#spectrum on 2020-04-13

2019-08-29 20:55 qyliss changed the topic of #spectrum to: A compartmentalized operating system | https://spectrum-os.org/ | Logs: https://logs.spectrum-os.org/spectrum/

00:28 erictapen has joined #spectrum

00:54 erictapen has quit [Ping timeout: 240 seconds]

04:06 klltkr has joined #spectrum

05:59 klltkr has quit [Ping timeout: 256 seconds]

07:32 nicooo has quit [Remote host closed the connection]

07:35 nicooo has joined #spectrum

09:07 cole-h has quit [Ping timeout: 260 seconds]

10:57 <qyliss> Today's objective: figure out what needs to happen in a guest to make something that looks like a socket from the /dev/wl0 interface exposed by the virtio_wl kernel driver.

10:57 <qyliss> CrOS might already have something for this. If not it can probably be extracted from Sommelier.

11:37 klltkr has joined #spectrum

13:46 <qyliss> puck: do you know anything about the above? I'm wondering about virtwl_guest_proxy...

13:46 <qyliss> They keep alluding to other protocols using virtio wayland, but I'm not sure what those actually are

13:46 <puck> hrm, so

13:47 <puck> oh, interesting

13:48 <puck> so. virtwl_guest_proxy sets up a unix domain socket, and redirects sendmsg() and recvmsg() to VIRTWL_IOCTL_SEND and VIRTWL_IOCTL_RECV

13:49 <puck> i believe, at least

13:50 <qyliss> I wonder if virtwl_guest_proxy is used anywhere in CrOS

13:50 <qyliss> It looks kinda dead

13:50 <puck> yes

13:50 <puck> maitred

13:50 <qyliss> Oh interesting

13:50 <puck> so maitred runs inside the VM, but not in the container

13:51 <puck> and sommelier runs inside the container

13:51 <puck> so it goes [sommelier -> virtwl_guest_proxy] -> crosvm?

13:52 <qyliss> But Sommelier does its own ioctls?

13:52 <puck> yeah, that's the weird part

13:52 <qyliss> Isn't /dev/wl0 just passed into the container?

13:53 <puck> you can have >1 container, at least..

13:53 <puck> oh yeah indeed

13:53 <puck> https://chromium-review.googlesource.com/c/chromiumos/platform2/+/995081

13:53 <puck> > Sommelier has taken over this duty now.

13:53 <puck> so yeah, virtwl_guest_proxy is dead

13:54 <puck> if you want to virtualise a /dev/wl0 interface, you probably need to use something like FUSE

13:54 <puck> maybe.

13:54 <qyliss> Nah, what I want to do here is to just use virtio_wl as a transport for a different fd-using protocl

13:54 <qyliss> Specifically VmMemoryControl from crosvm, but that doesn't really matter.

13:55 <qyliss> I suppose what I'll want to do is write a socket-like Rust type that does the appropriate ioctls instead of actually writing to a socket?

13:55 <puck> oh, that'd be very fancy

13:56 <qyliss> Alternatively, I could just try to use virtwl_guest_proxy, and hook up the existing Rust code to the socket it exposes

13:56 <qyliss> I'm not really sure which is better

13:56 <qyliss> The ioctl approach doesn't look as complicated as I was expecting.

13:56 <puck> mhm, it's not too hard, it's just a fancy sendmsg / recvmsg

13:56 <puck> i'm not sure what the limits are on FDs you can transfer tho

13:56 <puck> it's not arbitrary

13:57 <qyliss> All I'm interested in is memfd

13:57 <qyliss> (Or mmap, ofc)

13:57 <qyliss> Presumably Wayland uses one of those already?

13:58 <puck> i believe memfd works

13:58 <qyliss> sweet

13:58 <puck> at least, sommelier uses those, right?

13:58 <puck> i haven't looked at the kernel bits too much

13:58 <qyliss> I think it must do but I'm not really sure

13:58 <qyliss> I guess I'll find out

13:58 <qyliss> Thanks for the help!

14:07 <puck> i think it might require dmabuf or (dmabuf over) virtwl.. so doing the mmap is more complicated, i think

14:07 <puck> see VIRTWL_IOCTL_NEW_ALLOC / VIRTWL_IOCTL_NEW_DMABUF, i think

14:08 <qyliss> What's "it" in that sentence?

