vmette 0.3.0

Run untrusted agents in a hardware-isolated Linux microVM on macOS — a security boundary built on Apple's Virtualization.framework
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45

// Minimal Rust caller of the vmette library. Boots an alpine guest
// from the repo's existing assets and runs a one-shot command.
//
//   cargo run --release --example minimal -- KERNEL INITRAMFS ROOTFS [CMD]
//
// The binary inherits the parent process's entitlements at run time; the
// example is normally launched from `scripts/run-example.sh` which
// codesigns the cargo-built binary first. Running raw works too if you
// codesign the example binary manually after `cargo build --example`.

use std::env;
use std::process::ExitCode;

use vmette::{Config, RootfsShare, VsockPort};

fn main() -> ExitCode {
    let args: Vec<String> = env::args().skip(1).collect();
    if args.len() < 3 {
        eprintln!("usage: minimal KERNEL INITRAMFS ROOTFS [CMD]");
        return ExitCode::from(2);
    }
    let cmd = args
        .get(3)
        .cloned()
        .unwrap_or_else(|| "uname -a; cat /etc/alpine-release; exit 0".into());

    let mut cfg = Config::new(&args[0], &args[1]);
    cfg.rootfs_share = Some(RootfsShare {
        path: args[2].clone().into(),
        read_only: false,
    });
    cfg.exec_cmd = Some(cmd);
    cfg.vsock_port = VsockPort::Auto;

    match vmette::run(&cfg) {
        // The happy path doesn't actually return — vmette::run exits the
        // process from the VM lifecycle delegate. This arm is for the
        // snapshot-build/resume modes which return synchronously.
        Ok(out) => ExitCode::from(out.exit_code as u8),
        Err(e) => {
            eprintln!("error: {}", e);
            ExitCode::from(1)
        }
    }
}