improve refactoring: keep ContainerizedTool much more like it was bef…

…ore; skip third class
sosy-lab · Dec 9, 2024 · d065835 · d065835
1 parent b4a3296
commit d065835
Show file tree

Hide file tree

Showing 2 changed files with 43 additions and 45 deletions.
diff --git a/benchexec/containerized_tool.py b/benchexec/containerized_tool.py
@@ -16,7 +16,6 @@
 import signal
 import socket
 import tempfile
-from abc import ABCMeta
 
 from benchexec import (
     BenchExecException,
@@ -31,7 +30,7 @@
 
 
 @tooladapter.CURRENT_BASETOOL.register  # mark as instance of CURRENT_BASETOOL
-class ContainerizedToolBase(object, metaclass=ABCMeta):
+class ContainerizedTool(object):
     """Wrapper for an instance of any subclass of one of the base-tool classes in
     benchexec.tools.template.
     The module and the subclass instance will be loaded in a subprocess that has been
@@ -45,7 +44,7 @@ class ContainerizedToolBase(object, metaclass=ABCMeta):
     But the use of containers in BenchExec is for safety and robustness, not security.
     """
 
-    def __init__(self, tool_module, config, initializer):
+    def __init__(self, tool_module, config):
         """Load tool-info module in subprocess.
         @param tool_module: The name of the module to load.
             Needs to define class named Tool.
@@ -55,34 +54,31 @@ def __init__(self, tool_module, config, initializer):
         # We use multiprocessing.Pool as an easy way for RPC with another process.
         self._pool = multiprocessing.Pool(1, _init_worker_process)
 
-        container_options = containerexecutor.handle_basic_container_args(config)
-        temp_dir = tempfile.mkdtemp(prefix="Benchexec_tool_info_container_")
-        self.container_id = None
+        self.container_options = containerexecutor.handle_basic_container_args(config)
+        self.temp_dir = tempfile.mkdtemp(prefix="Benchexec_tool_info_container_")
+
         # Call function that loads tool module and returns its doc
         try:
-            self.__doc__, self.container_id = self._pool.apply(
-                _init_container_and_load_tool,
-                [initializer] + self.mk_args(tool_module, temp_dir),
-                self.mk_kwargs(container_options),
-            )
+            self._setup_container(tool_module)
+
         except BaseException as e:
             self._pool.terminate()
             raise e
         finally:
             # Outside the container, the temp_dir is just an empty directory, because
             # the tmpfs mount is only visible inside. We can remove it immediately.
             with contextlib.suppress(OSError):
-                os.rmdir(temp_dir)
-
-    def mk_args(self, tool_module, tmp_dir):
-        return [tool_module, tmp_dir]
+                os.rmdir(self.temp_dir)
 
-    def mk_kwargs(self, container_options):
-        return container_options
+    def _setup_container(self, tool_module):
+        self.__doc__, _ = self._pool.apply(
+            _init_container_and_load_tool,
+            [_init_container, tool_module, self.temp_dir],
+            self.container_options,
+        )
 
     def close(self):
         self._forward_call("close", [], {})
-        self._cleanup()
         self._pool.close()
 
     def _forward_call(self, method_name, args, kwargs):
@@ -116,7 +112,7 @@ def proxy_function(self, *args, **kwargs):
 ):
     if member_name[0] == "_" or member_name == "close":
         continue
-    ContainerizedToolBase._add_proxy_function(member_name, member)
+    ContainerizedTool._add_proxy_function(member_name, member)
 
 
 def _init_worker_process():
@@ -134,14 +130,13 @@ def _init_worker_process():
 
 def _init_container_and_load_tool(initializer, tool_module, *args, **kwargs):
     """Initialize container for the current process and load given tool-info module."""
-    container_id = None
     try:
-        container_id = initializer(*args, **kwargs)
+        initializer_ret = initializer(*args, **kwargs)
     except OSError as e:
         if container.check_apparmor_userns_restriction(e):
             raise BenchExecException(container._ERROR_MSG_USER_NS_RESTRICTION)
         raise BenchExecException(f"Failed to configure container: {e}")
-    return _load_tool(tool_module), container_id
+    return _load_tool(tool_module), initializer_ret
 
 
 def _init_container(
@@ -296,11 +291,3 @@ def _call_tool_func(name, args, kwargs):
     except SystemExit as e:
         # SystemExit would terminate the worker process instead of being propagated.
         raise BenchExecException(str(e.code))
-
-
-class ContainerizedTool(ContainerizedToolBase):
-    def __init__(self, tool_module, config):
-        super().__init__(tool_module, config, initializer=_init_container)
-
-    def _cleanup(self):
-        pass
diff --git a/contrib/vcloud/podman_containerized_tool.py b/contrib/vcloud/podman_containerized_tool.py
@@ -10,13 +10,17 @@
 import shlex
 import subprocess
 import sys
+from typing import Optional
 
 from benchexec import (
     BenchExecException,
     libc,
     tooladapter,
 )
-from benchexec.containerized_tool import ContainerizedToolBase
+from benchexec.containerized_tool import (
+    ContainerizedTool,
+    _init_container_and_load_tool,
+)
 
 TOOL_DIRECTORY_MOUNT_POINT = "/mnt/__benchexec_tool_directory"
 
@@ -124,28 +128,35 @@ def join_ns(namespace):
 
 
 @tooladapter.CURRENT_BASETOOL.register  # mark as instance of CURRENT_BASETOOL
-class PodmanContainerizedTool(ContainerizedToolBase):
+class PodmanContainerizedTool(ContainerizedTool):
+    tool_directory: str
+    image: str
+    container_id: Optional[str]
+
     def __init__(self, tool_module, config, image):
         assert (
             config.tool_directory
         ), "Tool directory must be set when using podman for tool info module."
 
         self.tool_directory = config.tool_directory
         self.image = image
+        self.container_id = None
+
+        super().__init__(tool_module, config)
+
+    def _setup_container(self, tool_module):
+        self.__doc__, self.container_id = self._pool.apply(
+            _init_container_and_load_tool,
+            [_init_container, tool_module],
+            {
+                "image": self.image,
+                "tool_directory": self.tool_directory,
+            },
+        )
 
-        super().__init__(tool_module, config, _init_container)
-
-    def mk_args(self, tool_module, tmp_dir):
-        return [tool_module]
-
-    def mk_kwargs(self, container_options):
-        return {
-            "image": self.image,
-            "tool_directory": self.tool_directory,
-        }
-
-    def _cleanup(self):
-        logging.debug("Stopping container with global id %s", self.container_id)
+    def close(self):
+        super().close()
+        logging.debug("Removing container with global id %s", self.container_id)
         if self.container_id is None:
             return
         try: