Home Explore Help
Register Sign In
Apq
/
s6-overlay
mirror of https://github.com/just-containers/s6-overlay.git
1
0
Fork 0
Files Issues 0 Wiki
Branch: v3
Branches Tags
s6-overlay
/
doc
/
init.txt

init.txt 4.2 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778 
  1. 

  2.  How the init works:
    3. 

  3. 

  4.  - The entry point is /init.
    5. 

  5. 

  6.  - /init sets PATH according to the user-configurable
    7. 

  7. /etc/s6-overlay/config/global_path but makes sure it can still access the
    8. 

  8. required binaries no matter where they are.
    9. 

  9.  - /init runs /package/admin/s6-overlay/libexec/preinit as root, even if
    10. 

  10. the container is running with the USER directive.
    11. 

  11.    * preinit ensures that /run exists and is writable and executable, and
    12. 

  12. that /var/run is a symlink to it.
    13. 

  13.    * preinit deletes and recreates /run/s6 and sets it to the real uid/gid
    14. 

  14. of the process running the container.
    15. 

  15.  - /init execs into /package/admin/s6-overlay/libexec/stage0
    16. 

  16. 

  17.  - stage0 invokes s6-linux-init-maker to create the stage 1 infrastructure
    18. 

  18. depending on the S6_* environment variables given to the container.
    19. 

  19. s6-l-i-m is normally intended to be run offline, but since we need a lot of
    20. 

  20. runtime configurability, we run it online here; it works.
    21. 

  21.  - stage0 execs into the "init" script created by s6-l-i-m, which is the
    22. 

  22. real stage1 init that normal machines boot on. It's in /run/s6/basedir/bin/init
    23. 

  23. (it had to be created at run-time by stage0, which is why it's under /run)
    24. 

  24. but it's just an execution of the s6-linux-init binary with some options.
    25. 

  25. 

  26.  - stage1 sets up the supervision tree on /run/service, with (depending on
    27. 

  27. the value of $S6_LOGGING) a catch-all logger logging to /run/uncaught-logs.
    28. 

  28.    * There are two early services: the catch-all logger (if required), and
    29. 

  29. a service named s6-linux-init-shutdownd, which you can ignore - it's only
    30. 

  30. active when the container is going to shut down.
    31. 

  31.  - stage1 execs into s6-svscan, which will remain pid 1 for the rest of
    32. 

  32. the container's lifetime.
    33. 

  33.  - When the supervision tree is operational, stage2 runs; this is the
    34. 

  34. /run/s6/basedir/scripts/rc.init script, whose source you can read in
    35. 

  35. /package/admin/s6-overlay/etc/s6-linux-init/skel/rc.init
    36. 

  36. 

  37.  - stage2 reads two s6-rc source directories: the system one in
    38. 

  38. /package/admin/s6-overlay/etc/s6-rc/sources, and a user-provided one
    39. 

  39. in /etc/s6-overlay/s6-rc.d which must provide a bundle named "user"
    40. 

  40. (which can be empty). It compiles these source directories into a
    41. 

  41. compiled s6-rc database in /run/s6/db. s6-rc-compile is normally intended
    42. 

  42. to be run offline, but just like with s6-l-i-m, we don't care and we
    43. 

  43. run it online here because we're going for flexibility and simplicity
    44. 

  44. for users over a bootability guarantee and optimization of speed.
    45. 

  45.  - stage2 runs the s6-rc engine on that compiled database. This brings
    46. 

  46. up several services, in that order: (note that S6_RUNTIME_PROFILE is
    47. 

  47. supported for legacy stuff)
    48. 

  48.    * fix-attrs: reads the files in /etc/fix-attrs.d and fixes permissions
    49. 

  49. accordingly. This is deprecated; please fix your file permissions from
    50. 

  50. outside the container instead (or in your Dockerfile).
    51. 

  51.    * legacy-cont-init: runs all the scripts in /etc/cont-init.d
    52. 

  52.    * user: all the services defined in the user bundle, their source
    53. 

  53. is in /etc/s6-overlay/s6-rc.d - that's where users should migrate
    54. 

  54. their services in order to benefit from parallelism and dependency
    55. 

  55. management. By default that user bundle is empty, unless the user has
    56. 

  56. installed the syslogd-overlay tarball, in which case it contains the
    57. 

  57. services that implement syslogd.
    58. 

  58.    * legacy-services: all the service directories in /etc/services.d
    59. 

  59. are copied to /run/s6/legacy-services and linked to the scandir in
    60. 

  60. /run/service, then s6-svscan is notified. Note that all of this happens
    61. 

  61. *after* the user bundle has completed: legacy services are the last
    62. 

  62. ones started.
    63. 

  63.  - That's it, the container is fully operational.
    64. 

  64. 

  65.  - If there is no CMD, stage2 exits, having started all its services,
    66. 

  66. and the container will keep running until something or someone instructs
    67. 

  67. it to exit.
    68. 

  68.  - If there is a CMD, instead of exiting, stage2 spawns it, and waits
    69. 

  69. for it to finish. Then it stops the container and returns the exit
    70. 

  70. code of the CMD to the host.
    71. 

  71. 

  72.  To make the container stop with a given exitcode, run:
    73. 

  73.  echo $exitcode > /run/s6-linux-init-container-results/exitcode && /run/s6/basedir/bin/halt
    74. 

  74. 

  75.  Signals to s6-svscan (typically triggered by an outside "docker stop" command),
    76. 

  76. s6-svscanctl commands, or manually running /run/s6/basedir/bin/poweroff or
    77. 

  77. /run/s6/basedir/bin/shutdown should work as well, but then you do not have
    78. 

  78. control on the exit code.
    79.