2015-02-11 01:25:40 +00:00
|
|
|
package handlers
|
2015-01-06 18:37:27 +00:00
|
|
|
|
|
|
|
import (
|
|
|
|
"encoding/json"
|
|
|
|
"fmt"
|
|
|
|
"net/http"
|
2015-02-26 23:47:04 +00:00
|
|
|
"strings"
|
2015-01-06 18:37:27 +00:00
|
|
|
|
2015-02-12 00:49:49 +00:00
|
|
|
"github.com/docker/distribution"
|
2015-02-07 00:19:19 +00:00
|
|
|
ctxu "github.com/docker/distribution/context"
|
2015-01-06 18:37:27 +00:00
|
|
|
"github.com/docker/distribution/digest"
|
|
|
|
"github.com/docker/distribution/manifest"
|
2015-05-27 00:18:32 +00:00
|
|
|
"github.com/docker/distribution/registry/api/errcode"
|
2015-02-11 02:18:45 +00:00
|
|
|
"github.com/docker/distribution/registry/api/v2"
|
2015-01-06 18:37:27 +00:00
|
|
|
"github.com/gorilla/handlers"
|
2015-02-26 23:47:04 +00:00
|
|
|
"golang.org/x/net/context"
|
2015-01-06 18:37:27 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
// imageManifestDispatcher takes the request context and builds the
|
|
|
|
// appropriate handler for handling image manifest requests.
|
|
|
|
func imageManifestDispatcher(ctx *Context, r *http.Request) http.Handler {
|
|
|
|
imageManifestHandler := &imageManifestHandler{
|
|
|
|
Context: ctx,
|
2015-02-26 23:47:04 +00:00
|
|
|
}
|
|
|
|
reference := getReference(ctx)
|
|
|
|
dgst, err := digest.ParseDigest(reference)
|
|
|
|
if err != nil {
|
|
|
|
// We just have a tag
|
|
|
|
imageManifestHandler.Tag = reference
|
|
|
|
} else {
|
|
|
|
imageManifestHandler.Digest = dgst
|
2015-01-06 18:37:27 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
return handlers.MethodHandler{
|
|
|
|
"GET": http.HandlerFunc(imageManifestHandler.GetImageManifest),
|
|
|
|
"PUT": http.HandlerFunc(imageManifestHandler.PutImageManifest),
|
|
|
|
"DELETE": http.HandlerFunc(imageManifestHandler.DeleteImageManifest),
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// imageManifestHandler handles http operations on image manifests.
|
|
|
|
type imageManifestHandler struct {
|
|
|
|
*Context
|
|
|
|
|
2015-02-26 23:47:04 +00:00
|
|
|
// One of tag or digest gets set, depending on what is present in context.
|
|
|
|
Tag string
|
|
|
|
Digest digest.Digest
|
2015-01-06 18:37:27 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
// GetImageManifest fetches the image manifest from the storage backend, if it exists.
|
|
|
|
func (imh *imageManifestHandler) GetImageManifest(w http.ResponseWriter, r *http.Request) {
|
2015-02-07 00:19:19 +00:00
|
|
|
ctxu.GetLogger(imh).Debug("GetImageManifest")
|
2015-01-17 02:32:27 +00:00
|
|
|
manifests := imh.Repository.Manifests()
|
2015-02-26 23:47:04 +00:00
|
|
|
|
|
|
|
var (
|
|
|
|
sm *manifest.SignedManifest
|
|
|
|
err error
|
|
|
|
)
|
|
|
|
|
|
|
|
if imh.Tag != "" {
|
|
|
|
sm, err = manifests.GetByTag(imh.Tag)
|
|
|
|
} else {
|
|
|
|
sm, err = manifests.Get(imh.Digest)
|
|
|
|
}
|
2015-01-06 18:37:27 +00:00
|
|
|
|
|
|
|
if err != nil {
|
2015-05-27 00:18:32 +00:00
|
|
|
imh.Errors = append(imh.Errors, errcode.NewError(v2.ErrorCodeManifestUnknown, err))
|
2015-01-06 18:37:27 +00:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2015-02-26 23:47:04 +00:00
|
|
|
// Get the digest, if we don't already have it.
