Gitiles
Code Review Sign In
gerrit.opencord.org / cord / 05c420b351850af236d3dda0e46a06f181521c22 / . / scripts / imagebuilder.py
blob: 3bc4947ea5ad4a4d0bd6176458d8ad2df2696ad2 [file] [log] [blame]
Matteo Scandolo37efb3d2017-08-09 16:36:09 -0700[diff] [blame]1#!/usr/bin/env python
Matteo Scandolo60b640f2017-08-08 13:05:22 -0700[diff] [blame]2
3# Copyright 2017-present Open Networking Foundation
4#
5# Licensed under the Apache License, Version 2.0 (the "License");
6# you may not use this file except in compliance with the License.
7# You may obtain a copy of the License at
8#
9# http://www.apache.org/licenses/LICENSE-2.0
10#
11# Unless required by applicable law or agreed to in writing, software
12# distributed under the License is distributed on an "AS IS" BASIS,
13# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14# See the License for the specific language governing permissions and
15# limitations under the License.
16
17
Zack Williamsce63eb02017-02-28 10:46:22 -0700[diff] [blame]18
19# imagebuilder.py
20# rebuilds/fetches docker container images per their git status in repo
21# in addition to docker, needs `sudo apt-get install python-git`
22
23import argparse
24import datetime
25import git
26import json
27import logging
28import os
29import re
30import string
31import sys
32import tarfile
33import tempfile
34import time
35import xml.etree.ElementTree as ET
36import yaml
37
38global args
39global conf
40global build_tag
41global buildable_images
42global pull_only_images
43
44
45def setup_logging(name=None, logfile=False):
46 global args
47
48 if name:
49 log = logging.getLogger("-".join([__name__, name]))
50 else:
51 log = logging.getLogger(__name__)
52
53 slh = logging.StreamHandler(sys.stdout)
54 slh.setFormatter(logging.Formatter(logging.BASIC_FORMAT))
55 slh.setLevel(logging.DEBUG)
56
57 log.addHandler(slh)
58
59 # secondary logging to a file, always DEBUG level
60 if logfile:
61 fn = os.path.join(conf.logdir, "%s.log" % name)
62 flh = logging.FileHandler(fn)
63 flh.setFormatter(logging.Formatter(logging.BASIC_FORMAT))
64 flh.setLevel(logging.DEBUG)
65 log.addHandler(flh)
66
67 return log
68
69LOG = setup_logging()
70
71
72def parse_args():
73 global args
74
75 parser = argparse.ArgumentParser()
76
77 parser.add_argument('-c', '--container_list', default='docker_images.yml',
78 type=argparse.FileType('r'),
79 help="YAML Config and master container list")
80
81 # -f is optional, so using type=argparse.FileType is problematic
82 parser.add_argument('-f', '--filter_images', default=None, action='store',
83 help="YAML file restricting images to build/fetch")
84
85 parser.add_argument('-a', '--actions_taken', default=None,
86 help="Save a YAML file with actions taken during run")
87
88 # FIXME - the -b and -p options are currently unimplemented
89 group = parser.add_mutually_exclusive_group()
90
91 group.add_argument('-b', '--build_force', action="store_true",
92 help="Build (don't fetch) all internal containers")
93
94 group.add_argument('-p', '--pull_force', action="store_true",
95 help="Only pull containers, fail if build required")
96
97 parser.add_argument('-d', '--dry_run', action="store_true",
98 help="Don't build/fetch anything")
99
100 parser.add_argument('-g', '--graph', default=None,
101 help="Filename for DOT graph file of image dependency")
102
103 parser.add_argument('-l', '--build_log_dir', action="store",
104 help="Log build output to this dir if set")
105
106 parser.add_argument('-r', '--repo_root', default="..", action="store",
107 help="Repo root directory")
108
109 parser.add_argument('-t', '--build_tag', default=None, action="store",
110 help="tag all images built/pulled using this tag")
111
112 parser.add_argument('-v', '--verbosity', action='count', default=1,
113 help="Repeat to increase log level")
114
115 args = parser.parse_args()
116
117 if args.verbosity > 1:
118 LOG.setLevel(logging.DEBUG)
119 else:
120 LOG.setLevel(logging.INFO)
121
122
123def load_config():
124 global args
125 global conf
126 global buildable_images
127 global pull_only_images
128 global build_tag
129
130 try:
131 cl_abs = os.path.abspath(args.container_list.name)
132 LOG.info("Master container list file: %s" % cl_abs)
133
134 conf = yaml.safe_load(args.container_list)
135 except yaml.YAMLError:
136 LOG.exception("Problem loading container list file")
137 sys.exit(1)
138
139 if args.build_tag:
140 build_tag = args.build_tag
141 else:
142 build_tag = conf['docker_build_tag']
143
144 if args.filter_images is None:
145 buildable_images = conf['buildable_images']
146 pull_only_images = conf['pull_only_images']
147 else:
148 fi_abs = os.path.abspath(args.filter_images)
149
150 LOG.info("Filtering image list per 'docker_image_whitelist' in: %s" %
151 fi_abs)
152 try:
153 fi_fh = open(fi_abs, 'r')
154 filter_list = yaml.safe_load(fi_fh)
155 fi_fh.close()
156
157 if 'docker_image_whitelist' not in filter_list:
158 LOG.error("No 'docker_image_whitelist' defined in: %s" %
159 fi_abs)
160 sys.exit(1)
161
162 # fail if filter list specifies tags
163 for f_i in filter_list['docker_image_whitelist']:
164 (name, tag) = split_name(f_i)
165 if tag:
166 LOG.error("filter list may not be tagged")
