Support character devices (whiteouts) in ostree commits #2712
Comments
No it wouldn't, because ostree is a content-addressed storage system. |
ack, removing it, but there is another con to compacting the images. Will the sha256 hashes sometimes used to reference the images change? |
|
@cgwalters by content-addressed you mean it deduplicates files when the content is the same for two files? |
Yes. |
mangelajo
changed the title
mangelajo
changed the title
I'm preparing a PR for this so we can check out if it works or not. I will also try test how the container registry transport works with this. Not straight forward as the commits are almost 10 years old :) ostree has gone a very long way |
My most naive comment for 2022.. :) ostree has really gone a very long way since 2013. |
|
Ok, after looking at this, I would like to propose we reduce the scope of this proposal to supporting only char 0:0 devices used by overlayfs to signal whiteouts at low level:
This would eliminate the need for introducing additional fields on the encoding of bare-user metadata, test and maintain backwards compatibility, and also minimize the amount of changes that need to be done. An older ostree would be unable to checkout a tree with char 0:0 devices but I believe that would be all. @cgwalters do you believe that would make sense? |
It's more that there is no space for new fields in file metadata stored by ostree today; it was somewhat intentionally non-extensible, because extensibility gets into tension with content-based addressing (needs to have a canonical form, etc.) So indeed such an encoding would need to be defined in the existing space. Now, we could say that if the file mode says it's a character device, assume it's a whiteout with 0:0 And loosen the commit process to accept only those devices. There's a bunch of code that will need touching for this, not just in ostree core but also in e.g. https://github.com/ostreedev/ostree-rs-ext/tree/main/lib/src/tar |
Note though that in this use case, podman on the client system is not fetching the image. It is already fetched, and it is in read only storage. Hence, there's no need for it to validate the digest of anything. Taking this down further of course opens the question of whether you really want to use One approach perhaps is for podman to grow support for a read-only data storage which contains a mapping of digested pull specs to already unpacked and ready directory trees. |
This is a problem for MicroShift, where we're using kubelet, crio, etc. No podman. |
Ultimately anything in this space would live in e.g. containers/storage which is shared between the two. |
|
To be clear: I am not personally opposed to supporting whiteouts. But it's not going to be a trivial fix, and I'd be a bit concerned about trying to ship it to e.g. RHEL8 today. For this reason, I think the "flattening" path is likely the better bet in a short term scenario. It's also more efficient - in the "whiteouts on client" model, anything removed via whiteouts still gets shipped over the wire in the ostree commit. In the "flatten at build time" model, the client doesn't pointlessly fetch deleted files. A particularly relevant thing here is e.g. rpm-software-management/rpm#2005 The tradeoff is definitely that some modification/tweaking of the container runtime is potentially needed. |
|
Yes, in github.com/openshift/microshift we are inheriting the image problems related to OCP/rpm's , and I agree not shipping deleted files would be an improvement. MicroShift uses unmodified OCP images extracted from every ocp release image listing as we rebase MicroShift over time. The problems we would have with flattening:
We also considered storing archived containers in ostree and syncing them to the crio storage before MicroShift boots, but that's a time consuming / IO intensive operation to put on Edge devices, and would duplicate the storage (I need to check if the hash integrity of the image is preserved in such case) Let's keep thinking and see if we can get workable alternatives, I'm continuing with the PR in the meanwhile, I want to cleanup and add testing. I'm sure there's plenty to be improved or simply which I didn't get right as I probably cannot get familiar enough with the ostree codebase in the time I have available. It would be completely fine if in the end that PR needs to be thrown away for a different implementation, at least I hope it can help figuring out if there is any technical reason preventing us to do this. |
|
A new idea that came out of discussion here:
|
Introduces an intermediate format for overlayfs storage, where .wh-ostree. prefixed files will be converted into char 0:0 whiteout devices used by overlayfs to mark deletions across layers. Related-Issue: ostreedev#2712
This is how it would look, for the lack of overwrite and selinux policy handling and testing. |
Introduces an intermediate format for overlayfs storage, where .wh-ostree. prefixed files will be converted into char 0:0 whiteout devices used by overlayfs to mark deletions across layers. The CI scripts now uses a volume for the scratch directories previously in /var/tmp otherwise we cannot create whiteout devices into an overlayfs mounted filesystem. Related-Issue: ostreedev#2712
Introduces an intermediate format for overlayfs storage, where .wh-ostree. prefixed files will be converted into char 0:0 whiteout devices used by overlayfs to mark deletions across layers. The CI scripts now uses a volume for the scratch directories previously in /var/tmp otherwise we cannot create whiteout devices into an overlayfs mounted filesystem. Related-Issue: ostreedev#2712
Introduces an intermediate format for overlayfs storage, where .wh-ostree. prefixed files will be converted into char 0:0 whiteout devices used by overlayfs to mark deletions across layers. The CI scripts now uses a volume for the scratch directories previously in /var/tmp otherwise we cannot create whiteout devices into an overlayfs mounted filesystem. Related-Issue: ostreedev#2712
Introduces an intermediate format for overlayfs storage, where .wh-ostree. prefixed files will be converted into char 0:0 whiteout devices used by overlayfs to mark deletions across layers. The CI scripts now uses a volume for the scratch directories previously in /var/tmp otherwise we cannot create whiteout devices into an overlayfs mounted filesystem. Related-Issue: ostreedev#2712 (cherry picked from commit e234b63)
|
This was fixed in #2722 |
|
@cgwalters Could we also add support for changing whiteouts into |
Yep it'd make sense, though one can do it today as a pre-pass before committing too. |
This is an enhancement request to have ostree support the commit storage
of whiteout 0:0 character devices.
Motivation
Embedding container storage into ostree images allows for offline, and fast container
startup (no need to contact a registry) for ostree based systems where the containers
can be stored in the native container storage format within the ostree image.
overlayfs in the linux kernel implements the deletion of a file from one layer to the
next by creating a char 0:0 file (whiteout) in the new layer.
But today, ostree does not support the storage of character devices:
rm -rf rootfs test ostree --repo=./test init --mode=bare-user mkdir rootfs mknod -m 0 rootfs/whiteout c 0 0 ostree commit --repo=./test ./rootfs --branch test/stable/x86_64results:
This limits our ability to encode container storage into ostree images.
References
This necessity has been brought up in the past, and from other projects that build on os
/usr/lib/containersostree-rs-ext#246Alternatives
This would remove the introduction of whiteout files and would not increase the storage size
since ostree is a content-addressed storage system, but would modify the sha256 hash
of images that sometimes are used as references.
i.e.
quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:ba44dead03ea74107f90d58525106fb52d27a120b73c6cc8e2be31d37043ca1cThis is technically non feasible in some cases (next layer or final containers expects a file
not to exist), and hard to manage over time, it also precludes including off-shelf existing
images where the builder of the ostree has no control over the image building.
Possible issues
This will probably not be usable when a new ostree layers is being built from within a container, since you can't
create a whiteout inside an overlayfs mount (assumption here).
The text was updated successfully, but these errors were encountered: