faas-rs/faasd-in-rust
1
0
Fork 0
mirror of https://github.com/faas-rs/faasd-in-rust.git synced 2025-06-08 07:55:04 +00:00
Code Issues Packages Projects Releases Wiki Activity

Feat(containerd): 移动containerd的逻辑,解除耦合 (#73)

Browse Source 
* 将containerd逻辑统一到一个地方,增加错误处理

* 修改一点逻辑

* 删除service
This commit is contained in:
火花 2025-04-17 16:13:00 +08:00 committed by GitHub
parent edf5d68d0a
commit e2a95d4fed
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
11 changed files with 688 additions and 593 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
.env
View File

@ -2,4 +2,6 @@
CNI_BIN_DIR= "/nix/store/vrnv8mvvbfj04zma6hr035chj0x5f5i3-cni-plugins-1.6.1/bin" CNI_BIN_DIR= "/nix/store/vrnv8mvvbfj04zma6hr035chj0x5f5i3-cni-plugins-1.6.1/bin"
CNI_CONF_DIR= "/etc/cni/net.d" CNI_CONF_DIR= "/etc/cni/net.d"
# 你的cnitool的路径 # 你的cnitool的路径
CNI_TOOL = "/nix/store/c1ig375fgbv0ykv3amy94ps5sn0cyi7c-cni-1.2.3/bin/cnitool" CNI_TOOL = "/nix/store/c1ig375fgbv0ykv3amy94ps5sn0cyi7c-cni-1.2.3/bin/cnitool"
# 你的containerd的路径
SOCKET_PATH = "/run/containerd/containerd.sock"

17
crates/app/src/main.rs
View File

@ -1,32 +1,25 @@
use std::sync::Arc;
use actix_web::{App, HttpServer, web}; use actix_web::{App, HttpServer, web};
use provider::{ use provider::{
handlers::{delete::delete_handler, deploy::deploy_handler, invoke_resolver::InvokeResolver}, handlers::{delete::delete_handler, deploy::deploy_handler},
proxy::proxy_handler::proxy_handler, proxy::proxy_handler::proxy_handler,
types::config::FaaSConfig, types::config::FaaSConfig,
}; };
use service::Service; use service::containerd_manager::ContainerdManager;
#[actix_web::main] #[actix_web::main]
async fn main() -> std::io::Result<()> { async fn main() -> std::io::Result<()> {
dotenv::dotenv().ok(); dotenv::dotenv().ok();
env_logger::init_from_env(env_logger::Env::new().default_filter_or("info")); env_logger::init_from_env(env_logger::Env::new().default_filter_or("info"));
let service = Arc::new( let socket_path = std::env::var("SOCKET_PATH")
Service::new("/run/containerd/containerd.sock") .unwrap_or_else(|_| "/run/containerd/containerd.sock".to_string());
.await ContainerdManager::init(&socket_path).await;
.unwrap(),
);
let resolver = Some(InvokeResolver::new(service.clone()).await);
let faas_config = FaaSConfig::new(); let faas_config = FaaSConfig::new();
log::info!("I'm running!"); log::info!("I'm running!");
let server = HttpServer::new(move || { let server = HttpServer::new(move || {
App::new() App::new()
.app_data(web::Data::new(service.clone()))
.app_data(web::Data::new(resolver.clone()))
.app_data(web::Data::new(faas_config.clone())) .app_data(web::Data::new(faas_config.clone()))
.route("/system/functions", web::post().to(deploy_handler)) .route("/system/functions", web::post().to(deploy_handler))
.route("/system/functions", web::delete().to(delete_handler)) .route("/system/functions", web::delete().to(delete_handler))

42
crates/provider/src/handlers/delete.rs
View File

@ -1,26 +1,19 @@
use crate::{ use crate::{
consts, consts,
handlers::{ handlers::{function_get::get_function, utils::CustomError},
function_get::get_function,
utils::{CustomError, map_service_error},
},
}; };
use actix_web::{HttpResponse, Responder, ResponseError, error, web}; use actix_web::{HttpResponse, Responder, ResponseError, error, web};
use serde::{Deserialize, Serialize}; use serde::{Deserialize, Serialize};
use service::Service; use service::containerd_manager::ContainerdManager;
use std::sync::Arc;
pub async fn delete_handler( pub async fn delete_handler(info: web::Json<DeleteContainerInfo>) -> impl Responder {
service: web::Data<Arc<Service>>,
info: web::Json<DeleteContainerInfo>,
) -> impl Responder {
let function_name = info.function_name.clone(); let function_name = info.function_name.clone();
let namespace = info let namespace = info
.namespace .namespace
.clone() .clone()
.unwrap_or_else(|| consts::DEFAULT_FUNCTION_NAMESPACE.to_string()); .unwrap_or_else(|| consts::DEFAULT_FUNCTION_NAMESPACE.to_string());
match delete(&function_name, &namespace, &service).await { match delete(&function_name, &namespace).await {
Ok(()) => { Ok(()) => {
HttpResponse::Ok().body(format!("function {} deleted successfully", function_name)) HttpResponse::Ok().body(format!("function {} deleted successfully", function_name))
} }
@ -28,19 +21,21 @@ pub async fn delete_handler(
} }
} }
async fn delete( async fn delete(function_name: &str, namespace: &str) -> Result<(), CustomError> {
function_name: &str, let namespaces = ContainerdManager::list_namespaces().await.unwrap();
namespace: &str,
service: &Arc<Service>,
) -> Result<(), CustomError> {
let namespaces = service.list_namespaces().await.map_err(map_service_error)?;
if !namespaces.contains(&namespace.to_string()) { if !namespaces.contains(&namespace.to_string()) {
return Err(CustomError::ActixError(error::ErrorBadRequest(format!( return Err(CustomError::ActixError(error::ErrorBadRequest(format!(
"Namespace '{}' not valid or does not exist", "Namespace '{}' not valid or does not exist",
namespace namespace
)))); ))));
} }
let function = get_function(service, function_name, namespace).await?; let function = get_function(function_name, namespace).await.map_err(|e| {
log::error!("Failed to get function: {}", e);
CustomError::ActixError(error::ErrorNotFound(format!(
"Function '{}' not found in namespace '{}'",
function_name, namespace
)))
})?;
if function.replicas != 0 { if function.replicas != 0 {
log::info!("function.replicas: {:?}", function.replicas); log::info!("function.replicas: {:?}", function.replicas);
cni::delete_cni_network(namespace, function_name); cni::delete_cni_network(namespace, function_name);
@ -48,10 +43,15 @@ async fn delete(
} else { } else {
log::info!("function.replicas: {:?}", function.replicas); log::info!("function.replicas: {:?}", function.replicas);
} }
service ContainerdManager::delete_container(function_name, namespace)
.remove_container(function_name, namespace)
.await .await
.map_err(map_service_error)?; .map_err(|e| {
log::error!("Failed to delete container: {}", e);
CustomError::ActixError(error::ErrorInternalServerError(format!(
"Failed to delete container: {}",
e
)))
})?;
Ok(()) Ok(())
} }

