Cleanup XDGRuntime logic

apostasie · apostasie · commit 890d40e2c835 · 2025-01-25T00:21:29.000-08:00
Signed-off-by: apostasie &lt;spam_blackhole@farcloser.world&gt;
diff --git a/pkg/buildkitutil/buildkitutil_freebsd.go b/pkg/buildkitutil/buildkitutil_freebsd.go
@@ -16,7 +16,7 @@
 
 package buildkitutil
 
-func getRuntimeVariableDataDir() string {
+func getRuntimeVariableDataDir() (string, error) {
 	// Per hier(7) dated July 6, 2023.
-	return "/var/run"
+	return "/var/run", nil
 }
diff --git a/pkg/buildkitutil/buildkitutil_linux.go b/pkg/buildkitutil/buildkitutil_linux.go
@@ -18,23 +18,24 @@ package buildkitutil
 
 import (
 	"fmt"
-
-	"github.com/containerd/log"
+	"os"
 
 	"github.com/containerd/nerdctl/v2/pkg/rootlessutil"
 )
 
-func getRuntimeVariableDataDir() string {
+func getRuntimeVariableDataDir() (string, error) {
 	// Per Linux Foundation "Filesystem Hierarchy Standard" version 3.0 section 3.15.
 	// Under version 2.3, this was "/var/run".
 	run := "/run"
 	if rootlessutil.IsRootless() {
 		var err error
 		run, err = rootlessutil.XDGRuntimeDir()
 		if err != nil {
-			log.L.Warn(err)
-			run = fmt.Sprintf("/run/user/%d", rootlessutil.ParentEUID())
+			if rootlessutil.IsRootlessChild() {
+				return "", err
+			}
+			run = fmt.Sprintf("/run/user/%d", os.Geteuid())
 		}
 	}
-	return run
+	return run, nil
 }
diff --git a/pkg/buildkitutil/buildkitutil_unix.go b/pkg/buildkitutil/buildkitutil_unix.go
@@ -28,7 +28,10 @@ func getBuildkitHostCandidates(namespace string) ([]string, error) {
 		return []string{}, fmt.Errorf("namespace must be specified")
 	}
 	// Try candidate locations of the current containerd namespace.
-	run := getRuntimeVariableDataDir()
+	run, err := getRuntimeVariableDataDir()
+	if err != nil {
+		return []string{}, err
+	}
 	var candidates []string
 	if namespace != "default" {
 		candidates = append(candidates, "unix://"+filepath.Join(run, fmt.Sprintf("buildkit-%s/buildkitd.sock", namespace)))
diff --git a/pkg/bypass4netnsutil/bypass4netnsutil.go b/pkg/bypass4netnsutil/bypass4netnsutil.go
@@ -18,7 +18,6 @@ package bypass4netnsutil
 
 import (
 	"context"
-	"fmt"
 	"os"
 	"path/filepath"
 	"strconv"
@@ -30,6 +29,7 @@ import (
 	"github.com/containerd/containerd/v2/pkg/oci"
 
 	"github.com/containerd/nerdctl/v2/pkg/annotations"
+	"github.com/containerd/nerdctl/v2/pkg/rootlessutil"
 )
 
 func generateSecurityOpt(listenerPath string) (oci.SpecOpts, error) {
@@ -83,15 +83,8 @@ func GenerateBypass4netnsOpts(securityOptsMaps map[string]string, annotationsMap
 	return opts, nil
 }
 
-func getXDGRuntimeDir() (string, error) {
-	if xrd := os.Getenv("XDG_RUNTIME_DIR"); xrd != "" {
-		return xrd, nil
-	}
-	return "", fmt.Errorf("environment variable XDG_RUNTIME_DIR is not set")
-}
-
 func CreateSocketDir() error {
-	xdgRuntimeDir, err := getXDGRuntimeDir()
+	xdgRuntimeDir, err := rootlessutil.XDGRuntimeDir()
 	if err != nil {
 		return err
 	}
@@ -107,7 +100,7 @@ func CreateSocketDir() error {
 }
 
 func GetBypass4NetnsdDefaultSocketPath() (string, error) {
-	xdgRuntimeDir, err := getXDGRuntimeDir()
+	xdgRuntimeDir, err := rootlessutil.XDGRuntimeDir()
 	if err != nil {
 		return "", err
 	}
@@ -116,7 +109,7 @@ func GetBypass4NetnsdDefaultSocketPath() (string, error) {
 }
 
