clone-shim/src/specification.rs

use log::debug;

use crate::{Error, Result};

use std::collections::{HashMap, HashSet};
use std::net::SocketAddr;
use std::path::PathBuf;

use ipnetwork::{Ipv4Network, Ipv6Network};
use serde::{Deserialize, Serialize};

#[derive(Serialize, Deserialize, Debug)]
pub struct Specification {
    pub entrypoints: HashMap<String, Entrypoint>,
}

#[derive(Serialize, Deserialize, Debug)]
pub struct Entrypoint {
    #[serde(default)]
    pub trigger: Trigger,

    #[serde(default = "Arg::default_vec")]
    pub args: Vec<Arg>,

    #[serde(default)]
    pub environment: HashSet<Environment>,
}

#[derive(Serialize, Deserialize, Debug)]
pub enum Trigger {
    /// Start this entrypoint at application startup
    Startup,

    /// Trigger this entrypoint when a named pipe receives data
    Pipe(String),

    /// Trigger this entrypoint when a named file socket receives data
    FileSocket(String),
}

impl Default for Trigger {
    fn default() -> Self {
        Self::Startup
    }
}

#[derive(Serialize, Deserialize, PartialEq, Debug)]
pub enum Arg {
    /// The binary name, or argv[0], of the original program start
    BinaryName,

    /// The name of this entrypoint
    Entrypoint,

    /// A file descriptor for a file on the filesystem in the launching namespace
    File(PathBuf),

    /// A chosen end of a named pipe
    Pipe(Pipe),

    /// File socket
    FileSocket(FileSocket),

    /// A value specified by the trigger
    /// NOTE: Only valid if the trigger is of type Pipe(...) or FileSocket(...)
    Trigger,

    /// A TCP Listener
    TcpListener { addr: SocketAddr },

    /// The rest of argv[1..], 0 or more arguments
    Trailing,
}

impl Arg {
    fn default_vec() -> Vec<Arg> {
        vec![Arg::BinaryName]
    }
}

#[derive(Serialize, Deserialize, Clone, PartialEq, Debug)]
pub enum Pipe {
    Rx(String),
    Tx(String),
}

impl Pipe {
    pub fn get_name(&self) -> &str {
        match self {
            Pipe::Rx(n) => n,
            Pipe::Tx(n) => n,
        }
    }
}

#[derive(Serialize, Deserialize, Clone, PartialEq, Debug)]
pub enum FileSocket {
    Rx(String),
    Tx(String),
}

impl FileSocket {
    pub fn get_name(&self) -> &str {
        match self {
            FileSocket::Rx(n) => n,
            FileSocket::Tx(n) => n,
        }
    }
}

#[derive(Serialize, Deserialize, PartialEq, Eq, Hash, Debug)]
pub enum Environment {
    Filesystem {
        host_path: PathBuf,
        environment_path: PathBuf,
    },

    Hostname(String),
    DomainName(String),

    Procfs,

    Stdin,
    Stdout,
    Stderr,
}

#[derive(Serialize, Deserialize, PartialEq, Eq, Hash, Debug)]
pub enum Network {
    InternetV4,
    InternetV6,
    PrivateV4(Ipv4Network),
    PrivateV6(Ipv6Network),
}

impl Specification {
    pub fn pipes(&self) -> (Vec<&str>, Vec<&str>) {
        let mut read = Vec::new();
        let mut write = Vec::new();

        for entry in self.entrypoints.values() {
            if let Trigger::Pipe(s) = &entry.trigger {
                read.push(s.as_str());
            }

            for arg in &entry.args {
                if let Arg::Pipe(p) = arg {
                    match p {
                        Pipe::Rx(s) => read.push(s.as_str()),
                        Pipe::Tx(s) => write.push(s.as_str()),
                    }
                }
            }
        }

        debug!("read pipes: {:?}", &read);
        debug!("write pipes: {:?}", &write);
        (read, write)
    }

    pub fn sockets(&self) -> (Vec<&str>, Vec<&str>) {
        let mut read = Vec::new();
        let mut write = Vec::new();

        for entry in self.entrypoints.values() {
            if let Trigger::FileSocket(s) = &entry.trigger {
                read.push(s.as_str());
            }

            for arg in &entry.args {
                if let Arg::FileSocket(p) = arg {
                    match p {
                        FileSocket::Rx(s) => read.push(s.as_str()),
                        FileSocket::Tx(s) => write.push(s.as_str()),
                    }
                }
            }
        }

        debug!("read sockets: {:?}", &read);
        debug!("write sockets: {:?}", &write);
        (read, write)
    }

    pub fn validate(&self) -> Result<()> {
        // validate pipes match
        let (read, write) = self.pipes();
        let mut read_set = HashSet::with_capacity(read.len());

        for pipe in read {
            if !read_set.insert(pipe) {
                return Err(Error::BadPipe(pipe.to_string()));
            }
        }

        let mut write_set = HashSet::with_capacity(write.len());
        for pipe in write {
            if !write_set.insert(pipe) {
                return Err(Error::BadPipe(pipe.to_string()));
            }
        }

        for pipe in read_set {
            if !write_set.remove(pipe) {
                return Err(Error::BadPipe(pipe.to_string()));
            }
        }

        if let Some(pipe) = write_set.into_iter().next() {
            return Err(Error::BadPipe(pipe.to_string()));
        }

