Support HTTP debug in ctr
Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>
This commit is contained in:
Maksym Pavlenko
parent
4e919ffaba
commit
22ef69d77d
@ -78,6 +78,14 @@ var (
|
|||||||
Name: "tlskey",
|
Name: "tlskey",
|
||||||
Usage: "path to TLS client key",
|
Usage: "path to TLS client key",
|
||||||
},
|
},
|
||||||
|
cli.BoolFlag{
|
||||||
|
Name: "http-dump",
|
||||||
|
Usage: "dump all HTTP request/responses when interacting with container registry",
|
||||||
|
},
|
||||||
|
cli.BoolFlag{
|
||||||
|
Name: "http-trace",
|
||||||
|
Usage: "enable HTTP tracing for registry interactions",
|
||||||
|
},
|
||||||
}
|
}
|
||||||
|
|
||||||
// ContainerFlags are cli flags specifying container options
|
// ContainerFlags are cli flags specifying container options
|
||||||
|
|||||||
@ -20,6 +20,7 @@ import (
|
|||||||
"context"
|
"context"
|
||||||
"fmt"
|
"fmt"
|
||||||
"io"
|
"io"
|
||||||
|
"net/http/httptrace"
|
||||||
"os"
|
"os"
|
||||||
"sync"
|
"sync"
|
||||||
"text/tabwriter"
|
"text/tabwriter"
|
||||||
@ -110,6 +111,8 @@ type FetchConfig struct {
|
|||||||
AllMetadata bool
|
AllMetadata bool
|
||||||
// RemoteOpts is not used by ctr, but can be used by other CLI tools
|
// RemoteOpts is not used by ctr, but can be used by other CLI tools
|
||||||
RemoteOpts []containerd.RemoteOpt
|
RemoteOpts []containerd.RemoteOpt
|
||||||
|
// TraceHTTP writes DNS and connection information to the log when dealing with a container registry
|
||||||
|
TraceHTTP bool
|
||||||
}
|
}
|
||||||
|
|
||||||
// NewFetchConfig returns the default FetchConfig from cli flags
|
// NewFetchConfig returns the default FetchConfig from cli flags
|
||||||
@ -121,6 +124,7 @@ func NewFetchConfig(ctx context.Context, clicontext *cli.Context) (*FetchConfig,
|
|||||||
config := &FetchConfig{
|
config := &FetchConfig{
|
||||||
Resolver: resolver,
|
Resolver: resolver,
|
||||||
Labels: clicontext.StringSlice("label"),
|
Labels: clicontext.StringSlice("label"),
|
||||||
|
TraceHTTP: clicontext.Bool("http-trace"),
|
||||||
}
|
}
|
||||||
if !clicontext.GlobalBool("debug") {
|
if !clicontext.GlobalBool("debug") {
|
||||||
config.ProgressOutput = os.Stdout
|
config.ProgressOutput = os.Stdout
|
||||||
@ -148,6 +152,10 @@ func NewFetchConfig(ctx context.Context, clicontext *cli.Context) (*FetchConfig,
|
|||||||
func Fetch(ctx context.Context, client *containerd.Client, ref string, config *FetchConfig) (images.Image, error) {
|
func Fetch(ctx context.Context, client *containerd.Client, ref string, config *FetchConfig) (images.Image, error) {
|
||||||
ongoing := NewJobs(ref)
|
ongoing := NewJobs(ref)
|
||||||
|
|
||||||
|
if config.TraceHTTP {
|
||||||
|
ctx = httptrace.WithClientTrace(ctx, commands.NewDebugClientTrace(ctx))
|
||||||
|
}
|
||||||
|
|
||||||
pctx, stopProgress := context.WithCancel(ctx)
|
pctx, stopProgress := context.WithCancel(ctx)
|
||||||
progress := make(chan struct{})
|
progress := make(chan struct{})
|
||||||
|
|
||||||
|
|||||||
@ -17,9 +17,7 @@
|
|||||||
package images
|
package images
|
||||||
|
|
||||||
import (
|
import (
|
||||||
"context"
|
|
||||||
"fmt"
|
"fmt"
|
||||||
"net/http/httptrace"
|
|
||||||
"os"
|
"os"
|
||||||
"sort"
|
"sort"
|
||||||
"strings"
|
"strings"
|
||||||
@ -334,23 +332,3 @@ var removeCommand = cli.Command{
|
|||||||
return exitErr
|
return exitErr
|
||||||
},
|
},
|
||||||
}
|
}
|
||||||
|
|
||||||
// NewDebugClientTrace returns a Go http trace client predefined to write DNS and connection
|
|
||||||
// information to the log. This is used via the --trace flag on push and pull operations in ctr.
