[ci skip] Update documents considering new features. (multiarch#78)

junaruga · web-flow · commit ab70a2369c15 · 2019-07-29T08:09:06.000+02:00
diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
@@ -1,4 +1,4 @@
-# How to contribute to multiarch/qemu-user-static
+# Contributing to multiarch/qemu-user-static
 
 Your contributions such as reporting a bug and sending pull-request are very wellcome! Thank you.
 
diff --git a/README.md b/README.md
@@ -1,23 +1,203 @@
-# **qemu-user-static**
+# qemu-user-static
 
 [![License](https://img.shields.io/github/license/multiarch/qemu-user-static.svg?style=flat-square)](./LICENSE) [![Build Status](https://img.shields.io/travis/multiarch/qemu-user-static/master.svg?style=flat-square&logo=travis)](https://travis-ci.org/multiarch/qemu-user-static/builds) [![Releases](https://img.shields.io/github/commits-since/multiarch/qemu-user-static/latest.svg?style=flat-square)](https://github.com/multiarch/qemu-user-static/releases) [![Docker Hub](https://img.shields.io/docker/pulls/multiarch/qemu-user-static.svg?style=flat-square)](https://hub.docker.com/r/multiarch/qemu-user-static/)
 
-<p align="center">
-  <img src="https://raw.githubusercontent.com/multiarch/dockerfile/master/logo.jpg" width="550"/>
-</p>
+![](https://raw.githubusercontent.com/multiarch/dockerfile/master/logo.jpg)
 
+**multiarch/qemu-user-static** is to enable an execution of different multi-architecture containers by QEMU [1] and binfmt_misc [2].
+Here are examples with Docker [3].
 
-## `binfmt_misc` register
+## Getting started
 
-Register `qemu-*-static` for all supported processors except the current one
+```
+$ uname -m
+x86_64
 
-* `docker run --rm --privileged multiarch/qemu-user-static:register`
+$ docker run --rm -t arm64v8/ubuntu uname -m
+standard_init_linux.go:211: exec user process caused "exec format error"
 
-Same as above, but remove all registered `binfmt_misc` before
+$ docker run --rm --privileged multiarch/qemu-user-static --reset -p yes
 
-* `docker run --rm --privileged multiarch/qemu-user-static:register --reset`
+$ docker run --rm -t arm64v8/ubuntu uname -m
+aarch64
+```
 
