Add working shim exec driver for start

Still need to implement a working Wait() on the process using epoll because of the non-blocking exit fifo Signed-off-by: Michael Crosby <crosbymichael@gmail.com>
2016-10-06 11:39:12 -07:00 · 2016-10-06 11:39:12 -07:00 · 90e4f130c8
commit 90e4f130c8
parent c76f883ccd
6 changed files with 223 additions and 76 deletions
--- a/containerd-shim/main.go
+++ b/containerd-shim/main.go
@ -69,12 +69,12 @@ func start(log *os.File) error {
 	// open the exit pipe
 	f, err := os.OpenFile("exit", syscall.O_WRONLY, 0)
 	if err != nil {
-		return err
+		return fmt.Errorf("open exit fifo %s", err)
 	}
 	defer f.Close()
 	control, err := os.OpenFile("control", syscall.O_RDWR, 0)
 	if err != nil {
-		return err
+		return fmt.Errorf("open control fifo %s", err)
 	}
 	defer control.Close()
 	p, err := newProcess(flag.Arg(0), flag.Arg(1), flag.Arg(2))
@ -150,7 +150,7 @@ func start(log *os.File) error {
 				term.SetWinsize(p.console.Fd(), &ws)
 			case 2:
 				// signal
-				if err := syscall.Kill(p.pid(), msg.Width); err != nil {
+				if err := syscall.Kill(p.pid(), syscall.Signal(msg.Width)); err != nil {
 					writeMessage(log, "warn", err)
 				}
 			}
--- a/containerd-shim/process.go
+++ b/containerd-shim/process.go
@ -39,9 +39,9 @@ type checkpoint struct {
 type processState struct {
 	specs.ProcessSpec
 	Exec           bool     `json:"exec"`
-	Stdin          string   `json:"containerdStdin"`
-	Stdout         string   `json:"containerdStdout"`
-	Stderr         string   `json:"containerdStderr"`
+	Stdin          string   `json:"stdin"`
+	Stdout         string   `json:"stdout"`
+	Stderr         string   `json:"stderr"`
 	RuntimeArgs    []string `json:"runtimeArgs"`
 	NoPivotRoot    bool     `json:"noPivotRoot"`
 	CheckpointPath string   `json:"checkpoint"`
@ -74,7 +74,7 @@ func newProcess(id, bundle, runtimeName string) (*process, error) {
 	}
 	s, err := loadProcess()
 	if err != nil {
-		return nil, err
+		return nil, fmt.Errorf("load process from json %s", err)
 	}
 	p.state = s
 	if s.CheckpointPath != "" {
@ -86,7 +86,7 @@ func newProcess(id, bundle, runtimeName string) (*process, error) {
 		p.checkpointPath = s.CheckpointPath
 	}
 	if err := p.openIO(); err != nil {
-		return nil, err
+		return nil, fmt.Errorf("open IO for container %s", err)
 	}
 	return p, nil
 }
--- a/example/main.go
+++ b/example/main.go
@ -1,21 +1,26 @@
 package main

 import (
+	"flag"
 	"fmt"
 	"os"
+	"time"

 	"github.com/Sirupsen/logrus"
+	"github.com/docker/containerd/shim"
 	"github.com/docker/containerkit"
-	"github.com/docker/containerkit/oci"
 	"github.com/docker/containerkit/osutils"
 	specs "github.com/opencontainers/runtime-spec/specs-go"
 )

 func runContainer() error {
-	// create a new runc runtime that implements the ExecutionDriver interface
-	runc, err := oci.New(oci.Opts{
-		Root: "/run/runc",
-		Name: "runc",
+	// create a new runtime runtime that implements the ExecutionDriver interface
+	runtime, err := shim.New(shim.Opts{
+		Root:        "/run/cshim/test",
+		Name:        "containerd-shim",
+		RuntimeName: "runc",
+		RuntimeRoot: "/run/runc",
+		Timeout:     5 * time.Second,
 	})
 	if err != nil {
 		return err
@ -23,14 +28,14 @@ func runContainer() error {
 	dockerContainer := &testConfig{}

