We use cookies to ensure you get the best experience on our website
首頁 探索 說明
註冊 登入
0ct0pu5
/
moby
1
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
目錄樹: 1148a24e64
分支列表 標籤列表
moby
/
plugin
/
fetch_linux.go

fetch_linux.go 9.4 KB
文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285 
  1. package plugin
    2. 

  2. 

  3. import (
    4. 

  4. 	"context"
    5. 

  5. 	"io"
    6. 

  6. 	"net/http"
    7. 

  7. 	"time"
    8. 

  8. 

  9. 	"github.com/containerd/containerd/content"
    10. 

  10. 	cerrdefs "github.com/containerd/containerd/errdefs"
    11. 

  11. 	"github.com/containerd/containerd/images"
    12. 

  12. 	"github.com/containerd/containerd/log"
    13. 

  13. 	"github.com/containerd/containerd/remotes"
    14. 

  14. 	"github.com/containerd/containerd/remotes/docker"
    15. 

  15. 	"github.com/distribution/reference"
    16. 

  16. 	"github.com/docker/docker/api/types/registry"
    17. 

  17. 	progressutils "github.com/docker/docker/distribution/utils"
    18. 

  18. 	"github.com/docker/docker/pkg/chrootarchive"
    19. 

  19. 	"github.com/docker/docker/pkg/ioutils"
    20. 

  20. 	"github.com/docker/docker/pkg/progress"
    21. 

  21. 	"github.com/docker/docker/pkg/stringid"
    22. 

  22. 	"github.com/opencontainers/go-digest"
    23. 

  23. 	ocispec "github.com/opencontainers/image-spec/specs-go/v1"
    24. 

  24. 	"github.com/pkg/errors"
    25. 

  25. )
    26. 

  26. 

  27. const mediaTypePluginConfig = "application/vnd.docker.plugin.v1+json"
    28. 

  28. 

  29. // setupProgressOutput sets up the passed in writer to stream progress.
    30. 

  30. //
    31. 

  31. // The passed in cancel function is used by the progress writer to signal callers that there
    32. 

  32. // is an issue writing to the stream.
    33. 

  33. //
    34. 

  34. // The returned function is used to wait for the progress writer to be finished.
    35. 

  35. // Call it to make sure the progress writer is done before returning from your function as needed.
    36. 

  36. func setupProgressOutput(outStream io.Writer, cancel func()) (progress.Output, func()) {
    37. 

  37. 	var out progress.Output
    38. 

  38. 	f := func() {}
    39. 

  39. 

  40. 	if outStream != nil {
    41. 

  41. 		ch := make(chan progress.Progress, 100)
    42. 

  42. 		out = progress.ChanOutput(ch)
    43. 

  43. 

  44. 		ctx, retCancel := context.WithCancel(context.Background())
    45. 

  45. 		go func() {
    46. 

  46. 			progressutils.WriteDistributionProgress(cancel, outStream, ch)
    47. 

  47. 			retCancel()
    48. 

  48. 		}()
    49. 

  49. 

  50. 		f = func() {
    51. 

  51. 			close(ch)
    52. 

  52. 			<-ctx.Done()
    53. 

  53. 		}
    54. 

  54. 	} else {
    55. 

  55. 		out = progress.DiscardOutput()
    56. 

  56. 	}
    57. 

  57. 	return out, f
    58. 

  58. }
    59. 

  59. 

  60. // fetch the content related to the passed in reference into the blob store and appends the provided images.Handlers
    61. 

  61. // There is no need to use remotes.FetchHandler since it already gets set
    62. 

  62. func (pm *Manager) fetch(ctx context.Context, ref reference.Named, auth *registry.AuthConfig, out progress.Output, metaHeader http.Header, handlers ...images.Handler) (err error) {
    63. 

  63. 	// We need to make sure we have a domain on the reference
    64. 

  64. 	withDomain, err := reference.ParseNormalizedNamed(ref.String())
    65. 

  65. 	if err != nil {
    66. 

  66. 		return errors.Wrap(err, "error parsing plugin image reference")
    67. 

  67. 	}
    68. 

  68. 

  69. 	// Make sure we can authenticate the request since the auth scope for plugin repos is different than a normal repo.
    70. 

