github.com/mheon/docker@v0.11.2-0.20150922122814-44f47903a831/docker/daemon.go (about) 1 // +build daemon 2 3 package main 4 5 import ( 6 "crypto/tls" 7 "fmt" 8 "io" 9 "os" 10 "path/filepath" 11 "strings" 12 "time" 13 14 "github.com/Sirupsen/logrus" 15 "github.com/docker/distribution/uuid" 16 apiserver "github.com/docker/docker/api/server" 17 "github.com/docker/docker/autogen/dockerversion" 18 "github.com/docker/docker/cli" 19 "github.com/docker/docker/cliconfig" 20 "github.com/docker/docker/daemon" 21 "github.com/docker/docker/daemon/logger" 22 "github.com/docker/docker/opts" 23 flag "github.com/docker/docker/pkg/mflag" 24 "github.com/docker/docker/pkg/pidfile" 25 "github.com/docker/docker/pkg/signal" 26 "github.com/docker/docker/pkg/system" 27 "github.com/docker/docker/pkg/timeutils" 28 "github.com/docker/docker/pkg/tlsconfig" 29 "github.com/docker/docker/registry" 30 "github.com/docker/docker/utils" 31 ) 32 33 const daemonUsage = " docker daemon [ --help | ... ]\n" 34 35 var ( 36 flDaemon = flag.Bool([]string{"#d", "#-daemon"}, false, "Enable daemon mode (deprecated; use docker daemon)") 37 daemonCli cli.Handler = NewDaemonCli() 38 ) 39 40 // TODO: remove once `-d` is retired 41 func handleGlobalDaemonFlag() { 42 // This block makes sure that if the deprecated daemon flag `--daemon` is absent, 43 // then all daemon-specific flags are absent as well. 44 if !*flDaemon && daemonFlags != nil { 45 flag.CommandLine.Visit(func(fl *flag.Flag) { 46 for _, name := range fl.Names { 47 name := strings.TrimPrefix(name, "#") 48 if daemonFlags.Lookup(name) != nil { 49 // daemon flag was NOT specified, but daemon-specific flags were 50 // so let's error out 51 fmt.Fprintf(os.Stderr, "docker: the daemon flag '-%s' must follow the 'docker daemon' command.\n", name) 52 os.Exit(1) 53 } 54 } 55 }) 56 } 57 58 if *flDaemon { 59 if *flHelp { 60 // We do not show the help output here, instead, we tell the user about the new daemon command, 61 // because the help output is so long they would not see the warning anyway. 62 fmt.Fprintln(os.Stderr, "Please use 'docker daemon --help' instead.") 63 os.Exit(0) 64 } 65 daemonCli.(*DaemonCli).CmdDaemon(flag.Args()...) 66 os.Exit(0) 67 } 68 } 69 70 func presentInHelp(usage string) string { return usage } 71 func absentFromHelp(string) string { return "" } 72 73 // NewDaemonCli returns a pre-configured daemon CLI 74 func NewDaemonCli() *DaemonCli { 75 daemonFlags = cli.Subcmd("daemon", nil, "Enable daemon mode", true) 76 77 // TODO(tiborvass): remove InstallFlags? 78 daemonConfig := new(daemon.Config) 79 daemonConfig.LogConfig.Config = make(map[string]string) 80 daemonConfig.InstallFlags(daemonFlags, presentInHelp) 81 daemonConfig.InstallFlags(flag.CommandLine, absentFromHelp) 82 registryOptions := new(registry.Options) 83 registryOptions.InstallFlags(daemonFlags, presentInHelp) 84 registryOptions.InstallFlags(flag.CommandLine, absentFromHelp) 85 daemonFlags.Require(flag.Exact, 0) 86 87 return &DaemonCli{ 88 Config: daemonConfig, 89 registryOptions: registryOptions, 90 } 91 } 92 93 func migrateKey() (err error) { 94 // Migrate trust key if exists at ~/.docker/key.json and owned by current user 95 oldPath := filepath.Join(cliconfig.ConfigDir(), defaultTrustKeyFile) 