----
+It works on many architectures and OS container images.
+
+```
+$ docker run --rm -t arm32v6/alpine uname -m
+armv7l
+
+$ docker run --rm -t ppc64le/debian uname -m
+ppc64le
+
+$ docker run --rm -t s390x/ubuntu uname -m
+s390x
+
+$ docker run --rm -t arm64v8/fedora uname -m
+aarch64
+
+$ docker run --rm -t arm32v7/centos uname -m
+armv7l
+
+$ docker run --rm -t ppc64le/busybox uname -m
+ppc64le
+```
+
+Podman [4] also works.
+
+```
+$ sudo podman run --rm --privileged multiarch/qemu-user-static --reset -p yes
+
+$ podman run --rm -t arm64v8/fedora uname -m
+aarch64
+```
+
+Singularity [5] also works. But I do not understand the warnings.
+
+```
+$ sudo singularity run docker://multiarch/qemu-user-static --reset -p yes
+
+$ singularity run docker://arm64v8/fedora uname -m
+/bin/sh: warning: setlocale: LC_ALL: cannot change locale (en_US.UTF-8)
+/bin/sh: warning: setlocale: LC_ALL: cannot change locale (en_US.UTF-8)
+aarch64
+```
+
+## Usage
+
+### multiarch/qemu-user-static images
+
+multiarch/qemu-user-static images are managed on the [Docker Hub](https://hub.docker.com/r/multiarch/qemu-user-static/) container repository.
+The images have below tags.
+
+1. `multiarch/qemu-user-static` image
+2. `multiarch/qemu-user-static:$from_arch-$to_arch` images
+3. `multiarch/qemu-user-static:$to_arch` images
+4. `multiarch/qemu-user-static:register` image
+
+* `multiarch/qemu-user-static` image container includes both a register script to register binfmt_misc entries and all the `/usr/bin/qemu-$arch-static` binary files in the container in it.
+* `multiarch/qemu-user-static:$to_arch` images are aliases of `multiarch/qemu-user-static:x86_64-$to_arch`. A `multiarch/qemu-user-static:$to_arch` images only includes the `$to_arch`'s `/usr/bin/qemu-$to_arch-static` binary file in it.
+* `multiarch/qemu-user-static:register` image has only the register script binfmt_misc entries.
+
+`multiarch/qemu-user-static` and `multiarch/qemu-user-static:register` images execute the register script that registers below kind of `/proc/sys/fs/binfmt_misc/qemu-$arch` files for all supported processors except the current one in it when running the container. See binfmt_misc manual [2] for detail of the files.
+As the `/proc/sys/fs/binfmt_misc` are common between host and inside of container, the register script modifies the file on host.
+
+```
+$ cat /proc/sys/fs/binfmt_misc/qemu-$arch
+enabled
+interpreter /usr/bin/qemu-$arch-static
+flags: F
+offset 0
+magic 7f454c460201010000000000000000000200b700
+mask ffffffffffffff00fffffffffffffffffeffffff
+```
+
+The `--reset` option is implemented at the register script that executes `find /proc/sys/fs/binfmt_misc -type f -name 'qemu-*' -exec sh -c 'echo -1 > {}' \;` to remove binfmt_misc entry files before register the entry.
+When same name's file `/proc/sys/fs/binfmt_misc/qemu-$arch` exists, the register command is failed with an error message "sh: write error: File exists".
+
+```
+$ docker run --rm --privileged multiarch/qemu-user-static [--reset][--help][-p yes][options]
+```
+
+On below image, we can not specify `-p yes` (`--persistent yes`) option. Because an interpreter's existance is checked when registering a binfmt_misc entry. As the interpreter does not exist in the container, the register script finshes with the error.
+
+```
+$ docker run --rm --privileged multiarch/qemu-user-static:register [--reset][--help][options]
+```
+
+Then the register script executes QEMU's [scripts/qemu-binfmt-conf.sh](https://github.com/qemu/qemu/blob/master/scripts/qemu-binfmt-conf.sh) script with options.
+You can check `usage()` in the file about the options.
+
+```
+Usage: qemu-binfmt-conf.sh [--qemu-path PATH][--debian][--systemd CPU]
+                           [--help][--credential yes|no][--exportdir PATH]
+                           [--persistent yes|no][--qemu-suffix SUFFIX]
+       Configure binfmt_misc to use qemu interpreter
+       --help:        display this usage
+       --qemu-path:   set path to qemu interpreter ($QEMU_PATH)
+       --qemu-suffix: add a suffix to the default interpreter name
+       --debian:      don't write into /proc,
+                      instead generate update-binfmts templates
+       --systemd:     don't write into /proc,
+                      instead generate file for systemd-binfmt.service
+                      for the given CPU. If CPU is "ALL", generate a
+                      file for all known cpus
+       --exportdir:   define where to write configuration files
+                      (default: $SYSTEMDDIR or $DEBIANDIR)
+       --credential:  if yes, credential and security tokens are
+                      calculated according to the binary to interpret
+       --persistent:  if yes, the interpreter is loaded when binfmt is
+                      configured and remains in memory. All future uses
+                      are cloned from the open file.
+```
+
+You can run `/usr/bin/qemu-$arch-static` binary file` in the container.
+
+```
+$ docker run --rm -t multiarch/qemu-user-static:x86_64-aarch64 /usr/bin/qemu-aarch64-static -help
+usage: qemu-aarch64 [options] program [arguments...]
+Linux CPU emulator (compiled for aarch64 emulation)
+...
+
+$ docker run --rm -t multiarch/qemu-user-static:x86_64-aarch64 /usr/bin/qemu-aarch64-static -version
+qemu-aarch64 version 4.0.0 (qemu-4.0.0-5.fc31)
+Copyright (c) 2003-2019 Fabrice Bellard and the QEMU Project developers
+
+
+$ docker run --rm -t multiarch/qemu-user-static:aarch64 /usr/bin/qemu-aarch64-static -help
+usage: qemu-aarch64 [options] program [arguments...]
+Linux CPU emulator (compiled for aarch64 emulation)
+...
+
+$ docker run --rm -t multiarch/qemu-user-static:aarch64 /usr/bin/qemu-aarch64-static -version
+qemu-aarch64 version 4.0.0 (qemu-4.0.0-5.fc31)
+Copyright (c) 2003-2019 Fabrice Bellard and the QEMU Project developers
+```
+
+`multiarch/qemu-user-static:$from_arch-$to_arch` images are used with `multiarch/qemu-user-static:register` image.
+Because when the binfmt_misc entry is registered without `-p` option, the interpreter needs to be put in the container.
+
+```
+$ docker run --rm --privileged multiarch/qemu-user-static:register --reset
+
+$ docker build --rm -t "test/integration/ubuntu" -<<EOF
+FROM multiarch/qemu-user-static:x86_64-aarch64 as qemu
+FROM arm64v8/ubuntu
+COPY --from=qemu /usr/bin/qemu-aarch64-static /usr/bin
+EOF
+
+$ docker run --rm -t "test/integration/ubuntu" uname -m
+aarch64
+```
+
+If you have `qemu-$arch-static` binary files on your local environment, you can set it to the container by `docker -v` volume mounted file.
+
+```
+$ docker run --rm --privileged multiarch/qemu-user-static:register --reset
+
+$ docker run --rm -t arm64v8/ubuntu uname -m
+standard_init_linux.go:211: exec user process caused "no such file or directory"
+
+$ docker run --rm -t -v /usr/bin/qemu-aarch64-static:/usr/bin/qemu-aarch64-static arm64v8/ubuntu uname -m
+aarch64
+```
+
+### multiarch compatible images [DEPRECATED]
+
+The concept of "compatible images" are deprecated because **multiarch/qemu-user-static** can build and run standard multi-architecture container images without the multiarch compatible images now. But you can refer the document [Compatible images](docs/compatible_images.md).
+
+The compatible image is the one to add `/usr/bin/qemu-$arch-static` binary inside of the container based on the standard arch specific container.
+Last time, we could not register binfmt_misc entry with `flags: F` (persistent option).
+When `flags: F` was not set, the interpreter always needed to be existed inside of the container to run the arch container.
+
+See [Users guide](docs/users_guide.md) for detail.
+
+## Contributing
+
+We encourage you to contribute to **multiarch/qemu-user-static**! Please check out the [Contributing to multiarch/qemu-user-static guide](docs/CONTRIBUTING.md) for guidelines about how to proceed.
+
+See [Developers guide](docs/developers_guide.md) for detail.
 