167 sys.exit(1)
168
169 buildable_images = [img for img in conf['buildable_images']
170 if split_name(img['name'])[0]
171 in filter_list['docker_image_whitelist']]
172
173 pull_only_images = [img for img in conf['pull_only_images']
174 if split_name(img)[0]
175 in filter_list['docker_image_whitelist']]
176
177 except:
178 LOG.exception("Problem with filter list file")
179 sys.exit(1)
180
181
182def split_name(input_name):
183 """ split a docker image name in the 'name:tag' format into components """
184
185 name = input_name
186 tag = None
187
188 # split name:tag if given in combined format
189 name_tag_split = string.split(input_name, ":")
190
191 if len(name_tag_split) > 1: # has tag, return separated version
192 name = name_tag_split[0]
193 tag = name_tag_split[1]
194
195 return (name, tag)
196
197
198class RepoRepo():
199 """ git repo managed by repo tool"""
200
201 manifest_branch = ""
202
203 def __init__(self, name, path, remote):
204
205 self.name = name
206 self.path = path
207 self.remote = remote
208 self.git_url = "%s%s" % (remote, name)
209
210 try:
211 self.git_repo_o = git.Repo(self.abspath())
212 LOG.debug("Repo - %s, path: %s" % (name, path))
213
214 self.head_commit = self.git_repo_o.head.commit.hexsha
215 LOG.debug(" head commit: %s" % self.head_commit)
216
217 commit_t = time.gmtime(self.git_repo_o.head.commit.committed_date)
218 self.head_commit_t = time.strftime("%Y-%m-%dT%H:%M:%SZ", commit_t)
219 LOG.debug(" commit date: %s" % self.head_commit_t)
220
221 self.clean = not self.git_repo_o.is_dirty(untracked_files=True)
222 LOG.debug(" clean: %s" % self.clean)
223
224 # list of untracked files (expensive operation)
225 self.untracked_files = self.git_repo_o.untracked_files
226 for u_file in self.untracked_files:
227 LOG.debug(" Untracked: %s" % u_file)
228
229 except Exception:
230 LOG.exception("Error with git repo: %s" % name)
231 sys.exit(1)
232
233 def abspath(self):
234 global args
235 return os.path.abspath(os.path.join(args.repo_root, self.path))
236
237 def path_clean(self, test_path, branch=""):
238 """ Is working tree on branch and no untracked files in path? """
239 global conf
240
241 if not branch:
242 branch = self.manifest_branch
243
244 LOG.debug(" Looking for changes in path: %s" % test_path)
245
246 p_clean = True
247
248 # diff between branch head and working tree (None)
249 branch_head = self.git_repo_o.commit(branch)
250 diff = branch_head.diff(None, paths=test_path)
251
252 if diff:
253 p_clean = False
254
255 for diff_obj in diff:
256 LOG.debug(" file not on branch: %s" % diff_obj)
257
258 # remove . to compare paths using .startswith()
259 if test_path == ".":
260 test_path = ""
261
262 for u_file in self.untracked_files:
263 if u_file.startswith(test_path):
264 LOG.debug(" untracked file in path: %s" % u_file)
265 p_clean = False
266
267 return p_clean
268
269
270class RepoManifest():
271 """ parses manifest XML file used by repo tool"""
272
273 def __init__(self):
274 global args
275 global conf
276
277 self.manifest_xml = {}
278 self.repos = {}
279 self.branch = ""
280
281 self.manifest_file = os.path.abspath(
282 os.path.join(args.repo_root,
283 ".repo/manifest.xml"))
284
285 LOG.info("Loading manifest file: %s" % self.manifest_file)
286
287 try:
288 tree = ET.parse(self.manifest_file)
289 self.manifest_xml = tree.getroot()
290 except Exception:
291 LOG.exception("Error loading repo manifest")
292 sys.exit(1)
293
294 # Find the default branch
295 default = self.manifest_xml.find('default')
296 self.branch = "%s/%s" % (default.attrib['remote'],
297 default.attrib['revision'])
298
299 # Find the remote URL for these repos
300 remote = self.manifest_xml.find('remote')
301 self.remote = remote.attrib['review']
302
303 LOG.info("Manifest is on branch '%s' with remote '%s'" %
304 (self.branch, self.remote))
305
306 project_repos = {}
307
308 for project in self.manifest_xml.iter('project'):
309 repo_name = project.attrib['name']
310 rel_path = project.attrib['path']
311 abs_path = os.path.abspath(os.path.join(args.repo_root,
312 project.attrib['path']))
313
314 if os.path.isdir(abs_path):
315 project_repos[repo_name] = rel_path
316 else:
317 LOG.debug("Repo in manifest but not checked out: %s" %
318 repo_name)
319
320 for repo_name, repo_path in project_repos.iteritems():
321 self.repos[repo_name] = RepoRepo(repo_name, repo_path, self.remote)
322 self.repos[repo_name].manifest_branch = self.branch
323
324 def get_repo(self, repo_name):
325 return self.repos[repo_name]
326
327# DockerImage Status Constants
328
329DI_UNKNOWN = 'unknown' # unknown status
330DI_EXISTS = 'exists' # already exists in docker, has an image_id
331
332DI_BUILD = 'build' # needs to be built
333DI_FETCH = 'fetch' # needs to be fetched (pulled)
334DI_ERROR = 'error' # build or other fatal failure
335
336
337class DockerImage():
338
339 def __init__(self, name, repo_name=None, repo_d=None, path=".",
340 context=".", dockerfile='Dockerfile', labels=None,
341 tags=None, image_id=None, components=None, status=DI_UNKNOWN):
342
343 LOG.debug("New DockerImage object from name: %s" % name)
344
345 # name to pull as, usually what is provided on creation.
346 # May be changed by create_tags
347 self.raw_name = name
348
349 # Python's mutable defaults is a landmine
350 if labels is None:
351 self.labels = {}
352 else:
353 self.labels = labels
354
355 self.repo_name = repo_name
356 self.repo_d = repo_d
357 self.path = path
358 self.context = context
359 self.dockerfile = dockerfile
360 self.tags = [] # tags are added to this later in __init__
361 self.image_id = image_id
362 self.components = components
363 self.status = status
364
365 self.parent_name = None # set by _find_parent_name()
366 self.parent = None # pointer to parent DockerImage object
367 self.children = [] # list of child DockerImage objects
368
369 # split name:tag if given in combined format
370 (image_name, image_tag) = split_name(name)
371 if image_tag: # has tag
372 self.name = image_name
373 self.tags.append(image_tag)
374 else: # no tag
375 self.name = image_name
376
377 # Add the build tag if exists
378 if build_tag not in self.tags:
379 self.tags.append(build_tag)
380
381 # split names from tag list
382 if tags is not None:
383 for tag in tags:
384 thistag = ""
385 (tag_name, tag_tag) = split_name(tag)
386 if tag_tag: # has name also, use just tag
387 thistag = tag_tag
388 else: # just a bare tag
389 thistag = tag_name
390
391 if thistag not in self.tags: # don't duplicate tags
392 self.tags.append(thistag)
393
394 # self.clean only applies to this container
395 self.clean = self._context_clean()
396 self._find_parent_name()
397
398 def __str__(self):
399 return self.name
400
401 def buildable(self):
402 """ Can this image be built from a Dockerfile? """
403 if self.repo_name: # has a git repo to be built from
404 return True
405 return False
406
407 def _context_clean(self):
408 """ Determine if this is repo and context is clean """
409
410 if self.buildable():
411
412 # check if on master branch
413 repo_clean = self.repo_d.clean
414
415 # only check the Docker context for cleanliness
416 context_path = os.path.normpath(
417 os.path.join(self.path, self.context))
418 context_clean = self.repo_d.path_clean(context_path)
419
420 # check of subcomponents are clean
421 components_clean = self.components_clean()
422
423 LOG.debug(" Build Context Cleanliness -")
424 LOG.debug(" repo: %s, context: %s, components: %s" %
425 (repo_clean, context_clean, components_clean))
426
427 if context_clean and repo_clean and components_clean:
428 return True
429 else:
430 return False
431
432 return True # unbuildable images are clean
433
434 def parent_clean(self):
435 """ if all parents are clean """
436
437 if self.buildable():
438 if self.clean and self.parent.parent_clean():
439 return True
440 else:
441 return False
442
443 return True # unbuildable images are clean
444
445 def compare_labels(self, other_labels):
446 """ Returns True if image label-schema.org labels match dict """
447
448 comparable_labels_re = [
449 r".*name$",
450 r".*vcs-url$",
451 r".*vcs-ref$",
452 ]
453
454 for clr in comparable_labels_re: # loop on all comparable labels
455 for label in self.labels: # loop on all labels
456 if re.match(clr, label) is not None: # if label matches re
457 # and label exists in other, and values are same
458 if label in other_labels and \
459 self.labels[label] == other_labels[label]:
460 pass # continue through loop
461 else:
462 LOG.info("Non-matching label: %s" % label)
463 return False # False when first difference found
464
465 return True # only when every label matches
466
467 def same_name(self, other_name):
468 """ compare image name (possibly with tag) against image name/tag """
469
470 (o_name, o_tag) = split_name(other_name)
471
472 if o_tag is None and self.name == o_name:
473 return True
474 elif self.name == o_name and o_tag in self.tags:
475 return True
476
477 return False
478
479 def components_clean(self):
480
481 if self.buildable() and self.components is not None:
482 for component in self.components:
483 if not component['repo_d'].clean or \
484 not component['repo_d'].path_clean(component['path']):
485 return False
486
487 return True
488
489 def component_labels(self):
490 """ returns a dict of labels for subcomponents """
491
492 if self.buildable() and self.components is not None:
493
494 comp_l = {}
495
496 for component in self.components:
497
498 LOG.debug(" component %s generating child labels" %
499 component['repo_name'])