|
|
||||||
func NewDebugClientTrace(ctx context.Context) *httptrace.ClientTrace {
|
|
||||||
return &httptrace.ClientTrace{
|
|
||||||
DNSStart: func(dnsInfo httptrace.DNSStartInfo) {
|
|
||||||
log.G(ctx).WithField("host", dnsInfo.Host).Debugf("DNS lookup")
|
|
||||||
},
|
|
||||||
DNSDone: func(dnsInfo httptrace.DNSDoneInfo) {
|
|
||||||
if dnsInfo.Err != nil {
|
|
||||||
log.G(ctx).WithField("lookup_err", dnsInfo.Err).Debugf("DNS lookup error")
|
|
||||||
} else {
|
|
||||||
log.G(ctx).WithField("result", dnsInfo.Addrs[0].String()).WithField("coalesced", dnsInfo.Coalesced).Debugf("DNS lookup complete")
|
|
||||||
}
|
|
||||||
},
|
|
||||||
GotConn: func(connInfo httptrace.GotConnInfo) {
|
|
||||||
log.G(ctx).WithField("reused", connInfo.Reused).WithField("remote_addr", connInfo.Conn.RemoteAddr().String()).Debugf("Connection successful")
|
|
||||||
},
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|||||||
@ -18,7 +18,6 @@ package images
|
|||||||
|
|
||||||
import (
|
import (
|
||||||
"fmt"
|
"fmt"
|
||||||
"net/http/httptrace"
|
|
||||||
"time"
|
"time"
|
||||||
|
|
||||||
"github.com/containerd/containerd"
|
"github.com/containerd/containerd"
|
||||||
@ -56,10 +55,6 @@ command. As part of this process, we do the following:
|
|||||||
Name: "all-platforms",
|
Name: "all-platforms",
|
||||||
Usage: "pull content and metadata from all platforms",
|
Usage: "pull content and metadata from all platforms",
|
||||||
},
|
},
|
||||||
cli.BoolFlag{
|
|
||||||
Name: "trace",
|
|
||||||
Usage: "enable HTTP tracing for registry interactions",
|
|
||||||
},
|
|
||||||
cli.BoolFlag{
|
cli.BoolFlag{
|
||||||
Name: "all-metadata",
|
Name: "all-metadata",
|
||||||
Usage: "Pull metadata for all platforms",
|
Usage: "Pull metadata for all platforms",
|
||||||
@ -94,9 +89,6 @@ command. As part of this process, we do the following:
|
|||||||
return err
|
return err
|
||||||
}
|
}
|
||||||
|
|
||||||
if context.Bool("trace") {
|
|
||||||
ctx = httptrace.WithClientTrace(ctx, NewDebugClientTrace(ctx))
|
|
||||||
}
|
|
||||||
img, err := content.Fetch(ctx, client, ref, config)
|
img, err := content.Fetch(ctx, client, ref, config)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return err
|
return err
|
||||||
|
|||||||
@ -60,9 +60,6 @@ var pushCommand = cli.Command{
|
|||||||
Name: "manifest-type",
|
Name: "manifest-type",
|
||||||
Usage: "media type of manifest digest",
|
Usage: "media type of manifest digest",
|
||||||
Value: ocispec.MediaTypeImageManifest,
|
Value: ocispec.MediaTypeImageManifest,
|
||||||
}, cli.BoolFlag{
|
|
||||||
Name: "trace",
|
|
||||||
Usage: "enable HTTP tracing for registry interactions",
|
|
||||||
}, cli.StringSliceFlag{
|
}, cli.StringSliceFlag{
|
||||||
Name: "platform",
|
Name: "platform",
|
||||||
Usage: "push content from a specific platform",
|
Usage: "push content from a specific platform",
|
||||||
@ -123,8 +120,8 @@ var pushCommand = cli.Command{
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
if context.Bool("trace") {
|
if context.Bool("http-trace") {
|
||||||
ctx = httptrace.WithClientTrace(ctx, NewDebugClientTrace(ctx))
|
ctx = httptrace.WithClientTrace(ctx, commands.NewDebugClientTrace(ctx))
|
||||||
}
|
}
|
||||||
resolver, err := commands.GetResolver(ctx, context)
|