 ## Supported host architectures
 
@@ -28,32 +208,14 @@ Run `uname -m` to check it on your environment.
 
 ## Examples & articles
 
-* Scaleway's build system:
-  * [scaleway/image-tools](https://github.com/scaleway/image-tools)
-  * [scaleway/image-builder](https://github.com/scaleway/image-builder)
-* [Docker + multiarch = <3](https://manfredtouron.com/2016/01/28/docker-multiarch/) (Release blog post)
-* Introduction article: [eyskens.me/multiarch-docker-images](https://eyskens.me/multiarch-docker-images/)
-* Dockerized C benchmarks for both ARM and amd64 hardware: [luxas/benchmark](https://github.com/luxas/benchmark)
-* Standalone image example: [meyskens/multiarch-nodejs](https://github.com/meyskens/multiarch-nodejs)
-* RaspberryPI + haskell hacks:
-  * [TGOlson/rpi-haskell](https://github.com/TGOlson/rpi-haskell)
-  * [TGOlson/rpi-haskell-classy](https://github.com/TGOlson/rpi-haskell-classy)
-* Music notation software: [musescore/MuseScore](https://github.com/musescore/MuseScore)
-
-## Compatible images
-
-* [hub.docker.com/r/multiarch/](https://hub.docker.com/r/multiarch/)
-  * alpine: [Docker Hub](https://hub.docker.com/r/multiarch/alpine/), [GitHub](https://github.com/multiarch/alpine)
-  * debian-debootstrap: [Docker Hub](https://hub.docker.com/r/multiarch/debian-debootstrap/), [GitHub](https://github.com/multiarch/debian-debootstrap)
-  * ubuntu-core: [Docker Hub](https://hub.docker.com/r/multiarch/ubuntu-core/), [GitHub](https://github.com/multiarch/ubuntu-core)
-  * ubuntu-debootstrap: [Docker Hub](https://hub.docker.com/r/multiarch/ubuntu-debootstrap/), [GitHub](https://github.com/multiarch/ubuntu-debootstrap)
-  * fedora: [Docker Hub](https://hub.docker.com/r/multiarch/fedora/), [GitHub](https://github.com/multiarch/fedora)
-  * centos: [Docker Hub](https://hub.docker.com/r/multiarch/centos/), [GitHub](https://github.com/multiarch/centos)
-  * busybox: [Docker Hub](https://hub.docker.com/r/multiarch/busybox/), [GitHub](https://github.com/multiarch/busybox)
-
-Organizations with some (if not all) multiarch images:
-
-* [hub.docker.com/u/multiarch](https://hub.docker.com/u/multiarch/)
-* [hub.docker.com/u/scaleway](https://hub.docker.com/u/scaleway/)
-* [hub.docker.com/u/meyskens](https://hub.docker.com/u/meyskens/)
+Please note that some examples using compatible images are deprecated.
+
+See [Examples & articles](docs/examples.md).
+
+## References
 
