supermachine 0.4.8

Run any OCI/Docker image as a hardware-isolated microVM on macOS HVF (Linux KVM and Windows WHP in progress). Single library API, zero flags for the common case, sub-100 ms cold-restore from snapshot.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592

// Unix-socket / TCP frontend for guest TSI listeners. The
// supervisor / daemon listens on `--vsock-mux <path>` (Unix) or
// `--http-port HOST:PORT` (TCP); each accepted client connection
// is bridged byte-for-byte to a TCP connection to the muxer's
// host-side TSI listener. Same shape as `vmm::tls::start` minus
// the TLS pump.

#![cfg(all(target_os = "macos", target_arch = "aarch64"))]

use std::fmt;
use std::io::{Read, Write};
use std::net::{Shutdown, TcpListener, TcpStream};
use std::os::fd::{AsRawFd, FromRawFd};
use std::os::unix::net::UnixListener;
use std::os::unix::net::UnixStream;
use std::sync::Arc;
use std::time::{Duration, Instant};

use crate::devices::virtio::vsock::device::Vsock;
use crate::devices::virtio::vsock::mux_profile::{self, Stage};

#[derive(Debug)]
pub enum StartError {
    Bind {
        frontend: &'static str,
        endpoint: String,
        source: std::io::Error,
    },
    LocalAddr {
        frontend: &'static str,
        endpoint: String,
        source: std::io::Error,
    },
    ThreadSpawn {
        name: String,
        source: std::io::Error,
    },
}

impl fmt::Display for StartError {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            StartError::Bind {
                frontend,
                endpoint,
                source,
            } => write!(f, "{frontend}: bind {endpoint}: {source}"),
            StartError::LocalAddr {
                frontend,
                endpoint,
                source,
            } => write!(f, "{frontend}: local_addr {endpoint}: {source}"),
            StartError::ThreadSpawn { name, source } => {
                write!(f, "spawn thread {name}: {source}")
            }
        }
    }
}

impl std::error::Error for StartError {}

/// Restrict a unix socket to mode 0600 (owner read/write only).
/// Without this, every local user on the macOS host can dial the
/// vsock-mux / vsock-exec socket of any other user's VM and reach
/// the guest's TSI listener / exec agent. With it, the socket is
/// effectively a per-user channel.
///
/// Best-effort: a chmod failure (rare on local FS) is logged but
/// not fatal — we'd rather degrade than refuse to boot.
fn lock_socket_perms(sock_path: &str) {
    use std::os::unix::fs::PermissionsExt;
    if let Err(e) = std::fs::set_permissions(sock_path, std::fs::Permissions::from_mode(0o600)) {
        eprintln!("  [vsock] warn: chmod 0600 {sock_path}: {e}");
    }
}

pub fn start(sock_path: &str, vsock: Arc<Vsock>, vm_port: Option<u32>) -> Result<(), StartError> {
    // Best-effort cleanup of stale socket from a prior run.
    let _ = std::fs::remove_file(sock_path);
    let listener = UnixListener::bind(sock_path).map_err(|source| StartError::Bind {
        frontend: "vsock-mux",
        endpoint: sock_path.to_string(),
        source,
    })?;
    lock_socket_perms(sock_path);
    eprintln!("  vsock-mux on {sock_path} -> guest vm_port={:?}", vm_port);

    let name = "vsock-mux-acceptor".to_string();
    std::thread::Builder::new()
        .name(name.clone())
        .spawn(move || {
            for stream in listener.incoming() {
                let stream = match stream {
                    Ok(s) => s,
                    Err(e) => {
                        eprintln!("[vsock-mux] accept err: {e}");
                        continue;
                    }
                };
                let vsock_c = vsock.clone();
                std::thread::Builder::new()
                    .name("vsock-mux-conn".to_string())
                    .spawn(move || handle_conn(stream, vsock_c.as_ref(), vm_port))
                    .ok();
            }
        })
        .map_err(|source| StartError::ThreadSpawn { name, source })?;
    Ok(())
}

/// `<vsock_mux>-exec.sock` frontend. Each accepted unix-socket
/// client gets bridged to a host-initiated *native* AF_VSOCK
/// connection to the guest's exec agent on `guest_port` (default
/// 1028). Sibling of `start()` but uses
/// `VsockMuxer::open_native_to_guest` instead of the TSI-mediated
/// `open_unix_to_guest`, so it bypasses TSI listener registry
/// lookups entirely.
///
/// Wire shape after the unix `accept()`:
///
/// ```text
///   client (unix sock, framed binary)
///     ↕                          (this function bridges →)
///   muxer.open_native_to_guest   (host-initiated VSOCK_OP_REQUEST)
///     ↕                          (kernel routes to)
///   guest agent (AF_VSOCK listener on `guest_port`)
/// ```
///
/// The guest agent (and the framed binary protocol) is documented
/// in `docs/design/exec-2026-05-03.md`.
pub fn start_exec(
    sock_path: &str,
    vsock: Arc<Vsock>,
    guest_port: u32,
) -> Result<(), StartError> {
    let _ = std::fs::remove_file(sock_path);
    let listener = UnixListener::bind(sock_path).map_err(|source| StartError::Bind {
        frontend: "vsock-exec",
        endpoint: sock_path.to_string(),
        source,
    })?;
    lock_socket_perms(sock_path);
    eprintln!(
        "  vsock-exec on {sock_path} -> guest port {guest_port} (native AF_VSOCK)"
    );
    let name = "vsock-exec-acceptor".to_string();
    std::thread::Builder::new()
        .name(name.clone())
        .spawn(move || {
            for stream in listener.incoming() {
                let stream = match stream {
                    Ok(s) => s,
                    Err(e) => {
                        eprintln!("[vsock-exec] accept err: {e}");
                        continue;
                    }
                };
                let vsock_c = vsock.clone();
                std::thread::Builder::new()
                    .name("vsock-exec-conn".to_string())
                    .spawn(move || {
                        if let Err(e) = vsock_c.muxer().open_native_to_guest(
                            crate::devices::virtio::vsock::muxer_thread::MuxerStream::Unix(stream),
                            guest_port,
                        ) {
                            eprintln!("[vsock-exec] open_native_to_guest: {e}");
                        }
                    })
                    .ok();
            }
        })
        .map_err(|source| StartError::ThreadSpawn { name, source })?;
    Ok(())
}

/// SCM_RIGHTS handoff acceptor. The router connects, then for each
/// inbound client TCP it sends a single message:
///
///   sendmsg cmsg=SCM_RIGHTS(client_tcp_fd) data=[u32 BE prefix_len][prefix bytes]
///
/// where the prefix is whatever bytes the router consumed from the
/// client TCP buffer to make a routing/auth decision (typically a
/// few hundred bytes — request line + headers). The router then
/// closes its local copy of the fd and we own the connection.
///
/// One handoff connection from the router carries many sequential
/// fd handoffs. The router pools these conns per worker.
pub fn start_handoff(
    sock_path: &str,
    vsock: Arc<Vsock>,
    vm_port: Option<u32>,
) -> Result<(), StartError> {
    let _ = std::fs::remove_file(sock_path);
    let listener = UnixListener::bind(sock_path).map_err(|source| StartError::Bind {
        frontend: "vsock-mux-handoff",
        endpoint: sock_path.to_string(),
        source,
    })?;
    lock_socket_perms(sock_path);
    eprintln!(
        "  vsock-mux-handoff on {sock_path} -> guest vm_port={:?}",
        vm_port
    );
    let name = "vsock-mux-handoff-acceptor".to_string();
    std::thread::Builder::new()
        .name(name.clone())
        .spawn(move || {
            for stream in listener.incoming() {
                let stream = match stream {
                    Ok(s) => s,
                    Err(e) => {
                        eprintln!("[vsock-mux-handoff] accept err: {e}");
                        continue;
                    }
                };
                let vsock_c = vsock.clone();
                std::thread::Builder::new()
                    .name("vsock-mux-handoff-conn".to_string())
                    .spawn(move || handle_handoff_conn(stream, vsock_c, vm_port))
                    .ok();
            }
        })
        .map_err(|source| StartError::ThreadSpawn { name, source })?;
    Ok(())
}

fn handle_handoff_conn(mut conn: UnixStream, vsock: Arc<Vsock>, vm_port: Option<u32>) {
    // Best-effort: block until the guest TSI listener exists at least
    // once. The router doesn't pace handoffs against guest readiness;
    // we do.
    let _ = wait_for_host_port(&vsock, vm_port);

    loop {
        match recv_handoff(&mut conn) {
            Ok((tcp, prefix)) => {
                if let Err(e) = vsock
                    .muxer()
                    .open_tcp_to_guest_with_prefix(tcp, prefix, vm_port)
                {
                    eprintln!("[vsock-mux-handoff] open_tcp_to_guest_with_prefix: {e}");
                }
            }
            Err(e) => {
                if e.kind() != std::io::ErrorKind::UnexpectedEof {
                    eprintln!("[vsock-mux-handoff] recv: {e}");
                }
                return;
            }
        }
    }
}