37
crates/provider/src/handlers/deploy.rs
View File

@ -5,13 +5,9 @@ use crate::{
}; };
use actix_web::{HttpResponse, Responder, web}; use actix_web::{HttpResponse, Responder, web};
use service::{Service, image_manager::ImageManager}; use service::{containerd_manager::ContainerdManager, image_manager::ImageManager};
use std::sync::Arc;
pub async fn deploy_handler( pub async fn deploy_handler(info: web::Json<DeployFunctionInfo>) -> impl Responder {
service: web::Data<Arc<Service>>,
info: web::Json<DeployFunctionInfo>,
) -> impl Responder {
let image = info.image.clone(); let image = info.image.clone();
let function_name = info.function_name.clone(); let function_name = info.function_name.clone();
let namespace = info let namespace = info
@ -25,7 +21,7 @@ pub async fn deploy_handler(
namespace: Some(namespace), namespace: Some(namespace),
}; };
match deploy(&service, &config).await { match deploy(&config).await {
Ok(()) => HttpResponse::Accepted().body(format!( Ok(()) => HttpResponse::Accepted().body(format!(
"Function {} deployment initiated successfully .", "Function {} deployment initiated successfully .",
config.service config.service
@ -37,28 +33,17 @@ pub async fn deploy_handler(
} }
} }
async fn deploy(service: &Arc<Service>, config: &FunctionDeployment) -> Result<(), CustomError> { async fn deploy(config: &FunctionDeployment) -> Result<(), CustomError> {
// let namespaces = service
// .list_namespaces()
// .await
// .map_err(|e| map_service_error(e))?;
let namespace = config.namespace.clone().unwrap(); let namespace = config.namespace.clone().unwrap();
// if !namespaces.contains(&namespace) {
// return Err(CustomError::ActixError(error::ErrorBadRequest(format!(
// "Namespace '{}' not valid or does not exist",
// namespace
// ))));
// }
log::info!( log::info!(
"Namespace '{}' validated.", "Namespace '{}' validated.",
config.namespace.clone().unwrap() config.namespace.clone().unwrap()
); );
let container_list = service let container_list = ContainerdManager::list_container_into_string(&namespace)
.get_container_list(&namespace)
.await .await
.map_err(CustomError::from)?; .map_err(|e| CustomError::OtherError(format!("failed to list container:{}", e)))?;
if container_list.contains(&config.service) { if container_list.contains(&config.service) {
return Err(CustomError::OtherError( return Err(CustomError::OtherError(
@ -66,15 +51,12 @@ async fn deploy(service: &Arc<Service>, config: &FunctionDeployment) -> Result<(
)); ));
} }
//todo 这里暂时将client设为pub ImageManager::prepare_image(&config.image, &namespace, true)
let client = service.client.as_ref();
ImageManager::prepare_image(client, &config.image, &namespace, true)
.await .await
.map_err(CustomError::from)?; .map_err(CustomError::from)?;
log::info!("Image '{}' validated ,", &config.image); log::info!("Image '{}' validated ,", &config.image);
service ContainerdManager::create_container(&config.image, &config.service, &namespace)
.create_container(&config.image, &config.service, &namespace)
.await .await
.map_err(|e| CustomError::OtherError(format!("failed to create container:{}", e)))?; .map_err(|e| CustomError::OtherError(format!("failed to create container:{}", e)))?;
@ -85,8 +67,7 @@ async fn deploy(service: &Arc<Service>, config: &FunctionDeployment) -> Result<(
namespace namespace
); );
service ContainerdManager::new_task(&config.service, &namespace, &config.image)
.create_and_start_task(&config.service, &namespace, &config.image)
.await .await
.map_err(|e| { .map_err(|e| {
CustomError::OtherError(format!( CustomError::OtherError(format!(

23
crates/provider/src/handlers/function_get.rs
View File

@ -1,8 +1,8 @@
use crate::handlers::function_list::Function; use crate::handlers::function_list::Function;
// use service::spec::{ Mount, Spec}; // use service::spec::{ Mount, Spec};
use actix_web::cookie::time::Duration; use actix_web::cookie::time::Duration;
use service::Service; use service::{containerd_manager::ContainerdManager, image_manager::ImageManager};
use std::{collections::HashMap, sync::Arc, time::UNIX_EPOCH}; use std::{collections::HashMap, time::UNIX_EPOCH};
use thiserror::Error; use thiserror::Error;
const ANNOTATION_LABEL_PREFIX: &str = "com.openfaas.annotations."; const ANNOTATION_LABEL_PREFIX: &str = "com.openfaas.annotations.";
@ -21,18 +21,14 @@ impl From<Box<dyn std::error::Error>> for FunctionError {
} }
} }
pub async fn get_function( pub async fn get_function(function_name: &str, namespace: &str) -> Result<Function, FunctionError> {
service: &Arc<Service>,
function_name: &str,
namespace: &str,
) -> Result<Function, FunctionError> {
let cid = function_name; let cid = function_name;
let address = service.get_address(cid).await.unwrap_or_default(); let address = ContainerdManager::get_address(cid);
let container = service let container = ContainerdManager::load_container(cid, namespace)
.load_container(cid, namespace)
.await .await
.map_err(|e| FunctionError::FunctionNotFound(e.to_string()))?; .map_err(|e| FunctionError::FunctionNotFound(e.to_string()))?
.unwrap();
let container_name = container.id.to_string(); let container_name = container.id.to_string();
let image = container.image.clone(); let image = container.image.clone();
@ -42,7 +38,7 @@ pub async fn get_function(
let all_labels = container.labels; let all_labels = container.labels;
let (labels, _) = build_labels_and_annotations(all_labels); let (labels, _) = build_labels_and_annotations(all_labels);
let env = service::image_manager::ImageManager::get_runtime_config(&image) let env = ImageManager::get_runtime_config(&image)
.map_err(|e| FunctionError::RuntimeConfigNotFound(e.to_string()))? .map_err(|e| FunctionError::RuntimeConfigNotFound(e.to_string()))?
.env; .env;
let (env_vars, env_process) = read_env_from_process_env(env); let (env_vars, env_process) = read_env_from_process_env(env);
@ -51,8 +47,7 @@ pub async fn get_function(
let timestamp = container.created_at.unwrap_or_default(); let timestamp = container.created_at.unwrap_or_default();
let created_at = UNIX_EPOCH + Duration::new(timestamp.seconds, timestamp.nanos); let created_at = UNIX_EPOCH + Duration::new(timestamp.seconds, timestamp.nanos);
let task = service let task = ContainerdManager::get_task(cid, namespace)
.get_task(cid, namespace)
.await .await
.map_err(|e| FunctionError::FunctionNotFound(e.to_string())); .map_err(|e| FunctionError::FunctionNotFound(e.to_string()));
match task { match task {

14
crates/provider/src/handlers/invoke_resolver.rs
View File

@ -2,21 +2,13 @@ use crate::consts::DEFAULT_FUNCTION_NAMESPACE;
use crate::handlers::function_get::get_function; use crate::handlers::function_get::get_function;
use actix_web::{Error, error::ErrorInternalServerError}; use actix_web::{Error, error::ErrorInternalServerError};
use log; use log;
use service::Service;
use std::sync::Arc;
use url::Url; use url::Url;
#[derive(Clone)] #[derive(Clone)]
pub struct InvokeResolver { pub struct InvokeResolver;
client: Arc<Service>,
}
impl InvokeResolver { impl InvokeResolver {
pub async fn new(client: Arc<Service>) -> Self { pub async fn resolve(function_name: &str) -> Result<Url, Error> {
Self { client }
}
pub async fn resolve(&self, function_name: &str) -> Result<Url, Error> {
//根据函数名和containerd获取函数ip //根据函数名和containerd获取函数ip
//从函数名称中提取命名空间。如果函数名称中包含 .,则将其后的部分作为命名空间;否则使用默认命名空间 //从函数名称中提取命名空间。如果函数名称中包含 .,则将其后的部分作为命名空间;否则使用默认命名空间
@ -26,7 +18,7 @@ impl InvokeResolver {
// actual_function_name = function_name.trim_end_matches(&format!(".{}", namespace)); // actual_function_name = function_name.trim_end_matches(&format!(".{}", namespace));
// } // }
let function = match get_function(&self.client, function_name, &namespace).await { let function = match get_function(function_name, &namespace).await {
Ok(function) => function, Ok(function) => function,
Err(e) => { Err(e) => {
log::error!("Failed to get function:{}", e); log::error!("Failed to get function:{}", e);

11
crates/provider/src/proxy/proxy_handler.rs
View File

@ -9,15 +9,9 @@ use crate::{handlers::invoke_resolver::InvokeResolver, types::config::FaaSConfig
pub async fn proxy_handler( pub async fn proxy_handler(
config: web::Data<FaaSConfig>, config: web::Data<FaaSConfig>,
resolver: web::Data<Option<InvokeResolver>>,
req: HttpRequest, req: HttpRequest,
payload: web::Payload, payload: web::Payload,
) -> impl Responder { ) -> impl Responder {
let resolver_option = resolver.as_ref();
let resolver = resolver_option
.as_ref()
.expect("empty proxy handler resolver, cannot be nil");
let proxy_client = new_proxy_client_from_config(config.as_ref()).await; let proxy_client = new_proxy_client_from_config(config.as_ref()).await;
log::info!("proxy_client : {:?}", proxy_client); log::info!("proxy_client : {:?}", proxy_client);
@ -28,7 +22,7 @@ pub async fn proxy_handler(
| Method::GET | Method::GET
| Method::PATCH | Method::PATCH
| Method::HEAD | Method::HEAD
| Method::OPTIONS => match proxy_request(&req, payload, &proxy_client, resolver).await { | Method::OPTIONS => match proxy_request(&req, payload, &proxy_client).await {
Ok(resp) => resp, Ok(resp) => resp,
Err(e) => HttpResponse::InternalServerError().body(e.to_string()), Err(e) => HttpResponse::InternalServerError().body(e.to_string()),
}, },
@ -67,14 +61,13 @@ async fn proxy_request(
req: &HttpRequest, req: &HttpRequest,
payload: web::Payload, payload: web::Payload,
proxy_client: &Client, proxy_client: &Client,
resolver: &InvokeResolver,
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let function_name = req.match_info().get("name").unwrap_or(""); let function_name = req.match_info().get("name").unwrap_or("");
if function_name.is_empty() { if function_name.is_empty() {
return Ok(HttpResponse::BadRequest().body("provide function name in path")); return Ok(HttpResponse::BadRequest().body("provide function name in path"));
} }
let function_addr = match resolver.resolve(function_name).await { let function_addr = match InvokeResolver::resolve(function_name).await {
Ok(function_addr) => function_addr, Ok(function_addr) => function_addr,
Err(e) => return Ok(HttpResponse::BadRequest().body(e.to_string())), Err(e) => return Ok(HttpResponse::BadRequest().body(e.to_string())),
}; };

