Optimizing Bazel Sandboxing with FUSE File System

Slide Note
Embed
Share

Overview of Bazel sandboxes and the implementation of sandboxfs using FUSE to enhance sandboxing capabilities. Details include the concept of actions in Bazel, the rationale behind sandboxing actions, process isolation, file system preparation, and the usage of sandboxfs to avoid symlinks.

azar_2
azar_2 Follow

Uploaded on Oct 04, 2024 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

E N D

Presentation Transcript

  1. Optimizing Bazel Sandboxing with a FUSE File System Overview of Bazel Sandboxing and sandboxfs By Julio Merino (@jmmv) for FOSDEM on 2020-02-01

  2. What is Bazel? https://bazel.build/

  3. What is an Action in Bazel? Bazel In-Memory Data Structures Inputs /usr/bin/cc ./parser.h ./parser.c Action Outputs ./parser.o cc -I. -c parser.c -o parser.o

  4. Why Do We Sandbox Actions? Bazel In-Memory Data Structures Inputs /usr/bin/cc ./parser.h ./parser.c Action Outputs ./parser.o cc -I. -c parser.c -o parser.o File System Workspace ./lexer.h ./lexer.c ./parser.h ./parser.c

  5. Action Sandboxing: Process Isolation Sandbox Mock hostname Real hostname Process Network clever-cc input.c -o output.o input.c output.o /dev/random On Linux: user namespaces On macOS: sandbox-exec https://blog.bazel.build/2015/09/11/sandboxing.html, https://jmmv.dev/2019/11/macos-sandbox-exec.html

  6. Action Sandboxing: File System Preparation Bazel In-Memory Data Structures Inputs /usr/bin/cc ./parser.h ./parser.c Action Outputs ./parser.o cc -I. -c parser.c -o parser.o File System Workspace ./lexer.h ./lexer.c ./parser.h ./parser.c ./parser.o Workspace ./lexer.h ./lexer.c ./parser.h ./parser.c Sandbox Directory ./parser.h (ro?) ./parser.c (ro?) ./ (rw) Create sandbox Extract outputs

  7. Action Sandboxing: File System Preparation Bazel In-Memory Data Structures Inputs /usr/bin/cc ./parser.h ./parser.c Action Outputs ./parser.o cc -I. -c parser.c -o parser.o File System Workspace ./lexer.h ./lexer.c ./parser.h ./parser.c ./parser.o Workspace ./lexer.h ./lexer.c ./parser.h ./parser.c Sandbox Directory ./parser.h (ro?) ./parser.c (ro?) ./ (rw) Create sandbox Extract outputs One symlink syscall per input Scales poorly: 1ms extra per 20,000 actions = 20s extra wall time

  8. sandboxfs: Using FUSE to Avoid Symlinks Bazel sandboxfs Mount Point CreateSandbox(action1, { / .../scratch/action1 (rw), /src/file1.h .../src/file1.h (ro), /src/file1.c .../src/file1.c (ro), }) https://github.com/bazelbuild/sandboxfs/

  9. sandboxfs: Using FUSE to Avoid Symlinks Bazel sandboxfs Mount Point CreateSandbox(action1, { / .../scratch/action1 (rw), /src/file1.h .../src/file1.h (ro), /src/file1.c .../src/file1.c (ro), }) In-memory operations action1/ (rw) action1/src/file1.h (ro) action1/src/file1.c (ro) https://github.com/bazelbuild/sandboxfs/

  10. sandboxfs: Using FUSE to Avoid Symlinks Bazel sandboxfs Mount Point CreateSandbox(action1, { / .../scratch/action1 (rw), /src/file1.h .../src/file1.h (ro), /src/file1.c .../src/file1.c (ro), }) In-memory operations action1/ (rw) action1/src/file1.h (ro) action1/src/file1.c (ro) Same idea as: mount --bind (Linux) mount -t null (BSD) https://github.com/bazelbuild/sandboxfs/

