podman save use named pipe

[QiWang19]

podman save uses named pipe as output path, not directly using /dev/stdout.
fix #7017

Signed-off-by: Qi Wang [email protected]

[QiWang19]

@mtrmac I'm not sure if this works. Could you PTAL?

[mtrmac]

I don’t quite think this works.

It’s probably worth splitting this into a separate function to keep the main flow fairly simple.

[mtrmac]

Things that should work:

• The base case of podman save | cat > file or something similar.
• podman save > /dev/full should reliably fail; so should podman save | read-one-byte-and-exit.
• podman save | some-very-slow-consumer should reliably receive all of the file (i.e. the save should not terminate until all of the data has been written).

See #7017 (comment) for a broad outline of what I think is necessary to make that work. (But, to be fair, I haven’t written and tested the code.)

[QiWang19]

The documentation example, are you suggesting this should fail?

$ podman save > alpine-all.tar alpine

[mtrmac]

The documentation exampl, are you suggesting this should fail?

$ podman save > alpine-all.tar alpine

I’m not quite sure what this refers to, but no, not in general. I was some ways to trigger failures that should be detected (note that /dev/full is a specially behaving device, not a random meaningless name).

[QiWang19]

@mtrmac PTAL

[mtrmac]

AFAICS cleanup() blocks until the pipe is opened and closed, which may never happen on some of the error paths, and this would just hang.

Maybe use context.Context to terminate that wait, or just expose errc and have this function inject a fallback “wait canceled” error that is then ignored in favor of the real cause.

[QiWang19]

@mtrmac PTAL

[QiWang19]

how to use context.Context to terminate?

[mtrmac]

The way the cleanup function now returns a channel, a separate termination context might not be necessary:

func save(…) (finalErr error) {
succeeded := false
…
if /* use pipe */ {
    pipePath, cleanup, err := setupPipe()
    …
    if cleanup != nil {
        defer func() {
            channel := cleanup()
            if succeeded {
                writeErr := <- channel
                if writeErr != nil && finalErr == nil { finalErr = writeErr }
            }
        }
   }
}
…
err := registry.ImageEngine().Save(context.Background(), args[0], tags, saveOpts)
if err == nil { succeeded = true }
return err
}

[rhatdan]

/approve

[rhatdan]

Could you eliminate this empty line.

[rhatdan]

Can you make "wait canceled" into a constant error, rather then a string. Call it Success.

[rhatdan]

Please use golang.org/x/sys/unix instead of syscall

[openshift-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: QiWang19, rhatdan

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [rhatdan]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[rhatdan]

Can you add some tests?

[QiWang19]

@mtrmac PTAL, will this avoid the hangs?

[QiWang19]

Can you add some tests?

The command needs test is podman save --format oci-archive alpine | cat> test.tar
I haven't foundd ways to test the pipe using ginkgo or in system tests

[mtrmac]

I don’t think this works. Test by replacing the parse.ValidateFileName call with a forced err = "this failed" — the command should not hang, it should remove the temporary directory, and it should return the “this failed” error string.

[mtrmac]

Why is this reporting any error at all when the goroutine has succeeded?

[mtrmac]

Can you add some tests?

The command needs test is podman save --format oci-archive alpine | cat> test.tar
I haven't foundd ways to test the pipe using ginkgo or in system tests

podman/test/system/015-help.bats

Line 19 in 43f2771

run_podman help "$@" |\

seems to suggest it should be possible.

In Go, It might be possible to use os.Pipe + cmd.Exec to run the second command; the PodmanAsUserBase call stack would have to be extended with a stdout parameter. That might not be worth the effort.

[edsantiago]

seems to suggest it should be possible

Without going into too much gory detail... it's not.The BATS run function redirects stdout and stderr, no choice about it. run_podman, as a courtesy for debugging test failures, echos the captured result to stdout, and that can (with caveats) be used in some cases.

That cannot work for this PR because the critical point is that the podman command itself have the stdout filehandle as a pipe. I have given @QiWang19 a one-time permission to run $PODMAN directly in a new test, without going through run_podman, as long as there is a big scary DO NOT EVER DO THIS warning.

[mtrmac]

seems to suggest it should be possible

Without going into too much gory detail... it's not.

Thanks!

[mtrmac]

LGTM.

(I’ll leave the aesthetic nits and tests, if any, up to Podman experts.)

[mtrmac]

Non-blocking: The semantics of the cleanup callback is now complex enough that it might be worth documenting. (OTOH it’s not that much code and it has a single user.)

[QiWang19]

@edsantiago @mtrmac @rhatdan @TomSweeneyRedHat PTAL

[TomSweeneyRedHat]

LGTM
thanks for the work on this @QiWang19 and @mtrmac !

[rhatdan]

/lgtm