539 lines
14 KiB
Go
539 lines
14 KiB
Go
package base
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
"io/ioutil"
|
|
"os"
|
|
"path/filepath"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/containerd/containerd/content"
|
|
"github.com/containerd/containerd/diff"
|
|
"github.com/containerd/containerd/gc"
|
|
"github.com/containerd/containerd/images"
|
|
"github.com/containerd/containerd/leases"
|
|
"github.com/containerd/containerd/platforms"
|
|
"github.com/containerd/containerd/remotes/docker"
|
|
"github.com/docker/docker/pkg/idtools"
|
|
"github.com/moby/buildkit/cache"
|
|
"github.com/moby/buildkit/cache/blobs"
|
|
"github.com/moby/buildkit/cache/metadata"
|
|
"github.com/moby/buildkit/client"
|
|
"github.com/moby/buildkit/client/llb"
|
|
"github.com/moby/buildkit/executor"
|
|
"github.com/moby/buildkit/exporter"
|
|
imageexporter "github.com/moby/buildkit/exporter/containerimage"
|
|
localexporter "github.com/moby/buildkit/exporter/local"
|
|
ociexporter "github.com/moby/buildkit/exporter/oci"
|
|
tarexporter "github.com/moby/buildkit/exporter/tar"
|
|
"github.com/moby/buildkit/frontend"
|
|
"github.com/moby/buildkit/identity"
|
|
"github.com/moby/buildkit/session"
|
|
"github.com/moby/buildkit/snapshot"
|
|
"github.com/moby/buildkit/snapshot/imagerefchecker"
|
|
"github.com/moby/buildkit/solver"
|
|
"github.com/moby/buildkit/solver/llbsolver/ops"
|
|
"github.com/moby/buildkit/solver/pb"
|
|
"github.com/moby/buildkit/source"
|
|
"github.com/moby/buildkit/source/containerimage"
|
|
"github.com/moby/buildkit/source/git"
|
|
"github.com/moby/buildkit/source/http"
|
|
"github.com/moby/buildkit/source/local"
|
|
"github.com/moby/buildkit/util/archutil"
|
|
"github.com/moby/buildkit/util/contentutil"
|
|
"github.com/moby/buildkit/util/leaseutil"
|
|
"github.com/moby/buildkit/util/progress"
|
|
"github.com/moby/buildkit/worker"
|
|
digest "github.com/opencontainers/go-digest"
|
|
ocispec "github.com/opencontainers/image-spec/specs-go/v1"
|
|
specs "github.com/opencontainers/image-spec/specs-go/v1"
|
|
"github.com/pkg/errors"
|
|
"github.com/sirupsen/logrus"
|
|
bolt "go.etcd.io/bbolt"
|
|
"golang.org/x/sync/errgroup"
|
|
)
|
|
|
|
const labelCreatedAt = "buildkit/createdat"
|
|
|
|
// TODO: this file should be removed. containerd defines ContainerdWorker, oci defines OCIWorker. There is no base worker.
|
|
|
|
// WorkerOpt is specific to a worker.
|
|
// See also CommonOpt.
|
|
type WorkerOpt struct {
|
|
ID string
|
|
Labels map[string]string
|
|
Platforms []specs.Platform
|
|
GCPolicy []client.PruneInfo
|
|
MetadataStore *metadata.Store
|
|
Executor executor.Executor
|
|
Snapshotter snapshot.Snapshotter
|
|
ContentStore content.Store
|
|
Applier diff.Applier
|
|
Differ diff.Comparer
|
|
ImageStore images.Store // optional
|
|
RegistryHosts docker.RegistryHosts
|
|
IdentityMapping *idtools.IdentityMapping
|
|
LeaseManager leases.Manager
|
|
GarbageCollect func(context.Context) (gc.Stats, error)
|
|
}
|
|
|
|
// Worker is a local worker instance with dedicated snapshotter, cache, and so on.
|
|
// TODO: s/Worker/OpWorker/g ?