  11. sandboxfs: Using FUSE to Avoid Symlinks Bazel sandboxfs Mount Point CreateSandbox(action1, { / .../scratch/action1 (rw), /src/file1.h .../src/file1.h (ro), /src/file1.c .../src/file1.c (ro), }) In-memory operations action1/ (rw) action1/src/file1.h (ro) action1/src/file1.c (ro) CreateSandbox(action2, { / .../scratch/action2 (rw), /gfx/libgfx.a .../libgfx.a (ro), /main.a .../main.a (ro), }) No remount! action1/ (rw) action1/src/file1.h (ro) action1/src/file1.c (ro) action2/ (rw) action2/gfx/libgfx.a (ro) action2/main.a (ro) In-memory operations https://github.com/bazelbuild/sandboxfs/

  12. Performance Results (macOS, circa 2018) Target Machine Local Bazel MacBook Pro 2017 581s Bazel Mac Pro 2013 247s iOS app Mac Pro 2013 1235s https://blog.bazel.build/2018/04/13/preliminary-sandboxfs-support.html

  13. Performance Results (macOS, circa 2018) Target Machine Local Symlinked sandbox Bazel MacBook Pro 2017 581s 621s (+6%) Bazel Mac Pro 2013 247s 265s (+7%) iOS app Mac Pro 2013 1235s 4572s (+270%) https://blog.bazel.build/2018/04/13/preliminary-sandboxfs-support.html

  14. Performance Results (macOS, circa 2018) Target Machine Local Symlinked sandbox sandboxfs sandbox Bazel MacBook Pro 2017 581s 621s (+6%) 612s (+5%) Bazel Mac Pro 2013 247s 265s (+7%) 250s (+1%) iOS app Mac Pro 2013 1235s 4572s (+270%) 1922s (+55%) https://blog.bazel.build/2018/04/13/preliminary-sandboxfs-support.html

  15. Rewriting sandboxfs from Go to Rust Go Easy to write (intern project!) VSCode has great support Hit scalability problems Started to become hard to maintain (few annotations in the code) https://jmmv.dev/2018/07/rust-vs-go.html

  16. Rewriting sandboxfs from Go to Rust Go Rust Easy to write (intern project!) VSCode has great support Hit scalability problems Started to become hard to maintain (few annotations in the code) Harder to write VSCode has support but is very slow Much more confident in the code In translating the old Go code, Rust uncovered many concurrency issues in it https://jmmv.dev/2018/07/rust-vs-go.html

  17. Rewriting sandboxfs from Go to Rust Go Rust Easy to write (intern project!) VSCode has great support Hit scalability problems Started to become hard to maintain (few annotations in the code) Harder to write VSCode has support but is very slow Much more confident in the code In translating the old Go code, Rust uncovered many concurrency issues in it Commonalities pprof for finding performance issues FUSE bindings not first-class https://jmmv.dev/2018/07/rust-vs-go.html

  18. Future Work Optimize further Current Bazel pkg_comp Other sandboxing approaches (Microsoft's BuildXL) But... beware of OSXFUSE and kexts on Mac sandboxfs protocol very inefficient

  19. Thank You! https://bazel.build/ https://github.com/bazelbuild/sandboxfs/ https://jmmv.dev/ https://twitter.com/jmmv/

Related


Security Study of Chrome's Process-based Sandboxing

Security Study of Chrome's Process-based Sandboxing

misha
Troubleshooting Blown Fuse in URD System

Troubleshooting Blown Fuse in URD System

olne_tya
Overview of Electronics Maintenance and Pre-Processing Hardware at Agata Project - October 2016

Overview of Electronics Maintenance and Pre-Processing Hardware at Agata Project - October 2016

