vrr/Pulse
2
0
Fork 0
mirror of https://github.com/rcourtman/Pulse.git synced 2026-05-06 16:16:26 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
Pulse/internal/cloudcp/tenant_runtime_rollout.go

770 lines
24 KiB
Go
Raw Blame History

package cloudcp
import (
"context"
"errors"
"fmt"
"io"
"io/fs"
"os"
"path/filepath"
"strings"
"syscall"
"time"
cpDocker "github.com/rcourtman/pulse-go-rewrite/internal/cloudcp/docker"
"github.com/rcourtman/pulse-go-rewrite/internal/cloudcp/registry"
"github.com/rs/zerolog/log"
)
const (
defaultTenantRuntimeRolloutHealthTimeout = 90 * time.Second
defaultTenantRuntimeRolloutHealthPoll = 2 * time.Second
)
// TenantRuntimeRolloutOptions controls the hosted tenant runtime rollout path.
type TenantRuntimeRolloutOptions struct {
TenantID string
Image string
RunID string
SnapshotRoot string
HealthTimeout time.Duration
HealthPollInterval time.Duration
PrunePrevious bool
}
// TenantRuntimeRolloutResult summarizes the canonical runtime state after a
// rollout or drift-reconciliation pass.
type TenantRuntimeRolloutResult struct {
TenantID string
PreviousContainerID string
ActiveContainerID string
ActiveImageRef string
ActiveImageID string
BackupContainerName string
ReconciledOnly bool
}
type TenantRuntimeContractReconcilePlanOptions struct {
TenantIDs []string
All bool
}
type TenantRuntimeContractReconcilePlanItem struct {
TenantID string
LiveContainerID string
ImageRef string
LiveRouteHost string
DesiredRouteHost string
LivePublicURL string
DesiredPublicURL string
Action string
Reason string
}
type TenantRuntimeContractReconcilePlan struct {
Tenants []*TenantRuntimeContractReconcilePlanItem
}
const (
tenantRuntimeContractActionNoop = "noop"
tenantRuntimeContractActionRollout = "rollout"
tenantRuntimeContractActionSkip = "skip"
)
type tenantRuntimeRolloutRegistry interface {
Get(tenantID string) (*registry.Tenant, error)
List() ([]*registry.Tenant, error)
Update(t *registry.Tenant) error
}
type tenantRuntimeRolloutDocker interface {
CreateAndStart(ctx context.Context, tenantID, tenantDataDir string) (string, error)
DesiredRuntimeRouting(tenantID string) cpDocker.TenantRuntimeRoutingContract
HealthCheck(ctx context.Context, containerID string) (bool, error)
Inspect(ctx context.Context, containerIDOrName string) (*cpDocker.RuntimeContainerInfo, error)
Remove(ctx context.Context, containerID string) error
Rename(ctx context.Context, containerIDOrName, newName string) error
Start(ctx context.Context, containerID string) error
Stop(ctx context.Context, containerID string) error
}
type tenantRuntimeRolloutSynchronizer interface {
Snapshot(ctx context.Context, srcDir, snapshotDir string) error
Restore(ctx context.Context, snapshotDir, dstDir string) error
}
type tenantRuntimeRolloutService struct {
registry tenantRuntimeRolloutRegistry
docker tenantRuntimeRolloutDocker
tenantsDir string
synchronizer tenantRuntimeRolloutSynchronizer
now func() time.Time
sleep func(time.Duration)
healthTimeout time.Duration
healthPoll time.Duration
}
// RolloutTenantRuntime executes the canonical hosted tenant runtime rollout
// path using the control plane's registry and Docker manager.