  70. 	ctx = docker.WithScope(ctx, scope(ref, false))
    71. 

  71. 

  72. 	// Make sure the fetch handler knows how to set a ref key for the plugin media type.
    73. 

  73. 	// Without this the ref key is "unknown" and we see a nasty warning message in the logs
    74. 

  74. 	ctx = remotes.WithMediaTypeKeyPrefix(ctx, mediaTypePluginConfig, "docker-plugin")
    75. 

  75. 

  76. 	resolver, err := pm.newResolver(ctx, nil, auth, metaHeader, false)
    77. 

  77. 	if err != nil {
    78. 

  78. 		return err
    79. 

  79. 	}
    80. 

  80. 	resolved, desc, err := resolver.Resolve(ctx, withDomain.String())
    81. 

  81. 	if err != nil {
    82. 

  82. 		// This is backwards compatible with older versions of the distribution registry.
    83. 

  83. 		// The containerd client will add it's own accept header as a comma separated list of supported manifests.
    84. 

  84. 		// This is perfectly fine, unless you are talking to an older registry which does not split the comma separated list,
    85. 

  85. 		//   so it is never able to match a media type and it falls back to schema1 (yuck) and fails because our manifest the
    86. 

  86. 		//   fallback does not support plugin configs...
    87. 

  87. 		log.G(ctx).WithError(err).WithField("ref", withDomain).Debug("Error while resolving reference, falling back to backwards compatible accept header format")
    88. 

  88. 		headers := http.Header{}
    89. 

  89. 		headers.Add("Accept", images.MediaTypeDockerSchema2Manifest)
    90. 

  90. 		headers.Add("Accept", images.MediaTypeDockerSchema2ManifestList)
    91. 

  91. 		headers.Add("Accept", ocispec.MediaTypeImageManifest)
    92. 

  92. 		headers.Add("Accept", ocispec.MediaTypeImageIndex)
    93. 

  93. 		resolver, _ = pm.newResolver(ctx, nil, auth, headers, false)
    94. 

  94. 		if resolver != nil {
    95. 

  95. 			resolved, desc, err = resolver.Resolve(ctx, withDomain.String())
    96. 

  96. 			if err != nil {
    97. 

  97. 				log.G(ctx).WithError(err).WithField("ref", withDomain).Debug("Failed to resolve reference after falling back to backwards compatible accept header format")
    98. 

  98. 			}
    99. 

  99. 		}
    100. 

  100. 		if err != nil {
    101. 

  101. 			return errors.Wrap(err, "error resolving plugin reference")
    102. 

  102. 		}
    103. 

  103. 	}
    104. 

  104. 

  105. 	fetcher, err := resolver.Fetcher(ctx, resolved)
    106. 

  106. 	if err != nil {
    107. 

  107. 		return errors.Wrap(err, "error creating plugin image fetcher")
    108. 

  108. 	}
    109. 

  109. 

  110. 	fp := withFetchProgress(pm.blobStore, out, ref)
    111. 

  111. 	handlers = append([]images.Handler{fp, remotes.FetchHandler(pm.blobStore, fetcher)}, handlers...)
    112. 

  112. 	return images.Dispatch(ctx, images.Handlers(handlers...), nil, desc)
    113. 

  113. }
    114. 

  114. 

  115. // applyLayer makes an images.HandlerFunc which applies a fetched image rootfs layer to a directory.
    116. 

  116. //
    117. 

  117. // TODO(@cpuguy83) This gets run sequentially after layer pull (makes sense), however
    118. 

  118. // if there are multiple layers to fetch we may end up extracting layers in the wrong
    119. 

  119. // order.
    120. 

  120. func applyLayer(cs content.Store, dir string, out progress.Output) images.HandlerFunc {
    121. 

  121. 	return func(ctx context.Context, desc ocispec.Descriptor) ([]ocispec.Descriptor, error) {
    122. 

  122. 		switch desc.MediaType {
    123. 

  123. 		case
    124. 

  124. 			ocispec.MediaTypeImageLayer,
    125. 

  125. 			images.MediaTypeDockerSchema2Layer,
    126. 

  126. 			ocispec.MediaTypeImageLayerGzip,
    127. 

  127. 			images.MediaTypeDockerSchema2LayerGzip:
    128. 

  128. 		default:
    129. 

  129. 			return nil, nil
    130. 

  130. 		}
    131. 

  131. 

  132. 		ra, err := cs.ReaderAt(ctx, desc)
    133. 

  133. 		if err != nil {
    134. 

  134. 			return nil, errors.Wrapf(err, "error getting content from content store for digest %s", desc.Digest)
    135. 

  135. 		}
    136. 

  136. 

  137. 		id := stringid.TruncateID(desc.Digest.String())
    138. 

  138. 

  139. 		rc := ioutils.NewReadCloserWrapper(content.NewReader(ra), ra.Close)
    140. 

  140. 		pr := progress.NewProgressReader(rc, out, desc.Size, id, "Extracting")
    141. 

  141. 		defer pr.Close()
    142. 

  142. 

  143. 		if _, err := chrootarchive.ApplyLayer(dir, pr); err != nil {
    144. 

  144. 			return nil, errors.Wrapf(err, "error applying layer for digest %s", desc.Digest)
    145. 

  145. 		}
    146. 

  146. 		progress.Update(out, id, "Complete")
    147. 

  147. 		return nil, nil
    148. 

  148. 	}
    149. 

  149. }
    150. 

  150. 

  151. func childrenHandler(cs content.Store) images.HandlerFunc {
    152. 

  152. 	ch := images.ChildrenHandler(cs)
    153. 

  153. 	return func(ctx context.Context, desc ocispec.Descriptor) ([]ocispec.Descriptor, error) {
    154. 

  154. 		switch desc.MediaType {
    155. 

  155. 		case mediaTypePluginConfig:
    156. 

  156. 			return nil, nil
    157. 

  157. 		default:
    158. 

  158. 			return ch(ctx, desc)
    159. 

  159. 		}
    160. 

  160. 	}
    161. 

  161. }
    162. 

  162. 

  163. type fetchMeta struct {
    164. 

  164. 	blobs    []digest.Digest
    165. 

  165. 	config   digest.Digest
    166. 

  166. 	manifest digest.Digest
    167. 

  167. }
    168. 

  168. 

  169. func storeFetchMetadata(m *fetchMeta) images.HandlerFunc {
    170. 

  170. 	return func(ctx context.Context, desc ocispec.Descriptor) ([]ocispec.Descriptor, error) {
    171. 

  171. 		switch desc.MediaType {
    172. 

  172. 		case
    173. 

  173. 			images.MediaTypeDockerSchema2LayerForeignGzip,
    174. 

  174. 			images.MediaTypeDockerSchema2Layer,
    175. 

  175. 			ocispec.MediaTypeImageLayer,
    176. 

  176. 			ocispec.MediaTypeImageLayerGzip:
    177. 

  177. 			m.blobs = append(m.blobs, desc.Digest)
    178. 

  178. 		case ocispec.MediaTypeImageManifest, images.MediaTypeDockerSchema2Manifest:
    179. 

  179. 			m.manifest = desc.Digest
    180. 

  180. 		case mediaTypePluginConfig:
    181. 

  181. 			m.config = desc.Digest
    182. 

  182. 		}
    183. 

  183. 		return nil, nil
    184. 

  184. 	}
    185. 

  185. }
    186. 

  186. 

  187. func validateFetchedMetadata(md fetchMeta) error {
    188. 

  188. 	if md.config == "" {
    189. 

  189. 		return errors.New("fetched plugin image but plugin config is missing")
    190. 

  190. 	}
    191. 

  191. 	if md.manifest == "" {
    192. 

  192. 		return errors.New("fetched plugin image but manifest is missing")
    193. 

  193. 	}
    194. 

  194. 	return nil
    195. 

  195. }
    196. 

  196. 

  197. // withFetchProgress is a fetch handler which registers a descriptor with a progress
    198. 

  198. func withFetchProgress(cs content.Store, out progress.Output, ref reference.Named) images.HandlerFunc {
    199. 

  199. 	return func(ctx context.Context, desc ocispec.Descriptor) ([]ocispec.Descriptor, error) {
    200. 

  200. 		switch desc.MediaType {
    201. 

  201. 		case ocispec.MediaTypeImageManifest, images.MediaTypeDockerSchema2Manifest:
    202. 

