Kezdőlap Felfedezés Súgó
Bejelentkezés
tzeneto
/
custom-kube-scheduler
Figyelés 1
Kedvenc 0
Másolás 0
Fájlok Problémák 0 Beolvasztási kérések 0 Wiki
Fa: d6418ba615
Branch-ok Tag-ek
custom-kube-...
/
kubernetes-v1.15.4
/
pkg
/
volume
/
util
/
subpath
/
subpath_nsenter.go

subpath_nsenter.go 6.2 KB
Előzmények Nyers

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187 
  1. // +build linux
    2. 

  2. 

  3. /*
    4. 

  4. Copyright 2014 The Kubernetes Authors.
    5. 

  5. 

  6. Licensed under the Apache License, Version 2.0 (the "License");
    7. 

  7. you may not use this file except in compliance with the License.
    8. 

  8. You may obtain a copy of the License at
    9. 

  9. 

  10.     http://www.apache.org/licenses/LICENSE-2.0
    11. 

  11. 

  12. Unless required by applicable law or agreed to in writing, software
    13. 

  13. distributed under the License is distributed on an "AS IS" BASIS,
    14. 

  14. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    15. 

  15. See the License for the specific language governing permissions and
    16. 

  16. limitations under the License.
    17. 

  17. */
    18. 

  18. 

  19. package subpath
    20. 

  20. 

  21. import (
    22. 

  22. 	"fmt"
    23. 

  23. 	"os"
    24. 

  24. 	"path/filepath"
    25. 

  25. 	"syscall"
    26. 

  26. 

  27. 	"golang.org/x/sys/unix"
    28. 

  28. 

  29. 	"k8s.io/klog"
    30. 

  30. 	"k8s.io/utils/nsenter"
    31. 

  31. 

  32. 	"k8s.io/kubernetes/pkg/util/mount"
    33. 

  33. )
    34. 

  34. 

  35. type subpathNSE struct {
    36. 

  36. 	mounter mount.Interface
    37. 

  37. 	ne      *nsenter.Nsenter
    38. 

  38. 	rootDir string
    39. 

  39. }
    40. 

  40. 

  41. // Compile time-check for all implementers of subpath interface
    42. 

  42. var _ Interface = &subpathNSE{}
    43. 

  43. 

  44. // NewNSEnter returns a subpath.Interface that is to be used with the NsenterMounter
    45. 

  45. // It is only valid on Linux systems
    46. 

  46. func NewNSEnter(mounter mount.Interface, ne *nsenter.Nsenter, rootDir string) Interface {
    47. 

  47. 	return &subpathNSE{
    48. 

  48. 		mounter: mounter,
    49. 

  49. 		ne:      ne,
    50. 

  50. 		rootDir: rootDir,
    51. 

  51. 	}
    52. 

  52. }
    53. 

  53. 

  54. func (sp *subpathNSE) CleanSubPaths(podDir string, volumeName string) error {
    55. 

  55. 	return doCleanSubPaths(sp.mounter, podDir, volumeName)
    56. 

  56. }
    57. 

  57. 

  58. func (sp *subpathNSE) PrepareSafeSubpath(subPath Subpath) (newHostPath string, cleanupAction func(), err error) {
    59. 

  59. 	// Bind-mount the subpath to avoid using symlinks in subpaths.
    60. 

  60. 	newHostPath, err = sp.doNsEnterBindSubPath(subPath)
    61. 

  61. 

  62. 	// There is no action when the container starts. Bind-mount will be cleaned
    63. 

  63. 	// when container stops by CleanSubPaths.
    64. 

  64. 	cleanupAction = nil
    65. 

  65. 	return newHostPath, cleanupAction, err
    66. 

  66. }
    67. 

  67. 

  68. func (sp *subpathNSE) SafeMakeDir(subdir string, base string, perm os.FileMode) error {
    69. 

  69. 	fullSubdirPath := filepath.Join(base, subdir)
    70. 

