plugins/snapshots/windows/common.go - third_party/containerd - Git at Google

 //go:build windows
 // +build windows

 /*
    Copyright The containerd Authors.

    Licensed under the Apache License, Version 2.0 (the "License");
    you may not use this file except in compliance with the License.
    You may obtain a copy of the License at

        http://www.apache.org/licenses/LICENSE-2.0

    Unless required by applicable law or agreed to in writing, software
    distributed under the License is distributed on an "AS IS" BASIS,
    WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    See the License for the specific language governing permissions and
    limitations under the License.
 */

 package windows

 import (
 	"context"
 	"errors"
 	"fmt"
 	"io"
 	"os"
 	"path/filepath"
 	"strconv"

 	"github.com/Microsoft/hcsshim"
 	"github.com/containerd/containerd/v2/core/snapshots"
 	"github.com/containerd/containerd/v2/core/snapshots/storage"
 	"github.com/containerd/continuity/fs"
 	"github.com/containerd/log"
 )

 // windowsBaseSnapshotter is a type that implements common functionality required by both windows & cimfs
 // snapshotters (sort of a base type that windows & cimfs snapshotter types derive from - however, windowsBaseSnapshotter does NOT impelement the full Snapshotter interface).  Some functions
 // (like Stat, Update) that are identical for both snapshotters are directly implemented in this base
 // snapshotter and such functions handle database transaction creation etc. However, the functions that are
 // not common don't create a transaction to allow the caller the flexibility of deciding whether to commit or
 // abort the transaction.
 type windowsBaseSnapshotter struct {
 	root string
 	ms   *storage.MetaStore
 	info hcsshim.DriverInfo
 }

 func newBaseSnapshotter(root string) (*windowsBaseSnapshotter, error) {
 	if err := os.MkdirAll(root, 0700); err != nil {
 		return nil, err
 	}

 	ms, err := storage.NewMetaStore(filepath.Join(root, "metadata.db"))
 	if err != nil {
 		return nil, err
 	}

 	if err := os.Mkdir(filepath.Join(root, "snapshots"), 0700); err != nil && !os.IsExist(err) {
 		return nil, err
 	}

 	return &windowsBaseSnapshotter{
 		root: root,
 		ms:   ms,
 		info: hcsshim.DriverInfo{HomeDir: filepath.Join(root, "snapshots")},
 	}, nil
 }

 func (w *windowsBaseSnapshotter) getSnapshotDir(id string) string {
 	return filepath.Join(w.root, "snapshots", id)
 }

 func (w *windowsBaseSnapshotter) parentIDsToParentPaths(parentIDs []string) []string {
 	parentLayerPaths := make([]string, 0, len(parentIDs))
 	for _, ID := range parentIDs {
 		parentLayerPaths = append(parentLayerPaths, w.getSnapshotDir(ID))
 	}
 	return parentLayerPaths
 }

 func (w *windowsBaseSnapshotter) Stat(ctx context.Context, key string) (info snapshots.Info, err error) {
 	err = w.ms.WithTransaction(ctx, false, func(ctx context.Context) error {
 		_, info, _, err = storage.GetInfo(ctx, key)
 		return err
 	})
 	if err != nil {
 		return snapshots.Info{}, err
 	}

 	return info, nil
 }

 func (w *windowsBaseSnapshotter) Update(ctx context.Context, info snapshots.Info, fieldpaths ...string) (_ snapshots.Info, err error) {
 	err = w.ms.WithTransaction(ctx, true, func(ctx context.Context) error {
 		info, err = storage.UpdateInfo(ctx, info, fieldpaths...)
 		return err
 	})
 	if err != nil {
 		return snapshots.Info{}, err
 	}

 	return info, nil
 }

 func (w *windowsBaseSnapshotter) Usage(ctx context.Context, key string) (usage snapshots.Usage, err error) {
 	var (
 		id   string
 		info snapshots.Info
 	)

 	err = w.ms.WithTransaction(ctx, false, func(ctx context.Context) error {
 		id, info, usage, err = storage.GetInfo(ctx, key)
 		return err
 	})
 	if err != nil {
 		return snapshots.Usage{}, err
 	}

 	if info.Kind == snapshots.KindActive {
 		path := w.getSnapshotDir(id)
 		du, err := fs.DiskUsage(ctx, path)
 		if err != nil {
 			return snapshots.Usage{}, err
 		}

 		usage = snapshots.Usage(du)
 	}

 	return usage, nil
 }

 // Walk the committed snapshots.
 func (w *windowsBaseSnapshotter) Walk(ctx context.Context, fn snapshots.WalkFunc, fs ...string) error {
 	return w.ms.WithTransaction(ctx, false, func(ctx context.Context) error {
 		return storage.WalkInfo(ctx, fn, fs...)
 	})
 }

 // preRemove prepares for removal of a snapshot by first renaming the snapshot directory and if that succeeds
 // removing the snapshot info from the database. Then the caller can decide how to remove the actual renamed
 // snapshot directory. Returns the new 'ID' (i.e the directory name after rename).
 func (w *windowsBaseSnapshotter) preRemove(ctx context.Context, key string) (string, error) {
 	var (
 		renamed, path, renamedID string
 		restore                  bool
 	)

 	err := w.ms.WithTransaction(ctx, true, func(ctx context.Context) error {
 		id, _, err := storage.Remove(ctx, key)
 		if err != nil {
 			return fmt.Errorf("failed to remove: %w", err)
 		}

 		path = w.getSnapshotDir(id)
 		renamedID = "rm-" + id
 		renamed = w.getSnapshotDir(renamedID)
 		if err = os.Rename(path, renamed); err != nil && !os.IsNotExist(err) {
 			if !os.IsPermission(err) {
 				return err
 			}
 			// If permission denied, it's possible that the scratch is still mounted, an
 			// artifact after a hard daemon crash for example. Worth a shot to try deactivating it
 			// before retrying the rename.
 			var (
 				home, layerID = filepath.Split(path)
 				di            = hcsshim.DriverInfo{
 					HomeDir: home,
 				}
 			)

 			if deactivateErr := hcsshim.DeactivateLayer(di, layerID); deactivateErr != nil && !os.IsNotExist(deactivateErr) {
 				return fmt.Errorf("failed to deactivate layer following failed rename: %s: %w", deactivateErr, err)
 			}

 			if renameErr := os.Rename(path, renamed); renameErr != nil && !os.IsNotExist(renameErr) {
 				return fmt.Errorf("second rename attempt following detach failed: %s: %w", renameErr, err)
 			}
 		}

 		restore = true
 		return nil
 	})
 	if err != nil {
 		if restore { // failed to commit
 			if err1 := os.Rename(renamed, path); err1 != nil {
 				// May cause inconsistent data on disk
 				log.G(ctx).WithError(err1).WithField("path", renamed).Error("Failed to rename after failed commit")
 			}
 		}
 		return "", err
 	}
 	return renamedID, nil
 }

 // Close closes the snapshotter
 func (w *windowsBaseSnapshotter) Close() error {
 	return w.ms.Close()
 }

 // This handles creating the UVMs scratch layer.
 func (w *windowsBaseSnapshotter) createUVMScratchLayer(ctx context.Context, snDir string, parentLayers []string) error {
 	parentLen := len(parentLayers)
 	if parentLen == 0 {
 		return errors.New("no parent layers present")
 	}
 	baseLayer := parentLayers[parentLen-1]

 	// Make sure base layer has a UtilityVM folder.
 	uvmPath := filepath.Join(baseLayer, "UtilityVM")
 	if _, err := os.Stat(uvmPath); os.IsNotExist(err) {
 		return fmt.Errorf("failed to find UtilityVM directory in base layer %q: %w", baseLayer, err)
 	}

 	templateDiffDisk := filepath.Join(uvmPath, "SystemTemplate.vhdx")

 	// Check if SystemTemplate disk doesn't exist for some reason (this should be made during the unpacking
 	// of the base layer).
 	if _, err := os.Stat(templateDiffDisk); os.IsNotExist(err) {
 		return fmt.Errorf("%q does not exist in Utility VM image", templateDiffDisk)
 	}

