1 /* Copyright 2005 Princeton University
3 Redistribution and use in source and binary forms, with or without
4 modification, are permitted provided that the following conditions
7 * Redistributions of source code must retain the above copyright
8 notice, this list of conditions and the following disclaimer.
10 * Redistributions in binary form must reproduce the above
11 copyright notice, this list of conditions and the following
12 disclaimer in the documentation and/or other materials provided
13 with the distribution.
15 * Neither the name of the copyright holder nor the names of its
16 contributors may be used to endorse or promote products derived
17 from this software without specific prior written permission.
19 THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
20 "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
21 LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
22 A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL PRINCETON
23 UNIVERSITY OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
24 INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
25 BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS
26 OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
27 AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY
29 WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
30 POSSIBILITY OF SUCH DAMAGE.
38 #include <sys/resource.h>
39 #include <sys/types.h>
44 #include "pathconfig.h"
47 #include "planetlab.h"
48 #include "vserver-internal.h"
50 #define NONE ({ Py_INCREF(Py_None); Py_None; })
56 vserver_chcontext(PyObject *self, PyObject *args)
60 uint_least64_t bcaps = 0;
62 if (!PyArg_ParseTuple(args, "I|K", &ctx, &bcaps))
64 bcaps |= ~vc_get_insecurebcaps();
66 if ((ctx_is_new = pl_chcontext(ctx, bcaps, 0)) < 0)
67 return PyErr_SetFromErrno(PyExc_OSError);
69 return PyBool_FromLong(ctx_is_new);
73 vserver_setup_done(PyObject *self, PyObject *args)
77 if (!PyArg_ParseTuple(args, "I", &ctx))
80 if (pl_setup_done(ctx) < 0)
81 return PyErr_SetFromErrno(PyExc_OSError);
87 vserver_isrunning(PyObject *self, PyObject *args)
94 if (!PyArg_ParseTuple(args, "I", &ctx))
97 sprintf(fname,"/proc/virtual/%d", ctx);
99 if(stat(&fname[0],&statbuf)==0)
100 ret = PyBool_FromLong(1);
102 ret = PyBool_FromLong(0);
108 __vserver_get_rlimit(xid_t xid, int resource) {
109 struct vc_rlimit limits;
113 if (vc_get_rlimit(xid, resource, &limits)==-1)
114 ret = PyErr_SetFromErrno(PyExc_OSError);
116 ret = Py_BuildValue("LLL",limits.hard, limits.soft, limits.min);
122 vserver_get_rlimit(PyObject *self, PyObject *args) {
127 if (!PyArg_ParseTuple(args, "Ii", &xid, &resource))
130 ret = __vserver_get_rlimit(xid, resource);
136 vserver_set_rlimit(PyObject *self, PyObject *args) {
137 struct vc_rlimit limits;
140 int resource, lresource;
143 limits.min = VC_LIM_KEEP;
144 limits.soft = VC_LIM_KEEP;
145 limits.hard = VC_LIM_KEEP;
147 if (!PyArg_ParseTuple(args, "IiLLL", &xid, &resource, &limits.hard, &limits.soft, &limits.min))
150 lresource = resource;
152 case VC_VLIMIT_NSOCK:
154 case VC_VLIMIT_SHMEM:
155 goto do_vc_set_rlimit;
156 case VC_VLIMIT_OPENFD:
157 lresource = RLIMIT_NOFILE;
163 getrlimit(lresource,&lim);