        // validate sockets match
        let (read, write) = self.sockets();
        let mut read_set = HashSet::with_capacity(read.len());

        for socket in read {
            if !read_set.insert(socket) {
                return Err(Error::BadFileSocket(socket.to_string()));
            }
        }

        let mut write_set = HashSet::with_capacity(write.len());
        for socket in write {
            write_set.insert(socket);
        }

        for socket in &read_set {
            if !write_set.contains(socket) {
                return Err(Error::BadFileSocket(socket.to_string()));
            }
        }

        if let Some(socket) = (&write_set - &read_set).into_iter().next() {
            return Err(Error::BadFileSocket(socket.to_string()));
        }

        // validate trigger arguments make sense
        for entrypoint in self.entrypoints.values() {
            if entrypoint.args.contains(&Arg::Trigger) {
                match entrypoint.trigger {
                    Trigger::Pipe(_) => {}
                    Trigger::FileSocket(_) => {}
                    _ => return Err(Error::BadTriggerArgument),
                }
            }
        }

        Ok(())
    }
}
pipe triggers 2022-03-01 11:29:13 +00:00			`use log::debug;`

added custom result type 2022-04-08 10:53:31 +01:00			`use crate::{Error, Result};`
specification and initial launching 2022-02-13 23:52:41 +00:00
			`use std::collections::{HashMap, HashSet};`
implemented TcpListener 2022-04-08 12:58:36 +01:00			`use std::net::SocketAddr;`
specification and initial launching 2022-02-13 23:52:41 +00:00			`use std::path::PathBuf;`

			`use ipnetwork::{Ipv4Network, Ipv6Network};`
			`use serde::{Deserialize, Serialize};`

			`#[derive(Serialize, Deserialize, Debug)]`
			`pub struct Specification {`
			`pub entrypoints: HashMap<String, Entrypoint>,`
			`}`

			`#[derive(Serialize, Deserialize, Debug)]`
			`pub struct Entrypoint {`
basic example application 2022-02-28 20:42:44 +00:00			`#[serde(default)]`
specification and initial launching 2022-02-13 23:52:41 +00:00			`pub trigger: Trigger,`
basic example application 2022-02-28 20:42:44 +00:00
			`#[serde(default = "Arg::default_vec")]`
specification and initial launching 2022-02-13 23:52:41 +00:00			`pub args: Vec<Arg>,`
void add files 2022-04-13 21:55:53 +01:00
			`#[serde(default)]`
			`pub environment: HashSet<Environment>,`
specification and initial launching 2022-02-13 23:52:41 +00:00			`}`

			`#[derive(Serialize, Deserialize, Debug)]`
			`pub enum Trigger {`
implementing file socket args and triggers 2022-04-07 15:24:32 +01:00			`/// Start this entrypoint at application startup`
specification and initial launching 2022-02-13 23:52:41 +00:00			`Startup,`
implementing file socket args and triggers 2022-04-07 15:24:32 +01:00
			`/// Trigger this entrypoint when a named pipe receives data`
specification and initial launching 2022-02-13 23:52:41 +00:00			`Pipe(String),`
implementing file socket args and triggers 2022-04-07 15:24:32 +01:00
			`/// Trigger this entrypoint when a named file socket receives data`
			`FileSocket(String),`
specification and initial launching 2022-02-13 23:52:41 +00:00			`}`

basic example application 2022-02-28 20:42:44 +00:00			`impl Default for Trigger {`
			`fn default() -> Self {`
			`Self::Startup`
			`}`
			`}`

pipe triggers 2022-03-01 11:29:13 +00:00			`#[derive(Serialize, Deserialize, PartialEq, Debug)]`
specification and initial launching 2022-02-13 23:52:41 +00:00			`pub enum Arg {`
			`/// The binary name, or argv[0], of the original program start`
			`BinaryName,`

