mirror of
https://github.com/rancher/os.git
synced 2025-09-01 14:48:55 +00:00
build based on os-config.yml
WIP: build scripts
This commit is contained in:
Ivan Mikushin
@@ -1,46 +1,12 @@
|
||||
#!/bin/bash
|
||||
set -e
|
||||
|
||||
: ${ARTIFACTS:=$(pwd)/assets}
|
||||
: ${BUILD:=$(pwd)/build}
|
||||
: ${CONFIG:=$(pwd)/config}
|
||||
: ${DIST:=$(pwd)/dist}
|
||||
|
||||
BUILDROOT=buildroot-2014.11.tar.bz2
|
||||
DOCKER_FILE=${CONFIG}/.dockerfile
|
||||
|
||||
mkdir -p ${BUILD} ${DIST}
|
||||
|
||||
busybox_install()
|
||||
{
|
||||
local conf=$1
|
||||
local bbconf=$2
|
||||
local target=$3
|
||||
|
||||
if [ "$#" = "2" ]; then
|
||||
target=$2
|
||||
bbconf=
|
||||
fi
|
||||
|
||||
apt-get update
|
||||
apt-get install -y build-essential wget libncurses5-dev unzip bc
|
||||
|
||||
cd ${BUILD}
|
||||
|
||||
rm -rf ${BUILDROOT/.tar.bz2//}
|
||||
tar xvjf ${ARTIFACTS}/${BUILDROOT}
|
||||
cd ${BUILDROOT/.tar.bz2//}
|
||||
|
||||
cp $conf .config
|
||||
if [ -n "$bbconf" ]; then
|
||||
cp $bbconf package/busybox/
|
||||
fi
|
||||
make oldconfig
|
||||
make
|
||||
|
||||
cp output/images/rootfs.tar $target
|
||||
}
|
||||
|
||||
write_base()
|
||||
{
|
||||
if [ "${BASE_WRITTEN}" = "true" ]; then
|
||||
@@ -54,7 +20,6 @@ FROM ${DOCKER_BASE:=ubuntu:14.04.2}
|
||||
ENV TERM xterm
|
||||
ENV IN_DOCKER true
|
||||
WORKDIR /source
|
||||
CMD ["/source/scripts/install"]
|
||||
EOF
|
||||
|
||||
BASE_WRITTEN=true
|
||||
|
||||
@@ -1,15 +0,0 @@
|
||||
#!/bin/bash
|
||||
set -e
|
||||
|
||||
cd $(dirname $0)/..
|
||||
|
||||
source scripts/build-common
|
||||
source scripts/version
|
||||
|
||||
>${BUILD}/tags
|
||||
for i in scripts/extraimages/[0-9]*; do
|
||||
tag=$(echo $i | cut -f2 -d-):${VERSION}
|
||||
echo Building $tag
|
||||
docker build -t rancher/$tag -f $i .
|
||||
echo $tag >> ${BUILD}/tags
|
||||
done
|
||||
@@ -1,46 +1,47 @@
|
||||
#!/bin/bash
|
||||
set -e
|
||||
|
||||
VERSION=v0.0.1
|
||||
set -ex
|
||||
|
||||
cd $(dirname $0)/..
|
||||
|
||||
source scripts/build-common
|
||||
source scripts/version
|
||||
ARTIFACTS=${ARTIFACTS:?"ARTIFACTS not set"}
|
||||
VERSION=${VERSION:?"VERSION not set"}
|
||||
BUILD=${BUILD:?"BUILD not set"}
|
||||
DIST=${DIST:?"DIST not set"}
|
||||
|
||||
mkdir -p ${BUILD}/initrd ${DIST}/artifacts
|
||||
|
||||
echo Extracting ${ARTIFACTS}/os-base.tar.xz
|
||||
tar xJf ${ARTIFACTS}/os-base.tar.xz -C ${BUILD}
|
||||
|
||||
tar xvf ${BUILD}/dist/kernel/*.tar -C ${BUILD}/dist/kernel
|
||||
|
||||
cp /etc/ssl/certs/ca-certificates.crt ${ARTIFACTS}/ca.crt
|
||||
cp /etc/ssl/certs/ca-certificates.crt ${BUILD}/initrd/ca.crt
|
||||
cp ${BUILD}/dist/rootfs.tar ${ARTIFACTS}
|
||||
|
||||
rm -rf ${BUILD}/initrd/lib
|
||||
cp -rf ${BUILD}/dist/kernel/lib ${BUILD}/initrd
|
||||
cp -rf ${BUILD}/dist/kernel/headers/* ${BUILD}/initrd
|
||||
cp -f ${ARTIFACTS}/docker* ${BUILD}/initrd/docker
|
||||
chmod +x ${BUILD}/initrd/docker
|
||||
|
||||
cp ${BUILD}/dist/kernel/boot/vmlinuz* ${DIST}/artifacts/vmlinuz
|
||||
|
||||
tar xf ${BUILD}/dist/rootfs-static.tar -C ${BUILD}/initrd --strip-components=2 ./bin/busybox
|
||||
tar xf ${BUILD}/dist/rootfs-static.tar -C ${BUILD}/initrd --strip-components=3 ./usr/sbin/xtables-multi
|
||||
|
||||
if ! docker info >/dev/null 2>&1 && [ -x "$(which wrapdocker)" ]; then
|
||||
if [ -x "$(which wrapdocker)" ] && ! docker info >/dev/null 2>&1; then
|
||||
wrapdocker
|
||||
fi
|
||||
|
||||
>${BUILD}/tags
|
||||
for i in scripts/dockerimages/[0-9]*; do
|
||||
tag=$(echo $i | cut -f2 -d-)
|
||||
echo Building $tag
|
||||
docker build -t $tag -f $i .
|
||||
docker build -t ${tag}:${VERSION} -f $i .
|
||||
echo $tag >> ${BUILD}/tags
|
||||
done
|
||||
CONTAINER_INITRDBASE=$(docker create rancher/os-initrdbase:${VERSION})
|
||||
cleanup_initrdbase() {
|
||||
docker rm -v ${CONTAINER_INITRDBASE}
|
||||
}
|
||||
trap cleanup_initrdbase EXIT
|
||||
docker cp ${CONTAINER_INITRDBASE}:/initrd ${BUILD} # copies files to ${BUILD}/initrd
|
||||
|
||||
echo Creating images.tar
|
||||
docker save $(<${BUILD}/tags) > ${BUILD}/initrd/images.tar
|
||||
INITRD_DIR=${BUILD}/initrd
|
||||
|
||||
|
||||
mkdir -p ${DIST}/artifacts
|
||||
|
||||
CONTAINER_KERNEL=$(docker create rancher/os-kernel:${VERSION})
|
||||
cleanup_kernel() {
|
||||
docker rm -v ${CONTAINER_KERNEL}
|
||||
}
|
||||
trap cleanup_kernel EXIT
|
||||
docker cp ${CONTAINER_KERNEL}:/kernel ${BUILD} # copies files to ${BUILD}/kernel
|
||||
mv ${BUILD}/kernel/vmlinuz ${DIST}/artifacts/ #kernel
|
||||
|
||||
|
||||
cp -f ${ARTIFACTS}/docker* ${INITRD_DIR}/docker #initrd2-docker: /docker
|
||||
chmod +x ${INITRD_DIR}/docker #initrd2-docker: /docker
|
||||
|
||||
ln -sf bin/rancheros ./ros
|
||||
|
||||
for i in $(./ros c images -i os-config.yml); do
|
||||
docker pull ${i}:${VERSION}
|
||||
docker tag -f ${i}:${VERSION} ${i}
|
||||
done
|
||||
docker save $(./ros c images -i os-config.yml) > ${INITRD_DIR}/images.tar #initrd2-images: /images.tar
|
||||
|
||||
@@ -18,7 +18,7 @@ fi
|
||||
GITSHA=$(git rev-parse --short HEAD)
|
||||
VM="RancherOS-${GITSHA}"
|
||||
|
||||
sudo chown -R `whoami`:`whoami` ./dist
|
||||
sudo chown -R `whoami` ./dist
|
||||
|
||||
VBoxManage createhd --format vmdk --filename ./dist/artifacts/$VM.vmdk --size 40000
|
||||
|
||||
|
||||
24
scripts/ci
24
scripts/ci
@@ -1,5 +1,5 @@
|
||||
#!/bin/bash
|
||||
set -e
|
||||
set -ex
|
||||
|
||||
cd $(dirname $0)/..
