2014-08-01 17:34:06 +00:00
|
|
|
// +build daemon
|
|
|
|
|
|
|
|
|
|
package main
|
|
|
|
|
|
|
|
|
|
import (
|
2015-05-07 16:49:07 +00:00
|
|
|
"crypto/tls"
|
2015-01-22 00:55:05 +00:00
|
|
|
"fmt"
|
|
|
|
|
"io"
|
|
|
|
|
"os"
|
|
|
|
|
"path/filepath"
|
2015-04-27 21:11:29 +00:00
|
|
|
"time"
|
2015-01-22 00:55:05 +00:00
|
|
|
|
2015-03-26 22:22:04 +00:00
|
|
|
"github.com/Sirupsen/logrus"
|
2015-04-16 19:48:04 +00:00
|
|
|
apiserver "github.com/docker/docker/api/server"
|
2015-02-04 21:22:38 +00:00
|
|
|
"github.com/docker/docker/autogen/dockerversion"
|
2014-08-08 09:12:39 +00:00
|
|
|
"github.com/docker/docker/daemon"
|
2015-02-06 18:18:49 +00:00
|
|
|
"github.com/docker/docker/pkg/homedir"
|
2014-08-01 17:34:06 +00:00
|
|
|
flag "github.com/docker/docker/pkg/mflag"
|
2015-04-27 21:11:29 +00:00
|
|
|
"github.com/docker/docker/pkg/pidfile"
|
2014-08-06 08:12:22 +00:00
|
|
|
"github.com/docker/docker/pkg/signal"
|
2015-03-28 01:38:00 +00:00
|
|
|
"github.com/docker/docker/pkg/timeutils"
|
2015-05-07 16:49:07 +00:00
|
|
|
"github.com/docker/docker/pkg/tlsconfig"
|
2014-08-20 15:31:24 +00:00
|
|
|
"github.com/docker/docker/registry"
|
2015-05-21 17:48:36 +00:00
|
|
|
"github.com/docker/docker/utils"
|
2014-08-01 17:34:06 +00:00
|
|
|
)
|
|
|
|
|
|
2014-08-10 01:18:32 +00:00
|
|
|
var (
|
2014-10-07 01:54:52 +00:00
|
|
|
daemonCfg = &daemon.Config{}
|
|
|
|
|
registryCfg = ®istry.Options{}
|
2014-08-10 01:18:32 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
func init() {
|
2015-05-04 21:39:48 +00:00
|
|
|
if daemonCfg.LogConfig.Config == nil {
|
|
|
|
|
daemonCfg.LogConfig.Config = make(map[string]string)
|
|
|
|
|
}
|
2014-08-10 01:18:32 +00:00
|
|
|
daemonCfg.InstallFlags()
|
2014-10-07 01:54:52 +00:00
|
|
|
registryCfg.InstallFlags()
|
2014-08-10 01:18:32 +00:00
|
|
|
}
|
|
|
|
|
|
2015-01-22 19:22:31 +00:00
|
|
|
func migrateKey() (err error) {
|
2015-01-22 00:55:05 +00:00
|
|
|
// Migrate trust key if exists at ~/.docker/key.json and owned by current user
|
2015-02-06 18:18:49 +00:00
|
|
|
oldPath := filepath.Join(homedir.Get(), ".docker", defaultTrustKeyFile)
|
2015-01-22 00:55:05 +00:00
|
|
|
newPath := filepath.Join(getDaemonConfDir(), defaultTrustKeyFile)
|
2015-03-29 19:48:52 +00:00
|
|
|
if _, statErr := os.Stat(newPath); os.IsNotExist(statErr) && currentUserIsOwner(oldPath) {
|
2015-01-22 19:22:31 +00:00
|
|
|
defer func() {
|
|
|
|
|
// Ensure old path is removed if no error occurred
|
|
|
|
|
if err == nil {
|
|
|
|
|
err = os.Remove(oldPath)
|
|
|
|
|
} else {
|
2015-03-26 22:22:04 +00:00
|
|
|
logrus.Warnf("Key migration failed, key file not removed at %s", oldPath)
|
2015-01-22 19:22:31 +00:00
|
|
|
}
|
|
|
|
|
}()
|
|
|
|
|
|
2015-01-22 00:55:05 +00:00
|
|
|
if err := os.MkdirAll(getDaemonConfDir(), os.FileMode(0644)); err != nil {
|
2015-01-22 19:22:31 +00:00
|
|
|
return fmt.Errorf("Unable to create daemon configuration directory: %s", err)
|
2015-01-22 00:55:05 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