96 newPath := filepath.Join(getDaemonConfDir(), defaultTrustKeyFile) 97 if _, statErr := os.Stat(newPath); os.IsNotExist(statErr) && currentUserIsOwner(oldPath) { 98 defer func() { 99 // Ensure old path is removed if no error occurred 100 if err == nil { 101 err = os.Remove(oldPath) 102 } else { 103 logrus.Warnf("Key migration failed, key file not removed at %s", oldPath) 104 os.Remove(newPath) 105 } 106 }() 107 108 if err := system.MkdirAll(getDaemonConfDir(), os.FileMode(0644)); err != nil { 109 return fmt.Errorf("Unable to create daemon configuration directory: %s", err) 110 } 111 112 newFile, err := os.OpenFile(newPath, os.O_RDWR|os.O_CREATE|os.O_TRUNC, 0600) 113 if err != nil { 114 return fmt.Errorf("error creating key file %q: %s", newPath, err) 115 } 116 defer newFile.Close() 117 118 oldFile, err := os.Open(oldPath) 119 if err != nil { 120 return fmt.Errorf("error opening key file %q: %s", oldPath, err) 121 } 122 defer oldFile.Close() 123 124 if _, err := io.Copy(newFile, oldFile); err != nil { 125 return fmt.Errorf("error copying key: %s", err) 126 } 127 128 logrus.Infof("Migrated key from %s to %s", oldPath, newPath) 129 } 130 131 return nil 132 } 133 134 // DaemonCli represents the daemon CLI. 135 type DaemonCli struct { 136 *daemon.Config 137 registryOptions *registry.Options 138 } 139 140 func getGlobalFlag() (globalFlag *flag.Flag) { 141 defer func() { 142 if x := recover(); x != nil { 143 switch f := x.(type) { 144 case *flag.Flag: 145 globalFlag = f 146 default: 147 panic(x) 148 } 149 } 150 }() 151 visitor := func(f *flag.Flag) { panic(f) } 152 commonFlags.FlagSet.Visit(visitor) 153 clientFlags.FlagSet.Visit(visitor) 154 return 155 } 156 157 // CmdDaemon is the daemon command, called the raw arguments after `docker daemon`. 158 func (cli *DaemonCli) CmdDaemon(args ...string) error { 159 // warn from uuid package when running the daemon 160 uuid.Loggerf = logrus.Warnf 161 162 if *flDaemon { 163 // allow legacy forms `docker -D -d` and `docker -d -D` 164 logrus.Warn("please use 'docker daemon' instead.") 165 } else if !commonFlags.FlagSet.IsEmpty() || !clientFlags.FlagSet.IsEmpty() { 166 // deny `docker -D daemon` 167 illegalFlag := getGlobalFlag() 168 fmt.Fprintf(os.Stderr, "invalid flag '-%s'.\nSee 'docker daemon --help'.\n", illegalFlag.Names[0]) 169 os.Exit(1) 170 } else { 171 // allow new form `docker daemon -D` 172 flag.Merge(daemonFlags, commonFlags.FlagSet) 173 } 174 175 daemonFlags.ParseFlags(args, true) 176 commonFlags.PostParse() 177 178 if len(commonFlags.Hosts) == 0 { 179 commonFlags.Hosts = []string{opts.DefaultHost} 180 } 181 if commonFlags.TrustKey == "" { 182 commonFlags.TrustKey = filepath.Join(getDaemonConfDir(), defaultTrustKeyFile) 183 } 184 185 if utils.ExperimentalBuild() { 186 logrus.Warn("Running experimental build") 187 } 188 189 logrus.SetFormatter(&logrus.TextFormatter{TimestampFormat: timeutils.RFC3339NanoFixed}) 190 191 if err := setDefaultUmask(); err != nil { 192 logrus.Fatalf("Failed to set umask: %v", err) 193 } 194 195 if len(cli.LogConfig.Config) > 0 { 196 if err := logger.ValidateLogOpts(cli.LogConfig.Type, cli.LogConfig.Config); err != nil { 197 logrus.Fatalf("Failed to set log opts: %v", err) 198 } 199 } 200 