 	// create a new container
-	container, err := containerkit.NewContainer(dockerContainer, NewBindDriver(), runc)
+	container, err := containerkit.NewContainer(dockerContainer, NewBindDriver(), runtime)
 	if err != nil {
 		return err
 	}
 	// setup some stdio for our container
-	container.Stdin = os.Stdin
-	container.Stdout = os.Stdout
-	container.Stderr = os.Stderr
+	container.Stdin = Stdin()
+	container.Stdout = Stdout()
+	container.Stderr = Stderr()

 	// go ahead and set the container in the create state and have it ready to start
 	logrus.Info("create container")
@ -44,37 +49,39 @@ func runContainer() error {
 		return err
 	}

-	// start 10 exec processes giving the go var i to exec to stdout
-	for i := 0; i < 10; i++ {
-		process, err := container.NewProcess(&specs.Process{
-			Args: []string{
-				"echo", fmt.Sprintf("sup from itteration %d", i),
-			},
-			Env:             env,
-			Terminal:        false,
-			Cwd:             "/",
-			NoNewPrivileges: true,
-			Capabilities:    caps,
-		})
+	if exec {
+		// start 10 exec processes giving the go var i to exec to stdout
+		for i := 0; i < 10; i++ {
+			process, err := container.NewProcess(&specs.Process{
+				Args: []string{
+					"echo", fmt.Sprintf("sup from itteration %d", i),
+				},
+				Env:             env,
+				Terminal:        false,
+				Cwd:             "/",
+				NoNewPrivileges: true,
+				Capabilities:    caps,
+			})

-		process.Stdin = os.Stdin
-		process.Stdout = os.Stdout
-		process.Stderr = os.Stderr
+			process.Stdin = os.Stdin
+			process.Stdout = os.Stdout
+			process.Stderr = os.Stderr

-		if err := process.Start(); err != nil {
-			return err
+			if err := process.Start(); err != nil {
+				return err
+			}
+			procStatus, err := process.Wait()
+			if err != nil {
+				return err
+			}
+			logrus.Infof("process %d returned with %d", i, procStatus)
 		}
-
-		procStatus, err := process.Wait()
-		if err != nil {
-			return err
-		}
-		logrus.Infof("process %d returned with %d", i, procStatus)
 	}

-	container, err = containerkit.LoadContainer(dockerContainer, runc)
-	if err != nil {
-		return err
+	if load {
+		if container, err = containerkit.LoadContainer(dockerContainer, runtime); err != nil {
+			return err
+		}
 	}

 	// wait for it to exit and get the exit status
@ -93,8 +100,16 @@ func runContainer() error {
 	return nil
 }

+var (
+	exec bool
+	load bool
+)
+
 // "Hooks do optional work. Drivers do mandatory work"
 func main() {
+	flag.BoolVar(&exec, "exec", false, "run the execs")
+	flag.BoolVar(&load, "load", false, "reload the container")
+	flag.Parse()
 	if err := osutils.SetSubreaper(1); err != nil {
 		logrus.Fatal(err)
 	}
--- a/example/utils.go
+++ b/example/utils.go
@ -1,8 +1,12 @@
 package main

 import (
+	"os"
 	"path/filepath"
 	"runtime"
+	"syscall"
+
+	"golang.org/x/sys/unix"

 	"github.com/docker/containerkit"
 	specs "github.com/opencontainers/runtime-spec/specs-go"
@ -177,3 +181,48 @@ func (t *testConfig) Spec(m *containerkit.Mount) (*specs.Spec, error) {
 		},
 	}, nil
 }
+
+func Stdin() *os.File {
+	abs, err := filepath.Abs("stdin")
+	if err != nil {
+		panic(err)
+	}
+	if err := unix.Mkfifo(abs, 0755); err != nil && !os.IsExist(err) {
+		panic(err)
+	}
+	f, err := os.OpenFile(abs, syscall.O_RDWR, 0)
+	if err != nil {
+		panic(err)
+	}
+	return f
+}
+
+func Stdout() *os.File {
+	abs, err := filepath.Abs("stdout")
+	if err != nil {
+		panic(err)
+	}
+	if err := unix.Mkfifo(abs, 0755); err != nil && !os.IsExist(err) {
+		panic(err)
+	}
+	f, err := os.OpenFile(abs, syscall.O_RDWR, 0)
+	if err != nil {
+		panic(err)
+	}
+	return f
+}
+
+func Stderr() *os.File {
+	abs, err := filepath.Abs("stderr")
+	if err != nil {
+		panic(err)
+	}
+	if err := unix.Mkfifo(abs, 0755); err != nil && !os.IsExist(err) {
+		panic(err)
+	}
+	f, err := os.OpenFile(abs, syscall.O_RDWR, 0)
+	if err != nil {
+		panic(err)
+	}
+	return f
+}
--- a/shim/process.go
+++ b/shim/process.go
@ -32,6 +32,9 @@ var (
 const UnknownStatus = 255

