mirror of
https://github.com/linuxkit/linuxkit.git
synced 2025-07-21 01:59:07 +00:00
kubernetes: Add cri-containerd package
Signed-off-by: Ian Campbell <ijc@docker.com>
This commit is contained in:
Ian Campbell
parent
80dff9fe99
commit
445dcc0ac2
49
projects/kubernetes/cri-containerd/Dockerfile
Normal file
49
projects/kubernetes/cri-containerd/Dockerfile
Normal file
@ -0,0 +1,49 @@
|
||||
FROM linuxkit/alpine:a120ad6aead3fe583eaa20e9b75a05ac1b3487da AS build
|
||||
|
||||
RUN \
|
||||
apk add \
|
||||
bash \
|
||||
gcc \
|
||||
git \
|
||||
go \
|
||||
libc-dev \
|
||||
make \
|
||||
&& true
|
||||
ENV GOPATH=/go PATH=$PATH:/go/bin
|
||||
|
||||
ENV CRI_CONTAINERD_URL https://github.com/kubernetes-incubator/cri-containerd.git
|
||||
#ENV CRI_CONTAINERD_BRANCH pull/NNN/head
|
||||
ENV CRI_CONTAINERD_COMMIT a8d49402859167a232b094d971e70c2f4b71b8ea
|
||||
RUN mkdir -p $GOPATH/src/github.com/kubernetes-incubator && \
|
||||
cd $GOPATH/src/github.com/kubernetes-incubator && \
|
||||
git clone $CRI_CONTAINERD_URL cri-containerd
|
||||
WORKDIR $GOPATH/src/github.com/kubernetes-incubator/cri-containerd
|
||||
RUN set -e; \
|
||||
if [ -n "$CRI_CONTAINERD_BRANCH" ] ; then \
|
||||
git fetch origin "$CRI_CONTAINERD_BRANCH"; \
|
||||
fi; \
|
||||
git checkout $CRI_CONTAINERD_COMMIT
|
||||
RUN make static-binaries
|
||||
|
||||
RUN mkdir -p /out/etc/apk && cp -r /etc/apk/* /out/etc/apk/
|
||||
# util-linux because a full ns-enter is required.
|
||||
# example commands: /usr/bin/nsenter --net= -F -- <ip commandline>
|
||||
# /usr/bin/nsenter --net=/var/run/netns/cni-5e8acebe-810d-c1b9-ced0-47be2f312fa8 -F -- <ip commandline>
|
||||
# NB the first ("--net=") is actually not valid -- see https://github.com/kubernetes-incubator/cri-containerd/issues/245
|
||||
RUN apk add --no-cache --initdb -p /out \
|
||||
alpine-baselayout \
|
||||
busybox \
|
||||
ca-certificates \
|
||||
iptables \
|
||||
util-linux \
|
||||
&& true
|
||||
# Remove apk residuals. We have a read-only rootfs, so apk is of no use.
|
||||
RUN rm -rf /out/etc/apk /out/lib/apk /out/var/cache
|
||||
|
||||
RUN make DESTDIR=/out install
|
||||
|
||||
FROM scratch
|
||||
WORKDIR /
|
||||
ENTRYPOINT ["cri-containerd", "-v", "2", "--alsologtostderr", "--network-bin-dir", "/var/lib/cni/opt/bin", "--network-conf-dir", "/var/lib/cni/etc/net.d"]
|
||||
COPY --from=build /out /
|
||||
LABEL org.mobyproject.config='{"binds": ["/etc/resolv.conf:/etc/resolv.conf", "/run:/run:rshared,rbind", "/tmp:/tmp", "/var:/var:rshared,rbind", "/var/lib/kubeadm:/etc/kubernetes", "/var/lib/cni/etc:/etc/cni:rshared,rbind", "/var/lib/cni/opt:/opt/cni:rshared,rbind", "/run/containerd/containerd.sock:/run/containerd/containerd.sock"], "mounts": [{"type": "cgroup", "options": ["rw","nosuid","noexec","nodev","relatime"]}], "capabilities": ["all"], "rootfsPropagation": "shared", "pid": "host", "runtime": {"mkdir": ["/var/lib/kubeadm", "/var/lib/cni/etc/net.d", "/var/lib/cni/opt"]}}'
|
||||
7
projects/kubernetes/cri-containerd/Makefile
Normal file
7
projects/kubernetes/cri-containerd/Makefile
Normal file
@ -0,0 +1,7 @@
|
||||
ORG?=linuxkitprojects
|
||||
IMAGE=cri-containerd
|
||||
NETWORK=1
|
||||
NOTRUST=1
|
||||
ARCHES=x86_64
|
||||
|
||||
include ../../../pkg/package.mk
|
||||
Loading…
Reference in New Issue
Block a user