/// Read one handoff message:
///   [u32 BE prefix_len][prefix_len bytes payload, with SCM_RIGHTS attached]
///
/// The fd rides on the cmsg of the recvmsg call that consumes the
/// payload bytes. We read the 4-byte length first via plain recv,
/// then a single recvmsg that pulls exactly `prefix_len` bytes plus
/// the cmsg.
fn recv_handoff(conn: &mut UnixStream) -> std::io::Result<(TcpStream, Vec<u8>)> {
    let mut len_buf = [0u8; 4];
    let mut got = 0usize;
    while got < 4 {
        let n = conn.read(&mut len_buf[got..])?;
        if n == 0 {
            return Err(std::io::ErrorKind::UnexpectedEof.into());
        }
        got += n;
    }
    let prefix_len = u32::from_be_bytes(len_buf) as usize;
    if prefix_len > 1 << 20 {
        return Err(std::io::Error::new(
            std::io::ErrorKind::InvalidData,
            format!("handoff prefix too large: {prefix_len}"),
        ));
    }
    // Read at least one byte via recvmsg so we can pick up the
    // SCM_RIGHTS cmsg. The router guarantees prefix_len >= 1 (it
    // always has at least the request-line bytes to forward).
    if prefix_len == 0 {
        return Err(std::io::Error::new(
            std::io::ErrorKind::InvalidData,
            "handoff prefix_len=0 — sender must include at least 1 byte with the cmsg",
        ));
    }

    let mut prefix = vec![0u8; prefix_len];
    let mut filled = 0usize;
    let mut fd: Option<libc::c_int> = None;

    while filled < prefix_len {
        let mut iov = libc::iovec {
            iov_base: prefix[filled..].as_mut_ptr() as *mut libc::c_void,
            iov_len: prefix_len - filled,
        };
        // Space for one fd's worth of cmsg. CMSG_SPACE rounds up.
        let cmsg_len = unsafe { libc::CMSG_SPACE(std::mem::size_of::<libc::c_int>() as u32) };
        let mut cmsg_buf = vec![0u8; cmsg_len as usize];
        let mut msg: libc::msghdr = unsafe { std::mem::zeroed() };
        msg.msg_iov = &mut iov as *mut libc::iovec;
        msg.msg_iovlen = 1;
        msg.msg_control = cmsg_buf.as_mut_ptr() as *mut libc::c_void;
        msg.msg_controllen = cmsg_len as _;

        let n = unsafe { libc::recvmsg(conn.as_raw_fd(), &mut msg, 0) };
        if n < 0 {
            let err = std::io::Error::last_os_error();
            if err.kind() == std::io::ErrorKind::Interrupted {
                continue;
            }
            return Err(err);
        }
        if n == 0 {
            return Err(std::io::ErrorKind::UnexpectedEof.into());
        }

        if fd.is_none() {
            // Walk cmsgs looking for SCM_RIGHTS.
            let mut cmsg_ptr = unsafe { libc::CMSG_FIRSTHDR(&msg) };
            while !cmsg_ptr.is_null() {
                let cmsg = unsafe { &*cmsg_ptr };
                if cmsg.cmsg_level == libc::SOL_SOCKET && cmsg.cmsg_type == libc::SCM_RIGHTS {
                    let data_ptr = unsafe { libc::CMSG_DATA(cmsg_ptr) } as *const libc::c_int;
                    let one = unsafe { std::ptr::read_unaligned(data_ptr) };
                    fd = Some(one);
                    break;
                }
                cmsg_ptr = unsafe { libc::CMSG_NXTHDR(&msg, cmsg_ptr) };
            }
        }
        filled += n as usize;
    }

    let Some(fd) = fd else {
        return Err(std::io::Error::new(
            std::io::ErrorKind::InvalidData,
            "handoff: SCM_RIGHTS cmsg missing",
        ));
    };
    let tcp = unsafe { TcpStream::from_raw_fd(fd) };
    let _ = tcp.set_nodelay(true);
    Ok((tcp, prefix))
}

