Gitiles
Code Review Sign In
gerrit.omnirom.org / android_packages_modules_Virtualization / e62e4172ad3f487c7c41d6f5e8c5b8ca466885fc / . / virtualizationservice / src / main.rs
blob: bcea1bc8c534d7d7878b48a8b30e34a0c295ebc8 [file] [log] [blame]
Andrew Walbranb12a43e2020-11-10 14:22:42 +0000[diff] [blame]1// Copyright 2021, The Android Open Source Project
2//
3// Licensed under the Apache License, Version 2.0 (the "License");
4// you may not use this file except in compliance with the License.
5// You may obtain a copy of the License at
6//
7// http://www.apache.org/licenses/LICENSE-2.0
8//
9// Unless required by applicable law or agreed to in writing, software
10// distributed under the License is distributed on an "AS IS" BASIS,
11// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12// See the License for the specific language governing permissions and
13// limitations under the License.
14
Andrew Walbranf6bf6862021-05-21 12:41:13 +0000[diff] [blame]15//! Android VirtualizationService
Andrew Walbranb12a43e2020-11-10 14:22:42 +0000[diff] [blame]16
David Brazdil33a31022023-01-12 16:55:16 +0000[diff] [blame]17mod aidl;
18mod atom;
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]19mod maintenance;
Alice Wang15f6d082023-08-25 09:11:07 +0000[diff] [blame]20mod remote_provisioning;
Alice Wangc2fec932023-02-23 16:24:02 +0000[diff] [blame]21mod rkpvm;
Andrew Walbrand6dce6f2021-03-05 16:39:08 +0000[diff] [blame]22
David Drysdale79af2662024-02-19 14:50:31 +0000[diff] [blame]23use crate::aidl::{remove_temporary_dir, TEMPORARY_DIRECTORY, VirtualizationServiceInternal};
Jiyong Park6c60fea2022-10-24 16:10:01 +0900[diff] [blame]24use android_logger::{Config, FilterBuilder};
David Drysdale79af2662024-02-19 14:50:31 +0000[diff] [blame]25use android_system_virtualizationservice_internal::aidl::android::system::{
26 virtualizationservice_internal::IVirtualizationServiceInternal::BnVirtualizationServiceInternal
27};
28use android_system_virtualizationmaintenance::aidl::android::system::virtualizationmaintenance::{
29 IVirtualizationMaintenance::BnVirtualizationMaintenance
30};
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]31use anyhow::{bail, Context, Error, Result};
David Drysdale79af2662024-02-19 14:50:31 +0000[diff] [blame]32use binder::{register_lazy_service, BinderFeatures, ProcessState, ThreadState};
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]33use log::{error, info, LevelFilter};
Seungjae Yoo9d3c20a2023-09-07 15:36:44 +0900[diff] [blame]34use std::fs::{create_dir, read_dir};
David Brazdil1f530702022-10-03 12:18:10 +0100[diff] [blame]35use std::os::unix::raw::{pid_t, uid_t};
Seungjae Yoo9d3c20a2023-09-07 15:36:44 +0900[diff] [blame]36use std::path::Path;
Andrew Walbranb12a43e2020-11-10 14:22:42 +0000[diff] [blame]37
Andrew Walbranf6bf6862021-05-21 12:41:13 +0000[diff] [blame]38const LOG_TAG: &str = "VirtualizationService";
Alice Wangbff017f2023-11-09 14:43:28 +0000[diff] [blame]39pub(crate) const REMOTELY_PROVISIONED_COMPONENT_SERVICE_NAME: &str =
Alice Wangb5b90322023-11-14 07:38:18 +0000[diff] [blame]40 "android.hardware.security.keymint.IRemotelyProvisionedComponent/avf";
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]41const INTERNAL_SERVICE_NAME: &str = "android.system.virtualizationservice";
42const MAINTENANCE_SERVICE_NAME: &str = "android.system.virtualizationmaintenance";
Andrew Walbranbf1fb042021-03-15 16:54:09 +0000[diff] [blame]43
David Brazdil1f530702022-10-03 12:18:10 +0100[diff] [blame]44fn get_calling_pid() -> pid_t {
45 ThreadState::get_calling_pid()
46}
47
48fn get_calling_uid() -> uid_t {
49 ThreadState::get_calling_uid()
50}
51
Andrew Walbranb12a43e2020-11-10 14:22:42 +0000[diff] [blame]52fn main() {
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]53 if let Err(e) = try_main() {
54 error!("failed with {e:?}");
55 std::process::exit(1);
56 }
57}
58
59fn try_main() -> Result<()> {
Andrew Walbran0909bc52021-03-17 12:11:56 +0000[diff] [blame]60 android_logger::init_once(
Jiyong Park6c60fea2022-10-24 16:10:01 +0900[diff] [blame]61 Config::default()
Alan Stokes9c069a42022-02-25 16:10:23 +0000[diff] [blame]62 .with_tag(LOG_TAG)
Jeff Vander Stoep57da1572024-01-31 10:52:16 +0100[diff] [blame]63 .with_max_level(LevelFilter::Info)
64 .with_log_buffer(android_logger::LogId::System)
Jiyong Park6c60fea2022-10-24 16:10:01 +0900[diff] [blame]65 .with_filter(
66 // Reduce logspam by silencing logs from the disk crate which don't provide much
67 // information to us.
