package docker import ( "context" "errors" "fmt" "net/http" "time" "github.com/docker/docker/api/types/container" "gitlab.com/gitlab-org/gitlab-runner/common/buildlogger" "gitlab.com/gitlab-org/gitlab-runner/helpers/docker" terminalsession "gitlab.com/gitlab-org/gitlab-runner/session/terminal" terminal "gitlab.com/gitlab-org/gitlab-terminal" ) // buildContainerTerminalTimeout is the error used when the build container is // not running yet an we have a terminal request waiting for the container to // start and a certain amount of time is exceeded. type buildContainerTerminalTimeout struct { } func (buildContainerTerminalTimeout) Error() string { return "timeout for waiting for build container" } func (s *commandExecutor) watchForRunningBuildContainer(deadline time.Time) (string, error) { for time.Since(deadline) < 0 { buildContainer := s.getBuildContainer() if buildContainer == nil { time.Sleep(time.Second) continue } containerID := buildContainer.ID container, err := s.client.ContainerInspect(s.Context, containerID) if err != nil { return "", err } if container.State.Running { return containerID, nil } } return "", buildContainerTerminalTimeout{} } func (s *commandExecutor) Connect() (terminalsession.Conn, error) { // Waiting for the container to start, is not ideal as it might be hiding a // real issue and the user is not aware of it. Ideally, the runner should // inform the user in an interactive way that the container has no started // yet and should wait/try again. This isn't an easy task to do since we // can't access the WebSocket here since that is the responsibility of // `gitlab-terminal` package. There are plans to improve this please take a // look at https://gitlab.com/gitlab-org/gitlab-ce/issues/50384#proposal and // https://gitlab.com/gitlab-org/gitlab-terminal/issues/4 timeout := s.terminalWaitForContainerTimeout if timeout == 0 { timeout = waitForContainerTimeout } containerID, err := s.watchForRunningBuildContainer(time.Now().Add(timeout)) if err != nil { return nil, err } ctx, cancelFn := context.WithCancel(s.Context) return terminalConn{ logger: &s.BuildLogger, ctx: ctx, cancelFn: cancelFn, executor: s, client: s.client, containerID: containerID, shell: s.BuildShell.DockerCommand, }, nil } type terminalConn struct { logger *buildlogger.Logger ctx context.Context cancelFn func() executor *commandExecutor client docker.Client containerID string shell []string } func (t terminalConn) Start(w http.ResponseWriter, r *http.Request, timeoutCh, disconnectCh chan error) { execConfig := container.ExecOptions{ Tty: true, AttachStdin: true, AttachStderr: true, AttachStdout: true, Cmd: t.shell, } exec, err := t.client.ContainerExecCreate(t.ctx, t.containerID, execConfig) if err != nil { t.logger.Errorln("Failed to create exec container for terminal:", err) http.Error(w, "failed to create exec for build container", http.StatusInternalServerError) return } execStartCfg := container.ExecStartOptions{Tty: true} resp, err := t.client.ContainerExecAttach(t.ctx, exec.ID, execStartCfg) if err != nil { t.logger.Errorln("Failed to exec attach to container for terminal:", err) http.Error(w, "failed to attach tty to build container", http.StatusInternalServerError) return } dockerTTY := newDockerTTY(&resp) proxy := terminal.NewStreamProxy(1) // one stopper: terminal exit handler // wait for container to exit go func() { t.logger.Debugln("Waiting for the terminal container:", t.containerID) err := t.executor.waiter.Wait(t.ctx, t.containerID) t.logger.Debugln("The terminal container:", t.containerID, "finished with:", err) stopCh := proxy.GetStopCh() if err != nil { stopCh <- fmt.Errorf("build container exited with %w", err) } else { stopCh <- errors.New("build container exited") } }() terminalsession.ProxyTerminal( timeoutCh, disconnectCh, proxy.StopCh, func() { terminal.ProxyStream(w, r, dockerTTY, proxy) }, ) } func (t terminalConn) Close() error { if t.cancelFn != nil { t.cancelFn() } return nil }