Dobby/DobbyUtils_8h_source.html

/*

* If not stated otherwise in this file or this component's LICENSE file the

* following copyright and licenses apply:

*

* Copyright 2016 Sky UK

*

* Licensed under the Apache License, Version 2.0 (the "License");

* you may not use this file except in compliance with the License.

* You may obtain a copy of the License at

*

* http://www.apache.org/licenses/LICENSE-2.0

*

* Unless required by applicable law or agreed to in writing, software

* distributed under the License is distributed on an "AS IS" BASIS,

* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

* See the License for the specific language governing permissions and

* limitations under the License.

*/

/*

 * File:   DobbyUtils.h

 *

 */

#ifndef DOBBYUTILS_H

#define DOBBYUTILS_H


#include "IDobbyUtils.h"


#include <map>

#include <mutex>

#include <functional>

#include <set>


class DobbyTimer;


// -----------------------------------------------------------------------------


class DobbyUtils : public virtual IDobbyUtils

{

public:

    DobbyUtils();

    ~DobbyUtils() final;


public:

    int loopDeviceAssociate(int fileFd, std::string* loopDevPath) const override;


private:

    int openLoopDevice(std::string* loopDevice) const;

    bool attachFileToLoopDevice(int loopFd, int fileFd) const;


public:

    bool checkExtImageFile(int dirFd, const std::string& imageFileName,

                           bool repair) const override;

    bool formatExtImageFile(int dirFd, const std::string& imageFileName,

                            const std::string& fsType) const override;


private:

    int runE2fsTool(int dirFd, std::list<std::string>* consoleOutput,

                    const char* e2fsTool, ...) const;


public:

    bool mkdirRecursive(const std::string& path, mode_t mode) const override;

    bool mkdirRecursive(int dirFd, const std::string& path, mode_t mode) const override;


    bool rmdirRecursive(const std::string& path) const override;

    bool rmdirRecursive(int dirFd, const std::string& path) const override;


    bool rmdirContents(const std::string& path) const override;

    bool rmdirContents(int dirFd, const std::string& path) const override;

    bool rmdirContents(int dirFd) const override;


    void cleanMountLostAndFound(const std::string& mountPoint,

                                const std::string& logTag) const override;


private:

    static bool deleteRecursive(int dirfd, int depth);


public:

    int getNamespaceFd(pid_t pid, int nsType) const override;


private:

    bool callInNamespaceImpl(pid_t pid, int nsType,

                             const std::function<bool()>& func) const override;


    bool callInNamespaceImpl(int namespaceFd,

                             const std::function<bool()>& func) const override;


    void nsThread(int newNsFd, int nsType, bool* success,

                  std::function<bool()>& func) const;


public:

    bool writeTextFileAt(int dirFd, const std::string& path,

                         const std::string& str,

                         int flags, mode_t mode) const override;

    bool writeTextFile(const std::string& path,

                       const std::string& str,

                       int flags, mode_t mode) const override;


    std::string readTextFile(const std::string& path,

                             size_t maxLen) const override;

    std::string readTextFileAt(int dirFd, const std::string& path,

                               size_t maxLen) const override;


public:

    bool cancelTimer(int timerId) const override;


private:

    int startTimerImpl(const std::chrono::milliseconds& timeout,

                       bool oneShot,

                       const std::function<bool()>& handler) const override;


    std::shared_ptr<DobbyTimer> mTimerQueue;


public:

    unsigned int getDriverMajorNumber(const std::string &driverName) const override;


    bool deviceAllowed(dev_t device) const override;


private:

    void buildDeviceWhitelist();


    std::set<dev_t> mDeviceWhitelist;


    mutable std::mutex mMajorNumberLock;

    mutable std::map<std::string, unsigned int> mMajorNumberCache;


public:

    void setIntegerMetaData(const ContainerId &id, const std::string &key,

                            int value) override;

