2015-04-27 10:53:12 -04:00
|
|
|
// +build linux
|
|
|
|
|
2013-11-07 07:33:31 -05:00
|
|
|
/*
|
|
|
|
|
|
|
|
aufs driver directory structure
|
|
|
|
|
2015-04-27 10:53:12 -04:00
|
|
|
.
|
|
|
|
├── layers // Metadata of layers
|
|
|
|
│ ├── 1
|
|
|
|
│ ├── 2
|
|
|
|
│ └── 3
|
|
|
|
├── diff // Content of the layer
|
|
|
|
│ ├── 1 // Contains layers that need to be mounted for the id
|
|
|
|
│ ├── 2
|
|
|
|
│ └── 3
|
|
|
|
└── mnt // Mount points for the rw layers to be mounted
|
|
|
|
├── 1
|
|
|
|
├── 2
|
|
|
|
└── 3
|
2013-11-07 07:33:31 -05:00
|
|
|
|
|
|
|
*/
|
|
|
|
|
2018-02-05 16:05:59 -05:00
|
|
|
package aufs // import "github.com/docker/docker/daemon/graphdriver/aufs"
|
2013-10-31 21:07:54 -04:00
|
|
|
|
|
|
|
import (
|
2013-11-07 20:57:14 -05:00
|
|
|
"bufio"
|
2018-03-29 11:34:58 -04:00
|
|
|
"context"
|
2013-10-31 21:07:54 -04:00
|
|
|
"fmt"
|
2016-10-20 19:40:59 -04:00
|
|
|
"io"
|
2015-03-26 02:02:21 -04:00
|
|
|
"io/ioutil"
|
2013-10-31 21:07:54 -04:00
|
|
|
"os"
|
|
|
|
"os/exec"
|
|
|
|
"path"
|
2016-03-09 16:23:04 -05:00
|
|
|
"path/filepath"
|
2013-11-07 20:57:14 -05:00
|
|
|
"strings"
|
2014-01-14 06:23:20 -05:00
|
|
|
"sync"
|
2016-09-13 12:25:36 -04:00
|
|
|
"time"
|
2014-05-29 15:55:59 -04:00
|
|
|
|
2014-07-24 18:19:50 -04:00
|
|
|
"github.com/docker/docker/daemon/graphdriver"
|
2014-09-30 02:23:36 -04:00
|
|
|
"github.com/docker/docker/pkg/archive"
|
2014-10-29 15:06:51 -04:00
|
|
|
"github.com/docker/docker/pkg/chrootarchive"
|
2017-08-03 20:22:00 -04:00
|
|
|
"github.com/docker/docker/pkg/containerfs"
|
2015-02-27 13:50:55 -05:00
|
|
|
"github.com/docker/docker/pkg/directory"
|
2015-10-08 11:51:41 -04:00
|
|
|
"github.com/docker/docker/pkg/idtools"
|
2017-02-17 18:46:19 -05:00
|
|
|
"github.com/docker/docker/pkg/locker"
|
2014-07-24 18:19:50 -04:00
|
|
|
mountpk "github.com/docker/docker/pkg/mount"
|
2017-02-14 13:35:20 -05:00
|
|
|
"github.com/docker/docker/pkg/system"
|
2016-03-31 15:42:16 -04:00
|
|
|
rsystem "github.com/opencontainers/runc/libcontainer/system"
|
2017-04-18 09:26:36 -04:00
|
|
|
"github.com/opencontainers/selinux/go-selinux/label"
|
2017-07-05 10:22:57 -04:00
|
|
|
"github.com/pkg/errors"
|
2017-07-26 17:42:13 -04:00
|
|
|
"github.com/sirupsen/logrus"
|
2017-05-23 10:22:32 -04:00
|
|
|
"github.com/vbatts/tar-split/tar/storage"
|
|
|
|
"golang.org/x/sys/unix"
|
2013-10-31 21:07:54 -04:00
|
|
|
)
|
|
|
|
|
2014-02-18 05:58:38 -05:00
|
|
|
var (
|
2015-07-21 22:15:14 -04:00
|
|
|
// ErrAufsNotSupported is returned if aufs is not supported by the host.
|
2014-02-18 05:58:38 -05:00
|
|
|
ErrAufsNotSupported = fmt.Errorf("AUFS was not found in /proc/filesystems")
|
2016-03-31 15:42:16 -04:00
|
|
|
// ErrAufsNested means aufs cannot be used bc we are in a user namespace
|
2016-05-10 09:25:54 -04:00
|
|
|
ErrAufsNested = fmt.Errorf("AUFS cannot be used in non-init user namespace")
|
|
|
|
backingFs = "<unknown>"
|
2015-03-26 02:02:21 -04:00
|
|
|
|
|
|
|
enableDirpermLock sync.Once
|
|
|
|
enableDirperm bool
|
2018-05-03 17:08:25 -04:00
|
|
|
|
|
|
|
logger = logrus.WithField("storage-driver", "aufs")
|
2014-02-18 05:58:38 -05:00
|
|
|
)
|
|
|
|
|
2013-11-04 18:22:34 -05:00
|
|
|
func init() {
|
|
|
|
graphdriver.Register("aufs", Init)
|
|
|
|
}
|
|
|
|
|
2015-07-21 22:15:14 -04:00
|
|
|
// Driver contains information about the filesystem mounted.
|
2013-11-19 06:27:59 -05:00
|
|
|
type Driver struct {
|
2016-03-27 01:53:47 -04:00
|
|
|
sync.Mutex
|
2016-03-09 16:23:04 -05:00
|
|
|
root string
|
|
|
|
uidMaps []idtools.IDMap
|
|
|
|
gidMaps []idtools.IDMap
|
2016-05-06 16:09:45 -04:00
|
|
|
ctr *graphdriver.RefCounter
|
2016-03-09 16:23:04 -05:00
|
|
|
pathCacheLock sync.Mutex
|
|
|
|
pathCache map[string]string
|
2016-04-21 12:08:37 -04:00
|
|
|
naiveDiff graphdriver.DiffDriver
|
2017-02-17 18:46:19 -05:00
|
|
|
locker *locker.Locker
|
2013-10-31 21:07:54 -04:00
|
|
|
}
|
|
|
|
|
2015-07-21 22:15:14 -04:00
|
|
|
// Init returns a new AUFS driver.