+* [1] QEMU: https://www.qemu.org/
+* [2] binfmt_misc: https://www.kernel.org/doc/html/latest/admin-guide/binfmt-misc.html
+* [3] Docker: https://www.docker.com/
+* [4] Podman: https://podman.io/
+* [5] Singularity: https://sylabs.io/singularity/
diff --git a/docs/compatible_images.md b/docs/compatible_images.md
@@ -0,0 +1,16 @@
+# Compatible images [DEPRECATED]
+
+* [hub.docker.com/r/multiarch/](https://hub.docker.com/r/multiarch/)
+  * alpine: [Docker Hub](https://hub.docker.com/r/multiarch/alpine/), [GitHub](https://github.com/multiarch/alpine)
+  * debian-debootstrap: [Docker Hub](https://hub.docker.com/r/multiarch/debian-debootstrap/), [GitHub](https://github.com/multiarch/debian-debootstrap)
+  * ubuntu-core: [Docker Hub](https://hub.docker.com/r/multiarch/ubuntu-core/), [GitHub](https://github.com/multiarch/ubuntu-core)
+  * ubuntu-debootstrap: [Docker Hub](https://hub.docker.com/r/multiarch/ubuntu-debootstrap/), [GitHub](https://github.com/multiarch/ubuntu-debootstrap)
+  * fedora: [Docker Hub](https://hub.docker.com/r/multiarch/fedora/), [GitHub](https://github.com/multiarch/fedora)
+  * centos: [Docker Hub](https://hub.docker.com/r/multiarch/centos/), [GitHub](https://github.com/multiarch/centos)
+  * busybox: [Docker Hub](https://hub.docker.com/r/multiarch/busybox/), [GitHub](https://github.com/multiarch/busybox)
+
+Organizations with some (if not all) multiarch images:
+
+* [hub.docker.com/u/multiarch](https://hub.docker.com/u/multiarch/)
+* [hub.docker.com/u/scaleway](https://hub.docker.com/u/scaleway/)
+* [hub.docker.com/u/meyskens](https://hub.docker.com/u/meyskens/)
diff --git a/docs/developers_guide.md b/docs/developers_guide.md
@@ -0,0 +1,107 @@
+# Developers guide
+
+We provide information to understand this system in this document.
+
+## Technology overview
+
+### qemu-user-static
+
+qemu-user-static is a collection of `qemu-$arch-static` "static" binary files that emulates application process (QEMU "user" mode) and binfmt_misc related files. [1]
+In this system, Fedora project's qemu-user-static RPM is used as the input data. qemu-user-static RPM is sub package of qemu RPM. [2]
+
+`qemu-$arch-static` file is just an interpreter to run the archtecture specfic binary. Below is an example to run aarch64 specifc binary `bin/hello-aarch64` on `qemu-aarch64-static`.
+
+```
+$ uname -m
+x86_64
+
+$ file bin/hello-aarch64
+bin/hello-aarch64: ELF 64-bit LSB executable, ARM aarch64, version 1 (GNU/Linux), statically linked, BuildID[sha1]=fa19c63e3c60463e686564eeeb0937959bd6f559, for GNU/Linux 3.7.0, not stripped, too many notes (256)
+
+$ bin/hello-aarch64
+bash: bin/hello-aarch64: cannot execute binary file: Exec format error
+
+$ qemu-aarch64-static bin/hello-aarch64
+Hello World!
+```
+
+`qemu-$cpu-static` can run the architecture specific binary.
+
+
+### qemu-user-static and binfmt_misc
+
+qemu-user-static becomes powerful when it is used with binfmt_misc [3].
+If you are interested in the C language level manual, see [4].
+
+Here is an example of the most typical and recommended way to run different architecture's container.
+In this example, aarch64 (ARM 64-bit) container are executed on host architecture x86_64.
+The example shows what the container image is doing.
+
+```
+$ uname -m
+x86_64
+
+$ ls /proc/sys/fs/binfmt_misc/qemu-aarch64
+ls: cannot access '/proc/sys/fs/binfmt_misc/qemu-aarch64': No such file or directory
+
+$ docker run --rm -t arm64v8/ubuntu uname -m
+standard_init_linux.go:211: exec user process caused "exec format error"
+
+$ docker run --rm --privileged multiarch/qemu-user-static --reset -p yes
+
+$ ls /proc/sys/fs/binfmt_misc/qemu-aarch64
+/proc/sys/fs/binfmt_misc/qemu-aarch64
+
+$ cat /proc/sys/fs/binfmt_misc/qemu-aarch64
+enabled
+interpreter /usr/bin/qemu-aarch64-static
+flags: F
+offset 0
+magic 7f454c460201010000000000000000000200b700
+mask ffffffffffffff00fffffffffffffffffeffffff
+
+$ docker run --rm -t arm64v8/ubuntu uname -m