 func newProcess(root string, noPivotRoot bool, checkpoint string, c *containerkit.Container, cmd *exec.Cmd) (*process, error) {
+	if err := os.Mkdir(root, 0711); err != nil {
+		return nil, err
+	}
 	var (
 		spec                  = c.Spec()
 		stdin, stdout, stderr string
@ -98,17 +101,16 @@ func newProcess(root string, noPivotRoot bool, checkpoint string, c *containerki
 	return p, nil
 }

-// TODO: control and exit fifo
 type process struct {
-	root         string
-	cmd          *exec.Cmd
-	done         chan struct{}
-	success      bool
-	startTime    string
-	mu           sync.Mutex
-	containerPid int
-	exit         *os.File
-	control      *os.File
+	root      string
+	cmd       *exec.Cmd
+	done      chan struct{}
+	success   bool
+	startTime string
+	mu        sync.Mutex
+	pid       int
+	exit      *os.File
+	control   *os.File

 	spec        specs.Process
 	noPivotRoot bool
@ -129,6 +131,8 @@ type processState struct {
 	Checkpoint  string   `json:"checkpoint"`
 	NoPivotRoot bool     `json:"noPivotRoot"`
 	RuntimeArgs []string `json:"runtimeArgs"`
+	Root        string   `json:"root"`
+	StartTime   string   `json:"startTime"`
 	// Stdin fifo filepath
 	Stdin string `json:"stdin"`
 	// Stdout fifo filepath
@ -148,6 +152,8 @@ func (p *process) MarshalJSON() ([]byte, error) {
 		Stdin:       p.stdin,
 		Stdout:      p.stdout,
 		Stderr:      p.stderr,
+		Root:        p.root,
+		StartTime:   p.startTime,
 	}
 	return json.Marshal(ps)
 }
@ -166,17 +172,35 @@ func (p *process) UnmarshalJSON(b []byte) error {
 	p.stdin = ps.Stdin
 	p.stdout = ps.Stdout
 	p.stderr = ps.Stderr
-	// TODO: restore pid/exit/control and stuff ?
+	p.root = ps.Root
+	p.startTime = ps.StartTime
+	pid, err := readPid(filepath.Join(p.root, "pid"))
+	if err != nil {
+		return err
+	}
+	p.pid = pid
+	exit, err := getExitPipe(filepath.Join(p.root, "exit"))
+	if err != nil {
+		return err
+	}
+	control, err := getControlPipe(filepath.Join(p.root, "control"))
+	if err != nil {
+		return err
+	}
+	p.exit, p.control = exit, control
 	return nil
 }

 func (p *process) Pid() int {
-	return p.containerPid
+	return p.pid
+}
+
+func (p *process) FD() int {
+	return int(p.exit.Fd())
 }

 func (p *process) Wait() (rst uint32, rerr error) {
-	var b []byte
-	if _, err := p.exit.Read(b); err != nil {
+	if _, err := ioutil.ReadAll(p.exit); err != nil {
 		return 255, err
 	}
 	data, err := ioutil.ReadFile(filepath.Join(p.root, "exitStatus"))
@ -227,15 +251,15 @@ func (p *process) checkExited() {
 	}
 	if same, _ := p.same(); same && p.hasPid() {
 		// The process changed its PR_SET_PDEATHSIG, so force kill it
-		logrus.Infof("containerd: (pid %v) has become an orphan, killing it", p.containerPid)
-		if err := unix.Kill(p.containerPid, syscall.SIGKILL); err != nil && err != syscall.ESRCH {
-			logrus.Errorf("containerd: unable to SIGKILL (pid %v): %v", p.containerPid, err)
+		logrus.Infof("containerd: (pid %v) has become an orphan, killing it", p.pid)
+		if err := unix.Kill(p.pid, syscall.SIGKILL); err != nil && err != syscall.ESRCH {
+			logrus.Errorf("containerd: unable to SIGKILL (pid %v): %v", p.pid, err)
 			close(p.done)
 			return
 		}
 		// wait for the container process to exit
 		for {
-			if err := unix.Kill(p.containerPid, 0); err != nil {
+			if err := unix.Kill(p.pid, 0); err != nil {
 				break
 			}
 			time.Sleep(5 * time.Millisecond)
@ -246,14 +270,14 @@ func (p *process) checkExited() {