|
||||
|
||||
@@ -7,6 +7,7 @@ export DOCKER_IMAGE=${DOCKER_IMAGE:=rancher-os-build}
|
||||
export DOCKER_BASE=rancher/dind:v0.1.0
|
||||
|
||||
source scripts/build-common
|
||||
mkdir -p ${BUILD}
|
||||
|
||||
DOCKER_FILE=$(pwd)/.dockerfile
|
||||
|
||||
@@ -25,7 +26,7 @@ generate_images()
|
||||
echo Running: docker run -d --privileged ${DOCKER_IMAGE} /source/scripts/build-images
|
||||
CID=$(docker run -d --privileged ${DOCKER_IMAGE} /source/scripts/build-images)
|
||||
docker logs -f ${CID} &
|
||||
trap "docker rm -f ${CID}" exit
|
||||
trap "docker rm -fv ${CID}" exit
|
||||
[ "$(docker wait $CID)" == 0 ]
|
||||
DOCKER_BASE=$(docker commit $CID)
|
||||
|
||||
@@ -38,16 +39,8 @@ if [ -x "$(which wrapdocker)" ] && ! docker info >/dev/null 2>&1; then
|
||||
fi
|
||||
|
||||
run ./scripts/bootstrap
|
||||
run ./scripts/test
|
||||
run --assets ./scripts/build-common --assets ./assets ./scripts/download
|
||||
run --assets ./scripts/dockerimages --assets ./scripts/build-images
|
||||
finish
|
||||
|
||||
generate_images
|
||||
|
||||
reset_docker_build
|
||||
ARGS=
|
||||
for i in $(ls -d * .* | sort -u | grep -Ev '(\.|\.\.|\.dockerfile|build|dist|.git|scripts|bin|state)$'); do
|
||||
for i in $(ls -d * .* | sort -u | grep -Ev '(\.|\.\.|\.dockerfile|build|tmp|dist|.git|.idea|.vagrant|scripts|bin|state)$'); do
|
||||
if [ -d $i ]; then
|
||||
run --assets $i
|
||||
else
|
||||
@@ -55,5 +48,12 @@ for i in $(ls -d * .* | sort -u | grep -Ev '(\.|\.\.|\.dockerfile|build|dist|.gi
|
||||
fi
|
||||
done
|
||||
run --assets ./scripts/version --assets "${ARGS}" ./scripts/build
|
||||
run --assets ./scripts/install ./scripts/package "$@"
|
||||
run --assets ./scripts/build-common --assets ./assets ./scripts/download
|
||||
run --assets ./scripts/build-images
|
||||
finish
|
||||
|
||||
generate_images
|
||||
|
||||
reset_docker_build
|
||||
run ./scripts/package "$@"
|
||||
finish
|
||||
|
||||
@@ -1,36 +0,0 @@
|
||||
FROM scratch
|
||||
ADD assets/rootfs.tar /
|
||||
RUN ln -s /dev/null /etc/udev/rules.d/80-net-name-slot.rules
|
||||
# Cleanup Buildroot
|
||||
RUN rm /sbin/poweroff /sbin/reboot /sbin/halt && \
|
||||
sed -i '/^root/s!/bin/sh!/bin/bash!' /etc/passwd && \
|
||||
echo 'RancherOS \n \l' > /etc/issue && \
|
||||
rm -rf /run \
|
||||
/linuxrc \
|
||||
/etc/os-release \
|
||||
/var/cache \
|
||||
/var/lock \
|