/// TCP-frontend variant. Same bridge semantics; the customer-facing
/// host:PORT listens on TCP. Used by `--http-port` so customers
/// don't have to chase the ephemeral TSI listener port from logs.
pub fn start_tcp(addr: &str, vsock: Arc<Vsock>, vm_port: Option<u32>) -> Result<(), StartError> {
    let listener = TcpListener::bind(addr).map_err(|source| StartError::Bind {
        frontend: "http-port",
        endpoint: addr.to_string(),
        source,
    })?;
    let local = listener
        .local_addr()
        .map_err(|source| StartError::LocalAddr {
            frontend: "http-port",
            endpoint: addr.to_string(),
            source,
        })?;
    eprintln!("  http-port on {local} -> guest vm_port={vm_port:?}");
    let name = "http-port-acceptor".to_string();
    std::thread::Builder::new()
        .name(name.clone())
        .spawn(move || {
            for stream in listener.incoming() {
                let stream = match stream {
                    Ok(s) => s,
                    Err(e) => {
                        eprintln!("[http-port] accept err: {e}");
                        continue;
                    }
                };
                let _ = stream.set_nodelay(true);
                let vsock_c = vsock.clone();
                std::thread::Builder::new()
                    .name("http-port-conn".to_string())
                    .spawn(move || handle_tcp_conn(stream, vsock_c, vm_port))
                    .ok();
            }
        })
        .map_err(|source| StartError::ThreadSpawn { name, source })?;
    Ok(())
}

fn handle_tcp_conn(client: TcpStream, vsock: Arc<Vsock>, vm_port: Option<u32>) {
    match wait_for_host_port(&vsock, vm_port) {
        Some(_) => {}
        None => return,
    }
    if let Err(e) = vsock.muxer().open_tcp_to_guest(client, vm_port) {
        eprintln!("[http-port] direct tcp->guest failed after listener ready: {e}");
    }
}

fn handle_conn(client: UnixStream, vsock: &Vsock, vm_port: Option<u32>) {
    match wait_for_host_port(vsock, vm_port) {
        Some(_) => {}
        None => {
            eprintln!("[vsock-mux] no host port (vm_port={vm_port:?})");
            return;
        }
    };
    if let Err(e) = vsock.muxer().open_unix_to_guest(client, vm_port) {
        eprintln!("[vsock-mux] direct unix->guest failed after listener ready: {e}");
    }
}

fn connect_loopback(port: u16) -> std::io::Result<TcpStream> {
    TcpStream::connect(("127.0.0.1", port)).or_else(|_| TcpStream::connect(("::1", port)))
}

fn pump_tcp_to_tcp_shutdown(mut r: TcpStream, mut w: TcpStream) {
    pump_bytes(&mut r, &mut w);
    let _ = w.shutdown(Shutdown::Write);
}

fn pump_tcp_to_unix_shutdown(mut r: TcpStream, mut w: UnixStream) {
    pump_bytes(&mut r, &mut w);
    let _ = w.shutdown(Shutdown::Write);
}

fn pump_unix_to_tcp_shutdown(mut r: UnixStream, mut w: TcpStream) {
    pump_bytes(&mut r, &mut w);
    let _ = w.shutdown(Shutdown::Write);
}

fn pump_unix_tcp_poll(mut unix: UnixStream, mut tcp: TcpStream) {
    let _ = unix.set_nonblocking(true);
    let _ = tcp.set_nonblocking(true);
    let ufd = unix.as_raw_fd();
    let tfd = tcp.as_raw_fd();
    let mut u2t = [0u8; 16 * 1024];
    let mut t2u = [0u8; 16 * 1024];