590
crates/service/src/containerd_manager.rs Normal file
View File

@ -0,0 +1,590 @@
use std::{fs, panic, sync::Arc};
use containerd_client::{
Client,
services::v1::{
Container, CreateContainerRequest, CreateTaskRequest, DeleteContainerRequest,
DeleteTaskRequest, KillRequest, ListContainersRequest, ListNamespacesRequest,
ListTasksRequest, ListTasksResponse, StartRequest, WaitRequest, WaitResponse,
container::Runtime,
snapshots::{MountsRequest, PrepareSnapshotRequest},
},
tonic::Request,
types::{Mount, v1::Process},
with_namespace,
};
use prost_types::Any;
use sha2::{Digest, Sha256};
use tokio::{
sync::OnceCell,
time::{Duration, timeout},
};
use crate::{GLOBAL_NETNS_MAP, NetworkConfig, image_manager::ImageManager, spec::generate_spec};
pub(super) static CLIENT: OnceCell<Arc<Client>> = OnceCell::const_new();
#[derive(Debug)]
pub struct ContainerdManager;
impl ContainerdManager {
pub async fn init(socket_path: &str) {
if let Err(e) = CLIENT.set(Arc::new(Client::from_path(socket_path).await.unwrap())) {
panic!("Failed to set client: {}", e);
}
let _ = cni::init_net_work();
log::info!("ContainerdManager initialized");
}
async fn get_client() -> Arc<Client> {
CLIENT
.get()
.unwrap_or_else(|| panic!("Client not initialized, Please run init first"))
.clone()
}
/// 创建容器
pub async fn create_container(
image_name: &str,
cid: &str,
ns: &str,
) -> Result<(), ContainerdError> {
Self::prepare_snapshot(image_name, cid, ns)
.await
.map_err(|e| {
log::error!("Failed to create container: {}", e);
ContainerdError::CreateContainerError(e.to_string())
})?;
let spec = Self::get_spec(cid, ns, image_name).unwrap();
let container = Container {
id: cid.to_string(),
image: image_name.to_string(),
runtime: Some(Runtime {
name: "io.containerd.runc.v2".to_string(),
options: None,
}),
spec,
snapshotter: "overlayfs".to_string(),
snapshot_key: cid.to_string(),
..Default::default()
};
Self::do_create_container(container, ns).await?;
Ok(())
}
async fn do_create_container(container: Container, ns: &str) -> Result<(), ContainerdError> {
let mut cc = Self::get_client().await.containers();
let req = CreateContainerRequest {
container: Some(container),
};
let _resp = cc.create(with_namespace!(req, ns)).await.map_err(|e| {
log::error!("Failed to create container: {}", e);
ContainerdError::CreateContainerError(e.to_string())
})?;
Ok(())
}
/// 删除容器
pub async fn delete_container(cid: &str, ns: &str) -> Result<(), ContainerdError> {
let container_list = Self::list_container(ns).await?;
if !container_list.iter().any(|container| container.id == cid) {
log::info!("Container {} not found", cid);
return Ok(());
}
let resp = Self::list_task_by_cid(cid, ns).await?;
if let Some(task) = resp.tasks.iter().find(|task| task.id == cid) {
log::info!("Task found: {}, Status: {}", task.id, task.status);
// TASK_UNKNOWN (0) — 未知状态
// TASK_CREATED (1) — 任务已创建
// TASK_RUNNING (2) — 任务正在运行
// TASK_STOPPED (3) — 任务已停止
// TASK_EXITED (4) — 任务已退出
// TASK_PAUSED (5) — 任务已暂停
// TASK_FAILED (6) — 任务失败
Self::kill_task_with_timeout(cid, ns).await?;
}
Self::do_delete_container(cid, ns).await?;
Self::remove_cni_network(cid, ns).map_err(|e| {
log::error!("Failed to remove CNI network: {}", e);
ContainerdError::CreateTaskError(e.to_string())
})?;
Ok(())
}
async fn do_delete_container(cid: &str, ns: &str) -> Result<(), ContainerdError> {
let mut cc = Self::get_client().await.containers();
let delete_request = DeleteContainerRequest {
id: cid.to_string(),
};
let _ = cc
.delete(with_namespace!(delete_request, ns))
.await
.expect("Failed to delete container");
Ok(())
}
/// 创建并启动任务
pub async fn new_task(cid: &str, ns: &str, image_name: &str) -> Result<(), ContainerdError> {
let mounts = Self::get_mounts(cid, ns).await?;
Self::prepare_cni_network(cid, ns, image_name)?;
Self::do_create_task(cid, ns, mounts).await?;
Self::do_start_task(cid, ns).await?;
Ok(())
}
async fn do_start_task(cid: &str, ns: &str) -> Result<(), ContainerdError> {
let mut c = Self::get_client().await.tasks();
let req = StartRequest {
container_id: cid.to_string(),
..Default::default()
};
let _resp = c.start(with_namespace!(req, ns)).await.map_err(|e| {
log::error!("Failed to start task: {}", e);
ContainerdError::StartTaskError(e.to_string())
})?;
log::info!("Task: {:?} started", cid);
Ok(())
}
async fn do_create_task(
cid: &str,
ns: &str,
rootfs: Vec<Mount>,
) -> Result<(), ContainerdError> {
let mut tc = Self::get_client().await.tasks();
let create_request = CreateTaskRequest {
container_id: cid.to_string(),
rootfs,
..Default::default()
};
let _resp = tc
.create(with_namespace!(create_request, ns))
.await
.map_err(|e| {
log::error!("Failed to create task: {}", e);
ContainerdError::CreateTaskError(e.to_string())
})?;
Ok(())
}
pub async fn get_task(cid: &str, ns: &str) -> Result<Process, ContainerdError> {
let mut tc = Self::get_client().await.tasks();
let request = ListTasksRequest {
filter: format!("container=={}", cid),
};
let response = tc.list(with_namespace!(request, ns)).await.map_err(|e| {
log::error!("Failed to list tasks: {}", e);
ContainerdError::GetContainerListError(e.to_string())
})?;
let tasks = response.into_inner().tasks;
let task =
tasks
.into_iter()
.find(|task| task.id == cid)
.ok_or_else(|| -> ContainerdError {
log::error!("Task not found for container: {}", cid);
ContainerdError::CreateTaskError("Task not found".to_string())
})?;
Ok(task)
}
async fn get_mounts(cid: &str, ns: &str) -> Result<Vec<Mount>, ContainerdError> {
let mut sc = Self::get_client().await.snapshots();
let req = MountsRequest {
snapshotter: "overlayfs".to_string(),
key: cid.to_string(),
};
let mounts = sc
.mounts(with_namespace!(req, ns))
.await
.map_err(|e| {
log::error!("Failed to get mounts: {}", e);
ContainerdError::CreateTaskError(e.to_string())
})?
.into_inner()
.mounts;
Ok(mounts)
}
async fn list_task_by_cid(cid: &str, ns: &str) -> Result<ListTasksResponse, ContainerdError> {
let mut c = Self::get_client().await.tasks();
let request = ListTasksRequest {
filter: format!("container=={}", cid),
};
let response = c
.list(with_namespace!(request, ns))
.await
.map_err(|e| {
log::error!("Failed to list tasks: {}", e);
ContainerdError::GetContainerListError(e.to_string())
})?
.into_inner();
Ok(response)
}
async fn do_kill_task(cid: &str, ns: &str) -> Result<(), ContainerdError> {
let mut c = Self::get_client().await.tasks();
let kill_request = KillRequest {
container_id: cid.to_string(),
signal: 15,
all: true,
..Default::default()
};
c.kill(with_namespace!(kill_request, ns))
.await
.map_err(|e| {
log::error!("Failed to kill task: {}", e);
ContainerdError::KillTaskError(e.to_string())
})?;
Ok(())
}
async fn do_kill_task_force(cid: &str, ns: &str) -> Result<(), ContainerdError> {
let mut c = Self::get_client().await.tasks();
let kill_request = KillRequest {
container_id: cid.to_string(),
signal: 9,
all: true,
..Default::default()
};
c.kill(with_namespace!(kill_request, ns))
.await
.map_err(|e| {
log::error!("Failed to force kill task: {}", e);
ContainerdError::KillTaskError(e.to_string())
})?;
Ok(())
}
async fn do_delete_task(cid: &str, ns: &str) -> Result<(), ContainerdError> {
let mut c = Self::get_client().await.tasks();
let delete_request = DeleteTaskRequest {
container_id: cid.to_string(),
};
c.delete(with_namespace!(delete_request, ns))
.await
.map_err(|e| {
log::error!("Failed to delete task: {}", e);
ContainerdError::DeleteTaskError(e.to_string())
})?;
Ok(())
}
async fn do_wait_task(cid: &str, ns: &str) -> Result<WaitResponse, ContainerdError> {
let mut c = Self::get_client().await.tasks();
let wait_request = WaitRequest {
