namespace/

lib.rs

// Copyright 2023 The Fuchsia Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.

//! `namespace` defines namespace types and transformations between their common representations.

use cm_types::{IterablePath, NamespacePath};
use fidl::endpoints::ClientEnd;
use thiserror::Error;
use {
    fidl_fuchsia_component as fcomponent, fidl_fuchsia_component_runner as fcrunner,
    fidl_fuchsia_io as fio, fidl_fuchsia_process as fprocess,
};

#[cfg(target_os = "fuchsia")]
use std::sync::Arc;

mod tree;
pub use tree::Tree;

/// The namespace of a component instance.
///
/// Namespaces may be represented as a collection of directory client endpoints and their
/// corresponding unique paths, so called "flat representation". In this case each path
/// must be a valid [`cm_types::NamespacePath`], and no path can be a parent of another path.
///
/// See https://fuchsia.dev/fuchsia-src/concepts/process/namespaces for the definition
/// of namespaces of a process. The namespace of a component largely follows except that
/// some more characters are disallowed (c.f. [`cm_types::NamespacePath`] documentation).
#[derive(Debug)]
pub struct Namespace {
    tree: Tree<ClientEnd<fio::DirectoryMarker>>,
}

#[derive(Error, Debug, Clone)]
pub enum NamespaceError {
    #[error(
        "path `{0}` is the parent or child of another namespace entry. \
        This is not supported."
    )]
    Shadow(NamespacePath),

    #[error("duplicate namespace path `{0}`")]
    Duplicate(NamespacePath),

    #[error("invalid namespace entry `{0}`")]
    EntryError(#[from] EntryError),
}

impl Namespace {
    pub fn new() -> Self {
        Self { tree: Default::default() }
    }

    pub fn add(
        &mut self,
        path: &NamespacePath,
        directory: ClientEnd<fio::DirectoryMarker>,
    ) -> Result<(), NamespaceError> {
        self.tree.add(path, directory)?;
        Ok(())
    }

    pub fn get(&self, path: &NamespacePath) -> Option<&ClientEnd<fio::DirectoryMarker>> {
        self.tree.get(path)
    }

    pub fn remove(&mut self, path: &NamespacePath) -> Option<ClientEnd<fio::DirectoryMarker>> {
        self.tree.remove(path)
    }

    pub fn flatten(self) -> Vec<Entry> {
        self.tree.flatten().into_iter().map(|(path, directory)| Entry { path, directory }).collect()
    }

    /// Get a copy of the paths in the namespace.
    pub fn paths(&self) -> Vec<NamespacePath> {
        self.tree.map_ref(|_| ()).flatten().into_iter().map(|(path, ())| path).collect()
    }
}

impl Default for Namespace {
    fn default() -> Self {
        Self::new()
    }
}

#[cfg(target_os = "fuchsia")]
impl Clone for Namespace {
    fn clone(&self) -> Self {
        use fidl::AsHandleRef;

        // TODO(https://fxbug.dev/42083023): The unsafe block can go away if Rust FIDL bindings exposed the
        // feature of calling FIDL methods (e.g. Clone) on a borrowed client endpoint.
        let tree = self.tree.map_ref(|dir| {
            let raw_handle = dir.channel().as_handle_ref().raw_handle();
            // SAFETY: the channel is forgotten at the end of scope so it is not double closed.
            unsafe {
                let borrowed: zx::Channel = zx::Handle::from_raw(raw_handle).into();
                let borrowed = fio::DirectorySynchronousProxy::new(borrowed);
                let (client_end, server_end) =
                    fidl::endpoints::create_endpoints::<fio::DirectoryMarker>();
                let _ = borrowed.clone(server_end.into_channel().into());
                std::mem::forget(borrowed.into_channel());
                client_end
            }
        });
        Self { tree }
    }
}

impl From<Namespace> for Vec<Entry> {
    fn from(namespace: Namespace) -> Self {
        namespace.flatten()
    }
}

impl From<Namespace> for Vec<fcrunner::ComponentNamespaceEntry> {
    fn from(namespace: Namespace) -> Self {
        namespace.flatten().into_iter().map(Into::into).collect()
    }
}

impl From<Namespace> for Vec<fprocess::NameInfo> {
    fn from(namespace: Namespace) -> Self {
        namespace.flatten().into_iter().map(Into::into).collect()
    }
}

#[cfg(target_os = "fuchsia")]
impl From<Namespace> for Vec<process_builder::NamespaceEntry> {
    fn from(namespace: Namespace) -> Self {
        namespace.flatten().into_iter().map(Into::into).collect()
    }
}

/// Converts the [Namespace] to a vfs [TreeBuilder] with tree nodes for each entry.
///
/// The TreeBuilder can then be used to build a vfs directory for this Namespace.
#[cfg(target_os = "fuchsia")]
impl TryFrom<Namespace> for vfs::tree_builder::TreeBuilder {
    type Error = vfs::tree_builder::Error;

    fn try_from(namespace: Namespace) -> Result<Self, Self::Error> {
        let mut builder = vfs::tree_builder::TreeBuilder::empty_dir();
        for Entry { path, directory } in namespace.flatten().into_iter() {
            let path: Vec<&str> = path.iter_segments().map(|s| s.as_str()).collect();
            builder.add_entry(path, vfs::remote::remote_dir(directory.into_proxy()))?;
        }
        Ok(builder)
    }
}

