mirror of
				https://github.com/containers/podman.git
				synced 2025-10-27 03:06:22 +08:00 
			
		
		
		
	 a8cb43d3a9
			
		
	
	a8cb43d3a9
	
	
	
		
			
			This fixes an issue where binaries that are in the path of the original podman process are not found in the transient systemd timer for healthchecks. This showed up for me on a NixOS machine since binaries are not installed in the usual places. Signed-off-by: Marco Munizaga <git@marcopolo.io>
		
			
				
	
	
		
			83 lines
		
	
	
		
			2.3 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
			
		
		
	
	
			83 lines
		
	
	
		
			2.3 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
| package libpod
 | |
| 
 | |
| import (
 | |
| 	"fmt"
 | |
| 	"os"
 | |
| 	"os/exec"
 | |
| 	"strings"
 | |
| 
 | |
| 	"github.com/containers/podman/v2/pkg/rootless"
 | |
| 	"github.com/containers/podman/v2/pkg/systemd"
 | |
| 	"github.com/pkg/errors"
 | |
| 	"github.com/sirupsen/logrus"
 | |
| )
 | |
| 
 | |
| // createTimer systemd timers for healthchecks of a container
 | |
| func (c *Container) createTimer() error {
 | |
| 	if c.disableHealthCheckSystemd() {
 | |
| 		return nil
 | |
| 	}
 | |
| 	podman, err := os.Executable()
 | |
| 	if err != nil {
 | |
| 		return errors.Wrapf(err, "failed to get path for podman for a health check timer")
 | |
| 	}
 | |
| 
 | |
| 	var cmd = []string{}
 | |
| 	if rootless.IsRootless() {
 | |
| 		cmd = append(cmd, "--user")
 | |
| 	}
 | |
| 	path := os.Getenv("PATH")
 | |
| 	if path != "" {
 | |
| 		cmd = append(cmd, "--setenv=PATH="+path)
 | |
| 	}
 | |
| 	cmd = append(cmd, "--unit", c.ID(), fmt.Sprintf("--on-unit-inactive=%s", c.HealthCheckConfig().Interval.String()), "--timer-property=AccuracySec=1s", podman, "healthcheck", "run", c.ID())
 | |
| 
 | |
| 	conn, err := systemd.ConnectToDBUS()
 | |
| 	if err != nil {
 | |
| 		return errors.Wrapf(err, "unable to get systemd connection to add healthchecks")
 | |
| 	}
 | |
| 	conn.Close()
 | |
| 	logrus.Debugf("creating systemd-transient files: %s %s", "systemd-run", cmd)
 | |
| 	systemdRun := exec.Command("systemd-run", cmd...)
 | |
| 	if output, err := systemdRun.CombinedOutput(); err != nil {
 | |
| 		return errors.Errorf("%s", output)
 | |
| 	}
 | |
| 	return nil
 | |
| }
 | |
| 
 | |
| // startTimer starts a systemd timer for the healthchecks
 | |
| func (c *Container) startTimer() error {
 | |
| 	if c.disableHealthCheckSystemd() {
 | |
| 		return nil
 | |
| 	}
 | |
| 	conn, err := systemd.ConnectToDBUS()
 | |
| 	if err != nil {
 | |
| 		return errors.Wrapf(err, "unable to get systemd connection to start healthchecks")
 | |
| 	}
 | |
| 	defer conn.Close()
 | |
| 	_, err = conn.StartUnit(fmt.Sprintf("%s.service", c.ID()), "fail", nil)
 | |
| 	return err
 | |
| }
 | |
| 
 | |
| // removeTimer removes the systemd timer and unit files
 | |
| // for the container
 | |
| func (c *Container) removeTimer() error {
 | |
| 	if c.disableHealthCheckSystemd() {
 | |
| 		return nil
 | |
| 	}
 | |
| 	conn, err := systemd.ConnectToDBUS()
 | |
| 	if err != nil {
 | |
| 		return errors.Wrapf(err, "unable to get systemd connection to remove healthchecks")
 | |
| 	}
 | |
| 	defer conn.Close()
 | |
| 	timerFile := fmt.Sprintf("%s.timer", c.ID())
 | |
| 	_, err = conn.StopUnit(timerFile, "fail", nil)
 | |
| 
 | |
| 	// We want to ignore errors where the timer unit has already been removed. The error
 | |
| 	// return is generic so we have to check against the string in the error
 | |
| 	if err != nil && strings.HasSuffix(err.Error(), ".timer not loaded.") {
 | |
| 		return nil
 | |
| 	}
 | |
| 	return err
 | |
| }
 |