WIP: Manage Emulators automatically

[zner0L]

We want to manage emulators automatically, create and delete them as needed and recover failure states (in doubt by creating new emulators on the fly).
This breaks some parts of the current API, but I took care not to change too much. If you think I should get rid of some legacy code, I am open for doing it with this PR, too.

Depends on tweaselORG/appstraction#137 and tweaselORG/appstraction#140 to be released to merge.

[baltpeter]

I haven't tested this yet since snapshot management isn't fully implemented yet, but I really like the direction this is going!

I could also definitely see the AndroidEmulator class being useful in other contexts, so maybe we should move that to andromatic at some point? But we don't have the time for that now.

[baltpeter]

Does that need a specific emu version?

❯ emulator -snapshot-list
INFO    | Android emulator version 32.1.12.0 (build_id 9751036) (CL:N/A)
ERROR   | No AVD specified. Use '@foo' or '-avd foo' to launch a virtual device named 'foo'

[zner0L]

Hm, at least for your version, this should be available, according to the documentation close to the release date. I am using 35.2.10.0, though. Have you set the correct ANDROID_HOME?

[baltpeter]

The snippet above was using my system emu (with correct ANDROID_HOME). Doesn't work with the andromatic one, either:

❯ export ANDROID_HOME=~/.cache/andromatic/
❯ ~/.cache/andromatic/emulator/emulator -snapshot-list
INFO    | Android emulator version 33.1.24.0 (build_id 11237101) (CL:N/A)
ERROR   | No AVD specified. Use '@foo' or '-avd foo' to launch a virtual device named 'foo'

[zner0L]

It seems the docs are wrong then. Just tested on my Macbook where I have version 32 as well and got the same error.

[baltpeter]

Specifying an AVD name as in the docs you linked starts the emu and doesn't list the snapshots:

❯ ~/.cache/andromatic/emulator/emulator @mitm11-honey -snapshot-list
INFO    | Android emulator version 33.1.24.0 (build_id 11237101) (CL:N/A)
INFO    | Found systemPath /home/benni/.cache/andromatic//system-images/android-30/google_apis/x86_64/
INFO    | Storing crashdata in: , detection is enabled for process: 1494826
INFO    | Duplicate loglines will be removed, if you wish to see each individual line launch with the -log-nofilter flag.
WARNING | Please update the emulator to one that supports the feature(s): Vulkan
INFO    | Increasing RAM size to 2048MB
WARNING | FeatureControl is requesting a non existing feature.
Fontconfig warning: "/usr/share/fontconfig/conf.avail/05-reset-dirs-sample.conf", line 6: unknown element "reset-dirs"
library_mode host gpu mode host
I1125 13:52:53.193065 1494826 HealthMonitor.cpp:279] HealthMonitor disabled.
cannot add library libvulkan.so: failed
added library libvulkan.so.1
createGlobalVkEmulation:963 Selecting Vulkan device: NVIDIA GeForce RTX 2060
initialize: Supports id properties, got a vulkan device UUID
I1125 13:52:53.423908 1494826 VkCommonOperations.cpp:1225] Initializing VkEmulation features:
I1125 13:52:53.423929 1494826 VkCommonOperations.cpp:1226]     glInteropSupported: true
I1125 13:52:53.423936 1494826 VkCommonOperations.cpp:1227]     useDeferredCommands: true
I1125 13:52:53.423944 1494826 VkCommonOperations.cpp:1229]     createResourceWithRequirements: true
I1125 13:52:53.423952 1494826 VkCommonOperations.cpp:1230]     useVulkanComposition: false
I1125 13:52:53.423958 1494826 VkCommonOperations.cpp:1231]     useVulkanNativeSwapchain: false
I1125 13:52:53.423964 1494826 VkCommonOperations.cpp:1232]     enable guestRenderDoc: false
I1125 13:52:53.423970 1494826 VkCommonOperations.cpp:1233]     ASTC LDR emulation mode: 2
I1125 13:52:53.423977 1494826 VkCommonOperations.cpp:1234]     enable ETC2 emulation: true
I1125 13:52:53.423982 1494826 VkCommonOperations.cpp:1235]     enable Ycbcr emulation: false
I1125 13:52:53.423988 1494826 VkCommonOperations.cpp:1236]     guestUsesAngle: false
I1125 13:52:53.423995 1494826 VkCommonOperations.cpp:1237]     useDedicatedAllocations: false
I1125 13:52:53.425509 1494826 FrameBuffer.cpp:486] Graphics Adapter Vendor Google (NVIDIA Corporation)
I1125 13:52:53.425517 1494826 FrameBuffer.cpp:487] Graphics Adapter Android Emulator OpenGL ES Translator (NVIDIA GeForce RTX 2060/PCIe/SSE2)
I1125 13:52:53.425523 1494826 FrameBuffer.cpp:488] Graphics API Version OpenGL ES 3.0 (4.5.0 NVIDIA 535.183.01)
I1125 13:52:53.425541 1494826 FrameBuffer.cpp:489] Graphics API Extensions GL_OES_EGL_sync GL_OES_EGL_image GL_OES_EGL_image_external GL_OES_depth24 GL_OES_depth32 GL_OES_element_index_uint GL_OES_texture_float GL_OES_texture_float_linear GL_OES_compressed_paletted_texture GL_OES_compressed_ETC1_RGB8_texture GL_OES_depth_texture GL_OES_texture_half_float GL_OES_texture_half_float_linear GL_OES_packed_depth_stencil GL_OES_vertex_half_float GL_OES_texture_npot GL_OES_rgb8_rgba8 GL_EXT_color_buffer_float GL_EXT_color_buffer_half_float GL_EXT_texture_format_BGRA8888 GL_APPLE_texture_format_BGRA8888 GL_EXT_texture_buffer 
I1125 13:52:53.425551 1494826 FrameBuffer.cpp:490] Graphics Device Extensions N/A
WARNING | The emulator now requires a signed jwt token for gRPC access! Use the -grpc flag if you really want an open unprotected grpc port
INFO    | Using security allow list from: /home/benni/.cache/andromatic/emulator/lib/emulator_access.json
WARNING | *** Basic token auth should only be used by android-studio ***
INFO    | The active JSON Web Key Sets can be found here: /run/user/1000/avd/running/1494826/jwks/d41f381f-cacb-409b-9689-b47fcd8dfa97/active.jwk
INFO    | Scanning /run/user/1000/avd/running/1494826/jwks/d41f381f-cacb-409b-9689-b47fcd8dfa97 for jwk keys.
INFO    | Started GRPC server at 127.0.0.1:8554, security: Local, auth: +token
INFO    | Advertising in: /run/user/1000/avd/running/pid_1494826.ini
List of snapshots present on all disks:
ID        TAG                 VM SIZE                DATE       VM CLOCK
--        default_boot           1.1M 2024-11-25 13:52:40   00:00:04.588
I1125 13:52:53.648558 1494867 FrameBuffer.cpp:3682] setDisplayConfigs w 1080 h 1920 dpiX 420 dpiY 420
I1125 13:52:53.648601 1494867 FrameBuffer.cpp:3695] setDisplayActiveConfig 0
INFO    | Loading snapshot 'default_boot'...
INFO    | Successfully loaded snapshot 'default_boot'
INFO    | Info: Sandboxing disabled by user. ((null):0, (null))
INFO    | Wait for emulator (pid 1494826) 20 seconds to shutdown gracefully before kill;you can set environment variable ANDROID_EMULATOR_WAIT_TIME_BEFORE_KILL(in seconds) to change the default value (20 seconds)
[1494826:1495037:1125/135257.138795:ERROR:nss_util.cc(748)] After loading Root Certs, loaded==false: NSS error code: -8018
INFO    | Critical: Uncaught SyntaxError: Unexpected token . (https://maps.googleapis.com/maps/api/js?libraries=places&key=AIzaSyABrfflV49aFWF4Kohsf1VSx68td8f-sFY&callback=initMap&v=3.53:30, (null))
INFO    | Saving with gfxstream=1
INFO    | Critical: Uncaught SyntaxError: Unexpected token . (https://maps.googleapis.com/maps/api/js?libraries=places&key=AIzaSyABrfflV49aFWF4Kohsf1VSx68td8f-sFY&callback=initMap&v=3.53:30, (null))
ERROR   | stop: Not implemented