func RolloutTenantRuntime(ctx context.Context, cfg *CPConfig, opts TenantRuntimeRolloutOptions) (*TenantRuntimeRolloutResult, error) {
if cfg == nil {
return nil, fmt.Errorf("control plane config is required")
}
image := strings.TrimSpace(opts.Image)
if image == "" {
image = strings.TrimSpace(cfg.PulseImage)
}
if image == "" {
return nil, fmt.Errorf("missing tenant runtime image")
}
opts.Image = image
service, cleanup, err := newTenantRuntimeRolloutServiceFromConfig(cfg, image)
if err != nil {
return nil, err
}
defer cleanup()
return service.Rollout(ctx, opts)
}
func PlanTenantRuntimeContractReconcile(
ctx context.Context,
cfg *CPConfig,
opts TenantRuntimeContractReconcilePlanOptions,
) (*TenantRuntimeContractReconcilePlan, error) {
service, cleanup, err := newTenantRuntimeRolloutServiceFromConfig(cfg, strings.TrimSpace(cfg.PulseImage))
if err != nil {
return nil, err
}
defer cleanup()
return service.PlanContractReconcile(ctx, opts)
}
func newTenantRuntimeRolloutServiceFromConfig(
cfg *CPConfig,
image string,
) (*tenantRuntimeRolloutService, func(), error) {
if cfg == nil {
return nil, nil, fmt.Errorf("control plane config is required")
}
if err := os.MkdirAll(cfg.TenantsDir(), 0o755); err != nil {
return nil, nil, fmt.Errorf("ensure tenants dir: %w", err)
}
if err := os.MkdirAll(cfg.ControlPlaneDir(), 0o755); err != nil {
return nil, nil, fmt.Errorf("ensure control-plane dir: %w", err)
}
reg, err := registry.NewTenantRegistry(cfg.ControlPlaneDir())
if err != nil {
return nil, nil, fmt.Errorf("open tenant registry: %w", err)
}
dockerMgr, err := cpDocker.NewManager(cpDocker.ManagerConfig{
Image: image,
Network: cfg.DockerNetwork,
BaseDomain: baseDomainFromURL(cfg.BaseURL),
TrialActivationPublicKey: cfg.TrialActivationPublicKey,
TrustedProxyCIDRs: cfg.TrustedProxyCIDRs,
MemoryLimit: cfg.TenantMemoryLimit,
CPUShares: cfg.TenantCPUShares,
})
if err != nil {
_ = reg.Close()
return nil, nil, fmt.Errorf("create docker manager: %w", err)
}
cleanup := func() {
_ = dockerMgr.Close()
_ = reg.Close()
}
service := &tenantRuntimeRolloutService{
registry: reg,
docker: dockerMgr,
tenantsDir: cfg.TenantsDir(),
synchronizer: filesystemTenantRuntimeSynchronizer{},
now: func() time.Time { return time.Now().UTC() },
sleep: time.Sleep,
healthTimeout: defaultTenantRuntimeRolloutHealthTimeout,
healthPoll: defaultTenantRuntimeRolloutHealthPoll,
}
return service, cleanup, nil
}
// Rollout performs the tenant runtime rollout or a drift reconciliation if the
// canonical live container is already on the requested image.
func (s *tenantRuntimeRolloutService) Rollout(ctx context.Context, opts TenantRuntimeRolloutOptions) (*TenantRuntimeRolloutResult, error) {
if s == nil {
return nil, fmt.Errorf("rollout service is nil")
}
tenantID := strings.TrimSpace(opts.TenantID)
if tenantID == "" {
return nil, fmt.Errorf("tenant id is required")
}
image := strings.TrimSpace(opts.Image)
if image == "" {
return nil, fmt.Errorf("image is required")
}
tenant, err := s.registry.Get(tenantID)
if err != nil {
return nil, fmt.Errorf("load tenant %s: %w", tenantID, err)
}
if tenant == nil {
return nil, fmt.Errorf("tenant %s not found", tenantID)
}
healthTimeout := opts.HealthTimeout
if healthTimeout <= 0 {
healthTimeout = s.healthTimeout
}
healthPoll := opts.HealthPollInterval
if healthPoll <= 0 {
healthPoll = s.healthPoll
}
runID := sanitizeTenantRuntimeRolloutRunID(opts.RunID, s.now())
live, err := s.resolveLiveContainer(ctx, tenant)
if err != nil {
return nil, err
}
if strings.TrimSpace(tenant.ContainerID) != "" && tenant.ContainerID != live.ID {
log.Warn().