|
2013-11-03 20:54:51 -05:00
|
|
|
// An error is returned if AUFS is not supported.
|
2015-10-08 11:51:41 -04:00
|
|
|
func Init(root string, options []string, uidMaps, gidMaps []idtools.IDMap) (graphdriver.Driver, error) {
|
2013-11-04 18:22:34 -05:00
|
|
|
// Try to load the aufs kernel module
|
2013-11-07 20:57:14 -05:00
|
|
|
if err := supportsAufs(); err != nil {
|
2018-05-03 17:09:32 -04:00
|
|
|
logger.Error(err)
|
2014-03-27 12:41:06 -04:00
|
|
|
return nil, graphdriver.ErrNotSupported
|
2013-11-04 18:22:34 -05:00
|
|
|
}
|
2014-05-29 15:55:59 -04:00
|
|
|
|
2017-12-04 17:45:26 -05:00
|
|
|
// Perform feature detection on /var/lib/docker/aufs if it's an existing directory.
|
|
|
|
// This covers situations where /var/lib/docker/aufs is a mount, and on a different
|
|
|
|
// filesystem than /var/lib/docker.
|
|
|
|
// If the path does not exist, fall back to using /var/lib/docker for feature detection.
|
|
|
|
testdir := root
|
|
|
|
if _, err := os.Stat(testdir); os.IsNotExist(err) {
|
|
|
|
testdir = filepath.Dir(testdir)
|
|
|
|
}
|
|
|
|
|
|
|
|
fsMagic, err := graphdriver.GetFSMagic(testdir)
|
2015-01-15 16:40:39 -05:00
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
if fsName, ok := graphdriver.FsNames[fsMagic]; ok {
|
|
|
|
backingFs = fsName
|
2014-05-29 15:55:59 -04:00
|
|
|
}
|
|
|
|
|
2016-05-10 09:25:54 -04:00
|
|
|
switch fsMagic {
|
2016-05-31 05:36:55 -04:00
|
|
|
case graphdriver.FsMagicAufs, graphdriver.FsMagicBtrfs, graphdriver.FsMagicEcryptfs:
|
2018-05-03 17:08:25 -04:00
|
|
|
logger.Errorf("AUFS is not supported over %s", backingFs)
|
2016-05-10 09:25:54 -04:00
|
|
|
return nil, graphdriver.ErrIncompatibleFS
|
2014-05-29 15:55:59 -04:00
|
|
|
}
|
|
|
|
|
2013-11-07 07:33:31 -05:00
|
|
|
paths := []string{
|
|
|
|
"mnt",
|
|
|
|
"diff",
|
|
|
|
"layers",
|
|
|
|
}
|
|
|
|
|
2014-01-14 06:23:20 -05:00
|
|
|
a := &Driver{
|
2016-03-09 16:23:04 -05:00
|
|
|
root: root,
|
|
|
|
uidMaps: uidMaps,
|
|
|
|
gidMaps: gidMaps,
|
|
|
|
pathCache: make(map[string]string),
|
2016-05-06 16:09:45 -04:00
|
|
|
ctr: graphdriver.NewRefCounter(graphdriver.NewFsChecker(graphdriver.FsMagicAufs)),
|
2017-02-17 18:46:19 -05:00
|
|
|
locker: locker.New(),
|
2014-01-14 06:23:20 -05:00
|
|
|
}
|
|
|
|
|
2015-10-08 11:51:41 -04:00
|
|
|
rootUID, rootGID, err := idtools.GetRootUIDGID(uidMaps, gidMaps)
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
Simplify/fix MkdirAll usage
This subtle bug keeps lurking in because error checking for `Mkdir()`
and `MkdirAll()` is slightly different wrt to `EEXIST`/`IsExist`:
- for `Mkdir()`, `IsExist` error should (usually) be ignored
(unless you want to make sure directory was not there before)
as it means "the destination directory was already there"
- for `MkdirAll()`, `IsExist` error should NEVER be ignored.
Mostly, this commit just removes ignoring the IsExist error, as it
should not be ignored.
Also, there are a couple of cases then IsExist is handled as
"directory already exist" which is wrong. As a result, some code
that never worked as intended is now removed.
NOTE that `idtools.MkdirAndChown()` behaves like `os.MkdirAll()`
rather than `os.Mkdir()` -- so its description is amended accordingly,
and its usage is handled as such (i.e. IsExist error is not ignored).
For more details, a quote from my runc commit 6f82d4b (July 2015):
TL;DR: check for IsExist(err) after a failed MkdirAll() is both
redundant and wrong -- so two reasons to remove it.
Quoting MkdirAll documentation:
> MkdirAll creates a directory named path, along with any necessary
> parents, and returns nil, or else returns an error. If path
> is already a directory, MkdirAll does nothing and returns nil.
This means two things:
1. If a directory to be created already exists, no error is
returned.
2. If the error returned is IsExist (EEXIST), it means there exists
a non-directory with the same name as MkdirAll need to use for
directory. Example: we want to MkdirAll("a/b"), but file "a"
(or "a/b") already exists, so MkdirAll fails.
The above is a theory, based on quoted documentation and my UNIX
knowledge.
3. In practice, though, current MkdirAll implementation [1] returns
ENOTDIR in most of cases described in #2, with the exception when
there is a race between MkdirAll and someone else creating the
last component of MkdirAll argument as a file. In this very case
MkdirAll() will indeed return EEXIST.
Because of #1, IsExist check after MkdirAll is not needed.
Because of #2 and #3, ignoring IsExist error is just plain wrong,
as directory we require is not created. It's cleaner to report
the error now.
Note this error is all over the tree, I guess due to copy-paste,
or trying to follow the same usage pattern as for Mkdir(),
or some not quite correct examples on the Internet.
