squib-api 0.2.0

Firecracker-compatible HTTP API server for squib (axum on a Unix domain socket)
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212

//! Request and response types that mirror Firecracker's `OpenAPI` shapes.
//!
//! Two-shape pattern per [10-data-model.md ยง
//! 2.3](../../../specs/10-data-model.md#23-schema-layer): every external-facing struct
//! is split into a `Raw*` shape (the literal serde target with no validation rules) and
//! a validated newtype with private fields. Validation runs **inside** `TryFrom`, not
//! after `serde`. This makes "unvalidated `DriveConfig`" unrepresentable: the only path
//! from JSON to the domain type is through the validating constructor.
//!
//! Field names match upstream's swagger exactly (`snake_case` in nested JSON, derived
//! from `firecracker.yaml`); the static-config envelope uses `kebab-case` only at the
//! top level.

pub mod actions;
pub mod balloon;
pub mod boot_source;
pub mod common;
pub mod config_file;
pub mod cpu_config;
pub mod drive;
pub mod entropy;
pub mod hotplug_memory;
pub mod logger;
pub mod machine_config;
pub mod metrics;
pub mod mmds;
pub mod network;
pub mod pmem;
pub mod serial;
pub mod snapshot;
pub mod vm;
pub mod vsock;

pub use actions::{InstanceAction, InstanceActionInfo};
pub use balloon::{BalloonConfig, BalloonHintingOp, BalloonStatsUpdate, BalloonUpdate};
pub use boot_source::BootSourceConfig;
pub use common::{
    DriveId, IfaceId, InstanceId, MAX_DRIVES, MAX_NICS, MAX_PMEM, MAX_VIRTIO_MEM, MacAddr,
    MemSizeMib, SafePath, UdsPath, VsockId,
};
pub use config_file::ConfigFile;
pub use cpu_config::CpuConfig;
pub use drive::{DriveConfig, DrivePatch};
pub use entropy::EntropyConfig;
pub use hotplug_memory::{HotplugMemoryConfig, HotplugMemoryUpdate};
pub use logger::LoggerConfig;
pub use machine_config::{MachineConfig, MachineConfigPatch};
pub use metrics::MetricsConfig;
pub use mmds::{MmdsConfig, MmdsContents};
pub use network::{NetworkInterfaceConfig, NetworkPatch};
pub use pmem::{PmemConfig, PmemPatch};
use serde::{Deserialize, Deserializer, Serialize, Serializer, de};
pub use serial::SerialConfig;
pub use snapshot::{SnapshotCreateConfig, SnapshotLoadConfig};
use squib_core::WireVmState;
pub use vm::VmStateChange;
pub use vsock::VsockConfig;

/// Body of `GET /version`.
///
/// Upstream returns the literal Firecracker version string (e.g. `"1.16.0"`) so SDK
/// version sniffers continue to work. Squib emits the same string for compatibility.
#[derive(Debug, Clone, Eq, PartialEq, Serialize, Deserialize)]
pub struct VersionResponse {
    /// Firecracker-compatible version string; what SDKs see when they probe the server.
    pub firecracker_version: String,
}

/// Body of `GET /` (the `InstanceInfo` resource).
///
/// Mirrors upstream's `InstanceInfo` model (`id`, `state`, `vmm_version`, `app_name`).
#[derive(Debug, Clone, Eq, PartialEq, Serialize, Deserialize)]
pub struct InstanceInfo {
    /// Microvm instance ID (the `--id` flag value).
    pub id: String,
    /// Current state of the microvm โ€” wire-shape three-value enum.
    pub state: VmState,
    /// VMM build identifier โ€” squib uses `"<firecracker-compat-version> (squib X.Y.Z)"`.
    pub vmm_version: String,
    /// Application name; we identify as `"Firecracker"` for SDK sniffing parity.
    pub app_name: String,
}