    int getIntegerMetaData(const ContainerId &id, const std::string &key,

                           int defaultValue) const override;


    void setStringMetaData(const ContainerId &id, const std::string &key,

                           const std::string &value) override;

    std::string getStringMetaData(const ContainerId &id, const std::string &key,

                                  const std::string &defaultValue) const override;


    void clearContainerMetaData(const ContainerId &id) override;


public:

    bool insertEbtablesRule(const std::string &args) const override;

    bool deleteEbtablesRule(const std::string &args) const override;


private:

    bool executeCommand(const std::string &command) const;

    int  getGIDorUID(pid_t pid, const std::string& idType) const;


public:

    uid_t getUID(pid_t pid) const override;

    gid_t getGID(pid_t pid) const override;


private:

    std::mutex mMetaDataLock;

    std::map<std::pair<ContainerId, std::string>, int> mIntegerMetaData;

    std::map<std::pair<ContainerId, std::string>, std::string> mStringMetaData;


};


#endif // !defined(DOBBYUTILS_H)

ContainerId
A wrapper around a std::string, used to add some type definition to to an id and also to sanity check...
Definition ContainerId.h:41

DobbyTimer
Utility object that can be used to register a callback function to execute in the future.
Definition DobbyTimer.h:58

DobbyUtils
Utility methods for hooks and the general containiser daemon.
Definition DobbyUtils.h:43

DobbyUtils::checkExtImageFile
bool checkExtImageFile(int dirFd, const std::string &imageFileName, bool repair) const override
Runs the e2fsck tool on a file system image to check it's integrity.
Definition DobbyUtils.cpp:1067

DobbyUtils::deleteEbtablesRule
bool deleteEbtablesRule(const std::string &args) const override
Deletes the given ebtables rule from the existing set.
Definition DobbyUtils.cpp:1631

DobbyUtils::setStringMetaData
void setStringMetaData(const ContainerId &id, const std::string &key, const std::string &value) override
Sets / Gets string meta data for the given container.
Definition DobbyUtils.cpp:1550

DobbyUtils::rmdirContents
bool rmdirContents(const std::string &path) const override
Removes the contents of a directory but leave the actual directory in place.
Definition DobbyUtils.cpp:346

DobbyUtils::setIntegerMetaData
void setIntegerMetaData(const ContainerId &id, const std::string &key, int value) override
Sets / Gets integer meta data for the given container.
Definition DobbyUtils.cpp:1522

DobbyUtils::nsThread
void nsThread(int newNsFd, int nsType, bool *success, std::function< bool()> &func) const
Thread helper function that implements the setns syscall.
Definition DobbyUtils.cpp:543

DobbyUtils::readTextFile
std::string readTextFile(const std::string &path, size_t maxLen) const override
Simply read a string from a file.
Definition DobbyUtils.cpp:1330

DobbyUtils::startTimerImpl
int startTimerImpl(const std::chrono::milliseconds &timeout, bool oneShot, const std::function< bool()> &handler) const override
Adds a new timer to the timer queue.
Definition DobbyUtils.cpp:1360

DobbyUtils::getUID
uid_t getUID(pid_t pid) const override
Returns the UID for the given PID.
Definition DobbyUtils.cpp:1729

DobbyUtils::buildDeviceWhitelist
void buildDeviceWhitelist()
Builds the whitelist of allowed device numbers.
Definition DobbyUtils.cpp:1487

DobbyUtils::cancelTimer
bool cancelTimer(int timerId) const override
Removes the given timer from the timer queue.
Definition DobbyUtils.cpp:1384

DobbyUtils::rmdirRecursive
bool rmdirRecursive(const std::string &path) const override
Removes a directory and all it's contents.
Definition DobbyUtils.cpp:298

DobbyUtils::getGID
gid_t getGID(pid_t pid) const override
Returns the GID for the given PID.
Definition DobbyUtils.cpp:1717

