Skip to content

Commit

Permalink
fix: chown bento directory (#121)
Browse files Browse the repository at this point in the history
  • Loading branch information
@yetone
yetone authored Nov 25, 2024
1 parent 7090b4e commit 7a20315
Show file tree
Hide file tree
Showing 4 changed files with 71 additions and 8 deletions.
63 changes: 58 additions & 5 deletions bento-image-builder/main.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -218,6 +218,7 @@ func checkS3ObjectExists(ctx context.Context, bucketName, objectKey string) (boo
logger = logger.With(slog.String("endpoint-url", s3EndpointURL))
}

logger.InfoContext(ctx, "checking if object exists...")
var stderr bytes.Buffer
cmd := exec.CommandContext(ctx, s5cmdPath, append(baseArgs, "ls", fmt.Sprintf("s3://%s/%s", bucketName, objectKey))...)
cmd.Stderr = &stderr
Expand All @@ -227,8 +228,10 @@ func checkS3ObjectExists(ctx context.Context, bucketName, objectKey string) (boo
logger.ErrorContext(ctx, "failed to check if object exists", slog.String("stderr", stderrStr))
return false, errors.Wrap(err, "failed to check if object exists")
}
logger.InfoContext(ctx, "object does not exist")
return false, nil
} else {
logger.InfoContext(ctx, "object exists")
return true, nil
}
}
Expand Down Expand Up @@ -270,7 +273,7 @@ func uploadToS3(ctx context.Context, bucketName, objectKey string, reader io.Rea
return nil
}

func createTarReader(srcDir, prefix string) io.ReadCloser {
func createTarReader(srcDir string) io.ReadCloser {
pr, pw := io.Pipe()

go func() {
Expand All @@ -289,7 +292,7 @@ func createTarReader(srcDir, prefix string) io.ReadCloser {
return errors.Wrap(err, "failed to get relative path")
}

tarPath := filepath.Join(prefix, relPath)
tarPath := relPath

if fi.Mode().IsDir() {
if file != srcDir {
Expand Down Expand Up @@ -377,6 +380,21 @@ const (
stargzLayerObjectKeyPrefix = "stargz-layers/"
)

func chownRecursive(ctx context.Context, root string, uid, gid int) error {
return errors.Wrap(filepath.Walk(root, func(path string, info os.FileInfo, err error) error {
if err != nil {
return errors.Wrap(err, "failed to walk the directory")
}
// Change ownership of the file/directory
err = os.Chown(path, uid, gid)
if err != nil {
L(ctx).ErrorContext(ctx, "failed to chown the file/directory", slog.String("path", path), slog.String("error", err.Error()))
return errors.Wrap(err, "failed to chown the file/directory")
}
return nil
}), "failed to walk the directory")
}

func build(ctx context.Context, opts buildOptions) error {
objectKeyPrefix := normalLayerObjectKeyPrefix
if opts.EnableStargz {
Expand All @@ -389,14 +407,49 @@ func build(ctx context.Context, opts buildOptions) error {
bentoLayerObjectKeyCh := make(chan string, 1)
bentoLayerUploadErrCh := make(chan error, 1)

logger.InfoContext(ctx, "preparing bento files...")
// Create temporary directory
tmpDir, err := os.MkdirTemp("", "bento-layer-*")
if err != nil {
logger.ErrorContext(ctx, "failed to create temporary directory", slog.String("error", err.Error()))
return errors.Wrap(err, "failed to create temporary directory")
}
defer os.RemoveAll(tmpDir)

tmpBentoDir := filepath.Join(tmpDir, "home/bentoml/bento")
err = os.MkdirAll(tmpBentoDir, 0755)
if err != nil {
logger.ErrorContext(ctx, "failed to create temporary directory", slog.String("error", err.Error()))
return errors.Wrap(err, "failed to create temporary directory")
}

logger.InfoContext(ctx, "copying files to temporary directory...", slog.String("path", tmpBentoDir))
// Copy all files to temporary directory
cmd := exec.CommandContext(ctx, "cp", "-a", opts.ContextPath+"/.", tmpBentoDir) // nolint:gosec
var stderr bytes.Buffer
cmd.Stderr = &stderr
if err := cmd.Run(); err != nil {
logger.ErrorContext(ctx, "failed to copy files to temporary directory", slog.String("error", err.Error()))
return errors.Wrapf(err, "failed to copy files to temporary directory, stderr: %s", stderr.String())
}

