Mercurial > illumos > git > illumos-gate
changeset 20236:010c03e1303c
13373 Import upstream improvements to bhyve VNC server
Portions contributed by: Henrik Gulbrandsen <henrik@gulbra.net>
Reviewed by: Patrick Mooney <pmooney@pfmooney.com>
Reviewed by: Jorge Schrauwen <sjorge@blackdot.be>
Approved by: Gordon Ross <gordon.w.ross@gmail.com>
| author | Marko Kiiskila <marko@apache.org> |
|---|---|
| date | Fri, 18 Dec 2020 12:13:33 +0000 |
| parents | dee5816f8469 |
| children | b41260248b5c |
| files | usr/src/cmd/bhyve/README.sync usr/src/cmd/bhyve/rfb.c usr/src/compat/bhyve/stdatomic.h |
| diffstat | 3 files changed, 260 insertions(+), 103 deletions(-) [+] |
line wrap: on
line diff
--- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/usr/src/cmd/bhyve/README.sync Fri Dec 18 12:13:33 2020 +0000 @@ -0,0 +1,15 @@ +The bhyve kernel module and its associated userland consumers have been updated +to the latest upstream FreeBSD sources as documented in + + usr/src/uts/i86pc/io/vmm/README.sync + +The userland components in this directory have further been updated with the +following cherry-picked updates which will need taking into account during the +next sync. + + commit 44a544d41c504fbe37f836eb503e4ae721daada9 + Author: grehan <grehan@FreeBSD.org> + Date: Fri Dec 18 00:38:48 2020 +0000 + + Fix issues with various VNC clients. +
--- a/usr/src/cmd/bhyve/rfb.c Sun Dec 06 14:18:15 2020 -0800 +++ b/usr/src/cmd/bhyve/rfb.c Fri Dec 18 12:13:33 2020 +0000 @@ -40,6 +40,7 @@ #include <sys/select.h> #include <sys/time.h> #include <arpa/inet.h> +#include <stdatomic.h> #include <machine/cpufunc.h> #include <machine/specialreg.h> #include <netinet/in.h> @@ -77,6 +78,11 @@ #include <openssl/des.h> #endif +/* Delays in microseconds */ +#define CFD_SEL_DELAY 10000 +#define SCREEN_REFRESH_DELAY 33300 /* 30Hz */ +#define SCREEN_POLL_DELAY (SCREEN_REFRESH_DELAY / 2) + static int rfb_debug = 0; #define DPRINTF(params) if (rfb_debug) PRINTLN params #define WPRINTF(params) PRINTLN params @@ -85,6 +91,19 @@ #define AUTH_LENGTH 16 #define PASSWD_LENGTH 8 +/* Protocol versions */ +#define CVERS_3_3 '3' +#define CVERS_3_7 '7' +#define CVERS_3_8 '8' + +/* Client-to-server msg types */ +#define CS_SET_PIXEL_FORMAT 0 +#define CS_SET_ENCODINGS 2 +#define CS_UPDATE_MSG 3 +#define CS_KEY_EVENT 4 +#define CS_POINTER_EVENT 5 +#define CS_CUT_TEXT 6 + #define SECURITY_TYPE_NONE 1 #define SECURITY_TYPE_VNC_AUTH 2 @@ -101,16 +120,22 @@ char *password; - bool enc_raw_ok; - bool enc_zlib_ok; - bool enc_resize_ok; + bool enc_raw_ok; + bool enc_zlib_ok; + bool enc_resize_ok; z_stream zstream; uint8_t *zbuf; int zbuflen; int conn_wait; - int sending; + int wrcount; + + atomic_bool sending; + atomic_bool pending; + atomic_bool update_all; + atomic_bool input_detected; + pthread_mutex_t mtx; pthread_cond_t cond; @@ -207,7 +232,6 @@ uint32_t length; }; - static void rfb_send_server_init_msg(int cfd) { @@ -228,6 +252,9 @@ sinfo.pixfmt.red_shift = 16; sinfo.pixfmt.green_shift = 8; sinfo.pixfmt.blue_shift = 0; + sinfo.pixfmt.pad[0] = 0; + sinfo.pixfmt.pad[1] = 0; + sinfo.pixfmt.pad[2] = 