|
|
type Worker struct {
|
|
WorkerOpt
|
|
CacheMgr cache.Manager
|
|
SourceManager *source.Manager
|
|
imageWriter *imageexporter.ImageWriter
|
|
ImageSource *containerimage.Source
|
|
}
|
|
|
|
// NewWorker instantiates a local worker
|
|
func NewWorker(opt WorkerOpt) (*Worker, error) {
|
|
imageRefChecker := imagerefchecker.New(imagerefchecker.Opt{
|
|
ImageStore: opt.ImageStore,
|
|
ContentStore: opt.ContentStore,
|
|
})
|
|
|
|
cm, err := cache.NewManager(cache.ManagerOpt{
|
|
Snapshotter: opt.Snapshotter,
|
|
MetadataStore: opt.MetadataStore,
|
|
PruneRefChecker: imageRefChecker,
|
|
Applier: opt.Applier,
|
|
GarbageCollect: opt.GarbageCollect,
|
|
LeaseManager: opt.LeaseManager,
|
|
ContentStore: opt.ContentStore,
|
|
})
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
sm, err := source.NewManager()
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
is, err := containerimage.NewSource(containerimage.SourceOpt{
|
|
Snapshotter: opt.Snapshotter,
|
|
ContentStore: opt.ContentStore,
|
|
Applier: opt.Applier,
|
|
ImageStore: opt.ImageStore,
|
|
CacheAccessor: cm,
|
|
RegistryHosts: opt.RegistryHosts,
|
|
LeaseManager: opt.LeaseManager,
|
|
})
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
sm.Register(is)
|
|
|
|
if err := git.Supported(); err == nil {
|
|
gs, err := git.NewSource(git.Opt{
|
|
CacheAccessor: cm,
|
|
MetadataStore: opt.MetadataStore,
|
|
})
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
sm.Register(gs)
|
|
} else {
|
|
logrus.Warnf("git source cannot be enabled: %v", err)
|
|
}
|
|
|
|
hs, err := http.NewSource(http.Opt{
|
|
CacheAccessor: cm,
|
|
MetadataStore: opt.MetadataStore,
|
|
})
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
sm.Register(hs)
|
|
|
|
ss, err := local.NewSource(local.Opt{
|
|
CacheAccessor: cm,
|
|
MetadataStore: opt.MetadataStore,
|
|
})
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
sm.Register(ss)
|
|
|
|
iw, err := imageexporter.NewImageWriter(imageexporter.WriterOpt{
|
|
Snapshotter: opt.Snapshotter,
|
|
ContentStore: opt.ContentStore,
|
|
Applier: opt.Applier,
|
|
Differ: opt.Differ,
|
|
})
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
leases, err := opt.LeaseManager.List(context.TODO(), "labels.\"buildkit/lease.temporary\"")
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
for _, l := range leases {
|
|
opt.LeaseManager.Delete(context.TODO(), l)
|
|
}
|
|
|
|
return &Worker{
|
|
WorkerOpt: opt,
|
|
CacheMgr: cm,
|
|
SourceManager: sm,
|
|
imageWriter: iw,
|
|
ImageSource: is,
|
|
}, nil
|
|
}
|
|
|
|
func (w *Worker) ContentStore() content.Store {
|
|
return w.WorkerOpt.ContentStore
|
|
}
|
|
|
|
func (w *Worker) ID() string {
|
|
return w.WorkerOpt.ID
|
|
}
|
|
|
|
func (w *Worker) Labels() map[string]string {
|
|
return w.WorkerOpt.Labels
|
|
}
|
|
|
|
func (w *Worker) Platforms(noCache bool) []specs.Platform {
|
|
if noCache {
|
|
pm := make(map[string]struct{}, len(w.WorkerOpt.Platforms))
|
|
for _, p := range w.WorkerOpt.Platforms {
|
|
pm[platforms.Format(p)] = struct{}{}
|
|
}
|
|
for _, p := range archutil.SupportedPlatforms(noCache) {
|
|
if _, ok := pm[p]; !ok {
|
|
pp, _ := platforms.Parse(p)
|
|
w.WorkerOpt.Platforms = append(w.WorkerOpt.Platforms, pp)
|
|
}
|
|
}
|
|
}
|
|
return w.WorkerOpt.Platforms
|
|
}
|
|
|
|
func (w *Worker) GCPolicy() []client.PruneInfo {
|
|
return w.WorkerOpt.GCPolicy
|
|
}
|
|
|
|
func (w *Worker) LoadRef(id string, hidden bool) (cache.ImmutableRef, error) {
|
|
var opts []cache.RefOption
|
|
if hidden {
|
|
opts = append(opts, cache.NoUpdateLastUsed)
|
|
}
|
|
return w.CacheMgr.Get(context.TODO(), id, opts...)
