// CreateProxyCmds creates the commands needed for a proxy unit.
func (e *dockerEngine) CreateProxyCmds(t *jobs.Task, link jobs.Link, linkIndex int, env map[string]string, scalingGroup uint) (engine.Cmds, error) {
containerName := fmt.Sprintf("%s-pr%d", t.ContainerName(scalingGroup), linkIndex)
containerImage := images.Wormhole
execStart, err := e.createProxyDockerCmdLine(t, containerName, containerImage, link, env, scalingGroup)
if err != nil {
return engine.Cmds{}, maskAny(err)
}
var cmds engine.Cmds
cmds.Start = append(cmds.Start,
e.pullCmd(containerImage),
e.stopCmd(containerName),
e.removeCmd(containerName),
e.cleanupCmd(),
)
if e.options.EnvFile != "" {
cmds.Start = append(cmds.Start, *cmdline.New(nil, e.touchPath, e.options.EnvFile))
}
cmds.Start = append(cmds.Start, execStart)
cmds.Stop = append(cmds.Stop,
e.stopCmd(containerName),
e.removeCmd(containerName),
)
return cmds, nil
}
// CreateMainCmds creates the commands needed for a main unit.
func (e *dockerEngine) CreateMainCmds(t *jobs.Task, env map[string]string, scalingGroup uint) (engine.Cmds, error) {
containerName := t.ContainerName(scalingGroup)
containerImage := t.Image.String()
if t.Type == "proxy" {
containerImage = images.Alpine
}
execStart, err := e.createMainDockerCmdLine(t, containerImage, env, scalingGroup)
if err != nil {
return engine.Cmds{}, maskAny(err)
}
var cmds engine.Cmds
cmds.Start = append(cmds.Start,
e.pullCmd(containerImage),
)
if e.options.EnvFile != "" {
cmds.Start = append(cmds.Start, *cmdline.New(nil, e.touchPath, e.options.EnvFile))
}
// Add secret extraction commands
secretsCmds, err := e.createSecretsExecStartPre(t, images.VaultMonkey, env, scalingGroup)
if err != nil {
return engine.Cmds{}, maskAny(err)
}
cmds.Start = append(cmds.Start, secretsCmds...)
cmds.Start = append(cmds.Start,
e.stopCmd(containerName),
e.removeCmd(containerName),
e.cleanupCmd(),
)
for _, v := range t.Volumes {
if v.IsLocal() {
cmds.Start = append(cmds.Start, e.createTestLocalVolumeCmd(v.HostPath))
}
}
cmds.Start = append(cmds.Start, execStart)
cmds.Stop = append(cmds.Stop,
e.stopCmd(containerName),
e.removeCmd(containerName),
)
return cmds, nil
}
// createMainDockerCmdLine creates the `ExecStart` line for
// the main unit.
func (e *dockerEngine) createMainDockerCmdLine(t *jobs.Task, image string, env map[string]string, scalingGroup uint) (cmdline.Cmdline, error) {
serviceName := t.ServiceName()
cmd, err := e.createDockerCmd(env, t.Network)
if err != nil {
return cmd, maskAny(err)
}
cmd.Add(nil, "run", "--rm", fmt.Sprintf("--name %s", t.ContainerName(scalingGroup)))
if err := e.addDockerNetworkArgs(&cmd, env, t); err != nil {
return cmd, maskAny(err)
}
if len(t.Ports) > 0 {
for _, p := range t.Ports {
cmd.Add(env, fmt.Sprintf("-p %s", p))
}
} else {
cmd.Add(env, "-P")
}
for i, v := range t.Volumes {
if v.IsLocal() {
cmd.Add(env, fmt.Sprintf("-v %s", v))
} else if !v.IsLocal() {
cmd.Add(env, fmt.Sprintf("--volumes-from %s", createVolumeUnitContainerName(t, i, scalingGroup)))
}
}
for _, secret := range t.Secrets {
if ok, path := secret.TargetFile(); ok {
hostPath, err := secretFilePath(t, scalingGroup, secret)
if err != nil {
return cmdline.Cmdline{}, maskAny(err)
}
cmd.Add(env, fmt.Sprintf("-v %s:%s:ro", hostPath, path))
}
}
for _, name := range t.VolumesFrom {
other, err := t.Task(name)
if err != nil {
return cmdline.Cmdline{}, maskAny(err)
}
for i, v := range other.Volumes {
if !v.IsLocal() {
cmd.Add(env, fmt.Sprintf("--volumes-from %s", createVolumeUnitContainerName(other, i, scalingGroup)))
}
}
cmd.Add(env, fmt.Sprintf("--volumes-from %s", other.ContainerName(scalingGroup)))
}
envKeys := []string{}
for k := range t.Environment {
envKeys = append(envKeys, k)
}
sort.Strings(envKeys)
if e.options.EnvFile != "" {
cmd.Add(env, fmt.Sprintf("--env-file=%s", e.options.EnvFile))
}
for _, k := range envKeys {
cmd.Add(env, "-e "+strconv.Quote(fmt.Sprintf("%s=%s", k, t.Environment[k])))
}
if t.Secrets.AnyTargetEnviroment() {
cmd.Add(env, "--env-file="+secretEnvironmentPath(t, scalingGroup))
}
cmd.Add(env, fmt.Sprintf("-e SERVICE_NAME=%s", serviceName)) // Support registrator
for _, cap := range t.Capabilities {
cmd.Add(env, "--cap-add "+cap)
}
tcpLinkIndex := 0
for _, l := range t.Links {
targetName := l.Target.PrivateDomainName()
if l.Type.IsHTTP() {
cmd.Add(env, "--add-host")
cmd.Add(env, fmt.Sprintf("%s:${COREOS_PRIVATE_IPV4}", targetName))
} else {
linkContainerName := fmt.Sprintf("%s-pr%d", t.ContainerName(scalingGroup), tcpLinkIndex)
cmd.Add(env, fmt.Sprintf("--link %s:%s", linkContainerName, targetName))
tcpLinkIndex++
}
}
for _, arg := range t.LogDriver.CreateDockerLogArgs(e.options) {
cmd.Add(env, arg)
}
for _, arg := range t.DockerArgs {
cmd.Add(env, arg)
}
if t.User != "" {
cmd.Add(env, fmt.Sprintf("--user %s", t.User))
}
cmd.Add(nil, image)
if t.Type == "proxy" {
cmd.Add(nil, "sleep 36500d")
}
for _, arg := range t.Args {
cmd.Add(env, arg)
}
return cmd, nil
}
// createVolumeUnitContainerName creates the name of the docker container that serves a volume with given index
func createVolumeUnitContainerName(t *jobs.Task, volIndex int, scalingGroup uint) string {
return fmt.Sprintf("%s-vl%d", t.ContainerName(scalingGroup), volIndex)
}
// secretsRootPath returns the path of the root directory that will contain secret files for the given task.
func secretsRootPath(t *jobs.Task, scalingGroup uint) string {
return filepath.Join(secretsPath, t.ContainerName(scalingGroup))
}