 func GetSocketPathByID(id string) (string, error) {
-	xdgRuntimeDir, err := getXDGRuntimeDir()
+	xdgRuntimeDir, err := rootlessutil.XDGRuntimeDir()
 	if err != nil {
 		return "", err
 	}
@@ -126,7 +119,7 @@ func GetSocketPathByID(id string) (string, error) {
 }
 
 func GetPidFilePathByID(id string) (string, error) {
-	xdgRuntimeDir, err := getXDGRuntimeDir()
+	xdgRuntimeDir, err := rootlessutil.XDGRuntimeDir()
 	if err != nil {
 		return "", err
 	}
diff --git a/pkg/defaults/defaults_freebsd.go b/pkg/defaults/defaults_freebsd.go
@@ -39,8 +39,8 @@ func CNINetConfPath() string {
 	return cni.DefaultNetDir
 }
 
-func CNIRuntimeDir() string {
-	return "/run/cni"
+func CNIRuntimeDir() (string, error) {
+	return "/run/cni", nil
 }
 
 func CgroupManager() string {
diff --git a/pkg/defaults/defaults_linux.go b/pkg/defaults/defaults_linux.go
@@ -24,7 +24,6 @@ import (
 
 	"github.com/containerd/containerd/v2/plugins"
 	"github.com/containerd/go-cni"
-	"github.com/containerd/log"
 
 	"github.com/containerd/nerdctl/v2/pkg/rootlessutil"
 )
@@ -88,16 +87,18 @@ func CNINetConfPath() string {
 	return filepath.Join(xch, "cni/net.d")
 }
 
-func CNIRuntimeDir() string {
+func CNIRuntimeDir() (string, error) {
 	if !rootlessutil.IsRootless() {
-		return "/run/cni"
+		return "/run/cni", nil
 	}
 	xdr, err := rootlessutil.XDGRuntimeDir()
 	if err != nil {
-		log.L.Warn(err)
-		xdr = fmt.Sprintf("/run/user/%d", rootlessutil.ParentEUID())
+		if rootlessutil.IsRootlessChild() {
+			return "", err
+		}
+		xdr = fmt.Sprintf("/run/user/%d", os.Geteuid())
 	}
-	return fmt.Sprintf("%s/cni", xdr)
+	return filepath.Join(xdr, "cni"), nil
 }
 
 func NerdctlTOML() string {
diff --git a/pkg/defaults/defaults_windows.go b/pkg/defaults/defaults_windows.go
@@ -39,8 +39,8 @@ func CNINetConfPath() string {
 	return filepath.Join(os.Getenv("ProgramFiles"), "containerd", "cni", "conf")
 }
 
-func CNIRuntimeDir() string {
-	return ""
+func CNIRuntimeDir() (string, error) {
+	return "", nil
 }
 
 func IsSystemdAvailable() bool {
diff --git a/pkg/netutil/netutil_unix.go b/pkg/netutil/netutil_unix.go
@@ -206,7 +206,11 @@ func (e *CNIEnv) generateIPAM(driver string, subnets []string, gatewayStr, ipRan
 		ipamConfig = ipamConf
 	case "dhcp":
 		ipamConf := newDHCPIPAMConfig()
-		ipamConf.DaemonSocketPath = filepath.Join(defaults.CNIRuntimeDir(), "dhcp.sock")
+		crd, err := defaults.CNIRuntimeDir()
+		if err != nil {
+			return nil, err
+		}
+		ipamConf.DaemonSocketPath = filepath.Join(crd, "dhcp.sock")
 		if err := systemutil.IsSocketAccessible(ipamConf.DaemonSocketPath); err != nil {
 			log.L.Warnf("cannot access dhcp socket %q (hint: try running with `dhcp daemon --socketpath=%s &` in CNI_PATH to launch the dhcp daemon)", ipamConf.DaemonSocketPath, ipamConf.DaemonSocketPath)
 		}
diff --git a/pkg/rootlessutil/xdg_linux.go b/pkg/rootlessutil/xdg_linux.go
@@ -20,6 +20,7 @@ import (
 	"errors"
 	"os"
 	"path/filepath"
+	"strconv"
 )
 
