Support copying files in volume #200
Conversation
fahedouch
force-pushed
the
support_copying_files_in_volume
branch
2 times, most recently
from
cf587a5
to
d10e861
Compare
fahedouch
changed the title
fahedouch
force-pushed
the
support_copying_files_in_volume
branch
3 times, most recently
from
7a00aaa
to
a82b0d0
Compare
fahedouch
changed the title
run_mount.go
Outdated
|
|
||
| s := client.SnapshotService(clicontext.String("snapshotter")) | ||
|
|
||
| tempDir, err := ioutil.TempDir(os.Getenv("GOTMPDIR"), "initialC") |
There was a problem hiding this comment.
it is just a choice. I can create tempDir in in the default location for OS. it doesn't change anything for me
There was a problem hiding this comment.
updated to tempDir, err := ioutil.TempDir("", "initialC")
run_mount.go
Outdated
| target := strings.Join([]string{tempDir, imgVol}, "") | ||
|
|
||
| //copying up initial contents of the mount point directory | ||
| copyExistingContents(target, anonVol.Mountpoint) |
There was a problem hiding this comment.
Named volumes need this as well
There was a problem hiding this comment.
Also make sure to catch err
There was a problem hiding this comment.
@AkihiroSuda I made modification. FYI : in docker named volume do not copy initial content ( that may override source volume)
There was a problem hiding this comment.
@AkihiroSuda sorry I mixed mount bind and named volume. I added copyExistingContentsto named volume
fahedouch
force-pushed
the
support_copying_files_in_volume
branch
2 times, most recently
from
fd20868
to
66e8281
Compare
run_mount_test.go
Outdated
| base.Cmd("run", "-v", "/mnt", "--rm", imageName).AssertOut("hi") | ||
|
|
||
| //NamedVolume | ||
| base.Cmd("run", "-v", "/home:/mnt", "--rm", imageName).AssertFail() |
There was a problem hiding this comment.
This is a bind mount, not a named volume (nerdctl volume create)
run_mount.go
Outdated
| imgVol := filepath.Clean(imgVolRaw) | ||
| target := strings.Join([]string{tempDir, imgVol}, "") | ||
|
|
||
| //Coyping content only for AnonymousVolume |
run_mount.go
Outdated
|
|
||
| if ensuredImage != nil { | ||
| imageVolumes = ensuredImage.ImageConfig.Volumes | ||
| client, ctx, cancel, err := newClient(clicontext) |
There was a problem hiding this comment.
No, we already have the client
pkg/mountutil/mountutil.go
Outdated
| @@ -90,7 +96,7 @@ func ProcessFlagV(s string, volStore volumestore.VolumeStore) (*Processed, error | |||
| return nil, errors.Errorf("failed to parse %q", s) | |||
| } | |||
| res.Mount = specs.Mount{ | |||
| Type: "none", | |||
| Type: string(vType), | |||
There was a problem hiding this comment.
This is an OCI Mount object, you can’t mix up Docker API type here
There was a problem hiding this comment.
@AkihiroSuda does OCI provide types values ? or I may set them directly in the code ?
There was a problem hiding this comment.
@AkihiroSuda is it ok for you ?
run_mount_test.go
Outdated
| base.Cmd("volume","create", "copying-initial-content").AssertOK() | ||
| base.Cmd("run", "-v", "copying-initial-content:/mnt", "--rm", imageName).AssertOut("hi") | ||
| //mount bind | ||
| base.Cmd("run", "-v", "/home:/mnt", "--rm", imageName).AssertFail() |
There was a problem hiding this comment.
Mounting /home is dangerous, please use some ioutil.TempDir
fahedouch
force-pushed
the
support_copying_files_in_volume
branch
3 times, most recently
from
ff22da0
to
86e8f5f
Compare
pkg/mountutil/mountutil.go
Outdated
| @@ -90,7 +93,7 @@ func ProcessFlagV(s string, volStore volumestore.VolumeStore) (*Processed, error | |||
| return nil, errors.Errorf("failed to parse %q", s) | |||
| } | |||
| res.Mount = specs.Mount{ | |||
| Type: "none", | |||
| Type: vType, | |||
There was a problem hiding this comment.
Again, you can't have "volume" "bind" here
https://github.com/opencontainers/runtime-spec/blob/master/config.md#posix-platform-mounts
There was a problem hiding this comment.
The type fIeld can be in this struct
nerdctl/pkg/mountutil/mountutil.go
Line 32 in 86e8f5f
fahedouch
force-pushed
the
support_copying_files_in_volume
branch
2 times, most recently
from
cdff425
to
6a9b795
Compare
run_mount_test.go
Outdated
| assert.NilError(t, err) | ||
| defer os.RemoveAll(tmpDir) | ||
|
|
||
| m := strings.Join([]string{"./", tmpDir, ":", "/mnt"}, "") |
| @@ -32,6 +32,7 @@ import ( | |||
| type Processed struct { | |||
| Mount specs.Mount | |||
| AnonymousVolume string // name | |||
| Type string | |||
There was a problem hiding this comment.
@AkihiroSuda can review plz.
fahedouch
force-pushed
the
support_copying_files_in_volume
branch
2 times, most recently
from
b63c6f0
to
05d4340
Compare
|
@AkihiroSuda any idea what is disturbing the |
| return nil, nil, err | ||
| } | ||
|
|
||
| if err := mount.All(mounts, tempDir); err != nil { |
There was a problem hiding this comment.
Where are the mounts getting cleaned up? The temp mount logic is ideal for these type of use cases
There was a problem hiding this comment.
@dmcgowan I added unmount logic . The temp mount logic is ideal but not in this context because it push me to make same steps ( tmp dir creation then mount then unmount ) in each iteration flagVSlice
There was a problem hiding this comment.
I think it depends on user cannot CONTRL-C during copy. Need to figure out how to clean up in this case
fahedouch
force-pushed
the
support_copying_files_in_volume
branch
2 times, most recently
from
0bb9b2e
to
c245c9c
Compare
|
needs rebase |
Signed-off-by: fahed dorgaa <fahed.dorgaa@gmail.com>
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
The commit c245c9c "support copying files in volume" (rebased as 89daa2b) improperly used `strings.Join` to join paths. The new commit replaces `strings.Join` with `securejoin.SecureJoin`. The problematic commit was not merged into the existing releases, so nobody was exposed to potential vulns. Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
AkihiroSuda
force-pushed
the
support_copying_files_in_volume
branch
from
697d2e7
to
a0390ad
Compare
|
@AkihiroSuda should we test hardlink too ? |
| }() | ||
|
|
||
| if err := mount.All(mounts, tempDir); err != nil { | ||
| if err := s.Remove(ctx, tempDir); err != nil && !errdefs.IsNotFound(err) { |
There was a problem hiding this comment.
need to umount first and then remove
|
Using WDYT? @AkihiroSuda @dmcgowan |
Yes, that's more preferrable.
How do you use |
fixing #165