container_id: cid.to_string(),
..Default::default()
};
let resp = c
.wait(with_namespace!(wait_request, ns))
.await
.map_err(|e| {
log::error!("wait error: {}", e);
ContainerdError::WaitTaskError(e.to_string())
})?
.into_inner();
Ok(resp)
}
/// 杀死并删除任务
pub async fn kill_task_with_timeout(cid: &str, ns: &str) -> Result<(), ContainerdError> {
let kill_timeout = Duration::from_secs(5);
let wait_future = Self::do_wait_task(cid, ns);
Self::do_kill_task(cid, ns).await?;
match timeout(kill_timeout, wait_future).await {
Ok(Ok(_)) => {
// 正常退出,尝试删除任务
Self::do_delete_task(cid, ns).await?;
}
Ok(Err(e)) => {
// wait 报错
log::error!("Error while waiting for task {}: {}", cid, e);
}
Err(_) => {
// 超时,强制 kill
log::warn!("Task {} did not exit in time, sending SIGKILL", cid);
Self::do_kill_task_force(cid, ns).await?;
// 尝试删除任务
if let Err(e) = Self::do_delete_task(cid, ns).await {
log::error!("Failed to delete task {} after SIGKILL: {}", cid, e);
}
}
}
Ok(())
}
/// 获取一个容器
pub async fn load_container(cid: &str, ns: &str) -> Result<Option<Container>, ContainerdError> {
let container_list = Self::list_container(ns).await?;
let container = container_list
.into_iter()
.find(|container| container.id == cid);
Ok(container)
}
/// 获取容器列表
pub async fn list_container(ns: &str) -> Result<Vec<Container>, ContainerdError> {
let mut cc = Self::get_client().await.containers();
let request = ListContainersRequest {
..Default::default()
};
let resp = cc.list(with_namespace!(request, ns)).await.map_err(|e| {
log::error!("Failed to list containers: {}", e);
ContainerdError::CreateContainerError(e.to_string())
})?;
Ok(resp.into_inner().containers)
}
pub async fn list_container_into_string(ns: &str) -> Result<Vec<String>, ContainerdError> {
let mut cc = Self::get_client().await.containers();
let request = ListContainersRequest {
..Default::default()
};
let resp = cc.list(with_namespace!(request, ns)).await.map_err(|e| {
log::error!("Failed to list containers: {}", e);
ContainerdError::CreateContainerError(e.to_string())
})?;
Ok(resp
.into_inner()
.containers
.into_iter()
.map(|container| container.id)
.collect())
}
async fn prepare_snapshot(
image_name: &str,
cid: &str,
ns: &str,
) -> Result<(), ContainerdError> {
let parent_snapshot = Self::get_parent_snapshot(image_name).await?;
Self::do_prepare_snapshot(cid, ns, parent_snapshot).await?;
Ok(())
}
async fn do_prepare_snapshot(
cid: &str,
ns: &str,
parent_snapshot: String,
) -> Result<(), ContainerdError> {
let req = PrepareSnapshotRequest {
snapshotter: "overlayfs".to_string(),
key: cid.to_string(),
parent: parent_snapshot,
..Default::default()
};
let client = Self::get_client().await;
let _resp = client
.snapshots()
.prepare(with_namespace!(req, ns))
.await
.map_err(|e| {
log::error!("Failed to prepare snapshot: {}", e);
ContainerdError::CreateSnapshotError(e.to_string())
})?;
Ok(())
}
async fn get_parent_snapshot(image_name: &str) -> Result<String, ContainerdError> {
let config = ImageManager::get_image_config(image_name).map_err(|e| {
log::error!("Failed to get image config: {}", e);
ContainerdError::GetParentSnapshotError(e.to_string())
})?;
if config.rootfs().diff_ids().is_empty() {
log::error!("Image config has no diff_ids for image: {}", image_name);
return Err(ContainerdError::GetParentSnapshotError(
"No diff_ids found in image config".to_string(),
));
}
let mut iter = config.rootfs().diff_ids().iter();
let mut ret = iter
.next()
.map_or_else(String::new, |layer_digest| layer_digest.clone());
for layer_digest in iter {
let mut hasher = Sha256::new();
hasher.update(ret.as_bytes());
ret.push_str(&format!(",{}", layer_digest));
hasher.update(" ");
hasher.update(layer_digest);
let digest = ::hex::encode(hasher.finalize());
ret = format!("sha256:{digest}");
}
Ok(ret)
}
fn get_spec(cid: &str, ns: &str, image_name: &str) -> Result<Option<Any>, ContainerdError> {
let config = ImageManager::get_runtime_config(image_name).unwrap();
let env = config.env;
let args = config.args;
let spec_path = generate_spec(cid, ns, args, env).map_err(|e| {
log::error!("Failed to generate spec: {}", e);
ContainerdError::GenerateSpecError(e.to_string())
})?;
let spec = fs::read_to_string(spec_path).unwrap();
let spec = Any {
type_url: "types.containerd.io/opencontainers/runtime-spec/1/Spec".to_string(),
value: spec.into_bytes(),
};
Ok(Some(spec))
}
/// 为一个容器准备cni网络并写入全局map中
fn prepare_cni_network(cid: &str, ns: &str, image_name: &str) -> Result<(), ContainerdError> {
let ip = cni::create_cni_network(cid.to_string(), ns.to_string()).map_err(|e| {
log::error!("Failed to create CNI network: {}", e);
ContainerdError::CreateTaskError(e.to_string())
})?;
let ports = ImageManager::get_runtime_config(image_name).unwrap().ports;
let network_config = NetworkConfig::new(ip, ports);
Self::save_container_network_config(cid, network_config);
Ok(())
}
/// 删除cni网络删除全局map中的网络配置
fn remove_cni_network(cid: &str, ns: &str) -> Result<(), ContainerdError> {
cni::delete_cni_network(ns, cid);
Self::remove_container_network_config(cid);
Ok(())
}
fn save_container_network_config(cid: &str, net_conf: NetworkConfig) {
let mut map = GLOBAL_NETNS_MAP.write().unwrap();
map.insert(cid.to_string(), net_conf);
}
pub fn get_address(cid: &str) -> String {
let map = GLOBAL_NETNS_MAP.read().unwrap();
let config = map.get(cid).unwrap();
config.get_address()
}
fn remove_container_network_config(cid: &str) {
let mut map = GLOBAL_NETNS_MAP.write().unwrap();
map.remove(cid);
}
pub async fn list_namespaces() -> Result<Vec<String>, ContainerdError> {
let mut c = Self::get_client().await.namespaces();
let req = ListNamespacesRequest {
..Default::default()
};
let resp = c.list(req).await.map_err(|e| {
log::error!("Failed to list namespaces: {}", e);
ContainerdError::GetContainerListError(e.to_string())
})?;
Ok(resp
.into_inner()
.namespaces
.into_iter()
.map(|ns| ns.name)
.collect())
}
pub async fn pause_task() {
todo!()
}
pub async fn resume_task() {
todo!()
}
}
#[derive(Debug)]
pub enum ContainerdError {
CreateContainerError(String),
CreateSnapshotError(String),
GetParentSnapshotError(String),
GenerateSpecError(String),
DeleteContainerError(String),
GetContainerListError(String),
KillTaskError(String),
DeleteTaskError(String),
WaitTaskError(String),
CreateTaskError(String),
StartTaskError(String),
#[allow(dead_code)]
OtherError,
}
impl std::fmt::Display for ContainerdError {
fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
match self {
ContainerdError::CreateContainerError(msg) => {
write!(f, "Failed to create container: {}", msg)
}
ContainerdError::CreateSnapshotError(msg) => {
write!(f, "Failed to create snapshot: {}", msg)
}
ContainerdError::GetParentSnapshotError(msg) => {
write!(f, "Failed to get parent snapshot: {}", msg)
}
ContainerdError::GenerateSpecError(msg) => {
write!(f, "Failed to generate spec: {}", msg)
}
ContainerdError::DeleteContainerError(msg) => {
write!(f, "Failed to delete container: {}", msg)
}
ContainerdError::GetContainerListError(msg) => {
write!(f, "Failed to get container list: {}", msg)
}
ContainerdError::KillTaskError(msg) => {
write!(f, "Failed to kill task: {}", msg)
}
ContainerdError::DeleteTaskError(msg) => {
write!(f, "Failed to delete task: {}", msg)
}
ContainerdError::WaitTaskError(msg) => {
write!(f, "Failed to wait task: {}", msg)
}
ContainerdError::CreateTaskError(msg) => {
write!(f, "Failed to create task: {}", msg)
}
ContainerdError::StartTaskError(msg) => {
write!(f, "Failed to start task: {}", msg)
}
ContainerdError::OtherError => write!(f, "Other error happened"),
}
}
}
impl std::error::Error for ContainerdError {}

