Gitiles
Code Review Sign In
gerrit.omnirom.org / android_packages_modules_Virtualization / de2d3330246d61dfcb08164f7e2f9f53ffc99517 / . / android / virtualizationservice / src / main.rs
blob: 55245f6afbf5c487c80cffc4ff468c35f7a4590f [file] [log] [blame]
Andrew Walbranb12a43e2020-11-10 14:22:42 +0000[diff] [blame]1// Copyright 2021, The Android Open Source Project
2//
3// Licensed under the Apache License, Version 2.0 (the "License");
4// you may not use this file except in compliance with the License.
5// You may obtain a copy of the License at
6//
7// http://www.apache.org/licenses/LICENSE-2.0
8//
9// Unless required by applicable law or agreed to in writing, software
10// distributed under the License is distributed on an "AS IS" BASIS,
11// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12// See the License for the specific language governing permissions and
13// limitations under the License.
14
Andrew Walbranf6bf6862021-05-21 12:41:13 +0000[diff] [blame]15//! Android VirtualizationService
Andrew Walbranb12a43e2020-11-10 14:22:42 +0000[diff] [blame]16
David Brazdil33a31022023-01-12 16:55:16 +0000[diff] [blame]17mod aidl;
18mod atom;
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]19mod maintenance;
Alice Wang15f6d082023-08-25 09:11:07 +0000[diff] [blame]20mod remote_provisioning;
Alice Wangc2fec932023-02-23 16:24:02 +0000[diff] [blame]21mod rkpvm;
Andrew Walbrand6dce6f2021-03-05 16:39:08 +0000[diff] [blame]22
Alice Wang6c6535d2024-05-31 06:45:31 +0000[diff] [blame]23use crate::aidl::{
24 is_remote_provisioning_hal_declared, remove_temporary_dir, VirtualizationServiceInternal,
25 TEMPORARY_DIRECTORY,
26};
Jiyong Park6c60fea2022-10-24 16:10:01 +0900[diff] [blame]27use android_logger::{Config, FilterBuilder};
Alan Stokes72820a92024-05-13 13:38:50 +0100[diff] [blame]28use android_system_virtualizationmaintenance::aidl::android::system::virtualizationmaintenance;
29use android_system_virtualizationservice_internal::aidl::android::system::virtualizationservice_internal;
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]30use anyhow::{bail, Context, Error, Result};
David Drysdale79af2662024-02-19 14:50:31 +0000[diff] [blame]31use binder::{register_lazy_service, BinderFeatures, ProcessState, ThreadState};
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]32use log::{error, info, LevelFilter};
Seungjae Yoo9d3c20a2023-09-07 15:36:44 +0900[diff] [blame]33use std::fs::{create_dir, read_dir};
David Brazdil1f530702022-10-03 12:18:10 +0100[diff] [blame]34use std::os::unix::raw::{pid_t, uid_t};
Seungjae Yoo9d3c20a2023-09-07 15:36:44 +0900[diff] [blame]35use std::path::Path;
Alan Stokes72820a92024-05-13 13:38:50 +0100[diff] [blame]36use virtualizationmaintenance::IVirtualizationMaintenance::BnVirtualizationMaintenance;
37use virtualizationservice_internal::IVirtualizationServiceInternal::BnVirtualizationServiceInternal;
Andrew Walbranb12a43e2020-11-10 14:22:42 +0000[diff] [blame]38
Andrew Walbranf6bf6862021-05-21 12:41:13 +0000[diff] [blame]39const LOG_TAG: &str = "VirtualizationService";
Alice Wangbff017f2023-11-09 14:43:28 +0000[diff] [blame]40pub(crate) const REMOTELY_PROVISIONED_COMPONENT_SERVICE_NAME: &str =
Alice Wangb5b90322023-11-14 07:38:18 +0000[diff] [blame]41 "android.hardware.security.keymint.IRemotelyProvisionedComponent/avf";
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]42const INTERNAL_SERVICE_NAME: &str = "android.system.virtualizationservice";
43const MAINTENANCE_SERVICE_NAME: &str = "android.system.virtualizationmaintenance";
Andrew Walbranbf1fb042021-03-15 16:54:09 +0000[diff] [blame]44
David Brazdil1f530702022-10-03 12:18:10 +0100[diff] [blame]45fn get_calling_pid() -> pid_t {
46 ThreadState::get_calling_pid()
47}
48
49fn get_calling_uid() -> uid_t {
50 ThreadState::get_calling_uid()
51}
52
Andrew Walbranb12a43e2020-11-10 14:22:42 +0000[diff] [blame]53fn main() {
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]54 if let Err(e) = try_main() {
55 error!("failed with {e:?}");
56 std::process::exit(1);
57 }
58}
59
60fn try_main() -> Result<()> {
Andrew Walbran0909bc52021-03-17 12:11:56 +0000[diff] [blame]61 android_logger::init_once(
Jiyong Park6c60fea2022-10-24 16:10:01 +0900[diff] [blame]62 Config::default()
Alan Stokes9c069a42022-02-25 16:10:23 +0000[diff] [blame]63 .with_tag(LOG_TAG)
Jeff Vander Stoep57da1572024-01-31 10:52:16 +0100[diff] [blame]64 .with_max_level(LevelFilter::Info)
65 .with_log_buffer(android_logger::LogId::System)
Jiyong Park6c60fea2022-10-24 16:10:01 +0900[diff] [blame]66 .with_filter(
67 // Reduce logspam by silencing logs from the disk crate which don't provide much
68 // information to us.
