2020-01-21 18:44:09 +00:00
|
|
|
## Intro
|
|
|
|
|
|
2021-02-17 00:05:50 +00:00
|
|
|
This article goes into detail about multiple areas of interest to contributors,
|
|
|
|
|
which includes reviewers, developers, and integrators who each share an interest
|
|
|
|
|
in guiding crosvm's direction.
|
2020-01-21 18:44:09 +00:00
|
|
|
|
|
|
|
|
## Guidelines
|
|
|
|
|
|
|
|
|
|
The following is high level guidance for producing contributions to crosvm.
|
|
|
|
|
|
|
|
|
|
- Prefer mechanism to policy.
|
|
|
|
|
- Use existing protocols when they are adequate, such as virtio.
|
|
|
|
|
- Prefer security over code re-use and speed of development.
|
2021-02-17 00:05:50 +00:00
|
|
|
- Only the version of Rust in use by the Chrome OS toolchain is supported. This
|
|
|
|
|
is ordinarily the stable version of Rust, but can be behind a version for a
|
|
|
|
|
few weeks.
|
2020-01-21 18:44:09 +00:00
|
|
|
- Avoid distribution specific code.
|
|
|
|
|
|
|
|
|
|
## Code Health
|
|
|
|
|
|
|
|
|
|
### Scripts
|
|
|
|
|
|
2021-02-17 00:05:50 +00:00
|
|
|
In the `bin/` directory of the crosvm repository, there is the `clippy` script
|
|
|
|
|
which lints the Rust code and the `fmt` script which will format the crosvm Rust
|
|
|
|
|
code inplace.
|
2020-01-21 18:44:09 +00:00
|
|
|
|
2021-02-17 00:05:50 +00:00
|
|
|
### Running tests
|
2020-01-21 18:44:09 +00:00
|
|
|
|
2021-02-17 00:05:50 +00:00
|
|
|
The `./test_all` script will use docker containers to run all tests for crosvm.
|
2020-01-21 18:44:09 +00:00
|
|
|
|
2021-02-17 00:05:50 +00:00
|
|
|
For more details on using the docker containers for running tests locally,
|
|
|
|
|
including faster, iterative test runs, see `ci/README.md`.
|
|
|
|
|
|
|
|
|
|
### Submitting Code
|
|
|
|
|
|
|
|
|
|
See also,
|
|
|
|
|
[Chrome OS Contributing Guide](https://chromium.googlesource.com/chromiumos/docs/+/HEAD/contributing.md)
|
|
|
|
|
|
2021-04-30 21:43:25 +00:00
|
|
|
Once your change is reviewed by a crosvm
|
|
|
|
|
[owner](https://source.chromium.org/chromiumos/chromiumos/codesearch/+/main:src/platform/crosvm/OWNERS)
|
|
|
|
|
it will need to go through two layers of presubmit checks.
|
|
|
|
|
|
|
|
|
|
The review will trigger Kokoro to run crosvm specific tests. If you want to
|
|
|
|
|
check kokoro results before a review, you can set 'Commit Queue +1' in gerrit to
|
|
|
|
|
trigger a dry-run.
|
|
|
|
|
|
|
|
|
|
If you upload further changes after the you were given 'Code Review +2', Kokoro
|
|
|
|
|
will automatically trigger another test run. But you can also always comment
|
|
|
|
|
'kokoro rerun' to manually trigger another build if needed.
|
|
|
|
|
|
|
|
|
|
When Kokoro passes, it will set Verified +1 and the change is ready to be sent
|
|
|
|
|
to the
|
|
|
|
|
[ChromeOS commit queue](https://chromium.googlesource.com/chromiumos/docs/+/HEAD/contributing.md#send-your-changes-to-the-commit-queue)
|
|
|
|
|
by setting CQ+2.
|
|
|
|
|
|
|
|
|
|
Note: This is different from other ChromeOS repositories, where Verified +1 bit
|
|
|
|
|
is set by the developers to indicate that they successfully tested a change. The
|
|
|
|
|
Verified bit can only be set by Kokoro in the crosvm repository.