abdulqa
Understanding Distributed File Systems

Understanding Distributed File Systems

henley
Implementation of File System in Operating Systems

Implementation of File System in Operating Systems

raina
Understanding Filesystems: A Comprehensive Overview

Understanding Filesystems: A Comprehensive Overview

enid
ENOVIA V6 File Name Cleanup for Data Migration

ENOVIA V6 File Name Cleanup for Data Migration

ruel908
Understanding File Input/Output in Java

Understanding File Input/Output in Java

ehelz
Web Security Fundamentals: Understanding the Same Origin Policy

Web Security Fundamentals: Understanding the Same Origin Policy

fwol
Understanding the FAT File System: A Comprehensive Overview

Understanding the FAT File System: A Comprehensive Overview

lobb_di
Understanding Sandbox Security and Content Policies

Understanding Sandbox Security and Content Policies

petrosyan_s
Understanding File I/O and Inter-Process Communication Through Pipes

Understanding File I/O and Inter-Process Communication Through Pipes

zaynab
Operating System: File Allocation Methods

Operating System: File Allocation Methods

amina
Compute and Storage Overview at JLab Facility

Compute and Storage Overview at JLab Facility

velin
Understanding File Systems and Disk Basics in Computer Forensics

Understanding File Systems and Disk Basics in Computer Forensics

mpaul
Understanding File Handling in Perl

Understanding File Handling in Perl

serenah
Understanding File System Interface in Operating Systems

Understanding File System Interface in Operating Systems

arnav
Optimizing Surface Irrigation Systems for Farm Production

Optimizing Surface Irrigation Systems for Farm Production

azac495
Faculty File Construction Workshop Year 2 Updates 2023

Faculty File Construction Workshop Year 2 Updates 2023

krew
Understanding File Allocation Strategies in Operating Systems

Understanding File Allocation Strategies in Operating Systems

yusra
Understanding the Implementation of XML Results File G for Exams in England and Wales

Understanding the Implementation of XML Results File G for Exams in England and Wales

constantine
Safety Director 101: The Driver Qualification File

Safety Director 101: The Driver Qualification File

geovan
Analysis of file:// Vulnerabilities in Android Browser Apps

Analysis of file:// Vulnerabilities in Android Browser Apps

coto_ch
Determinants of Unlawful File Sharing: Insights and Implications

Determinants of Unlawful File Sharing: Insights and Implications

bmoaz

More Related Content

Understanding Single-File Source Code Programs in Java 11
Understanding Single-File Source Code Programs in Java 11
Understanding Data Encryption and File Security
Understanding Data Encryption and File Security
Evolution of Peer-to-Peer File Sharing Technologies
Evolution of Peer-to-Peer File Sharing Technologies
PHP File Handling Functions Overview
PHP File Handling Functions Overview
Guide for File Download Block Creation
Guide for File Download Block Creation
New Features and Enhancements in GTAS 2.5 Bulk File Upload Process
New Features and Enhancements in GTAS 2.5 Bulk File Upload Process
Understanding File System Performance and Optimization Techniques
Understanding File System Performance and Optimization Techniques
Optimizing Operator Fusion Plans for Large-Scale Machine Learning in SystemML
Optimizing Operator Fusion Plans for Large-Scale Machine Learning in SystemML
Configuring Local Storage and File System in Linux System Administration
Configuring Local Storage and File System in Linux System Administration
Learning to Rank in Information Retrieval: Methods and Optimization
Learning to Rank in Information Retrieval: Methods and Optimization
Optimizing Line Coding for PM-PHY: A Detailed Analysis
Optimizing Line Coding for PM-PHY: A Detailed Analysis
Understanding Labial Fusion: Causes, Symptoms, and Treatment
Understanding Labial Fusion: Causes, Symptoms, and Treatment
Understanding Density of Materials Activity
Understanding Density of Materials Activity
Understanding the Cervical Part of Sympathetic Trunks
Understanding the Cervical Part of Sympathetic Trunks
Understanding Electrical Power in Circuits
Understanding Electrical Power in Circuits
Innovative Switch Design for Enhanced Efficiency
Innovative Switch Design for Enhanced Efficiency
Introduction to Database Management System Explained
Introduction to Database Management System Explained
Efficient File Naming Conventions and Folder Organization
Efficient File Naming Conventions and Folder Organization
Understanding File Concepts in Operating Systems
Understanding File Concepts in Operating Systems
Understanding Form-Based File Upload Vulnerabilities
Understanding Form-Based File Upload Vulnerabilities
Evolution of UNIX File Systems: A Comprehensive Overview
Evolution of UNIX File Systems: A Comprehensive Overview
Understanding DFS in Dyalog File Server
Understanding DFS in Dyalog File Server
Overview of FAT Filesystem: Definitions, History, and Structures
Overview of FAT Filesystem: Definitions, History, and Structures
Optimizing Immune System Through Holistic Approach
Optimizing Immune System Through Holistic Approach