42f778fc14
sandbox address should be in the form of <ttrpc|grpc>+<unix|vsock|hvsock>://<uds-path|vsock-cid:vsock-port|uds-path:hvsock-port> for example: ttrpc+hvsock:///run/test.hvsock:1024 or: grpc+vsock://1111111:1024 and the Stdin/Stdout/Stderr will add a `streaming_id` as a parameter of the url result form is: <ttrpc|grpc>+<unix|vsock|hvsock>://<uds-path|vsock-cid:vsock-port|uds-path:hvsock-port>?streaming_id=<stream-id> for example ttrpc+hvsock:///run/test.hvsock:1024?streaming_id=111111 or grpc+vsock://1111111:1024?streaming_id=222222 Signed-off-by: Abel Feng <fshb1988@gmail.com>
176 lines
4.4 KiB
Go
176 lines
4.4 KiB
Go
/*
|
|
Copyright The containerd Authors.
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
package io
|
|
|
|
import (
|
|
"io"
|
|
"sync"
|
|
|
|
"github.com/containerd/log"
|
|
|
|
"github.com/containerd/containerd/v2/pkg/cio"
|
|
cioutil "github.com/containerd/containerd/v2/pkg/ioutil"
|
|
)
|
|
|
|
// ExecIO holds the exec io.
|
|
type ExecIO struct {
|
|
id string
|
|
fifos *cio.FIFOSet
|
|
*stdioStream
|
|
closer *wgCloser
|
|
}
|
|
|
|
var _ cio.IO = &ExecIO{}
|
|
|
|
// NewFifoExecIO creates exec io by named pipes.
|
|
func NewFifoExecIO(id, root string, tty, stdin bool) (*ExecIO, error) {
|
|
fifos, err := newFifos(root, id, tty, stdin)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
stdio, closer, err := newStdioStream(fifos)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return &ExecIO{
|
|
id: id,
|
|
fifos: fifos,
|
|
stdioStream: stdio,
|
|
closer: closer,
|
|
}, nil
|
|
}
|
|
|
|
// NewStreamExecIO creates exec io with streaming.
|
|
// The stream address is in format of `protocol://address?stream_id=xyz`.
|
|
// It allocates ExecID-stdin, ExecID-stdout and ExecID-stderr as streaming IDs.
|
|
// For example, that advertiser address of shim is `ttrpc+unix:///run/demo.sock` and exec ID is `app`.
|
|
// There are three streams if stdin is enabled and TTY is disabled.
|
|
//
|
|
// - Stdin: ttrpc+unix:///run/demo.sock?stream_id=app-stdin
|
|
// - Stdout: ttrpc+unix:///run/demo.sock?stream_id=app-stdout
|
|
// - stderr: ttrpc+unix:///run/demo.sock?stream_id=app-stderr
|
|
//
|
|
// The streaming IDs will be used as unique key to establish stream tunnel.
|
|
// And it should support reconnection with the same streaming ID if containerd restarts.
|
|
func NewStreamExecIO(id, address string, tty, stdin bool) (*ExecIO, error) {
|
|
fifos, err := newStreams(address, id, tty, stdin)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
stdio, closer, err := newStdioStream(fifos)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return &ExecIO{
|
|
id: id,
|
|
fifos: fifos,
|
|
stdioStream: stdio,
|
|
closer: closer,
|
|
}, nil
|
|
}
|
|
|
|
// Config returns io config.
|
|
func (e *ExecIO) Config() cio.Config {
|
|
return e.fifos.Config
|
|
}
|
|
|
|
// Attach attaches exec stdio. The logic is similar with container io attach.
|
|
func (e *ExecIO) Attach(opts AttachOptions) <-chan struct{} {
|
|
var wg sync.WaitGroup
|
|
var stdinStreamRC io.ReadCloser
|
|
if e.stdin != nil && opts.Stdin != nil {
|
|
stdinStreamRC = cioutil.NewWrapReadCloser(opts.Stdin)
|
|
wg.Add(1)
|
|
go func() {
|
|
if _, err := io.Copy(e.stdin, stdinStreamRC); err != nil {
|
|
log.L.WithError(err).Errorf("Failed to redirect stdin for container exec %q", e.id)
|
|
}
|
|
log.L.Infof("Container exec %q stdin closed", e.id)
|
|
if opts.StdinOnce && !opts.Tty {
|
|
e.stdin.Close()
|
|
if err := opts.CloseStdin(); err != nil {
|
|
log.L.WithError(err).Errorf("Failed to close stdin for container exec %q", e.id)
|
|
}
|
|
} else {
|
|
if e.stdout != nil {
|
|
e.stdout.Close()
|
|
}
|
|
if e.stderr != nil {
|
|
e.stderr.Close()
|
|
}
|
|
}
|
|
wg.Done()
|
|
}()
|
|
}
|
|
|
|
attachOutput := func(t StreamType, stream io.WriteCloser, out io.ReadCloser) {
|
|
if _, err := io.Copy(stream, out); err != nil {
|
|
log.L.WithError(err).Errorf("Failed to pipe %q for container exec %q", t, e.id)
|
|
}
|
|
out.Close()
|
|
stream.Close()
|
|
if stdinStreamRC != nil {
|
|
stdinStreamRC.Close()
|
|
}
|
|
e.closer.wg.Done()
|
|
wg.Done()
|
|
log.L.Debugf("Finish piping %q of container exec %q", t, e.id)
|
|
}
|
|
|
|
if opts.Stdout != nil {
|
|
wg.Add(1)
|
|
// Closer should wait for this routine to be over.
|
|
e.closer.wg.Add(1)
|
|
go attachOutput(Stdout, opts.Stdout, e.stdout)
|
|
}
|
|
|
|
if !opts.Tty && opts.Stderr != nil {
|
|
wg.Add(1)
|
|
// Closer should wait for this routine to be over.
|
|
e.closer.wg.Add(1)
|
|
go attachOutput(Stderr, opts.Stderr, e.stderr)
|
|
}
|
|
|
|
done := make(chan struct{})
|
|
go func() {
|
|
wg.Wait()
|
|
close(done)
|
|
}()
|
|
return done
|
|
}
|
|
|
|
// Cancel cancels exec io.
|
|
func (e *ExecIO) Cancel() {
|
|
e.closer.Cancel()
|
|
}
|
|
|
|
// Wait waits exec io to finish.
|
|
func (e *ExecIO) Wait() {
|
|
e.closer.Wait()
|
|
}
|
|
|
|
// Close closes all FIFOs.
|
|
func (e *ExecIO) Close() error {
|
|
if e.closer != nil {
|
|
e.closer.Close()
|
|
}
|
|
if e.fifos != nil {
|
|
return e.fifos.Close()
|
|
}
|
|
return nil
|
|
}
|