mar
/
container
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
Browse Source

working on install script

feature/startup-from-labels
Mario Alegre 5 years ago
parent
18b81afe55
commit
ad68619f6d
4 changed files with 81 additions and 35 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 13
      bin/pdm-build
  2. 32
      bin/pdm-launch
  3. 61
      install.sh
  4. 10
      src/debian/Containerfile

13
bin/pdm-build
View File

@ -1,5 +1,5 @@
#!/bin/bash #!/bin/bash
################################################################################
# Functions/variables # Functions/variables
quit() { quit() {
if [[ $1 == 0 || $FLAGS_debug == $FLAGS_FALSE ]]; then if [[ $1 == 0 || $FLAGS_debug == $FLAGS_FALSE ]]; then
@ -16,12 +16,13 @@ source shflags
DEFINE_boolean 'squash' false 'squash newly built layers into a single new layer' 's' DEFINE_boolean 'squash' false 'squash newly built layers into a single new layer' 's'
DEFINE_boolean 'debug' false "Don't delete temporary container on build fail" 'd' DEFINE_boolean 'debug' false "Don't delete temporary container on build fail" 'd'
DEFINE_string 'tag' 'latest' 'Tag (other than date) to assign to the image' 't' DEFINE_string 'tag' 'latest' 'Tag (other than date) to assign to the image' 't'
FLAGS_HELP="Usage: $0 [-s] [-d] [-t tag] [directory] [name]
Builds an image from the Containerfile and (optionally) Systemdfile in a FLAGS_HELP="Usage: $0 [-sd] [-t tag] [directory] [name]
directory passed as the first argument, and names the image after the second
argument. If no first argument is given, the current working directory is Builds an image from the Containerfile and (optionally) Systemdfile in the
used. If no second argument is given, the image is named after the directory. specified directory, and tags the image with the given name. If no directory
argument is given, the current working directory is used. If no name argument
is given, the image is named after the directory.
" "
FLAGS "$@" || exit $? FLAGS "$@" || exit $?
eval set -- "${FLAGS_ARGV}" eval set -- "${FLAGS_ARGV}"

32
bin/pdm-launch
View File

@ -1,26 +1,35 @@
#!/bin/bash #!/bin/bash
################################################################################
# Handle flags # Handle flags
source shflags source shflags
DEFINE_boolean 'overwrite' false 'Overwrite container if one with same name already exists.' 'o' DEFINE_boolean 'overwrite' false 'Overwrite container if one with same name already exists.' 'o'
DEFINE_boolean 'config' false "Automatically configure container with deploy options stored in image metadata." 'c' DEFINE_boolean 'config' false 'Automatically configure container with deploy options stored in image metadata.' 'c'
DEFINE_string 'deployopts' 'deployopts' 'Image metadata label from which to get the deploy options.' 'd' DEFINE_string 'label' 'deployopts' 'Image metadata label from which to get the deploy options.' 'l'
FLAGS_HELP="Usage: $0 [-o] [-d label] image [name]
FLAGS_HELP="Usage: $0 [-oc] [-d label] [image] [name]
Creates and starts a container from the specified image. If a second Creates and starts a container from the specified image, and assigns it the
argument is given, the container name is set to that string. Otherwise, the specified name. If no image argument is given, uses the current working
container is given the same name as the image. directory as the name of the image. If no name argument is given, the container
is given the same name as the image.
" "
FLAGS "$@" || exit $? FLAGS "$@" || exit $?
eval set -- "${FLAGS_ARGV}" eval set -- "${FLAGS_ARGV}"
# Handle errors/arguments/cases
if [[ $# -gt 2 ]]; then
echo "Error: too many arguments"
echo ""
flags_help
exit 1
fi
if [[ -n $1 ]]; then if [[ -n $1 ]]; then
image=$1 image=$1
else else
echo "Error: need image name" echo "Warning: No image name given. Assuming image name from current working directory."
echo "" echo ""
flags_help image=$(basename $(pwd))
exit 1
fi fi
if [[ -n $2 ]]; then if [[ -n $2 ]]; then
@ -44,6 +53,5 @@ if [[ $FLAGS_overwrite ]]; then
podman rm -i -f $name podman rm -i -f $name
fi fi
podman create --name $name $deployopts $image podman run -itd --name $name --hostname $name --userns=keep-id $deployopts $image
podman start $name
echo "Done!" echo "Done!"