|
|
|
|
if imh.Digest == "" {
|
|
|
|
dgst, err := digestManifest(imh, sm)
|
|
|
|
if err != nil {
|
2015-05-27 00:18:32 +00:00
|
|
|
imh.Errors = append(imh.Errors, errcode.NewError(v2.ErrorCodeDigestInvalid, err))
|
2015-02-26 23:47:04 +00:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
imh.Digest = dgst
|
|
|
|
}
|
|
|
|
|
2015-01-06 18:37:27 +00:00
|
|
|
w.Header().Set("Content-Type", "application/json; charset=utf-8")
|
2015-02-26 23:47:04 +00:00
|
|
|
w.Header().Set("Content-Length", fmt.Sprint(len(sm.Raw)))
|
|
|
|
w.Header().Set("Docker-Content-Digest", imh.Digest.String())
|
|
|
|
w.Write(sm.Raw)
|
2015-01-06 18:37:27 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
// PutImageManifest validates and stores and image in the registry.
|
|
|
|
func (imh *imageManifestHandler) PutImageManifest(w http.ResponseWriter, r *http.Request) {
|
2015-02-07 00:19:19 +00:00
|
|
|
ctxu.GetLogger(imh).Debug("PutImageManifest")
|
2015-01-17 02:32:27 +00:00
|
|
|
manifests := imh.Repository.Manifests()
|
2015-01-06 18:37:27 +00:00
|
|
|
dec := json.NewDecoder(r.Body)
|
|
|
|
|
|
|
|
var manifest manifest.SignedManifest
|
|
|
|
if err := dec.Decode(&manifest); err != nil {
|
2015-05-27 00:18:32 +00:00
|
|
|
imh.Errors = append(imh.Errors, errcode.NewError(v2.ErrorCodeManifestInvalid, err))
|
2015-01-06 18:37:27 +00:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2015-02-26 23:47:04 +00:00
|
|
|
dgst, err := digestManifest(imh, &manifest)
|
|
|
|
if err != nil {
|
2015-05-27 00:18:32 +00:00
|
|
|
imh.Errors = append(imh.Errors, errcode.NewError(v2.ErrorCodeDigestInvalid, err))
|
2015-02-26 23:47:04 +00:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
// Validate manifest tag or digest matches payload
|
|
|
|
if imh.Tag != "" {
|
|
|
|
if manifest.Tag != imh.Tag {
|
|
|
|
ctxu.GetLogger(imh).Errorf("invalid tag on manifest payload: %q != %q", manifest.Tag, imh.Tag)
|
2015-05-27 00:18:32 +00:00
|
|
|
imh.Errors = append(imh.Errors, errcode.NewError(v2.ErrorCodeTagInvalid))
|
2015-02-26 23:47:04 +00:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
imh.Digest = dgst
|
|
|
|
} else if imh.Digest != "" {
|
|
|
|
if dgst != imh.Digest {
|
|
|
|
ctxu.GetLogger(imh).Errorf("payload digest does match: %q != %q", dgst, imh.Digest)
|
2015-05-27 00:18:32 +00:00
|
|
|
imh.Errors = append(imh.Errors, errcode.NewError(v2.ErrorCodeDigestInvalid))
|
2015-02-26 23:47:04 +00:00
|
|
|
return
|
|
|
|
}
|
|
|
|
} else {
|
2015-05-27 00:18:32 +00:00
|
|
|
imh.Errors = append(imh.Errors, errcode.NewError(v2.ErrorCodeTagInvalid, "no tag or digest specified"))
|
2015-02-26 23:47:04 +00:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
if err := manifests.Put(&manifest); err != nil {
|
2015-01-06 18:37:27 +00:00
|
|
|
// TODO(stevvooe): These error handling switches really need to be
|
|
|
|
// handled by an app global mapper.
|
|
|
|
switch err := err.(type) {
|
2015-02-13 21:59:50 +00:00
|
|
|
case distribution.ErrManifestVerification:
|
2015-01-06 18:37:27 +00:00
|
|
|
for _, verificationError := range err {
|
|
|
|
switch verificationError := verificationError.(type) {
|
Refactor Blob Service API
This PR refactors the blob service API to be oriented around blob descriptors.
Identified by digests, blobs become an abstract entity that can be read and
written using a descriptor as a handle. This allows blobs to take many forms,
such as a ReadSeekCloser or a simple byte buffer, allowing blob oriented
operations to better integrate with blob agnostic APIs (such as the `io`
package). The error definitions are now better organized to reflect conditions
that can only be seen when interacting with the blob API.
The main benefit of this is to separate the much smaller metadata from large
file storage. Many benefits also follow from this. Reading and writing has
been separated into discrete services. Backend implementation is also
simplified, by reducing the amount of metadata that needs to be picked up to
simply serve a read. This also improves cacheability.
"Opening" a blob simply consists of an access check (Stat) and a path
calculation. Caching is greatly simplified and we've made the mapping of
provisional to canonical hashes a first-class concept. BlobDescriptorService
and BlobProvider can be combined in different ways to achieve varying effects.
Recommend Review Approach
-------------------------
This is a very large patch. While apologies are in order, we are getting a
considerable amount of refactoring. Most changes follow from the changes to
the root package (distribution), so start there. From there, the main changes
are in storage. Looking at (*repository).Blobs will help to understand the how
the linkedBlobStore is wired. One can explore the internals within and also
branch out into understanding the changes to the caching layer. Following the
descriptions below will also help to guide you.
To reduce the chances for regressions, it was critical that major changes to
unit tests were avoided. Where possible, they are left untouched and where
not, the spirit is hopefully captured. Pay particular attention to where
behavior may have changed.
Storage
-------
The primary changes to the `storage` package, other than the interface
updates, were to merge the layerstore and blobstore. Blob access is now
layered even further. The first layer, blobStore, exposes a global
`BlobStatter` and `BlobProvider`. Operations here provide a fast path for most
read operations that don't take access control into account. The
`linkedBlobStore` layers on top of the `blobStore`, providing repository-
scoped blob link management in the backend. The `linkedBlobStore` implements
the full `BlobStore` suite, providing access-controlled, repository-local blob
writers. The abstraction between the two is slightly broken in that
`linkedBlobStore` is the only channel under which one can write into the global
blob store. The `linkedBlobStore` also provides flexibility in that it can act
over different link sets depending on configuration. This allows us to use the
same code for signature links, manifest links and blob links. Eventually, we
will fully consolidate this storage.
The improved cache flow comes from the `linkedBlobStatter` component
of `linkedBlobStore`. Using a `cachedBlobStatter`, these combine together to
provide a simple cache hierarchy that should streamline access checks on read
and write operations, or at least provide a single path to optimize. The
metrics have been changed in a slightly incompatible way since the former
operations, Fetch and Exists, are no longer relevant.
The fileWriter and fileReader have been slightly modified to support the rest
of the changes. The most interesting is the removal of the `Stat` call from
`newFileReader`. This was the source of unnecessary round trips that were only
present to look up the size of the resulting reader. Now, one must simply pass
in the size, requiring the caller to decide whether or not the `Stat` call is
appropriate. In several cases, it turned out the caller already had the size
already. The `WriterAt` implementation has been removed from `fileWriter`,
since it is no longer required for `BlobWriter`, reducing the number of paths
which writes may take.
Cache
-----
Unfortunately, the `cache` package required a near full rewrite. It was pretty
mechanical in that the cache is oriented around the `BlobDescriptorService`
slightly modified to include the ability to set the values for individual
digests. While the implementation is oriented towards caching, it can act as a
primary store. Provisions are in place to have repository local metadata, in
addition to global metadata. Fallback is implemented as a part of the storage
package to maintain this flexibility.
One unfortunate side-effect is that caching is now repository-scoped, rather
than global. This should have little effect on performance but may increase
memory usage.
Handlers
--------
The `handlers` package has been updated to leverage the new API. For the most
part, the changes are superficial or mechanical based on the API changes. This
did expose a bug in the handling of provisional vs canonical digests that was
fixed in the unit tests.
Configuration
-------------
One user-facing change has been made to the configuration and is updated in
the associated documentation. The `layerinfo` cache parameter has been
deprecated by the `blobdescriptor` cache parameter. Both are equivalent and
configuration files should be backward compatible.
Notifications
-------------
Changes the `notification` package are simply to support the interface
changes.
Context
-------
A small change has been made to the tracing log-level. Traces have been moved
from "info" to "debug" level to reduce output when not needed.
