Merge pull request #9054 from macOScontainers/canonicalize-filter-mount-path
Fix usages of `mountinfo.PrefixFilter`
This commit is contained in:
Akihiro Suda
GitHub
commit
9ffb34ac49
@ -20,18 +20,15 @@ package mount
|
|||||||
|
|
||||||
import (
|
import (
|
||||||
"fmt"
|
"fmt"
|
||||||
"path/filepath"
|
|
||||||
|
|
||||||
"github.com/moby/sys/mountinfo"
|
"github.com/moby/sys/mountinfo"
|
||||||
)
|
)
|
||||||
|
|
||||||
// Lookup returns the mount info corresponds to the path.
|
// Lookup returns the mount info corresponds to the path.
|
||||||
func Lookup(dir string) (Info, error) {
|
func Lookup(dir string) (Info, error) {
|
||||||
dir = filepath.Clean(dir)
|
resolvedDir, err := CanonicalizePath(dir)
|
||||||
|
|
||||||
resolvedDir, err := filepath.EvalSymlinks(dir)
|
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return Info{}, fmt.Errorf("failed to resolve symlink for %q: %w", dir, err)
|
return Info{}, err
|
||||||
}
|
}
|
||||||
|
|
||||||
m, err := mountinfo.GetMounts(mountinfo.ParentsFilter(resolvedDir))
|
m, err := mountinfo.GetMounts(mountinfo.ParentsFilter(resolvedDir))
|
||||||
|
|||||||
@ -18,6 +18,7 @@ package mount
|
|||||||
|
|
||||||
import (
|
import (
|
||||||
"fmt"
|
"fmt"
|
||||||
|
"path/filepath"
|
||||||
"strings"
|
"strings"
|
||||||
|
|
||||||
"github.com/containerd/containerd/api/types"
|
"github.com/containerd/containerd/api/types"
|
||||||
@ -69,6 +70,18 @@ func UnmountMounts(mounts []Mount, target string, flags int) error {
|
|||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// CanonicalizePath makes path absolute and resolves symlinks in it.
|
||||||
|
// Path must exist.
|
||||||
|
func CanonicalizePath(path string) (string, error) {
|
||||||
|
// Abs also does Clean, so we do not need to call it separately
|
||||||
|
path, err := filepath.Abs(path)
|
||||||
|
if err != nil {
|
||||||
|
return "", err
|
||||||
|
}
|
||||||
|
|
||||||
|
return filepath.EvalSymlinks(path)
|
||||||
|
}
|
||||||
|
|
||||||
// ReadOnly returns a boolean value indicating whether this mount has the "ro"
|
// ReadOnly returns a boolean value indicating whether this mount has the "ro"
|
||||||
// option set.
|
// option set.
|
||||||
func (m *Mount) ReadOnly() bool {
|
func (m *Mount) ReadOnly() bool {
|
||||||
|
|||||||
@ -30,6 +30,12 @@ func UnmountRecursive(target string, flags int) error {
|
|||||||
if target == "" {
|
if target == "" {
|
||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
|
|
||||||
|
target, err := CanonicalizePath(target)
|
||||||
|
if err != nil {
|
||||||
|
return err
|
||||||
|
}
|
||||||
|
|
||||||
mounts, err := mountinfo.GetMounts(mountinfo.PrefixFilter(target))
|
mounts, err := mountinfo.GetMounts(mountinfo.PrefixFilter(target))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return err
|
return err
|
||||||
|
|||||||
@ -20,7 +20,6 @@ package mount
|
|||||||
|
|
||||||
import (
|
import (
|
||||||
"os"
|
"os"
|
||||||
"path/filepath"
|
|
||||||
"sort"
|
"sort"
|
||||||
|
|
||||||
"github.com/moby/sys/mountinfo"
|
"github.com/moby/sys/mountinfo"
|
||||||
@ -28,16 +27,14 @@ import (
|
|||||||
|
|
||||||
// SetTempMountLocation sets the temporary mount location
|
// SetTempMountLocation sets the temporary mount location
|
||||||
func SetTempMountLocation(root string) error {
|
func SetTempMountLocation(root string) error {
|
||||||
root, err := filepath.Abs(root)
|
err := os.MkdirAll(root, 0700)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return err
|
return err
|
||||||
}
|
}
|
||||||
if err := os.MkdirAll(root, 0700); err != nil {
|
