// CreateProxyCmds creates the commands needed for a proxy unit. func (e *dockerEngine) CreateProxyCmds(t *jobs.Task, link jobs.Link, linkIndex int, env map[string]string, scalingGroup uint) (engine.Cmds, error) { containerName := fmt.Sprintf("%s-pr%d", t.ContainerName(scalingGroup), linkIndex) containerImage := images.Wormhole execStart, err := e.createProxyDockerCmdLine(t, containerName, containerImage, link, env, scalingGroup) if err != nil { return engine.Cmds{}, maskAny(err) } var cmds engine.Cmds cmds.Start = append(cmds.Start, e.pullCmd(containerImage), e.stopCmd(containerName), e.removeCmd(containerName), e.cleanupCmd(), ) if e.options.EnvFile != "" { cmds.Start = append(cmds.Start, *cmdline.New(nil, e.touchPath, e.options.EnvFile)) } cmds.Start = append(cmds.Start, execStart) cmds.Stop = append(cmds.Stop, e.stopCmd(containerName), e.removeCmd(containerName), ) return cmds, nil }
// CreateMainCmds creates the commands needed for a main unit. func (e *dockerEngine) CreateMainCmds(t *jobs.Task, env map[string]string, scalingGroup uint) (engine.Cmds, error) { containerName := t.ContainerName(scalingGroup) containerImage := t.Image.String() if t.Type == "proxy" { containerImage = images.Alpine } execStart, err := e.createMainDockerCmdLine(t, containerImage, env, scalingGroup) if err != nil { return engine.Cmds{}, maskAny(err) } var cmds engine.Cmds cmds.Start = append(cmds.Start, e.pullCmd(containerImage), ) if e.options.EnvFile != "" { cmds.Start = append(cmds.Start, *cmdline.New(nil, e.touchPath, e.options.EnvFile)) } // Add secret extraction commands secretsCmds, err := e.createSecretsExecStartPre(t, images.VaultMonkey, env, scalingGroup) if err != nil { return engine.Cmds{}, maskAny(err) } cmds.Start = append(cmds.Start, secretsCmds...) cmds.Start = append(cmds.Start, e.stopCmd(containerName), e.removeCmd(containerName), e.cleanupCmd(), ) for _, v := range t.Volumes { if v.IsLocal() { cmds.Start = append(cmds.Start, e.createTestLocalVolumeCmd(v.HostPath)) } } cmds.Start = append(cmds.Start, execStart) cmds.Stop = append(cmds.Stop, e.stopCmd(containerName), e.removeCmd(containerName), ) return cmds, nil }
// createMainDockerCmdLine creates the `ExecStart` line for // the main unit. func (e *dockerEngine) createMainDockerCmdLine(t *jobs.Task, image string, env map[string]string, scalingGroup uint) (cmdline.Cmdline, error) { serviceName := t.ServiceName() cmd, err := e.createDockerCmd(env, t.Network) if err != nil { return cmd, maskAny(err) } cmd.Add(nil, "run", "--rm", fmt.Sprintf("--name %s", t.ContainerName(scalingGroup))) if err := e.addDockerNetworkArgs(&cmd, env, t); err != nil { return cmd, maskAny(err) } if len(t.Ports) > 0 { for _, p := range t.Ports { cmd.Add(env, fmt.Sprintf("-p %s", p)) } } else { cmd.Add(env, "-P") } for i, v := range t.Volumes { if v.IsLocal() { cmd.Add(env, fmt.Sprintf("-v %s", v)) } else if !v.IsLocal() { cmd.Add(env, fmt.Sprintf("--volumes-from %s", createVolumeUnitContainerName(t, i, scalingGroup))) } } for _, secret := range t.Secrets { if ok, path := secret.TargetFile(); ok { hostPath, err := secretFilePath(t, scalingGroup, secret) if err != nil { return cmdline.Cmdline{}, maskAny(err) } cmd.Add(env, fmt.Sprintf("-v %s:%s:ro", hostPath, path)) } } for _, name := range t.VolumesFrom { other, err := t.Task(name) if err != nil { return cmdline.Cmdline{}, maskAny(err) } for i, v := range other.Volumes { if !v.IsLocal() { cmd.Add(env, fmt.Sprintf("--volumes-from %s", createVolumeUnitContainerName(other, i, scalingGroup))) } } cmd.Add(env, fmt.Sprintf("--volumes-from %s", other.ContainerName(scalingGroup))) } envKeys := []string{} for k := range t.Environment { envKeys = append(envKeys, k) } sort.Strings(envKeys) if e.options.EnvFile != "" { cmd.Add(env, fmt.Sprintf("--env-file=%s", e.options.EnvFile)) } for _, k := range envKeys { cmd.Add(env, "-e "+strconv.Quote(fmt.Sprintf("%s=%s", k, t.Environment[k]))) } if t.Secrets.AnyTargetEnviroment() { cmd.Add(env, "--env-file="+secretEnvironmentPath(t, scalingGroup)) } cmd.Add(env, fmt.Sprintf("-e SERVICE_NAME=%s", serviceName)) // Support registrator for _, cap := range t.Capabilities { cmd.Add(env, "--cap-add "+cap) } tcpLinkIndex := 0 for _, l := range t.Links { targetName := l.Target.PrivateDomainName() if l.Type.IsHTTP() { cmd.Add(env, "--add-host") cmd.Add(env, fmt.Sprintf("%s:${COREOS_PRIVATE_IPV4}", targetName)) } else { linkContainerName := fmt.Sprintf("%s-pr%d", t.ContainerName(scalingGroup), tcpLinkIndex) cmd.Add(env, fmt.Sprintf("--link %s:%s", linkContainerName, targetName)) tcpLinkIndex++ } } for _, arg := range t.LogDriver.CreateDockerLogArgs(e.options) { cmd.Add(env, arg) } for _, arg := range t.DockerArgs { cmd.Add(env, arg) } if t.User != "" { cmd.Add(env, fmt.Sprintf("--user %s", t.User)) } cmd.Add(nil, image) if t.Type == "proxy" { cmd.Add(nil, "sleep 36500d") } for _, arg := range t.Args { cmd.Add(env, arg) } return cmd, nil }
// createVolumeUnitContainerName creates the name of the docker container that serves a volume with given index func createVolumeUnitContainerName(t *jobs.Task, volIndex int, scalingGroup uint) string { return fmt.Sprintf("%s-vl%d", t.ContainerName(scalingGroup), volIndex) }
// secretsRootPath returns the path of the root directory that will contain secret files for the given task. func secretsRootPath(t *jobs.Task, scalingGroup uint) string { return filepath.Join(secretsPath, t.ContainerName(scalingGroup)) }