83
crates/service/src/image_manager.rs
View File

@ -16,7 +16,7 @@ use containerd_client::{
}; };
use oci_spec::image::{Arch, ImageConfiguration, ImageIndex, ImageManifest, MediaType, Os}; use oci_spec::image::{Arch, ImageConfiguration, ImageIndex, ImageManifest, MediaType, Os};
use crate::spec::DEFAULT_NAMESPACE; use crate::{containerd_manager::CLIENT, spec::DEFAULT_NAMESPACE};
type ImagesMap = Arc<RwLock<HashMap<String, ImageConfiguration>>>; type ImagesMap = Arc<RwLock<HashMap<String, ImageConfiguration>>>;
lazy_static::lazy_static! { lazy_static::lazy_static! {
@ -81,39 +81,52 @@ impl std::error::Error for ImageError {}
pub struct ImageManager; pub struct ImageManager;
impl ImageManager { impl ImageManager {
async fn get_client() -> Arc<Client> {
CLIENT
.get()
.unwrap_or_else(|| panic!("Client not initialized, Please run init first"))
.clone()
}
pub async fn prepare_image( pub async fn prepare_image(
client: &Client,
image_name: &str, image_name: &str,
ns: &str, ns: &str,
always_pull: bool, always_pull: bool,
) -> Result<(), ImageError> { ) -> Result<(), ImageError> {
if always_pull { if always_pull {
Self::pull_image(client, image_name, ns).await?; Self::pull_image(image_name, ns).await?;
} else { } else {
let namespace = check_namespace(ns); let namespace = check_namespace(ns);
let namespace = namespace.as_str(); let namespace = namespace.as_str();
let mut c = client.images();
let req = GetImageRequest {
name: image_name.to_string(),
};
let resp = match c.get(with_namespace!(req, namespace)).await { Self::get_image(image_name, namespace).await?;
Ok(response) => response.into_inner(),
Err(e) => {
return Err(ImageError::ImageNotFound(format!(
"Failed to get image {}: {}",
image_name, e
)));
}
};
if resp.image.is_none() {
Self::pull_image(client, image_name, ns).await?;
}
} }
Self::save_img_config(client, image_name, ns).await Self::save_img_config(image_name, ns).await
} }
pub async fn pull_image(client: &Client, image_name: &str, ns: &str) -> Result<(), ImageError> { async fn get_image(image_name: &str, ns: &str) -> Result<(), ImageError> {
let mut c = Self::get_client().await.images();
let req = GetImageRequest {
name: image_name.to_string(),
};
let resp = match c.get(with_namespace!(req, ns)).await {
Ok(response) => response.into_inner(),
Err(e) => {
return Err(ImageError::ImageNotFound(format!(
"Failed to get image {}: {}",
image_name, e
)));
}
};
if resp.image.is_none() {
Self::pull_image(image_name, ns).await?;
}
Ok(())
}
pub async fn pull_image(image_name: &str, ns: &str) -> Result<(), ImageError> {
let client = Self::get_client().await;
let ns = check_namespace(ns); let ns = check_namespace(ns);
let namespace = ns.as_str(); let namespace = ns.as_str();
@ -164,11 +177,8 @@ impl ImageManager {
// Self::save_img_config(client, image_name, ns.as_str()).await // Self::save_img_config(client, image_name, ns.as_str()).await
} }
pub async fn save_img_config( pub async fn save_img_config(img_name: &str, ns: &str) -> Result<(), ImageError> {
client: &Client, let client = Self::get_client().await;
img_name: &str,
ns: &str,
) -> Result<(), ImageError> {
let mut c = client.images(); let mut c = client.images();
let req = GetImageRequest { let req = GetImageRequest {
@ -217,14 +227,14 @@ impl ImageManager {
drop(c); drop(c);
let img_config = match media_type { let img_config = match media_type {
MediaType::ImageIndex => Self::handle_index(client, &resp, ns).await.unwrap(), MediaType::ImageIndex => Self::handle_index(&resp, ns).await.unwrap(),
MediaType::ImageManifest => Self::handle_manifest(client, &resp, ns).await.unwrap(), MediaType::ImageManifest => Self::handle_manifest(&resp, ns).await.unwrap(),
MediaType::Other(media_type) => match media_type.as_str() { MediaType::Other(media_type) => match media_type.as_str() {
"application/vnd.docker.distribution.manifest.list.v2+json" => { "application/vnd.docker.distribution.manifest.list.v2+json" => {
Self::handle_index(client, &resp, ns).await.unwrap() Self::handle_index(&resp, ns).await.unwrap()
} }
"application/vnd.docker.distribution.manifest.v2+json" => { "application/vnd.docker.distribution.manifest.v2+json" => {
Self::handle_manifest(client, &resp, ns).await.unwrap() Self::handle_manifest(&resp, ns).await.unwrap()
} }
_ => { _ => {
return Err(ImageError::UnexpectedMediaType); return Err(ImageError::UnexpectedMediaType);
@ -244,11 +254,7 @@ impl ImageManager {
Self::insert_image_config(img_name, img_config) Self::insert_image_config(img_name, img_config)
} }
async fn handle_index( async fn handle_index(data: &[u8], ns: &str) -> Result<Option<ImageConfiguration>, ImageError> {
client: &Client,
data: &[u8],
ns: &str,
) -> Result<Option<ImageConfiguration>, ImageError> {
let image_index: ImageIndex = ::serde_json::from_slice(data).map_err(|e| { let image_index: ImageIndex = ::serde_json::from_slice(data).map_err(|e| {
ImageError::DeserializationFailed(format!("Failed to parse JSON: {}", e)) ImageError::DeserializationFailed(format!("Failed to parse JSON: {}", e))
})?; })?;
@ -277,7 +283,7 @@ impl ImageManager {
size: 0, size: 0,
}; };
let mut c = client.content(); let mut c = Self::get_client().await.content();
let mut inner = match c.read(with_namespace!(req, ns)).await { let mut inner = match c.read(with_namespace!(req, ns)).await {
Ok(response) => response.into_inner(), Ok(response) => response.into_inner(),
Err(e) => { Err(e) => {
@ -299,11 +305,10 @@ impl ImageManager {
}; };
drop(c); drop(c);
Self::handle_manifest(client, &resp, ns).await Self::handle_manifest(&resp, ns).await
} }
async fn handle_manifest( async fn handle_manifest(
client: &Client,
data: &[u8], data: &[u8],
ns: &str, ns: &str,
) -> Result<Option<ImageConfiguration>, ImageError> { ) -> Result<Option<ImageConfiguration>, ImageError> {
@ -323,7 +328,7 @@ impl ImageManager {
offset: 0, offset: 0,
size: 0, size: 0,
}; };
let mut c = client.content(); let mut c = Self::get_client().await.content();
let mut inner = match c.read(with_namespace!(req, ns)).await { let mut inner = match c.read(with_namespace!(req, ns)).await {
Ok(response) => response.into_inner(), Ok(response) => response.into_inner(),