newFile, err := os.OpenFile(newPath, os.O_RDWR|os.O_CREATE|os.O_TRUNC, 0600)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("error creating key file %q: %s", newPath, err)
|
|
|
|
|
}
|
|
|
|
|
defer newFile.Close()
|
|
|
|
|
|
|
|
|
|
oldFile, err := os.Open(oldPath)
|
|
|
|
|
if err != nil {
|
2015-01-22 19:22:31 +00:00
|
|
|
return fmt.Errorf("error opening key file %q: %s", oldPath, err)
|
2015-01-22 00:55:05 +00:00
|
|
|
}
|
2015-01-22 19:22:31 +00:00
|
|
|
defer oldFile.Close()
|
2015-01-22 00:55:05 +00:00
|
|
|
|
|
|
|
|
if _, err := io.Copy(newFile, oldFile); err != nil {
|
|
|
|
|
return fmt.Errorf("error copying key: %s", err)
|
|
|
|
|
}
|
|
|
|
|
|
2015-03-26 22:22:04 +00:00
|
|
|
logrus.Infof("Migrated key from %s to %s", oldPath, newPath)
|
2015-01-22 00:55:05 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2014-08-01 17:34:06 +00:00
|
|
|
func mainDaemon() {
|
2015-05-21 17:48:36 +00:00
|
|
|
if utils.ExperimentalBuild() {
|
|
|
|
|
logrus.Warn("Running experimental build")
|
|
|
|
|
}
|
|
|
|
|
|
2014-08-01 17:34:06 +00:00
|
|
|
if flag.NArg() != 0 {
|
|
|
|
|
flag.Usage()
|
|
|
|
|
return
|
|
|
|
|
}
|
2015-03-28 01:38:00 +00:00
|
|
|
|
|
|
|
|
logrus.SetFormatter(&logrus.TextFormatter{TimestampFormat: timeutils.RFC3339NanoFixed})
|
|
|
|
|
|
2015-06-15 13:36:19 +00:00
|
|
|
if err := setDefaultUmask(); err != nil {
|
|
|
|
|
logrus.Fatalf("Failed to set umask: %v", err)
|
|
|
|
|
}
|
|
|
|
|
|
2015-04-27 21:11:29 +00:00
|
|
|
var pfile *pidfile.PidFile
|
|
|
|
|
if daemonCfg.Pidfile != "" {
|
|
|
|
|
pf, err := pidfile.New(daemonCfg.Pidfile)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logrus.Fatalf("Error starting daemon: %v", err)
|
|
|
|
|
}
|
|
|
|
|
pfile = pf
|
|
|
|
|
defer func() {
|
|
|
|
|
if err := pfile.Remove(); err != nil {
|
|
|
|
|
logrus.Error(err)
|
|
|
|
|
}
|
|
|
|
|
}()
|
|
|
|
|
}
|
2014-08-20 15:31:24 +00:00
|
|
|
|
2015-04-16 19:48:04 +00:00
|
|
|
serverConfig := &apiserver.ServerConfig{
|
|
|
|
|
Logging: true,
|
|
|
|
|
EnableCors: daemonCfg.EnableCors,
|
|
|
|
|
CorsHeaders: daemonCfg.CorsHeaders,
|
|
|
|
|
Version: dockerversion.VERSION,
|
2015-05-07 16:49:07 +00:00
|
|
|
}
|
2015-05-15 23:34:26 +00:00
|
|
|
serverConfig = setPlatformServerConfig(serverConfig, daemonCfg)
|
2015-05-07 16:49:07 +00:00
|
|
|
|
|
|
|
|
if *flTls {
|
|
|
|
|
if *flTlsVerify {
|
|
|
|
|
tlsOptions.ClientAuth = tls.RequireAndVerifyClientCert
|
|
|
|
|
}
|
|
|
|
|
tlsConfig, err := tlsconfig.Server(tlsOptions)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logrus.Fatal(err)
|
|
|
|
|
}
|
|
|
|
|
serverConfig.TLSConfig = tlsConfig
|
2015-04-16 19:48:04 +00:00
|
|
|
}
|
|
|
|
|
|
2015-04-27 21:11:29 +00:00
|
|
|
api := apiserver.New(serverConfig)
|
2015-04-17 21:32:18 +00:00
|
|
|
|
2015-04-16 19:48:04 +00:00
|
|
|
// The serve API routine never exits unless an error occurs
|
2015-03-11 14:33:06 +00:00
|
|
|
// We need to start it as a goroutine and wait on it so
|
|
|
|
|
// daemon doesn't exit
|
|
|
|
|
serveAPIWait := make(chan error)
|
|
|
|
|
go func() {
|
2015-04-17 21:32:18 +00:00
|
|
|
if err := api.ServeApi(flHosts); err != nil {
|