Str("tenant_id", tenantID).
Str("registry_container_id", tenant.ContainerID).
Str("live_container_id", live.ID).
Msg("Tenant registry container_id drifted from the live runtime container")
}
canonicalName := tenantRuntimeContainerName(tenantID)
desiredRouting := s.docker.DesiredRuntimeRouting(tenantID)
if tenantRuntimeMatchesContract(live, canonicalName, image, desiredRouting) {
healthy, err := s.waitForHealth(ctx, live.ID, healthTimeout, healthPoll)
if err == nil {
if updateErr := s.persistTenantRuntimeState(tenant, live, healthy); updateErr != nil {
return nil, updateErr
}
return &TenantRuntimeRolloutResult{
TenantID: tenantID,
PreviousContainerID: live.ID,
ActiveContainerID: live.ID,
ActiveImageRef: live.ImageRef,
ActiveImageID: live.ImageID,
ReconciledOnly: true,
}, nil
}
log.Warn().
Err(err).
Str("tenant_id", tenantID).
Str("container_id", live.ID).
Msg("Live tenant container already matches requested image but failed health sync; recreating canonically")
} else if live.Name == canonicalName && live.ImageRef == image {
log.Warn().
Str("tenant_id", tenantID).
Str("container_id", live.ID).
Str("live_route_host", live.RouteHost).
Str("desired_route_host", desiredRouting.Host).
Str("live_public_url", live.PublicURL).
Str("desired_public_url", desiredRouting.PublicURL).
Msg("Live tenant container already matches requested image but runtime routing drifted; recreating canonically")
}
tenantDataDir := filepath.Join(s.tenantsDir, tenantID)
snapshotRoot := strings.TrimSpace(opts.SnapshotRoot)
if snapshotRoot == "" {
snapshotRoot = filepath.Join(filepath.Dir(s.tenantsDir), "backups", "rollout")
}
snapshotDir := filepath.Join(snapshotRoot, runID, tenantID)
if err := s.synchronizer.Snapshot(ctx, tenantDataDir, snapshotDir); err != nil {
return nil, fmt.Errorf("snapshot tenant data for %s: %w", tenantID, err)
}
backupName := canonicalName + ".pre-" + runID
if existing, inspectErr := s.docker.Inspect(ctx, backupName); inspectErr == nil && existing != nil {
return nil, fmt.Errorf("backup container name %s already exists", backupName)
} else if inspectErr != nil && !cpDocker.IsNotFound(inspectErr) {
return nil, fmt.Errorf("inspect backup container %s: %w", backupName, inspectErr)
}
if err := s.docker.Stop(ctx, live.ID); err != nil {
return nil, fmt.Errorf("stop live tenant container %s: %w", live.ID, err)
}
if err := s.docker.Rename(ctx, live.ID, backupName); err != nil {
return nil, fmt.Errorf("rename live tenant container %s -> %s: %w", live.ID, backupName, err)
}
restorePrevious := func(newContainerID string, rolloutErr error) error {
var restoreProblems []string
if strings.TrimSpace(newContainerID) != "" {
if removeErr := s.docker.Remove(ctx, newContainerID); removeErr != nil {
restoreProblems = append(restoreProblems, fmt.Sprintf("remove failed container: %v", removeErr))
}
}
if syncErr := s.synchronizer.Restore(ctx, snapshotDir, tenantDataDir); syncErr != nil {
restoreProblems = append(restoreProblems, fmt.Sprintf("restore tenant data: %v", syncErr))
}
if renameErr := s.docker.Rename(ctx, backupName, canonicalName); renameErr != nil {
restoreProblems = append(restoreProblems, fmt.Sprintf("rename backup container back: %v", renameErr))
}
if startErr := s.docker.Start(ctx, canonicalName); startErr != nil {
restoreProblems = append(restoreProblems, fmt.Sprintf("restart previous container: %v", startErr))
}
restoredInfo, inspectErr := s.resolveLiveContainer(ctx, tenant)
if inspectErr != nil {
restoreProblems = append(restoreProblems, fmt.Sprintf("inspect restored container: %v", inspectErr))
} else {
healthy, healthErr := s.waitForHealth(ctx, restoredInfo.ID, healthTimeout, healthPoll)
if healthErr != nil {
restoreProblems = append(restoreProblems, fmt.Sprintf("verify restored container health: %v", healthErr))
}
if updateErr := s.persistTenantRuntimeState(tenant, restoredInfo, healthy); updateErr != nil {
restoreProblems = append(restoreProblems, fmt.Sprintf("persist restored tenant state: %v", updateErr))
}
}
if len(restoreProblems) == 0 {
return rolloutErr
}
return fmt.Errorf("%w; rollback problems: %s", rolloutErr, strings.Join(restoreProblems, "; "))
}
newContainerID, err := s.docker.CreateAndStart(ctx, tenantID, tenantDataDir)
if err != nil {
return nil, restorePrevious("", fmt.Errorf("start new tenant runtime: %w", err))
}
healthy, err := s.waitForHealth(ctx, newContainerID, healthTimeout, healthPoll)
if err != nil || !healthy {
if err == nil {
err = fmt.Errorf("tenant runtime %s failed health checks", newContainerID)
}
return nil, restorePrevious(newContainerID, err)
}
newInfo, err := s.resolveLiveContainer(ctx, tenant)
if err != nil {
return nil, restorePrevious(newContainerID, fmt.Errorf("inspect new tenant runtime: %w", err))
}
if newInfo.Name != canonicalName {
return nil, restorePrevious(newContainerID, fmt.Errorf("new tenant runtime is not using canonical container name %s", canonicalName))
}
if err := s.persistTenantRuntimeState(tenant, newInfo, true); err != nil {
return nil, restorePrevious(newContainerID, err)
}
if opts.PrunePrevious {
if err := s.docker.Remove(ctx, backupName); err != nil {
return nil, fmt.Errorf("remove previous tenant runtime %s: %w", backupName, err)
}
backupName = ""
}
return &TenantRuntimeRolloutResult{
TenantID: tenantID,
PreviousContainerID: live.ID,
ActiveContainerID: newInfo.ID,
ActiveImageRef: newInfo.ImageRef,
ActiveImageID: newInfo.ImageID,
BackupContainerName: backupName,
ReconciledOnly: false,
}, nil
}
func tenantRuntimeMatchesContract(
live *cpDocker.RuntimeContainerInfo,
canonicalName string,
image string,
desiredRouting cpDocker.TenantRuntimeRoutingContract,
) bool {
if live == nil {
return false
}
if live.Name != canonicalName || live.ImageRef != image {
return false
}
return live.RouteHost == desiredRouting.Host && live.PublicURL == desiredRouting.PublicURL
}
func (s *tenantRuntimeRolloutService) PlanContractReconcile(
ctx context.Context,
opts TenantRuntimeContractReconcilePlanOptions,
) (*TenantRuntimeContractReconcilePlan, error) {
if s == nil {
return nil, fmt.Errorf("rollout service is nil")
}
tenants, err := s.selectContractReconcileTenants(opts)
if err != nil {
return nil, err
}
plan := &TenantRuntimeContractReconcilePlan{
Tenants: make([]*TenantRuntimeContractReconcilePlanItem, 0, len(tenants)),
}
for _, tenant := range tenants {
item := &TenantRuntimeContractReconcilePlanItem{
TenantID: strings.TrimSpace(tenant.ID),
}
live, err := s.resolveLiveContainer(ctx, tenant)
if err != nil {
item.Action = tenantRuntimeContractActionSkip
item.Reason = err.Error()
plan.Tenants = append(plan.Tenants, item)
continue
}
item.LiveContainerID = strings.TrimSpace(live.ID)
item.ImageRef = strings.TrimSpace(live.ImageRef)
