Skip to content
This repository has been archived by the owner on Sep 26, 2021. It is now read-only.

Commit

Permalink
Add defaults to Fedora CoreOS provider
Browse files Browse the repository at this point in the history
Add the defaults used by the Docker installation on Fedora CoreOS provider
available in /etc/systemd/system/docker.service and /etc/sysconfig/docker
except for --live-restore which is incompatible with swarm mode.
  • Loading branch information
AlexGustafsson committed May 20, 2020
1 parent ca131ee commit 97fdac7
Show file tree
Hide file tree
Showing 2 changed files with 20 additions and 11 deletions.
Binary file added .DS_Store
Binary file not shown.
31 changes: 20 additions & 11 deletions libmachine/provision/fedora_coreos.go
Original file line number Diff line number Diff line change
Expand Up @@ -58,21 +58,30 @@ func (provisioner *FedoraCoreOSProvisioner) GenerateDockerOptions(dockerPort int
driverNameLabel := fmt.Sprintf("provider=%s", provisioner.Driver.DriverName())
provisioner.EngineOptions.Labels = append(provisioner.EngineOptions.Labels, driverNameLabel)

// Adds defaults used by Fedora CoreOS in /etc/systemd/system/docker.service
// as well as in /etc/sysconfig/docker.
// The only removed options are:
// --live-restore option which is incompatible with swarm mode
// --userland-proxy-path which disables networking to function as expected
engineConfigTmpl := `[Service]
Environment=TMPDIR=/var/tmp
ExecStart=
ExecStart=/usr/bin/dockerd \
--exec-opt native.cgroupdriver=systemd \
--host=unix:///var/run/docker.sock \
--host=tcp://0.0.0.0:{{.DockerPort}} \
--tlsverify \
--tlscacert {{.AuthOptions.CaCertRemotePath}} \
--tlscert {{.AuthOptions.ServerCertRemotePath}} \
--tlskey {{.AuthOptions.ServerKeyRemotePath}}{{ range .EngineOptions.Labels }} \
--label {{.}}{{ end }}{{ range .EngineOptions.InsecureRegistry }} \
--insecure-registry {{.}}{{ end }}{{ range .EngineOptions.RegistryMirror }} \
--registry-mirror {{.}}{{ end }}{{ range .EngineOptions.ArbitraryFlags }} \
--{{.}}{{ end }} \$DOCKER_OPTS \$DOCKER_OPT_BIP \$DOCKER_OPT_MTU \$DOCKER_OPT_IPMASQ
--selinux-enabled \
--log-driver=journald \
--default-ulimit nofile=1024:1024 \
--init-path /usr/libexec/docker/docker-init \
--exec-opt native.cgroupdriver=systemd \
--host=unix:///var/run/docker.sock \
--host=tcp://0.0.0.0:{{.DockerPort}} \
--tlsverify \
--tlscacert {{.AuthOptions.CaCertRemotePath}} \
--tlscert {{.AuthOptions.ServerCertRemotePath}} \
--tlskey {{.AuthOptions.ServerKeyRemotePath}}{{ range .EngineOptions.Labels }} \
--label {{.}}{{ end }}{{ range .EngineOptions.InsecureRegistry }} \
--insecure-registry {{.}}{{ end }}{{ range .EngineOptions.RegistryMirror }} \
--registry-mirror {{.}}{{ end }}{{ range .EngineOptions.ArbitraryFlags }} \
--{{.}}{{ end }} \$DOCKER_OPTS \$DOCKER_OPT_BIP \$DOCKER_OPT_MTU \$DOCKER_OPT_IPMASQ
Environment={{range .EngineOptions.Env}}{{ printf "%q" . }} {{end}}
`

Expand Down

0 comments on commit 97fdac7

Please sign in to comment.