    loop {
        let mut pfds = [
            libc::pollfd {
                fd: ufd,
                events: libc::POLLIN,
                revents: 0,
            },
            libc::pollfd {
                fd: tfd,
                events: libc::POLLIN,
                revents: 0,
            },
        ];
        let rc = unsafe { libc::poll(pfds.as_mut_ptr(), pfds.len() as _, -1) };
        if rc < 0 {
            let err = std::io::Error::last_os_error();
            if err.raw_os_error() == Some(libc::EINTR) {
                continue;
            }
            break;
        }
        let drain_mask = libc::POLLIN | libc::POLLERR | libc::POLLHUP;
        if pfds[0].revents & drain_mask != 0 {
            loop {
                let t0 = Instant::now();
                match unix.read(&mut u2t) {
                    Ok(0) => {
                        mux_profile::record(
                            Stage::FrontendUnixRead,
                            0,
                            t0.elapsed().as_micros() as u64,
                        );
                        let _ = tcp.shutdown(Shutdown::Write);
                        return;
                    }
                    Ok(n) => {
                        mux_profile::record(
                            Stage::FrontendUnixRead,
                            n,
                            t0.elapsed().as_micros() as u64,
                        );
                        let t1 = Instant::now();
                        if write_all_poll(tfd, &mut tcp, &u2t[..n]).is_err() {
                            return;
                        }
                        mux_profile::record(
                            Stage::FrontendUnixToTcpWrite,
                            n,
                            t1.elapsed().as_micros() as u64,
                        );
                    }
                    Err(e) if e.kind() == std::io::ErrorKind::WouldBlock => break,
                    Err(_) => return,
                }
            }
        }
        if pfds[1].revents & drain_mask != 0 {
            loop {
                let t0 = Instant::now();
                match tcp.read(&mut t2u) {
                    Ok(0) => {
                        mux_profile::record(
                            Stage::FrontendTcpRead,
                            0,
                            t0.elapsed().as_micros() as u64,
                        );
                        let _ = unix.shutdown(Shutdown::Write);
                        return;
                    }
                    Ok(n) => {
                        mux_profile::record(
                            Stage::FrontendTcpRead,
                            n,
                            t0.elapsed().as_micros() as u64,
                        );
                        let t1 = Instant::now();
                        if write_all_poll(ufd, &mut unix, &t2u[..n]).is_err() {
                            return;
                        }
                        mux_profile::record(
                            Stage::FrontendTcpToUnixWrite,
                            n,
                            t1.elapsed().as_micros() as u64,
                        );
                    }
                    Err(e) if e.kind() == std::io::ErrorKind::WouldBlock => break,
                    Err(_) => return,
                }
            }
        }
    }
}

fn write_all_poll<W: Write>(fd: libc::c_int, w: &mut W, mut buf: &[u8]) -> std::io::Result<()> {
    while !buf.is_empty() {
        match w.write(buf) {
            Ok(0) => return Err(std::io::ErrorKind::WriteZero.into()),
            Ok(n) => buf = &buf[n..],
            Err(e) if e.kind() == std::io::ErrorKind::WouldBlock => {
                wait_writable(fd)?;
            }
            Err(e) => return Err(e),
        }
    }
    Ok(())
}

fn wait_writable(fd: libc::c_int) -> std::io::Result<()> {
    let mut pfd = libc::pollfd {
        fd,
        events: libc::POLLOUT,
        revents: 0,
    };
    loop {
        let rc = unsafe { libc::poll(&mut pfd, 1, -1) };
        if rc >= 0 {
            return Ok(());
        }
        let err = std::io::Error::last_os_error();
        if err.raw_os_error() != Some(libc::EINTR) {
            return Err(err);
        }
    }
}

fn pump_bytes_owned<R: Read, W: Write>(mut r: R, mut w: W) {
    pump_bytes(&mut r, &mut w);
}

fn pump_bytes<R: Read, W: Write>(r: &mut R, w: &mut W) {
    let mut buf = [0u8; 16 * 1024];
    loop {
        match r.read(&mut buf) {
            Ok(0) => break,
            Ok(n) => {
                if w.write_all(&buf[..n]).is_err() {
                    break;
                }
            }
            Err(_) => break,
        }
    }
}

fn wait_for_host_port(vsock: &Vsock, vm_port: Option<u32>) -> Option<u16> {
    let lookup = || match vm_port {
        Some(p) => vsock.muxer().host_port_for_vm_port(p),
        None => vsock.muxer().first_host_port(),
    };
    for _ in 0..50 {
        if let Some(p) = lookup() {
            return Some(p);
        }
        std::thread::sleep(Duration::from_millis(20));
    }
    lookup()
}