1 /* Copyright 2005 Princeton University
3 Redistribution and use in source and binary forms, with or without
4 modification, are permitted provided that the following conditions
7 * Redistributions of source code must retain the above copyright
8 notice, this list of conditions and the following disclaimer.
10 * Redistributions in binary form must reproduce the above
11 copyright notice, this list of conditions and the following
12 disclaimer in the documentation and/or other materials provided
13 with the distribution.
15 * Neither the name of the copyright holder nor the names of its
16 contributors may be used to endorse or promote products derived
17 from this software without specific prior written permission.
19 THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
20 "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
21 LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
22 A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL PRINCETON
23 UNIVERSITY OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
24 INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
25 BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS
26 OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
27 AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY
29 WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
30 POSSIBILITY OF SUCH DAMAGE.
38 #include <sys/resource.h>
39 #include <sys/types.h>
42 #include <sys/socket.h>
43 #include <arpa/inet.h>
46 #include "pathconfig.h"
49 #include "planetlab.h"
50 #include "vserver-internal.h"
52 #define NONE ({ Py_INCREF(Py_None); Py_None; })
58 vserver_chcontext(PyObject *self, PyObject *args)
62 uint_least64_t bcaps = 0;
64 if (!PyArg_ParseTuple(args, "I|K", &ctx, &bcaps))
66 bcaps |= ~vc_get_insecurebcaps();
68 if ((ctx_is_new = pl_chcontext(ctx, bcaps, 0)) < 0)
69 return PyErr_SetFromErrno(PyExc_OSError);
71 return PyBool_FromLong(ctx_is_new);
75 vserver_setup_done(PyObject *self, PyObject *args)
79 if (!PyArg_ParseTuple(args, "I", &ctx))
82 if (pl_setup_done(ctx) < 0)
83 return PyErr_SetFromErrno(PyExc_OSError);
89 vserver_isrunning(PyObject *self, PyObject *args)
96 if (!PyArg_ParseTuple(args, "I", &ctx))
99 sprintf(fname,"/proc/virtual/%d", ctx);
101 if(stat(&fname[0],&statbuf)==0)
102 ret = PyBool_FromLong(1);
104 ret = PyBool_FromLong(0);
110 __vserver_get_rlimit(xid_t xid, int resource) {
111 struct vc_rlimit limits;
115 if (vc_get_rlimit(xid, resource, &limits)==-1)
116 ret = PyErr_SetFromErrno(PyExc_OSError);
118 ret = Py_BuildValue("LLL",limits.hard, limits.soft, limits.min);
124 vserver_get_rlimit(PyObject *self, PyObject *args) {
129 if (!PyArg_ParseTuple(args, "Ii", &xid, &resource))
132 ret = __vserver_get_rlimit(xid, resource);
138 vserver_set_rlimit(PyObject *self, PyObject *args) {
139 struct vc_rlimit limits;
142 int resource, lresource;
145 limits.min = VC_LIM_KEEP;
146 limits.soft = VC_LIM_KEEP;
147 limits.hard = VC_LIM_KEEP;
149 if (!PyArg_ParseTuple(args, "IiLLL", &xid, &resource, &limits.hard, &limits.soft, &limits.min))
152 lresource = resource;
154 case VC_VLIMIT_NSOCK:
156 case VC_VLIMIT_SHMEM:
157 goto do_vc_set_rlimit;
158 case VC_VLIMIT_OPENFD:
159 lresource = RLIMIT_NOFILE;
165 getrlimit(lresource,&lim);
166 if (adjust_lim(&limits,&lim)) {
167 setrlimit(lresource, &lim);
172 if (vc_set_rlimit(xid, resource, &limits)==-1)
173 ret = PyErr_SetFromErrno(PyExc_OSError);
175 ret = __vserver_get_rlimit(xid, resource);
184 vserver_setsched(PyObject *self, PyObject *args)
188 uint32_t cpu_sched_flags = VC_VXF_SCHED_FLAGS;
190 if (!PyArg_ParseTuple(args, "II|I", &ctx, &cpu_share, &cpu_sched_flags))
193 /* ESRCH indicates that there are no processes in the context */
194 if (pl_setsched(ctx, cpu_share, cpu_sched_flags) &&
