Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Implement Windows mounting for bind and windows-layer mounts
Using symlinks for bind mounts means we are not protecting an RO-mounted layer against modification. Windows doesn't currently appear to offer a better approach though, as we cannot create arbitrary empty WCOW scratch layers at this time. For windows-layer mounts, Unmount does not have access to the mounts used to create it. So we store the relevant data in an Alternate Data Stream on the mountpoint in order to be able to Unmount later. Based on approach in #2366, with sign-offs recorded as 'Based-on-work-by' trailers below. This also partially-reverts some changes made in #6034 as they are not needed with this mounting implmentation, which no longer needs to be handled specially by the caller compared to non-Windows mounts. Signed-off-by: Paul "TBBle" Hampson <Paul.Hampson@Pobox.com> Based-on-work-by: Michael Crosby <crosbymichael@gmail.com> Based-on-work-by: Darren Stahl <darst@microsoft.com>
- Loading branch information
1 parent
1a64ee1
commit b9a8aad
Showing
3 changed files
with
191 additions
and
47 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,75 @@ | ||
/* | ||
Copyright The containerd Authors. | ||
Licensed under the Apache License, Version 2.0 (the "License"); | ||
you may not use this file except in compliance with the License. | ||
You may obtain a copy of the License at | ||
http://www.apache.org/licenses/LICENSE-2.0 | ||
Unless required by applicable law or agreed to in writing, software | ||
distributed under the License is distributed on an "AS IS" BASIS, | ||
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
See the License for the specific language governing permissions and | ||
limitations under the License. | ||
*/ | ||
|
||
package mount | ||
|
||
// Simple wrappers around SetVolumeMountPoint and DeleteVolumeMountPoint | ||
|
||
import ( | ||
"fmt" | ||
"path/filepath" | ||
"strings" | ||
"syscall" | ||
|
||
"github.com/containerd/containerd/errdefs" | ||
"golang.org/x/sys/windows" | ||
) | ||
|
||
// Mount volumePath (in format '\\?\Volume{GUID}' at targetPath. | ||
// https://docs.microsoft.com/en-us/windows/win32/api/winbase/nf-winbase-setvolumemountpointw | ||
func setVolumeMountPoint(targetPath string, volumePath string) error { | ||
if !strings.HasPrefix(volumePath, "\\\\?\\Volume{") { | ||
return fmt.Errorf("unable to mount non-volume path %s: %w", volumePath, errdefs.ErrInvalidArgument) | ||
} | ||
|
||
// Both must end in a backslash | ||
slashedTarget := filepath.Clean(targetPath) + string(filepath.Separator) | ||
slashedVolume := volumePath + string(filepath.Separator) | ||
|
||
targetP, err := syscall.UTF16PtrFromString(slashedTarget) | ||
if err != nil { | ||
return fmt.Errorf("unable to utf16-ise %s: %w", slashedTarget, err) | ||
} | ||
|
||
volumeP, err := syscall.UTF16PtrFromString(slashedVolume) | ||
if err != nil { | ||
return fmt.Errorf("unable to utf16-ise %s: %w", slashedVolume, err) | ||
} | ||
|
||
if err := windows.SetVolumeMountPoint(targetP, volumeP); err != nil { | ||
return fmt.Errorf("failed calling SetVolumeMount('%s', '%s'): %w", slashedTarget, slashedVolume, err) | ||
} | ||
|
||
return nil | ||
} | ||
|
||
// Remove the volume mount at targetPath | ||
// https://docs.microsoft.com/en-us/windows/win32/api/winbase/nf-winbase-deletevolumemountpointa | ||
func deleteVolumeMountPoint(targetPath string) error { | ||
// Must end in a backslash | ||
slashedTarget := filepath.Clean(targetPath) + string(filepath.Separator) | ||
|
||
targetP, err := syscall.UTF16PtrFromString(slashedTarget) | ||
if err != nil { | ||
return fmt.Errorf("unable to utf16-ise %s: %w", slashedTarget, err) | ||
} | ||
|
||
if err := windows.DeleteVolumeMountPoint(targetP); err != nil { | ||
return fmt.Errorf("failed calling DeleteVolumeMountPoint('%s'): %w", slashedTarget, err) | ||
} | ||
|
||
return nil | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters