mirror of
https://github.com/netbirdio/gvisor.git
synced 2026-05-22 17:12:49 -07:00
Kevin Krakauer
d8aa09e04c
Done via:
find . -name "*.go" | xargs sed -i -E 's/interface\{\}/any/g'
PiperOrigin-RevId: 487033228
210 lines
6.9 KiB
Go
210 lines
6.9 KiB
Go
// Copyright 2018 The gVisor Authors.
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
// Package dockerutil is a collection of utility functions.
|
|
package dockerutil
|
|
|
|
import (
|
|
"encoding/json"
|
|
"flag"
|
|
"fmt"
|
|
"io"
|
|
"io/ioutil"
|
|
"log"
|
|
"os"
|
|
"os/exec"
|
|
"regexp"
|
|
"strconv"
|
|
"strings"
|
|
"time"
|
|
|
|
"gvisor.dev/gvisor/pkg/test/testutil"
|
|
"gvisor.dev/gvisor/runsc/cgroup"
|
|
)
|
|
|
|
var (
|
|
// runtime is the runtime to use for tests. This will be applied to all
|
|
// containers. Note that the default here ("runsc") corresponds to the
|
|
// default used by the installations.
|
|
runtime = flag.String("runtime", os.Getenv("RUNTIME"), "specify which runtime to use")
|
|
|
|
// config is the default Docker daemon configuration path.
|
|
config = flag.String("config_path", "/etc/docker/daemon.json", "configuration file for reading paths")
|
|
|
|
// The following flags are for the "pprof" profiler tool.
|
|
|
|
// pprofBaseDir allows the user to change the directory to which profiles are
|
|
// written. By default, profiles will appear under:
|
|
// /tmp/profile/RUNTIME/CONTAINER_NAME/*.pprof.
|
|
pprofBaseDir = flag.String("pprof-dir", "/tmp/profile", "base directory in: BASEDIR/RUNTIME/CONTINER_NAME/FILENAME (e.g. /tmp/profile/runtime/mycontainer/cpu.pprof)")
|
|
pprofDuration = flag.Duration("pprof-duration", time.Hour, "profiling duration (automatically stopped at container exit)")
|
|
|
|
// The below flags enable each type of profile. Multiple profiles can be
|
|
// enabled for each run. The profile will be collected from the start.
|
|
pprofBlock = flag.Bool("pprof-block", false, "enables block profiling with runsc debug")
|
|
pprofCPU = flag.Bool("pprof-cpu", false, "enables CPU profiling with runsc debug")
|
|
pprofHeap = flag.Bool("pprof-heap", false, "enables heap profiling with runsc debug")
|
|
pprofMutex = flag.Bool("pprof-mutex", false, "enables mutex profiling with runsc debug")
|
|
|
|
// This matches the string "native.cgroupdriver=systemd" (including optional
|
|
// whitespace), which can be found in a docker daemon configuration file's
|
|
// exec-opts field.
|
|
useSystemdRgx = regexp.MustCompile("\\s*(native\\.cgroupdriver)\\s*=\\s*(systemd)\\s*")
|
|
)
|
|
|
|
// PrintDockerConfig prints the whole Docker configuration file to the log.
|
|
func PrintDockerConfig() {
|
|
configBytes, err := ioutil.ReadFile(*config)
|
|
if err != nil {
|
|
log.Fatalf("Cannot read Docker config at %v: %v", *config, err)
|
|
}
|
|
log.Printf("Docker config (from %v):\n--------\n%v\n--------\n", *config, string(configBytes))
|
|
}
|
|
|
|
// EnsureSupportedDockerVersion checks if correct docker is installed.
|
|
//
|
|
// This logs directly to stderr, as it is typically called from a Main wrapper.
|
|
func EnsureSupportedDockerVersion() {
|
|
cmd := exec.Command("docker", "version")
|
|
out, err := cmd.CombinedOutput()
|
|
if err != nil {
|
|
log.Fatalf("error running %q: %v", "docker version", err)
|
|
}
|
|
re := regexp.MustCompile(`Version:\s+(\d+)\.(\d+)\.\d.*`)
|
|
matches := re.FindStringSubmatch(string(out))
|
|
if len(matches) != 3 {
|
|
log.Fatalf("Invalid docker output: %s", out)
|
|
}
|
|
major, _ := strconv.Atoi(matches[1])
|
|
minor, _ := strconv.Atoi(matches[2])
|
|
if major < 17 || (major == 17 && minor < 9) {
|
|
log.Fatalf("Docker version 17.09.0 or greater is required, found: %02d.%02d", major, minor)
|
|
}
|
|
}
|
|
|
|
// EnsureDockerExperimentalEnabled ensures that Docker has experimental features enabled.