resolver, err := commands.GetResolver(ctx, context)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
|
|||||||
@ -22,10 +22,15 @@ import (
|
|||||||
"crypto/tls"
|
"crypto/tls"
|
||||||
"crypto/x509"
|
"crypto/x509"
|
||||||
"fmt"
|
"fmt"
|
||||||
|
"io"
|
||||||
"io/ioutil"
|
"io/ioutil"
|
||||||
|
"net/http"
|
||||||
|
"net/http/httptrace"
|
||||||
|
"net/http/httputil"
|
||||||
"strings"
|
"strings"
|
||||||
|
|
||||||
"github.com/containerd/console"
|
"github.com/containerd/console"
|
||||||
|
"github.com/containerd/containerd/log"
|
||||||
"github.com/containerd/containerd/remotes"
|
"github.com/containerd/containerd/remotes"
|
||||||
"github.com/containerd/containerd/remotes/docker"
|
"github.com/containerd/containerd/remotes/docker"
|
||||||
"github.com/containerd/containerd/remotes/docker/config"
|
"github.com/containerd/containerd/remotes/docker/config"
|
||||||
@ -96,6 +101,16 @@ func GetResolver(ctx gocontext.Context, clicontext *cli.Context) (remotes.Resolv
|
|||||||
hostOptions.HostDir = config.HostDirFromRoot(hostDir)
|
hostOptions.HostDir = config.HostDirFromRoot(hostDir)
|
||||||
}
|
}
|
||||||
|
|
||||||
|
if clicontext.Bool("http-dump") {
|
||||||
|
hostOptions.UpdateClient = func(client *http.Client) error {
|
||||||
|
client.Transport = &DebugTransport{
|
||||||
|
transport: client.Transport,
|
||||||
|
writer: log.G(ctx).Writer(),
|
||||||
|
}
|
||||||
|
return nil
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
options.Hosts = config.ConfigureHosts(ctx, hostOptions)
|
options.Hosts = config.ConfigureHosts(ctx, hostOptions)
|
||||||
|
|
||||||
return docker.NewResolver(options), nil
|
return docker.NewResolver(options), nil
|
||||||
@ -135,3 +150,57 @@ func resolverDefaultTLS(clicontext *cli.Context) (*tls.Config, error) {
|
|||||||
|
|
||||||
return config, nil
|
return config, nil
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// DebugTransport wraps the underlying http.RoundTripper interface and dumps all requests/responses to the writer.
|
||||||
|
type DebugTransport struct {
|
||||||
|
transport http.RoundTripper
|
||||||
|
writer io.Writer
|
||||||
|
}
|
||||||
|
|
||||||
|
// RoundTrip dumps request/responses and executes the request using the underlying transport.
|
||||||
|
func (t DebugTransport) RoundTrip(req *http.Request) (*http.Response, error) {
|
||||||
|
in, err := httputil.DumpRequest(req, true)
|
||||||
|
if err != nil {
|
||||||
|
return nil, errors.Wrap(err, "failed to dump request")
|
||||||
|
}
|
||||||
|
|
||||||
|
if _, err := t.writer.Write(in); err != nil {
|
||||||
|
return nil, err
|
||||||
|
}
|
||||||
|
|
||||||
|
resp, err := t.transport.RoundTrip(req)
|
||||||
|
if err != nil {
|
||||||
|
return nil, err
|
||||||
|
}
|
||||||
|
|
||||||
|
out, err := httputil.DumpResponse(resp, true)
|
||||||
|
if err != nil {
|
||||||
|
return nil, errors.Wrap(err, "failed to dump response")
|
||||||
|
}
|
||||||
|
|
||||||
|
if _, err := t.writer.Write(out); err != nil {
|
||||||
|
return nil, err
|
||||||
|
}
|
||||||
|
|
||||||
|
return resp, err
|
||||||
|
}
|
||||||
|
|
||||||
|
// NewDebugClientTrace returns a Go http trace client predefined to write DNS and connection
|
||||||
|
// information to the log. This is used via the --http-trace flag on push and pull operations in ctr.
