microsandbox 0.3.14

`microsandbox` is the core library for the microsandbox project.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230

//! SDK-side client for connecting to the sandbox agent relay.
//!
//! [`AgentClient`] communicates over a Unix domain socket to the sandbox's
//! relay. During connection, the relay assigns a non-overlapping correlation ID
//! range and sends the cached `core.ready` payload so the client can begin
//! issuing commands immediately.

use std::collections::HashMap;
use std::path::Path;
use std::sync::{
    Arc,
    atomic::{AtomicU32, Ordering},
};

use microsandbox_protocol::{
    codec,
    core::Ready,
    message::{FLAG_TERMINAL, Message},
};
use tokio::io::AsyncReadExt;
use tokio::net::UnixStream;
use tokio::sync::{Mutex, mpsc};
use tokio::task::JoinHandle;

use crate::MicrosandboxResult;

//--------------------------------------------------------------------------------------------------
// Types
//--------------------------------------------------------------------------------------------------

/// Client for communicating with agentd through the agent relay.
///
/// Connects over a Unix domain socket to the sandbox process's agent relay.
/// Correlation IDs are allocated from the range assigned during the relay
/// handshake.
pub struct AgentClient {
    /// Writer half of the Unix socket connection.
    writer: Arc<Mutex<tokio::net::unix::OwnedWriteHalf>>,
    /// Next correlation ID to allocate (starts at `id_offset + 1`).
    next_id: AtomicU32,
    /// Upper bound (exclusive) of the assigned ID range.
    id_max: u32,
    /// Pending response channels keyed by correlation ID.
    pending: Arc<Mutex<HashMap<u32, mpsc::UnboundedSender<Message>>>>,
    /// Background reader task handle.
    reader_handle: JoinHandle<()>,
    /// Cached `core.ready` payload from the relay handshake.
    ready: Ready,
}

//--------------------------------------------------------------------------------------------------
// Methods
//--------------------------------------------------------------------------------------------------

impl AgentClient {
    /// Connect to the sandbox's agent relay socket.
    ///
    /// Performs the relay handshake to receive the assigned ID offset and
    /// the cached `core.ready` payload, then spawns a background reader task.
    pub async fn connect(sock_path: &Path) -> MicrosandboxResult<Self> {
        let stream = UnixStream::connect(sock_path).await.map_err(|e| {
            crate::MicrosandboxError::Runtime(format!(
                "failed to connect to agent relay at {}: {e}",
                sock_path.display()
            ))
        })?;

        let (mut reader, writer) = stream.into_split();

        // Read the handshake: [id_offset: u32 BE][ready_frame_bytes...]
        let mut offset_buf = [0u8; 4];
        reader.read_exact(&mut offset_buf).await.map_err(|e| {
            crate::MicrosandboxError::Runtime(format!("handshake read id_offset: {e}"))
        })?;
        let id_offset = u32::from_be_bytes(offset_buf);

        // Read the ready frame using the protocol codec directly.
        let ready_msg = codec::read_message(&mut reader).await.map_err(|e| {
            crate::MicrosandboxError::Runtime(format!("handshake read ready frame: {e}"))
        })?;

        let ready: Ready = ready_msg
            .payload()
            .map_err(|e| crate::MicrosandboxError::Runtime(format!("decode ready payload: {e}")))?;

        tracing::info!(
            "agent client: connected to relay, id_offset={id_offset}, boot_time={}ns",
            ready.boot_time_ns
        );

        let pending: Arc<Mutex<HashMap<u32, mpsc::UnboundedSender<Message>>>> =
            Arc::new(Mutex::new(HashMap::new()));

        let reader_handle = tokio::spawn(reader_loop(reader, Arc::clone(&pending)));

        let writer = Arc::new(Mutex::new(writer));

        // Compute the upper bound of the assigned ID range.
        // ID_RANGE_STEP = u32::MAX / 16 ≈ 268M IDs per client.
        let id_range_step: u32 = u32::MAX / 16;
        let id_max = id_offset.saturating_add(id_range_step);