item.LiveRouteHost = strings.TrimSpace(live.RouteHost)
item.LivePublicURL = strings.TrimSpace(live.PublicURL)
desiredRouting := s.docker.DesiredRuntimeRouting(tenant.ID)
item.DesiredRouteHost = desiredRouting.Host
item.DesiredPublicURL = desiredRouting.PublicURL
if item.ImageRef == "" {
item.Action = tenantRuntimeContractActionSkip
item.Reason = "live runtime image reference is empty"
plan.Tenants = append(plan.Tenants, item)
continue
}
if tenantRuntimeMatchesContract(live, tenantRuntimeContainerName(tenant.ID), item.ImageRef, desiredRouting) {
item.Action = tenantRuntimeContractActionNoop
item.Reason = "runtime already matches canonical hosted contract"
} else {
item.Action = tenantRuntimeContractActionRollout
item.Reason = "runtime contract drift detected"
}
plan.Tenants = append(plan.Tenants, item)
}
return plan, nil
}
func (s *tenantRuntimeRolloutService) selectContractReconcileTenants(
opts TenantRuntimeContractReconcilePlanOptions,
) ([]*registry.Tenant, error) {
if s == nil {
return nil, fmt.Errorf("rollout service is nil")
}
if opts.All && len(dedupeNonEmptyStrings(opts.TenantIDs)) > 0 {
return nil, fmt.Errorf("choose either --all or one or more tenant ids")
}
if opts.All {
tenants, err := s.registry.List()
if err != nil {
return nil, fmt.Errorf("list tenants: %w", err)
}
return tenants, nil
}
tenantIDs := dedupeNonEmptyStrings(opts.TenantIDs)
if len(tenantIDs) == 0 {
return nil, fmt.Errorf("at least one tenant id or --all is required")
}
tenants := make([]*registry.Tenant, 0, len(tenantIDs))
for _, tenantID := range tenantIDs {
tenant, err := s.registry.Get(tenantID)
if err != nil {
return nil, fmt.Errorf("load tenant %s: %w", tenantID, err)
}
if tenant == nil {
tenants = append(tenants, &registry.Tenant{ID: tenantID})
continue
}
tenants = append(tenants, tenant)
}
return tenants, nil
}
func dedupeNonEmptyStrings(values []string) []string {
result := make([]string, 0, len(values))
seen := make(map[string]struct{}, len(values))
for _, value := range values {
value = strings.TrimSpace(value)
if value == "" {
continue
}
if _, ok := seen[value]; ok {
continue
}
seen[value] = struct{}{}
result = append(result, value)
}
return result
}
func (s *tenantRuntimeRolloutService) resolveLiveContainer(ctx context.Context, tenant *registry.Tenant) (*cpDocker.RuntimeContainerInfo, error) {
if tenant == nil {
return nil, fmt.Errorf("tenant is nil")
}
canonicalName := tenantRuntimeContainerName(tenant.ID)
info, err := s.docker.Inspect(ctx, canonicalName)
if err == nil {
return info, nil
}
if !cpDocker.IsNotFound(err) {
return nil, fmt.Errorf("inspect canonical tenant container %s: %w", canonicalName, err)
}
containerID := strings.TrimSpace(tenant.ContainerID)
if containerID == "" {
return nil, fmt.Errorf("tenant %s has no canonical runtime container and no registry container_id", tenant.ID)
}
info, err = s.docker.Inspect(ctx, containerID)
if err != nil {
return nil, fmt.Errorf("inspect tenant container %s: %w", containerID, err)
}
return info, nil
}
func (s *tenantRuntimeRolloutService) waitForHealth(ctx context.Context, containerID string, timeout, poll time.Duration) (bool, error) {
if timeout <= 0 {
timeout = defaultTenantRuntimeRolloutHealthTimeout
}
if poll <= 0 {
poll = defaultTenantRuntimeRolloutHealthPoll
}
deadline := s.now().Add(timeout)
for {
healthy, err := s.docker.HealthCheck(ctx, containerID)