14:08 <puck> shared memory over virtio-wayland

14:09 <puck> oh actually

14:09 <puck> see virtwl_ioctl_new_type in virtwl.h

14:10 <puck> i'm not very smart and it seems you can transfer pretty varied things over the connection

14:10 <qyliss> VIRTWL_IOCTL_NEW_ALLOC looks pretty promising :)

14:10 <puck> you can create readable pipes, writeable pipes, and memory buffers

14:10 <puck> note that you cannot pass external file descriptors into this thing

14:10 <puck> afaict

14:10 <qyliss> that's fine

14:10 <qyliss> I tihnk

14:12 <qyliss> virtwl_guest_proxy seems to accept file descriptors, though?

14:12 <qyliss> at least, it uses recvmsg

14:12 <puck> .. good point.

14:13 <puck> hrmm

14:13 <qyliss> Looks like virtwl_guest_proxy assumes those are always pipes

14:13 <qyliss> But I'm not sure if that's an actual protocol/kernel-imposed limitation.

14:14 <puck> errrrrr so

14:16 <puck> don't pass in arbitrary FDs, this may be a safety hazard

14:17 <qyliss> okay, fun

14:17 <puck> virtio_wl does anon_inode_getfd(), which sets the private_data of the struct file, which is then returned (as fd)

14:17 <puck> if you create a new resource file descriptor, that is

14:18 <puck> in virtwl_vfd_send, it translates the FDs back to struct file, and then checks their private_data. but private_data is also set if you open e.g. a tty

14:18 <puck> it then sends these vfds over to the host, i think

14:20 <puck> hrm, VIRTWL_IOCTL_NEW_CTX is probably an actual wayland socket on the server side usually, and is probably implicitly connected

14:26 <qyliss> So are you saying that putting an arbitrary fd into virtio_wl will mess with private_data, which might also be used elsewhereL

14:28 <puck> it won't mess with it, but it'll try to read any, even if it's not its own

14:29 <qyliss> Oh I see

14:30 <qyliss> right yeah it assumes private_data is a struct virtwl_vfd

14:30 <qyliss> that's rude

14:31 <qyliss> (a pointer to struct virtwl_vfd)

14:40 <qyliss> puck: doesn't virtwl_vfd_send check if a file descriptor is a virtwl one before it looks at its private_data?

14:40 <qyliss> if (vfd_file.file->f_op == &virtwl_vfd_fops) {

14:40 <puck> oh, oops

14:41 <puck> oh, am i looking at the wrong kernel branch thing

14:42 <puck> it does now, but only works with virtio-gpu dmabufs i think?

14:43 <qyliss> It does some stuff in the else even if gpu stuff is disabled

14:44 <puck> it decrements the fd's refcount, sets the error to -EINVAL, then does the things again

14:45 <puck> so it just ends up returning -EINVAL

14:45 <qyliss> ah, right

14:45 <qyliss> So that just stops you putting arbitrary fds into it?

14:48 <qyliss> So I think that means the only file descriptors you can put into virtio_wl are ones that came out of it in the first place?

14:48 <qyliss> (Or some gpu thing)

14:51 <puck> yeah

14:53 <qyliss> Oh, and what virtwl_guest_proxy actually does is make a virtio_wl pipe, and then proxy it to the actual pipe that was given to it

14:54 <qyliss> That makes more sense

14:56 <qyliss> So I'd have to change VmMemoryRequest to not include an fd, and instead include an fd in the response...

14:59 <qyliss> Not quite what I was hoping for, but potentially better than no fds at all...

15:21 pie_ is now known as pie_[bnc]

15:27 erictapen has joined #spectrum

15:49 erictapen has quit [Ping timeout: 256 seconds]

15:56 erictapen has joined #spectrum

16:49 klltkr has quit [Read error: Connection reset by peer]

18:09 cole-h has joined #spectrum

18:25 danielrf[m] has joined #spectrum

18:34 erictapen has quit [Ping timeout: 256 seconds]

18:44 klltkr has joined #spectrum

20:09 klltkr has quit [Ping timeout: 264 seconds]