[1] https://github.com/golang/go/blob/f9ed2f75/src/os/path.go
Signed-off-by: Kir Kolyshkin <kolyshkin@gmail.com>
2017-09-25 15:39:36 -04:00
|
|
|
// Create the root aufs driver dir
|
2017-11-18 18:52:47 -05:00
|
|
|
if err := idtools.MkdirAllAndChown(root, 0700, idtools.IDPair{UID: rootUID, GID: rootGID}); err != nil {
|
2013-11-07 07:33:31 -05:00
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
Simplify and fix os.MkdirAll() usage
TL;DR: check for IsExist(err) after a failed MkdirAll() is both
redundant and wrong -- so two reasons to remove it.
Quoting MkdirAll documentation:
> MkdirAll creates a directory named path, along with any necessary
> parents, and returns nil, or else returns an error. If path
> is already a directory, MkdirAll does nothing and returns nil.
This means two things:
1. If a directory to be created already exists, no error is returned.
2. If the error returned is IsExist (EEXIST), it means there exists
a non-directory with the same name as MkdirAll need to use for
directory. Example: we want to MkdirAll("a/b"), but file "a"
(or "a/b") already exists, so MkdirAll fails.
The above is a theory, based on quoted documentation and my UNIX
knowledge.
3. In practice, though, current MkdirAll implementation [1] returns
ENOTDIR in most of cases described in #2, with the exception when
there is a race between MkdirAll and someone else creating the
last component of MkdirAll argument as a file. In this very case
MkdirAll() will indeed return EEXIST.
Because of #1, IsExist check after MkdirAll is not needed.
Because of #2 and #3, ignoring IsExist error is just plain wrong,
as directory we require is not created. It's cleaner to report
the error now.
Note this error is all over the tree, I guess due to copy-paste,
or trying to follow the same usage pattern as for Mkdir(),
or some not quite correct examples on the Internet.
[v2: a separate aufs commit is merged into this one]
[1] https://github.com/golang/go/blob/f9ed2f75/src/os/path.go
Signed-off-by: Kir Kolyshkin <kir@openvz.org>
2015-07-29 19:49:05 -04:00
|
|
|
// Populate the dir structure
|
2013-11-07 07:33:31 -05:00
|
|
|
for _, p := range paths {
|
2017-11-18 18:52:47 -05:00
|
|
|
if err := idtools.MkdirAllAndChown(path.Join(root, p), 0700, idtools.IDPair{UID: rootUID, GID: rootGID}); err != nil {
|
2013-11-07 07:33:31 -05:00
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
}
|
2016-04-21 12:08:37 -04:00
|
|
|
|
2017-08-21 17:38:13 -04:00
|
|
|
for _, path := range []string{"mnt", "diff"} {
|
|
|
|
p := filepath.Join(root, path)
|
2017-08-22 14:17:19 -04:00
|
|
|
entries, err := ioutil.ReadDir(p)
|
2017-08-21 17:38:13 -04:00
|
|
|
if err != nil {
|
2017-08-22 14:17:19 -04:00
|
|
|
logger.WithError(err).WithField("dir", p).Error("error reading dir entries")
|
2017-08-21 17:38:13 -04:00
|
|
|
continue
|
|
|
|
}
|
2017-08-22 14:17:19 -04:00
|
|
|
for _, entry := range entries {
|
|
|
|
if !entry.IsDir() {
|
|
|
|
continue
|
|
|
|
}
|
|
|
|
if strings.HasSuffix(entry.Name(), "-removing") {
|
|
|
|
logger.WithField("dir", entry.Name()).Debug("Cleaning up stale layer dir")
|
|
|
|
if err := system.EnsureRemoveAll(filepath.Join(p, entry.Name())); err != nil {
|
|
|
|
logger.WithField("dir", entry.Name()).WithError(err).Error("Error removing stale layer dir")
|
2017-08-21 17:38:13 -04:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2016-04-21 12:08:37 -04:00
|
|
|
a.naiveDiff = graphdriver.NewNaiveDiffDriver(a, uidMaps, gidMaps)
|
2014-01-14 06:23:20 -05:00
|
|
|
return a, nil
|
2013-10-31 21:07:54 -04:00
|
|
|
}
|
|
|
|
|
2013-11-07 20:57:14 -05:00
|
|
|
// Return a nil error if the kernel supports aufs
|
|
|
|
// We cannot modprobe because inside dind modprobe fails
|
|
|
|
// to run
|
|
|
|
func supportsAufs() error {
|
2013-11-14 12:42:12 -05:00
|
|
|
// We can try to modprobe aufs first before looking at
|
|
|
|
// proc/filesystems for when aufs is supported
|
|
|
|
exec.Command("modprobe", "aufs").Run()
|
|
|
|
|
2016-03-31 15:42:16 -04:00
|
|
|
if rsystem.RunningInUserNS() {
|
|
|
|
return ErrAufsNested
|
|
|
|
}
|
|
|
|
|
2013-11-07 20:57:14 -05:00
|
|
|
f, err := os.Open("/proc/filesystems")
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
defer f.Close()
|
|
|
|
|
|
|
|
s := bufio.NewScanner(f)
|
|
|
|
for s.Scan() {
|
|
|
|
if strings.Contains(s.Text(), "aufs") {
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
}
|
2014-02-18 05:58:38 -05:00
|
|
|
return ErrAufsNotSupported
|
2013-11-07 20:57:14 -05:00
|
|
|
}
|
|
|
|
|
2014-12-12 13:46:09 -05:00
|
|
|
func (a *Driver) rootPath() string {
|
2013-11-08 14:36:58 -05:00
|
|
|
return a.root
|
2013-11-07 07:33:31 -05:00
|
|
|
}
|
|
|
|
|
2014-12-12 13:46:09 -05:00
|
|
|
func (*Driver) String() string {
|
2013-11-07 07:33:31 -05:00
|
|
|
return "aufs"
|
|
|
|
}
|
|
|
|
|
2015-07-21 22:15:14 -04:00
|
|
|
// Status returns current information about the filesystem such as root directory, number of directories mounted, etc.