if err == nil && healthy {
return true, nil
}
if ctx.Err() != nil {
return false, ctx.Err()
}
if !s.now().Before(deadline) {
if err != nil {
return false, fmt.Errorf("container %s did not become healthy before timeout: %w", containerID, err)
}
return false, fmt.Errorf("container %s did not become healthy before timeout", containerID)
}
s.sleep(poll)
}
}
func (s *tenantRuntimeRolloutService) persistTenantRuntimeState(tenant *registry.Tenant, info *cpDocker.RuntimeContainerInfo, healthy bool) error {
if tenant == nil {
return fmt.Errorf("tenant is nil")
}
if info == nil {
return fmt.Errorf("runtime container info is nil")
}
now := s.now()
tenant.ContainerID = info.ID
tenant.CurrentImageDigest = info.ImageID
tenant.DesiredImageDigest = info.ImageID
tenant.LastHealthCheck = &now
tenant.HealthCheckOK = healthy
if err := s.registry.Update(tenant); err != nil {
return fmt.Errorf("update tenant %s runtime registry state: %w", tenant.ID, err)
}
return nil
}
func tenantRuntimeContainerName(tenantID string) string {
return "pulse-" + strings.TrimSpace(tenantID)
}
func sanitizeTenantRuntimeRolloutRunID(raw string, now time.Time) string {
value := strings.TrimSpace(raw)
if value == "" {
value = now.UTC().Format("20060102T150405Z")
}
var builder strings.Builder
for _, r := range value {
switch {
case r >= 'a' && r <= 'z':
builder.WriteRune(r)
case r >= 'A' && r <= 'Z':
builder.WriteRune(r)
case r >= '0' && r <= '9':
builder.WriteRune(r)
case r == '-', r == '_', r == '.':
builder.WriteRune(r)
default:
builder.WriteRune('-')
}
}
sanitized := strings.Trim(builder.String(), "-")
if sanitized == "" {
return now.UTC().Format("20060102T150405Z")
}
return sanitized
}
type filesystemTenantRuntimeSynchronizer struct{}
func (filesystemTenantRuntimeSynchronizer) Snapshot(ctx context.Context, srcDir, snapshotDir string) error {
return syncTenantRuntimeTree(ctx, srcDir, snapshotDir)
}
func (filesystemTenantRuntimeSynchronizer) Restore(ctx context.Context, snapshotDir, dstDir string) error {
return syncTenantRuntimeTree(ctx, snapshotDir, dstDir)
}
func syncTenantRuntimeTree(ctx context.Context, srcDir, dstDir string) error {
srcDir = strings.TrimSpace(srcDir)
dstDir = strings.TrimSpace(dstDir)
if srcDir == "" || dstDir == "" {
return fmt.Errorf("source and destination directories are required")
}
srcInfo, err := os.Lstat(srcDir)
if err != nil {
return fmt.Errorf("stat source dir %s: %w", srcDir, err)
}
if !srcInfo.IsDir() {
return fmt.Errorf("source path %s is not a directory", srcDir)
}
if err := os.MkdirAll(dstDir, 0o755); err != nil {
return fmt.Errorf("create destination dir %s: %w", dstDir, err)
}
if err := clearDirectoryContents(dstDir); err != nil {
return fmt.Errorf("clear destination dir %s: %w", dstDir, err)
}
type pendingDirectory struct {
path string
info fs.FileInfo
}
pendingDirs := make([]pendingDirectory, 0, 8)
err = filepath.WalkDir(srcDir, func(path string, d fs.DirEntry, walkErr error) error {
if walkErr != nil {
return walkErr
}
if err := ctx.Err(); err != nil {
return err
}
info, err := os.Lstat(path)
if err != nil {
return err
}
relPath, err := filepath.Rel(srcDir, path)
if err != nil {
return fmt.Errorf("rel path for %s: %w", path, err)
}
targetPath := dstDir
if relPath != "." {
targetPath = filepath.Join(dstDir, relPath)
}
switch mode := info.Mode(); {
