/*
* qemu_slirp.c: QEMU Slirp support
*
* This library is free software; you can redistribute it and/or
* modify it under the terms of the GNU Lesser General Public
* License as published by the Free Software Foundation; either
* version 2.1 of the License, or (at your option) any later version.
*
* This library is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public
* License along with this library. If not, see
* .
*/
#include
#include "qemu_dbus.h"
#include "qemu_extdevice.h"
#include "qemu_security.h"
#include "qemu_slirp.h"
#include "virenum.h"
#include "virerror.h"
#include "virjson.h"
#include "virlog.h"
#include "virpidfile.h"
#define VIR_FROM_THIS VIR_FROM_NONE
VIR_LOG_INIT("qemu.slirp");
VIR_ENUM_IMPL(qemuSlirpFeature,
QEMU_SLIRP_FEATURE_LAST,
"",
"ipv4",
"ipv6",
"tftp",
"dbus-address",
"dbus-p2p",
"migrate",
"restrict",
"exit-with-parent",
);
void
qemuSlirpFree(qemuSlirp *slirp)
{
if (!slirp)
return;
VIR_FORCE_CLOSE(slirp->fd[0]);
VIR_FORCE_CLOSE(slirp->fd[1]);
virBitmapFree(slirp->features);
g_free(slirp);
}
void
qemuSlirpSetFeature(qemuSlirp *slirp,
qemuSlirpFeature feature)
{
ignore_value(virBitmapSetBit(slirp->features, feature));
}
bool
qemuSlirpHasFeature(const qemuSlirp *slirp,
qemuSlirpFeature feature)
{
return virBitmapIsBitSet(slirp->features, feature);
}
qemuSlirp *
qemuSlirpNew(void)
{
g_autoptr(qemuSlirp) slirp = g_new0(qemuSlirp, 1);
slirp->features = virBitmapNew(QEMU_SLIRP_FEATURE_LAST);
slirp->pid = (pid_t)-1;
slirp->fd[0] = slirp->fd[1] = -1;
return g_steal_pointer(&slirp);
}
qemuSlirp *
qemuSlirpNewForHelper(const char *helper)
{
g_autoptr(qemuSlirp) slirp = NULL;
g_autoptr(virCommand) cmd = NULL;
g_autofree char *output = NULL;
g_autoptr(virJSONValue) doc = NULL;
virJSONValue *featuresJSON;
size_t i, nfeatures;
slirp = qemuSlirpNew();
if (!slirp) {
virReportError(VIR_ERR_INTERNAL_ERROR,
_("Failed to allocate slirp for '%s'"), helper);
return NULL;
}
cmd = virCommandNewArgList(helper, "--print-capabilities", NULL);
virCommandSetOutputBuffer(cmd, &output);
if (virCommandRun(cmd, NULL) < 0)
return NULL;
if (!(doc = virJSONValueFromString(output)) ||
!(featuresJSON = virJSONValueObjectGetArray(doc, "features"))) {
virReportError(VIR_ERR_INTERNAL_ERROR,
_("unable to parse json capabilities '%s'"),
helper);
return NULL;
}
nfeatures = virJSONValueArraySize(featuresJSON);
for (i = 0; i < nfeatures; i++) {
virJSONValue *item = virJSONValueArrayGet(featuresJSON, i);
const char *tmpStr = virJSONValueGetString(item);
int tmp;
if ((tmp = qemuSlirpFeatureTypeFromString(tmpStr)) <= 0) {
VIR_WARN("unknown slirp feature %s", tmpStr);
continue;
}
qemuSlirpSetFeature(slirp, tmp);
}
return g_steal_pointer(&slirp);
}
static char *
qemuSlirpCreatePidFilename(virQEMUDriverConfig *cfg,
const virDomainDef *def,
const char *alias)
{
g_autofree char *shortName = NULL;
g_autofree char *name = NULL;
if (!(shortName = virDomainDefGetShortName(def)))
return NULL;
name = g_strdup_printf("%s-%s-slirp", shortName, alias);
return virPidFileBuildPath(cfg->slirpStateDir, name);
}
static int
qemuSlirpOpen(qemuSlirp *slirp,
virQEMUDriver *driver,
virDomainDef *def)
{
int rc, pair[2] = { -1, -1 };
if (qemuSecuritySetSocketLabel(driver->securityManager, def) < 0)
goto error;
rc = socketpair(AF_UNIX, SOCK_DGRAM, 0, pair);
if (qemuSecurityClearSocketLabel(driver->securityManager, def) < 0)
goto error;
if (rc < 0) {
virReportSystemError(errno, "%s", _("failed to create socketpair"));
goto error;
}
slirp->fd[0] = pair[0];
slirp->fd[1] = pair[1];
return 0;
error:
VIR_FORCE_CLOSE(pair[0]);
VIR_FORCE_CLOSE(pair[1]);
return -1;
}
static char *
qemuSlirpGetDBusVMStateId(virDomainNetDef *net)
{
char macstr[VIR_MAC_STRING_BUFLEN] = "";
/* can't use alias, because it's not stable across restarts */
return g_strdup_printf("slirp-%s", virMacAddrFormat(&net->mac, macstr));
}
void
qemuSlirpStop(qemuSlirp *slirp,
virDomainObj *vm,
virQEMUDriver *driver,