|
|
}
|
|
|
|
func (w *Worker) Executor() executor.Executor {
|
|
return w.WorkerOpt.Executor
|
|
}
|
|
|
|
func (w *Worker) CacheManager() cache.Manager {
|
|
return w.CacheMgr
|
|
}
|
|
|
|
func (w *Worker) ResolveOp(v solver.Vertex, s frontend.FrontendLLBBridge, sm *session.Manager) (solver.Op, error) {
|
|
if baseOp, ok := v.Sys().(*pb.Op); ok {
|
|
switch op := baseOp.Op.(type) {
|
|
case *pb.Op_Source:
|
|
return ops.NewSourceOp(v, op, baseOp.Platform, w.SourceManager, sm, w)
|
|
case *pb.Op_Exec:
|
|
return ops.NewExecOp(v, op, baseOp.Platform, w.CacheMgr, sm, w.MetadataStore, w.WorkerOpt.Executor, w)
|
|
case *pb.Op_File:
|
|
return ops.NewFileOp(v, op, w.CacheMgr, w.MetadataStore, w)
|
|
case *pb.Op_Build:
|
|
return ops.NewBuildOp(v, op, s, w)
|
|
default:
|
|
return nil, errors.Errorf("no support for %T", op)
|
|
}
|
|
}
|
|
return nil, errors.Errorf("could not resolve %v", v)
|
|
}
|
|
|
|
func (w *Worker) PruneCacheMounts(ctx context.Context, ids []string) error {
|
|
mu := ops.CacheMountsLocker()
|
|
mu.Lock()
|
|
defer mu.Unlock()
|
|
|
|
for _, id := range ids {
|
|
id = "cache-dir:" + id
|
|
sis, err := w.MetadataStore.Search(id)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
for _, si := range sis {
|
|
for _, k := range si.Indexes() {
|
|
if k == id || strings.HasPrefix(k, id+":") {
|
|
if siCached := w.CacheMgr.Metadata(si.ID()); siCached != nil {
|
|
si = siCached
|
|
}
|
|
if err := cache.CachePolicyDefault(si); err != nil {
|
|
return err
|
|
}
|
|
si.Queue(func(b *bolt.Bucket) error {
|
|
return si.SetValue(b, k, nil)
|
|
})
|
|
if err := si.Commit(); err != nil {
|
|
return err
|
|
}
|
|
// if ref is unused try to clean it up right away by releasing it
|
|
if mref, err := w.CacheMgr.GetMutable(ctx, si.ID()); err == nil {
|
|
go mref.Release(context.TODO())
|
|
}
|
|
break
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
ops.ClearActiveCacheMounts()
|
|
return nil
|
|
}
|
|
|
|
func (w *Worker) ResolveImageConfig(ctx context.Context, ref string, opt llb.ResolveImageConfigOpt, sm *session.Manager, g session.Group) (digest.Digest, []byte, error) {
|
|
return w.ImageSource.ResolveImageConfig(ctx, ref, opt, sm, g)
|
|
}
|
|
|
|
func (w *Worker) DiskUsage(ctx context.Context, opt client.DiskUsageInfo) ([]*client.UsageInfo, error) {
|
|
return w.CacheMgr.DiskUsage(ctx, opt)
|
|
}
|
|
|
|
func (w *Worker) Prune(ctx context.Context, ch chan client.UsageInfo, opt ...client.PruneInfo) error {
|
|
return w.CacheMgr.Prune(ctx, ch, opt...)
