Duplicated --pidfile during init if passed to mongod at startup
#298
Conversation
3.6/docker-entrypoint.sh
Outdated
| @@ -7,6 +7,16 @@ fi | |||
|
|
|||
| originalArgOne="$1" | |||
|
|
|||
| # Allow me to run some scripts for all container startups | |||
| # i.e. setting up a cluster keyFile when using /docker-entrypoint-initdb.d/* is not enough | |||
| for f in /docker-entrypoint-extras.d/*; do | |||
There was a problem hiding this comment.
This is unnecessary since you can already hook a script to run before the entrypoint by running it before the entrypoint:
COPY my-setup-script.sh /docker-entrypoint-extras.d/my-setup-script.sh
# could also just be CMD if you want to put your mongod args into the file
ENTRYPOINT ["/docker-entrypoint-extras.d/my-setup-script.sh"]
CMD ["docker-entrypoint.sh", "--keyFile", "/path/to/keyfile"]Contents of my-setup-script.sh:
#!/usr/bin/env bash
# pre-mongod setup
chmod 400 /path/to/keyfile
# ie: docker-entrypoint.sh --keyFile /path/to/keyfile
exec "$@"There was a problem hiding this comment.
Good point, this should do it.
Will drop this change.
3.6/docker-entrypoint.sh
Outdated
| @@ -312,7 +324,7 @@ if [ "$originalArgOne" = 'mongod' ]; then | |||
| echo | |||
| done | |||
|
|
|||
| "$@" --pidfilepath="$pidfile" --shutdown | |||
| mongod --pidfilepath="$pidfile" --shutdown | |||
There was a problem hiding this comment.
oh, maybe this should be using "${mongodHackedArgs[@]}" rather than "$@"? cc @tianon
There was a problem hiding this comment.
In this case I think --pidfile needs to be removed first, if present:
_mongod_hack_ensure_no_arg_val --pidfilepath "${mongodHackedArgs[@]}"
_mongod_hack_ensure_arg_val --pidfilepath "$pidfile" "${mongodHackedArgs[@]}"
and then do:
"${mongodHackedArgs[@]}" --shutdown
There was a problem hiding this comment.
The hacked args should already have the pid file path (see the --fork line above), so this line should really be just what you referenced without any new ensures. 👍
There was a problem hiding this comment.
(I've force-pushed an update to this for you, and updated all five copies of this file. 👍)
There was a problem hiding this comment.
Great, thanks for doing this!
3.6/docker-entrypoint.sh
Outdated
| @@ -240,6 +250,8 @@ if [ "$originalArgOne" = 'mongod' ]; then | |||
| if [ "$MONGO_INITDB_ROOT_USERNAME" ] && [ "$MONGO_INITDB_ROOT_PASSWORD" ]; then | |||
| _mongod_hack_ensure_no_arg_val --replSet "${mongodHackedArgs[@]}" | |||
| fi | |||
| _mongod_hack_ensure_no_arg_val --keyFile "${mongodHackedArgs[@]}" | |||
| _mongod_hack_ensure_no_arg_val --clusterAuthMode "${mongodHackedArgs[@]}" | |||
There was a problem hiding this comment.
It looks like both of these would be removed from config for the temp config since they are under security, so this part seems reasonable.
mongo/4.0/docker-entrypoint.sh
Line 156 in f4e1d14
Any value but the default (keyfile) on clusterAuthMode requires sslMode.
Providing a keyFile doesn't stop the user setup or the server from running.
$ docker run -d \
--name some-mongo \
-e MONGO_INITDB_ROOT_USERNAME=test \
-e MONGO_INITDB_ROOT_PASSWORD=12345 \
--user 1000:1000 \
-v /home/user/docker/test/mongo/some.key:/some.key \
-v /home/user/docker/test/mongo/data/:/data/db/ \
mongo --keyFile /some.key --clusterAuthMode keyFile
$ docker run -it --rm --link some-mongo:mongo mongo mongo --host mongo -u test -p 12345 --authenticationDatabase admin some-dbThere was a problem hiding this comment.
Yes, that's correct. Did this a while back and don't remember exactly what prompted me to remove those agrs.
Will drop this change, thanks for checking it!
yoz2326
changed the title
--pidfile during init if passed to mongod at startup
- `docker`: 18.09.0-ce-tp6 - `drupal`: 8.5.7 - `ghost`: 2.1.1 - `hello-seattle`: update URL (docker-library/hello-world#51) - `hello-world`: update URL (docker-library/hello-world#51) - `hola-mundo`: update URL (docker-library/hello-world#51) - `mongo`: 3.4.17, 3.2.21, fix duplicated `--pidfile` (docker-library/mongo#298) - `openjdk`: 11-ea+28 (debian) - `php`: 7.3.0beta3, ship `php.ini-production` and `php.ini-development` in `$PHP_INI_DIR` (docker-library/php#711) - `redis`: add `tzdata` to Alpine variants (redis/docker-library-redis#162) - `rocket.chat`: 0.69.1
I'm passing
--pidfilepath=/data/tmp/mongod.pid. When init is finished and mongod is shutdown, this parameter becomes duplicated. So updated the shutdown command tomongod --pidfilepath="$pidfile" --shutdown(line 327)