Bug 1169593 - Creates /.docker
Summary: Creates /.docker
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Fedora
Classification: Fedora
Component: docker-io
Version: rawhide
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
Assignee: Lokesh Mandvekar
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2014-12-02 03:29 UTC by Colin Walters
Modified: 2015-01-31 16:53 UTC (History)
14 users (show)

Fixed In Version: docker-io-1.4.1-3.el6
Clone Of:
Environment:
Last Closed: 2015-01-20 21:02:15 UTC
Type: Bug
Embargoed:

Attachments (Terms of Use)

Description Colin Walters 2014-12-02 03:29:05 UTC 
On Atomic, docker-io-1.3.2-3.git353ff40 fails to start:

Dec 01 22:12:17 localhost.localdomain docker[816]: time="2014-12-01T22:12:17-05:00" level="fatal" msg="mkdir .docker: permission denied"

My magic 8 ball^copy of git grep says:

$ git grep -i dir.*\\.docker
docker/flags.go:                dockerCertPath = filepath.Join(getHomeDir(), ".docker")

What's that doing?  Well, when docker is started on the system, it doesn't have a home directory, it's just /.

So on a mainline system, since docker runs with all privileges, it happily does mkdir("/.docker").

This fails on Atomic due to the protection from: https://bugzilla.gnome.org/show_bug.cgi?id=728006
Comment 1 Colin Walters 2014-12-02 03:38:46 UTC 
Might be https://github.com/docker/docker/pull/8112
Comment 2 Lokesh Mandvekar 2014-12-12 16:41:10 UTC 
I'm overriding DOCKER_CERT_PATH to use /etc/docker in docker.sysconfig for now instead of patching out the source to use /etc/docker RE: https://github.com/docker/docker/issues/9468
Comment 3 Michael S. 2015-01-12 19:17:33 UTC 
This bug also affect F21 atomic.
Comment 4 Colin Walters 2015-01-12 19:24:09 UTC 
See https://github.com/docker/docker/issues/9468
Comment 5 Michael S. 2015-01-12 20:56:14 UTC 
Mhh I got it wrong, it was on a centos 7 atomic, not F21 :/
Comment 6 Lokesh Mandvekar 2015-01-12 21:04:10 UTC 
(In reply to Michael Scherer from comment #5)
> Mhh I got it wrong, it was on a centos 7 atomic, not F21 :/

what's the NVR: docker-1.4.1-3 ? http://cbs.centos.org/koji/buildinfo?buildID=595
Comment 7 Jeremy Eder 2015-01-13 19:14:52 UTC 
Appending

DOCKER_CERT_PATH=/etc/docker

To /etc/sysconfig/docker worked for me on fedora atomic rawhide docker-io-1.4.1-3.fc22.x86_64
Comment 8 Lokesh Mandvekar 2015-01-13 19:24:48 UTC 
So iinm, 1.4.1-3 should've installed a /etc/sysconfig/docker.rpmnew (or something) with DOCKER_CERT_PATH=/etc/docker, but it won't be noticeable to most people I guess. I'm pushing a new build which will handle this regardless of config file.
Comment 9 Fedora Update System 2015-01-13 19:40:40 UTC 
docker-io-1.4.1-5.fc21 has been submitted as an update for Fedora 21.
https://admin.fedoraproject.org/updates/docker-io-1.4.1-5.fc21
Comment 10 Fedora Update System 2015-01-14 07:30:13 UTC 
Package docker-io-1.4.1-5.fc21:
* should fix your issue,
* was pushed to the Fedora 21 testing repository,
* should be available at your local mirror within two days.
Update it with:
# su -c 'yum update --enablerepo=updates-testing docker-io-1.4.1-5.fc21'
as soon as you are able to.
Please go to the following url:
https://admin.fedoraproject.org/updates/FEDORA-2015-0641/docker-io-1.4.1-5.fc21
then log in and leave karma (feedback).
Comment 11 Fedora Update System 2015-01-15 22:51:32 UTC 
docker-io-1.4.1-3.el6 has been submitted as an update for Fedora EPEL 6.
https://admin.fedoraproject.org/updates/docker-io-1.4.1-3.el6
Comment 12 Fedora Update System 2015-01-20 21:02:15 UTC 
docker-io-1.4.1-5.fc21 has been pushed to the Fedora 21 stable repository.  If problems still persist, please make note of it in this bug report.
Comment 13 Fedora Update System 2015-01-31 16:53:07 UTC 
docker-io-1.4.1-3.el6 has been pushed to the Fedora EPEL 6 stable repository.  If problems still persist, please make note of it in this bug report.
Note You need to log in before you can comment on or make changes to this bug.