164 if (adjust_lim(&limits,&lim)) {
165 setrlimit(lresource, &lim);
170 if (vc_set_rlimit(xid, resource, &limits)==-1)
171 ret = PyErr_SetFromErrno(PyExc_OSError);
173 ret = __vserver_get_rlimit(xid, resource);
182 vserver_setsched(PyObject *self, PyObject *args)
186 uint32_t cpu_sched_flags = VC_VXF_SCHED_FLAGS;
188 if (!PyArg_ParseTuple(args, "II|I", &ctx, &cpu_share, &cpu_sched_flags))
191 /* ESRCH indicates that there are no processes in the context */
192 if (pl_setsched(ctx, cpu_share, cpu_sched_flags) &&
194 return PyErr_SetFromErrno(PyExc_OSError);
200 vserver_get_dlimit(PyObject *self, PyObject *args)
205 struct vc_ctx_dlimit data;
208 if (!PyArg_ParseTuple(args, "si", &path,&xid))
211 memset(&data, 0, sizeof(data));
212 r = vc_get_dlimit(path, xid, 0, &data);
214 res = Py_BuildValue("(i,i,i,i,i)",
221 res = PyErr_SetFromErrno(PyExc_OSError);
229 vserver_set_dlimit(PyObject *self, PyObject *args)
233 struct vc_ctx_dlimit data;
235 memset(&data,0,sizeof(data));
236 if (!PyArg_ParseTuple(args, "siiiiii", &path,
245 if ((vc_add_dlimit(path, xid, 0) && errno != EEXIST) ||
246 vc_set_dlimit(path, xid, 0, &data))
247 return PyErr_SetFromErrno(PyExc_OSError);
253 vserver_unset_dlimit(PyObject *self, PyObject *args)
258 if (!PyArg_ParseTuple(args, "si", &path, &xid))
261 if (vc_rem_dlimit(path, xid, 0) && errno != ESRCH)
262 return PyErr_SetFromErrno(PyExc_OSError);
268 vserver_killall(PyObject *self, PyObject *args)
272 struct vc_ctx_flags cflags = {
274 .mask = VC_VXF_PERSISTENT
276 struct vc_net_flags nflags = {
278 .mask = VC_NXF_PERSISTENT
281 if (!PyArg_ParseTuple(args, "Ii", &ctx, &sig))
284 if (vc_ctx_kill(ctx, 0, sig) && errno != ESRCH)
285 return PyErr_SetFromErrno(PyExc_OSError);
287 if (vc_set_cflags(ctx, &cflags) && errno != ESRCH)
288 return PyErr_SetFromErrno(PyExc_OSError);
290 if (vc_set_nflags(ctx, &nflags) && errno != ESRCH)
291 return PyErr_SetFromErrno(PyExc_OSError);
297 vserver_set_bcaps(PyObject *self, PyObject *args)
300 struct vc_ctx_caps caps;
302 if (!PyArg_ParseTuple(args, "IK", &ctx, &caps.bcaps))
305 caps.bmask = vc_get_insecurebcaps();
306 caps.cmask = caps.ccaps = 0;
307 if (vc_set_ccaps(ctx, &caps) == -1 && errno != ESRCH)
308 return PyErr_SetFromErrno(PyExc_OSError);
314 vserver_text2bcaps(PyObject *self, PyObject *args)
316 struct vc_ctx_caps caps = { .bcaps = 0 };
319 struct vc_err_listparser err;
321 if (!PyArg_ParseTuple(args, "s#", &list, &len))
324 vc_list2bcap(list, len, &err, &caps);
326 return Py_BuildValue("K", caps.bcaps);
330 vserver_get_bcaps(PyObject *self, PyObject *args)
333 struct vc_ctx_caps caps;
335 if (!PyArg_ParseTuple(args, "I", &ctx))
338 if (vc_get_ccaps(ctx, &caps) == -1) {
340 return PyErr_SetFromErrno(PyExc_OSError);
345 return Py_BuildValue("K", caps.bcaps & vc_get_insecurebcaps());
349 vserver_bcaps2text(PyObject *self, PyObject *args)
351 struct vc_ctx_caps caps = { .bcaps = 0 };
355 if (!PyArg_ParseTuple(args, "K", &caps.bcaps))
358 list = PyString_FromString("");
360 while ((cap = vc_lobcap2text(&caps.bcaps)) != NULL) {
363 PyString_ConcatAndDel(&list, PyString_FromFormat(
364 (PyString_Size(list) > 0 ? ",CAP_%s" : "CAP_%s" ),
