northstar-runtime 0.9.2

Northstar is an container runtime for Linux targetting embedded systems
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78

use std::os::unix::{
    net::UnixStream as StdUnixStream,
    prelude::{FromRawFd, OwnedFd},
};

use crate::{
    common::container::Container,
    npk::manifest::{self, io::Output},
};
use log::debug;
use nix::{fcntl::OFlag, sys::stat::Mode};
use tokio::{
    io::{self, copy_buf, AsyncBufReadExt, AsyncWrite},
    net::UnixStream,
    task::{self},
};

/// Buffer size for stdout/stderr forwarding
const BUFFER_SIZE: usize = 16 * 4048;

pub struct ContainerIo {
    pub io: [OwnedFd; 3],
}

/// Create a new pty handle if configured in the manifest or open /dev/null instead.
pub async fn open(container: &Container, io: &manifest::io::Io) -> io::Result<ContainerIo> {
    debug!(
        "Container {} stdout is {}",
        container,
        serde_plain::to_string(&io.stdout).expect("internal error")
    );
    debug!(
        "Container {} stderr is {}",
        container,
        serde_plain::to_string(&io.stderr).expect("internal error")
    );

    // Open dev null - needed in any case for stdin
    let dev_null = nix::fcntl::open("/dev/null", OFlag::O_RDWR, Mode::empty())
        .map_err(|err| io::Error::from_raw_os_error(err as i32))
        .map(|fd| unsafe { OwnedFd::from_raw_fd(fd) })?;
    let stdout = forward(&io.stdout, &dev_null, container, tokio::io::stdout())?;
    let stderr = forward(&io.stderr, &dev_null, container, tokio::io::stderr())?;
    let io = [dev_null, stdout, stderr];

    Ok(ContainerIo { io })
}

/// Spawn a task that forwards stdout/stderr to the logging system or stdout/stderr
fn forward<W: AsyncWrite + Send + Sync + Unpin + 'static>(
    destination: &Output,
    dev_null: &OwnedFd,
    container: &Container,
    mut out: W,
) -> io::Result<OwnedFd> {
    match destination {
        Output::Discard => dev_null.try_clone(),
        Output::Pipe => {
            let (read, write) = StdUnixStream::pair()?;
            read.set_nonblocking(true)?;
            let mut lines = io::BufReader::new(UnixStream::from_std(read)?).lines();
            let target = container.to_string();
            task::spawn(async move {
                while let Ok(Some(line)) = lines.next_line().await {
                    log::debug!(target: &target, "{}", line);
                }
            });
            Ok(write.into())
        }
        Output::Inherit => {
            let (read, write) = StdUnixStream::pair()?;
            read.set_nonblocking(true)?;
            let mut read = io::BufReader::with_capacity(BUFFER_SIZE, UnixStream::from_std(read)?);
            task::spawn(async move { copy_buf(&mut read, &mut out).await });
            Ok(write.into())
        }
    }
}