github.com/Heebron/moby@v0.0.0-20221111184709-6eab4f55faf7/image/tarexport/save.go (about) 1 package tarexport // import "github.com/docker/docker/image/tarexport" 2 3 import ( 4 "encoding/json" 5 "fmt" 6 "io" 7 "os" 8 "path" 9 "path/filepath" 10 "time" 11 12 "github.com/docker/distribution" 13 "github.com/docker/distribution/reference" 14 "github.com/docker/docker/image" 15 v1 "github.com/docker/docker/image/v1" 16 "github.com/docker/docker/layer" 17 "github.com/docker/docker/pkg/archive" 18 "github.com/docker/docker/pkg/system" 19 "github.com/moby/sys/sequential" 20 "github.com/opencontainers/go-digest" 21 "github.com/pkg/errors" 22 ) 23 24 type imageDescriptor struct { 25 refs []reference.NamedTagged 26 layers []string 27 image *image.Image 28 layerRef layer.Layer 29 } 30 31 type saveSession struct { 32 *tarexporter 33 outDir string 34 images map[image.ID]*imageDescriptor 35 savedLayers map[string]struct{} 36 diffIDPaths map[layer.DiffID]string // cache every diffID blob to avoid duplicates 37 } 38 39 func (l *tarexporter) Save(names []string, outStream io.Writer) error { 40 images, err := l.parseNames(names) 41 if err != nil { 42 return err 43 } 44 45 // Release all the image top layer references 46 defer l.releaseLayerReferences(images) 47 return (&saveSession{tarexporter: l, images: images}).save(outStream) 48 } 49 50 // parseNames will parse the image names to a map which contains image.ID to *imageDescriptor. 51 // Each imageDescriptor holds an image top layer reference named 'layerRef'. It is taken here, should be released later. 52 func (l *tarexporter) parseNames(names []string) (desc map[image.ID]*imageDescriptor, rErr error) { 53 imgDescr := make(map[image.ID]*imageDescriptor) 54 defer func() { 55 if rErr != nil { 56 l.releaseLayerReferences(imgDescr) 57 } 58 }() 59 60 addAssoc := func(id image.ID, ref reference.Named) error { 61 if _, ok := imgDescr[id]; !ok { 62 descr := &imageDescriptor{} 63 if err := l.takeLayerReference(id, descr); err != nil { 64 return err 65 } 66 imgDescr[id] = descr 67 } 68 69 if ref != nil { 70 if _, ok := ref.(reference.Canonical); ok { 71 return nil 72 } 73 tagged, ok := reference.TagNameOnly(ref).(reference.NamedTagged) 74 if !ok { 75 return nil 76 } 77 78 for _, t := range imgDescr[id].refs { 79 if tagged.String() == t.String() { 80 return nil 81 } 82 } 83 imgDescr[id].refs = append(imgDescr[id].refs, tagged) 84 } 85 return nil 86 } 87 88 for _, name := range names { 89 ref, err := reference.ParseAnyReference(name) 90 if err != nil { 91 return nil, err 92 } 93 namedRef, ok := ref.(reference.Named) 94 if !ok { 95 // Check if digest ID reference 96 if digested, ok := ref.(reference.Digested); ok { 97 id := image.IDFromDigest(digested.Digest()) 98 if err := addAssoc(id, nil); err != nil { 99 return nil, err 100 } 101 continue 102 } 103 return nil, errors.Errorf("invalid reference: %v", name) 104 } 105 106 if reference.FamiliarName(namedRef) == string(digest.Canonical) { 107 imgID, err := l.is.Search(name) 108 if err != nil { 109 return nil, err 110 } 111 if err := addAssoc(imgID, nil); err != nil { 112 return nil, err 113 } 114 continue 115 } 116 if reference.IsNameOnly(namedRef) { 117 assocs := l.rs.ReferencesByName(namedRef) 118 for _, assoc := range assocs { 119 if err := addAssoc(image.IDFromDigest(assoc.ID), assoc.Ref); err != nil { 120 return nil, err 121 } 122 } 123 if len(assocs) == 0 { 124 imgID, err := l.is.Search(name) 125 if err != nil { 126 return nil, err 127 } 128 if err := addAssoc(imgID, nil); err != nil { 129 return nil, err 130 } 131 } 132 continue 133 } 134 id, err := l.rs.Get(namedRef) 135 if err != nil { 136 return nil, err 137 } 138 if err := addAssoc(image.IDFromDigest(id), namedRef); err != nil { 139 return nil, err 140 } 141 } 142 return imgDescr, nil 143 } 144 145 // takeLayerReference will take/Get the image top layer reference 146 func (l *tarexporter) takeLayerReference(id