|
2014-12-12 13:46:09 -05:00
|
|
|
func (a *Driver) Status() [][2]string {
|
2013-11-20 16:53:54 -05:00
|
|
|
ids, _ := loadIds(path.Join(a.rootPath(), "layers"))
|
|
|
|
return [][2]string{
|
|
|
|
{"Root Dir", a.rootPath()},
|
2015-01-15 16:40:39 -05:00
|
|
|
{"Backing Filesystem", backingFs},
|
2013-11-20 16:53:54 -05:00
|
|
|
{"Dirs", fmt.Sprintf("%d", len(ids))},
|
2015-03-26 13:58:49 -04:00
|
|
|
{"Dirperm1 Supported", fmt.Sprintf("%v", useDirperm())},
|
2013-11-20 16:53:54 -05:00
|
|
|
}
|
2013-11-15 05:04:02 -05:00
|
|
|
}
|
|
|
|
|
2015-07-21 22:15:14 -04:00
|
|
|
// GetMetadata not implemented
|
2015-06-15 14:05:10 -04:00
|
|
|
func (a *Driver) GetMetadata(id string) (map[string]string, error) {
|
|
|
|
return nil, nil
|
|
|
|
}
|
|
|
|
|
2013-11-18 20:20:03 -05:00
|
|
|
// Exists returns true if the given id is registered with
|
|
|
|
// this driver
|
2014-12-12 13:46:09 -05:00
|
|
|
func (a *Driver) Exists(id string) bool {
|
2013-11-19 02:28:45 -05:00
|
|
|
if _, err := os.Lstat(path.Join(a.rootPath(), "layers", id)); err != nil {
|
2013-11-15 20:16:30 -05:00
|
|
|
return false
|
|
|
|
}
|
|
|
|
return true
|
|
|
|
}
|
|
|
|
|
2016-02-18 20:24:59 -05:00
|
|
|
// CreateReadWrite creates a layer that is writable for use as a container
|
|
|
|
// file system.
|
2016-11-09 15:59:58 -05:00
|
|
|
func (a *Driver) CreateReadWrite(id, parent string, opts *graphdriver.CreateOpts) error {
|
|
|
|
return a.Create(id, parent, opts)
|
2016-02-18 20:24:59 -05:00
|
|
|
}
|
|
|
|
|
2015-07-21 22:15:14 -04:00
|
|
|
// Create three folders for each id
|
2013-11-07 07:33:31 -05:00
|
|
|
// mnt, layers, and diff
|
2016-11-09 15:59:58 -05:00
|
|
|
func (a *Driver) Create(id, parent string, opts *graphdriver.CreateOpts) error {
|
2016-03-20 00:42:58 -04:00
|
|
|
|
2016-11-09 15:59:58 -05:00
|
|
|
if opts != nil && len(opts.StorageOpt) != 0 {
|
2016-03-20 00:42:58 -04:00
|
|
|
return fmt.Errorf("--storage-opt is not supported for aufs")
|
|
|
|
}
|
|
|
|
|
2016-02-27 07:54:17 -05:00
|
|
|
if err := a.createDirsFor(id); err != nil {
|
2013-11-04 23:51:12 -05:00
|
|
|
return err
|
|
|
|
}
|
2013-11-07 07:33:31 -05:00
|
|
|
// Write the layers metadata
|
|
|
|
f, err := os.Create(path.Join(a.rootPath(), "layers", id))
|
|
|
|
if err != nil {
|
2013-11-04 23:51:12 -05:00
|
|
|
return err
|
|
|
|
}
|
2013-11-07 07:33:31 -05:00
|
|
|
defer f.Close()
|
2013-11-04 23:51:12 -05:00
|
|
|
|
2013-11-07 07:33:31 -05:00
|
|
|
if parent != "" {
|
2016-04-21 12:08:37 -04:00
|
|
|
ids, err := getParentIDs(a.rootPath(), parent)
|
2013-11-07 07:33:31 -05:00
|
|
|
if err != nil {
|
2013-11-04 23:51:12 -05:00
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
2016-02-27 07:54:17 -05:00
|
|
|
if _, err := fmt.Fprintln(f, parent); err != nil {
|
2013-11-08 14:10:33 -05:00
|
|
|
return err
|
|
|
|
}
|
2013-11-07 07:33:31 -05:00
|
|
|
for _, i := range ids {
|
2016-02-27 07:54:17 -05:00
|
|
|
if _, err := fmt.Fprintln(f, i); err != nil {
|
2013-11-08 14:10:33 -05:00
|
|
|
return err
|
|
|
|
}
|
2013-11-07 07:33:31 -05:00
|
|
|
}
|
2013-11-04 23:51:12 -05:00
|
|
|
}
|
2016-03-09 16:23:04 -05:00
|
|
|
|
2013-11-04 23:51:12 -05:00
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2016-03-01 00:32:30 -05:00
|
|
|
// createDirsFor creates two directories for the given id.
|
|
|
|
// mnt and diff
|
2013-11-19 06:27:59 -05:00
|
|
|
func (a *Driver) createDirsFor(id string) error {
|
2013-11-07 07:33:31 -05:00
|
|
|
paths := []string{
|
|
|
|
"mnt",
|
|
|
|
"diff",
|
|
|
|
}
|
2013-11-04 23:51:12 -05:00
|
|
|
|
2015-10-08 11:51:41 -04:00
|
|
|
rootUID, rootGID, err := idtools.GetRootUIDGID(a.uidMaps, a.gidMaps)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
2016-03-01 00:32:30 -05:00
|
|
|
// Directory permission is 0755.
|
|
|
|
// The path of directories are <aufs_root_path>/mnt/<image_id>
|
|
|
|
// and <aufs_root_path>/diff/<image_id>
|
2013-11-07 07:33:31 -05:00
|
|
|
for _, p := range paths {
|
2017-11-18 18:52:47 -05:00
|
|
|
if err := idtools.MkdirAllAndChown(path.Join(a.rootPath(), p, id), 0755, idtools.IDPair{UID: rootUID, GID: rootGID}); err != nil {
|
2013-11-07 07:33:31 -05:00
|
|
|
return err
|
|
|
|
}
|
2013-11-04 23:51:12 -05:00
|
|
|
}
|
2013-11-07 07:33:31 -05:00
|
|
|
return nil
|
|
|
|
}
|
2013-11-04 23:51:12 -05:00
|
|
|
|
2015-07-21 22:15:14 -04:00
|
|
|
// Remove will unmount and remove the given id.