69 FilterBuilder::new().parse("info,disk=off").build(),
70 ),
Andrew Walbran0909bc52021-03-17 12:11:56 +0000[diff] [blame]71 );
Andrew Walbranbf1fb042021-03-15 16:54:09 +0000[diff] [blame]72
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]73 clear_temporary_files().context("Failed to delete old temporary files")?;
Andrew Walbran488bd072021-07-14 13:29:51 +0000[diff] [blame]74
Seungjae Yoo9d3c20a2023-09-07 15:36:44 +0900[diff] [blame]75 let common_dir_path = Path::new(TEMPORARY_DIRECTORY).join("common");
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]76 create_dir(common_dir_path).context("Failed to create common directory")?;
Seungjae Yoo9d3c20a2023-09-07 15:36:44 +0900[diff] [blame]77
Alice Wangc206b9b2023-08-28 14:13:51 +0000[diff] [blame]78 ProcessState::start_thread_pool();
David Drysdale79af2662024-02-19 14:50:31 +0000[diff] [blame]79
80 // One instance of `VirtualizationServiceInternal` implements both the internal interface
81 // and (optionally) the maintenance interface.
82 let service = VirtualizationServiceInternal::init();
83 let internal_service =
84 BnVirtualizationServiceInternal::new_binder(service.clone(), BinderFeatures::default());
85 register(INTERNAL_SERVICE_NAME, internal_service)?;
Alice Wang15f6d082023-08-25 09:11:07 +0000[diff] [blame]86
Alice Wang6c6535d2024-05-31 06:45:31 +0000[diff] [blame]87 if is_remote_provisioning_hal_declared().unwrap_or(false) {
Alice Wangb5b90322023-11-14 07:38:18 +0000[diff] [blame]88 // The IRemotelyProvisionedComponent service is only supposed to be triggered by rkpd for
89 // RKP VM attestation.
David Drysdale79af2662024-02-19 14:50:31 +0000[diff] [blame]90 let remote_provisioning_service = remote_provisioning::new_binder();
91 register(REMOTELY_PROVISIONED_COMPONENT_SERVICE_NAME, remote_provisioning_service)?;
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]92 }
93
94 if cfg!(llpvm_changes) {
David Drysdale79af2662024-02-19 14:50:31 +0000[diff] [blame]95 let maintenance_service =
96 BnVirtualizationMaintenance::new_binder(service.clone(), BinderFeatures::default());
97 register(MAINTENANCE_SERVICE_NAME, maintenance_service)?;
Alice Wangb5b90322023-11-14 07:38:18 +0000[diff] [blame]98 }
Alice Wang15f6d082023-08-25 09:11:07 +0000[diff] [blame]99
Andrew Walbrand6dce6f2021-03-05 16:39:08 +0000[diff] [blame]100 ProcessState::join_thread_pool();
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]101 bail!("Thread pool unexpectedly ended");
102}
103
104fn register<T: binder::FromIBinder + ?Sized>(name: &str, service: binder::Strong<T>) -> Result<()> {
105 register_lazy_service(name, service.as_binder())
106 .with_context(|| format!("Failed to register {name}"))?;
107 info!("Registered Binder service {name}.");
108 Ok(())
Andrew Walbranb12a43e2020-11-10 14:22:42 +0000[diff] [blame]109}
Andrew Walbran488bd072021-07-14 13:29:51 +0000[diff] [blame]110
111/// Remove any files under `TEMPORARY_DIRECTORY`.
112fn clear_temporary_files() -> Result<(), Error> {
113 for dir_entry in read_dir(TEMPORARY_DIRECTORY)? {
David Brazdil4b4c5102022-12-19 22:56:20 +0000[diff] [blame]114 remove_temporary_dir(&dir_entry?.path())?
Andrew Walbran488bd072021-07-14 13:29:51 +0000[diff] [blame]115 }
116 Ok(())
117}