image.ID, imgDescr *imageDescriptor) error { 147 img, err := l.is.Get(id) 148 if err != nil { 149 return err 150 } 151 if os := img.OperatingSystem(); !system.IsOSSupported(os) { 152 return fmt.Errorf("os %q is not supported", os) 153 } 154 imgDescr.image = img 155 topLayerID := img.RootFS.ChainID() 156 if topLayerID == "" { 157 return nil 158 } 159 layer, err := l.lss.Get(topLayerID) 160 if err != nil { 161 return err 162 } 163 imgDescr.layerRef = layer 164 return nil 165 } 166 167 // releaseLayerReferences will release all the image top layer references 168 func (l *tarexporter) releaseLayerReferences(imgDescr map[image.ID]*imageDescriptor) error { 169 for _, descr := range imgDescr { 170 if descr.layerRef != nil { 171 l.lss.Release(descr.layerRef) 172 } 173 } 174 return nil 175 } 176 177 func (s *saveSession) save(outStream io.Writer) error { 178 s.savedLayers = make(map[string]struct{}) 179 s.diffIDPaths = make(map[layer.DiffID]string) 180 181 // get image json 182 tempDir, err := os.MkdirTemp("", "docker-export-") 183 if err != nil { 184 return err 185 } 186 defer os.RemoveAll(tempDir) 187 188 s.outDir = tempDir 189 reposLegacy := make(map[string]map[string]string) 190 191 var manifest []manifestItem 192 var parentLinks []parentLink 193 194 for id, imageDescr := range s.images { 195 foreignSrcs, err := s.saveImage(id) 196 if err != nil { 197 return err 198 } 199 200 var repoTags []string 201 var layers []string 202 203 for _, ref := range imageDescr.refs { 204 familiarName := reference.FamiliarName(ref) 205 if _, ok := reposLegacy[familiarName]; !ok { 206 reposLegacy[familiarName] = make(map[string]string) 207 } 208 reposLegacy[familiarName][ref.Tag()] = imageDescr.layers[len(imageDescr.layers)-1] 209 repoTags = append(repoTags, reference.FamiliarString(ref)) 210 } 211 212 for _, l := range imageDescr.layers { 213 // IMPORTANT: We use path, not filepath here to ensure the layers 214 // in the manifest use Unix-style forward-slashes. 215 layers = append(layers, path.Join(l, legacyLayerFileName)) 216 } 217 218 manifest = append(manifest, manifestItem{ 219 Config: id.Digest().Encoded() + ".json", 220 RepoTags: repoTags, 221 Layers: layers, 222 LayerSources: foreignSrcs, 223 }) 224 225 parentID, _ := s.is.GetParent(id) 226 parentLinks = append(parentLinks, parentLink{id, parentID}) 227 s.tarexporter.loggerImgEvent.LogImageEvent(id.String(), id.String(), "save") 228 } 229 230 for i, p := range validatedParentLinks(parentLinks) { 231 if p.parentID != "" { 232 manifest[i].Parent = p.parentID 233 } 234 } 235 236 if len(reposLegacy) > 0 { 237 reposFile := filepath.Join(tempDir, legacyRepositoriesFileName) 238 rf, err := os.OpenFile(reposFile, os.O_RDWR|os.O_CREATE|os.O_TRUNC, 0644) 239 if err != nil { 240 return err 241 } 242 243 if err := json.NewEncoder(rf).Encode(reposLegacy); err != nil { 244 rf.Close() 245 return err 246 } 247 248 rf.Close() 249 250 if err := system.Chtimes(reposFile, time.Unix(0, 0), time.Unix(0, 0)); err != nil { 251 return err 252 } 253 } 254 255 manifestFileName := filepath.Join(tempDir, manifestFileName) 256 f, err := os.OpenFile(manifestFileName, os.O_RDWR|os.O_CREATE|os.O_TRUNC, 0644) 257 if err != nil { 258 return err 259 } 260 261 if err := json.NewEncoder(f).Encode(manifest); err != nil { 262 f.Close() 263 return err 264 } 265 266 f.Close() 267 268 if err := system.Chtimes(manifestFileName, time.Unix(0, 0), time.Unix(0, 0)); err != nil { 269 return err 270 } 271 272 fs, err := archive.Tar(tempDir, archive.Uncompressed) 273 if err != nil { 274 return err 275 } 276 defer fs.Close() 277 278 _, err = io.Copy(outStream, fs) 279 return err 280 } 281 282 func (s *saveSession) saveImage(id image.ID) (map[layer.DiffID]distribution.Descriptor, error) { 283 img := s.images[id].image 284 if len(img.RootFS.DiffIDs) == 0 { 285 return nil, fmt.Errorf("empty export - not implemented") 286 } 287 288 var parent digest.Digest 289 var layers []string 290 var foreignSrcs map[layer.DiffID]distribution.Descriptor 291 for i := range img.RootFS.DiffIDs { 292 v1Img := image.V1Image{ 293 // This is for backward compatibility used for 294 // pre v1.9 docker. 