 func XDGRuntimeDir() (string, error) {
@@ -28,10 +29,11 @@ func XDGRuntimeDir() (string, error) {
 	}
 	// Fall back to "/run/user/<euid>".
 	// Note that We cannot rely on os.Geteuid() because we might be inside UserNS.
-	if euid := os.Getenv("ROOTLESSKIT_PARENT_EUID"); euid != "" {
-		return "/run/user/" + euid, nil
+	euid, err := strconv.Atoi(os.Getenv("ROOTLESSKIT_PARENT_EUID"))
+	if err != nil {
+		return "", errors.New("environment variable XDG_RUNTIME_DIR is not set, see https://rootlesscontaine.rs/getting-started/common/login/")
 	}
-	return "", errors.New("environment variable XDG_RUNTIME_DIR is not set, see https://rootlesscontaine.rs/getting-started/common/login/")
+	return "/run/user/" + strconv.Itoa(euid), nil
 }
 
 func XDGConfigHome() (string, error) {

Original file line number	Diff line number	Diff line change
`@@ -16,7 +16,7 @@`
`16`	`16`
`17`	`17`	`package buildkitutil`
`18`	`18`
`19`		`-func getRuntimeVariableDataDir() string {`
	`19`	`+func getRuntimeVariableDataDir() (string, error) {`
`20`	`20`	`// Per hier(7) dated July 6, 2023.`
`21`		`- return "/var/run"`
	`21`	`+ return "/var/run", nil`
`22`	`22`	`}`
Original file line number	Diff line number	Diff line change
`@@ -18,7 +18,6 @@ package bypass4netnsutil`
`18`	`18`
`19`	`19`	`import (`
`20`	`20`	`"context"`
`21`		`- "fmt"`
`22`	`21`	`"os"`
`23`	`22`	`"path/filepath"`
`24`	`23`	`"strconv"`
`@@ -30,6 +29,7 @@ import (`
`30`	`29`	`"github.com/containerd/containerd/v2/pkg/oci"`
`31`	`30`
`32`	`31`	`"github.com/containerd/nerdctl/v2/pkg/annotations"`
	`32`	`+ "github.com/containerd/nerdctl/v2/pkg/rootlessutil"`
`33`	`33`	`)`
`34`	`34`
`35`	`35`	`func generateSecurityOpt(listenerPath string) (oci.SpecOpts, error) {`
`@@ -83,15 +83,8 @@ func GenerateBypass4netnsOpts(securityOptsMaps map[string]string, annotationsMap`
`83`	`83`	`return opts, nil`
`84`	`84`	`}`
`85`	`85`
`86`		`-func getXDGRuntimeDir() (string, error) {`
`87`		`- if xrd := os.Getenv("XDG_RUNTIME_DIR"); xrd != "" {`
`88`		`- return xrd, nil`
`89`		`- }`
`90`		`- return "", fmt.Errorf("environment variable XDG_RUNTIME_DIR is not set")`
`91`		`-}`
`92`		`-`
`93`	`86`	`func CreateSocketDir() error {`
`94`		`- xdgRuntimeDir, err := getXDGRuntimeDir()`
	`87`	`+ xdgRuntimeDir, err := rootlessutil.XDGRuntimeDir()`
`95`	`88`	`if err != nil {`
`96`	`89`	`return err`
`97`	`90`	`}`
`@@ -107,7 +100,7 @@ func CreateSocketDir() error {`
`107`	`100`	`}`
`108`	`101`
`109`	`102`	`func GetBypass4NetnsdDefaultSocketPath() (string, error) {`
`110`		`- xdgRuntimeDir, err := getXDGRuntimeDir()`
	`103`	`+ xdgRuntimeDir, err := rootlessutil.XDGRuntimeDir()`
`111`	`104`	`if err != nil {`
`112`	`105`	`return "", err`
`113`	`106`	`}`
`@@ -116,7 +109,7 @@ func GetBypass4NetnsdDefaultSocketPath() (string, error) {`
`116`	`109`	`}`
`117`	`110`
`118`	`111`	`func GetSocketPathByID(id string) (string, error) {`
`119`		`- xdgRuntimeDir, err := getXDGRuntimeDir()`
	`112`	`+ xdgRuntimeDir, err := rootlessutil.XDGRuntimeDir()`
`120`	`113`	`if err != nil {`
`121`	`114`	`return "", err`