||||
/var/log \
|
||||
/var/run \
|
||||
/var/spool \
|
||||
/var/lib/misc && \
|
||||
mkdir -p \
|
||||
/run \
|
||||
/var/cache \
|
||||
/var/lock \
|
||||
/var/log \
|
||||
/var/run \
|
||||
/var/spool && \
|
||||
passwd -l root && \
|
||||
addgroup -g 1100 rancher && \
|
||||
addgroup -g 1101 docker && \
|
||||
addgroup -g 1103 sudo && \
|
||||
adduser -u 1100 -G rancher -D -h /home/rancher -s /bin/bash rancher && \
|
||||
adduser -u 1101 -G docker -D -h /home/docker -s /bin/bash docker && \
|
||||
sed -i 's/\(^docker.*\)/\1rancher/g' /etc/group && \
|
||||
sed -i 's/\(^sudo.*\)/\1rancher,docker/g' /etc/group && \
|
||||
echo '%sudo ALL=(ALL) ALL' >> /etc/sudoers
|
||||
COPY scripts/dockerimages/scripts/inputrc /etc/inputrc
|
||||
COPY scripts/dockerimages/scripts/entry.sh /usr/sbin/entry.sh
|
||||
|
||||
ENTRYPOINT ["/usr/sbin/entry.sh"]
|
||||
@@ -1,2 +0,0 @@
|
||||
FROM base
|
||||
CMD ["echo"]
|
||||
@@ -1,3 +0,0 @@
|
||||
FROM base
|
||||
COPY scripts/dockerimages/scripts/udev.sh /
|
||||
CMD ["/udev.sh"]
|
||||
@@ -1,2 +0,0 @@
|
||||
FROM base
|
||||
CMD ["netconf"]
|
||||
@@ -1,3 +0,0 @@
|
||||
FROM base
|
||||
COPY scripts/dockerimages/scripts/cloud-init.sh /
|
||||
CMD ["/cloud-init.sh"]
|
||||
@@ -1,4 +0,0 @@
|
||||
FROM base
|
||||
COPY scripts/dockerimages/scripts/docker.sh /
|
||||
COPY assets/ca.crt /etc/ssl/certs/ca-certificates.crt
|
||||
CMD ["/docker.sh"]
|
||||
@@ -1,12 +0,0 @@
|
||||
FROM base
|
||||
COPY scripts/dockerimages/scripts/console.sh /usr/sbin/
|
||||
COPY scripts/dockerimages/scripts/update-ssh-keys /usr/bin/
|
||||
COPY scripts/dockerimages/scripts/rancheros-install /usr/sbin/
|
||||
RUN sed -i 's/rancher:!/rancher:*/g' /etc/shadow && \
|
||||
sed -i 's/docker:!/docker:*/g' /etc/shadow && \
|
||||
sed -i 's/#ClientAliveInterval 0/ClientAliveInterval 180/g' /etc/ssh/sshd_config && \
|
||||
echo '## allow password less for rancher user' >> /etc/sudoers && \
|
||||
echo 'rancher ALL=(ALL) NOPASSWD: ALL' >> /etc/sudoers && \
|
||||
echo '## allow password less for docker user' >> /etc/sudoers && \
|
||||
echo 'docker ALL=(ALL) NOPASSWD: ALL' >> /etc/sudoers
|
||||
CMD ["/usr/sbin/console.sh"]
|
||||
@@ -1,2 +0,0 @@
|
||||
FROM console
|
||||
CMD ["/bin/sh"]
|
||||
@@ -1,3 +0,0 @@
|
||||
FROM base
|
||||
COPY scripts/dockerimages/scripts/ntp.sh /
|
||||
CMD ["/ntp.sh"]
|
||||