458
crates/service/src/lib.rs
View File

@ -1,31 +1,12 @@
pub mod containerd_manager;
pub mod image_manager; pub mod image_manager;
pub mod spec; pub mod spec;
pub mod systemd; pub mod systemd;
use containerd_client::{
Client,
services::v1::{
Container, CreateContainerRequest, CreateTaskRequest, DeleteContainerRequest,
DeleteTaskRequest, KillRequest, ListContainersRequest, ListNamespacesRequest,
ListTasksRequest, StartRequest, WaitRequest,
container::Runtime,
snapshots::{MountsRequest, PrepareSnapshotRequest},
},
tonic::Request,
types::v1::Process,
with_namespace,
};
use image_manager::ImageManager;
use prost_types::Any;
use sha2::{Digest, Sha256};
use spec::{DEFAULT_NAMESPACE, generate_spec};
use std::{ use std::{
collections::HashMap, collections::HashMap,
fs,
sync::{Arc, RwLock}, sync::{Arc, RwLock},
time::Duration,
}; };
use tokio::time::timeout;
// config.json,dockerhub密钥 // config.json,dockerhub密钥
// const DOCKER_CONFIG_DIR: &str = "/var/lib/faasd/.docker/"; // const DOCKER_CONFIG_DIR: &str = "/var/lib/faasd/.docker/";
@ -35,443 +16,6 @@ lazy_static::lazy_static! {
static ref GLOBAL_NETNS_MAP: NetnsMap = Arc::new(RwLock::new(HashMap::new())); static ref GLOBAL_NETNS_MAP: NetnsMap = Arc::new(RwLock::new(HashMap::new()));
} }
type Err = Box<dyn std::error::Error>;
pub struct Service {
pub client: Arc<Client>,
netns_map: NetnsMap,
}
impl Service {
pub async fn new(socket_path: &str) -> Result<Self, Err> {
let client = Client::from_path(socket_path).await.unwrap();
Ok(Service {
client: Arc::new(client),
netns_map: GLOBAL_NETNS_MAP.clone(),
})
}
pub async fn save_network_config(&self, cid: &str, net_conf: NetworkConfig) {
let mut map = self.netns_map.write().unwrap();
map.insert(cid.to_string(), net_conf);
}
pub async fn get_network_config(&self, cid: &str) -> Option<NetworkConfig> {
let map = self.netns_map.read().unwrap();
map.get(cid).cloned()
}
pub async fn get_ip(&self, cid: &str) -> Option<String> {
let map = self.netns_map.read().unwrap();
map.get(cid).map(|net_conf| net_conf.get_ip())
}
pub async fn get_address(&self, cid: &str) -> Option<String> {
let map = self.netns_map.read().unwrap();
map.get(cid).map(|net_conf| net_conf.get_address())
}
pub async fn remove_netns_ip(&self, cid: &str) {
let mut map = self.netns_map.write().unwrap();
map.remove(cid);
}
async fn prepare_snapshot(&self, cid: &str, ns: &str, img_name: &str) -> Result<(), Err> {
let parent_snapshot = self.get_parent_snapshot(img_name).await?;
let req = PrepareSnapshotRequest {
snapshotter: "overlayfs".to_string(),
key: cid.to_string(),
parent: parent_snapshot,
..Default::default()
};
let _resp = self
.client
.snapshots()
.prepare(with_namespace!(req, ns))
.await?;
Ok(())
}
pub async fn create_container(&self, image_name: &str, cid: &str, ns: &str) -> Result<(), Err> {
let namespace = self.check_namespace(ns);
let namespace = namespace.as_str();
self.prepare_snapshot(cid, ns, image_name).await?;
let config = ImageManager::get_runtime_config(image_name).unwrap();
let env = config.env;
let args = config.args;
let spec_path = generate_spec(cid, ns, args, env).unwrap();
let spec = fs::read_to_string(spec_path).unwrap();
let spec = Any {
type_url: "types.containerd.io/opencontainers/runtime-spec/1/Spec".to_string(),
value: spec.into_bytes(),
};
let mut containers_client = self.client.containers();
let container = Container {
id: cid.to_string(),
image: image_name.to_string(),
runtime: Some(Runtime {
name: "io.containerd.runc.v2".to_string(),
options: None,
}),
spec: Some(spec),
snapshotter: "overlayfs".to_string(),
snapshot_key: cid.to_string(),
..Default::default()
};
let req = CreateContainerRequest {
container: Some(container),
};
let _resp = containers_client
.create(with_namespace!(req, namespace))
.await
.expect("Failed to create container");
Ok(())
}
pub async fn remove_container(&self, cid: &str, ns: &str) -> Result<(), Err> {
let namespace = self.check_namespace(ns);
let namespace = namespace.as_str();
let request = ListContainersRequest {
..Default::default()
};
let mut cc = self.client.containers();
let response = cc
.list(with_namespace!(request, namespace))
.await?
.into_inner();
let container = response
.containers
.iter()
.find(|container| container.id == cid);
if let Some(container) = container {
let mut tc = self.client.tasks();
let request = ListTasksRequest {
filter: format!("container=={}", cid),
};
let response = tc
.list(with_namespace!(request, namespace))
.await?
.into_inner();
log::info!("Tasks: {:?}", response.tasks);
drop(tc);
if let Some(task) = response.tasks.iter().find(|task| task.id == container.id) {
log::info!("Task found: {}, Status: {}", task.id, task.status);
// TASK_UNKNOWN (0) — 未知状态
// TASK_CREATED (1) — 任务已创建
// TASK_RUNNING (2) — 任务正在运行
// TASK_STOPPED (3) — 任务已停止
// TASK_EXITED (4) — 任务已退出
// TASK_PAUSED (5) — 任务已暂停
// TASK_FAILED (6) — 任务失败
let _ = self.kill_task(task.id.to_string(), ns).await;
let _ = self.delete_task(&task.id, ns).await;
}
let delete_request = DeleteContainerRequest {
id: container.id.clone(),
};
let _ = cc
.delete(with_namespace!(delete_request, namespace))
.await
.expect("Failed to delete container");
//todo 这里删除cni?
self.remove_netns_ip(cid).await;
log::info!("Container: {:?} deleted", cc);
} else {
todo!("Container not found");
}
drop(cc);
Ok(())
}
pub async fn create_and_start_task(
&self,
cid: &str,
ns: &str,
img_name: &str,
) -> Result<(), Err> {
let namespace = self.check_namespace(ns);
let namespace = namespace.as_str();
self.create_task(cid, namespace, img_name).await?;
self.start_task(cid, namespace).await?;
Ok(())
}
/// 返回任务的pid
async fn create_task(&self, cid: &str, ns: &str, img_name: &str) -> Result<u32, Err> {
let mut sc = self.client.snapshots();
let req = MountsRequest {
snapshotter: "overlayfs".to_string(),
key: cid.to_string(),
};
let mounts = sc
.mounts(with_namespace!(req, ns))
.await?
.into_inner()
.mounts;
log::info!("mounts ok");
drop(sc);
log::info!("drop sc ok");
let _ = cni::init_net_work();
log::info!("init_net_work ok");