|
2013-11-19 06:27:59 -05:00
|
|
|
func (a *Driver) Remove(id string) error {
|
2017-02-17 18:46:19 -05:00
|
|
|
a.locker.Lock(id)
|
|
|
|
defer a.locker.Unlock(id)
|
2016-03-09 16:23:04 -05:00
|
|
|
a.pathCacheLock.Lock()
|
|
|
|
mountpoint, exists := a.pathCache[id]
|
|
|
|
a.pathCacheLock.Unlock()
|
|
|
|
if !exists {
|
|
|
|
mountpoint = a.getMountpoint(id)
|
2013-11-04 23:51:12 -05:00
|
|
|
}
|
2016-09-13 12:25:36 -04:00
|
|
|
|
2018-05-03 17:08:25 -04:00
|
|
|
logger := logger.WithField("layer", id)
|
2017-07-05 10:22:57 -04:00
|
|
|
|
2016-09-13 12:25:36 -04:00
|
|
|
var retries int
|
|
|
|
for {
|
|
|
|
mounted, err := a.mounted(mountpoint)
|
|
|
|
if err != nil {
|
2017-07-05 10:22:57 -04:00
|
|
|
if os.IsNotExist(err) {
|
|
|
|
break
|
|
|
|
}
|
2016-09-13 12:25:36 -04:00
|
|
|
return err
|
|
|
|
}
|
|
|
|
if !mounted {
|
|
|
|
break
|
|
|
|
}
|
|
|
|
|
2017-07-05 10:22:57 -04:00
|
|
|
err = a.unmount(mountpoint)
|
|
|
|
if err == nil {
|
|
|
|
break
|
|
|
|
}
|
|
|
|
|
|
|
|
if err != unix.EBUSY {
|
|
|
|
return errors.Wrapf(err, "aufs: unmount error: %s", mountpoint)
|
|
|
|
}
|
|
|
|
if retries >= 5 {
|
|
|
|
return errors.Wrapf(err, "aufs: unmount error after retries: %s", mountpoint)
|
2016-09-13 12:25:36 -04:00
|
|
|
}
|
2017-07-05 10:22:57 -04:00
|
|
|
// If unmount returns EBUSY, it could be a transient error. Sleep and retry.
|
|
|
|
retries++
|
|
|
|
logger.Warnf("unmount failed due to EBUSY: retry count: %d", retries)
|
|
|
|
time.Sleep(100 * time.Millisecond)
|
2013-11-07 07:33:31 -05:00
|
|
|
}
|
|
|
|
|
2017-08-21 17:38:13 -04:00
|
|
|
// Remove the layers file for the id
|
|
|
|
if err := os.Remove(path.Join(a.rootPath(), "layers", id)); err != nil && !os.IsNotExist(err) {
|
|
|
|
return errors.Wrapf(err, "error removing layers dir for %s", id)
|
2016-03-09 16:23:04 -05:00
|
|
|
}
|
|
|
|
|
2017-08-21 17:38:13 -04:00
|
|
|
if err := atomicRemove(a.getDiffPath(id)); err != nil {
|
|
|
|
return errors.Wrapf(err, "could not remove diff path for id %s", id)
|
2013-11-07 07:33:31 -05:00
|
|
|
}
|
2016-03-09 16:23:04 -05:00
|
|
|
|
2017-08-21 17:38:13 -04:00
|
|
|
// Atomically remove each directory in turn by first moving it out of the
|
|
|
|
// way (so that docker doesn't find it anymore) before doing removal of
|
|
|
|
// the whole tree.
|
|
|
|
if err := atomicRemove(mountpoint); err != nil {
|
|
|
|
if errors.Cause(err) == unix.EBUSY {
|
|
|
|
logger.WithField("dir", mountpoint).WithError(err).Warn("error performing atomic remove due to EBUSY")
|
|
|
|
}
|
|
|
|
return errors.Wrapf(err, "could not remove mountpoint for id %s", id)
|
2013-11-19 20:08:21 -05:00
|
|
|
}
|
2016-03-09 16:23:04 -05:00
|
|
|
|
|
|
|
a.pathCacheLock.Lock()
|
|
|
|
delete(a.pathCache, id)
|
|
|
|
a.pathCacheLock.Unlock()
|
2013-11-19 20:08:21 -05:00
|
|
|
return nil
|
2013-11-04 23:51:12 -05:00
|
|
|
}
|
|
|
|
|
2017-08-21 17:38:13 -04:00
|
|
|
func atomicRemove(source string) error {
|
|
|
|
target := source + "-removing"
|
|
|
|
|
|
|
|
err := os.Rename(source, target)
|
|
|
|
switch {
|
|
|
|
case err == nil, os.IsNotExist(err):
|
|
|
|
case os.IsExist(err):
|
|
|
|
// Got error saying the target dir already exists, maybe the source doesn't exist due to a previous (failed) remove
|
|
|
|
if _, e := os.Stat(source); !os.IsNotExist(e) {
|
|
|
|
return errors.Wrapf(err, "target rename dir '%s' exists but should not, this needs to be manually cleaned up")
|
|
|
|
}
|
|
|
|
default:
|
|
|
|
return errors.Wrapf(err, "error preparing atomic delete")
|
|
|
|
}
|
|
|
|
|
|
|
|
return system.EnsureRemoveAll(target)
|
|
|
|
}
|
|
|
|
|
2015-07-21 22:15:14 -04:00
|
|
|
// Get returns the rootfs path for the id.
|
2016-07-21 06:03:37 -04:00
|
|
|
// This will mount the dir at its given path
|
2017-08-03 20:22:00 -04:00
|
|
|
func (a *Driver) Get(id, mountLabel string) (containerfs.ContainerFS, error) {
|
2017-02-17 18:46:19 -05:00
|
|
|
a.locker.Lock(id)
|
|
|
|
defer a.locker.Unlock(id)
|
2016-02-12 10:20:16 -05:00
|
|
|
parents, err := a.getParentLayerPaths(id)
|
|
|
|
if err != nil && !os.IsNotExist(err) {
|
2017-08-03 20:22:00 -04:00
|
|
|
return nil, err
|
2016-02-12 10:20:16 -05:00
|
|
|
}
|
|
|
|
|
2016-03-09 16:23:04 -05:00
|
|
|
a.pathCacheLock.Lock()
|
|
|
|
m, exists := a.pathCache[id]
|
|
|
|
a.pathCacheLock.Unlock()
|
|
|
|
|
|
|
|
if !exists {
|
|
|
|
m = a.getDiffPath(id)
|
|
|
|
if len(parents) > 0 {
|
|
|
|
m = a.getMountpoint(id)
|
|
|
|
}
|
|
|
|
}
|
2016-05-06 16:09:45 -04:00
|
|
|
if count := a.ctr.Increment(m); count > 1 {
|
2017-08-03 20:22:00 -04:00
|
|
|
return containerfs.NewLocalContainerFS(m), nil
|
2016-05-06 16:09:45 -04:00
|
|
|
}
|
2016-03-09 16:23:04 -05:00
|
|
|
|
2013-11-07 07:33:31 -05:00
|
|
|
// If a dir does not have a parent ( no layers )do not try to mount
|
|
|
|
// just return the diff path to the data
|
2016-02-12 10:20:16 -05:00
|
|
|
if len(parents) > 0 {
|
2016-03-09 16:23:04 -05:00
|
|
|
if err := a.mount(id, m, mountLabel, parents); err != nil {
|
2017-08-03 20:22:00 -04:00
|
|
|
return nil, err
|
2013-11-07 07:33:31 -05:00
|
|
|
}
|
|
|
|
}
|
2016-03-09 16:23:04 -05:00
|
|
|
|
|
|
|
a.pathCacheLock.Lock()
|
|
|
|
a.pathCache[id] = m
|
|
|
|
a.pathCacheLock.Unlock()
|
2017-08-03 20:22:00 -04:00
|
|
|
return containerfs.NewLocalContainerFS(m), nil
|
2013-11-07 07:33:31 -05:00
|
|
|
}
|
|
|
|
|
2015-07-21 22:15:14 -04:00
|
|
|
// Put unmounts and updates list of active mounts.
|
2015-01-09 17:14:52 -05:00
|
|
|
func (a *Driver) Put(id string) error {
|
2017-02-17 18:46:19 -05:00
|
|
|
a.locker.Lock(id)
|
|
|
|
defer a.locker.Unlock(id)
|
2016-03-09 16:23:04 -05:00
|
|
|
a.pathCacheLock.Lock()
|
|
|
|
m, exists := a.pathCache[id]
|
|
|
|
if !exists {
|
|
|
|
m = a.getMountpoint(id)
|
|
|
|
a.pathCache[id] = m
|
2015-08-26 19:12:17 -04:00
|
|
|
}
|
2016-03-09 16:23:04 -05:00
|
|
|
a.pathCacheLock.Unlock()
|
2016-05-06 16:09:45 -04:00
|
|
|
if count := a.ctr.Decrement(m); count > 0 {
|
|
|
|
return nil
|
|
|
|
}
|
2016-03-09 16:23:04 -05:00
|
|
|
|
|
|
|
err := a.unmount(m)
|
|
|
|
if err != nil {
|
2018-05-03 17:08:25 -04:00
|
|
|
logger.Debugf("Failed to unmount %s aufs: %v", id, err)
|
2014-01-14 06:23:20 -05:00
|
|
|
}
|
2016-03-09 16:23:04 -05:00
|
|
|
return err
|
2013-12-05 16:18:02 -05:00
|
|
|
}
|
|
|
|
|
2016-04-21 12:08:37 -04:00
|
|
|
// isParent returns if the passed in parent is the direct parent of the passed in layer
|
|
|
|
func (a *Driver) isParent(id, parent string) bool {
|
|
|
|
parents, _ := getParentIDs(a.rootPath(), id)
|
|
|
|
if parent == "" && len(parents) > 0 {
|
|
|
|
return false
|
|
|
|
}
|
|
|
|
return !(len(parents) > 0 && parent != parents[0])
|
|
|
|
}
|
|
|
|
|
2014-09-10 23:30:52 -04:00
|
|
|
// Diff produces an archive of the changes between the specified
|
|
|
|
// layer and its parent layer which may be "".
|
2016-10-20 19:40:59 -04:00
|
|
|
func (a *Driver) Diff(id, parent string) (io.ReadCloser, error) {
|
2016-04-21 12:08:37 -04:00
|
|
|
if !a.isParent(id, parent) {
|
|
|
|
return a.naiveDiff.Diff(id, parent)
|
|
|
|
}
|
|
|
|
|
2014-09-10 23:30:52 -04:00
|
|
|
// AUFS doesn't need the parent layer to produce a diff.
|
2014-02-13 19:05:36 -05:00
|
|
|
return archive.TarWithOptions(path.Join(a.rootPath(), "diff", id), &archive.TarOptions{
|
2014-10-23 17:30:11 -04:00
|
|
|
Compression: archive.Uncompressed,
|
2015-09-29 13:18:28 -04:00
|
|
|
ExcludePatterns: []string{archive.WhiteoutMetaPrefix + "*", "!" + archive.WhiteoutOpaqueDir},
|
2015-10-08 11:51:41 -04:00
|
|
|
UIDMaps: a.uidMaps,
|
|
|
|
GIDMaps: a.gidMaps,
|
2013-11-11 20:17:38 -05:00
|
|
|
})
|
|
|
|
}
|
|
|
|
|
2016-02-18 20:58:23 -05:00
|
|
|
type fileGetNilCloser struct {
|
|
|
|
storage.FileGetter
|
|
|
|
}
|
|
|
|
|
|
|
|
func (f fileGetNilCloser) Close() error {
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// DiffGetter returns a FileGetCloser that can read files from the directory that
|
|
|
|
// contains files for the layer differences. Used for direct access for tar-split.
