buildah/common.go

package buildah

import (
	"context"
	"io"
	"net"
	"net/url"
	"os"
	"path/filepath"
	"syscall"
	"time"

	cp "github.com/containers/image/v5/copy"
	"github.com/containers/image/v5/docker"
	"github.com/containers/image/v5/signature"
	"github.com/containers/image/v5/types"
	encconfig "github.com/containers/ocicrypt/config"
	"github.com/containers/storage"
	"github.com/containers/storage/pkg/unshare"
	"github.com/docker/distribution/registry/api/errcode"
	errcodev2 "github.com/docker/distribution/registry/api/v2"
	multierror "github.com/hashicorp/go-multierror"
	"github.com/pkg/errors"
	"github.com/sirupsen/logrus"
)

const (
	// OCI used to define the "oci" image format
	OCI = "oci"
	// DOCKER used to define the "docker" image format
	DOCKER = "docker"
)

func getCopyOptions(store storage.Store, reportWriter io.Writer, sourceSystemContext *types.SystemContext, destinationSystemContext *types.SystemContext, manifestType string, removeSignatures bool, addSigner string, ociEncryptLayers *[]int, ociEncryptConfig *encconfig.EncryptConfig, ociDecryptConfig *encconfig.DecryptConfig) *cp.Options {
	sourceCtx := getSystemContext(store, nil, "")
	if sourceSystemContext != nil {
		*sourceCtx = *sourceSystemContext
	}

	destinationCtx := getSystemContext(store, nil, "")
	if destinationSystemContext != nil {
		*destinationCtx = *destinationSystemContext
	}
	return &cp.Options{
		ReportWriter:          reportWriter,
		SourceCtx:             sourceCtx,
		DestinationCtx:        destinationCtx,
		ForceManifestMIMEType: manifestType,
		RemoveSignatures:      removeSignatures,
		SignBy:                addSigner,
		OciEncryptConfig:      ociEncryptConfig,
		OciDecryptConfig:      ociDecryptConfig,
		OciEncryptLayers:      ociEncryptLayers,
	}
}

func getSystemContext(store storage.Store, defaults *types.SystemContext, signaturePolicyPath string) *types.SystemContext {
	sc := &types.SystemContext{}
	if defaults != nil {
		*sc = *defaults
	}
	if signaturePolicyPath != "" {
		sc.SignaturePolicyPath = signaturePolicyPath
	}
	if store != nil {
		if sc.BlobInfoCacheDir == "" {
			sc.BlobInfoCacheDir = filepath.Join(store.GraphRoot(), "cache")
		}
		if sc.SystemRegistriesConfPath == "" && unshare.IsRootless() {
			userRegistriesFile := filepath.Join(store.GraphRoot(), "registries.conf")
			if _, err := os.Stat(userRegistriesFile); err == nil {
				sc.SystemRegistriesConfPath = userRegistriesFile
			}
		}
	}
	return sc
}

func isRetryable(err error) bool {
	err = errors.Cause(err)
	type unwrapper interface {
		Unwrap() error
	}
	if unwrapper, ok := err.(unwrapper); ok {
		err = unwrapper.Unwrap()
		return isRetryable(err)
	}
	if registryError, ok := err.(errcode.Error); ok {
		switch registryError.Code {
		case errcode.ErrorCodeUnauthorized, errcodev2.ErrorCodeNameUnknown, errcodev2.ErrorCodeManifestUnknown:
			return false
		}
		return true
	}
	if op, ok := err.(*net.OpError); ok {
		return isRetryable(op.Err)
	}
	if url, ok := err.(*url.Error); ok {
		return isRetryable(url.Err)
	}
	if errno, ok := err.(syscall.Errno); ok {
		if errno == syscall.ECONNREFUSED {
			return false
		}
	}
	if errs, ok := err.(errcode.Errors); ok {
		// if this error is a group of errors, process them all in turn
		for i := range errs {
			if !isRetryable(errs[i]) {
				return false
			}
		}
	}
	if errs, ok := err.(*multierror.Error); ok {
		// if this error is a group of errors, process them all in turn
		for i := range errs.Errors {
			if !isRetryable(errs.Errors[i]) {
				return false
			}
		}
	}
	return true
}