295 Created: time.Unix(0, 0), 296 } 297 if i == len(img.RootFS.DiffIDs)-1 { 298 v1Img = img.V1Image 299 } 300 rootFS := *img.RootFS 301 rootFS.DiffIDs = rootFS.DiffIDs[:i+1] 302 v1ID, err := v1.CreateID(v1Img, rootFS.ChainID(), parent) 303 if err != nil { 304 return nil, err 305 } 306 307 v1Img.ID = v1ID.Encoded() 308 if parent != "" { 309 v1Img.Parent = parent.Encoded() 310 } 311 312 v1Img.OS = img.OS 313 src, err := s.saveLayer(rootFS.ChainID(), v1Img, img.Created) 314 if err != nil { 315 return nil, err 316 } 317 layers = append(layers, v1Img.ID) 318 parent = v1ID 319 if src.Digest != "" { 320 if foreignSrcs == nil { 321 foreignSrcs = make(map[layer.DiffID]distribution.Descriptor) 322 } 323 foreignSrcs[img.RootFS.DiffIDs[i]] = src 324 } 325 } 326 327 configFile := filepath.Join(s.outDir, id.Digest().Encoded()+".json") 328 if err := os.WriteFile(configFile, img.RawJSON(), 0o644); err != nil { 329 return nil, err 330 } 331 if err := system.Chtimes(configFile, img.Created, img.Created); err != nil { 332 return nil, err 333 } 334 335 s.images[id].layers = layers 336 return foreignSrcs, nil 337 } 338 339 func (s *saveSession) saveLayer(id layer.ChainID, legacyImg image.V1Image, createdTime time.Time) (distribution.Descriptor, error) { 340 if _, exists := s.savedLayers[legacyImg.ID]; exists { 341 return distribution.Descriptor{}, nil 342 } 343 344 outDir := filepath.Join(s.outDir, legacyImg.ID) 345 if err := os.Mkdir(outDir, 0755); err != nil { 346 return distribution.Descriptor{}, err 347 } 348 349 // todo: why is this version file here? 350 if err := os.WriteFile(filepath.Join(outDir, legacyVersionFileName), []byte("1.0"), 0644); err != nil { 351 return distribution.Descriptor{}, err 352 } 353 354 imageConfig, err := json.Marshal(legacyImg) 355 if err != nil { 356 return distribution.Descriptor{}, err 357 } 358 359 if err := os.WriteFile(filepath.Join(outDir, legacyConfigFileName), imageConfig, 0644); err != nil { 360 return distribution.Descriptor{}, err 361 } 362 363 // serialize filesystem 364 layerPath := filepath.Join(outDir, legacyLayerFileName) 365 l, err := s.lss.Get(id) 366 if err != nil { 367 return distribution.Descriptor{}, err 368 } 369 defer layer.ReleaseAndLog(s.lss, l) 370 371 if oldPath, exists := s.diffIDPaths[l.DiffID()]; exists { 372 relPath, err := filepath.Rel(outDir, oldPath) 373 if err != nil { 374 return distribution.Descriptor{}, err 375 } 376 if err := os.Symlink(relPath, layerPath); err != nil { 377 return distribution.Descriptor{}, errors.Wrap(err, "error creating symlink while saving layer") 378 } 379 } else { 380 // We use sequential file access to avoid depleting the standby list on 381 // Windows. On Linux, this equates to a regular os.Create. 382 tarFile, err := sequential.Create(layerPath) 383 if err != nil { 384 return distribution.Descriptor{}, err 385 } 386 defer tarFile.Close() 387 388 arch, err := l.TarStream() 389 if err != nil { 390 return distribution.Descriptor{}, err 391 } 392 defer arch.Close() 393 394 if _, err := io.Copy(tarFile, arch); err != nil { 395 return distribution.Descriptor{}, err 396 } 397 398 for _, fname := range []string{"", legacyVersionFileName, legacyConfigFileName, legacyLayerFileName} { 399 // todo: maybe save layer created timestamp? 400 if err := system.Chtimes(filepath.Join(outDir, fname), createdTime, createdTime); err != nil { 401 return distribution.Descriptor{}, err 402 } 403 } 404 405 s.diffIDPaths[l.DiffID()] = layerPath 406 } 407 s.savedLayers[legacyImg.ID] = struct{}{} 408 409 var src distribution.Descriptor 410 if fs, ok := l.(distribution.Describable); ok { 411 src = fs.Descriptor() 412 } 413 return src, nil 414 }