/// Wire-shape lifecycle state served by `GET /` and inside snapshot metadata.
///
/// Mirrors upstream `vmm/src/vmm_config/instance_info.rs::VmState` exactly: three
/// variants, with `NotStarted` serializing as the literal string `"Not started"` (note
/// the space + lowercase `s`). SDKs and `firectl` sniff these strings byte-for-byte;
/// any deviation breaks compatibility.
#[derive(Debug, Default, Clone, Copy, Eq, PartialEq)]
pub enum VmState {
    /// VMM has started but no microvm is running. Wire string: `"Not started"`.
    #[default]
    NotStarted,
    /// Microvm has booted and at least one vCPU is active. Wire string: `"Running"`.
    Running,
    /// Microvm has booted but vCPUs are paused. Wire string: `"Paused"`.
    Paused,
}

impl VmState {
    /// The exact upstream wire string for this state.
    #[must_use]
    pub const fn as_wire_str(self) -> &'static str {
        match self {
            Self::NotStarted => "Not started",
            Self::Running => "Running",
            Self::Paused => "Paused",
        }
    }
}

impl From<WireVmState> for VmState {
    fn from(s: WireVmState) -> Self {
        match s {
            WireVmState::NotStarted => Self::NotStarted,
            WireVmState::Running => Self::Running,
            WireVmState::Paused => Self::Paused,
        }
    }
}

impl Serialize for VmState {
    fn serialize<S: Serializer>(&self, ser: S) -> Result<S::Ok, S::Error> {
        ser.serialize_str(self.as_wire_str())
    }
}

impl<'de> Deserialize<'de> for VmState {
    fn deserialize<D: Deserializer<'de>>(de: D) -> Result<Self, D::Error> {
        let s = <&str>::deserialize(de)?;
        match s {
            "Not started" => Ok(Self::NotStarted),
            "Running" => Ok(Self::Running),
            "Paused" => Ok(Self::Paused),
            other => Err(de::Error::unknown_variant(
                other,
                &["Not started", "Running", "Paused"],
            )),
        }
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_should_serialize_version_response_in_snake_case() {
        let v = VersionResponse {
            firecracker_version: "1.16.0".into(),
        };
        let json = serde_json::to_string(&v).unwrap();
        assert_eq!(json, r#"{"firecracker_version":"1.16.0"}"#);
    }

    #[test]
    fn test_should_round_trip_instance_info() {
        let original = InstanceInfo {
            id: "anonymous".into(),
            state: VmState::NotStarted,
            vmm_version: "1.16.0 (squib 0.1.0)".into(),
            app_name: "Firecracker".into(),
        };
        let json = serde_json::to_string(&original).unwrap();
        let back: InstanceInfo = serde_json::from_str(&json).unwrap();
        assert_eq!(original, back);
    }

    #[test]
    fn test_should_serialize_vm_state_to_upstream_strings_verbatim() {
        assert_eq!(
            serde_json::to_string(&VmState::NotStarted).unwrap(),
            r#""Not started""#
        );
        assert_eq!(
            serde_json::to_string(&VmState::Running).unwrap(),
            r#""Running""#
        );
        assert_eq!(
            serde_json::to_string(&VmState::Paused).unwrap(),
            r#""Paused""#
        );
    }

    #[test]
    fn test_should_reject_pascalcase_vm_state_on_deserialize() {
        let s: VmState = serde_json::from_str(r#""Not started""#).unwrap();
        assert_eq!(s, VmState::NotStarted);

        // PascalCase variant the squib draft used to emit must now be rejected โ€” any
        // SDK seeing it would already have broken in production.
        assert!(serde_json::from_str::<VmState>(r#""NotStarted""#).is_err());
    }

    #[test]
    fn test_should_collapse_lifecycle_phase_to_vm_state() {
        use squib_core::LifecyclePhase;

        let cases = [
            (LifecyclePhase::Uninitialized, VmState::NotStarted),
            (LifecyclePhase::NotStarted, VmState::NotStarted),
            (LifecyclePhase::Starting, VmState::NotStarted),
            (LifecyclePhase::Shutdown, VmState::NotStarted),
            (LifecyclePhase::Running, VmState::Running),
            (LifecyclePhase::Paused, VmState::Paused),
        ];
        for (phase, expected) in cases {
            assert_eq!(VmState::from(phase.wire_state()), expected, "{phase:?}");
        }
    }
}