@@ -1,4 +0,0 @@
|
||||
FROM base
|
||||
COPY scripts/dockerimages/scripts/syslog.sh /
|
||||
RUN sed -i 1,10d /etc/rsyslog.conf
|
||||
CMD ["/syslog.sh"]
|
||||
@@ -1,3 +0,0 @@
|
||||
FROM base
|
||||
COPY scripts/dockerimages/scripts/auto-format.sh /usr/sbin/
|
||||
ENTRYPOINT ["/usr/sbin/auto-format.sh"]
|
||||
@@ -1,2 +0,0 @@
|
||||
FROM base
|
||||
CMD ["/usr/sbin/wait-for-docker"]
|
||||
@@ -1,2 +0,0 @@
|
||||
FROM base
|
||||
CMD ["/usr/sbin/acpid", "-f"]
|
||||
@@ -1,3 +0,0 @@
|
||||
FROM base
|
||||
COPY scripts/dockerimages/scripts/preload.sh /
|
||||
CMD ["/preload.sh"]
|
||||
@@ -1,47 +0,0 @@
|
||||
#!/bin/bash
|
||||
|
||||
set -ex
|
||||
|
||||
if [ -n "$1" ]; then
|
||||
# Test for our magic string (it means that the disk was made by ./boot2docker init)
|
||||
HEADER=`dd if=$1 bs=1 count=${#MAGIC} 2>/dev/null`
|
||||
|
||||
if [ "$HEADER" = "$MAGIC" ]; then
|
||||
# save the preload userdata.tar file
|
||||
dd if=$1 of=/userdata.tar bs=1 count=8192
|
||||
fi
|
||||
|
||||
mkfs.ext4 -L RANCHER_STATE $1
|
||||
|
||||
if [ -e "/userdata.tar" ]; then
|
||||
mount -t ext4 $1 /var/
|
||||
mkdir -p /var/lib/rancher/conf/cloud-config.d
|
||||
echo $(tar -xvf /userdata.tar)
|
||||
AUTHORIZED_KEY1=$(cat /.ssh/authorized_keys)
|
||||
AUTHORIZED_KEY2=$(cat /.ssh/authorized_keys2)
|
||||
tee /var/lib/rancher/conf/cloud-config.d/machine.yml << EOF
|
||||
#cloud-config
|
||||
|
||||
rancher:
|
||||
network:
|
||||
interfaces:
|
||||
eth0:
|
||||
dhcp: true
|
||||
eth1:
|
||||
dhcp: true
|
||||
lo:
|
||||
address: 127.0.0.1/8
|
||||
|
||||
ssh_authorized_keys:
|
||||
- $AUTHORIZED_KEY1
|
||||
- $AUTHORIZED_KEY2
|
||||
|
||||
users:
|
||||
- name: docker
|
||||
ssh_authorized_keys:
|
||||
- $AUTHORIZED_KEY1
|
||||
- $AUTHORIZED_KEY2
|
||||
EOF
|
||||
fi
|
||||
fi
|
||||
|
||||
@@ -1,17 +0,0 @@
|
||||
#!/bin/bash
|
||||
set -x -e
|
||||
|
||||
MOUNT_POINT=/media/config-2
|
||||
CONFIG_DEV=$(blkid | grep -- 'LABEL="config-2"' | cut -f1 -d:)
|
||||
|
||||
mkdir -p ${MOUNT_POINT}
|
||||
|
||||
if [ -e "${CONFIG_DEV}" ]; then
|
||||
mount ${CONFIG_DEV} ${MOUNT_POINT}
|
||||
else
|
||||
mount -t 9p -o trans=virtio,version=9p2000.L config-2 ${MOUNT_POINT} 2>/dev/null || true
|
||||
fi
|
||||
|
||||
ros config get cloud_init
|
||||
|
||||
cloud-init -save -network=${CLOUD_INIT_NETWORK:-true}
|
||||
@@ -1,114 +0,0 @@
|
||||
#!/bin/bash
|
||||
set -e
|
||||
|
||||
setup_ssh()
|
||||
{
|
||||
for i in rsa dsa ecdsa ed25519; do
|
||||
local output=/etc/ssh/ssh_host_${i}_key
|
||||
if [ ! -e $output ]; then
|
||||
local saved="$(rancherctl config get ssh.keys.${i})"
|
||||
local pub="$(rancherctl config get ssh.keys.${i}-pub)"
|
||||
|
||||
if [[ -n "$saved" && -n "$pub" ]]; then
|
||||
(
|
||||
umask 477
|
||||
echo "$saved" > ${output}
|
||||
echo "$pub" > ${output}.pub
|
||||
)
|
||||
else
|
||||
ssh-keygen -f $output -N '' -t $i
|
||||
rancherctl config set -- ssh.keys.${i} "$(<${output})"
|
||||
rancherctl config set -- ssh.keys.${i}-pub "$(<${output}.pub)"
|
||||
fi
|
||||
fi
|
||||
done
|
||||
|
||||
mkdir -p /var/run/sshd
|
||||
}
|
||||
|
||||
RANCHER_HOME=/home/rancher
|
||||
if [ ! -d ${RANCHER_HOME} ]; then
|
||||
mkdir -p ${RANCHER_HOME}
|
||||
chown rancher:rancher ${RANCHER_HOME}
|
||||
chmod 2755 ${RANCHER_HOME}
|
||||
fi
|
||||
|
||||
DOCKER_HOME=/home/docker
|
||||
if [ ! -d ${DOCKER_HOME} ]; then
|
||||
mkdir -p ${DOCKER_HOME}
|
||||
chown docker:docker ${DOCKER_HOME}
|
||||
chmod 2755 ${DOCKER_HOME}
|
||||
fi
|
||||
|
||||
for i in $(</proc/cmdline); do
|
||||
case $i in
|
||||
rancher.password=*)
|
||||
PASSWORD=$(echo $i | sed 's/rancher.password=//')
|
||||
;;
|
||||
esac
|
||||
done
|
||||
|
||||
if [ -n "$PASSWORD" ]; then
|
||||
echo "rancher:$PASSWORD" | chpasswd
|
||||
fi
|
||||
|
||||
cloud-init -execute
|
||||
|
||||
if [ -x /var/lib/rancher/conf/cloud-config-script ]; then
|
||||
echo "Running /var/lib/rancher/conf/cloud-config-script"
|
||||
/var/lib/rancher/conf/cloud-config-script || true
|
||||
fi
|
||||
|
||||
setup_ssh
|
||||
|
||||
VERSION="$(rancherctl -v | awk '{print $NF}')"
|
||||
cat > /etc/lsb-release << EOF
|
||||
DISTRIB_ID=RancherOS
|
||||
DISTRIB_RELEASE=${VERSION}
|
||||
DISTRIB_DESCRIPTION="RancherOS ${VERSION}"
|
||||
EOF
|
||||
|
||||
cat > /etc/respawn.conf << EOF
|
||||
/sbin/getty 115200 tty1
|
||||
/sbin/getty 115200 tty2
|
||||
/sbin/getty 115200 tty3
|
||||
/sbin/getty 115200 tty4
|
||||
/sbin/getty 115200 tty5
|
||||
/sbin/getty 115200 tty6
|
||||
/usr/sbin/sshd -D
|
||||
EOF
|
||||
|
||||
if ! grep -q '^UseDNS no' /etc/ssh/sshd_config; then
|
||||
echo "UseDNS no" >> /etc/ssh/sshd_config
|
||||
fi
|
||||
|
||||
ID_TYPE="busybox"
|
||||
if [ -e /etc/os-release ] && grep -q 'ID_LIKE=' /etc/os-release; then