  70. 	evaluatedSubdirPath, err := sp.ne.EvalSymlinks(fullSubdirPath, false /* mustExist */)
    71. 

  71. 	if err != nil {
    72. 

  72. 		return fmt.Errorf("error resolving symlinks in %s: %s", fullSubdirPath, err)
    73. 

  73. 	}
    74. 

  74. 	evaluatedSubdirPath = filepath.Clean(evaluatedSubdirPath)
    75. 

  75. 

  76. 	evaluatedBase, err := sp.ne.EvalSymlinks(base, true /* mustExist */)
    77. 

  77. 	if err != nil {
    78. 

  78. 		return fmt.Errorf("error resolving symlinks in %s: %s", base, err)
    79. 

  79. 	}
    80. 

  80. 	evaluatedBase = filepath.Clean(evaluatedBase)
    81. 

  81. 

  82. 	rootDir := filepath.Clean(sp.rootDir)
    83. 

  83. 	if mount.PathWithinBase(evaluatedBase, rootDir) {
    84. 

  84. 		// Base is in /var/lib/kubelet. This directory is shared between the
    85. 

  85. 		// container with kubelet and the host. We don't need to add '/rootfs'.
    86. 

  86. 		// This is useful when /rootfs is mounted as read-only - we can still
    87. 

  87. 		// create subpaths for paths in /var/lib/kubelet.
    88. 

  88. 		return doSafeMakeDir(evaluatedSubdirPath, evaluatedBase, perm)
    89. 

  89. 	}
    90. 

  90. 

  91. 	// Base is somewhere on the host's filesystem. Add /rootfs and try to make
    92. 

  92. 	// the directory there.
    93. 

  93. 	// This requires /rootfs to be writable.
    94. 

  94. 	kubeletSubdirPath := sp.ne.KubeletPath(evaluatedSubdirPath)
    95. 

  95. 	kubeletBase := sp.ne.KubeletPath(evaluatedBase)
    96. 

  96. 	return doSafeMakeDir(kubeletSubdirPath, kubeletBase, perm)
    97. 

  97. }
    98. 

  98. 

  99. func (sp *subpathNSE) doNsEnterBindSubPath(subpath Subpath) (hostPath string, err error) {
    100. 

  100. 	// Linux, kubelet runs in a container:
    101. 

  101. 	// - safely open the subpath
    102. 

  102. 	// - bind-mount the subpath to target (this can be unsafe)
    103. 

  103. 	// - check that we mounted the right thing by comparing device ID and inode
    104. 

  104. 	//   of the subpath (via safely opened fd) and the target (that's under our
    105. 

  105. 	//   control)
    106. 

  106. 

  107. 	// Evaluate all symlinks here once for all subsequent functions.
    108. 

  108. 	evaluatedHostVolumePath, err := sp.ne.EvalSymlinks(subpath.VolumePath, true /*mustExist*/)
    109. 

  109. 	if err != nil {
    110. 

  110. 		return "", fmt.Errorf("error resolving symlinks in %q: %v", subpath.VolumePath, err)
    111. 

  111. 	}
    112. 

  112. 	evaluatedHostSubpath, err := sp.ne.EvalSymlinks(subpath.Path, true /*mustExist*/)
    113. 

  113. 	if err != nil {
    114. 

  114. 		return "", fmt.Errorf("error resolving symlinks in %q: %v", subpath.Path, err)
    115. 

  115. 	}
    116. 

  116. 	klog.V(5).Infof("doBindSubPath %q (%q) for volumepath %q", subpath.Path, evaluatedHostSubpath, subpath.VolumePath)
    117. 

  117. 	subpath.VolumePath = sp.ne.KubeletPath(evaluatedHostVolumePath)
    118. 

  118. 	subpath.Path = sp.ne.KubeletPath(evaluatedHostSubpath)
    119. 

  119. 

  120. 	// Check the subpath is correct and open it
    121. 