			`/// The name of this entrypoint`
			`Entrypoint,`

implementing file socket args and triggers 2022-04-07 15:24:32 +01:00			`/// A file descriptor for a file on the filesystem in the launching namespace`
			`File(PathBuf),`

specification and initial launching 2022-02-13 23:52:41 +00:00			`/// A chosen end of a named pipe`
			`Pipe(Pipe),`

implementing file socket args and triggers 2022-04-07 15:24:32 +01:00			`/// File socket`
			`FileSocket(FileSocket),`

better argument preparation 2022-04-08 20:45:10 +01:00			`/// A value specified by the trigger`
implementing file socket args and triggers 2022-04-07 15:24:32 +01:00			`/// NOTE: Only valid if the trigger is of type Pipe(...) or FileSocket(...)`
better argument preparation 2022-04-08 20:45:10 +01:00			`Trigger,`
pipe triggers 2022-03-01 11:29:13 +00:00
			`/// A TCP Listener`
implemented TcpListener 2022-04-08 12:58:36 +01:00			`TcpListener { addr: SocketAddr },`
pipe triggers 2022-03-01 11:29:13 +00:00
specification and initial launching 2022-02-13 23:52:41 +00:00			`/// The rest of argv[1..], 0 or more arguments`
			`Trailing,`
			`}`

basic example application 2022-02-28 20:42:44 +00:00			`impl Arg {`
			`fn default_vec() -> Vec<Arg> {`
			`vec![Arg::BinaryName]`
			`}`
			`}`

split arg processing with some before void 2022-04-26 17:33:57 +01:00			`#[derive(Serialize, Deserialize, Clone, PartialEq, Debug)]`
specification and initial launching 2022-02-13 23:52:41 +00:00			`pub enum Pipe {`
			`Rx(String),`
			`Tx(String),`
			`}`

better argument preparation 2022-04-08 20:45:10 +01:00			`impl Pipe {`
			`pub fn get_name(&self) -> &str {`
			`match self {`
			`Pipe::Rx(n) => n,`
			`Pipe::Tx(n) => n,`
			`}`
			`}`
			`}`

split arg processing with some before void 2022-04-26 17:33:57 +01:00			`#[derive(Serialize, Deserialize, Clone, PartialEq, Debug)]`
implementing file socket args and triggers 2022-04-07 15:24:32 +01:00			`pub enum FileSocket {`
			`Rx(String),`
			`Tx(String),`
			`}`

forwarded necessary fds in spawners 2022-05-19 18:01:58 +01:00			`impl FileSocket {`
			`pub fn get_name(&self) -> &str {`
			`match self {`
			`FileSocket::Rx(n) => n,`
			`FileSocket::Tx(n) => n,`
			`}`
			`}`
			`}`

specification and initial launching 2022-02-13 23:52:41 +00:00			`#[derive(Serialize, Deserialize, PartialEq, Eq, Hash, Debug)]`
void add files 2022-04-13 21:55:53 +01:00			`pub enum Environment {`
specification and initial launching 2022-02-13 23:52:41 +00:00			`Filesystem {`
			`host_path: PathBuf,`
void add files 2022-04-13 21:55:53 +01:00			`environment_path: PathBuf,`
specification and initial launching 2022-02-13 23:52:41 +00:00			`},`
correctly void and fill uts namespaces 2022-05-10 17:37:38 +01:00
			`Hostname(String),`
			`DomainName(String),`
mount proc 2022-05-17 13:24:13 +01:00
			`Procfs,`
std file descriptor protection 2022-05-20 17:15:14 +01:00
			`Stdin,`
			`Stdout,`
			`Stderr,`
specification and initial launching 2022-02-13 23:52:41 +00:00			`}`

			`#[derive(Serialize, Deserialize, PartialEq, Eq, Hash, Debug)]`
			`pub enum Network {`
			`InternetV4,`
			`InternetV6,`
			`PrivateV4(Ipv4Network),`
			`PrivateV6(Ipv6Network),`
			`}`

			`impl Specification {`
			`pub fn pipes(&self) -> (Vec<&str>, Vec<&str>) {`
			`let mut read = Vec::new();`
			`let mut write = Vec::new();`

basic example application 2022-02-28 20:42:44 +00:00			`for entry in self.entrypoints.values() {`
implementing file socket args and triggers 2022-04-07 15:24:32 +01:00			`if let Trigger::Pipe(s) = &entry.trigger {`
			`read.push(s.as_str());`
specification and initial launching 2022-02-13 23:52:41 +00:00			`}`