0; sinfo.namelen = htonl(strlen("bhyve")); (void)stream_write(cfd, &sinfo, sizeof(sinfo)); (void)stream_write(cfd, "bhyve", strlen("bhyve")); @@ -270,7 +297,6 @@ int i; uint32_t encoding; - assert((sizeof(enc_msg) - 1) == 3); (void)stream_read(cfd, ((void *)&enc_msg)+1, sizeof(enc_msg)-1); for (i = 0; i < htons(enc_msg.numencs); i++) { @@ -313,12 +339,23 @@ return (crcval); } +static int +rfb_send_update_header(struct rfb_softc *rc, int cfd, int numrects) +{ + struct rfb_srvr_updt_msg supdt_msg; + + supdt_msg.type = 0; + supdt_msg.pad = 0; + supdt_msg.numrects = htons(numrects); + + return stream_write(cfd, &supdt_msg, + sizeof(struct rfb_srvr_updt_msg)); +} static int rfb_send_rect(struct rfb_softc *rc, int cfd, struct bhyvegc_image *gc, int x, int y, int w, int h) { - struct rfb_srvr_updt_msg supdt_msg; struct rfb_srvr_rect_hdr srect_hdr; unsigned long zlen; ssize_t nwrite, total; @@ -330,16 +367,6 @@ * Send a single rectangle of the given x, y, w h dimensions. */ - /* Number of rectangles: 1 */ - supdt_msg.type = 0; - supdt_msg.pad = 0; - supdt_msg.numrects = htons(1); - nwrite = stream_write(cfd, &supdt_msg, - sizeof(struct rfb_srvr_updt_msg)); - if (nwrite <= 0) - return (nwrite); - - /* Rectangle header */ srect_hdr.x = htons(x); srect_hdr.y = htons(y); @@ -410,7 +437,7 @@ rfb_send_all(struct rfb_softc *rc, int cfd, struct bhyvegc_image *gc) { struct rfb_srvr_updt_msg supdt_msg; - struct rfb_srvr_rect_hdr srect_hdr; + struct rfb_srvr_rect_hdr srect_hdr; ssize_t nwrite; unsigned long zlen; int err; @@ -484,7 +511,7 @@ #define PIXCELL_MASK 0x1F static int -rfb_send_screen(struct rfb_softc *rc, int cfd, int all) +rfb_send_screen(struct rfb_softc *rc, int cfd) { struct bhyvegc_image *gc_image; ssize_t nwrite; @@ -497,21 +524,45 @@ int retval; uint32_t *crc_p, *orig_crc; int changes; + bool expected; + + /* Return if another thread sending */ + expected = false; + if (atomic_compare_exchange_strong(&rc->sending, &expected, true) == false) + return (1); + + retval = 1; + + /* Updates require a preceding update request */ + if (atomic_exchange(&rc->pending, false) == false) + goto done; console_refresh(); gc_image = console_get_image(); - pthread_mutex_lock(&rc->mtx); - if (rc->sending) { - pthread_mutex_unlock(&rc->mtx); - return (1); + /* Clear old CRC values when the size changes */ + if (rc->crc_width != gc_image->width || + rc->crc_height != gc_image->height) { + memset(rc->crc, 0, sizeof(uint32_t) * + howmany(RFB_MAX_WIDTH, PIX_PER_CELL) * + howmany(RFB_MAX_HEIGHT, PIX_PER_CELL)); + rc->crc_width = gc_image->width; + rc->crc_height = gc_image->height; } - rc->sending = 1; - pthread_mutex_unlock(&rc->mtx); - retval = 0; + /* A size update counts as an update in itself */ + if (rc->width != gc_image->width || + rc->height != gc_image->height) { + rc->width = gc_image->width; + rc->height = gc_image->height; + if (rc->enc_resize_ok) { + rfb_send_resize_update_msg(rc, cfd); + rc->update_all = true; + goto done; + } + } - if (all) { + if (atomic_exchange(&rc->update_all, false) == true) { retval = rfb_send_all(rc, cfd, gc_image); goto done; } @@ -521,11 +572,6 @@ * has changed since the last scan. */ - /* Resolution changed */ - - rc->crc_width = gc_image->width; - rc->crc_height = gc_image->height; - w = rc->crc_width; h = rc->crc_height; xcells = howmany(rc->crc_width, PIX_PER_CELL); @@ -585,12 +631,24 @@ } } + /* + * We only send the update if there are changes. + * Restore the pending flag since it was unconditionally cleared + * above. + */ + if (!changes) { + rc->pending = true; + goto done; + } + /* If number of changes is > THRESH percent, send the whole screen */ if (((changes * 100) / (xcells * ycells)) >= RFB_SEND_ALL_THRESH) { retval = rfb_send_all(rc, cfd, gc_image); goto done; } - + + rfb_send_update_header(rc, cfd, changes); + /* Go through all cells, and send only changed ones */ crc_p = rc->crc_tmp; for (y = 0; y < h; y += PIX_PER_CELL) { @@ -618,45 +676,24 @@ } } } - retval = 1; done: - pthread_mutex_lock(&rc->mtx); - rc->sending = 0; - pthread_mutex_unlock(&rc->mtx); - + rc->sending = false; + return (retval); } static void -rfb_recv_update_msg(struct rfb_softc *rc, int cfd, int discardonly) +rfb_recv_update_msg(struct rfb_softc *rc, int cfd) { struct rfb_updt_msg updt_msg; - struct bhyvegc_image *gc_image; (void)stream_read(cfd, ((void *)&updt_msg) + 1 , sizeof(updt_msg) - 1); - console_refresh(); - gc_image = console_get_image(); - - updt_msg.x = htons(updt_msg.x); - updt_msg.y = htons(updt_msg.y); - updt_msg.width = htons(updt_msg.width); - updt_msg.height = htons(updt_msg.height); - - if (updt_msg.width != gc_image->width || - updt_msg.height != gc_image->height) { - rc->width = gc_image->width; - rc->height = gc_image->height; - if (rc->enc_resize_ok) - rfb_send_resize_update_msg(rc, cfd); - } - - if (discardonly) - return; - - rfb_send_screen(rc, cfd, 1); + rc->pending = true; + if (!updt_msg.incremental) + rc->update_all = true; } static void @@ -667,6 +704,7 @@ (void)stream_read(cfd, ((void *)&key_msg) + 1, sizeof(key_msg) - 1); console_key_event(key_msg.down, htonl(key_msg.code)); + rc->input_detected = true; } static void @@ -677,6 +715,7 @@ (void)stream_read(cfd, ((void *)&ptr_msg) + 1, sizeof(ptr_msg) - 1); console_ptr_event(ptr_msg.button, htons(ptr_msg.x), htons(ptr_msg.y)); + rc->input_detected = true; } static void @@ -724,7 +763,7 @@ FD_ZERO(&rfds); FD_SET(cfd, &rfds); tv.tv_sec = 0; - tv.tv_usec = 10000; + tv.tv_usec = CFD_SEL_DELAY; err = select(cfd+1, &rfds, NULL, NULL, &tv); if (err < 0) @@ -733,15 +772,23 @@ /* Determine if its time to push screen; ~24hz */ gettimeofday(&tv, NULL); tdiff = timeval_delta(&prev_tv, &tv); - if (tdiff > 40000) { + if (tdiff >= SCREEN_POLL_DELAY) { + bool input; prev_tv.tv_sec = tv.tv_sec; prev_tv.tv_usec = tv.tv_usec; - if (rfb_send_screen(rc, cfd, 0) <= 0) { - return (NULL); + input = atomic_exchange(&rc->input_detected, false); + /* + * Refresh the screen on every second trip through the loop, + * or if keyboard/mouse input has been detected. + */ + if ((++rc->wrcount & 1) || input) { + if (rfb_send_screen(rc, cfd) <= 0) { + return (NULL); + } } } else { /* sleep */ - usleep(40000 - tdiff); + usleep(SCREEN_POLL_DELAY - tdiff); } } @@ -763,7 +810,8 @@ DES_key_schedule ks; int i; #endif - + uint8_t client_ver; + uint8_t auth_type; pthread_t tid; uint32_t sres = 0; int len; @@ -776,27 +824,68 @@ /* 1b. Read client version */ len = stream_read(cfd, buf, VERSION_LENGTH); +#ifdef __FreeBSD__ + if (len == VERSION_LENGTH && !strncmp(vbuf, buf, VERSION_LENGTH - 2)) { + client_ver = buf[VERSION_LENGTH - 2]; + } +#else + /* Work around gcc7 maybe-uninitialized warning */ + client_ver = CVERS_3_3; + if (len == VERSION_LENGTH && !strncmp(vbuf, (char *)buf, + VERSION_LENGTH - 2)) { + client_ver = buf[VERSION_LENGTH - 2]; + } +#endif + if (client_ver != CVERS_3_8 && client_ver != CVERS_3_7) { + /* only recognize 3.3, 3.7 & 3.8. Others dflt to 3.3 */ + client_ver = CVERS_3_3; + } /* 2a. Send security type */ buf[0] = 1; + + /* In versions 3.7 & 3.8, it's 2-way handshake */ + /* For version 3.3, server says what the authentication type must be */ #ifndef NO_OPENSSL - if (rc->password) - buf[1] = SECURITY_TYPE_VNC_AUTH; - else - buf[1] = SECURITY_TYPE_NONE; + if (rc->password) { + auth_type = SECURITY_TYPE_VNC_AUTH; + } else { + auth_type = SECURITY_TYPE_NONE; + } #else - buf[1] = SECURITY_TYPE_NONE; + auth_type = SECURITY_TYPE_NONE; #endif - stream_write(cfd, buf, 2); + switch (client_ver) { + case CVERS_3_7: + case CVERS_3_8: + buf[0] = 1; + buf[1] = auth_type; + stream_write(cfd, buf, 2); - /* 2b. Read agreed security type */ - len = stream_read(cfd, buf, 1); + /* 2b. Read agreed security type */ + len = stream_read(cfd, buf, 1); + if (buf[0] != auth_type) { + /* deny */ + sres = htonl(1); +#ifdef __FreeBSD__ + message = "Auth failed: authentication type mismatch"; +#else + message = (unsigned char *)"Auth failed: authentication type mismatch"; +#endif + goto report_and_done; + } + break; + case CVERS_3_3: + default: + be32enc(buf, auth_type); + stream_write(cfd, buf, 4); + break; + } /* 2c. Do VNC authentication */ - switch (buf[0]) { + switch (auth_type) { case SECURITY_TYPE_NONE: - sres = 0; break; case SECURITY_TYPE_VNC_AUTH: /* @@ -844,32 +933,53 @@ if (memcmp(crypt_expected, buf, AUTH_LENGTH) != 0) { message = "Auth Failed: Invalid Password."; sres = htonl(1); - } else + } else { sres = 0; + } #else - sres = 0; + sres = htonl(1); WPRINTF(("Auth not supported, no OpenSSL in your system")); #endif break; } - /* 2d. Write back a status */ - stream_write(cfd, &sres, 4); + switch (client_ver) { + case CVERS_3_7: + case CVERS_3_8: +report_and_done: + /* 2d. Write back a status */ + stream_write(cfd, &sres, 4); - if (sres) { + if (sres) { + /* 3.7 does not want string explaining cause */ + if (client_ver == CVERS_3_8) { #ifdef __FreeBSD__ - be32enc(buf, strlen(message)); - stream_write(cfd, buf, 4); - stream_write(cfd, message, strlen(message)); + be32enc(buf, strlen(message)); + stream_write(cfd, buf, 4); + stream_write(cfd, message, strlen(message)); #else - be32enc(buf, strlen((char *)message)); - stream_write(cfd, buf, 4); - stream_write(cfd, message, strlen((char *)message)); + be32enc(buf, strlen((char *)message)); + stream_write(cfd, buf, 4); + stream_write(cfd, message, + strlen((char *)message)); #endif - goto done; + } + goto done; + } + break; + case CVERS_3_3: + default: + /* for VNC auth case send status */ + if (auth_type == SECURITY_TYPE_VNC_AUTH) { + /* 2d. Write back a status */ + stream_write(cfd, &sres, 4); + } + if (sres) { + goto done; + } + break; } - /* 3a. Read client shared-flag byte */ len = stream_read(cfd, buf, 1); @@ -881,13 +991,11 @@ assert(rc->zbuf != NULL); } - rfb_send_screen(rc, cfd, 1); - perror = pthread_create(&tid, NULL, rfb_wr_thr, rc); if (perror == 0) pthread_set_name_np(tid, "rfbout"); - /* Now read in client requests. 1st byte identifies type */ + /* Now read in client requests. 1st byte identifies type */ for (;;) { len = read(cfd, buf, 1); if (len <= 0) { @@ -896,22 +1004,22 @@ } switch (buf[0]) { - case 0: + case CS_SET_PIXEL_FORMAT: rfb_recv_set_pixfmt_msg(rc, cfd); break; - case 2: + case CS_SET_ENCODINGS: rfb_recv_set_encodings_msg(rc, cfd); break; - case 3: - rfb_recv_update_msg(rc, cfd, 1); + case CS_UPDATE_MSG: + rfb_recv_update_msg(rc, cfd); break; - case 4: + case CS_KEY_EVENT: rfb_recv_key_msg(rc, cfd); break; - case 5: + case CS_POINTER_EVENT: rfb_recv_ptr_msg(rc, cfd); break; - case 6: + case CS_CUT_TEXT: rfb_recv_cuttext_msg(rc, cfd); break; default: @@ -985,16 +1093,17 @@ struct addrinfo *ai = NULL; struct addrinfo hints; int on = 1; + int cnt; #ifndef WITHOUT_CAPSICUM cap_rights_t rights; #endif rc = calloc(1, sizeof(struct rfb_softc)); - rc->crc = calloc(howmany(RFB_MAX_WIDTH * RFB_MAX_HEIGHT, 32), - sizeof(uint32_t)); - rc->crc_tmp = calloc(howmany(RFB_MAX_WIDTH * RFB_MAX_HEIGHT, 32), - sizeof(uint32_t)); + cnt = howmany(RFB_MAX_WIDTH, PIX_PER_CELL) * + howmany(RFB_MAX_HEIGHT, PIX_PER_CELL); + rc->crc = calloc(cnt, sizeof(uint32_t)); + rc->crc_tmp = calloc(cnt, sizeof(uint32_t)); rc->crc_width = RFB_MAX_WIDTH; rc->crc_height = RFB_MAX_HEIGHT; rc->sfd = -1;
--- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/usr/src/compat/bhyve/stdatomic.h Fri Dec 18 12:13:33 2020 +0000 @@ -0,0 +1,33 @@ +/* + * This file and its contents are supplied under the terms of the + * Common Development and Distribution License ("CDDL"), version 1.0. + * You may only use this file in accordance with the terms of version + * 1.0 of the CDDL. + * + * A full copy of the text of the CDDL should have accompanied this + * source. A copy of the CDDL is also available via the Internet at + * http://www.illumos.org/license/CDDL. + */ + +/* + * Copyright 2020 OmniOS Community Edition (OmniOSce) Association. + */ + +#ifndef _COMPAT_FREEBSD_STDATOMIC_H_ +#define _COMPAT_FREEBSD_STDATOMIC_H_ + +#include <machine/atomic.h> + +/* + * For now, this is just enough to support the usage in usr/src/cmd/bhyve/rfb.c + * which uses these functions with atomic_bool/bool arguments. + */ + +#define atomic_bool volatile u_int + +#define atomic_compare_exchange_strong(p, ovalp, nval) \ + atomic_cmpset_int((p), *(ovalp), (nval)) + +#define atomic_exchange(p, nval) atomic_swap_int((p), (nval)) + +#endif /* _COMPAT_FREEBSD_STDATOMIC_H_ */