201 var pfile *pidfile.PIDFile 202 if cli.Pidfile != "" { 203 pf, err := pidfile.New(cli.Pidfile) 204 if err != nil { 205 logrus.Fatalf("Error starting daemon: %v", err) 206 } 207 pfile = pf 208 defer func() { 209 if err := pfile.Remove(); err != nil { 210 logrus.Error(err) 211 } 212 }() 213 } 214 215 serverConfig := &apiserver.Config{ 216 Logging: true, 217 Version: dockerversion.VERSION, 218 } 219 serverConfig = setPlatformServerConfig(serverConfig, cli.Config) 220 221 if commonFlags.TLSOptions != nil { 222 if !commonFlags.TLSOptions.InsecureSkipVerify { 223 // server requires and verifies client's certificate 224 commonFlags.TLSOptions.ClientAuth = tls.RequireAndVerifyClientCert 225 } 226 tlsConfig, err := tlsconfig.Server(*commonFlags.TLSOptions) 227 if err != nil { 228 logrus.Fatal(err) 229 } 230 serverConfig.TLSConfig = tlsConfig 231 } 232 233 api := apiserver.New(serverConfig) 234 235 // The serve API routine never exits unless an error occurs 236 // We need to start it as a goroutine and wait on it so 237 // daemon doesn't exit 238 serveAPIWait := make(chan error) 239 go func() { 240 if err := api.ServeAPI(commonFlags.Hosts); err != nil { 241 logrus.Errorf("ServeAPI error: %v", err) 242 serveAPIWait <- err 243 return 244 } 245 serveAPIWait <- nil 246 }() 247 248 if err := migrateKey(); err != nil { 249 logrus.Fatal(err) 250 } 251 cli.TrustKeyPath = commonFlags.TrustKey 252 253 registryService := registry.NewService(cli.registryOptions) 254 d, err := daemon.NewDaemon(cli.Config, registryService) 255 if err != nil { 256 if pfile != nil { 257 if err := pfile.Remove(); err != nil { 258 logrus.Error(err) 259 } 260 } 261 logrus.Fatalf("Error starting daemon: %v", err) 262 } 263 264 logrus.Info("Daemon has completed initialization") 265 266 logrus.WithFields(logrus.Fields{ 267 "version": dockerversion.VERSION, 268 "commit": dockerversion.GITCOMMIT, 269 "execdriver": d.ExecutionDriver().Name(), 270 "graphdriver": d.GraphDriver().String(), 271 }).Info("Docker daemon") 272 273 signal.Trap(func() { 274 api.Close() 275 <-serveAPIWait 276 shutdownDaemon(d, 15) 277 if pfile != nil { 278 if err := pfile.Remove(); err != nil { 279 logrus.Error(err) 280 } 281 } 282 }) 283 284 // after the daemon is done setting up we can tell the api to start 285 // accepting connections with specified daemon 286 api.AcceptConnections(d) 287 288 // Daemon is fully initialized and handling API traffic 289 // Wait for serve API to complete 290 errAPI := <-serveAPIWait 291 shutdownDaemon(d, 15) 292 if errAPI != nil { 293 if pfile != nil { 294 if err := pfile.Remove(); err != nil { 295 logrus.Error(err) 296 } 297 } 298 logrus.Fatalf("Shutting down due to ServeAPI error: %v", errAPI) 299 } 300 return nil 301 } 302 303 // shutdownDaemon just wraps daemon.Shutdown() to handle a timeout in case 304 // d.Shutdown() is waiting too long to kill container or worst it's 305 // blocked there 306 func shutdownDaemon(d *daemon.Daemon, timeout time.Duration) { 307 ch := make(chan struct{}) 308 go func() { 309 d.Shutdown() 310 close(ch) 311 }() 312 select { 313 case <-ch: 314 logrus.Debug("Clean shutdown succeeded") 315 case <-time.After(timeout * time.Second): 316 logrus.Error("Force shutdown daemon") 317 } 318 }