containerd
/
rust-extensions
mirror of https://github.com/containerd/rust-extensions.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

fix(overlay): If there are a large number of overlay layers, the container cannot be started

This commit is contained in:
zzzzzzzzzy9 2024-04-29 17:19:57 +08:00 committed by Maksym Pavlenko
parent 200f788a0d
commit dafb1b6735
2 changed files with 18 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
crates/shim/Cargo.toml
View File

@ -45,6 +45,7 @@ nix = { workspace = true, features = [
"socket", "socket",
"signal", "signal",
"mount", "mount",
"sched",
] } ] }
oci-spec.workspace = true oci-spec.workspace = true
page_size = "0.6.0" page_size = "0.6.0"

18
crates/shim/src/mount.rs
View File

@ -28,6 +28,8 @@ use log::error;
#[cfg(target_os = "linux")] #[cfg(target_os = "linux")]
use nix::mount::{mount, MsFlags}; use nix::mount::{mount, MsFlags};
#[cfg(target_os = "linux")] #[cfg(target_os = "linux")]
use nix::sched::{unshare, CloneFlags};
#[cfg(target_os = "linux")]
use nix::unistd::{fork, ForkResult}; use nix::unistd::{fork, ForkResult};
use crate::error::{Error, Result}; use crate::error::{Error, Result};
@ -530,7 +532,15 @@ pub fn mount_rootfs(
target: impl AsRef<Path>, target: impl AsRef<Path>,
) -> Result<()> { ) -> Result<()> {
//TODO add helper to mount fuse //TODO add helper to mount fuse
//TODO compactLowerdirOption for overlay let max_size = page_size::get();
// NOTE: 512 id a buffer during pagesize check.
let (chdir, options) =
if fs_type.unwrap_or("") == "overlay" && options_size(options) >= max_size - 512 {
LowerdirCompactor::new(options).compact()
} else {
(None, options.to_vec())
};
let mut flags: MsFlags = MsFlags::from_bits(0).unwrap(); let mut flags: MsFlags = MsFlags::from_bits(0).unwrap();
let mut data = Vec::new(); let mut data = Vec::new();
options.iter().for_each(|x| { options.iter().for_each(|x| {
@ -552,6 +562,12 @@ pub fn mount_rootfs(
None None
}; };
unshare(CloneFlags::CLONE_FS).unwrap();
if let Some(workdir) = chdir {
env::set_current_dir(Path::new(&workdir)).unwrap_or_else(|_| {
unsafe { libc::_exit(i32::from(MountExitCode::ChdirErr)) };
});
}
// mount with non-propagation first, or remount with changed data // mount with non-propagation first, or remount with changed data
let oflags = flags.bitand(PROPAGATION_TYPES.not()); let oflags = flags.bitand(PROPAGATION_TYPES.not());
let zero: MsFlags = MsFlags::from_bits(0).unwrap(); let zero: MsFlags = MsFlags::from_bits(0).unwrap();