|
||||||
|
func NewDebugClientTrace(ctx gocontext.Context) *httptrace.ClientTrace {
|
||||||
|
return &httptrace.ClientTrace{
|
||||||
|
DNSStart: func(dnsInfo httptrace.DNSStartInfo) {
|
||||||
|
log.G(ctx).WithField("host", dnsInfo.Host).Debugf("DNS lookup")
|
||||||
|
},
|
||||||
|
DNSDone: func(dnsInfo httptrace.DNSDoneInfo) {
|
||||||
|
if dnsInfo.Err != nil {
|
||||||
|
log.G(ctx).WithField("lookup_err", dnsInfo.Err).Debugf("DNS lookup error")
|
||||||
|
} else {
|
||||||
|
log.G(ctx).WithField("result", dnsInfo.Addrs[0].String()).WithField("coalesced", dnsInfo.Coalesced).Debugf("DNS lookup complete")
|
||||||
|
}
|
||||||
|
},
|
||||||
|
GotConn: func(connInfo httptrace.GotConnInfo) {
|
||||||
|
log.G(ctx).WithField("reused", connInfo.Reused).WithField("remote_addr", connInfo.Conn.RemoteAddr().String()).Debugf("Connection successful")
|
||||||
|
},
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|||||||
@ -37,6 +37,9 @@ import (
|
|||||||
"github.com/pkg/errors"
|
"github.com/pkg/errors"
|
||||||
)
|
)
|
||||||
|
|
||||||
|
// UpdateClientFunc is a function that lets you to amend http Client behavior used by registry clients.
|
||||||
|
type UpdateClientFunc func(client *http.Client) error
|
||||||
|
|
||||||
type hostConfig struct {
|
type hostConfig struct {
|
||||||
scheme string
|
scheme string
|
||||||
host string
|
host string
|
||||||
@ -61,6 +64,8 @@ type HostOptions struct {
|
|||||||
Credentials func(host string) (string, string, error)
|
Credentials func(host string) (string, string, error)
|
||||||
DefaultTLS *tls.Config
|
DefaultTLS *tls.Config
|
||||||
DefaultScheme string
|
DefaultScheme string
|
||||||
|
// UpdateClient will be called after creating http.Client object, so clients can provide extra configuration
|
||||||
|
UpdateClient UpdateClientFunc
|
||||||
}
|
}
|
||||||
|
|
||||||
// ConfigureHosts creates a registry hosts function from the provided
|
// ConfigureHosts creates a registry hosts function from the provided
|
||||||
@ -130,6 +135,11 @@ func ConfigureHosts(ctx context.Context, options HostOptions) docker.RegistryHos
|
|||||||
client := &http.Client{
|
client := &http.Client{
|
||||||
Transport: defaultTransport,
|
Transport: defaultTransport,
|
||||||
}
|
}
|
||||||
|
if options.UpdateClient != nil {
|
||||||
|
if err := options.UpdateClient(client); err != nil {
|
||||||
|
return nil, err
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
authOpts := []docker.AuthorizerOpt{docker.WithAuthClient(client)}
|
authOpts := []docker.AuthorizerOpt{docker.WithAuthClient(client)}
|
||||||
if options.Credentials != nil {
|
if options.Credentials != nil {
|
||||||
@ -198,6 +208,11 @@ func ConfigureHosts(ctx context.Context, options HostOptions) docker.RegistryHos
|
|||||||
|
|
||||||
c := *client
|
c := *client
|
||||||
c.Transport = tr
|
c.Transport = tr
|
||||||
|
if options.UpdateClient != nil {
|
||||||
|
if err := options.UpdateClient(&c); err != nil {
|
||||||
|
return nil, err
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
rhosts[i].Client = &c
|
rhosts[i].Client = &c
|
||||||
rhosts[i].Authorizer = docker.NewDockerAuthorizer(append(authOpts, docker.WithAuthClient(&c))...)
|
rhosts[i].Authorizer = docker.NewDockerAuthorizer(append(authOpts, docker.WithAuthClient(&c))...)
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user