500
501 prefix = "org.opencord.component.%s." % component['repo_name']
502
503 comp_l[prefix + "vcs-url"] = component['repo_d'].git_url
504
505 if component['repo_d'].clean and \
506 component['repo_d'].path_clean(component['path']):
507 clean = True
508 else:
509 clean = False
510
511 if clean:
512 comp_l[prefix + "version"] = self.repo_d.manifest_branch
513 comp_l[prefix + "vcs-ref"] = \
514 component['repo_d'].head_commit
515 else:
516 comp_l[prefix + "version"] = "dirty"
517 comp_l[prefix + "vcs-ref"] = ""
518
519 return comp_l
520
521 return None
522
523 def child_labels(self, repo_list=None):
524 """ return a dict of labels to apply to child images """
525
526 LOG.debug(" Parent image %s generating child labels" % self.name)
527
528 # only create labels when they haven't already been created
529 if repo_list is None:
530 repo_list = []
531
532 LOG.debug(" Parents already labeled with: %s" % ", ".join(repo_list))
533
534 cl = {}
535
536 if self.buildable() and self.repo_name not in repo_list:
537
538 LOG.debug(" Adding parent labels from repo: %s" % self.repo_name)
539
540 prefix = "org.opencord.component.%s." % self.repo_name
541
542 cl[prefix + "vcs-url"] = self.repo_d.git_url
543
544 if self.clean:
545 cl[prefix + "version"] = self.repo_d.manifest_branch
546 cl[prefix + "vcs-ref"] = self.repo_d.head_commit
547 else:
548 cl[prefix + "version"] = "dirty"
549 cl[prefix + "vcs-ref"] = ""
550
551 repo_list.append(self.repo_name)
552
553 # include component labels if present
554 if self.components is not None:
555 cl.update(self.component_labels())
556
557 # recursively find labels up the parent chain
558 if self.parent is not None:
559 cl.update(self.parent.child_labels(repo_list))
560
561 return cl
562
563 def create_labels(self):
564 """ Create label-schema.org labels for image """
565
566 if self.buildable():
567
568 LOG.debug("Creating labels for: %s" % self.name)
569
570 self.labels['org.label-schema.name'] = self.name
571 self.labels['org.label-schema.schema-version'] = "1.0"
572
573 # org.label-schema.build-date
574 time_now = datetime.datetime.utcnow()
575 build_date = time_now.strftime("%Y-%m-%dT%H:%M:%SZ")
576 self.labels['org.label-schema.build-date'] = build_date
577
578 # git version related labels
579 self.labels['org.label-schema.vcs-url'] = self.repo_d.git_url
580
581 if self.clean:
582 self.labels['org.label-schema.version'] = \
583 self.repo_d.manifest_branch
584 self.labels['org.label-schema.vcs-ref'] = \
585 self.repo_d.head_commit
586 self.labels['org.opencord.vcs-commit-date'] = \
587 self.repo_d.head_commit_t
588 else:
589 self.labels['org.label-schema.version'] = "dirty"
590 self.labels['org.label-schema.vcs-ref'] = ""
591
592 # include component labels if present
593 if self.components is not None:
594 self.labels.update(self.component_labels())
595
596 def create_tags(self):
597 """ Create docker tags as needed """
598
599 if self.buildable():
600 LOG.debug("Creating tags for image: %s" % self.name)
601
602 # if clean and parents clean, add tags for branch/commit
603 if self.parent_clean():
604 if build_tag not in self.tags:
605 self.tags.append(build_tag)
606
607 commit_tag = self.repo_d.head_commit
608 if commit_tag not in self.tags:
609 self.tags.append(commit_tag)
610
611 # pulling is done via raw_name, set tag to commit
612 self.raw_name = "%s:%s" % (self.name, commit_tag)
613
614 LOG.debug("All tags: %s" %
615 ", ".join(self.tags))
616
617 def _find_parent_name(self):
618 """ set self.parent_name using Dockerfile FROM line """
619
620 if self.buildable():
621 # read contents of Dockerfile into df
622 with open(self.dockerfile_abspath()) as dfh:
623 df = dfh.read()
624
625 # find FROM line to determine image parent
626 frompatt = re.compile(r'^FROM\s+(.*)$', re.MULTILINE)
627 fromline = re.search(frompatt, df)
628
629 self.parent_name = fromline.group(1) # may have tag
630
631 def dockerfile_abspath(self):
632 """ returns absolute path to Dockerfile for this image """
633
634 if self.buildable():
635 return os.path.join(self.repo_d.abspath(),
636 self.path, self.dockerfile)
637 else:
638 return None
639
640 def dockerfile_rel_path(self):
641 """ returns the path relative to the context of the Dockerfile """
642
643 if self.buildable():
644 if self.context is ".":
645 return self.dockerfile
646 else:
