51工具盒子概述
因环境需要对docker日志文件大小进行限制,对/etc/docker/daemon.json文件进行编辑后遇到无法启动docker问题。
配置内容
[root@localhost ~]# cat /etc/docker/daemon.json
{
"log-driver": "json-file",
"log-opts": {
"max-size": "100m"
}
}
报错内容
这个含义应该是Docker启动的时候传入了命令行参数,同时也指定了配置文件,两个配置发生了冲突。那么就查看一下Docker服务启动文件。
[root@localhost ~]# systemctl status docker -l
11月 05 11:00:02 localhost.localdomain dockerd-current[9833]: unable to configure the Docker daemon with file /etc/docker/daemon.json: the following directives are specified both as a flag and in the configuration file: log-driver: (from flag: journald, from file: json-file)
排查步骤
查看Docker服务配置文件
可以看到启动的时候会从/etc/sysconfig/docker中获取环境变量。
[root@localhost ~]# cat /usr/lib/systemd/system/docker.service [Unit] Description=Docker Application Container Engine Documentation=http://docs.docker.com After=network.target Wants=docker-storage-setup.service Requires=docker-cleanup.timer[Service] Type=notify NotifyAccess=main EnvironmentFile=-/run/containers/registries.conf EnvironmentFile=-/etc/sysconfig/docker EnvironmentFile=-/etc/sysconfig/docker-storage EnvironmentFile=-/etc/sysconfig/docker-network Environment=GOTRACEBACK=crash Environment=DOCKER_HTTP_HOST_COMPAT=1 Environment=PATH=/usr/libexec/docker:/usr/bin:/usr/sbin ExecStart=/usr/bin/dockerd-current
--add-runtime docker-runc=/usr/libexec/docker/docker-runc-current
--default-runtime=docker-runc
--exec-opt native.cgroupdriver=systemd
--userland-proxy-path=/usr/libexec/docker/docker-proxy-current
--init-path=/usr/libexec/docker/docker-init-current
--seccomp-profile=/etc/docker/seccomp.json
$OPTIONS
$DOCKER_STORAGE_OPTIONS
$DOCKER_NETWORK_OPTIONS
$ADD_REGISTRY
$BLOCK_REGISTRY
$INSECURE_REGISTRY
$REGISTRIES ExecReload=/bin/kill -s HUP $MAINPID LimitNOFILE=1048576 LimitNPROC=1048576 LimitCORE=infinity TimeoutStartSec=0 Restart=on-abnormal KillMode=process
[Install] WantedBy=multi-user.target
可以看到参数中默认了--log-driver=journald,把这一段删掉就可以了。
[root@localhost ~]# cat /etc/sysconfig/docker # /etc/sysconfig/dockerModify these options if you want to change the way the docker daemon runs
OPTIONS='--selinux-enabled --log-driver=journald --signature-verification=false' if [ -z "${DOCKER_CERT_PATH}" ]; then DOCKER_CERT_PATH=/etc/docker fi
Do not add registries in this file anymore. Use /etc/containers/registries.conf
instead. For more information reference the registries.conf(5) man page.
Location used for temporary files, such as those created by
docker load and build operations. Default is /var/lib/docker/tmp
Can be overriden by setting the following environment variable.
DOCKER_TMPDIR=/var/tmp
Controls the /etc/cron.daily/docker-logrotate cron job status.
To disable, uncomment the line below.
LOGROTATE=false
docker-latest daemon can be used by starting the docker-latest unitfile.
To use docker-latest client, uncomment below lines
#DOCKERBINARY=/usr/bin/docker-latest #DOCKERDBINARY=/usr/bin/dockerd-latest #DOCKER_CONTAINERD_BINARY=/usr/bin/docker-containerd-latest #DOCKER_CONTAINERD_SHIM_BINARY=/usr/bin/docker-containerd-shim-latest [root@localhost ~]# sed -i 's/(^OPTIONS.)--log-driver=journald (.)/\1\2/g' /etc/sysconfig/docker [root@localhost ~]# systemctl restart docker
重启后服务正常无报错。