 func (p *process) hasPid() bool {
 	p.mu.Lock()
-	r := p.containerPid > 0
+	r := p.pid > 0
 	p.mu.Unlock()
 	return r
 }

 func (p *process) setPid(pid int) {
 	p.mu.Lock()
-	p.containerPid = pid
+	p.pid = pid
 	p.mu.Unlock()
 }

@ -274,10 +298,18 @@ func (p *process) waitForCreate(timeout time.Duration) error {
 		p.setPid(resp.pid)
 		started, err := readProcessStartTime(resp.pid)
 		if err != nil {
-			logrus.Warnf("containerd: unable to save starttime: %v", err)
+			logrus.Warnf("shim: unable to save starttime: %v", err)
 		}
-		// TODO: save start time to disk or process state file
 		p.startTime = started
+		f, err := os.Create(filepath.Join(p.root, "process.json"))
+		if err != nil {
+			logrus.Warnf("shim: unable to save starttime: %v", err)
+			return nil
+		}
+		defer f.Close()
+		if err := json.NewEncoder(f).Encode(p); err != nil {
+			logrus.Warnf("shim: unable to save starttime: %v", err)
+		}
 		return nil
 	case <-time.After(timeout):
 		p.cmd.Process.Kill()
@ -294,9 +326,9 @@ func (p *process) readContainerPid(r chan pidResponse) {
 			if os.IsNotExist(err) || err == errInvalidPidInt {
 				if serr := checkErrorLogs(p.cmd,
 					filepath.Join(p.root, "shim-log.json"),
-					filepath.Join(p.root, "log.json")); serr != nil {
+					filepath.Join(p.root, "log.json")); serr != nil && !os.IsNotExist(serr) {
 					r <- pidResponse{
-						err: err,
+						err: serr,
 					}
 					break
 				}
@ -316,8 +348,8 @@ func (p *process) readContainerPid(r chan pidResponse) {
 }

 func (p *process) handleSigkilledShim(rst uint32, rerr error) (uint32, error) {
-	if err := unix.Kill(p.containerPid, 0); err == syscall.ESRCH {
-		logrus.Warnf("containerd: (pid %d) does not exist", p.containerPid)
+	if err := unix.Kill(p.pid, 0); err == syscall.ESRCH {
+		logrus.Warnf("containerd: (pid %d) does not exist", p.pid)
 		// The process died while containerd was down (probably of
 		// SIGKILL, but no way to be sure)
 		return UnknownStatus, writeExitStatus(filepath.Join(p.root, "exitStatus"), UnknownStatus)
@ -330,18 +362,18 @@ func (p *process) handleSigkilledShim(rst uint32, rerr error) (uint32, error) {
 		// without having to go through all this process again
 		return UnknownStatus, writeExitStatus(filepath.Join(p.root, "exitStatus"), UnknownStatus)
 	}
-	ppid, err := readProcStatField(p.containerPid, 4)
+	ppid, err := readProcStatField(p.pid, 4)
 	if err != nil {
 		return rst, fmt.Errorf("could not check process ppid: %v (%v)", err, rerr)
 	}
 	if ppid == "1" {
-		if err := unix.Kill(p.containerPid, syscall.SIGKILL); err != nil && err != syscall.ESRCH {
+		if err := unix.Kill(p.pid, syscall.SIGKILL); err != nil && err != syscall.ESRCH {
 			return UnknownStatus, fmt.Errorf(
-				"containerd: unable to SIGKILL (pid %v): %v", p.containerPid, err)
+				"containerd: unable to SIGKILL (pid %v): %v", p.pid, err)
 		}
 		// wait for the process to die
 		for {
-			if err := unix.Kill(p.containerPid, 0); err == syscall.ESRCH {
+			if err := unix.Kill(p.pid, 0); err == syscall.ESRCH {
 				break
 			}
 			time.Sleep(5 * time.Millisecond)
@ -415,7 +447,7 @@ func readProcStatField(pid int, field int) (string, error) {
 func readPid(pidFile string) (int, error) {
 	data, err := ioutil.ReadFile(pidFile)
 	if err != nil {
-		return -1, nil
+		return -1, err
 	}
 	i, err := strconv.Atoi(string(data))
 	if err != nil {
--- a/shim/shim.go
+++ b/shim/shim.go
@ -4,6 +4,7 @@ import (
 	"encoding/json"
 	"errors"
 	"fmt"
+	"io/ioutil"
 	"os"
 	"os/exec"
 	"path/filepath"
@ -40,16 +41,21 @@ type Opts struct {
 	Name        string
 	RuntimeName string
 	RuntimeArgs []string
+	RuntimeRoot string
 	NoPivotRoot bool
 	Root        string
 	Timeout     time.Duration
 }

 func New(opts Opts) (*Shim, error) {
+	if err := os.MkdirAll(filepath.Dir(opts.Root), 0711); err != nil {
+		return nil, err
+	}
 	if err := os.Mkdir(opts.Root, 0711); err != nil {
 		return nil, err
 	}
 	r, err := oci.New(oci.Opts{
+		Root: opts.RuntimeRoot,
 		Name: opts.RuntimeName,
 		Args: opts.RuntimeArgs,
 	})
@ -85,7 +91,26 @@ func Load(root string) (*Shim, error) {
 	if err != nil {
 		return nil, err
 	}
-	// TODO: read processes into memory
+	dirs, err := ioutil.ReadDir(root)
+	if err != nil {
+		return nil, err
+	}
+	for _, d := range dirs {
+		if !d.IsDir() {
+			continue
+		}
+		name := d.Name()
+		if f, err = os.Open(filepath.Join(root, name, "process.json")); err != nil {
+			return nil, err
+		}
+		var p process
+		err = json.NewDecoder(f).Decode(&p)
+		f.Close()
+		if err != nil {
+			return nil, err
+		}
+		s.processes[name] = &p
+	}
 	return &s, nil
 }

@ -152,10 +177,12 @@ func (s *Shim) UnmarshalJSON(b []byte) error {
 		return err
 	}
 	s.runtime = r
+	s.processes = make(map[string]*process)
 	return nil
 }

 func (s *Shim) Create(c *containerkit.Container) (containerkit.ProcessDelegate, error) {
+	s.bundle = c.Path()
 	var (
 		root = filepath.Join(s.root, "init")
 		cmd  = s.command(c.ID(), c.Path(), s.runtime.Name())
@ -174,8 +201,15 @@ func (s *Shim) Create(c *containerkit.Container) (containerkit.ProcessDelegate,
 	s.pmu.Lock()
 	s.processes["init"] = p
 	s.pmu.Unlock()
+
+	f, err := os.Create(filepath.Join(s.root, "state.json"))
+	if err != nil {
+		return nil, err
+	}
+	err = json.NewEncoder(f).Encode(s)
+	f.Close()
 	// ~TODO: oom and stats stuff here
-	return p, nil
+	return p, err
 }

 func (s *Shim) Start(c *containerkit.Container) error {
@ -215,6 +249,23 @@ func (s *Shim) Start(c *containerkit.Container) error {
 	return nil
 }

+func (s *Shim) Delete(c *containerkit.Container) error {
+	if err := s.runtime.Delete(c); err != nil {
+		return err
+	}
+	return os.RemoveAll(s.root)
+}
+
+var errnotimpl = errors.New("NOT IMPL RIGHT NOW, CHILL")
+
+func (s *Shim) Exec(c *containerkit.Container, p *containerkit.Process) (containerkit.ProcessDelegate, error) {
+	return nil, errnotimpl
+}
+
+func (s *Shim) Load(id string) (containerkit.ProcessDelegate, error) {
+	return nil, errnotimpl
+}
+
 func (s *Shim) getContainerInit(c *containerkit.Container) (*process, error) {
 	s.pmu.Lock()
 	p, ok := s.processes["init"]