61
install.sh
View File

@ -1,8 +1,15 @@
#1/bin/bash #!/bin/bash
# Variables
myusr=containers
myuid=60000
# Main
set -e
echo "Attempting to autodetect distro ..."
distro=$(lsb_release -is) distro=$(lsb_release -is)
release=$(lsb_release -rs) release=$(lsb_release -rs)
if [[ $distro == "Debian" ]]; then if [[ $distro == "Debian" ]]; then
echo "Detected distro: Debian" echo "Detected distro: Debian"
if [[ $release == "10" ]]; then if [[ $release == "10" ]]; then
@ -15,23 +22,53 @@ if [[ $distro == "Debian" ]]; then
echo "Error: failed to detect release" echo "Error: failed to detect release"
exit 1 exit 1
fi fi
sudo apt install -y gnupg echo "Installing podman ..."
echo "deb https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/Debian_$release/ /" | sudo tee /etc/apt/sources.list.d/podman.list sudo apt install -y gnupg curl
curl -L https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/Debian_$release/Release.key | sudo apt-key add - echo "deb https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/Debian_${release:?}/ /" | sudo tee /etc/apt/sources.list.d/podman.list
curl -L https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/Debian_${release:?}/Release.key | sudo apt-key add -
sudo apt update -y sudo apt update -y
sudo apt install -y podman sudo apt install -y fuse-overlayfs slirp4netns podman
else else
echo "Error: failed to detect distro" echo "Error: failed to detect distro."
exit 1 exit 1
fi fi
# copy bin files to /usr/local/bin echo "Creating containers user ..."
sudo rsync -vaSH bin/ /usr/local/bin/ user_id=$(id -u $myusr > /dev/null 2>&1)
user_exists=$(echo $?)
if [[ $user_exists != 0 ]]; then
sudo addgroup $myusr --gid $myuid --system
sudo adduser $myusr --ingroup $myusr --uid $myuid --disabled-password --gecos "Containers User" --shell /usr/sbin/nologin --no-create-home --home /srv/$myusr --system
elif [[ $user_id != $myuid ]]; then
echo "Error: User \"$myusr\" already exists, but does not have UID $myuid."
echo "Please delete user \"$myusr\" and then re-run the install script."
exit 2
else
echo "User \"$myusr\" is already configured. Skipping ..."
fi
echo "Configuring subuids and subgids ..."
echo "$myusr:1000000:1000000000" | sudo tee -a /etc/subuid /etc/subgid
echo "Configuring kernel parameters ..."
kernel.unprivileged_userns_clone=1
#net.ipv4.ping_group_range=0 1001000000
echo "Copying scripts to /usr/local/bin ..."
# copy bin files to /usr/local/bin
sudo cp bin/* /usr/local/bin/
# copy shflags to /usr/local/bin as well # copy shflags to /usr/local/bin as well
sudo rsync -vaSH lib/shflags /usr/local/bin/ sudo cp lib/shflags /usr/local/bin/
echo "Installing containers startup service ..."
# install systemd startup service # install systemd startup service
#sudo rsync -vaSH lib/containers-startup.service /etc/systemd/system/ sudo cp lib/containers-startup.service /etc/systemd/system/
#sudo systemctl enable containers-startup.service sudo systemctl enable containers-startup.service
# create startup.sh if it doesn't exist
if [[ ! -f /etc/containers/startup.sh ]]; then
printf "#!/bin/bash\n\n" | sudo tee /etc/containers/startup.sh
fi
sudo chmod +x /etc/containers/startup.sh
echo "Installed containers startup script in /etc/containers/startup.sh. Put any podman-related commands that should run on startup in that file."

10
src/debian/Containerfile
View File

@ -12,11 +12,11 @@ RUN rm /etc/localtime && \
echo $TZ > /etc/timezone echo $TZ > /etc/timezone
# Install packages # Install packages
RUN apt update -y RUN apt update -y && \
RUN apt upgrade -y apt upgrade -y && \
RUN apt install -y init sudo wget nano less man-db unzip apt install -y init sudo wget nano less man-db unzip && \
RUN apt autoremove -y --purge apt autoremove -y --purge && \
RUN apt clean -y apt clean -y
# Set configuration # Set configuration
COPY assets/nanorc /etc/nanorc COPY assets/nanorc /etc/nanorc

Write Preview
Loading…
Cancel
Save