[baltpeter]

Unless I am doing something really, really wrong, -snapstorage doesn't seem to work at all anyway.

I tried:

emulator -avd testdeleteme -snapstorage /tmp/snapstorage
emulator -avd testdeleteme -snapstorage /tmp/snapstorage.img
export ANDROID_HOME=~/.cache/andromatic/
~/.cache/andromatic/emulator/emulator -avd testdeleteme -snapstorage /tmp/snapstorage.img

And created snapshots using adb emu avd snapshot save tmp123 as well as the GUI. In both cases, they were stored in ~/.android/avd/testdeleteme.avd/snapshots. /tmp/snapstorage is empty and /tmp/snapstorage.img was never created.

[zner0L]

It’s hard to tell, there is a -no-snapstorage options, but I don’t care to test this. I guess I’ll just use the folders as a fallback?

[baltpeter]

But again, there is no way to pass to pass any of these options to CA anyway, is there?

[zner0L]

Not really, no. We also don’t use this function right now, so maybe I shouldn’t care really? As I said in the comment, I don’t know if I really want to introduce the added complexity of snapshot management anyway.

[baltpeter]

As I said in the comment, I don’t know if I really want to introduce the added complexity of snapshot management anyway.

But you included most of that already, how much more is there to do? Also, we decided to move the honey data automation from cli to CA.

[baltpeter]

This is great, but as I've said before, I don't think it can be merged without snapshot management.

[baltpeter]

I feel like a major feature like managed emulators deserves an actual mention in the README, doesn't it? :D

[baltpeter]

Suggested change

	* will share an emulator. The created emulator will be named `cyanoacrylate-{key}-{SHA1 hash of the
	* will share an emulator. The created emulator will be named `cyanoacrylate-{key}-{MD5 hash of the

[baltpeter]

We should error if honeyData is specified but frida isn't in the capabilities.

[baltpeter]

Can you explain why we don't need the rejectOnAbort anymore? Is this handled by the abortSignal?.throwIfAborted(); and it was never needed?

[zner0L]

I realized that rejectOnAbort() contributed to the memory leakage, as we never de-registered the listener if there was no abort (and the promise never resolved). I mainly put it there, because we didn’t have so many methods accepting abortSignals, yet. But now that we abort down the line, that is better anyway (since rejecting here doesn’t stop any of the running processes).