-
Notifications
You must be signed in to change notification settings - Fork 319
Dev Container Id Proposal #96
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Merged
Merged
Changes from all commits
Commits
Show all changes
4 commits
Select commit
Hold shift + click to select a range
File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,60 @@ | ||
| ## Goal | ||
|
|
||
| Allow features to refer to an identifier that is unique to the dev container they are installed into and that is stable across rebuilds. | ||
|
|
||
| E.g., the `docker-in-docker` feature needs a way to mount a volume per dev container. | ||
|
|
||
| ## Proposal | ||
|
|
||
| The identifier will be referred to as `${devcontainerId}` in the devcontainer.json and the feature metadata and that will be replaced with the dev container's id. It should only be used in parts of the configuration and metadata that is not used for building the image because that would otherwise prevent pre-building the image at a time when the dev container's id is not known yet. Excluding boolean, numbers and enum properties the properties supporting `${devcontainerId}` in the devcontainer.json are: `name`, `runArgs`, `initializeCommand`, `onCreateCommand`, `updateContentCommand`, `postCreateCommand`, `postStartCommand`, `postAttachCommand`, `workspaceFolder`, `workspaceMount`, `mounts`, `containerEnv`, `remoteEnv`, `containerUser`, `remoteUser`, `customizations`. Excluding boolean, numbers and enum properties the properties supporting `${devcontainerId}` in the feature metadata are: `entrypoint`, `mounts`, `customizations`. | ||
|
|
||
| Implementations can choose how to compute this identifier. They must ensure that it is unique among other dev containers on the same Docker host and that it is stable across rebuilds of dev containers. The identifier must only contain alphanumeric characters. We describe a way to do this below. | ||
|
|
||
| ### Label-based Implementation | ||
|
|
||
| The following assumes that a dev container can be identified among other dev containers on the same Docker host by a set of labels on the container. Implementations may choose to follow this approach. | ||
|
|
||
| The identifier is derived from the set of container labels uniquely identifying the dev container. It is up to the implementation to choose these labels. E.g., if the dev container is based on a local folder the label could be named `devcontainer.local_folder` and have the local folder's path as its value. | ||
|
|
||
| E.g., the [`ghcr.io/devcontainers/features/docker-in-docker` feature](https://github.com/devcontainers/features/blob/main/src/docker-in-docker/devcontainer-feature.json) could use the dev container id with: | ||
|
|
||
| ```jsonc | ||
| { | ||
| "id": "docker-in-docker", | ||
| "version": "1.0.4", | ||
| // ... | ||
| "mounts": [ | ||
| { | ||
| "source": "dind-var-lib-docker-${devcontainerId}", | ||
| "target": "/var/lib/docker", | ||
| "type": "volume" | ||
| } | ||
| ] | ||
| } | ||
| ``` | ||
|
|
||
| ### Label-based Computation | ||
|
|
||
| - Input the labels as a JSON object with the object's keys being the label names and the object's values being the labels' values. | ||
| - To ensure implementations get to the same result, the object keys must be sorted and any optional whitespace outside of the keys and values must be removed. | ||
| - Compute a SHA-256 hash from the UTF-8 encoded input string. | ||
| - Use a base-32 encoded representation left-padded with '0' to 52 characters as the result. | ||
|
|
||
| JavaScript implementation taking an object with the labels as argument and returning a string as the result: | ||
| ```js | ||
| const crypto = require('crypto'); | ||
|
|
||
| function uniqueIdForLabels(idLabels) { | ||
| const stringInput = JSON.stringify(idLabels, Object.keys(idLabels).sort()); // sort properties | ||
| const bufferInput = Buffer.from(stringInput, 'utf-8'); | ||
|
|
||
| const hash = crypto.createHash('sha256') | ||
| .update(bufferInput) | ||
| .digest(); | ||
|
|
||
| const uniqueId = BigInt(`0x${hash.toString('hex')}`) | ||
| .toString(32) | ||
| .padStart(52, '0'); | ||
| return uniqueId; | ||
| } | ||
| ``` | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Uh oh!
There was an error while loading. Please reload this page.