|
|
|
|
|
|
|
|
|
|
The commit queue will test your change on ChromeOS hardware, including high
|
|
|
|
|
level end-to-end tests. Only if all of those pass, will the change be submitted.
|
|
|
|
|
|
2021-02-17 00:05:50 +00:00
|
|
|
Failures here will cause the commit queue to reject the change until it is
|
|
|
|
|
re-added (CQ+2). Unfortunately, it is extremely common for false negatives to
|
|
|
|
|
cause a change to get rejected, so be ready to re-apply the CQ+2 label if you're
|
|
|
|
|
the owner of a ready to submit change.
|
2020-01-21 18:44:09 +00:00
|
|
|
|
|
|
|
|
### Style guidelines
|
|
|
|
|
|
2021-02-17 00:05:50 +00:00
|
|
|
To format all code, crosvm defers to rustfmt. In addition, the code adheres to
|
|
|
|
|
the following rules:
|
2020-01-21 18:44:09 +00:00
|
|
|
|
|
|
|
|
The `use` statements for each module should be grouped in this order
|
|
|
|
|
|
|
|
|
|
1. `std`
|
2021-02-17 00:05:50 +00:00
|
|
|
2. third-party crates
|
|
|
|
|
3. chrome os crates
|
|
|
|
|
4. crosvm crates
|
|
|
|
|
5. `crate`
|
|
|
|
|
|
|
|
|
|
crosvm uses the [remain](https://github.com/dtolnay/remain) crate to keep error
|
|
|
|
|
enums sorted, along with the `#[sorted]` attribute to keep their corresponding
|
|
|
|
|
match statements in the same order.
|
2021-09-14 15:00:53 +00:00
|
|
|
|
|
|
|
|
### Code Overview
|
|
|
|
|
|
|
|
|
|
The crosvm source code is written in Rust and C. To build, crosvm generally
|
|
|
|
|
requires the most recent stable version of rustc.
|
|
|
|
|
|
|
|
|
|
Source code is organized into crates, each with their own unit tests. These
|
|
|
|
|
crates are:
|
|
|
|
|
|
|
|
|
|
- `crosvm` - The top-level binary front-end for using crosvm.
|
|
|
|
|
- `devices` - Virtual devices exposed to the guest OS.
|
|
|
|
|
- `kernel_loader` - Loads elf64 kernel files to a slice of memory.
|
|
|
|
|
- `kvm_sys` - Low-level (mostly) auto-generated structures and constants for
|
|
|
|
|
using KVM.
|
|
|
|
|
- `kvm` - Unsafe, low-level wrapper code for using `kvm_sys`.
|
|
|
|
|
- `net_sys` - Low-level (mostly) auto-generated structures and constants for
|
|
|
|
|
creating TUN/TAP devices.
|
|
|
|
|
- `net_util` - Wrapper for creating TUN/TAP devices.
|
|
|
|
|
- `sys_util` - Mostly safe wrappers for small system facilities such as
|
|
|
|
|
`eventfd` or `syslog`.
|
|
|
|
|
- `syscall_defines` - Lists of syscall numbers in each architecture used to
|
|
|
|
|
make syscalls not supported in `libc`.
|
|
|
|
|
- `vhost` - Wrappers for creating vhost based devices.
|
|
|
|
|
- `virtio_sys` - Low-level (mostly) auto-generated structures and constants
|
|
|
|
|
for interfacing with kernel vhost support.
|
|
|
|
|
- `vm_control` - IPC for the VM.
|
|
|
|
|
- `x86_64` - Support code specific to 64 bit intel machines.
|
|
|
|
|
|
|
|
|
|
The `seccomp` folder contains minijail seccomp policy files for each sandboxed
|
|
|
|
|
device. Because some syscalls vary by architecture, the seccomp policies are
|
|
|
|
|
split by architecture.
|