// We need to pass canonicalized path to mountinfo.PrefixFilter in CleanupTempMounts
|
||||||
|
tempMountLocation, err = CanonicalizePath(root)
|
||||||
return err
|
return err
|
||||||
}
|
}
|
||||||
tempMountLocation = root
|
|
||||||
return nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// CleanupTempMounts all temp mounts and remove the directories
|
// CleanupTempMounts all temp mounts and remove the directories
|
||||||
func CleanupTempMounts(flags int) (warnings []error, err error) {
|
func CleanupTempMounts(flags int) (warnings []error, err error) {
|
||||||
@ -45,6 +42,7 @@ func CleanupTempMounts(flags int) (warnings []error, err error) {
|
|||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, err
|
return nil, err
|
||||||
}
|
}
|
||||||
|
|
||||||
// Make the deepest mount be first
|
// Make the deepest mount be first
|
||||||
sort.Slice(mounts, func(i, j int) bool {
|
sort.Slice(mounts, func(i, j int) bool {
|
||||||
return len(mounts[i].Mountpoint) > len(mounts[j].Mountpoint)
|
return len(mounts[i].Mountpoint) > len(mounts[j].Mountpoint)
|
||||||
|
|||||||
@ -65,6 +65,11 @@ func openLogFile(path string) (*os.File, error) {
|
|||||||
// unmountRecursive unmounts the target and all mounts underneath, starting with
|
// unmountRecursive unmounts the target and all mounts underneath, starting with
|
||||||
// the deepest mount first.
|
// the deepest mount first.
|
||||||
func unmountRecursive(ctx context.Context, target string) error {
|
func unmountRecursive(ctx context.Context, target string) error {
|
||||||
|
target, err := mount.CanonicalizePath(target)
|
||||||
|
if err != nil {
|
||||||
|
return err
|
||||||
|
}
|
||||||
|
|
||||||
toUnmount, err := mountinfo.GetMounts(mountinfo.PrefixFilter(target))
|
toUnmount, err := mountinfo.GetMounts(mountinfo.PrefixFilter(target))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return err
|
return err
|
||||||
|
|||||||
@ -143,6 +143,11 @@ func (c *Controller) seccompEnabled() bool {
|
|||||||
// unmountRecursive unmounts the target and all mounts underneath, starting with
|
// unmountRecursive unmounts the target and all mounts underneath, starting with
|
||||||
// the deepest mount first.
|
// the deepest mount first.
|
||||||
func unmountRecursive(ctx context.Context, target string) error {
|
func unmountRecursive(ctx context.Context, target string) error {
|
||||||
|
target, err := mount.CanonicalizePath(target)
|
||||||
|
if err != nil {
|
||||||
|
return err
|
||||||
|
}
|
||||||
|
|
||||||
toUnmount, err := mountinfo.GetMounts(mountinfo.PrefixFilter(target))
|
toUnmount, err := mountinfo.GetMounts(mountinfo.PrefixFilter(target))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return err
|
return err
|
||||||
|
|||||||
@ -164,6 +164,11 @@ func openLogFile(path string) (*os.File, error) {
|
|||||||
// unmountRecursive unmounts the target and all mounts underneath, starting with
|
// unmountRecursive unmounts the target and all mounts underneath, starting with
|
||||||
// the deepest mount first.
|
// the deepest mount first.
|
||||||
func unmountRecursive(ctx context.Context, target string) error {
|
func unmountRecursive(ctx context.Context, target string) error {
|
||||||
|
target, err := mount.CanonicalizePath(target)
|
||||||
|
if err != nil {
|
||||||
|
return err
|
||||||
|
}
|
||||||
|
|
||||||
toUnmount, err := mountinfo.GetMounts(mountinfo.PrefixFilter(target))
|
toUnmount, err := mountinfo.GetMounts(mountinfo.PrefixFilter(target))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return err
|
return err
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user