/// Converts the [Namespace] into a vfs directory.
#[cfg(target_os = "fuchsia")]
impl TryFrom<Namespace> for Arc<vfs::directory::immutable::simple::Simple> {
    type Error = vfs::tree_builder::Error;

    fn try_from(namespace: Namespace) -> Result<Self, Self::Error> {
        let builder: vfs::tree_builder::TreeBuilder = namespace.try_into()?;
        Ok(builder.build())
    }
}

impl From<Tree<ClientEnd<fio::DirectoryMarker>>> for Namespace {
    fn from(tree: Tree<ClientEnd<fio::DirectoryMarker>>) -> Self {
        Self { tree }
    }
}

impl TryFrom<Vec<Entry>> for Namespace {
    type Error = NamespaceError;

    fn try_from(value: Vec<Entry>) -> Result<Self, Self::Error> {
        let mut ns = Namespace::new();
        for entry in value {
            ns.add(&entry.path, entry.directory)?;
        }
        Ok(ns)
    }
}

impl TryFrom<Vec<fcrunner::ComponentNamespaceEntry>> for Namespace {
    type Error = NamespaceError;

    fn try_from(entries: Vec<fcrunner::ComponentNamespaceEntry>) -> Result<Self, Self::Error> {
        let entries: Vec<Entry> =
            entries.into_iter().map(TryInto::try_into).collect::<Result<Vec<_>, EntryError>>()?;
        entries.try_into()
    }
}

impl TryFrom<Vec<fcomponent::NamespaceEntry>> for Namespace {
    type Error = NamespaceError;

    fn try_from(entries: Vec<fcomponent::NamespaceEntry>) -> Result<Self, Self::Error> {
        let entries: Vec<Entry> =
            entries.into_iter().map(TryInto::try_into).collect::<Result<Vec<_>, EntryError>>()?;
        entries.try_into()
    }
}

impl TryFrom<Vec<fprocess::NameInfo>> for Namespace {
    type Error = NamespaceError;

    fn try_from(entries: Vec<fprocess::NameInfo>) -> Result<Self, Self::Error> {
        let entries: Vec<Entry> =
            entries.into_iter().map(TryInto::try_into).collect::<Result<Vec<_>, EntryError>>()?;
        entries.try_into()
    }
}

#[cfg(target_os = "fuchsia")]
impl TryFrom<Vec<process_builder::NamespaceEntry>> for Namespace {
    type Error = NamespaceError;

    fn try_from(entries: Vec<process_builder::NamespaceEntry>) -> Result<Self, Self::Error> {
        let entries: Vec<Entry> =
            entries.into_iter().map(TryInto::try_into).collect::<Result<Vec<_>, EntryError>>()?;
        entries.try_into()
    }
}

/// A container for a single namespace entry, containing a path and a directory handle.
#[derive(Eq, Ord, PartialOrd, PartialEq, Debug)]
pub struct Entry {
    /// Namespace path.
    pub path: NamespacePath,

    /// Namespace directory handle.
    pub directory: ClientEnd<fio::DirectoryMarker>,
}

impl From<Entry> for fcrunner::ComponentNamespaceEntry {
    fn from(entry: Entry) -> Self {
        Self {
            path: Some(entry.path.into()),
            directory: Some(entry.directory),
            ..Default::default()
        }
    }
}

impl From<Entry> for fcomponent::NamespaceEntry {
    fn from(entry: Entry) -> Self {
        Self {
            path: Some(entry.path.into()),
            directory: Some(entry.directory),
            ..Default::default()
        }
    }
}

impl From<Entry> for fprocess::NameInfo {
    fn from(entry: Entry) -> Self {
        Self { path: entry.path.into(), directory: entry.directory }
    }
}

#[cfg(target_os = "fuchsia")]
impl From<Entry> for process_builder::NamespaceEntry {
    fn from(entry: Entry) -> Self {
        Self { path: entry.path.into(), directory: entry.directory }
    }
}

#[derive(Debug, Clone, Error)]
pub enum EntryError {
    #[error("path is not set")]
    MissingPath,

    #[error("directory is not set")]
    MissingDirectory,

    #[error("entry type is not supported (must be directory or dictionary")]
    UnsupportedType,

