Persist inbox conhost; delegate control activities to it via a pipe

[miniksa]

Persist inbox conhost; delegate control activities to it via a pipe

PR Checklist

• Closes Windows terminal as default terminal application breaks WSL2 launch when WSL2 debugConsole is enabled #10194 - WSL Debug Tap doesn't work
• Closes [DefApp] launching WSL inside DefTerm yields “the parameter is incorrect” #10134 - WSL Parameter is Incorrect
• Closes [DefApp] Ctrl+C doesn't work to cancel ping from cmd #10413 - Ctrl+C not passed to client
• Closes [DefApp] Assorted leftover processes when abruptly terminating portions of app chain #10414 - Leftover processes on abrupt termination
• Might help [DefApp] PowerShell opened via Win+X errors 50% of the time #10251 - Win+X Powershell sometimes fails to attach
• I work here
• Manually tested with assorted launch scenarios

Detailed Description of the Pull Request / Additional comments

It turns out that there's a bit of ownership that goes on with the original inbox conhost.exe and the operating system/driver. The PID of that original conhost.exe is stowed when the initial connection is established and it is verified for several activities. This means that the plan of letting it go completely away and having the OpenConsole.exe take over all of its activities must be slightly revised.

I have tested the following two alternatives to keeping conhost.exe around and they do not work:

1. Replacing the original owner conhost.exe with OpenConsole.exe - A.) The driver does not allow this. Once the owner is registered, it cannot be replaced. B.) There's no way of updating this information inside the client process space and it is kept there too in the kernelbase/conclnt data from its initial connection.
2. Attempting to pick up the first packet (to determine headed/headless and other initial connection information that we use to determine whether handoff is appropriate or not) prior to registering any owner at all. - The driver doesn't allow this either. The owner must be registered prior to a packet coming through.

Put this mental model in your head:
CMD --> Conhost (inbox) --> OpenConsole (WT Package) --> Terminal (WT Package)

So since the conhost.exe needs to stick around, here's what I'm doing in this PR:

• conhost.exe in the OS will receive back the OpenConsole.exe process handle on a successful handoff and is expected to remain alive until the OpenConsole.exe exits. It's now waiting on that before it terminates itself.
• conhost.exe in the OS will establish a signal channel pipe and listen for control commands from OpenConsole.exe in a very similar fashion to how the ConPTY signal pipe operates between the Terminal and the PTY (provided by OpenConsole.exe in this particular example.) When OpenConsole.exe needs to do something that would be verified by the OS and rejected... it will instead signal the original conhost.exe to do that thing and it will go through.
• conhost.exe will give its own handle through to OpenConsole.exe so it can monitor its lifetime and cleanup. If the owner is gone, the session should end.
• Assorted handle cleanup that was leading to improper exits. I was confused between .reset() and .release() for some of the wil::unique_any<T> handling and it lead to leaked handles. The leaked handles meant that threads weren't aware of the other sides collapsing and wouldn't cleanup/terminate appropriately.

How does this fix things?

• For the WSL cases... WSL was specifically looking up the owner PID of the console session from the driver. That was the conhost.exe PID. If it exits, that PID isn't valid and is recycled. Thus the parameter is incorrect or other inappropriate WSL setup behaviors.
• Ctrl+C not passed... this is a signal the operating system rejects from a PID that is not the owner. This is now relayed through the original owner and it works.
• Leftover processes... I believe I explained this was both not-enough-monitoring of each others' process lifetimes coupled with mishandling of release/resetting handles and leaking them.
• Powershell sometimes fails to attach... my theory on this one is that it's a race that became upset when the conhost.exe disappeared while something about Powershell/.NET was still starting, much like the WSL one. I believe now that it is sticking around, it will be fine.

Also, this WILL require an OS update to complete improvement of functionality and I have revised the interface ID. This is considered an acceptable breaking change with no mitigation because we said this feature was an alpha preview.

Validation Steps Performed

• Launched WSL with defapp set, it works
• Launched WSL with defapp set and the debug tap on, it works and opens in two tabs
• Launched CMD, ran ping, did Ctrl+C, it now receives it
• Launched Win+X powershell a ton of times. It seems fine now
• Launched cmd, powershell, wsl, etc. Killed assorted processes in the chain (client/conhost/openconsole/windowsterminal) and observed in Process Explorer (with a long delta timer so I could see it) that they all successfully tear down now without leftovers.

[miniksa]

I just realized I likely need to send a few more parameters over the IConsoleHandoff interface while I'm here for #9458. So setting to Draft until I figure that out so I don't have to rev the IID again.

[miniksa]

I just realized I likely need to send a few more parameters over the IConsoleHandoff interface while I'm here for #9458. So setting to Draft until I figure that out so I don't have to rev the IID again.

ConsoleInitializeConnectInfo looks like it can pick up any of this information in the OpenConsole.exe so it doesn't need to be passed. So nevermind on the #9458 business. That's between OpenConsole.exe and WindowsTerminal.exe... not the OS copy.

[o-sdn-o]

Could this be related to #10400?

[DHowett]

Could this be related to #10400?

Unlikely; this code is only used when conhost (inside windows) spawns a secondary conhost, not when you call CreatePseudoConsole.

[DHowett]

you'll probably merge conflict near here because of til::feature

[lhecker]

Lotta comments... But no actual mistakes.

[lhecker]

We don't need _In_ in modern C++ anymore, do we?
Also I think I need to change my opinion: I previously agreed with Dustin that && makes the intent of ownership transfer clear, but now that I read the code I feel like a version without any references at all is cleaner. It properly works even with prvalues, like when you want to write new HostSignalInputThread(wil::make_unique<>(...)) (if that existed), etc.
I'm not sure if it can be argued in this particular case that the && variant helps confer any additional meaning to future readers, what a handle called "unique" doesn't already.

[miniksa]

This is between you and @DHowett then. && already confuses me and you two understand it better than me. I just want whatever works.

[miniksa]

(I did drop SAL tho...)

[miniksa]

Don't merge yet. I need to do a final e2e test after all the style feedback to make sure I didn't bungle a byte buffer.

[miniksa]

Built against OS and fixed. Patched OS and tried it and confirmed the issues are still resolved. Setting automerge.

[ghost]

Hello @miniksa!

Because this pull request has the AutoMerge label, I will be glad to assist with helping to merge this pull request once all check-in policies pass.

p.s. you can customize the way I help with merging this pull request, such as holding this pull request until a specific person approves. Simply @mention me (@msftbot) and give me an instruction to get started! Learn more here.

[DHowett]

huh, i thought that these were the same

moreover, however: !_hFile is the valid way to check for presence in a wil handle

[DHowett]

i... thought we moved to wil because there was a macro that made this less ugly, not a macro that made it more ugly 😉

[lhecker]

For the glory of error tracing! 🥲
It's really weird that the static_cast is necessary...

[miniksa]

the only plus side to this mess is that it is more debuggable with the wil tracelog. You're right... wil was supposed to solve this but then on further inspection... someone implemented like 4 of the functions and not the ones I needed (NT_RETURN_NTSTATUS_IF and NT_RETURN_NTSTATUS_IF_WIN32_BOOL_FALSE etc.)

[ghost]

🎉Windows Terminal Preview v1.10.1933.0 has been released which incorporates this pull request.:tada:

Handy links:

• Release Notes
• Store Download