WIP: Add frakti to run kubernetes pods in KVM #21966
Conversation
|
@moretea, thanks for your PR! By analyzing the history of the files in this pull request, we identified @offlinehacker, @nckx and @domenkozar to be potential reviewers. |
|
At this moment, I'm not able to build /cc @offlinehacker @tailhook (since you're the maintainers of Docker). Do you know what's going wrong here? |
|
Try deleting all the vendor folders of the vendor folders, this is usually an issue. |
| leaveDotGit = true; | ||
| deepClone = true; | ||
| url = "https://github.com/hyperhq/hyperd.git"; | ||
| sha256 = "0d5fkc3vniyh5nkfrna2bfzaxhni6njq0h03rp2x13vm2ha78dy4"; |
There was a problem hiding this comment.
I got 0sb6h6c7n0q0qskvylp94f4vkp9h6yjrmc2lqm78ri8p033raj5s
| listenStreams = [ "/run/libvirt/virtlockd-sock" ]; | ||
| }; | ||
|
|
||
| systemd.services.virtlockd = { |
There was a problem hiding this comment.
had to comment this out because it conflicts with libvirtd, maybe libvirtd just needs to be a dependency for this?
The exact error is error: The unique option systemd.services.virtlockd.description' is defined multiple times, in /etc/nixos/nixpkgs/nixos/modules/virtualisation/libvirtd.nix' and /etc/nixos/nixpkgs/nixos/modules/virtualisation/hyperd.nix'.` for reference
There was a problem hiding this comment.
This should be /var/run/hyperd.sock
There was a problem hiding this comment.
I guess this redefines a service that already exists
| Kernel = ${cfg.kernel} | ||
| Initrd = ${cfg.initrd} | ||
| Bridge = ${cfg.bridge} | ||
| BridgeIP =${cfg.bridge_ip} |
There was a problem hiding this comment.
I added Hypervisor = libvirt here, but I guess this should be a config option
There was a problem hiding this comment.
I got it working with kvm actually.
| wantedBy = [ "multi-user.target" ]; | ||
| after = [ "systemd-udev-settle.service" ]; | ||
|
|
||
| path = [ |
There was a problem hiding this comment.
I added
pkgs.e2fsprogs
pkgs.utillinux
pkgs.kmod
pkgs.iptables
To get this to start
There was a problem hiding this comment.
indeed, added those myself as well 👍
|
|
||
| serviceConfig = { | ||
| ExecStart = '' | ||
| @${pkgs.hyperd}/bin/hyperd \ |
There was a problem hiding this comment.
I had to remove the @ symbol here, not sure what it does but with it in place, I'd get an error saying logtostrerr is not in $PATH, removing that option would cause -v=0 not in path etc
|
In the end I've yet to get it to work, hyperctl is unable to connect to the daemon, I'm still trying to figure that out |
| mkdir -p src/${goPackagePath} | ||
| cp -r ${src}/* src/${goPackagePath} | ||
| cp -r ${src}/.git src/${goPackagePath} | ||
| chmod -R +w * |
| mv src/${goPackagePath}/vendor/github.com/* src/github.com/ | ||
| rmdir src/${goPackagePath}/vendor/github.com | ||
| mv src/${goPackagePath}/vendor/* src/. | ||
| cd src/${goPackagePath} |
There was a problem hiding this comment.
Please don't call cd outside a subshell.
| ''; | ||
|
|
||
| preFixup = '' | ||
| # remove references to go compiler, gcc and glibc |
There was a problem hiding this comment.
I guess we have a remove-references feature for this (should be easy to find). If it is not applicable, please elaborate in the code.
|
|
||
| installPhase = '' | ||
| mkdir -p $out/bin | ||
| cp ./hyperd $out/bin |
There was a problem hiding this comment.
Use {} syntax to combine both lines into one.
|
I have made some more progress locally as well. Will merge these charges
and push an update today.
|
|
@moretea I'm super excited to see the updated PR :D |
|
@moretea are you still cranking along on this? |
|
Have you tried this with #25426 |
|
@moretea I have a nix derivation for runv and hyperstart that I'm trying to get workingas an alterantive docker runtime. I think especially hyperstart might be useful to provide a default kernel and initrd. If you are interested I will push my WIP branch next time I'm at my dev machine. |
|
Cool. I haven't touched this in a while. Looking forward to what you'd come
up with.
Op 23 sep. 2017 9:07 p.m. schreef "Pascal Bach" <notifications@github.com>:
… @moretea <https://github.com/moretea> I have a nix derivation for runv
<https://github.com/hyperhq/runv> and hyperstart
<https://github.com/hyperhq/hyperstart> that I'm trying to get workingas
an alterantive docker runtime. I think especially hyperstart might be
useful to provide a default kernel and initrd. If you are interested I will
push my WIP branch next time I'm at my dev machine.
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
<#21966 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/AAGGlB_VCaIyA6n-ngMtaaXGinDSFaHCks5slVbwgaJpZM4Lmu2_>
.
|
|
@moretea The current WIP branch is here: https://github.com/bachp/nixpkgs/tree/docker-runv |
|
Any update on this pull request? |
|
Closing due to lack of activity, feel free to reopen this if needed. |
Motivation for this change
Fraktiuseshyperdto start the different containers that live in one pod in a KVM vm.This offers better isolation.
Things done
(nix.useSandbox on NixOS,
or option
build-use-sandboxinnix.confon non-NixOS)
nix-shell -p nox --run "nox-review wip"./result/bin/)mkfs.ext4available in path to the daemon.