func retryCopyImage(ctx context.Context, policyContext *signature.PolicyContext, dest, src, registry types.ImageReference, action string, copyOptions *cp.Options, maxRetries int, retryDelay time.Duration) ([]byte, error) {
	manifestBytes, err := cp.Image(ctx, policyContext, dest, src, copyOptions)
	for retries := 0; err != nil && isRetryable(err) && registry != nil && registry.Transport().Name() == docker.Transport.Name() && retries < maxRetries; retries++ {
		if retryDelay == 0 {
			retryDelay = 5 * time.Second
		}
		logrus.Infof("Warning: %s failed, retrying in %s ... (%d/%d)", action, retryDelay, retries+1, maxRetries)
		time.Sleep(retryDelay)
		manifestBytes, err = cp.Image(ctx, policyContext, dest, src, copyOptions)
		if err == nil {
			break
		}
	}
	return manifestBytes, err
}
Massive refactoring Pull most of the core logic from the CLI into a package that should be easier to consume as a library. Add a "config" command that updates the builder object's configuration. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> 2017-02-11 00:48:15 +08:00			`package buildah`

			`import (`
pull/from/commit/push: retry on most failures If PullOptions/BuilderOptions/CommitOptions/PushOptions includes a MaxRetries value other than 0, retry operations except for (currently) connection-refused, authentication, and no-such-repository/no-such-tag errors, at a default-but-configurable interval of 5 seconds. Set the default for `buildah pull/from/commit/push` to 3 retries at 2 second intervals. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> 2019-11-28 00:31:02 +08:00			`"context"`
Report pull/commit progress by default Have 'from', 'commit', and 'build-using-dockerfile' report progress via stderr (so that capturing output from 'from' and 'commit' still works as expected) unless --quiet is used to suppress the reporting. Closes #94. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> Closes: #98 Approved by: rhatdan 2017-05-09 23:56:44 +08:00			`"io"`
pull/from/commit/push: retry on most failures If PullOptions/BuilderOptions/CommitOptions/PushOptions includes a MaxRetries value other than 0, retry operations except for (currently) connection-refused, authentication, and no-such-repository/no-such-tag errors, at a default-but-configurable interval of 5 seconds. Set the default for `buildah pull/from/commit/push` to 3 retries at 2 second intervals. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> 2019-11-28 00:31:02 +08:00			`"net"`
			`"net/url"`
common: support a per-user registries conf file Closes: #1124 Approved by: rhatdan 2018-10-23 18:42:35 +08:00			`"os"`
			`"path/filepath"`
Replace unix with syscall to allow vendoring into libpod unix constants do not work when vendored into libpod, because libpod can potentially be used on non unix platforms, so compilation blows up. Switching to syscall should fix this issue. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com> 2020-02-23 19:24:59 +08:00			`"syscall"`
pull/from/commit/push: retry on most failures If PullOptions/BuilderOptions/CommitOptions/PushOptions includes a MaxRetries value other than 0, retry operations except for (currently) connection-refused, authentication, and no-such-repository/no-such-tag errors, at a default-but-configurable interval of 5 seconds. Set the default for `buildah pull/from/commit/push` to 3 retries at 2 second intervals. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> 2019-11-28 00:31:02 +08:00			`"time"`