|
|
|
|
func (a *Driver) DiffGetter(id string) (graphdriver.FileGetCloser, error) {
|
|
|
|
p := path.Join(a.rootPath(), "diff", id)
|
|
|
|
return fileGetNilCloser{storage.NewPathFileGetter(p)}, nil
|
2015-12-04 16:27:44 -05:00
|
|
|
}
|
|
|
|
|
2016-10-20 19:40:59 -04:00
|
|
|
func (a *Driver) applyDiff(id string, diff io.Reader) error {
|
2016-01-21 10:52:37 -05:00
|
|
|
return chrootarchive.UntarUncompressed(diff, path.Join(a.rootPath(), "diff", id), &archive.TarOptions{
|
2015-10-08 11:51:41 -04:00
|
|
|
UIDMaps: a.uidMaps,
|
|
|
|
GIDMaps: a.gidMaps,
|
2016-01-21 10:52:37 -05:00
|
|
|
})
|
2013-11-07 07:33:31 -05:00
|
|
|
}
|
2013-10-31 21:07:54 -04:00
|
|
|
|
2014-09-10 23:30:52 -04:00
|
|
|
// DiffSize calculates the changes between the specified id
|
|
|
|
// and its parent and returns the size in bytes of the changes
|
|
|
|
// relative to its base filesystem directory.
|
2014-12-17 21:26:03 -05:00
|
|
|
func (a *Driver) DiffSize(id, parent string) (size int64, err error) {
|
2016-04-21 12:08:37 -04:00
|
|
|
if !a.isParent(id, parent) {
|
|
|
|
return a.naiveDiff.DiffSize(id, parent)
|
|
|
|
}
|
2014-09-10 23:30:52 -04:00
|
|
|
// AUFS doesn't need the parent layer to calculate the diff size.
|
2018-03-29 11:34:58 -04:00
|
|
|
return directory.Size(context.TODO(), path.Join(a.rootPath(), "diff", id))
|
2013-11-07 07:33:31 -05:00
|
|
|
}
|
|
|
|
|
2014-09-10 23:30:52 -04:00
|
|
|
// ApplyDiff extracts the changeset from the given diff into the
|
|
|
|
// layer with the specified id and parent, returning the size of the
|
|
|
|
// new layer in bytes.
|
2016-10-20 19:40:59 -04:00
|
|
|
func (a *Driver) ApplyDiff(id, parent string, diff io.Reader) (size int64, err error) {
|
2016-04-21 12:08:37 -04:00
|
|
|
if !a.isParent(id, parent) {
|
|
|
|
return a.naiveDiff.ApplyDiff(id, parent, diff)
|
|
|
|
}
|
|
|
|
|
|
|
|
// AUFS doesn't need the parent id to apply the diff if it is the direct parent.
|
2014-09-10 23:30:52 -04:00
|
|
|
if err = a.applyDiff(id, diff); err != nil {
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
return a.DiffSize(id, parent)
|
|
|
|
}
|
|
|
|
|
|
|
|
// Changes produces a list of changes between the specified layer
|
|
|
|
// and its parent layer. If parent is "", then all changes will be ADD changes.
|
|
|
|
func (a *Driver) Changes(id, parent string) ([]archive.Change, error) {
|
2016-04-21 12:08:37 -04:00
|
|
|
if !a.isParent(id, parent) {
|
|
|
|
return a.naiveDiff.Changes(id, parent)
|
|
|
|
}
|
|
|
|
|
2014-09-10 23:30:52 -04:00
|
|
|
// AUFS doesn't have snapshots, so we need to get changes from all parent
|
|
|
|
// layers.
|
2013-11-08 14:10:33 -05:00
|
|
|
layers, err := a.getParentLayerPaths(id)
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
return archive.Changes(layers, path.Join(a.rootPath(), "diff", id))
|
|
|
|
}
|
|
|
|
|
2013-11-19 06:27:59 -05:00
|
|
|
func (a *Driver) getParentLayerPaths(id string) ([]string, error) {
|
2016-04-21 12:08:37 -04:00
|
|
|
parentIds, err := getParentIDs(a.rootPath(), id)
|
2013-11-08 14:10:33 -05:00
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
layers := make([]string, len(parentIds))
|
|
|
|
|
|
|
|
// Get the diff paths for all the parent ids
|
|
|
|
for i, p := range parentIds {
|
|
|
|
layers[i] = path.Join(a.rootPath(), "diff", p)
|
|
|
|
}
|
|
|
|
return layers, nil
|
2013-11-07 07:33:31 -05:00
|
|
|
}
|
|
|
|
|
2016-03-09 16:23:04 -05:00
|
|
|
func (a *Driver) mount(id string, target string, mountLabel string, layers []string) error {
|
2016-03-27 01:53:47 -04:00
|
|
|
a.Lock()
|
|
|
|
defer a.Unlock()
|
|
|
|
|
2013-11-07 07:33:31 -05:00
|
|
|
// If the id is mounted or we get an error return
|
2016-03-09 16:23:04 -05:00
|
|
|
if mounted, err := a.mounted(target); err != nil || mounted {
|
2013-10-31 21:07:54 -04:00
|
|
|
return err
|
|
|
|
}
|
2013-11-07 07:33:31 -05:00
|
|
|
|
2016-03-09 16:23:04 -05:00
|
|
|
rw := a.getDiffPath(id)
|
2013-11-07 07:33:31 -05:00
|
|
|
|
2014-04-17 19:47:27 -04:00
|
|
|
if err := a.aufsMount(layers, rw, target, mountLabel); err != nil {
|
2015-03-12 09:15:32 -04:00
|
|
|
return fmt.Errorf("error creating aufs mount to %s: %v", target, err)
|
2013-10-31 21:07:54 -04:00
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2016-03-09 16:23:04 -05:00
|
|
|
func (a *Driver) unmount(mountPath string) error {
|
2016-03-27 01:53:47 -04:00
|
|
|
a.Lock()
|
|
|
|
defer a.Unlock()
|
|
|
|
|
2016-03-09 16:23:04 -05:00
|
|
|
if mounted, err := a.mounted(mountPath); err != nil || !mounted {
|
|
|
|
return err
|
|
|
|
}
|
2018-01-14 18:42:25 -05:00
|
|
|
return Unmount(mountPath)
|
2013-10-31 21:07:54 -04:00
|
|
|
}
|
|
|
|
|
2016-03-09 16:23:04 -05:00
|
|
|
func (a *Driver) mounted(mountpoint string) (bool, error) {
|
|
|
|
return graphdriver.Mounted(graphdriver.FsMagicAufs, mountpoint)
|
2013-11-04 23:51:12 -05:00
|
|
|
}
|
|
|
|
|
2015-07-21 22:15:14 -04:00
|
|
|
// Cleanup aufs and unmount all mountpoints
|
2013-11-19 06:27:59 -05:00
|
|
|
func (a *Driver) Cleanup() error {
|
2016-03-09 16:23:04 -05:00
|
|
|
var dirs []string
|
|
|
|
if err := filepath.Walk(a.mntPath(), func(path string, info os.FileInfo, err error) error {
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
if !info.IsDir() {
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
dirs = append(dirs, path)
|
|
|
|
return nil
|
|
|
|
}); err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
for _, m := range dirs {
|
2015-08-26 19:12:17 -04:00
|
|
|
if err := a.unmount(m); err != nil {
|
2018-05-03 17:08:25 -04:00
|
|
|
logger.Debugf("error unmounting %s: %s", m, err)
|
2013-11-04 23:51:12 -05:00
|
|
|
}
|
|
|
|
}
|
2018-01-17 21:17:26 -05:00
|
|
|
return mountpk.RecursiveUnmount(a.root)
|
2013-10-31 21:07:54 -04:00
|
|
|
}
|
|
|
|
|
2014-04-17 19:47:27 -04:00
|
|
|
func (a *Driver) aufsMount(ro []string, rw, target, mountLabel string) (err error) {
|
2013-11-26 13:50:53 -05:00
|
|
|
defer func() {
|
|
|
|
if err != nil {
|
|
|
|
Unmount(target)
|
|
|
|
}
|
|
|
|
}()
|
2013-10-31 21:07:54 -04:00
|
|
|
|
2014-11-13 12:57:28 -05:00
|
|
|
// Mount options are clipped to page size(4096 bytes). If there are more
|
|
|
|
// layers then these are remounted individually using append.
