We use cookies to ensure you get the best experience on our website
Home Esplora Aiuto
Registrati Accedi
0ct0pu5
/
moby
1
0
Forka 0
File Problemi 0 Pull Requests 0 Wiki
Sfoglia il codice sorgente

Docker should use /var/lib/container/tmp for large temporary files.

/tmp is often a tmpfs file system and large temporary files could cause
docker commands to fail.  Also using /tmp potentially allows users on the
system to get access to content, or even attack the content.  Moving the tmpdir to
/var/lib/container/tmp will protect the data.

Docker-DCO-1.1-Signed-off-by: Dan Walsh <dwalsh@redhat.com> (github: rhatdan)

Conflicts:
	docker/docker.go
Dan Walsh 11 anni fa
parent
8f4b477c32
commit
b4813f2841
4 ha cambiato i file con 37 aggiunte e 5 eliminazioni
Visualizzazione unificata Mostra Diff Stats
  1. 4 1
      daemon/daemon.go
  2. 3 4
      docs/sources/reference/commandline/cli.md
  3. 12 0
      utils/tmpdir.go
  4. 18 0
      utils/tmpdir_unix.go

+ 4 - 1
daemon/daemon.go
Vedi File 

@@ -678,7 +678,10 @@ func NewDaemonFromDirectory(config *daemonconfig.Config, eng *engine.Engine) (*D
 
 	}
 
 	}
 
 
 
 	// set up the TempDir to use a canonical path
 
 	// set up the TempDir to use a canonical path
 
-	tmp := os.TempDir()
 
+	tmp, err := utils.TempDir(config.Root)
 
+	if err != nil {
 
+		log.Fatalf("Unable to get the TempDir under %s: %s", config.Root, err)
 
+	}
 
 	realTmp, err := utils.ReadSymlinkedDirectory(tmp)
 
 	realTmp, err := utils.ReadSymlinkedDirectory(tmp)
 
 	if err != nil {
 
 	if err != nil {
 
 		log.Fatalf("Unable to get the full path to the TempDir (%s): %s", tmp, err)
 
 		log.Fatalf("Unable to get the full path to the TempDir (%s): %s", tmp, err)

+ 3 - 4
docs/sources/reference/commandline/cli.md
Vedi File 

@@ -120,12 +120,11 @@ systemd in the [docker source tree](
 
 https://github.com/docker/docker/blob/master/contrib/init/systemd/socket-activation/).
 
 https://github.com/docker/docker/blob/master/contrib/init/systemd/socket-activation/).
 
 
 
 Docker supports softlinks for the Docker data directory
 
 Docker supports softlinks for the Docker data directory
 
-(`/var/lib/docker`) and for `/tmp`. TMPDIR and the data directory can be set
 
-like this:
 
+(`/var/lib/docker`) and for `/var/lib/docker/tmp`. The `DOCKER_TMPDIR` and the data directory can be set like this:
 
 
 
-    TMPDIR=/mnt/disk2/tmp /usr/local/bin/docker -d -D -g /var/lib/docker -H unix:// > /var/lib/boot2docker/docker.log 2>&1
 
+    DOCKER_TMPDIR=/mnt/disk2/tmp /usr/local/bin/docker -d -D -g /var/lib/docker -H unix:// > /var/lib/boot2docker/docker.log 2>&1
 
     # or
 
     # or
 
-    export TMPDIR=/mnt/disk2/tmp
 
+    export DOCKER_TMPDIR=/mnt/disk2/tmp
 
     /usr/local/bin/docker -d -D -g /var/lib/docker -H unix:// > /var/lib/boot2docker/docker.log 2>&1
 
     /usr/local/bin/docker -d -D -g /var/lib/docker -H unix:// > /var/lib/boot2docker/docker.log 2>&1
 
 
 
 ## attach
 
 ## attach

+ 12 - 0
utils/tmpdir.go
Vedi File 

@@ -0,0 +1,12 @@
 
+// +build !darwin,!dragonfly,!freebsd,!linux,!netbsd,!openbsd
 
+
 
+package utils
 
+
 
+import (
 
+	"os"
 
+)
 
+
 
+// TempDir returns the default directory to use for temporary files.
 
+func TempDir(rootdir string) (string error) {
 
+	return os.TempDir(), nil
 
+}

+ 18 - 0
utils/tmpdir_unix.go
Vedi File 

@@ -0,0 +1,18 @@
 
+// +build darwin dragonfly freebsd linux netbsd openbsd
 
+
 
+package utils
 
+
 
+import (
 
+	"os"
 
+	"path/filepath"
 
+)
 
+
 
+// TempDir returns the default directory to use for temporary files.
 
+func TempDir(rootDir string) (string, error) {
 
+	var tmpDir string
 
+	if tmpDir = os.Getenv("DOCKER_TMPDIR"); tmpDir == "" {
 
+		tmpDir = filepath.Join(rootDir, "tmp")
 
+	}
 
+	err := os.MkdirAll(tmpDir, 0700)
 
+	return tmpDir, err
 
+}

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5