  202. 			tn := reference.TagNameOnly(ref)
    203. 

  203. 			tagged := tn.(reference.Tagged)
    204. 

  204. 			progress.Messagef(out, tagged.Tag(), "Pulling from %s", reference.FamiliarName(ref))
    205. 

  205. 			progress.Messagef(out, "", "Digest: %s", desc.Digest.String())
    206. 

  206. 			return nil, nil
    207. 

  207. 		case
    208. 

  208. 			images.MediaTypeDockerSchema2LayerGzip,
    209. 

  209. 			images.MediaTypeDockerSchema2Layer,
    210. 

  210. 			ocispec.MediaTypeImageLayer,
    211. 

  211. 			ocispec.MediaTypeImageLayerGzip:
    212. 

  212. 		default:
    213. 

  213. 			return nil, nil
    214. 

  214. 		}
    215. 

  215. 

  216. 		id := stringid.TruncateID(desc.Digest.String())
    217. 

  217. 

  218. 		if _, err := cs.Info(ctx, desc.Digest); err == nil {
    219. 

  219. 			out.WriteProgress(progress.Progress{ID: id, Action: "Already exists", LastUpdate: true})
    220. 

  220. 			return nil, nil
    221. 

  221. 		}
    222. 

  222. 

  223. 		progress.Update(out, id, "Waiting")
    224. 

  224. 

  225. 		key := remotes.MakeRefKey(ctx, desc)
    226. 

  226. 

  227. 		go func() {
    228. 

  228. 			timer := time.NewTimer(100 * time.Millisecond)
    229. 

  229. 			if !timer.Stop() {
    230. 

  230. 				<-timer.C
    231. 

  231. 			}
    232. 

  232. 			defer timer.Stop()
    233. 

  233. 

  234. 			var pulling bool
    235. 

  235. 			var ctxErr error
    236. 

  236. 

  237. 			for {
    238. 

  238. 				timer.Reset(100 * time.Millisecond)
    239. 

  239. 

  240. 				select {
    241. 

  241. 				case <-ctx.Done():
    242. 

  242. 					ctxErr = ctx.Err()
    243. 

  243. 					// make sure we can still fetch from the content store
    244. 

  244. 					// TODO: Might need to add some sort of timeout
    245. 

  245. 					ctx = context.Background()
    246. 

  246. 				case <-timer.C:
    247. 

  247. 				}
    248. 

  248. 

  249. 				s, err := cs.Status(ctx, key)
    250. 

  250. 				if err != nil {
    251. 

  251. 					if !cerrdefs.IsNotFound(err) {
    252. 

  252. 						log.G(ctx).WithError(err).WithField("layerDigest", desc.Digest.String()).Error("Error looking up status of plugin layer pull")
    253. 

  253. 						progress.Update(out, id, err.Error())
    254. 

  254. 						return
    255. 

  255. 					}
    256. 

  256. 

  257. 					if _, err := cs.Info(ctx, desc.Digest); err == nil {
    258. 

  258. 						progress.Update(out, id, "Download complete")
    259. 

  259. 						return
    260. 

  260. 					}
    261. 

  261. 

  262. 					if ctxErr != nil {
    263. 

  263. 						progress.Update(out, id, ctxErr.Error())
    264. 

  264. 						return
    265. 

  265. 					}
    266. 

  266. 

  267. 					continue
    268. 

  268. 				}
    269. 

  269. 

  270. 				if !pulling {
    271. 

  271. 					progress.Update(out, id, "Pulling fs layer")
    272. 

  272. 					pulling = true
    273. 

  273. 				}
    274. 

  274. 

  275. 				if s.Offset == s.Total {
    276. 

  276. 					out.WriteProgress(progress.Progress{ID: id, Action: "Download complete", Current: s.Offset, LastUpdate: true})
    277. 

  277. 					return
    278. 

  278. 				}
    279. 

  279. 

  280. 				out.WriteProgress(progress.Progress{ID: id, Action: "Downloading", Current: s.Offset, Total: s.Total})
    281. 

  281. 			}
    282. 

  282. 		}()
    283. 

  283. 		return nil, nil
    284. 

  284. 	}
    285. 

  285. }
    286.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5