Correctly set DockerInsecureSkipTLSVerify when pulling images The image library's copy routine doesn't itself consult the registries configuration in order to decide whether or not to disable TLS verification when communicating with a registry, so it's on us to use the name of a source or destination image to decide whether to set the flag for that behavior. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> Closes: #1056 Approved by: rhatdan 2018-10-03 01:48:45 +08:00
Move to containers/image v5.0.0 Bump to containers/image's 5.0 release. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> Closes: #1902 Approved by: rhatdan 2019-10-26 05:19:30 +08:00			`cp "github.com/containers/image/v5/copy"`
pull/from/commit/push: retry on most failures If PullOptions/BuilderOptions/CommitOptions/PushOptions includes a MaxRetries value other than 0, retry operations except for (currently) connection-refused, authentication, and no-such-repository/no-such-tag errors, at a default-but-configurable interval of 5 seconds. Set the default for `buildah pull/from/commit/push` to 3 retries at 2 second intervals. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> 2019-11-28 00:31:02 +08:00			`"github.com/containers/image/v5/docker"`
			`"github.com/containers/image/v5/signature"`
Move to containers/image v5.0.0 Bump to containers/image's 5.0 release. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> Closes: #1902 Approved by: rhatdan 2019-10-26 05:19:30 +08:00			`"github.com/containers/image/v5/types"`
implementation of encrypt/decrypt push/pull/bud/from Signed-off-by: Brandon Lum <lumjjb@gmail.com> 2020-04-02 02:15:56 +08:00			`encconfig "github.com/containers/ocicrypt/config"`
Allow rootless users to use the cache directory in homedir Currently rootless podman attempts to write to /var/lib/containers/cache and fails. This causes us to repeatedly push images that have already been pushed. This cache directory should be relative to the location of containers/storage and not always stored in the same directory. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com> Closes: #1411 Approved by: TomSweeneyRedHat 2019-03-14 04:03:13 +08:00			`"github.com/containers/storage"`
vendor in latest containers/storage 1.18.0 and containers/common v0.7.0 This vendor moves containers/common/pkg/unshare to containers/storage/pkg/unshare Signed-off-by: Daniel J Walsh <dwalsh@redhat.com> 2020-03-31 21:56:18 +08:00			`"github.com/containers/storage/pkg/unshare"`
pull/from/commit/push: retry on most failures If PullOptions/BuilderOptions/CommitOptions/PushOptions includes a MaxRetries value other than 0, retry operations except for (currently) connection-refused, authentication, and no-such-repository/no-such-tag errors, at a default-but-configurable interval of 5 seconds. Set the default for `buildah pull/from/commit/push` to 3 retries at 2 second intervals. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> 2019-11-28 00:31:02 +08:00			`"github.com/docker/distribution/registry/api/errcode"`
			`errcodev2 "github.com/docker/distribution/registry/api/v2"`
			`multierror "github.com/hashicorp/go-multierror"`
			`"github.com/pkg/errors"`
			`"github.com/sirupsen/logrus"`
Massive refactoring Pull most of the core logic from the CLI into a package that should be easier to consume as a library. Add a "config" command that updates the builder object's configuration. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> 2017-02-11 00:48:15 +08:00			`)`

Document BUILDAH_* environment variables in buildah bud --help output We also want to show the default settings. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com> Closes: #956 Approved by: rhatdan 2018-08-24 00:10:17 +08:00			`const (`
			`// OCI used to define the "oci" image format`
			`OCI = "oci"`
			`// DOCKER used to define the "docker" image format`
			`DOCKER = "docker"`
			`)`