virDomainNetDef *net)
{
g_autoptr(virQEMUDriverConfig) cfg = virQEMUDriverGetConfig(driver);
g_autofree char *id = qemuSlirpGetDBusVMStateId(net);
g_autofree char *pidfile = NULL;
virErrorPtr orig_err;
qemuDBusVMStateRemove(vm, id);
if (!(pidfile = qemuSlirpCreatePidFilename(cfg, vm->def, net->info.alias))) {
VIR_WARN("Unable to construct slirp pidfile path");
return;
}
virErrorPreserveLast(&orig_err);
if (virPidFileForceCleanupPath(pidfile) < 0) {
VIR_WARN("Unable to kill slirp process");
} else {
slirp->pid = 0;
}
virErrorRestore(&orig_err);
}
int
qemuSlirpSetupCgroup(qemuSlirp *slirp,
virCgroup *cgroup)
{
return virCgroupAddProcess(cgroup, slirp->pid);
}
int
qemuSlirpStart(virDomainObj *vm,
virDomainNetDef *net,
bool incoming)
{
qemuDomainObjPrivate *priv = vm->privateData;
virQEMUDriver *driver = priv->driver;
qemuDomainNetworkPrivate *netpriv = QEMU_DOMAIN_NETWORK_PRIVATE(net);
qemuSlirp *slirp = netpriv->slirp;
g_autoptr(virQEMUDriverConfig) cfg = virQEMUDriverGetConfig(driver);
g_autoptr(virCommand) cmd = NULL;
g_autofree char *pidfile = NULL;
size_t i;
pid_t pid = (pid_t) -1;
int rc;
int exitstatus = 0;
int cmdret = 0;
VIR_AUTOCLOSE errfd = -1;
bool killDBusDaemon = false;
g_autofree char *fdname = g_strdup_printf("slirpfd-%s", net->info.alias);
if (!slirp)
return 0;
if (incoming &&
!qemuSlirpHasFeature(slirp, QEMU_SLIRP_FEATURE_MIGRATE)) {
virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
_("The slirp-helper doesn't support migration"));
}
if (qemuSlirpOpen(slirp, driver, vm->def) < 0)
return -1;
if (!(pidfile = qemuSlirpCreatePidFilename(cfg, vm->def, net->info.alias)))
return -1;
cmd = virCommandNew(cfg->slirpHelperName);
virCommandClearCaps(cmd);
virCommandSetPidFile(cmd, pidfile);
virCommandSetErrorFD(cmd, &errfd);
virCommandDaemonize(cmd);
virCommandAddArgFormat(cmd, "--fd=%d", slirp->fd[1]);
virCommandPassFD(cmd, slirp->fd[1],
VIR_COMMAND_PASS_FD_CLOSE_PARENT);
slirp->fd[1] = -1;
for (i = 0; i < net->guestIP.nips; i++) {
const virNetDevIPAddr *ip = net->guestIP.ips[i];
g_autofree char *addr = NULL;
const char *opt = "";
unsigned prefix = ip->prefix;
if (!(addr = virSocketAddrFormat(&ip->address)))
return -1;
if (VIR_SOCKET_ADDR_IS_FAMILY(&ip->address, AF_INET)) {
opt = "--net";
prefix = prefix ?: 24;
}
if (VIR_SOCKET_ADDR_IS_FAMILY(&ip->address, AF_INET6)) {
opt = "--net6";
prefix = prefix ?: 64;
}
virCommandAddArgFormat(cmd, "%s=%s/%u", opt, addr, prefix);
}
if (qemuSlirpHasFeature(slirp, QEMU_SLIRP_FEATURE_DBUS_ADDRESS)) {
g_autofree char *id = qemuSlirpGetDBusVMStateId(net);
g_autofree char *dbus_addr = qemuDBusGetAddress(driver, vm);
/* If per VM DBus daemon is not running yet, start it
* now. But if we fail later on, make sure to kill it. */
killDBusDaemon = !QEMU_DOMAIN_PRIVATE(vm)->dbusDaemonRunning;
if (qemuDBusStart(driver, vm) < 0)
return -1;
virCommandAddArgFormat(cmd, "--dbus-id=%s", id);
virCommandAddArgFormat(cmd, "--dbus-address=%s", dbus_addr);
if (qemuSlirpHasFeature(slirp, QEMU_SLIRP_FEATURE_MIGRATE)) {
qemuDBusVMStateAdd(vm, id);
if (incoming)
virCommandAddArg(cmd, "--dbus-incoming");
}
}
if (qemuSlirpHasFeature(slirp, QEMU_SLIRP_FEATURE_EXIT_WITH_PARENT))
virCommandAddArg(cmd, "--exit-with-parent");
if (qemuExtDeviceLogCommand(driver, vm, cmd, "slirp") < 0)
goto error;
if (qemuSecurityCommandRun(driver, vm, cmd, -1, -1, &exitstatus, &cmdret) < 0)
goto error;
if (cmdret < 0 || exitstatus != 0) {
virReportError(VIR_ERR_INTERNAL_ERROR,
_("Could not start 'slirp'. exitstatus: %d"), exitstatus);
goto error;
}
rc = virPidFileReadPath(pidfile, &pid);
if (rc < 0) {
virReportSystemError(-rc,
_("Unable to read slirp pidfile '%s'"),
pidfile);
goto error;
}
slirp->pid = pid;
netpriv->slirpfd = qemuFDPassDirectNew(fdname, &slirp->fd[0]);
return 0;
error:
if (pid != -1)
virProcessKillPainfully(pid, true);
if (pidfile)
unlink(pidfile);
if (killDBusDaemon)
qemuDBusStop(driver, vm);
slirp->pid = 0;
return -1;
}