|
|
}
|
|
|
|
func (w *Worker) Exporter(name string, sm *session.Manager) (exporter.Exporter, error) {
|
|
switch name {
|
|
case client.ExporterImage:
|
|
return imageexporter.New(imageexporter.Opt{
|
|
Images: w.ImageStore,
|
|
SessionManager: sm,
|
|
ImageWriter: w.imageWriter,
|
|
RegistryHosts: w.RegistryHosts,
|
|
LeaseManager: w.LeaseManager,
|
|
})
|
|
case client.ExporterLocal:
|
|
return localexporter.New(localexporter.Opt{
|
|
SessionManager: sm,
|
|
})
|
|
case client.ExporterTar:
|
|
return tarexporter.New(tarexporter.Opt{
|
|
SessionManager: sm,
|
|
})
|
|
case client.ExporterOCI:
|
|
return ociexporter.New(ociexporter.Opt{
|
|
SessionManager: sm,
|
|
ImageWriter: w.imageWriter,
|
|
Variant: ociexporter.VariantOCI,
|
|
LeaseManager: w.LeaseManager,
|
|
})
|
|
case client.ExporterDocker:
|
|
return ociexporter.New(ociexporter.Opt{
|
|
SessionManager: sm,
|
|
ImageWriter: w.imageWriter,
|
|
Variant: ociexporter.VariantDocker,
|
|
LeaseManager: w.LeaseManager,
|
|
})
|
|
default:
|
|
return nil, errors.Errorf("exporter %q could not be found", name)
|
|
}
|
|
}
|
|
|
|
func (w *Worker) GetRemote(ctx context.Context, ref cache.ImmutableRef, createIfNeeded bool) (*solver.Remote, error) {
|
|
ctx, done, err := leaseutil.WithLease(ctx, w.LeaseManager, leaseutil.MakeTemporary)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
defer done(ctx)
|
|
|
|
// TODO(fuweid): add compression option or config for cache exporter.
|
|
diffPairs, err := blobs.GetDiffPairs(ctx, w.ContentStore(), w.Differ, ref, createIfNeeded, blobs.DefaultCompression)
|
|
if err != nil {
|
|
return nil, errors.Wrap(err, "failed calculating diff pairs for exported snapshot")
|
|
}
|
|
if len(diffPairs) == 0 {
|
|
return nil, nil
|
|
}
|
|
|
|
createdTimes := getCreatedTimes(ref)
|
|
if len(createdTimes) != len(diffPairs) {
|
|
return nil, errors.Errorf("invalid createdtimes/diffpairs")
|
|
}
|
|
|
|
descs := make([]ocispec.Descriptor, len(diffPairs))
|
|
|
|
cs := w.ContentStore()
|
|
layerMediaTypes := blobs.GetMediaTypeForLayers(diffPairs, ref)
|
|
for i, dp := range diffPairs {
|
|
info, err := cs.Info(ctx, dp.Blobsum)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
tm, err := createdTimes[i].MarshalText()
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
var mediaType string
|
|
if len(layerMediaTypes) > i {
|
|
mediaType = layerMediaTypes[i]
|
|
}
|
|
|
|
// NOTE: The media type might be missing for some migrated ones
|
|
// from before lease based storage. If so, we should detect
|
|
// the media type from blob data.
