fc20c79e47
Currently the task containers will reach a conclusive state (success or
failure), and will promptly stop running. This creates the following
problems:
1. In the case of failure, a user doesn't have the ability to exec into
the container for debugging purposes.
2. In the case a success, the readiness probe for each task container
will begin to fail. This happens because readiness is defined by
the existence of a file; if the container stops running, the file
no longer exists.
This change provides a solution to the 2nd bullet, keeping the container
alive in case of success.
Change-Id: Iae432caada3d2a338493b1534da72957808185d2
|
||
|---|---|---|
| .. | ||
| artifact-setup | ||
| base | ||
| examples | ||
| infra-builder | ||
| libvirt | ||
| runner | ||
| scripts | ||
| LICENSE | ||
| Makefile | ||
| README.md | ||
README.md
Airship in a Pod
Airship in a pod is a Kubernetes pod definition which describes all of the components required to deploy a fully functioning Airship 2 deployment. The pod consists of the following "Task" containers:
artifact-setup: This container collects the airshipctl binary repo, builds the airshipctl binary (and associated kustomize plugins), and makes them available to the other containersinfra-builder: This container creates the various virtual networks and machines required for an Airship deploymentrunner: The runner container is the "meat" of the pod, and executes the deployment. It sets up a customized airshipctl config file, then uses airshipctl to pull the specified manifests and execute the deployment
The pod also contains the following "Support" containers:
libvirt: This provides virtualisationsushy-tools: This is used for its BMC emulatordocker-in-docker: This is used for nesting containersnginx: This is used for image hosting
Azure Kubernetes Service (AKS) Quick Start
Airship-in-a-Pod can be easily run within AKS by running the script:
tools/airship-in-a-pod/scripts/aiap-in-aks.sh
Environment variables can be supplied to override default, such as:
AIAP_POD: the kustomization to use for the AIAP Pod definitionCLEANUP_GROUP: whether to delete the resource group created for AIAP. Defaults tofalse.
Please consult the script for the full list of overrideable variables.
Note that authentication (e.g. az login) must be done prior to invoking
the script.
Prerequisites
Nested Virtualisation
If deployment is done on a VM, ensure that nested virtualisation is enabled.
Environment variable setup
If you are within a proxy environment, ensure that the following environment variables are defined, and NO_PROXY has the IP address which minikube uses. Check the minikube documentation for retrieving the minikube ip.
export HTTP_PROXY=http://username:password@host:port
export HTTPS_PROXY=http://username:password@host:port
export NO_PROXY="localhost,127.0.0.1,10.23.0.0/16,10.96.0.0/12,10.1.1.44"
export PROXY=http://username:password@host:port
export USE_PROXY=true
export http_proxy=http://username:password@host:port
export https_proxy=http://username:password@host:port
export no_proxy="localhost,127.0.0.1,10.23.0.0/16,10.96.0.0/12,10.1.1.44"
export proxy=http://username:password@host:port
To start minikube
Within the environment, with appropriate env variables set, run the following command.
sudo -E minikube start --driver=none
Refer to the minikube documentation for more details.
Usage
Since Airship in a Pod is just a pod definition, deploying and using it is as
simple as deploying and using any other Kubernetes pod with kubectl apply -f.
The base pod definition can be found
here
and deploys using the current master airshipctl binary and current master
test site.
Pod configuration
Further configuration can be applied to the pod definition via
kustomize. Options that can be configured can be
found in the airshipctl example.
You may choose to either modify one of the examples or create your own.
Once you've created the desired configuration, the kustomized pod can be deployed with the following:
kustomize build ${PATH_TO_KUSTOMIZATION} | kubectl apply -f -
Interacting with the Pod
For a quick rundown of what a particular container is doing, simply check the logs for that container.
# $CONTAINER is one of [runner infra-builder artifact-setup libvirt sushy dind nginx]
kubectl logs airship-in-a-pod -c $CONTAINER
For a deeper dive, consider execing into one of the containers.
# $CONTAINER is one of [runner infra-builder artifact-setup libvirt sushy dind nginx]
kubectl exec -it airship-in-a-pod -c $CONTAINER -- bash
Interacting with the Nodes
If you would like to interact with the nodes used in the deployment, you should
first prevent the runner container from exiting (check the examples/airshipctl
replacements for the option to do this). While the runner container is alive,
exec into it using the above command. The kubectl tool can then be used to
interact with a cluster. Choose a context from kubectl config get-contexts
and switch to it via kubectl config use-context ${MY_CONTEXT}.
Output
Airship-in-a-pod produces the following outputs:
- The airshipctl repo, manifest repo, and airshipctl binary used with the deployment.
- A tarball containing the generated ephemeral ISO, as well as the configuration used during generation.
These artifacts are placed at ARTIFACTS_DIR (defaults to /opt/aiap-artifacts`).
Caching
As it can be cumbersome and time-consuming to build and rebuild binaries and
images, some options are made available for caching. A developer may re-use
artifacts from previous runs (or provide their own) by placing them in
CACHE_DIR (defaults to /opt/aiap-cache). Special care is needed for the
caching:
- If using a cached
airshipctl, theairshipctlbinary must be stored in the$CACHE_DIR/airshipctl/bin/directory, and the developer must have setUSE_CACHED_AIRSHIPCTLtotrue. - If using a cached ephemeral iso, the iso must first be contained in a tarball named
iso.tar.gz, must be stored in the$CACHE_DIR/directory, and the developer must have setUSE_CACHED_ISOtotrue.