|
|
|
|
|
2015-03-26 02:02:21 -04:00
|
|
|
offset := 54
|
|
|
|
if useDirperm() {
|
2017-06-08 07:21:52 -04:00
|
|
|
offset += len(",dirperm1")
|
2015-03-26 02:02:21 -04:00
|
|
|
}
|
2017-05-23 10:22:32 -04:00
|
|
|
b := make([]byte, unix.Getpagesize()-len(mountLabel)-offset) // room for xino & mountLabel
|
2014-11-13 12:57:28 -05:00
|
|
|
bp := copy(b, fmt.Sprintf("br:%s=rw", rw))
|
|
|
|
|
2016-09-13 23:01:45 -04:00
|
|
|
index := 0
|
|
|
|
for ; index < len(ro); index++ {
|
|
|
|
layer := fmt.Sprintf(":%s=ro+wh", ro[index])
|
|
|
|
if bp+len(layer) > len(b) {
|
|
|
|
break
|
2013-10-31 21:07:54 -04:00
|
|
|
}
|
2016-09-13 23:01:45 -04:00
|
|
|
bp += copy(b[bp:], layer)
|
|
|
|
}
|
2013-11-26 13:50:53 -05:00
|
|
|
|
2016-09-13 23:01:45 -04:00
|
|
|
opts := "dio,xino=/dev/shm/aufs.xino"
|
|
|
|
if useDirperm() {
|
|
|
|
opts += ",dirperm1"
|
|
|
|
}
|
|
|
|
data := label.FormatMountLabel(fmt.Sprintf("%s,%s", string(b[:bp]), opts), mountLabel)
|
|
|
|
if err = mount("none", target, "aufs", 0, data); err != nil {
|
|
|
|
return
|
|
|
|
}
|
2013-11-26 13:50:53 -05:00
|
|
|
|
2016-09-13 23:01:45 -04:00
|
|
|
for ; index < len(ro); index++ {
|
|
|
|
layer := fmt.Sprintf(":%s=ro+wh", ro[index])
|
|
|
|
data := label.FormatMountLabel(fmt.Sprintf("append%s", layer), mountLabel)
|
2017-05-23 10:22:32 -04:00
|
|
|
if err = mount("none", target, "aufs", unix.MS_REMOUNT, data); err != nil {
|
2016-09-13 23:01:45 -04:00
|
|
|
return
|
2014-11-13 12:57:28 -05:00
|
|
|
}
|
2013-11-26 13:50:53 -05:00
|
|
|
}
|
2014-11-13 12:57:28 -05:00
|
|
|
|
|
|
|
return
|
2013-10-31 21:07:54 -04:00
|
|
|
}
|
2015-03-26 02:02:21 -04:00
|
|
|
|
|
|
|
// useDirperm checks dirperm1 mount option can be used with the current
|
|
|
|
// version of aufs.
|
|
|
|
func useDirperm() bool {
|
|
|
|
enableDirpermLock.Do(func() {
|
|
|
|
base, err := ioutil.TempDir("", "docker-aufs-base")
|
|
|
|
if err != nil {
|
2018-03-05 10:09:41 -05:00
|
|
|
logger.Errorf("error checking dirperm1: %v", err)
|
2015-03-26 02:02:21 -04:00
|
|
|
return
|
|
|
|
}
|
|
|
|
defer os.RemoveAll(base)
|
|
|
|
|
|
|
|
union, err := ioutil.TempDir("", "docker-aufs-union")
|
|
|
|
if err != nil {
|
2018-03-05 10:09:41 -05:00
|
|
|
logger.Errorf("error checking dirperm1: %v", err)
|
2015-03-26 02:02:21 -04:00
|
|
|
return
|
|
|
|
}
|
|
|
|
defer os.RemoveAll(union)
|
|
|
|
|
|
|
|
opts := fmt.Sprintf("br:%s,dirperm1,xino=/dev/shm/aufs.xino", base)
|
|
|
|
if err := mount("none", union, "aufs", 0, opts); err != nil {
|
|
|
|
return
|
|
|
|
}
|
|
|
|
enableDirperm = true
|
|
|
|
if err := Unmount(union); err != nil {
|
2018-03-05 10:09:41 -05:00
|
|
|
logger.Errorf("error checking dirperm1: failed to unmount %v", err)
|
2015-03-26 02:02:21 -04:00
|
|
|
}
|
|
|
|
})
|
|
|
|
return enableDirperm
|
|
|
|
}
|