647 return os.path.normpath(os.path.join(self.path,
648 self.dockerfile))
649 else:
650 return None
651
652 def context_tarball(self):
653 """ returns a filehandle to a tarball (tempfile) for the image """
654
655 if self.buildable():
656
657 context_path = os.path.normpath(
658 os.path.join(self.repo_d.abspath(),
659 self.path, self.context))
660
661 LOG.info("Creating context tarball of path: %s" % context_path)
662
663 t_fh = tempfile.NamedTemporaryFile()
664 t = tarfile.open(mode='w', fileobj=t_fh, dereference=True)
665
666 # exclude files in this list
667 exclusion_list = ['.git']
668
669 # see docker-py source for context
670 for path in sorted(
671 DockerUtils.exclude_paths(context_path, exclusion_list)):
672 t.add(os.path.join(context_path, path),
673 arcname=path,
674 recursive=False)
675
676 # add sub-components to tarball if required
677 if self.components is not None:
678 for component in self.components:
679 c_ctx_p = os.path.normpath(
680 os.path.join(component['repo_d'].abspath(),
681 component['path']))
682
683 LOG.info("Adding component %s at context %s" %
684 (component['repo_name'], c_ctx_p))
685
686 # walk component source path
687 for path in sorted(
688 DockerUtils.exclude_paths(c_ctx_p, exclusion_list)):
689
690 # path to where to put files in the archive
691 cf_dest = os.path.normpath(
692 os.path.join(component['dest'], path))
693
694 t.add(os.path.join(c_ctx_p, path),
695 arcname=cf_dest,
696 recursive=False)
697
698 # t.list() # prints all files in tarball
699 t.close()
700 t_fh.seek(0)
701 return t_fh
702
703 else:
704 return None
705
706 def buildargs(self):
707 """ returns array of labels in docker buildargs compliant format """
708 ba_a = {}
709
710 for label_k in self.labels:
711 ba_re = re.compile(r'\W') # non alpha/num/_ chars
712 ba_label = ba_re.sub('_', label_k)
713 ba_a[ba_label] = self.labels[label_k]
714
715 return ba_a
716
717
718class DockerBuilder():
719
720 def __init__(self, repo_manifest):
721
722 global buildable_images
723 global pull_only_images
724
725 self.rm = repo_manifest
726 self.dc = None # Docker Client object
727
728 self.images = []
729
730 # arrays of images, used for write_actions
731 self.all = []
732 self.preexisting = []
733 self.obsolete = []
734 self.pulled = []
735 self.failed_pull = []
736 self.obsolete_pull = []
737 self.built = []
738 self.failed_build = []
739
740 # create dict of images, setting defaults
741 for image in buildable_images:
742
743 repo_d = self.rm.get_repo(image['repo'])
744
745 if "components" in image:
746 components = []
747
748 for component in image['components']:
749 comp = {}
750 comp['repo_name'] = component['repo']
751 comp['repo_d'] = self.rm.get_repo(component['repo'])
752 comp['dest'] = component['dest']
753 comp['path'] = component.get('path', '.')
754 components.append(comp)
755 else:
756 components = None
757
758 # set the full name in case this is pulled
759 full_name = "%s:%s" % (image['name'], build_tag)
760
761 img_o = DockerImage(full_name, image['repo'], repo_d,
762 image.get('path', '.'),
763 image.get('context', '.'),
764 image.get('dockerfile', 'Dockerfile'),
765 components=components)
766
767 self.images.append(img_o)
768
769 # add misc images
770 for misc_image in pull_only_images:
771 img_o = DockerImage(misc_image)
772 self.images.append(img_o)
773
774 if not args.dry_run:
775 self._docker_connect()
776
777 self.create_dependency()
778 self.find_preexisting()
779
780 if args.graph is not None:
781 self.dependency_graph(args.graph)
782
783 self.process_images()
784
785 if args.actions_taken is not None:
786 self.write_actions_file(args.actions_taken)
787
788 def _docker_connect(self):
789 """ Connect to docker daemon """
790
791 self.dc = DockerClient()
792
793 if self.dc.ping():
794 LOG.debug("Docker server is responding")
795 else:
796 LOG.error("Unable to ping docker server")
797 sys.exit(1)
798
799 def find_preexisting(self):
800 """ find images that already exist in Docker and mark """
801
802 if self.dc:
803 LOG.debug("Evaluating already built/fetched Docker images")
804
805 # get list of images from docker
806 pe_images = self.dc.images()
807
808 for pe_image in pe_images:
809 raw_tags = pe_image['RepoTags']
810
811 self.all.append({
812 'id': pe_image['Id'],
813 'tags': raw_tags,
814 })
815
816 # ignoring all <none>:<none> images, reasonable?