2015-03-26 22:22:04 +00:00
|
|
|
logrus.Errorf("ServeAPI error: %v", err)
|
2015-03-11 14:33:06 +00:00
|
|
|
serveAPIWait <- err
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
serveAPIWait <- nil
|
|
|
|
|
}()
|
2015-03-06 20:44:31 +00:00
|
|
|
|
2015-05-07 22:35:12 +00:00
|
|
|
if err := migrateKey(); err != nil {
|
|
|
|
|
logrus.Fatal(err)
|
|
|
|
|
}
|
|
|
|
|
daemonCfg.TrustKeyPath = *flTrustKey
|
|
|
|
|
|
|
|
|
|
registryService := registry.NewService(registryCfg)
|
|
|
|
|
d, err := daemon.NewDaemon(daemonCfg, registryService)
|
|
|
|
|
if err != nil {
|
|
|
|
|
if pfile != nil {
|
|
|
|
|
if err := pfile.Remove(); err != nil {
|
|
|
|
|
logrus.Error(err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
logrus.Fatalf("Error starting daemon: %v", err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
logrus.Info("Daemon has completed initialization")
|
|
|
|
|
|
|
|
|
|
logrus.WithFields(logrus.Fields{
|
|
|
|
|
"version": dockerversion.VERSION,
|
|
|
|
|
"commit": dockerversion.GITCOMMIT,
|
|
|
|
|
"execdriver": d.ExecutionDriver().Name(),
|
|
|
|
|
"graphdriver": d.GraphDriver().String(),
|
|
|
|
|
}).Info("Docker daemon")
|
|
|
|
|
|
2015-04-27 21:11:29 +00:00
|
|
|
signal.Trap(func() {
|
|
|
|
|
api.Close()
|
|
|
|
|
<-serveAPIWait
|
|
|
|
|
shutdownDaemon(d, 15)
|
|
|
|
|
if pfile != nil {
|
|
|
|
|
if err := pfile.Remove(); err != nil {
|
|
|
|
|
logrus.Error(err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
})
|
2015-04-17 19:03:11 +00:00
|
|
|
|
|
|
|
|
// after the daemon is done setting up we can tell the api to start
|
2015-04-17 21:32:18 +00:00
|
|
|
// accepting connections with specified daemon
|
|
|
|
|
api.AcceptConnections(d)
|
2015-04-17 19:03:11 +00:00
|
|
|
|
2015-03-11 14:33:06 +00:00
|
|
|
// Daemon is fully initialized and handling API traffic
|
2015-04-27 21:11:29 +00:00
|
|
|
// Wait for serve API to complete
|
2015-03-11 14:33:06 +00:00
|
|
|
errAPI := <-serveAPIWait
|
2015-04-27 21:11:29 +00:00
|
|
|
shutdownDaemon(d, 15)
|
2015-03-11 14:33:06 +00:00
|
|
|
if errAPI != nil {
|
2015-04-27 21:11:29 +00:00
|
|
|
if pfile != nil {
|
|
|
|
|
if err := pfile.Remove(); err != nil {
|
|
|
|
|
logrus.Error(err)
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-03-26 22:22:04 +00:00
|
|
|
logrus.Fatalf("Shutting down due to ServeAPI error: %v", errAPI)
|
2015-03-11 14:33:06 +00:00
|
|
|
}
|
2014-08-01 17:34:06 +00:00
|
|
|
}
|
2015-03-29 19:48:52 +00:00
|
|
|
|
2015-04-27 21:11:29 +00:00
|
|
|
// shutdownDaemon just wraps daemon.Shutdown() to handle a timeout in case
|
|
|
|
|
// d.Shutdown() is waiting too long to kill container or worst it's
|
|
|
|
|
// blocked there
|
|
|
|
|
func shutdownDaemon(d *daemon.Daemon, timeout time.Duration) {
|
|
|
|
|
ch := make(chan struct{})
|
|
|
|
|
go func() {
|
|
|
|
|
d.Shutdown()
|
|
|
|
|
close(ch)
|
|
|
|
|
}()
|
|
|
|
|
select {
|
|
|
|
|
case <-ch:
|
|
|
|
|
logrus.Debug("Clean shutdown succeded")
|
|
|
|
|
case <-time.After(timeout * time.Second):
|
|
|
|
|
logrus.Error("Force shutdown daemon")
|
|
|
|
|
}
|
|
|
|
|
}
|