DobbyUtils::openLoopDevice
int openLoopDevice(std::string *loopDevice) const
Attempts to open an available loop device.
Definition DobbyUtils.cpp:712

DobbyUtils::formatExtImageFile
bool formatExtImageFile(int dirFd, const std::string &imageFileName, const std::string &fsType) const override
Runs the mke2fs tool to format a file system image.
Definition DobbyUtils.cpp:1164

DobbyUtils::mkdirRecursive
bool mkdirRecursive(const std::string &path, mode_t mode) const override
Makes a directory and all parent directories as needed.
Definition DobbyUtils.cpp:166

DobbyUtils::writeTextFileAt
bool writeTextFileAt(int dirFd, const std::string &path, const std::string &str, int flags, mode_t mode) const override
Simply writes a string into a file.
Definition DobbyUtils.cpp:1223

DobbyUtils::getNamespaceFd
int getNamespaceFd(pid_t pid, int nsType) const override
Returns a file descriptor to the given namespace of the process.
Definition DobbyUtils.cpp:488

DobbyUtils::clearContainerMetaData
void clearContainerMetaData(const ContainerId &id) override
Clears all the meta data stored for a given container.
Definition DobbyUtils.cpp:1576

DobbyUtils::readTextFileAt
std::string readTextFileAt(int dirFd, const std::string &path, size_t maxLen) const override
Simply read a string from a file.
Definition DobbyUtils.cpp:1288

DobbyUtils::deviceAllowed
bool deviceAllowed(dev_t device) const override
Returns true if the given device is allowed in the container.
Definition DobbyUtils.cpp:1470

DobbyUtils::getGIDorUID
int getGIDorUID(pid_t pid, const std::string &idType) const
Returns the effective GID or UID for the given PID by parsing /proc/<PID>/status.
Definition DobbyUtils.cpp:1674

DobbyUtils::runE2fsTool
int runE2fsTool(int dirFd, std::list< std::string > *consoleOutput, const char *e2fsTool,...) const
Run the E2FS tool inside the given directory with given args.
Definition DobbyUtils.cpp:890

DobbyUtils::callInNamespaceImpl
bool callInNamespaceImpl(pid_t pid, int nsType, const std::function< bool()> &func) const override
Utility function to run some code in a specific namespace of the container.
Definition DobbyUtils.cpp:629

DobbyUtils::attachFileToLoopDevice
bool attachFileToLoopDevice(int loopFd, int fileFd) const
Attempts to attach the file to the loop device.
Definition DobbyUtils.cpp:794

DobbyUtils::writeTextFile
bool writeTextFile(const std::string &path, const std::string &str, int flags, mode_t mode) const override
Simply writes a string into a file.
Definition DobbyUtils.cpp:1263

DobbyUtils::cleanMountLostAndFound
void cleanMountLostAndFound(const std::string &mountPoint, const std::string &logTag) const override
Logs and deletes any files found in the lost+found directory of the mount point.
Definition DobbyUtils.cpp:388

DobbyUtils::insertEbtablesRule
bool insertEbtablesRule(const std::string &args) const override
Inserts the given ebtables rule to the existing set.
Definition DobbyUtils.cpp:1614

DobbyUtils::deleteRecursive
static bool deleteRecursive(int dirfd, int depth)
Recursive function that deletes everything within the supplied directory (as a descriptor).
Definition DobbyUtils.cpp:180

DobbyUtils::loopDeviceAssociate
int loopDeviceAssociate(int fileFd, std::string *loopDevPath) const override
Associates a give file descriptor with a loop device.
Definition DobbyUtils.cpp:844

DobbyUtils::getDriverMajorNumber
unsigned int getDriverMajorNumber(const std::string &driverName) const override
Returns the major number assigned to a given driver.
Definition DobbyUtils.cpp:1404

IDobbyUtils_v3
Third version of the interface containing extra functions for working with ebtables.
Definition IDobbyUtils.h:637