implementation of encrypt/decrypt push/pull/bud/from Signed-off-by: Brandon Lum <lumjjb@gmail.com> 2020-04-02 02:15:56 +08:00			`func getCopyOptions(store storage.Store, reportWriter io.Writer, sourceSystemContext types.SystemContext, destinationSystemContext types.SystemContext, manifestType string, removeSignatures bool, addSigner string, ociEncryptLayers []int, ociEncryptConfig encconfig.EncryptConfig, ociDecryptConfig encconfig.DecryptConfig) cp.Options {`
Allow rootless users to use the cache directory in homedir Currently rootless podman attempts to write to /var/lib/containers/cache and fails. This causes us to repeatedly push images that have already been pushed. This cache directory should be relative to the location of containers/storage and not always stored in the same directory. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com> Closes: #1411 Approved by: TomSweeneyRedHat 2019-03-14 04:03:13 +08:00			`sourceCtx := getSystemContext(store, nil, "")`
Correctly set DockerInsecureSkipTLSVerify when pulling images The image library's copy routine doesn't itself consult the registries configuration in order to decide whether or not to disable TLS verification when communicating with a registry, so it's on us to use the name of a source or destination image to decide whether to set the flag for that behavior. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> Closes: #1056 Approved by: rhatdan 2018-10-03 01:48:45 +08:00			`if sourceSystemContext != nil {`
			`sourceCtx = sourceSystemContext`
			`}`

Allow rootless users to use the cache directory in homedir Currently rootless podman attempts to write to /var/lib/containers/cache and fails. This causes us to repeatedly push images that have already been pushed. This cache directory should be relative to the location of containers/storage and not always stored in the same directory. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com> Closes: #1411 Approved by: TomSweeneyRedHat 2019-03-14 04:03:13 +08:00			`destinationCtx := getSystemContext(store, nil, "")`
Correctly set DockerInsecureSkipTLSVerify when pulling images The image library's copy routine doesn't itself consult the registries configuration in order to decide whether or not to disable TLS verification when communicating with a registry, so it's on us to use the name of a source or destination image to decide whether to set the flag for that behavior. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> Closes: #1056 Approved by: rhatdan 2018-10-03 01:48:45 +08:00			`if destinationSystemContext != nil {`
			`destinationCtx = destinationSystemContext`
			`}`
gccgo is giving errors about using copy golang-bin-1.8.1-1.fc26.x86_64 gcc-go-7.1.1-1.fc26.x86_64 Signed-off-by: Dan Walsh <dwalsh@redhat.com> Closes: #135 Approved by: nalind 2017-06-05 21:42:30 +08:00			`return &cp.Options{`
Add manifest type conversion to buildah push buildah push supports manifest type conversion when pushing using the 'dir' transport Manifest types include oci, v2s1, and v2s2 e.g buildah push --format v2s2 alpine dir:my-directory Signed-off-by: Urvashi Mohnani <umohnani@redhat.com> Closes: #321 Approved by: rhatdan 2017-11-10 01:52:50 +08:00			`ReportWriter: reportWriter,`
Correctly set DockerInsecureSkipTLSVerify when pulling images The image library's copy routine doesn't itself consult the registries configuration in order to decide whether or not to disable TLS verification when communicating with a registry, so it's on us to use the name of a source or destination image to decide whether to set the flag for that behavior. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> Closes: #1056 Approved by: rhatdan 2018-10-03 01:48:45 +08:00			`SourceCtx: sourceCtx,`
			`DestinationCtx: destinationCtx,`
Add manifest type conversion to buildah push buildah push supports manifest type conversion when pushing using the 'dir' transport Manifest types include oci, v2s1, and v2s2 e.g buildah push --format v2s2 alpine dir:my-directory Signed-off-by: Urvashi Mohnani <umohnani@redhat.com> Closes: #321 Approved by: rhatdan 2017-11-10 01:52:50 +08:00			`ForceManifestMIMEType: manifestType,`
add --sign-by to bud/commit/push, --remove-signatures for pull/push Add the --sign-by option to `buildah build-using-dockerfile`, `buildah commit`, `buildah push`, and `buildah manifest push`. Add the `--remove-signatures` option to `buildah pull`, `buildah push`, and `buildah manifest push`. We just pass them to the image library, which does all of the heavy lifting. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> Closes: #2085 Approved by: rhatdan 2020-01-16 01:23:38 +08:00			`RemoveSignatures: removeSignatures,`
			`SignBy: addSigner,`
implementation of encrypt/decrypt push/pull/bud/from Signed-off-by: Brandon Lum <lumjjb@gmail.com> 2020-04-02 02:15:56 +08:00			`OciEncryptConfig: ociEncryptConfig,`
			`OciDecryptConfig: ociDecryptConfig,`
			`OciEncryptLayers: ociEncryptLayers,`
Report pull/commit progress by default Have 'from', 'commit', and 'build-using-dockerfile' report progress via stderr (so that capturing output from 'from' and 'commit' still works as expected) unless --quiet is used to suppress the reporting. Closes #94. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> Closes: #98 Approved by: rhatdan 2017-05-09 23:56:44 +08:00			`}`
Massive refactoring Pull most of the core logic from the CLI into a package that should be easier to consume as a library. Add a "config" command that updates the builder object's configuration. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> 2017-02-11 00:48:15 +08:00			`}`