817 if raw_tags and "<none>:<none>" not in raw_tags:
818 LOG.debug(" Preexisting Image - ID: %s, tags: %s" %
819 (pe_image['Id'], ",".join(raw_tags)))
820
821 image = self.find_image(raw_tags[0])
822
823 if image is not None:
824 if image.compare_labels(pe_image['Labels']):
825 LOG.debug(" Image %s has up-to-date labels" %
826 pe_image['Id'])
827
828 self.preexisting.append({
829 'id': pe_image['Id'],
830 'tags': raw_tags,
Andy Bavierafaa5302017-08-15 08:56:15 -0700[diff] [blame]831 'base': image.name.split(":")[0],
Zack Williamsce63eb02017-02-28 10:46:22 -0700[diff] [blame]832 })
833
834 image.image_id = pe_image['Id']
835 image.status = DI_EXISTS
836
837 else:
838 LOG.debug(" Image %s has obsolete labels" %
839 pe_image['Id'])
840
841 self.obsolete.append({
842 'id': pe_image['Id'],
843 'tags': raw_tags,
844 })
845
846 def find_image(self, image_name):
847 """ return image object matching name """
848 LOG.debug("attempting to find image for: %s" % image_name)
849
850 for image in self.images:
851 if image.same_name(image_name):
852 return image
853 return None
854
855 def create_dependency(self):
856 """ set parent/child links for images """
857
858 # list of all parent image names, with dupes
859 parents_with_dupes = [img.parent_name for img in self.images
860 if img.parent_name is not None]
861
862 # remove duplicates
863 parents = list(set(parents_with_dupes))
864
865 LOG.info("All parent images: %s" % ", ".join(parents))
866
867 # list of "external parents", ones not built internally
868 external_parents = []
869
870 for parent_name in parents:
871 LOG.debug("Evaluating parent image: %s" % parent_name)
872 internal_parent = False
873
874 # match on p_name, without tag
875 (p_name, p_tag) = split_name(parent_name)
876
877 for image in self.images:
878 if image.same_name(p_name): # internal image is a parent
879 internal_parent = True
880 LOG.debug(" Internal parent: %s" % image.name)
881 break
882
883 if not internal_parent: # parent is external
884 LOG.debug(" External parent: %s" % parent_name)
885 external_parents.append(parent_name)
886
887 # add unique external parents to image list
888 for e_p_name in set(external_parents):
889 LOG.debug(" Creating external parent image object: %s" % e_p_name)
890 img_o = DockerImage(e_p_name)
891 self.images.append(img_o)
892
893 # now that all images (including parents) are in list, associate them
894 for image in filter(lambda img: img.parent_name is not None,
895 self.images):
896
897 LOG.debug("Associating image: %s" % image.name)
898
899 parent = self.find_image(image.parent_name)
900 image.parent = parent
901
902 if parent is not None:
903 LOG.debug(" internal image '%s' is parent of '%s'" %
904 (parent.name, image.name))
905 parent.children.append(image)
906
907 else:
908 LOG.debug(" external image '%s' is parent of '%s'" %
909 (image.parent_name, image.name))
910
911 # loop again now that parents are linked to create labels
912 for image in self.images:
913 image.create_labels()
914 image.create_tags()
915
916 # if image has parent, get labels from parent(s)
917 if image.parent is not None:
918 LOG.debug("Adding parent labels from %s to child %s" %
919 (image.parent.name, image.name))
920
921 # don't create component labels for same repo as image
922 repo_list = [image.repo_name]
923 image.labels.update(image.parent.child_labels(repo_list))
924
925 def dependency_graph(self, graph_fn):
926 """ save a DOT dependency graph to a file """
927
928 graph_fn_abs = os.path.abspath(graph_fn)
929
930 LOG.info("Saving DOT dependency graph to: %s" % graph_fn_abs)
931
932 try:
933 import graphviz
934 except ImportError:
935 LOG.error('graphviz pip module not found')
936 raise
937
938 dg = graphviz.Digraph(comment='Image Dependency Graph',
939 graph_attr={'rankdir': 'LR'})
940
941 component_nodes = []
942
943 # Use raw names, so they match with what's in Dockerfiles
944 # delete colons as python graphviz module breaks with them
945 for image in self.images:
946 name_g = image.raw_name.replace(':', '\n')
947 dg.node(name_g)
948
949 if image.parent is not None:
950 name_p = image.parent.raw_name.replace(':', '\n')
951 dg.edge(name_p, name_g)
952
953 if image.components is not None:
954 for component in image.components:
955 name_c = "component - %s" % component['repo_name']
956 if name_c not in component_nodes:
957 dg.node(name_c)
958 component_nodes.append(name_c)
959 dg.edge(name_c, name_g, "", {'style': 'dashed'})
960
961 with open(graph_fn_abs, 'w') as g_fh:
962 g_fh.write(dg.source)
963
964 def write_actions_file(self, actions_fn):
965
966 actions_fn_abs = os.path.abspath(actions_fn)
967
968 LOG.info("Saving actions as YAML to: %s" % actions_fn_abs)
