// Copyright 2017 Google Inc. All Rights Reserved. // // Licensed under the Apache License, Version 2.0 (the "License"); // you may not use this file except in compliance with the License. // You may obtain a copy of the License at // // http://www.apache.org/licenses/LICENSE-2.0 // // Unless required by applicable law or agreed to in writing, software // distributed under the License is distributed on an "AS IS" BASIS, // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. // See the License for the specific language governing permissions and // limitations under the License. package containerd import ( "context" "fmt" "net" "sync" "time" containersapi "github.com/containerd/containerd/api/services/containers/v1" tasksapi "github.com/containerd/containerd/api/services/tasks/v1" versionapi "github.com/containerd/containerd/api/services/version/v1" "github.com/containerd/containerd/containers" "github.com/containerd/containerd/errdefs" ptypes "github.com/gogo/protobuf/types" "google.golang.org/grpc" "k8s.io/kubernetes/pkg/kubelet/util" ) const ( // k8sNamespace is the namespace we use to connect containerd. k8sNamespace = "k8s.io" ) type client struct { containerService containersapi.ContainersClient taskService tasksapi.TasksClient versionService versionapi.VersionClient } type containerdClient interface { LoadContainer(ctx context.Context, id string) (*containers.Container, error) TaskPid(ctx context.Context, id string) (uint32, error) Version(ctx context.Context) (string, error) } var once sync.Once var ctrdClient containerdClient = nil const ( address = "/run/containerd/containerd.sock" maxBackoffDelay = 3 * time.Second connectionTimeout = 2 * time.Second ) // Client creates a containerd client func Client() (containerdClient, error) { var retErr error once.Do(func() { tryConn, err := net.DialTimeout("unix", address, connectionTimeout) if err != nil { retErr = fmt.Errorf("containerd: cannot unix dial containerd api service: %v", err) return } tryConn.Close() addr, dialer, err := util.GetAddressAndDialer(address) if err != nil { retErr = err return } gopts := []grpc.DialOption{ grpc.WithInsecure(), grpc.WithDialer(dialer), grpc.WithBlock(), grpc.WithBackoffMaxDelay(maxBackoffDelay), grpc.WithTimeout(connectionTimeout), } unary, stream := newNSInterceptors(k8sNamespace) gopts = append(gopts, grpc.WithUnaryInterceptor(unary), grpc.WithStreamInterceptor(stream), ) conn, err := grpc.Dial(addr, gopts...) if err != nil { retErr = err return } ctrdClient = &client{ containerService: containersapi.NewContainersClient(conn), taskService: tasksapi.NewTasksClient(conn), versionService: versionapi.NewVersionClient(conn), } }) return ctrdClient, retErr } func (c *client) LoadContainer(ctx context.Context, id string) (*containers.Container, error) { r, err := c.containerService.Get(ctx, &containersapi.GetContainerRequest{ ID: id, }) if err != nil { return nil, errdefs.FromGRPC(err) } return containerFromProto(r.Container), nil } func (c *client) TaskPid(ctx context.Context, id string) (uint32, error) { response, err := c.taskService.Get(ctx, &tasksapi.GetRequest{ ContainerID: id, }) if err != nil { return 0, errdefs.FromGRPC(err) } return response.Process.Pid, nil } func (c *client) Version(ctx context.Context) (string, error) { response, err := c.versionService.Version(ctx, &ptypes.Empty{}) if err != nil { return "", errdefs.FromGRPC(err) } return response.Version, nil } func containerFromProto(containerpb containersapi.Container) *containers.Container { var runtime containers.RuntimeInfo if containerpb.Runtime != nil { runtime = containers.RuntimeInfo{ Name: containerpb.Runtime.Name, Options: containerpb.Runtime.Options, } } return &containers.Container{ ID: containerpb.ID, Labels: containerpb.Labels, Image: containerpb.Image, Runtime: runtime, Spec: containerpb.Spec, Snapshotter: containerpb.Snapshotter, SnapshotKey: containerpb.SnapshotKey, Extensions: containerpb.Extensions, } }