Allow rootless users to use the cache directory in homedir Currently rootless podman attempts to write to /var/lib/containers/cache and fails. This causes us to repeatedly push images that have already been pushed. This cache directory should be relative to the location of containers/storage and not always stored in the same directory. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com> Closes: #1411 Approved by: TomSweeneyRedHat 2019-03-14 04:03:13 +08:00			`func getSystemContext(store storage.Store, defaults types.SystemContext, signaturePolicyPath string) types.SystemContext {`
Massive refactoring Pull most of the core logic from the CLI into a package that should be easier to consume as a library. Add a "config" command that updates the builder object's configuration. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> 2017-02-11 00:48:15 +08:00			`sc := &types.SystemContext{}`
Use configured registries to resolve image names When locating an image for pulling, inspection, or pushing, if we're given an image name that doesn't include a domain/registry, try building a set of candidate names using the configured registries as domains, and then pull/inspect/push using the first of those names that works. If a name that we're given corresponds to a prefix of the ID of a local image, skip completion and use the ID directly instead. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> Closes: #360 Approved by: rhatdan 2017-06-29 05:07:58 +08:00			`if defaults != nil {`
			`sc = defaults`
			`}`
Massive refactoring Pull most of the core logic from the CLI into a package that should be easier to consume as a library. Add a "config" command that updates the builder object's configuration. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> 2017-02-11 00:48:15 +08:00			`if signaturePolicyPath != "" {`
			`sc.SignaturePolicyPath = signaturePolicyPath`
			`}`
Allow rootless users to use the cache directory in homedir Currently rootless podman attempts to write to /var/lib/containers/cache and fails. This causes us to repeatedly push images that have already been pushed. This cache directory should be relative to the location of containers/storage and not always stored in the same directory. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com> Closes: #1411 Approved by: TomSweeneyRedHat 2019-03-14 04:03:13 +08:00			`if store != nil {`
			`if sc.BlobInfoCacheDir == "" {`
			`sc.BlobInfoCacheDir = filepath.Join(store.GraphRoot(), "cache")`
			`}`
Move pkg/chrootuser from libpod to buildah. We don't want to vendor anything from libpod into Buildah. We want to switch this around. Moving pkg content from libpod to Buildah allows us to fix this. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com> Closes: #1400 Approved by: giuseppe 2019-03-25 18:23:56 +08:00			`if sc.SystemRegistriesConfPath == "" && unshare.IsRootless() {`
Allow rootless users to use the cache directory in homedir Currently rootless podman attempts to write to /var/lib/containers/cache and fails. This causes us to repeatedly push images that have already been pushed. This cache directory should be relative to the location of containers/storage and not always stored in the same directory. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com> Closes: #1411 Approved by: TomSweeneyRedHat 2019-03-14 04:03:13 +08:00			`userRegistriesFile := filepath.Join(store.GraphRoot(), "registries.conf")`
			`if _, err := os.Stat(userRegistriesFile); err == nil {`
			`sc.SystemRegistriesConfPath = userRegistriesFile`
			`}`
common: support a per-user registries conf file Closes: #1124 Approved by: rhatdan 2018-10-23 18:42:35 +08:00			`}`
			`}`