|
|
func EnsureDockerExperimentalEnabled() {
|
|
cmd := exec.Command("docker", "version", "--format={{.Server.Experimental}}")
|
|
out, err := cmd.CombinedOutput()
|
|
if err != nil {
|
|
log.Fatalf("error running %s: %v", "docker version --format='{{.Server.Experimental}}'", err)
|
|
}
|
|
if strings.TrimSpace(string(out)) != "true" {
|
|
PrintDockerConfig()
|
|
log.Fatalf("Docker is running without experimental features enabled.")
|
|
}
|
|
}
|
|
|
|
// RuntimePath returns the binary path for the current runtime.
|
|
func RuntimePath() (string, error) {
|
|
rs, err := runtimeMap()
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
p, ok := rs["path"].(string)
|
|
if !ok {
|
|
// The runtime does not declare a path.
|
|
return "", fmt.Errorf("runtime does not declare a path: %v", rs)
|
|
}
|
|
return p, nil
|
|
}
|
|
|
|
// UsingSystemdCgroup returns true if the docker configuration has the
|
|
// native.cgroupdriver=systemd option set in "exec-opts", or if the
|
|
// system is using cgroupv2, in which case systemd is the default driver.
|
|
func UsingSystemdCgroup() (bool, error) {
|
|
// Read the configuration data; the file must exist.
|
|
configBytes, err := ioutil.ReadFile(*config)
|
|
if err != nil {
|
|
return false, err
|
|
}
|
|
// Unmarshal the configuration.
|
|
c := make(map[string]any)
|
|
if err := json.Unmarshal(configBytes, &c); err != nil {
|
|
return false, err
|
|
}
|
|
// Decode the expected configuration.
|
|
e, ok := c["exec-opts"]
|
|
if !ok {
|
|
// No exec-opts. Default is true on cgroupv2, false otherwise.
|
|
return cgroup.IsOnlyV2(), nil
|
|
}
|
|
eos, ok := e.([]any)
|
|
if !ok {
|
|
// The exec opts are not an array.
|
|
return false, fmt.Errorf("unexpected format: %+v", eos)
|
|
}
|
|
for _, opt := range eos {
|
|
if optStr, ok := opt.(string); ok && useSystemdRgx.MatchString(optStr) {
|
|
return true, nil
|
|
}
|
|
}
|
|
return false, nil
|
|
}
|
|
|
|
func runtimeMap() (map[string]any, error) {
|
|
// Read the configuration data; the file must exist.
|
|
configBytes, err := ioutil.ReadFile(*config)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
// Unmarshal the configuration.
|
|
c := make(map[string]any)
|
|
if err := json.Unmarshal(configBytes, &c); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
// Decode the expected configuration.
|
|
r, ok := c["runtimes"]
|
|
if !ok {
|
|
return nil, fmt.Errorf("no runtimes declared: %v", c)
|
|
}
|
|
rs, ok := r.(map[string]any)
|
|
if !ok {
|
|
// The runtimes are not a map.
|
|
return nil, fmt.Errorf("unexpected format: %v", rs)
|
|
}
|
|
r, ok = rs[*runtime]
|
|
if !ok {
|
|
// The expected runtime is not declared.
|
|
return nil, fmt.Errorf("runtime %q not found: %v", *runtime, rs)
|
|
}
|
|
rs, ok = r.(map[string]any)
|
|
if !ok {
|
|
// The runtime is not a map.
|
|
return nil, fmt.Errorf("unexpected format: %v", r)
|
|
}
|
|
return rs, nil
|
|
}
|
|
|
|
// Save exports a container image to the given Writer.
|
|
//
|
|
// Note that the writer should be actively consuming the output, otherwise it
|
|
// is not guaranteed that the Save will make any progress and the call may
|
|
// stall indefinitely.
|
|
//
|
|
// This is called by criutil in order to import imports.
|
|
func Save(logger testutil.Logger, image string, w io.Writer) error {
|
|
cmd := testutil.Command(logger, "docker", "save", testutil.ImageByName(image))
|
|
cmd.Stdout = w // Send directly to the writer.
|
|
return cmd.Run()
|
|
}
|
|
|
|
// Runtime returns the value of the flag runtime.
|
|
func Runtime() string {
|
|
return *runtime
|
|
}
|