Signed-off-by: Stephen J Day <stephen.day@docker.com>
2015-05-12 07:10:29 +00:00
|
|
|
case distribution.ErrManifestBlobUnknown:
|
2015-05-27 00:18:32 +00:00
|
|
|
imh.Errors = append(imh.Errors, errcode.NewError(v2.ErrorCodeBlobUnknown, verificationError.Digest))
|
2015-02-13 21:59:50 +00:00
|
|
|
case distribution.ErrManifestUnverified:
|
2015-05-27 00:18:32 +00:00
|
|
|
imh.Errors = append(imh.Errors, errcode.NewError(v2.ErrorCodeManifestUnverified))
|
2015-01-06 18:37:27 +00:00
|
|
|
default:
|
|
|
|
if verificationError == digest.ErrDigestInvalidFormat {
|
2015-05-27 00:18:32 +00:00
|
|
|
imh.Errors = append(imh.Errors, errcode.NewError(v2.ErrorCodeDigestInvalid))
|
2015-01-06 18:37:27 +00:00
|
|
|
} else {
|
2015-05-27 00:18:32 +00:00
|
|
|
imh.Errors = append(imh.Errors, errcode.NewError(errcode.ErrorCodeUnknown, verificationError))
|
2015-01-06 18:37:27 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
default:
|
2015-05-27 00:18:32 +00:00
|
|
|
imh.Errors = append(imh.Errors, errcode.NewError(errcode.ErrorCodeUnknown, err))
|
2015-01-06 18:37:27 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
return
|
|
|
|
}
|
2015-02-04 02:27:40 +00:00
|
|
|
|
2015-02-26 23:47:04 +00:00
|
|
|
// Construct a canonical url for the uploaded manifest.
|
|
|
|
location, err := imh.urlBuilder.BuildManifestURL(imh.Repository.Name(), imh.Digest.String())
|
|
|
|
if err != nil {
|
|
|
|
// NOTE(stevvooe): Given the behavior above, this absurdly unlikely to
|
|
|
|
// happen. We'll log the error here but proceed as if it worked. Worst
|
|
|
|
// case, we set an empty location header.
|
|
|
|
ctxu.GetLogger(imh).Errorf("error building manifest url from digest: %v", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
w.Header().Set("Location", location)
|
|
|
|
w.Header().Set("Docker-Content-Digest", imh.Digest.String())
|
2015-02-04 02:27:40 +00:00
|
|
|
w.WriteHeader(http.StatusAccepted)
|
2015-01-06 18:37:27 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
// DeleteImageManifest removes the image with the given tag from the registry.
|
|
|
|
func (imh *imageManifestHandler) DeleteImageManifest(w http.ResponseWriter, r *http.Request) {
|
2015-02-07 00:19:19 +00:00
|
|
|
ctxu.GetLogger(imh).Debug("DeleteImageManifest")
|
2015-02-26 23:47:04 +00:00
|
|
|
|
|
|
|
// TODO(stevvooe): Unfortunately, at this point, manifest deletes are
|
|
|
|
// unsupported. There are issues with schema version 1 that make removing
|
|
|
|
// tag index entries a serious problem in eventually consistent storage.
|
|
|
|
// Once we work out schema version 2, the full deletion system will be
|
|
|
|
// worked out and we can add support back.
|
2015-05-27 00:18:32 +00:00
|
|
|
imh.Errors = append(imh.Errors, errcode.NewError(v2.ErrorCodeUnsupported))
|
2015-02-26 23:47:04 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
// digestManifest takes a digest of the given manifest. This belongs somewhere
|
|
|
|
// better but we'll wait for a refactoring cycle to find that real somewhere.
|
|
|
|
func digestManifest(ctx context.Context, sm *manifest.SignedManifest) (digest.Digest, error) {
|
|
|
|
p, err := sm.Payload()
|
|
|
|
if err != nil {
|
|
|
|
if !strings.Contains(err.Error(), "missing signature key") {
|
|
|
|
ctxu.GetLogger(ctx).Errorf("error getting manifest payload: %v", err)
|
|
|
|
return "", err
|
2015-01-06 18:37:27 +00:00
|
|
|
}
|
2015-02-26 23:47:04 +00:00
|
|
|
|
|
|
|
// NOTE(stevvooe): There are no signatures but we still have a
|
|
|
|
// payload. The request will fail later but this is not the
|
|
|
|
// responsibility of this part of the code.
|
|
|
|
p = sm.Raw
|
2015-01-06 18:37:27 +00:00
|
|
|
}
|
|
|
|
|
2015-02-26 23:47:04 +00:00
|
|
|
dgst, err := digest.FromBytes(p)
|
|
|
|
if err != nil {
|
|
|
|
ctxu.GetLogger(ctx).Errorf("error digesting manifest: %v", err)
|
|
|
|
return "", err
|
|
|
|
}
|
|
|
|
|
|
|
|
return dgst, err
|
2015-01-06 18:37:27 +00:00
|
|
|
}
|