371 static PyMethodDef methods[] = {
372 { "chcontext", vserver_chcontext, METH_VARARGS,
373 "chcontext to vserver with provided flags" },
374 { "setup_done", vserver_setup_done, METH_VARARGS,
375 "Release vserver setup lock" },
376 { "setsched", vserver_setsched, METH_VARARGS,
377 "Change vserver scheduling attributes for given vserver context" },
378 { "setdlimit", vserver_set_dlimit, METH_VARARGS,
379 "Set disk limits for given vserver context" },
380 { "unsetdlimit", vserver_unset_dlimit, METH_VARARGS,
381 "Remove disk limits for given vserver context" },
382 { "getdlimit", vserver_get_dlimit, METH_VARARGS,
383 "Get disk limits for given vserver context" },
384 { "setrlimit", vserver_set_rlimit, METH_VARARGS,
385 "Set resource limits for given resource of a vserver context" },
386 { "getrlimit", vserver_get_rlimit, METH_VARARGS,
387 "Get resource limits for given resource of a vserver context" },
388 { "killall", vserver_killall, METH_VARARGS,
389 "Send signal to all processes in vserver context" },
390 { "isrunning", vserver_isrunning, METH_VARARGS,
391 "Check if vserver is running"},
392 { "setbcaps", vserver_set_bcaps, METH_VARARGS,
393 "Set POSIX capabilities of a vserver context" },
394 { "getbcaps", vserver_get_bcaps, METH_VARARGS,
395 "Get POSIX capabilities of a vserver context" },
396 { "text2bcaps", vserver_text2bcaps, METH_VARARGS,
397 "Translate a string of capabilities to a bitmap" },
398 { "bcaps2text", vserver_bcaps2text, METH_VARARGS,
399 "Translate a capability-bitmap into a string" },
400 { NULL, NULL, 0, NULL }
404 initvserverimpl(void)
408 mod = Py_InitModule("vserverimpl", methods);
410 /* export the set of 'safe' capabilities */
411 PyModule_AddIntConstant(mod, "CAP_SAFE", ~vc_get_insecurebcaps());
413 /* export the default vserver directory */
414 PyModule_AddStringConstant(mod, "VSERVER_BASEDIR", DEFAULT_VSERVERDIR);
416 /* export limit-related constants */
417 PyModule_AddIntConstant(mod, "DLIMIT_KEEP", (int)VC_CDLIM_KEEP);
418 PyModule_AddIntConstant(mod, "DLIMIT_INF", (int)VC_CDLIM_INFINITY);
419 PyModule_AddIntConstant(mod, "VC_LIM_KEEP", (int)VC_LIM_KEEP);
421 PyModule_AddIntConstant(mod, "RLIMIT_CPU", (int)RLIMIT_CPU);
422 PyModule_AddIntConstant(mod, "RLIMIT_RSS", (int)RLIMIT_RSS);
423 PyModule_AddIntConstant(mod, "RLIMIT_NPROC", (int)RLIMIT_NPROC);
424 PyModule_AddIntConstant(mod, "RLIMIT_NOFILE", (int)RLIMIT_NOFILE);
425 PyModule_AddIntConstant(mod, "RLIMIT_MEMLOCK", (int)RLIMIT_MEMLOCK);
426 PyModule_AddIntConstant(mod, "RLIMIT_AS", (int)RLIMIT_AS);
427 PyModule_AddIntConstant(mod, "RLIMIT_LOCKS", (int)RLIMIT_LOCKS);
429 PyModule_AddIntConstant(mod, "RLIMIT_SIGPENDING", (int)RLIMIT_SIGPENDING);
430 PyModule_AddIntConstant(mod, "RLIMIT_MSGQUEUE", (int)RLIMIT_MSGQUEUE);
432 PyModule_AddIntConstant(mod, "VLIMIT_NSOCK", (int)VC_VLIMIT_NSOCK);
433 PyModule_AddIntConstant(mod, "VLIMIT_OPENFD", (int)VC_VLIMIT_OPENFD);
434 PyModule_AddIntConstant(mod, "VLIMIT_ANON", (int)VC_VLIMIT_ANON);
435 PyModule_AddIntConstant(mod, "VLIMIT_SHMEM", (int)VC_VLIMIT_SHMEM);
437 /* scheduler flags */
438 PyModule_AddIntConstant(mod,
439 "VS_SCHED_CPU_GUARANTEED",
440 VS_SCHED_CPU_GUARANTEED);