969
970 actions = {
971 "ib_pulled": self.pulled,
972 "ib_built": self.built,
973 "ib_preexisting_images": self.preexisting,
974 "ib_obsolete_images": self.obsolete,
975 "ib_failed_pull": self.failed_pull,
976 "ib_obsolete_pull": self.obsolete_pull,
977 "ib_failed_build": self.failed_build,
978 }
979
980 with open(actions_fn_abs, 'w') as a_fh:
981 yaml.safe_dump(actions, a_fh)
982 LOG.debug(yaml.safe_dump(actions))
983
984 def process_images(self):
985 """ determine whether to build/fetch images """
986
987 # upstream images (have no parents), must be fetched
988 must_fetch_a = filter(lambda img: img.parent is None, self.images)
989
990 for image in must_fetch_a:
991 if image.status is not DI_EXISTS:
992 image.status = DI_FETCH
993
994 # images that can be built or fetched (have parents)
995 b_or_f_a = filter(lambda img: img.parent is not None, self.images)
996
997 for image in b_or_f_a:
998 if not image.parent_clean():
999 # must be built if not clean
1000 image.status = DI_BUILD
1001 elif image.status is not DI_EXISTS:
1002 # try to fetch if clean and doesn't exist
1003 image.status = DI_FETCH
1004 # otherwise, image is clean and exists (image.status == DI_EXISTS)
1005
1006 c_and_e_a = filter(lambda img: img.status is DI_EXISTS, self.images)
1007 LOG.info("Preexisting and clean images: %s" %
1008 ", ".join(c.name for c in c_and_e_a))
1009
1010 upstream_a = filter(lambda img: (img.status is DI_FETCH and
1011 img.parent is None), self.images)
1012 LOG.info("Upstream images that must be fetched: %s" %
1013 ", ".join(u.raw_name for u in upstream_a))
1014
1015 fetch_a = filter(lambda img: (img.status is DI_FETCH and
1016 img.parent is not None), self.images)
1017 LOG.info("Clean, buildable images to attempt to fetch: %s" %
1018 ", ".join(f.raw_name for f in fetch_a))
1019
1020 build_a = filter(lambda img: img.status is DI_BUILD, self.images)
1021 LOG.info("Buildable images, due to unclean context or parents: %s" %
1022 ", ".join(b.raw_name for b in build_a))
1023
1024 # OK to fetch upstream in any case as they should reduce number of
1025 # layers pulled/built later
1026
1027 for image in upstream_a:
1028 if not self._fetch_image(image):
1029 LOG.info("Unable to fetch upstream image: %s" % image.raw_name)
1030 # FIXME: fail if the upstream image can't be fetched ?
1031
1032 fetch_sort = sorted(fetch_a, key=(lambda img: len(img.children)),
1033 reverse=True)
1034
1035 for image in fetch_sort:
1036 if not self._fetch_image(image):
1037 # if didn't fetch, build
1038 image.status = DI_BUILD
1039
1040 while True:
1041 buildable_images = self.get_buildable()
1042 if buildable_images:
1043 for image in buildable_images:
1044 self._build_image(image)
1045 else:
1046 LOG.debug("No more images to build, ending build loop")
1047 break
1048
1049 def get_buildable(self):
1050 """ Returns list of images that can be built"""
1051
1052 buildable = []
1053
1054 for image in filter(lambda img: img.status is DI_BUILD, self.images):
1055 if image.parent.status is DI_EXISTS:
1056 buildable.append(image)
1057
1058 LOG.debug("Buildable images: %s" %
1059 ', '.join(image.name for image in buildable))
1060
1061 return buildable
1062
1063 def tag_image(self, image):
1064 """ Applies tags to an image """
1065
1066 for tag in image.tags:
1067
1068 LOG.info("Tagging id: '%s', repo: '%s', tag: '%s'" %
1069 (image.image_id, image.name, tag))
1070
1071 if self.dc is not None:
1072 self.dc.tag(image.image_id, image.name, tag=tag)
1073
1074 def _fetch_image(self, image):
1075
1076 LOG.info("Attempting to fetch docker image: %s" % image.raw_name)
1077
1078 if self.dc is not None:
1079 try:
1080 for stat_json in self.dc.pull(image.raw_name,
1081 stream=True):
1082
1083 # sometimes Docker's JSON is dirty, per:
1084 # https://github.com/docker/docker-py/pull/1081/
1085 stat_s = stat_json.strip()
1086 stat_list = stat_s.split("\r\n")
1087
1088 for s_j in stat_list:
1089 stat_d = json.loads(s_j)
1090
1091 if 'stream' in stat_d:
1092 for stat_l in stat_d['stream'].split('\n'):
1093 LOG.debug(stat_l)
1094
1095 if 'status' in stat_d:
1096 for stat_l in stat_d['status'].split('\n'):
1097 noisy = ["Extracting", "Downloading",
1098 "Waiting", "Download complete",
1099 "Pulling fs layer", "Pull complete",
1100 "Verifying Checksum",
1101 "Already exists"]
1102 if stat_l in noisy:
1103 LOG.debug(stat_l)
1104 else:
1105 LOG.info(stat_l)
1106
1107 if 'error' in stat_d:
1108 LOG.error(stat_d['error'])
1109 sys.exit(1)
1110
1111 except:
1112 LOG.exception("Error pulling docker image")
1113
1114 self.failed_pull.append({
1115 "tags": [image.raw_name, ],
1116 })
1117
1118 return False
1119