    #[error("path is invalid for a namespace entry: `{0}`")]
    InvalidPath(#[from] cm_types::ParseError),
}

impl TryFrom<fcrunner::ComponentNamespaceEntry> for Entry {
    type Error = EntryError;

    fn try_from(entry: fcrunner::ComponentNamespaceEntry) -> Result<Self, Self::Error> {
        Ok(Self {
            path: entry.path.ok_or(EntryError::MissingPath)?.parse()?,
            directory: entry.directory.ok_or(EntryError::MissingDirectory)?,
        })
    }
}

impl TryFrom<fcomponent::NamespaceEntry> for Entry {
    type Error = EntryError;

    fn try_from(entry: fcomponent::NamespaceEntry) -> Result<Self, Self::Error> {
        Ok(Self {
            path: entry.path.ok_or(EntryError::MissingPath)?.parse()?,
            directory: entry.directory.ok_or(EntryError::MissingDirectory)?,
        })
    }
}

impl TryFrom<fprocess::NameInfo> for Entry {
    type Error = EntryError;

    fn try_from(entry: fprocess::NameInfo) -> Result<Self, Self::Error> {
        Ok(Self { path: entry.path.parse()?, directory: entry.directory })
    }
}

#[cfg(target_os = "fuchsia")]
impl TryFrom<process_builder::NamespaceEntry> for Entry {
    type Error = EntryError;

    fn try_from(entry: process_builder::NamespaceEntry) -> Result<Self, Self::Error> {
        Ok(Self { path: entry.path.try_into()?, directory: entry.directory })
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use assert_matches::assert_matches;
    use fidl::endpoints::Proxy as _;
    use fuchsia_async as fasync;
    use zx::{AsHandleRef, Peered};

    fn ns_path(str: &str) -> NamespacePath {
        str.parse().unwrap()
    }

    #[test]
    fn test_try_from_namespace() {
        {
            let (client_end_1, _) = fidl::endpoints::create_endpoints();
            let (client_end_2, _) = fidl::endpoints::create_endpoints();
            let entries = vec![
                Entry { path: ns_path("/foo"), directory: client_end_1 },
                Entry { path: ns_path("/foo/bar"), directory: client_end_2 },
            ];
            assert_matches!(
                Namespace::try_from(entries),
                Err(NamespaceError::Shadow(path)) if path.to_string() == "/foo/bar"
            );
        }
        {
            let (client_end_1, _) = fidl::endpoints::create_endpoints();
            let (client_end_2, _) = fidl::endpoints::create_endpoints();
            let entries = vec![
                Entry { path: ns_path("/foo"), directory: client_end_1 },
                Entry { path: ns_path("/foo"), directory: client_end_2 },
            ];
            assert_matches!(
                Namespace::try_from(entries),
                Err(NamespaceError::Duplicate(path)) if path.to_string() == "/foo"
            );
        }
    }

    #[cfg(target_os = "fuchsia")]
    #[fasync::run_singlethreaded(test)]
    async fn test_clone() {
        use vfs::file::vmo::read_only;

        // Set up a directory server.
        let dir = vfs::pseudo_directory! {
            "foo" => vfs::pseudo_directory! {
                "bar" => read_only(b"Fuchsia"),
            },
        };
        let client_end = vfs::directory::serve_read_only(dir).into_client_end().unwrap();

        // Make a namespace pointing to that server.
        let mut namespace = Namespace::new();
        namespace.add(&ns_path("/data"), client_end).unwrap();

        // Both this namespace and the clone should point to the same server.
        let namespace_clone = namespace.clone();

        let mut entries = namespace.flatten();
        let mut entries_clone = namespace_clone.flatten();

        async fn verify(entry: Entry) {
            assert_eq!(entry.path.to_string(), "/data");
            let dir = entry.directory.into_proxy();
            let file = fuchsia_fs::directory::open_file(&dir, "foo/bar", fio::PERM_READABLE)
                .await
                .unwrap();
            let content = fuchsia_fs::file::read(&file).await.unwrap();
            assert_eq!(content, b"Fuchsia");
        }

        verify(entries.remove(0)).await;
        verify(entries_clone.remove(0)).await;
    }

    #[test]
    fn test_flatten() {
        let mut namespace = Namespace::new();
        let (client_end, server_end) = fidl::endpoints::create_endpoints();
        namespace.add(&ns_path("/svc"), client_end).unwrap();
        let mut entries = namespace.flatten();
        assert_eq!(entries[0].path.to_string(), "/svc");
        entries
            .remove(0)
            .directory
            .into_channel()
            .signal_peer(zx::Signals::empty(), zx::Signals::USER_0)
            .unwrap();
        server_end.wait_handle(zx::Signals::USER_0, zx::MonotonicInstant::INFINITE).unwrap();
    }

    #[test]
    fn test_remove() {
        let mut namespace = Namespace::new();
        let (client_end, server_end) = fidl::endpoints::create_endpoints();
        namespace.add(&ns_path("/svc"), client_end).unwrap();
        let client_end = namespace.remove(&ns_path("/svc")).unwrap();
        let entries = namespace.flatten();
        assert!(entries.is_empty());
        client_end.into_channel().signal_peer(zx::Signals::empty(), zx::Signals::USER_0).unwrap();
        server_end.wait_handle(zx::Signals::USER_0, zx::MonotonicInstant::INFINITE).unwrap();
    }
}