Massive refactoring Pull most of the core logic from the CLI into a package that should be easier to consume as a library. Add a "config" command that updates the builder object's configuration. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> 2017-02-11 00:48:15 +08:00			`return sc`
			`}`
pull/from/commit/push: retry on most failures If PullOptions/BuilderOptions/CommitOptions/PushOptions includes a MaxRetries value other than 0, retry operations except for (currently) connection-refused, authentication, and no-such-repository/no-such-tag errors, at a default-but-configurable interval of 5 seconds. Set the default for `buildah pull/from/commit/push` to 3 retries at 2 second intervals. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> 2019-11-28 00:31:02 +08:00
			`func isRetryable(err error) bool {`
			`err = errors.Cause(err)`
			`type unwrapper interface {`
			`Unwrap() error`
			`}`
			`if unwrapper, ok := err.(unwrapper); ok {`
			`err = unwrapper.Unwrap()`
			`return isRetryable(err)`
			`}`
			`if registryError, ok := err.(errcode.Error); ok {`
			`switch registryError.Code {`
			`case errcode.ErrorCodeUnauthorized, errcodev2.ErrorCodeNameUnknown, errcodev2.ErrorCodeManifestUnknown:`
			`return false`
			`}`
			`return true`
			`}`
			`if op, ok := err.(*net.OpError); ok {`
			`return isRetryable(op.Err)`
			`}`
			`if url, ok := err.(*url.Error); ok {`
			`return isRetryable(url.Err)`
			`}`
Replace unix with syscall to allow vendoring into libpod unix constants do not work when vendored into libpod, because libpod can potentially be used on non unix platforms, so compilation blows up. Switching to syscall should fix this issue. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com> 2020-02-23 19:24:59 +08:00			`if errno, ok := err.(syscall.Errno); ok {`
			`if errno == syscall.ECONNREFUSED {`
pull/from/commit/push: retry on most failures If PullOptions/BuilderOptions/CommitOptions/PushOptions includes a MaxRetries value other than 0, retry operations except for (currently) connection-refused, authentication, and no-such-repository/no-such-tag errors, at a default-but-configurable interval of 5 seconds. Set the default for `buildah pull/from/commit/push` to 3 retries at 2 second intervals. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com> 2019-11-28 00:31:02 +08:00			`return false`
			`}`
			`}`
			`if errs, ok := err.(errcode.Errors); ok {`
			`// if this error is a group of errors, process them all in turn`
			`for i := range errs {`
			`if !isRetryable(errs[i]) {`
			`return false`
			`}`
			`}`
			`}`
			`if errs, ok := err.(*multierror.Error); ok {`
			`// if this error is a group of errors, process them all in turn`
			`for i := range errs.Errors {`
			`if !isRetryable(errs.Errors[i]) {`
			`return false`
			`}`
			`}`
			`}`
			`return true`
			`}`

			`func retryCopyImage(ctx context.Context, policyContext signature.PolicyContext, dest, src, registry types.ImageReference, action string, copyOptions cp.Options, maxRetries int, retryDelay time.Duration) ([]byte, error) {`
			`manifestBytes, err := cp.Image(ctx, policyContext, dest, src, copyOptions)`
			`for retries := 0; err != nil && isRetryable(err) && registry != nil && registry.Transport().Name() == docker.Transport.Name() && retries < maxRetries; retries++ {`
			`if retryDelay == 0 {`
			`retryDelay = 5 * time.Second`
			`}`
			`logrus.Infof("Warning: %s failed, retrying in %s ... (%d/%d)", action, retryDelay, retries+1, maxRetries)`
			`time.Sleep(retryDelay)`
			`manifestBytes, err = cp.Image(ctx, policyContext, dest, src, copyOptions)`
			`if err == nil {`
			`break`
			`}`
			`}`
			`return manifestBytes, err`
			`}`