        Ok(Self {
            writer,
            next_id: AtomicU32::new(id_offset + 1),
            id_max,
            pending,
            reader_handle,
            ready,
        })
    }

    /// Allocate a new unique correlation ID from the assigned range.
    ///
    /// Wraps around within the assigned range if the counter overflows.
    pub fn next_id(&self) -> u32 {
        loop {
            let id = self.next_id.fetch_add(1, Ordering::Relaxed);
            if id != 0 && id < self.id_max {
                return id;
            }
            // Wrapped past the range or hit 0 (reserved) — reset to range start.
            let start = self.id_max.saturating_sub(u32::MAX / 16) + 1;
            self.next_id.store(start, Ordering::Relaxed);
        }
    }

    /// Send a message to agentd through the relay without waiting for a response.
    pub async fn send(&self, msg: &Message) -> MicrosandboxResult<()> {
        let mut buf = Vec::new();
        codec::encode_to_buf(msg, &mut buf)
            .map_err(|e| crate::MicrosandboxError::Runtime(format!("encode message: {e}")))?;

        let mut writer = self.writer.lock().await;
        tokio::io::AsyncWriteExt::write_all(&mut *writer, &buf)
            .await
            .map_err(|e| crate::MicrosandboxError::Runtime(format!("write to relay: {e}")))?;

        Ok(())
    }

    /// Send a request and wait for the correlated response.
    ///
    /// Assigns a unique correlation ID to the message before sending.
    pub async fn request(&self, mut msg: Message) -> MicrosandboxResult<Message> {
        let id = self.next_id();
        msg.id = id;

        let (tx, mut rx) = mpsc::unbounded_channel();
        self.pending.lock().await.insert(id, tx);

        if let Err(e) = self.send(&msg).await {
            self.pending.lock().await.remove(&id);
            return Err(e);
        }

        rx.recv().await.ok_or_else(|| {
            crate::MicrosandboxError::Runtime("agent client reader closed before response".into())
        })
    }

    /// Register a channel for the given correlation ID.
    ///
    /// Returns a receiver that will receive all messages dispatched to this ID.
    /// The subscription is automatically removed when a terminal message is
    /// received or when the receiver is dropped.
    ///
    /// Call this **before** sending the request to ensure no messages are lost.
    pub async fn subscribe(&self, id: u32) -> mpsc::UnboundedReceiver<Message> {
        let (tx, rx) = mpsc::unbounded_channel();
        self.pending.lock().await.insert(id, tx);
        rx
    }

    /// Return the cached `core.ready` payload from the relay handshake.
    pub fn ready(&self) -> &Ready {
        &self.ready
    }
}

//--------------------------------------------------------------------------------------------------
// Functions
//--------------------------------------------------------------------------------------------------

/// Background task that reads messages from the relay and dispatches them
/// to pending channels by correlation ID.
async fn reader_loop(
    mut reader: tokio::net::unix::OwnedReadHalf,
    pending: Arc<Mutex<HashMap<u32, mpsc::UnboundedSender<Message>>>>,
) {
    loop {
        let msg = match codec::read_message(&mut reader).await {
            Ok(msg) => msg,
            Err(e) => {
                tracing::debug!("agent client: reader EOF or error: {e}");
                break;
            }
        };

        let dispatch_id = msg.id;
        let is_terminal = (msg.flags & FLAG_TERMINAL) != 0;

        let mut map = pending.lock().await;
        if let Some(tx) = map.get(&dispatch_id) {
            if tx.send(msg).is_err() {
                // Receiver dropped — clean up.
                map.remove(&dispatch_id);
            } else if is_terminal {
                // Terminal message sent successfully — remove subscription.
                map.remove(&dispatch_id);
            }
        } else {
            tracing::trace!("agent client: no pending handler for id={dispatch_id}");
        }
    }

    // When the reader exits, drop all senders so receivers get None.
    let mut map = pending.lock().await;
    map.clear();
}

//--------------------------------------------------------------------------------------------------
// Trait Implementations
//--------------------------------------------------------------------------------------------------

impl Drop for AgentClient {
    fn drop(&mut self) {
        self.reader_handle.abort();
    }
}