+aarch64
+```
+
+In this system, understanding the difference of the behavior of 2 patterns of flags: `flags: ` (empty flag) and `flags: F` is important.
+According to [3], the actual operation and behavior are as follows.
+
+* `# echo ":$name:$type:$offset:$magic:$mask:$interpreter:$flags" > /proc/sys/fs/binfmt_misc/register` to add a binary format entry.
+* `# echo -1 > /proc/sys/fs/binfmt_misc/qemu-$arch` to remove a qemu binary format entry.
+* If the entry file's `flags` is empty, the exsistance of the interpreter is checked at run time.
+* If the entry file's `flags` is `flags: F`, the existance of the interpreter is checked when registering the entry.
+
+### qemu-user-static, binfmt_misc and container
+
+A point to keep in mind when using qemu-user-static and binfmt_misc in container, is binfmt_misc `/proc/sys/fs/binfmt_misc` files `register`, `status` and `qemu-$arch` are shared and commonly used between host and inside of container. As a result, a script executed in container can modify `/proc/sys/fs/binfmt_misc` files on host OS.
+binfmt_misc is a feature of kernel. A container uses the host OS's kernel.
+
+## Programs input & output
+
+In this section, we describe a program's input and output.
+This repository is a pipeline system by using Travis CI.
+
+First, we describe the entire pipelne system's input and output. `.travis.yml` is the top level file.
+
+* Input of the pipeline: `qemu-user-static-X.Y.Z-R.fcNN.$arch.rpm` RPM file under [Fedora Project URL](https://kojipkgs.fedoraproject.org/packages/qemu). Right now `$arch` is only x86_64.
+* Output of the pipeline:
+  * [GitHub Releases page](https://github.com/multiarch/qemu-user-static/releases): `qemu-$arch-static` binary files, `qemu-$arch-static.tar.gz` and `x86_64_qemu-$arch-static.tar.gz` (`$from_arch_qemu-$arch-statc.tar.gz`). `qemu-$arch-static.tar.gz` files are same content with `x86_64_qemu-$arch-static.tar.gz`. It is an implementation to add supported host architectures `$from_arch` in the future.
+  * Images on [Docker Hub](https://hub.docker.com/r/multiarch/qemu-user-static/). For actual images, see `README.md` Usage - multiarch/qemu-user-static images section.
+
+Second, we describe each program's input and output by sequence.
+
+| Step | Name | Description | Input | Output |
+| ---- | ---- | ----------- | ----- | ------ |
+| 1 | `generate_tarballs.sh` | Create tar.gz files to upload GitHub Releases page. | `qemu-$arch-static` files in qemu-user-static RPM  | `qemu-$arch-static.tar.gz` and `x86_64_qemu-$arch-static.tar.gz` files |
+| 2 | `publish.sh` | Upload the tar.gz files by [GitHub API](https://developer.github.com/) | `qemu-$arch-static.tar.gz` and `x86_64_qemu-$arch-static.tar.gz` files | `qemu-$arch-static.tar.gz` and `x86_64_qemu-$arch-static.tar.gz` files on GitHub Releases page. |
+| 3 | `update.sh` | Create container images on local | `x86_64_qemu-$arch-static.tar.gz` files on GitHub Releases page. | Container images on local |
+| 4 | `test.sh` | Test created container images on local | Container images on local | `test/*` container images created as a result of tests  |
+| 5 | `docker push $DOCKER_REPO` | Push the container images to DockerHub | `multiarch/qemu-user-static:*` container images on local | `multiarch/qemu-user-static:*` container images on Docker Hub |
+
+## References
+
+* [1] QEMU: https://www.qemu.org/
+* [2] Fedora qemu RPM: https://src.fedoraproject.org/rpms/qemu
+* [3] binfmt_misc: https://www.kernel.org/doc/html/latest/admin-guide/binfmt-misc.html
+* [4] binfmt_misc C language level manual: https://lwn.net/Articles/630727/
diff --git a/docs/examples.md b/docs/examples.md

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-# How to contribute to multiarch/qemu-user-static`
	`1`	`+# Contributing to multiarch/qemu-user-static`
`2`	`2`
`3`	`3`	`Your contributions such as reporting a bug and sending pull-request are very wellcome! Thank you.`
`4`	`4`