|
|
//
|
|
// Discussion: https://github.com/moby/buildkit/pull/1277#discussion_r352795429
|
|
if mediaType == "" {
|
|
mediaType, err = blobs.DetectLayerMediaType(ctx, cs, dp.Blobsum, false)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
}
|
|
|
|
descs[i] = ocispec.Descriptor{
|
|
Digest: dp.Blobsum,
|
|
Size: info.Size,
|
|
MediaType: mediaType,
|
|
Annotations: map[string]string{
|
|
"containerd.io/uncompressed": dp.DiffID.String(),
|
|
labelCreatedAt: string(tm),
|
|
},
|
|
}
|
|
}
|
|
|
|
return &solver.Remote{
|
|
Descriptors: descs,
|
|
Provider: cs,
|
|
}, nil
|
|
}
|
|
|
|
func getCreatedTimes(ref cache.ImmutableRef) (out []time.Time) {
|
|
parent := ref.Parent()
|
|
if parent != nil {
|
|
defer parent.Release(context.TODO())
|
|
out = getCreatedTimes(parent)
|
|
}
|
|
return append(out, cache.GetCreatedAt(ref.Metadata()))
|
|
}
|
|
|
|
func (w *Worker) FromRemote(ctx context.Context, remote *solver.Remote) (ref cache.ImmutableRef, err error) {
|
|
ctx, done, err := leaseutil.WithLease(ctx, w.LeaseManager, leaseutil.MakeTemporary)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
defer done(ctx)
|
|
|
|
eg, gctx := errgroup.WithContext(ctx)
|
|
for _, desc := range remote.Descriptors {
|
|
func(desc ocispec.Descriptor) {
|
|
eg.Go(func() error {
|
|
done := oneOffProgress(ctx, fmt.Sprintf("pulling %s", desc.Digest))
|
|
if err := contentutil.Copy(gctx, w.ContentStore(), remote.Provider, desc); err != nil {
|
|
return done(err)
|
|
}
|
|
if ref, ok := desc.Annotations["containerd.io/distribution.source.ref"]; ok {
|
|
hf, err := docker.AppendDistributionSourceLabel(w.ContentStore(), ref)
|
|
if err != nil {
|
|
return done(err)
|
|
}
|
|
_, err = hf(ctx, desc)
|
|
return done(err)
|
|
}
|
|
return done(nil)
|
|
})
|
|
}(desc)
|
|
}
|
|
|
|
if err := eg.Wait(); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
unpackProgressDone := oneOffProgress(ctx, "unpacking")
|
|
defer func() {
|
|
err = unpackProgressDone(err)
|
|
}()
|
|
var current cache.ImmutableRef
|
|
for i, desc := range remote.Descriptors {
|
|
tm := time.Now()
|
|
if tmstr, ok := desc.Annotations[labelCreatedAt]; ok {
|
|
if err := (&tm).UnmarshalText([]byte(tmstr)); err != nil {
|
|
if current != nil {
|
|
current.Release(context.TODO())
|
|
}
|
|
return nil, err
|
|
}
|
|
}
|
|
descr := fmt.Sprintf("imported %s", remote.Descriptors[i].Digest)
|
|
if v, ok := desc.Annotations["buildkit/description"]; ok {
|
|
descr = v
|
|
}
|
|
ref, err := w.CacheMgr.GetByBlob(ctx, desc, current, cache.WithDescription(descr), cache.WithCreationTime(tm))
|
|
if current != nil {
|
|
current.Release(context.TODO())
|
|
}
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
if err := ref.Extract(ctx); err != nil {
|
|
ref.Release(context.TODO())
|
|
return nil, err
|
|
}
|
|
current = ref
|
|
}
|
|
return current, nil
|
|
}
|
|
|
|
// Labels returns default labels
|
|
// utility function. could be moved to the constructor logic?
|
|
func Labels(executor, snapshotter string) map[string]string {
|
|
hostname, err := os.Hostname()
|
|
if err != nil {
|
|
hostname = "unknown"
|
|
}
|
|
labels := map[string]string{
|
|
worker.LabelExecutor: executor,
|
|
worker.LabelSnapshotter: snapshotter,
|
|
worker.LabelHostname: hostname,
|
|
}
|
|
return labels
|
|
}
|
|
|
|
// ID reads the worker id from the `workerid` file.
|
|
// If not exist, it creates a random one,
|
|
func ID(root string) (string, error) {
|
|
f := filepath.Join(root, "workerid")
|
|
b, err := ioutil.ReadFile(f)
|
|
if err != nil {
|
|
if errors.Is(err, os.ErrNotExist) {
|
|
id := identity.NewID()
|
|
err := ioutil.WriteFile(f, []byte(id), 0400)
|
|
return id, err
|
|
}
|
|
return "", err
|
|
}
|
|
return string(b), nil
|
|
}
|
|
|
|
func oneOffProgress(ctx context.Context, id string) func(err error) error {
|
|
pw, _, _ := progress.FromContext(ctx)
|
|
now := time.Now()
|
|
st := progress.Status{
|
|
Started: &now,
|
|
}
|
|
pw.Write(id, st)
|
|
return func(err error) error {
|
|
// TODO: set error on status
|
|
now := time.Now()
|
|
st.Completed = &now
|
|
pw.Write(id, st)
|
|
pw.Close()
|
|
return err
|
|
}
|
|
}
|