let ip = cni::create_cni_network(cid.to_string(), ns.to_string())?;
let ports = ImageManager::get_runtime_config(img_name).unwrap().ports;
let network_config = NetworkConfig::new(ip, ports);
log::info!("create_cni_network ok");
self.save_network_config(cid, network_config.clone()).await;
log::info!("save_netns_ip ok, netconfig: {:?}", network_config);
let mut tc = self.client.tasks();
let req = CreateTaskRequest {
container_id: cid.to_string(),
rootfs: mounts,
..Default::default()
};
let resp = tc.create(with_namespace!(req, ns)).await?;
let pid = resp.into_inner().pid;
Ok(pid)
}
async fn start_task(&self, cid: &str, ns: &str) -> Result<(), Err> {
let req = StartRequest {
container_id: cid.to_string(),
..Default::default()
};
let _resp = self.client.tasks().start(with_namespace!(req, ns)).await?;
log::info!("Task: {:?} started", cid);
Ok(())
}
pub async fn kill_task(&self, cid: String, ns: &str) -> Result<(), Err> {
let namespace = self.check_namespace(ns);
let namespace = namespace.as_str();
let mut c = self.client.tasks();
let kill_request = KillRequest {
container_id: cid.to_string(),
signal: 15,
all: true,
..Default::default()
};
c.kill(with_namespace!(kill_request, namespace))
.await
.expect("Failed to kill task");
Ok(())
}
pub async fn pause_task() {
todo!()
}
pub async fn resume_task() {
todo!()
}
pub async fn delete_task(&self, cid: &str, ns: &str) -> Result<(), Err> {
let namespace = self.check_namespace(ns);
let namespace = namespace.as_str();
let mut c = self.client.tasks();
let time_out = Duration::from_secs(30);
let wait_result = timeout(time_out, async {
let wait_request = WaitRequest {
container_id: cid.to_string(),
..Default::default()
};
let _ = c.wait(with_namespace!(wait_request, namespace)).await?;
Ok::<(), Err>(())
})
.await;
log::info!("after wait");
let kill_request = KillRequest {
container_id: cid.to_string(),
signal: 15,
all: true,
..Default::default()
};
c.kill(with_namespace!(kill_request, namespace))
.await
.expect("Failed to kill task");
match wait_result {
Ok(Ok(_)) => {
let req = DeleteTaskRequest {
container_id: cid.to_string(),
};
// let _resp = c
// .delete(with_namespace!(req, namespace))
// .await
// .expect("Failed to delete task");
// println!("Task: {:?} deleted", cid);
match c.delete(with_namespace!(req, namespace)).await {
Ok(_) => {
log::info!("Task: {:?} deleted", cid);
Ok(())
}
Err(e) => {
log::error!("Failed to delete task: {}", e);
Err(e.into())
}
}
}
Ok(Err(e)) => {
log::error!("Wait task failed: {}", e);
Err(e)
}
Err(_) => {
let kill_request = KillRequest {
container_id: cid.to_string(),
signal: 9,
all: true,
..Default::default()
};
match c.kill(with_namespace!(kill_request, namespace)).await {
Ok(_) => {
log::info!("Task: {:?} force killed", cid);
Ok(())
}
Err(e) => {
log::error!("Failed to force kill task: {}", e);
Err(e.into())
}
}
}
}
}
pub async fn load_container(&self, cid: &str, ns: &str) -> Result<Container, Err> {
let namespace = self.check_namespace(ns);
let mut c = self.client.containers();
let request = ListContainersRequest {
..Default::default()
};
let response = c
.list(with_namespace!(request, namespace))
.await?
.into_inner();
let container = response
.containers
.into_iter()
.find(|container| container.id == cid)
.ok_or_else(|| -> Err { format!("Container {} not found", cid).into() })?;
Ok(container)
}
pub async fn get_container_list(&self, ns: &str) -> Result<Vec<String>, tonic::Status> {
let namespace = self.check_namespace(ns);
let namespace = namespace.as_str();
let mut c = self.client.containers();
let request = ListContainersRequest {
..Default::default()
};
let request = with_namespace!(request, namespace);
let response = c.list(request).await?;
Ok(response
.into_inner()
.containers
.into_iter()
.map(|container| container.id)
.collect())
}
pub async fn get_task(&self, cid: &str, ns: &str) -> Result<Process, Err> {
let namespace = self.check_namespace(ns);
let mut tc = self.client.tasks();
let request = ListTasksRequest {
filter: format!("container=={}", cid),
};
let response = tc.list(with_namespace!(request, namespace)).await?;
let tasks = response.into_inner().tasks;
let task = tasks
.into_iter()
.find(|task| task.id == cid)
.ok_or_else(|| -> Err { format!("Task for container {} not found", cid).into() })?;
Ok(task)
}
pub async fn get_task_list() {
todo!()
}
async fn get_parent_snapshot(&self, img_name: &str) -> Result<String, Err> {
let img_config = image_manager::ImageManager::get_image_config(img_name)?;
let mut iter = img_config.rootfs().diff_ids().iter();
let mut ret = iter
.next()
.map_or_else(String::new, |layer_digest| layer_digest.clone());
for layer_digest in iter {
let mut hasher = Sha256::new();
hasher.update(ret.as_bytes());
ret.push_str(&format!(",{}", layer_digest));
hasher.update(" ");
hasher.update(layer_digest);
let digest = ::hex::encode(hasher.finalize());
ret = format!("sha256:{digest}");
}
Ok(ret)
}
fn check_namespace(&self, ns: &str) -> String {
match ns {
"" => DEFAULT_NAMESPACE.to_string(),
_ => ns.to_string(),
}
}
pub async fn list_namespaces(&self) -> Result<Vec<String>, Err> {
let mut c = self.client.namespaces();
let req = ListNamespacesRequest {
..Default::default()
};
let resp = c.list(req).await?;
Ok(resp
.into_inner()
.namespaces
.into_iter()
.map(|ns| ns.name)
.collect())
}
// pub async fn get_task_list(&self, ns: &str) -> Result<Vec<String>, Err> {
// let mut c = self.client.tasks();
// let req = ListTasksRequest {
// ..Default::default()
// };
// let req = c.list(with_namespace!(req, ns)).await?.into_inner().tasks;
// Ok(())
// }
}
#[derive(Debug, Clone)] #[derive(Debug, Clone)]
pub struct NetworkConfig { pub struct NetworkConfig {
ip: String, ip: String,

2
crates/service/src/systemd.rs
View File

@ -1,4 +1,4 @@
use crate::Err; type Err = Box<dyn std::error::Error + Send + Sync>;
use handlebars::Handlebars; use handlebars::Handlebars;
use std::{collections::HashMap, fs::File, io::Write, path::Path}; use std::{collections::HashMap, fs::File, io::Write, path::Path};