			`for arg in &entry.args {`
pipe triggers 2022-03-01 11:29:13 +00:00			`if let Arg::Pipe(p) = arg {`
			`match p {`
specification and initial launching 2022-02-13 23:52:41 +00:00			`Pipe::Rx(s) => read.push(s.as_str()),`
			`Pipe::Tx(s) => write.push(s.as_str()),`
pipe triggers 2022-03-01 11:29:13 +00:00			`}`
specification and initial launching 2022-02-13 23:52:41 +00:00			`}`
			`}`
			`}`

pipe triggers 2022-03-01 11:29:13 +00:00			`debug!("read pipes: {:?}", &read);`
			`debug!("write pipes: {:?}", &write);`
specification and initial launching 2022-02-13 23:52:41 +00:00			`(read, write)`
			`}`

implementing file socket args and triggers 2022-04-07 15:24:32 +01:00			`pub fn sockets(&self) -> (Vec<&str>, Vec<&str>) {`
			`let mut read = Vec::new();`
			`let mut write = Vec::new();`

			`for entry in self.entrypoints.values() {`
			`if let Trigger::FileSocket(s) = &entry.trigger {`
			`read.push(s.as_str());`
			`}`

			`for arg in &entry.args {`
			`if let Arg::FileSocket(p) = arg {`
			`match p {`
			`FileSocket::Rx(s) => read.push(s.as_str()),`
			`FileSocket::Tx(s) => write.push(s.as_str()),`
			`}`
			`}`
			`}`
			`}`

			`debug!("read sockets: {:?}", &read);`
			`debug!("write sockets: {:?}", &write);`
			`(read, write)`
			`}`

added custom result type 2022-04-08 10:53:31 +01:00			`pub fn validate(&self) -> Result<()> {`
specification and initial launching 2022-02-13 23:52:41 +00:00			`// validate pipes match`
			`let (read, write) = self.pipes();`
			`let mut read_set = HashSet::with_capacity(read.len());`

			`for pipe in read {`
pipe triggers 2022-03-01 11:29:13 +00:00			`if !read_set.insert(pipe) {`
more descriptive errors 2022-04-08 20:54:31 +01:00			`return Err(Error::BadPipe(pipe.to_string()));`
specification and initial launching 2022-02-13 23:52:41 +00:00			`}`
			`}`

			`let mut write_set = HashSet::with_capacity(write.len());`
			`for pipe in write {`
pipe triggers 2022-03-01 11:29:13 +00:00			`if !write_set.insert(pipe) {`
more descriptive errors 2022-04-08 20:54:31 +01:00			`return Err(Error::BadPipe(pipe.to_string()));`
specification and initial launching 2022-02-13 23:52:41 +00:00			`}`
			`}`

			`for pipe in read_set {`
			`if !write_set.remove(pipe) {`
more descriptive errors 2022-04-08 20:54:31 +01:00			`return Err(Error::BadPipe(pipe.to_string()));`
specification and initial launching 2022-02-13 23:52:41 +00:00			`}`
			`}`

basic example application 2022-02-28 20:42:44 +00:00			`if let Some(pipe) = write_set.into_iter().next() {`
more descriptive errors 2022-04-08 20:54:31 +01:00			`return Err(Error::BadPipe(pipe.to_string()));`
specification and initial launching 2022-02-13 23:52:41 +00:00			`}`

allowing multiple processes to share socket 2022-05-10 23:34:27 +01:00			`// validate sockets match`
			`let (read, write) = self.sockets();`
			`let mut read_set = HashSet::with_capacity(read.len());`

			`for socket in read {`
			`if !read_set.insert(socket) {`
			`return Err(Error::BadFileSocket(socket.to_string()));`
			`}`
			`}`

			`let mut write_set = HashSet::with_capacity(write.len());`
			`for socket in write {`
			`write_set.insert(socket);`
			`}`

			`for socket in &read_set {`
			`if !write_set.contains(socket) {`
			`return Err(Error::BadFileSocket(socket.to_string()));`
			`}`
			`}`

			`if let Some(socket) = (&write_set - &read_set).into_iter().next() {`
			`return Err(Error::BadFileSocket(socket.to_string()));`
			`}`

implementing file socket args and triggers 2022-04-07 15:24:32 +01:00			`// validate trigger arguments make sense`
pipe triggers 2022-03-01 11:29:13 +00:00			`for entrypoint in self.entrypoints.values() {`
better argument preparation 2022-04-08 20:45:10 +01:00			`if entrypoint.args.contains(&Arg::Trigger) {`
pipe triggers 2022-03-01 11:29:13 +00:00			`match entrypoint.trigger {`
			`Trigger::Pipe(_) => {}`
implementing file socket args and triggers 2022-04-07 15:24:32 +01:00			`Trigger::FileSocket(_) => {}`
more descriptive errors 2022-04-08 20:54:31 +01:00			`_ => return Err(Error::BadTriggerArgument),`
pipe triggers 2022-03-01 11:29:13 +00:00			`}`
			`}`
			`}`

specification and initial launching 2022-02-13 23:52:41 +00:00			`Ok(())`
			`}`
			`}`