`122`	`115`	`}`
`@@ -126,7 +119,7 @@ func GetSocketPathByID(id string) (string, error) {`
`126`	`119`	`}`
`127`	`120`
`128`	`121`	`func GetPidFilePathByID(id string) (string, error) {`
`129`		`- xdgRuntimeDir, err := getXDGRuntimeDir()`
	`122`	`+ xdgRuntimeDir, err := rootlessutil.XDGRuntimeDir()`
`130`	`123`	`if err != nil {`
`131`	`124`	`return "", err`
`132`	`125`	`}`
Original file line number	Diff line number	Diff line change
`@@ -39,8 +39,8 @@ func CNINetConfPath() string {`
`39`	`39`	`return cni.DefaultNetDir`
`40`	`40`	`}`
`41`	`41`
`42`		`-func CNIRuntimeDir() string {`
`43`		`- return "/run/cni"`
	`42`	`+func CNIRuntimeDir() (string, error) {`
	`43`	`+ return "/run/cni", nil`
`44`	`44`	`}`
`45`	`45`
`46`	`46`	`func CgroupManager() string {`
Original file line number	Diff line number	Diff line change
`@@ -24,7 +24,6 @@ import (`
`24`	`24`
`25`	`25`	`"github.com/containerd/containerd/v2/plugins"`
`26`	`26`	`"github.com/containerd/go-cni"`
`27`		`- "github.com/containerd/log"`
`28`	`27`
`29`	`28`	`"github.com/containerd/nerdctl/v2/pkg/rootlessutil"`
`30`	`29`	`)`
`@@ -88,16 +87,18 @@ func CNINetConfPath() string {`
`88`	`87`	`return filepath.Join(xch, "cni/net.d")`
`89`	`88`	`}`
`90`	`89`
`91`		`-func CNIRuntimeDir() string {`
	`90`	`+func CNIRuntimeDir() (string, error) {`
`92`	`91`	`if !rootlessutil.IsRootless() {`
`93`		`- return "/run/cni"`
	`92`	`+ return "/run/cni", nil`
`94`	`93`	`}`
`95`	`94`	`xdr, err := rootlessutil.XDGRuntimeDir()`
`96`	`95`	`if err != nil {`
`97`		`- log.L.Warn(err)`
`98`		`- xdr = fmt.Sprintf("/run/user/%d", rootlessutil.ParentEUID())`
	`96`	`+ if rootlessutil.IsRootlessChild() {`
	`97`	`+ return "", err`
	`98`	`+ }`
	`99`	`+ xdr = fmt.Sprintf("/run/user/%d", os.Geteuid())`
`99`	`100`	`}`
`100`		`- return fmt.Sprintf("%s/cni", xdr)`
	`101`	`+ return filepath.Join(xdr, "cni"), nil`
`101`	`102`	`}`
`102`	`103`
`103`	`104`	`func NerdctlTOML() string {`
Original file line number	Diff line number	Diff line change
`@@ -20,6 +20,7 @@ import (`
`20`	`20`	`"errors"`
`21`	`21`	`"os"`
`22`	`22`	`"path/filepath"`
	`23`	`+ "strconv"`
`23`	`24`	`)`
`24`	`25`
`25`	`26`	`func XDGRuntimeDir() (string, error) {`
`@@ -28,10 +29,11 @@ func XDGRuntimeDir() (string, error) {`
`28`	`29`	`}`
`29`	`30`	`// Fall back to "/run/user/<euid>".`
`30`	`31`	`// Note that We cannot rely on os.Geteuid() because we might be inside UserNS.`
`31`		`- if euid := os.Getenv("ROOTLESSKIT_PARENT_EUID"); euid != "" {`
`32`		`- return "/run/user/" + euid, nil`
	`32`	`+ euid, err := strconv.Atoi(os.Getenv("ROOTLESSKIT_PARENT_EUID"))`
	`33`	`+ if err != nil {`
	`34`	`+ return "", errors.New("environment variable XDG_RUNTIME_DIR is not set, see https://rootlesscontaine.rs/getting-started/common/login/")`
`33`	`35`	`}`
`34`		`- return "", errors.New("environment variable XDG_RUNTIME_DIR is not set, see https://rootlesscontaine.rs/getting-started/common/login/")`
	`36`	`+ return "/run/user/" + strconv.Itoa(euid), nil`
`35`	`37`	`}`
`36`	`38`
`37`	`39`	`func XDGConfigHome() (string, error) {`