68 FilterBuilder::new().parse("info,disk=off").build(),
69 ),
Andrew Walbran0909bc52021-03-17 12:11:56 +0000[diff] [blame]70 );
Andrew Walbranbf1fb042021-03-15 16:54:09 +0000[diff] [blame]71
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]72 clear_temporary_files().context("Failed to delete old temporary files")?;
Andrew Walbran488bd072021-07-14 13:29:51 +0000[diff] [blame]73
Seungjae Yoo9d3c20a2023-09-07 15:36:44 +0900[diff] [blame]74 let common_dir_path = Path::new(TEMPORARY_DIRECTORY).join("common");
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]75 create_dir(common_dir_path).context("Failed to create common directory")?;
Seungjae Yoo9d3c20a2023-09-07 15:36:44 +0900[diff] [blame]76
Alice Wangc206b9b2023-08-28 14:13:51 +0000[diff] [blame]77 ProcessState::start_thread_pool();
David Drysdale79af2662024-02-19 14:50:31 +0000[diff] [blame]78
79 // One instance of `VirtualizationServiceInternal` implements both the internal interface
80 // and (optionally) the maintenance interface.
81 let service = VirtualizationServiceInternal::init();
82 let internal_service =
83 BnVirtualizationServiceInternal::new_binder(service.clone(), BinderFeatures::default());
84 register(INTERNAL_SERVICE_NAME, internal_service)?;
Alice Wang15f6d082023-08-25 09:11:07 +0000[diff] [blame]85
Alice Wangb5b90322023-11-14 07:38:18 +0000[diff] [blame]86 if cfg!(remote_attestation) {
87 // The IRemotelyProvisionedComponent service is only supposed to be triggered by rkpd for
88 // RKP VM attestation.
David Drysdale79af2662024-02-19 14:50:31 +0000[diff] [blame]89 let remote_provisioning_service = remote_provisioning::new_binder();
90 register(REMOTELY_PROVISIONED_COMPONENT_SERVICE_NAME, remote_provisioning_service)?;
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]91 }
92
93 if cfg!(llpvm_changes) {
David Drysdale79af2662024-02-19 14:50:31 +0000[diff] [blame]94 let maintenance_service =
95 BnVirtualizationMaintenance::new_binder(service.clone(), BinderFeatures::default());
96 register(MAINTENANCE_SERVICE_NAME, maintenance_service)?;
Alice Wangb5b90322023-11-14 07:38:18 +0000[diff] [blame]97 }
Alice Wang15f6d082023-08-25 09:11:07 +0000[diff] [blame]98
Andrew Walbrand6dce6f2021-03-05 16:39:08 +0000[diff] [blame]99 ProcessState::join_thread_pool();
Alan Stokesea1f0462024-02-19 16:25:47 +0000[diff] [blame]100 bail!("Thread pool unexpectedly ended");
101}
102
103fn register<T: binder::FromIBinder + ?Sized>(name: &str, service: binder::Strong<T>) -> Result<()> {
104 register_lazy_service(name, service.as_binder())
105 .with_context(|| format!("Failed to register {name}"))?;
106 info!("Registered Binder service {name}.");
107 Ok(())
Andrew Walbranb12a43e2020-11-10 14:22:42 +0000[diff] [blame]108}
Andrew Walbran488bd072021-07-14 13:29:51 +0000[diff] [blame]109
110/// Remove any files under `TEMPORARY_DIRECTORY`.
111fn clear_temporary_files() -> Result<(), Error> {
112 for dir_entry in read_dir(TEMPORARY_DIRECTORY)? {
David Brazdil4b4c5102022-12-19 22:56:20 +0000[diff] [blame]113 remove_temporary_dir(&dir_entry?.path())?
Andrew Walbran488bd072021-07-14 13:29:51 +0000[diff] [blame]114 }
115 Ok(())
116}