1120 # obtain the image_id by inspecting the pulled image. Seems unusual
1121 # that the Docker API `pull` method doesn't provide it when the
1122 # `build` method does
1123 pulled_image = self.dc.inspect_image(image.raw_name)
1124
1125 # check to make sure that image that was downloaded has the labels
1126 # that we expect it to have, otherwise return false, trigger build
1127 if not image.compare_labels(
1128 pulled_image['ContainerConfig']['Labels']):
1129 LOG.info("Tried fetching image %s, but labels didn't match" %
1130 image.raw_name)
1131
1132 self.obsolete_pull.append({
1133 "id": pulled_image['Id'],
1134 "tags": pulled_image['RepoTags'],
1135 })
1136 return False
1137
1138 image.image_id = pulled_image['Id']
1139 LOG.info("Fetched image %s, id: %s" %
1140 (image.raw_name, image.image_id))
1141
1142 self.pulled.append({
1143 "id": pulled_image['Id'],
1144 "tags": pulled_image['RepoTags'],
Andy Bavier09410472017-08-15 14:29:35 -0700[diff] [blame]1145 "base": image.name.split(":")[0],
Zack Williamsce63eb02017-02-28 10:46:22 -0700[diff] [blame]1146 })
1147
1148 self.tag_image(image)
1149 image.status = DI_EXISTS
1150 return True
1151
1152 def _build_image(self, image):
1153
1154 LOG.info("Building docker image for %s" % image.raw_name)
1155
1156 if self.dc is not None:
1157
1158 build_tag = "%s:%s" % (image.name, image.tags[0])
1159
1160 buildargs = image.buildargs()
1161 context_tar = image.context_tarball()
1162 dockerfile = image.dockerfile_rel_path()
1163
1164 for key, val in buildargs.iteritems():
1165 LOG.debug("Buildarg - %s : %s" % (key, val))
1166
1167 bl_path = ""
1168 start_time = datetime.datetime.utcnow()
1169
1170 if(args.build_log_dir):
1171 bl_name = "%s_%s" % (start_time.strftime("%Y%m%dT%H%M%SZ"),
1172 re.sub(r'\W', '_', image.name))
1173 bl_path = os.path.abspath(
1174 os.path.join(args.build_log_dir, bl_name))
1175
1176 LOG.info("Build log: %s" % bl_path)
1177 bl_fh = open(bl_path, 'w+', 0) # 0 = unbuffered writes
1178 else:
1179 bl_fh = None
1180
1181 try:
1182 LOG.info("Building image: %s" % image)
1183
1184 for stat_d in self.dc.build(tag=build_tag,
1185 buildargs=buildargs,
1186 custom_context=True,
1187 fileobj=context_tar,
1188 dockerfile=dockerfile,
1189 rm=True,
1190 forcerm=True,
1191 pull=False,
1192 stream=True,
1193 decode=True):
1194
1195 if 'stream' in stat_d:
1196
1197 if bl_fh:
1198 bl_fh.write(stat_d['stream'].encode('utf-8'))
1199
1200 for stat_l in stat_d['stream'].split('\n'):
1201 if(stat_l):
1202 LOG.debug(stat_l)
1203 if stat_d['stream'].startswith("Successfully built "):
1204 siid = stat_d['stream'].split(' ')[2]
1205 short_image_id = siid.strip()
1206 LOG.debug("Short Image ID: %s" % short_image_id)
1207
1208 if 'status' in stat_d:
1209 for stat_l in stat_d['status'].split('\n'):
1210 if(stat_l):
1211 LOG.info(stat_l)
1212
1213 if 'error' in stat_d:
1214 LOG.error(stat_d['error'])
1215 image.status = DI_ERROR
1216 sys.exit(1)
1217
1218 except:
1219 LOG.exception("Error building docker image")
1220
1221 self.failed_build.append({
1222 "tags": [build_tag, ],
1223 })
1224
1225 return
1226
1227 finally:
1228 if(bl_fh):
1229 bl_fh.close()
1230
1231 # the image ID given by output isn't the full SHA256 id, so find
1232 # and set it to the full one
1233 built_image = self.dc.inspect_image(short_image_id)
1234 image.image_id = built_image['Id']
1235
1236 end_time = datetime.datetime.utcnow()
1237 duration = end_time - start_time # duration is a timedelta
1238
1239 LOG.info("Built Image: %s, duration: %s, id: %s" %
1240 (image.name, duration, image.image_id))
1241
1242 self.built.append({
1243 "id": image.image_id,
1244 "tags": [build_tag, ],
1245 "push_name": image.raw_name,
1246 "build_log": bl_path,
1247 "duration": duration.total_seconds(),
Andy Bavier09410472017-08-15 14:29:35 -0700[diff] [blame]1248 "base": image.name.split(":")[0],
Zack Williamsce63eb02017-02-28 10:46:22 -0700[diff] [blame]1249 })
1250
1251 self.tag_image(image)
1252 image.status = DI_EXISTS
1253
1254
1255if __name__ == "__main__":
1256 parse_args()
1257 load_config()
1258
1259 # only include docker module if not a dry run
1260 if not args.dry_run:
1261 try:
1262 from distutils.version import LooseVersion
1263 from docker import __version__ as docker_version
1264 if LooseVersion(docker_version) >= LooseVersion('2.0.0'):
1265 from docker import APIClient as DockerClient
1266 from docker import utils as DockerUtils
1267 else:
1268 from docker import Client as DockerClient
1269 from docker import utils as DockerUtils
1270 except ImportError:
1271 LOG.error("Unable to load python docker module (dry run?)")
1272 sys.exit(1)
1273
1274 rm = RepoManifest()
1275 db = DockerBuilder(rm)