// Change ownership of temporary directory
logger.InfoContext(ctx, "chown -R 1034:1034", slog.String("path", filepath.Dir(tmpBentoDir)))
err = chownRecursive(ctx, filepath.Dir(tmpBentoDir), 1034, 1034)
if err != nil {
logger.ErrorContext(ctx, "failed to chown temporary directory", slog.String("error", err.Error()))
return errors.Wrap(err, "failed to chown temporary directory")
}
logger.InfoContext(ctx, "chown done")

logger.InfoContext(ctx, "chmod a+x env/docker/entrypoint.sh")
err := os.Chmod(filepath.Join(opts.ContextPath, "env/docker/entrypoint.sh"), 0755)
err = os.Chmod(filepath.Join(tmpBentoDir, "env/docker/entrypoint.sh"), 0755)
if err != nil {
err = errors.Wrap(err, "failed to chmod +x env/docker/entrypoint.sh")
return err
}

bentoHash, err := common.HashFile(opts.ContextPath)
bentoHash, err := common.HashFile(tmpBentoDir)
logger.InfoContext(ctx, "bento hash", slog.String("hash", bentoHash))
if err != nil {
err = errors.Wrap(err, "failed to get hash of file")
Expand All @@ -415,7 +468,7 @@ func build(ctx context.Context, opts buildOptions) error {
logger := logger.With(slog.String("object-key", bentoLayerObjectKey))
logger.InfoContext(ctx, "bento layer does not exist, building bento layer...")
logger.InfoContext(ctx, "compressing and streaming upload of bento layer to S3...")
bentoTarReader := createTarReader(opts.ContextPath, "home/bentoml/bento")
bentoTarReader := createTarReader(tmpDir)
defer bentoTarReader.Close()
err = streamingCompressAndUpload(ctx, opts.S3Bucket, bentoLayerObjectKey, bentoTarReader, opts.EnableStargz)
if err != nil {
Expand Down
5 changes: 4 additions & 1 deletion bento-image-snapshotter/fs/s3.go
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,7 @@
package fs

import (
"bytes"
"context"
"fmt"
"os"
Expand Down Expand Up @@ -103,12 +104,14 @@ func (o *S3FileSystem) downloadLayerFromS3(ctx context.Context, bucketName, laye
s3Path := fmt.Sprintf("s3://%s/%s", bucketName, layerKey)

startTime := time.Now()
var stderr bytes.Buffer
cmd := exec.CommandContext(ctx, "sh", "-c", fmt.Sprintf("s5cmd cat %s | pzstd -d | tar -xf -", s3Path)) // nolint:gosec
cmd.Stderr = &stderr
cmd.Dir = tempName

err := cmd.Run()
if err != nil {
return errors.Wrapf(err, "failed to run command: %s", stringifyCmd(cmd))
return errors.Wrapf(err, "failed to run command: %s, stderr: %s", stringifyCmd(cmd), stderr.String())
}

duration := time.Since(startTime)
Expand Down
3 changes: 2 additions & 1 deletion bento-image-snapshotter/fs/stargzs3/resolvehandler.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -79,7 +79,8 @@ func (r *ResolveHandler) Handle(ctx context.Context, desc ocispec.Descriptor) (r
objectKey := desc.Annotations[common.DescriptorAnnotationObjectKey]
size, err := statS3ObjectSize(ctx, client, bucket, objectKey)
if err != nil {
return nil, 0, err
log.G(ctx).Errorf("failed to stat %s/%s: %v", bucket, objectKey, err)
return nil, 0, nil
}
return &fetcher{bucket: bucket, objectKey: objectKey, size: size, client: client}, size, nil
}
Expand Down
8 changes: 7 additions & 1 deletion helm/bento-image-snapshotter/templates/daemonset-systemd.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -51,6 +51,7 @@ spec:
- |-
set -x
etcContainerd=${HOST_MOUNT_DIR}{{ .Values.containerRuntime.containerd.configFile }}
containerd_namespace=k8s.io
toml set --overwrite $etcContainerd plugins.\"io.containerd.grpc.v1.cri\".containerd.disable_snapshot_annotations false
toml set --overwrite $etcContainerd plugins.\"io.containerd.grpc.v1.cri\".containerd.snapshotter bento
Expand All @@ -65,6 +66,9 @@ spec:
type = "snapshot"
address = "/run/bento-image-snapshotter/grpc.sock"
EOF
echo "Removing all images and contents in containerd..."
ctr -n $containerd_namespace image ls | tail +2 | awk '{print \$1}' | xargs -I {} ctr -n $containerd_namespace image rm {} && ctr -n $containerd_namespace content ls | tail +2 | awk '{print \$1}' | xargs -I {} ctr -n $containerd_namespace content rm {}
echo "Removed all images and contents in containerd"
else
# Add only [proxy_plugins.bento-image] if [proxy_plugins] exists
toml set --overwrite $etcContainerd proxy_plugins.bento.type "snapshot"
Expand Down Expand Up @@ -104,7 +108,9 @@ spec:
nsenter -t 1 -m systemctl restart containerd.service
echo "containerd has been restarted."
nsenter -t 1 -m systemctl status containerd.service
echo "bento-image snapshotter has been started."
echo "restarting bento-image-snapshotter..."
nsenter -t 1 -m systemctl restart bento-image-snapshotter.service
echo "bento-image snapshotter has been restarted."
nsenter -t 1 -m systemctl status bento-image-snapshotter.service
volumeMounts:
Expand Down

0 comments on commit 7a20315

Please sign in to comment.