Skip to content

Improvements to the process and network management commands #381

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 7 commits into
base: main
Choose a base branch
from
+130 −28
Open

Improvements to the process and network management commands #381

Changes from all commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
a933aee
Improvements to the startProcess command
dkovba Nov 4, 2025
07b66a4
Improvements to the waitProcess command
dkovba Nov 4, 2025
0f564e6
Improvements to the killProcess command
dkovba Nov 4, 2025
1396fae
Improve the deleteProcess command
dkovba Nov 4, 2025
04444e6
Improvements to the ipAddrAdd command
dkovba Nov 4, 2025
e60d9ed
Improvements to the ipRouteAddDefault command
dkovba Nov 4, 2025
5cc372e
Improvements to the configureDns command
dkovba Nov 4, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
158 changes: 130 additions & 28 deletions vminitd/Sources/vminitd/Server+GRPC.swift
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -525,17 +525,45 @@ extension Initd: Com_Apple_Containerization_Sandbox_V3_SandboxContextAsyncProvid
"signal": "\(request.signal)",
])

if !request.hasContainerID {
throw ContainerizationError(
.invalidArgument,
message: "processes in the root of the vm not implemented"
)
}
do {
if !request.hasContainerID {
throw ContainerizationError(
.invalidArgument,
message: "processes in the root of the vm not implemented"
)
}

let ctr = try await self.state.get(container: request.containerID)
try await ctr.kill(execID: request.id, request.signal)
let ctr = try await self.state.get(container: request.containerID)
try await ctr.kill(execID: request.id, request.signal)

return .init()
return .init()
} catch let err as ContainerizationError {
log.error(
"killProcess",
metadata: [
"id": "\(request.id)",
"containerID": "\(request.containerID)",
"error": "\(err)",
])
switch err.code {
case .notFound:
throw GRPCStatus(code: .notFound, message: "killProcess: \(err)")
default:
throw GRPCStatus(code: .internalError, message: "killProcess: failed to kill process: \(err)")
}
} catch {
log.error(
"killProcess",
metadata: [
"id": "\(request.id)",
"containerID": "\(request.containerID)",
"error": "\(error)",
])
if error is GRPCStatus {
throw error
}
throw GRPCStatus(code: .internalError, message: "killProcess: failed to kill process: \(error)")
}
}

func deleteProcess(
Expand All @@ -548,25 +576,53 @@ extension Initd: Com_Apple_Containerization_Sandbox_V3_SandboxContextAsyncProvid
"containerID": "\(request.containerID)",
])

if !request.hasContainerID {
throw ContainerizationError(
.invalidArgument,
message: "processes in the root of the vm not implemented"
)
}
do {
if !request.hasContainerID {
throw ContainerizationError(
.invalidArgument,
message: "processes in the root of the vm not implemented"
)
}

let ctr = try await self.state.get(container: request.containerID)
let ctr = try await self.state.get(container: request.containerID)

// Are we trying to delete the container itself?
if request.id == request.containerID {
try await ctr.delete()
try await state.remove(container: request.id)
} else {
// Or just a single exec.
try await ctr.deleteExec(id: request.id)
}
// Are we trying to delete the container itself?
if request.id == request.containerID {
try await ctr.delete()
try await state.remove(container: request.id)
} else {
// Or just a single exec.
try await ctr.deleteExec(id: request.id)
}

return .init()
return .init()
} catch let err as ContainerizationError {
log.error(
"deleteProcess",
metadata: [
"id": "\(request.id)",
"containerID": "\(request.containerID)",
"error": "\(err)",
])
switch err.code {
case .notFound:
throw GRPCStatus(code: .notFound, message: "deleteProcess: \(err)")
default:
throw GRPCStatus(code: .internalError, message: "deleteProcess: \(err)")
}
} catch {
log.error(
"deleteProcess",
metadata: [
"id": "\(request.id)",
"containerID": "\(request.containerID)",
"error": "\(error)",
])
if error is GRPCStatus {
throw error
}
throw GRPCStatus(code: .internalError, message: "deleteProcess: \(error)")
}
}

func startProcess(
Expand All @@ -593,6 +649,26 @@ extension Initd: Com_Apple_Containerization_Sandbox_V3_SandboxContextAsyncProvid
return .with {
$0.pid = pid
}
} catch let err as ContainerizationError {
log.error(
"startProcess",
metadata: [
"id": "\(request.id)",
"containerID": "\(request.containerID)",
"error": "\(err)",
])
switch err.code {
case .notFound:
throw GRPCStatus(
code: .notFound,
message: "startProcess: \(err)"
)
default:
throw GRPCStatus(
code: .internalError,
message: "startProcess: failed to start process: \(err)"
)
}
} catch {
log.error(
"startProcess",
Expand All @@ -601,6 +677,9 @@ extension Initd: Com_Apple_Containerization_Sandbox_V3_SandboxContextAsyncProvid
"containerID": "\(request.containerID)",
"error": "\(error)",
])
if error is GRPCStatus {
throw error
}
throw GRPCStatus(
code: .internalError,
message: "startProcess: failed to start process: \(error)"
Expand Down Expand Up @@ -674,6 +753,26 @@ extension Initd: Com_Apple_Containerization_Sandbox_V3_SandboxContextAsyncProvid
$0.exitCode = exitStatus.exitStatus
$0.exitedAt = Google_Protobuf_Timestamp(date: exitStatus.exitedAt)
}
} catch let err as ContainerizationError {
log.error(
"waitProcess",
metadata: [
"id": "\(request.id)",
"containerID": "\(request.containerID)",
"error": "\(err)",
])
switch err.code {
case .notFound:
throw GRPCStatus(
code: .notFound,
message: "waitProcess: \(err)"
)
default:
throw GRPCStatus(
code: .internalError,
message: "waitProcess: failed to wait on process: \(err)"
)
}
} catch {
log.error(
"waitProcess",
Expand All @@ -682,6 +781,9 @@ extension Initd: Com_Apple_Containerization_Sandbox_V3_SandboxContextAsyncProvid
"containerID": "\(request.containerID)",
"error": "\(error)",
])
if error is GRPCStatus {
throw error
}
throw GRPCStatus(
code: .internalError,
message: "waitProcess: failed to wait on process: \(error)"
Expand Down Expand Up @@ -774,7 +876,7 @@ extension Initd: Com_Apple_Containerization_Sandbox_V3_SandboxContextAsyncProvid
metadata: [
"error": "\(error)"
])
throw GRPCStatus(code: .internalError, message: "ip-addr-add: \(error)")
throw GRPCStatus(code: .internalError, message: "failed to set IP address on interface \(request.interface): \(error)")
}

return .init()
Expand Down Expand Up @@ -832,7 +934,7 @@ extension Initd: Com_Apple_Containerization_Sandbox_V3_SandboxContextAsyncProvid
metadata: [
"error": "\(error)"
])
throw GRPCStatus(code: .internalError, message: "ip-route-add-default: \(error)")
throw GRPCStatus(code: .internalError, message: "failed to set default gateway on interface \(request.interface): \(error)")
}

return .init()
Expand Down Expand Up @@ -873,7 +975,7 @@ extension Initd: Com_Apple_Containerization_Sandbox_V3_SandboxContextAsyncProvid
metadata: [
"error": "\(error)"
])
throw GRPCStatus(code: .internalError, message: "configure-dns: \(error)")
throw GRPCStatus(code: .internalError, message: "failed to configure DNS at location \(request.location): \(error)")
}

return .init()
Expand Down