|
||||
ID_TYPE=$(grep 'ID_LIKE=' /etc/os-release | cut -d'=' -f2)
|
||||
fi
|
||||
|
||||
cat > /etc/os-release << EOF
|
||||
NAME="RancherOS"
|
||||
VERSION=$VERSION
|
||||
ID=rancheros
|
||||
ID_LIKE=$ID_TYPE
|
||||
VERSION_ID=$VERSION
|
||||
PRETTY_NAME="RancherOS"
|
||||
HOME_URL=
|
||||
SUPPORT_URL=
|
||||
BUG_REPORT_URL=
|
||||
BUILD_ID=
|
||||
EOF
|
||||
|
||||
if ! grep -q "$(hostname)" /etc/hosts; then
|
||||
echo 127.0.1.1 $(hostname) >> /etc/hosts
|
||||
fi
|
||||
|
||||
echo $(/sbin/ifconfig | grep -B1 "inet addr" |awk '{ if ( $1 == "inet" ) { print $2 } else if ( $2 == "Link" ) { printf "%s:" ,$1 } }' |awk -F: '{ print $1 ": " $3}') >> /etc/issue
|
||||
|
||||
if [ -x /opt/rancher/bin/start.sh ]; then
|
||||
echo Executing custom script
|
||||
/opt/rancher/bin/start.sh || true
|
||||
fi
|
||||
|
||||
exec respawn -f /etc/respawn.conf
|
||||
@@ -1,34 +0,0 @@
|
||||
#!/bin/bash
|
||||
set -x -e
|
||||
|
||||
TLS_PATH=/etc/docker/tls
|
||||
CGROUPS="perf_event net_cls freezer devices blkio memory cpuacct cpu cpuset"
|
||||
|
||||
mkdir -p /sys/fs/cgroup
|
||||
mount -t tmpfs none /sys/fs/cgroup
|
||||
|
||||
for i in $CGROUPS; do
|
||||
mkdir -p /sys/fs/cgroup/$i
|
||||
mount -t cgroup -o $i none /sys/fs/cgroup/$i
|
||||
done
|
||||
|
||||
if ! lsmod | grep -q br_netfilter; then
|
||||
modprobe br_netfilter 2>/dev/null || true
|
||||
fi
|
||||
|
||||
rm -f /var/run/docker.pid
|
||||
|
||||
ARGS=$(echo $(ros config get user_docker.args | sed 's/^-//'))
|
||||
ARGS="$ARGS $(echo $(ros config get user_docker.extra_args | sed 's/^-//'))"
|
||||
|
||||
if [ "$(ros config get user_docker.tls)" = "true" ]; then
|
||||
ARGS="$ARGS $(echo $(ros config get user_docker.tls_args | sed 's/^-//'))"
|
||||
ros tls generate --server -d $TLS_PATH
|
||||
cd $TLS_PATH
|
||||
fi
|
||||
|
||||
if [ -e /var/lib/rancher/conf/docker ]; then
|
||||
source /var/lib/rancher/conf/docker
|
||||
fi
|
||||
|
||||
exec $ARGS $DOCKER_OPTS >/var/log/docker.log 2>&1
|
||||
@@ -1,14 +0,0 @@
|
||||
#!/bin/bash
|
||||
|
||||
if [ -e /host/dev ]; then
|
||||
mount --rbind /host/dev /dev
|
||||
fi
|
||||
|
||||
CA_BASE=/etc/ssl/certs/ca-certificates.crt.rancher
|
||||
CA=/etc/ssl/certs/ca-certificates.crt
|
||||
|
||||
if [[ -e ${CA_BASE} && ! -e ${CA} ]]; then
|
||||
cp $CA_BASE $CA
|
||||
fi
|
||||
|
||||
exec "$@"