  121. 	fd, err := safeOpenSubPath(sp.mounter, subpath)
    122. 

  122. 	if err != nil {
    123. 

  123. 		return "", err
    124. 

  124. 	}
    125. 

  125. 	defer syscall.Close(fd)
    126. 

  126. 

  127. 	alreadyMounted, bindPathTarget, err := prepareSubpathTarget(sp.mounter, subpath)
    128. 

  128. 	if err != nil {
    129. 

  129. 		return "", err
    130. 

  130. 	}
    131. 

  131. 	if alreadyMounted {
    132. 

  132. 		return bindPathTarget, nil
    133. 

  133. 	}
    134. 

  134. 

  135. 	success := false
    136. 

  136. 	defer func() {
    137. 

  137. 		// Cleanup subpath on error
    138. 

  138. 		if !success {
    139. 

  139. 			klog.V(4).Infof("doNsEnterBindSubPath() failed for %q, cleaning up subpath", bindPathTarget)
    140. 

  140. 			if cleanErr := cleanSubPath(sp.mounter, subpath); cleanErr != nil {
    141. 

  141. 				klog.Errorf("Failed to clean subpath %q: %v", bindPathTarget, cleanErr)
    142. 

  142. 			}
    143. 

  143. 		}
    144. 

  144. 	}()
    145. 

  145. 

  146. 	// Leap of faith: optimistically expect that nobody has modified previously
    147. 

  147. 	// expanded evalSubPath with evil symlinks and bind-mount it.
    148. 

  148. 	// Mount is done on the host! don't use kubelet path!
    149. 

  149. 	klog.V(5).Infof("bind mounting %q at %q", evaluatedHostSubpath, bindPathTarget)
    150. 

  150. 	if err = sp.mounter.Mount(evaluatedHostSubpath, bindPathTarget, "" /*fstype*/, []string{"bind"}); err != nil {
    151. 

  151. 		return "", fmt.Errorf("error mounting %s: %s", evaluatedHostSubpath, err)
    152. 

  152. 	}
    153. 

  153. 

  154. 	// Check that the bind-mount target is the same inode and device as the
    155. 

  155. 	// source that we keept open, i.e. we mounted the right thing.
    156. 

  156. 	err = checkDeviceInode(fd, bindPathTarget)
    157. 

  157. 	if err != nil {
    158. 

  158. 		return "", fmt.Errorf("error checking bind mount for subpath %s: %s", subpath.VolumePath, err)
    159. 

  159. 	}
    160. 

  160. 

  161. 	success = true
    162. 

  162. 	klog.V(3).Infof("Bound SubPath %s into %s", subpath.Path, bindPathTarget)
    163. 

  163. 	return bindPathTarget, nil
    164. 

  164. }
    165. 

  165. 

  166. // checkDeviceInode checks that opened file and path represent the same file.
    167. 

  167. func checkDeviceInode(fd int, path string) error {
    168. 

  168. 	var srcStat, dstStat unix.Stat_t
    169. 

  169. 	err := unix.Fstat(fd, &srcStat)
    170. 

  170. 	if err != nil {
    171. 

  171. 		return fmt.Errorf("error running fstat on subpath FD: %v", err)
    172. 

  172. 	}
    173. 

  173. 

  174. 	err = unix.Stat(path, &dstStat)
    175. 

  175. 	if err != nil {
    176. 

  176. 		return fmt.Errorf("error running fstat on %s: %v", path, err)
    177. 

  177. 	}
    178. 

  178. 

  179. 	if srcStat.Dev != dstStat.Dev {
    180. 

  180. 		return fmt.Errorf("different device number")
    181. 

  181. 	}
    182. 

  182. 	if srcStat.Ino != dstStat.Ino {
    183. 

  183. 		return fmt.Errorf("different inode")
    184. 

  184. 	}
    185. 

  185. 	return nil
    186. 

  186. }
    187. 

  187.