196 return PyErr_SetFromErrno(PyExc_OSError);
202 vserver_get_dlimit(PyObject *self, PyObject *args)
207 struct vc_ctx_dlimit data;
210 if (!PyArg_ParseTuple(args, "si", &path,&xid))
213 memset(&data, 0, sizeof(data));
214 r = vc_get_dlimit(path, xid, 0, &data);
216 res = Py_BuildValue("(i,i,i,i,i)",
223 res = PyErr_SetFromErrno(PyExc_OSError);
231 vserver_set_dlimit(PyObject *self, PyObject *args)
235 struct vc_ctx_dlimit data;
237 memset(&data,0,sizeof(data));
238 if (!PyArg_ParseTuple(args, "siiiiii", &path,
247 if ((vc_add_dlimit(path, xid, 0) && errno != EEXIST) ||
248 vc_set_dlimit(path, xid, 0, &data))
249 return PyErr_SetFromErrno(PyExc_OSError);
255 vserver_unset_dlimit(PyObject *self, PyObject *args)
260 if (!PyArg_ParseTuple(args, "si", &path, &xid))
263 if (vc_rem_dlimit(path, xid, 0) && errno != ESRCH)
264 return PyErr_SetFromErrno(PyExc_OSError);
270 vserver_killall(PyObject *self, PyObject *args)
274 struct vc_ctx_flags cflags = {
276 .mask = VC_VXF_PERSISTENT
278 struct vc_net_flags nflags = {
280 .mask = VC_NXF_PERSISTENT
283 if (!PyArg_ParseTuple(args, "Ii", &ctx, &sig))
286 if (vc_ctx_kill(ctx, 0, sig) && errno != ESRCH)
287 return PyErr_SetFromErrno(PyExc_OSError);
289 if (vc_set_cflags(ctx, &cflags) && errno != ESRCH)
290 return PyErr_SetFromErrno(PyExc_OSError);
292 if (vc_set_nflags(ctx, &nflags) && errno != ESRCH)
293 return PyErr_SetFromErrno(PyExc_OSError);
299 vserver_set_bcaps(PyObject *self, PyObject *args)
302 struct vc_ctx_caps caps;
304 if (!PyArg_ParseTuple(args, "IK", &ctx, &caps.bcaps))
307 caps.bmask = vc_get_insecurebcaps();
308 caps.cmask = caps.ccaps = 0;
309 if (vc_set_ccaps(ctx, &caps) == -1 && errno != ESRCH)
310 return PyErr_SetFromErrno(PyExc_OSError);
316 vserver_text2bcaps(PyObject *self, PyObject *args)
318 struct vc_ctx_caps caps = { .bcaps = 0 };
321 struct vc_err_listparser err;
323 if (!PyArg_ParseTuple(args, "s#", &list, &len))
326 vc_list2bcap(list, len, &err, &caps);
328 return Py_BuildValue("K", caps.bcaps);
332 vserver_get_bcaps(PyObject *self, PyObject *args)
335 struct vc_ctx_caps caps;
337 if (!PyArg_ParseTuple(args, "I", &ctx))
340 if (vc_get_ccaps(ctx, &caps) == -1) {
342 return PyErr_SetFromErrno(PyExc_OSError);
347 return Py_BuildValue("K", caps.bcaps & vc_get_insecurebcaps());
351 vserver_bcaps2text(PyObject *self, PyObject *args)
353 struct vc_ctx_caps caps = { .bcaps = 0 };
357 if (!PyArg_ParseTuple(args, "K", &caps.bcaps))
360 list = PyString_FromString("");
362 while ((cap = vc_lobcap2text(&caps.bcaps)) != NULL) {
365 PyString_ConcatAndDel(&list, PyString_FromFormat(
366 (PyString_Size(list) > 0 ? ",CAP_%s" : "CAP_%s" ),
374 convertAddress(const char *str, vc_net_nx_type *type, void *dst)
377 if (type) *type = vcNET_IPV4;
378 ret = inet_pton(AF_INET, str, dst);
380 if (type) *type = vcNET_IPV6;
381 ret = inet_pton(AF_INET6, str, dst);
383 return ret > 0 ? 0 : -1;
386 /* XXX These two functions are really similar */
388 vserver_net_add(PyObject *self, PyObject *args)
390 struct vc_net_nx addr;
394 if (!PyArg_ParseTuple(args, "Is", &nid, &ip))
397 if (convertAddress(ip, &addr.type, &addr.ip) == -1)
398 return PyErr_Format(PyExc_ValueError, "%s is not a valid IP address", ip);
401 case vcNET_IPV4: addr.mask[0] = htonl(0xffffff00); break;
402 case vcNET_IPV6: addr.mask[0] = 64; break;
403 default: addr.mask[0] = 0; break;
407 if (vc_net_add(nid, &addr) == -1 && errno != ESRCH)
408 return PyErr_SetFromErrno(PyExc_OSError);
414 vserver_net_remove(PyObject *self, PyObject *args)
416 struct vc_net_nx addr;
420 if (!PyArg_ParseTuple(args, "Is", &nid, &ip))
423 if (strcmp(ip, "all") == 0)
424 addr.type = vcNET_ANY;
425 else if (strcmp(ip, "all4") == 0)
426 addr.type = vcNET_IPV4A;
427 else if (strcmp(ip, "all6") == 0)
428 addr.type = vcNET_IPV6A;
430 if (convertAddress(ip, &addr.type, &addr.ip) == -1)
431 return PyErr_Format(PyExc_ValueError, "%s is not a valid IP address", ip);
434 case vcNET_IPV4: addr.mask[0] = htonl(0xffffff00); break;
435 case vcNET_IPV6: addr.mask[0] = 64; break;
436 default: addr.mask[0] = 0; break;
440 if (vc_net_remove(nid, &addr) == -1 && errno != ESRCH)
441 return PyErr_SetFromErrno(PyExc_OSError);
446 static PyMethodDef methods[] = {
447 { "chcontext", vserver_chcontext, METH_VARARGS,
448 "chcontext to vserver with provided flags" },
449 { "setup_done", vserver_setup_done, METH_VARARGS,
450 "Release vserver setup lock" },
451 { "setsched", vserver_setsched, METH_VARARGS,
452 "Change vserver scheduling attributes for given vserver context" },
453 { "setdlimit", vserver_set_dlimit, METH_VARARGS,
454 "Set disk limits for given vserver context" },
455 { "unsetdlimit", vserver_unset_dlimit, METH_VARARGS,
456 "Remove disk limits for given vserver context" },
457 { "getdlimit", vserver_get_dlimit, METH_VARARGS,
458 "Get disk limits for given vserver context" },
459 { "setrlimit", vserver_set_rlimit, METH_VARARGS,
460 "Set resource limits for given resource of a vserver context" },
461 { "getrlimit", vserver_get_rlimit, METH_VARARGS,
462 "Get resource limits for given resource of a vserver context" },
463 { "killall", vserver_killall, METH_VARARGS,
464 "Send signal to all processes in vserver context" },
465 { "isrunning", vserver_isrunning, METH_VARARGS,
466 "Check if vserver is running"},
467 { "setbcaps", vserver_set_bcaps, METH_VARARGS,
468 "Set POSIX capabilities of a vserver context" },
469 { "getbcaps", vserver_get_bcaps, METH_VARARGS,
470 "Get POSIX capabilities of a vserver context" },
471 { "text2bcaps", vserver_text2bcaps, METH_VARARGS,
472 "Translate a string of capabilities to a bitmap" },
473 { "bcaps2text", vserver_bcaps2text, METH_VARARGS,
474 "Translate a capability-bitmap into a string" },
475 { "netadd", vserver_net_add, METH_VARARGS,
476 "Assign an IP address to a context" },
477 { "netremove", vserver_net_remove, METH_VARARGS,
478 "Remove IP address(es) from a context" },
479 { NULL, NULL, 0, NULL }
483 initvserverimpl(void)
487 mod = Py_InitModule("vserverimpl", methods);
489 /* export the set of 'safe' capabilities */
490 PyModule_AddIntConstant(mod, "CAP_SAFE", ~vc_get_insecurebcaps());
492 /* export the default vserver directory */
493 PyModule_AddStringConstant(mod, "VSERVER_BASEDIR", DEFAULT_VSERVERDIR);
495 /* export limit-related constants */
496 PyModule_AddIntConstant(mod, "DLIMIT_KEEP", (int)VC_CDLIM_KEEP);
497 PyModule_AddIntConstant(mod, "DLIMIT_INF", (int)VC_CDLIM_INFINITY);
498 PyModule_AddIntConstant(mod, "VC_LIM_KEEP", (int)VC_LIM_KEEP);
500 PyModule_AddIntConstant(mod, "RLIMIT_CPU", (int)RLIMIT_CPU);
501 PyModule_AddIntConstant(mod, "RLIMIT_RSS", (int)RLIMIT_RSS);
502 PyModule_AddIntConstant(mod, "RLIMIT_NPROC", (int)RLIMIT_NPROC);
503 PyModule_AddIntConstant(mod, "RLIMIT_NOFILE", (int)RLIMIT_NOFILE);
504 PyModule_AddIntConstant(mod, "RLIMIT_MEMLOCK", (int)RLIMIT_MEMLOCK);
505 PyModule_AddIntConstant(mod, "RLIMIT_AS", (int)RLIMIT_AS);
506 PyModule_AddIntConstant(mod, "RLIMIT_LOCKS", (int)RLIMIT_LOCKS);
508 PyModule_AddIntConstant(mod, "RLIMIT_SIGPENDING", (int)RLIMIT_SIGPENDING);
509 PyModule_AddIntConstant(mod, "RLIMIT_MSGQUEUE", (int)RLIMIT_MSGQUEUE);
511 PyModule_AddIntConstant(mod, "VLIMIT_NSOCK", (int)VC_VLIMIT_NSOCK);
512 PyModule_AddIntConstant(mod, "VLIMIT_OPENFD", (int)VC_VLIMIT_OPENFD);
513 PyModule_AddIntConstant(mod, "VLIMIT_ANON", (int)VC_VLIMIT_ANON);
514 PyModule_AddIntConstant(mod, "VLIMIT_SHMEM", (int)VC_VLIMIT_SHMEM);
516 /* scheduler flags */
517 PyModule_AddIntConstant(mod,
518 "VS_SCHED_CPU_GUARANTEED",
519 VS_SCHED_CPU_GUARANTEED);