case info.IsDir():
if err := os.MkdirAll(targetPath, 0o755); err != nil {
return fmt.Errorf("create directory %s: %w", targetPath, err)
}
pendingDirs = append(pendingDirs, pendingDirectory{path: targetPath, info: info})
return nil
case mode&os.ModeSymlink != 0:
linkTarget, err := os.Readlink(path)
if err != nil {
return fmt.Errorf("read symlink %s: %w", path, err)
}
if err := os.MkdirAll(filepath.Dir(targetPath), 0o755); err != nil {
return fmt.Errorf("create symlink parent %s: %w", filepath.Dir(targetPath), err)
}
if err := os.Symlink(linkTarget, targetPath); err != nil {
return fmt.Errorf("create symlink %s: %w", targetPath, err)
}
if err := preserveOwnership(targetPath, info, true); err != nil {
return fmt.Errorf("preserve symlink ownership %s: %w", targetPath, err)
}
return nil
default:
if err := copyTenantRuntimeFile(path, targetPath, info); err != nil {
return err
}
return nil
}
})
if err != nil {
return fmt.Errorf("sync %s -> %s: %w", srcDir, dstDir, err)
}
for i := len(pendingDirs) - 1; i >= 0; i-- {
dir := pendingDirs[i]
if err := preserveDirectoryMetadata(dir.path, dir.info); err != nil {
return fmt.Errorf("preserve directory metadata %s: %w", dir.path, err)
}
}
return nil
}
func clearDirectoryContents(dir string) error {
entries, err := os.ReadDir(dir)
if err != nil {
return err
}
for _, entry := range entries {
if err := os.RemoveAll(filepath.Join(dir, entry.Name())); err != nil {
return err
}
}
return nil
}
func copyTenantRuntimeFile(srcPath, dstPath string, info fs.FileInfo) error {
if err := os.MkdirAll(filepath.Dir(dstPath), 0o755); err != nil {
return fmt.Errorf("create file parent %s: %w", filepath.Dir(dstPath), err)
}
srcFile, err := os.Open(srcPath)
if err != nil {
return fmt.Errorf("open source file %s: %w", srcPath, err)
}
defer srcFile.Close()
dstFile, err := os.OpenFile(dstPath, os.O_CREATE|os.O_WRONLY|os.O_TRUNC, info.Mode().Perm())
if err != nil {
return fmt.Errorf("open destination file %s: %w", dstPath, err)
}
defer dstFile.Close()
if _, err := io.Copy(dstFile, srcFile); err != nil {
return fmt.Errorf("copy file %s -> %s: %w", srcPath, dstPath, err)
}
if err := dstFile.Chmod(info.Mode().Perm()); err != nil {
return fmt.Errorf("chmod destination file %s: %w", dstPath, err)
}
if err := preserveOwnership(dstPath, info, false); err != nil {
return fmt.Errorf("preserve file ownership %s: %w", dstPath, err)
}
if err := os.Chtimes(dstPath, info.ModTime(), info.ModTime()); err != nil {
return fmt.Errorf("preserve file times %s: %w", dstPath, err)
}
return nil
}
func preserveDirectoryMetadata(path string, info fs.FileInfo) error {
if err := preserveOwnership(path, info, false); err != nil {
return err
}
if err := os.Chmod(path, info.Mode().Perm()); err != nil {
return err
}
if err := os.Chtimes(path, info.ModTime(), info.ModTime()); err != nil {
return err
}
return nil
}
func preserveOwnership(path string, info fs.FileInfo, symlink bool) error {
stat, ok := info.Sys().(*syscall.Stat_t)
if !ok || stat == nil {
return nil
}
var err error
if symlink {
err = os.Lchown(path, int(stat.Uid), int(stat.Gid))
} else {
err = os.Chown(path, int(stat.Uid), int(stat.Gid))
}
if err == nil {
return nil
}
if errors.Is(err, syscall.EPERM) || errors.Is(err, syscall.ENOTSUP) || errors.Is(err, syscall.ENOSYS) {
return nil
}
return err
}
Reference in a new issue View git blame Copy permalink