 	// Move the sandbox.vhdx into a nested vm folder to avoid clashing with a containers sandbox.vhdx.
 	vmScratchDir := filepath.Join(snDir, "vm")
 	if err := os.MkdirAll(vmScratchDir, 0777); err != nil {
 		return fmt.Errorf("failed to make `vm` directory for vm's scratch space: %w", err)
 	}

 	return copyScratchDisk(templateDiffDisk, filepath.Join(vmScratchDir, "sandbox.vhdx"))
 }

 func copyScratchDisk(source, dest string) error {
 	scratchSource, err := os.OpenFile(source, os.O_RDWR, 0700)
 	if err != nil {
 		return fmt.Errorf("failed to open %s: %w", source, err)
 	}
 	defer scratchSource.Close()

 	f, err := os.OpenFile(dest, os.O_RDWR|os.O_CREATE, 0700)
 	if err != nil {
 		return fmt.Errorf("failed to create sandbox.vhdx in snapshot: %w", err)
 	}
 	defer f.Close()

 	if _, err := io.Copy(f, scratchSource); err != nil {
 		os.Remove(dest)
 		return fmt.Errorf("failed to copy cached %q to %q in snapshot: %w", source, dest, err)
 	}
 	return nil
 }

 func getRequestedScratchSize(ctx context.Context, snapshotInfo snapshots.Info) (uint64, error) {
 	var sizeInBytes uint64
 	var err error
 	if sizeGBstr, ok := snapshotInfo.Labels[rootfsSizeInGBLabel]; ok {
 		log.G(ctx).Warnf("%q label is deprecated, please use %q instead.", rootfsSizeInGBLabel, rootfsSizeInBytesLabel)

 		sizeInGB, err := strconv.ParseUint(sizeGBstr, 10, 32)
 		if err != nil {
 			return 0, fmt.Errorf("failed to parse label %q=%q: %w", rootfsSizeInGBLabel, sizeGBstr, err)
 		}
 		sizeInBytes = sizeInGB * 1024 * 1024 * 1024
 	}

 	// Prefer the newer label in bytes over the deprecated Windows specific GB variant.
 	if sizeBytesStr, ok := snapshotInfo.Labels[rootfsSizeInBytesLabel]; ok {
 		sizeInBytes, err = strconv.ParseUint(sizeBytesStr, 10, 64)
 		if err != nil {
 			return 0, fmt.Errorf("failed to parse label %q=%q: %w", rootfsSizeInBytesLabel, sizeBytesStr, err)
 		}
 	}
 	return sizeInBytes, nil
 }
	//go:build windows
	// +build windows

	/*
	Copyright The containerd Authors.

	Licensed under the Apache License, Version 2.0 (the "License");
	you may not use this file except in compliance with the License.
	You may obtain a copy of the License at

	http://www.apache.org/licenses/LICENSE-2.0

	Unless required by applicable law or agreed to in writing, software
	distributed under the License is distributed on an "AS IS" BASIS,
	WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	See the License for the specific language governing permissions and
	limitations under the License.
	*/

	package windows

	import (
	"context"
	"errors"
	"fmt"
	"io"
	"os"
	"path/filepath"
	"strconv"

	"github.com/Microsoft/hcsshim"
	"github.com/containerd/containerd/v2/core/snapshots"
	"github.com/containerd/containerd/v2/core/snapshots/storage"
	"github.com/containerd/continuity/fs"
	"github.com/containerd/log"
	)

	// windowsBaseSnapshotter is a type that implements common functionality required by both windows & cimfs
	// snapshotters (sort of a base type that windows & cimfs snapshotter types derive from - however, windowsBaseSnapshotter does NOT impelement the full Snapshotter interface). Some functions
	// (like Stat, Update) that are identical for both snapshotters are directly implemented in this base
	// snapshotter and such functions handle database transaction creation etc. However, the functions that are
	// not common don't create a transaction to allow the caller the flexibility of deciding whether to commit or
	// abort the transaction.
	type windowsBaseSnapshotter struct {
	root string
	ms *storage.MetaStore
	info hcsshim.DriverInfo
	}

	func newBaseSnapshotter(root string) (*windowsBaseSnapshotter, error) {
	if err := os.MkdirAll(root, 0700); err != nil {
	return nil, err
	}

	ms, err := storage.NewMetaStore(filepath.Join(root, "metadata.db"))
	if err != nil {
	return nil, err
	}

	if err := os.Mkdir(filepath.Join(root, "snapshots"), 0700); err != nil && !os.IsExist(err) {
	return nil, err
	}

	return &windowsBaseSnapshotter{
	root: root,
	ms: ms,
	info: hcsshim.DriverInfo{HomeDir: filepath.Join(root, "snapshots")},
	}, nil
	}

	func (w *windowsBaseSnapshotter) getSnapshotDir(id string) string {
	return filepath.Join(w.root, "snapshots", id)
	}

	func (w *windowsBaseSnapshotter) parentIDsToParentPaths(parentIDs []string) []string {
	parentLayerPaths := make([]string, 0, len(parentIDs))
	for _, ID := range parentIDs {
	parentLayerPaths = append(parentLayerPaths, w.getSnapshotDir(ID))
	}
	return parentLayerPaths
	}

	func (w *windowsBaseSnapshotter) Stat(ctx context.Context, key string) (info snapshots.Info, err error) {
	err = w.ms.WithTransaction(ctx, false, func(ctx context.Context) error {
	_, info, _, err = storage.GetInfo(ctx, key)
	return err
	})
	if err != nil {
	return snapshots.Info{}, err
	}

	return info, nil
	}

	func (w *windowsBaseSnapshotter) Update(ctx context.Context, info snapshots.Info, fieldpaths ...string) (_ snapshots.Info, err error) {
	err = w.ms.WithTransaction(ctx, true, func(ctx context.Context) error {
	info, err = storage.UpdateInfo(ctx, info, fieldpaths...)
	return err
	})
	if err != nil {
	return snapshots.Info{}, err
	}

	return info, nil
	}

	func (w *windowsBaseSnapshotter) Usage(ctx context.Context, key string) (usage snapshots.Usage, err error) {
	var (
	id string
	info snapshots.Info
	)

	err = w.ms.WithTransaction(ctx, false, func(ctx context.Context) error {
	id, info, usage, err = storage.GetInfo(ctx, key)
	return err
	})
	if err != nil {
	return snapshots.Usage{}, err
	}

	if info.Kind == snapshots.KindActive {
	path := w.getSnapshotDir(id)
	du, err := fs.DiskUsage(ctx, path)
	if err != nil {
	return snapshots.Usage{}, err
	}

	usage = snapshots.Usage(du)
	}

	return usage, nil
	}

	// Walk the committed snapshots.
	func (w *windowsBaseSnapshotter) Walk(ctx context.Context, fn snapshots.WalkFunc, fs ...string) error {
	return w.ms.WithTransaction(ctx, false, func(ctx context.Context) error {
	return storage.WalkInfo(ctx, fn, fs...)
	})
	}

	// preRemove prepares for removal of a snapshot by first renaming the snapshot directory and if that succeeds
	// removing the snapshot info from the database. Then the caller can decide how to remove the actual renamed
	// snapshot directory. Returns the new 'ID' (i.e the directory name after rename).
	func (w *windowsBaseSnapshotter) preRemove(ctx context.Context, key string) (string, error) {
	var (
	renamed, path, renamedID string
	restore bool
	)

	err := w.ms.WithTransaction(ctx, true, func(ctx context.Context) error {
	id, _, err := storage.Remove(ctx, key)
	if err != nil {
	return fmt.Errorf("failed to remove: %w", err)
	}

	path = w.getSnapshotDir(id)
	renamedID = "rm-" + id
	renamed = w.getSnapshotDir(renamedID)
	if err = os.Rename(path, renamed); err != nil && !os.IsNotExist(err) {
	if !os.IsPermission(err) {
	return err
	}
	// If permission denied, it's possible that the scratch is still mounted, an
	// artifact after a hard daemon crash for example. Worth a shot to try deactivating it
	// before retrying the rename.
	var (
	home, layerID = filepath.Split(path)
	di = hcsshim.DriverInfo{
	HomeDir: home,
	}
	)

	if deactivateErr := hcsshim.DeactivateLayer(di, layerID); deactivateErr != nil && !os.IsNotExist(deactivateErr) {
	return fmt.Errorf("failed to deactivate layer following failed rename: %s: %w", deactivateErr, err)
	}

	if renameErr := os.Rename(path, renamed); renameErr != nil && !os.IsNotExist(renameErr) {
	return fmt.Errorf("second rename attempt following detach failed: %s: %w", renameErr, err)
	}
	}

	restore = true
	return nil
	})
	if err != nil {
	if restore { // failed to commit
	if err1 := os.Rename(renamed, path); err1 != nil {
	// May cause inconsistent data on disk
	log.G(ctx).WithError(err1).WithField("path", renamed).Error("Failed to rename after failed commit")
	}
	}
	return "", err
	}
	return renamedID, nil
	}

	// Close closes the snapshotter
	func (w *windowsBaseSnapshotter) Close() error {
	return w.ms.Close()
	}

	// This handles creating the UVMs scratch layer.
	func (w *windowsBaseSnapshotter) createUVMScratchLayer(ctx context.Context, snDir string, parentLayers []string) error {
	parentLen := len(parentLayers)
	if parentLen == 0 {
	return errors.New("no parent layers present")
	}
	baseLayer := parentLayers[parentLen-1]

	// Make sure base layer has a UtilityVM folder.
	uvmPath := filepath.Join(baseLayer, "UtilityVM")
	if _, err := os.Stat(uvmPath); os.IsNotExist(err) {
	return fmt.Errorf("failed to find UtilityVM directory in base layer %q: %w", baseLayer, err)
	}

	templateDiffDisk := filepath.Join(uvmPath, "SystemTemplate.vhdx")

	// Check if SystemTemplate disk doesn't exist for some reason (this should be made during the unpacking
	// of the base layer).
	if _, err := os.Stat(templateDiffDisk); os.IsNotExist(err) {
	return fmt.Errorf("%q does not exist in Utility VM image", templateDiffDisk)
	}

	// Move the sandbox.vhdx into a nested vm folder to avoid clashing with a containers sandbox.vhdx.
	vmScratchDir := filepath.Join(snDir, "vm")
	if err := os.MkdirAll(vmScratchDir, 0777); err != nil {
	return fmt.Errorf("failed to make `vm` directory for vm's scratch space: %w", err)
	}

	return copyScratchDisk(templateDiffDisk, filepath.Join(vmScratchDir, "sandbox.vhdx"))
	}

	func copyScratchDisk(source, dest string) error {
	scratchSource, err := os.OpenFile(source, os.O_RDWR, 0700)
	if err != nil {
	return fmt.Errorf("failed to open %s: %w", source, err)
	}
	defer scratchSource.Close()

	f, err := os.OpenFile(dest, os.O_RDWR\|os.O_CREATE, 0700)
	if err != nil {
	return fmt.Errorf("failed to create sandbox.vhdx in snapshot: %w", err)
	}
	defer f.Close()

	if _, err := io.Copy(f, scratchSource); err != nil {
	os.Remove(dest)
	return fmt.Errorf("failed to copy cached %q to %q in snapshot: %w", source, dest, err)
	}
	return nil
	}

	func getRequestedScratchSize(ctx context.Context, snapshotInfo snapshots.Info) (uint64, error) {
	var sizeInBytes uint64
	var err error
	if sizeGBstr, ok := snapshotInfo.Labels[rootfsSizeInGBLabel]; ok {
	log.G(ctx).Warnf("%q label is deprecated, please use %q instead.", rootfsSizeInGBLabel, rootfsSizeInBytesLabel)

	sizeInGB, err := strconv.ParseUint(sizeGBstr, 10, 32)
	if err != nil {
	return 0, fmt.Errorf("failed to parse label %q=%q: %w", rootfsSizeInGBLabel, sizeGBstr, err)
	}
	sizeInBytes = sizeInGB * 1024 * 1024 * 1024
	}

	// Prefer the newer label in bytes over the deprecated Windows specific GB variant.
	if sizeBytesStr, ok := snapshotInfo.Labels[rootfsSizeInBytesLabel]; ok {
	sizeInBytes, err = strconv.ParseUint(sizeBytesStr, 10, 64)
	if err != nil {
	return 0, fmt.Errorf("failed to parse label %q=%q: %w", rootfsSizeInBytesLabel, sizeBytesStr, err)
	}
	}
	return sizeInBytes, nil
	}