Oh that's neat

19:32 <qyliss> In that case I might not need s6-p-u

19:36 <qyliss> OH I bet I know what changed to make weston-terminal work

19:37 <qyliss> For a while I'd symlinked /bin/sh to ${dash}/bin/sh, but it should have been ${dash}/bin/dash

19:37 <qyliss> So there was no /bin/sh

19:39 <puck> heh

19:40 <qyliss> Might want to make it log if running the shell fails...

20:26 <MichaelRaskin> So, to avoid an annoying warning from CrosVM but keep using writeScript, I just went and implemented an actually working version of pad-string-to-devisibility (as the lib version uses linear recursion depth, which is bad)

20:27 <MichaelRaskin> Maybe I am doing it wrong

20:27 <MichaelRaskin> (I _also_ have a shell function doing the same thing with a file for _another_ bootscript block device)

20:28 <qyliss> What warning is this?

20:28 <MichaelRaskin> Well, as I said, I find «source /dev/vdb» very convenient way to avoid expensive rebuilds or complicated boot processes

20:29 <qyliss> Go on

20:29 <MichaelRaskin> There is one catch: a boot script does not norally have a size exactly divisible by block size…

20:29 <qyliss> Oh, right.

20:29 <MichaelRaskin> And CrosVM rounds the size of the image _down_, not up

20:30 <qyliss> oh..

20:30 <MichaelRaskin> Whatever, padding with some spaces is cheap

20:30 <MichaelRaskin> But then it still _warns_ that it cuts off some of my kilobytes of padding I don't care about

20:31 <MichaelRaskin> And as I want to keep the number of warnings down (I, uhm, is debugging the network setup and I want _these_ warnings, not junk)…

20:32 <MichaelRaskin> So now I have two bootscript block devices, one generated in Nix and one in a shellscript from runtime parameters, and the Nix one is padded by Nix code (with logarithmic recursion depth, yay, and the logarithm is just the logarithm of the padding needed), and the shell one is padded using shell arithmetics and yes | head -n

20:34 <qyliss> puck: that wasn't actually what fixed it

20:34 <qyliss> was presumbly necessary, but fixing /bin/sh alone wasn't enough

20:35 <qyliss> It was in fact this commit that made it work: https://spectrum-os.org/git/nixpkgs/commit/?h=crosvm-demo&id=68189dcb627c3a965a8b5948a49e262bf3673b2d

20:39 <qyliss> I think that's about as far as my interest in why weston-terminal suddenly works goes

20:45 <MichaelRaskin> Re: virtio-fs: also note that VM-to-VM virtio-fs would require one globally cutting-edge feature (virtio-fs) and one rust-vmm-cutting-edge feature (vhost-user). With rust-9p I could write a demo right now doesn't have any TCP/IP traffic in the top namespace (OK, as long as CrosVM insists on using ioctl I cannot remove that namespaced-TAP for free)

20:48 <qyliss> I'm not at all opposed to cutting edge features

20:50 <MichaelRaskin> Every cutting edge is eager to become bleeding edge, and the blood might be yours.

20:51 <MichaelRaskin> I mean, I like some cutting edge features and hate others, and here I am on the «like» side, but if your declared goal is security, you should always provide an option to use only features that survived a few years in the wild

21:14 <MichaelRaskin> (also, I have no idea what to expect about the amount of implementation work around these features)

21:33 <MichaelRaskin> Apparently, it's not IPv6 and 9p, it's me forgetting some of the tricks I was using

21:34 <MichaelRaskin> (running tuntap setup commands with & leads to interesting outcomes that depend on basically everything in interesting ways, who could have thought)

21:52 <qyliss> I expect that by the time people are actually using this, a few years in the wild will have passed.

21:55 <MichaelRaskin> We-ell, there are some benefits in closing the last milestone with something which has a documented (and reasonable) set of tradeoffs for immediate use

21:56 <qyliss> that's true, but that's a year away at least I'd say

21:56 <qyliss> (I'm behind the original timeline of a year, for sure)

21:56 <MichaelRaskin> Of course there will still be bugs in our implementation

21:57 <qyliss> The good news if weston-terminal working all of a sudden puts me a good bit closer to the next milestone than I thought

21:58 <MichaelRaskin> Well, projects don't get several years of widespread use in one year…

21:59 <MichaelRaskin> (and please remember everyone is bad at planning… which also means that you might be surprised by the problems rust-vmm-vhost-user faces in a year!)

23:17 <qyliss> So here's a question

23:18 <qyliss> Is it better to do 9p through crosvm, or run a 9p client inside the guest?

23:18 <qyliss> Not using crosvm would mean the server was isolated inside a VM

23:25 <qyliss> Oh, but crosvm's 9p support is only relevant for a server on the host anyway

23:25 <qyliss> so no point in that

23:25 <qyliss> I could use their 9p server impl still, even

23:54 <MichaelRaskin> I am not sure if hteir implementation makes some fun assumptions

23:55 <MichaelRaskin> rust-9p is easy to build (see my repo), works and doesn't care if it has to listen a TCP port or a Unix domain socket

23:58 <qyliss> MichaelRaskin: are you planning on upstreaming rust-9p?

23:58 <MichaelRaskin> Yes, unless someone copypastes the expression first

23:59 <qyliss> A Nixpkgs commit would be easier for me to cherry-pick :P

23:59 <MichaelRaskin> Right now I am in a state where I am not too keen to make _any_ of my nixpkgs clones a checkout of fresh master (because I do these weird multi-nixpkgs builds)