cc0f072908
* Enable running container as mqm * Fix merge problem * Don't force root usage * RHEL image runs as mqm instead of root * Build on host with SELinux enabled * Enable building on node in an OpenShift cluster * Enable running container as mqm * Fix merge problem * Don't force root usage * Merge lastest changes from master * RHEL image runs as mqm instead of root * Fix merge issues * Test changes for non-root * Make timeout properly, and more non-root test fixes * Run tests with fewer/no capabilities * Correct usage docs for non-root * Add security docs * Add temporary debug output * Remove debug code * Fixes for termination-log * Allow init container to run as root * Fixes for CentOS build * Fixes for RHEL build * Logging improvements * Fix Dockerfile RHEL/CentOS build * Fix bash error * Make all builds specify UID * Use redist client for Go SDK * Inspect image before running tests * New test for init container * Log container runtime in runmqdevserver * Add extra capabilities if using a RHEL image
192 lines
4.2 KiB
Go
192 lines
4.2 KiB
Go
/*
|
|
© Copyright IBM Corporation 2017, 2019
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
// runmqserver initializes, creates and starts a queue manager, as PID 1 in a container
|
|
package main
|
|
|
|
import (
|
|
"context"
|
|
"errors"
|
|
"flag"
|
|
"os"
|
|
"sync"
|
|
|
|
"github.com/ibm-messaging/mq-container/internal/metrics"
|
|
"github.com/ibm-messaging/mq-container/internal/name"
|
|
"github.com/ibm-messaging/mq-container/internal/ready"
|
|
)
|
|
|
|
func doMain() error {
|
|
var initFlag = flag.Bool("i", false, "initialize volume only, then exit")
|
|
var infoFlag = flag.Bool("info", false, "Display debug info, then exit")
|
|
var devFlag = flag.Bool("dev", false, "used when running this program from runmqdevserver to control log output")
|
|
flag.Parse()
|
|
|
|
name, nameErr := name.GetQueueManagerName()
|
|
mf, err := configureLogger(name)
|
|
if err != nil {
|
|
logTermination(err)
|
|
return err
|
|
}
|
|
|
|
// Check whether they only want debug info
|
|
if *infoFlag {
|
|
logVersionInfo()
|
|
logContainerDetails()
|
|
return nil
|
|
}
|
|
|
|
err = verifySingleProcess()
|
|
if err != nil {
|
|
// We don't do the normal termination here as it would create a termination file.
|
|
log.Error(err)
|
|
return err
|
|
}
|
|
|
|
if nameErr != nil {
|
|
logTermination(err)
|
|
return err
|
|
}
|
|
err = ready.Clear()
|
|
if err != nil {
|
|
logTermination(err)
|
|
return err
|
|
}
|
|
accepted, err := checkLicense()
|
|
if err != nil {
|
|
logTerminationf("Error checking license acceptance: %v", err)
|
|
return err
|
|
}
|
|
if !accepted {
|
|
err = errors.New("License not accepted")
|
|
logTermination(err)
|
|
return err
|
|
}
|
|
log.Printf("Using queue manager name: %v", name)
|
|
|
|
// Start signal handler
|
|
signalControl := signalHandler(name)
|
|
// Enable diagnostic collecting on failure
|
|
collectDiagOnFail = true
|
|
|
|
if *devFlag == false {
|
|
err = logContainerDetails()
|
|
if err != nil {
|
|
logTermination(err)
|
|
return err
|
|
}
|
|
}
|
|
|
|
err = createVolume("/mnt/mqm")
|
|
if err != nil {
|
|
logTermination(err)
|
|
return err
|
|
}
|
|
err = createDirStructure()
|
|
if err != nil {
|
|
logTermination(err)
|
|
return err
|
|
}
|
|
|
|
// If init flag is set, exit now
|
|
if *initFlag {
|
|
return nil
|
|
}
|
|
|
|
// Print out versioning information
|
|
logVersionInfo()
|
|
|
|
err = postInit(name)
|
|
if err != nil {
|
|
logTermination(err)
|
|
return err
|
|
}
|
|
|
|
newQM, err := createQueueManager(name)
|
|
if err != nil {
|
|
logTermination(err)
|
|
return err
|
|
}
|
|
var wg sync.WaitGroup
|
|
defer func() {
|
|
log.Debug("Waiting for log mirroring to complete")
|
|
wg.Wait()
|
|
}()
|
|
ctx, cancelMirror := context.WithCancel(context.Background())
|
|
defer func() {
|
|
log.Debug("Cancel log mirroring")
|
|
cancelMirror()
|
|
}()
|
|
// TODO: Use the error channel
|
|
_, err = mirrorSystemErrorLogs(ctx, &wg, mf)
|
|
if err != nil {
|
|
logTermination(err)
|
|
return err
|
|
}
|
|
_, err = mirrorQueueManagerErrorLogs(ctx, &wg, name, newQM, mf)
|
|
if err != nil {
|
|
logTermination(err)
|
|
return err
|
|
}
|
|
err = updateCommandLevel()
|
|
if err != nil {
|
|
logTermination(err)
|
|
return err
|
|
}
|
|
err = startQueueManager()
|
|
if err != nil {
|
|
logTermination(err)
|
|
return err
|
|
}
|
|
err = configureQueueManager()
|
|
if err != nil {
|
|
logTermination(err)
|
|
return err
|
|
}
|
|
|
|
enableMetrics := os.Getenv("MQ_ENABLE_METRICS")
|
|
if enableMetrics == "true" || enableMetrics == "1" {
|
|
go metrics.GatherMetrics(name, log)
|
|
} else {
|
|
log.Println("Metrics are disabled")
|
|
}
|
|
|
|
// Start reaping zombies from now on.
|
|
// Start this here, so that we don't reap any sub-processes created
|
|
// by this process (e.g. for crtmqm or strmqm)
|
|
signalControl <- startReaping
|
|
// Reap zombies now, just in case we've already got some
|
|
signalControl <- reapNow
|
|
// Write a file to indicate that chkmqready should now work as normal
|
|
err = ready.Set()
|
|
if err != nil {
|
|
logTermination(err)
|
|
return err
|
|
}
|
|
// Wait for terminate signal
|
|
<-signalControl
|
|
return nil
|
|
}
|
|
|
|
var osExit = os.Exit
|
|
|
|
func main() {
|
|
err := doMain()
|
|
if err != nil {
|
|
osExit(1)
|
|
}
|
|
}
|