|
||||
@@ -1,67 +0,0 @@
|
||||
# /etc/inputrc - global inputrc for libreadline
|
||||
# See readline(3readline) and `info rluserman' for more information.
|
||||
|
||||
# Be 8 bit clean.
|
||||
set input-meta on
|
||||
set output-meta on
|
||||
|
||||
# To allow the use of 8bit-characters like the german umlauts, uncomment
|
||||
# the line below. However this makes the meta key not work as a meta key,
|
||||
# which is annoying to those which don't need to type in 8-bit characters.
|
||||
|
||||
# set convert-meta off
|
||||
|
||||
# try to enable the application keypad when it is called. Some systems
|
||||
# need this to enable the arrow keys.
|
||||
# set enable-keypad on
|
||||
|
||||
# see /usr/share/doc/bash/inputrc.arrows for other codes of arrow keys
|
||||
|
||||
# do not bell on tab-completion
|
||||
# set bell-style none
|
||||
# set bell-style visible
|
||||
|
||||
# some defaults / modifications for the emacs mode
|
||||
$if mode=emacs
|
||||
|
||||
# allow the use of the Home/End keys
|
||||
"\e[1~": beginning-of-line
|
||||
"\e[4~": end-of-line
|
||||
|
||||
# allow the use of the Delete/Insert keys
|
||||
"\e[3~": delete-char
|
||||
"\e[2~": quoted-insert
|
||||
|
||||
# mappings for "page up" and "page down" to step to the beginning/end
|
||||
# of the history
|
||||
# "\e[5~": beginning-of-history
|
||||
# "\e[6~": end-of-history
|
||||
|
||||
# alternate mappings for "page up" and "page down" to search the history
|
||||
# "\e[5~": history-search-backward
|
||||
# "\e[6~": history-search-forward
|
||||
|
||||
# mappings for Ctrl-left-arrow and Ctrl-right-arrow for word moving
|
||||
"\e[1;5C": forward-word
|
||||
"\e[1;5D": backward-word
|
||||
"\e[5C": forward-word
|
||||
"\e[5D": backward-word
|
||||
"\e\e[C": forward-word
|
||||
"\e\e[D": backward-word
|
||||
|
||||
$if term=rxvt
|
||||
"\e[7~": beginning-of-line
|
||||
"\e[8~": end-of-line
|
||||
"\eOc": forward-word
|
||||
"\eOd": backward-word
|
||||
$endif
|
||||
|
||||
# for non RH/Debian xterm, can't hurt for RH/Debian xterm
|
||||
# "\eOH": beginning-of-line
|
||||
# "\eOF": end-of-line
|
||||
|
||||
# for freebsd console
|
||||
# "\e[H": beginning-of-line
|
||||
# "\e[F": end-of-line
|
||||
|
||||
$endif
|
||||
@@ -1,3 +0,0 @@
|
||||
#!/bin/bash
|
||||
|
||||
exec ntpd
|
||||
@@ -1,40 +0,0 @@
|
||||
#!/bin/bash
|
||||
set -e
|
||||
|
||||
BASE=${1:-${PRELOAD_DIR}}
|
||||
BASE=${BASE:-/mnt/preload}
|
||||
|
||||
should_load() {
|
||||
file=${1}
|
||||
if [[ ${file} =~ \.done$ ]]; then echo false
|
||||
elif [ -f ${file} ]; then
|
||||
if [ ! -e ${file}.done ]; then echo true
|
||||
elif [[ $(stat -c %Y ${file}) > $(stat -c %Y ${file}.done) ]]; then echo true
|
||||
else echo false
|
||||
fi
|
||||
else echo false
|
||||
fi
|
||||
}
|
||||
|
||||
if [ -d ${BASE} ]; then
|
||||
echo Preloading docker images from ${BASE}...
|
||||
|
||||
for file in $(ls ${BASE}); do
|
||||
path=${BASE}/${file}
|
||||
loading=$(should_load ${path})
|
||||
if [ ${loading} == "true" ]; then
|
||||
CAT="cat ${path}"
|
||||
if [[ ${file} =~ \.t?gz$ ]]; then CAT="${CAT} | gunzip"; fi
|
||||
if [[ ${file} =~ \.t?xz$ ]]; then CAT="${CAT} | unxz"; fi
|
||||
CAT="${CAT} | docker load"
|
||||
echo loading from ${path}
|
||||
eval ${CAT} || :
|
||||
touch ${path}.done || :
|
||||
fi
|
||||
done
|
||||
|
||||
echo Done.
|
||||
else
|
||||
echo Can not preload images from ${BASE}: not a dir or does not exist.
|
||||
fi
|
||||
|
||||
@@ -1,95 +0,0 @@
|
||||
#!/bin/bash
|
||||
|
||||
set -e
|
||||
|
||||
usage()
|
||||
{
|
||||
cat <<EOF
|
||||
Usage:
|
||||
rancheros-install [options]
|
||||
Options:
|
||||
-c cloud-config file
|
||||
needed for SSH keys.
|
||||
-d device
|
||||
-f [ DANGEROUS! Data loss can happen ] partition/format without prompting
|
||||
-t install-type:
|
||||
generic: (Default) Creates 1 ext4 partition and installs RancherOS
|
||||
amazon-ebs: Installs RancherOS and sets up PV-GRUB
|
||||
-v os-installer version.
|
||||
-h print this
|
||||
EOF
|
||||
}
|
||||
|
||||
PARTITION_FLAG="false"
|
||||
INSTALL_CONTAINER_IMAGE="rancher/os"
|
||||
|
||||
if [ "$(whoami)" != "root" ]; then
|
||||
echo "Please run as root." 1>&2
|
||||
exit 1
|
||||
fi
|
||||
|
||||
if [ -x /usr/bin/ros ]; then
|
||||
INSTALL_CONTAINER_IMAGE="$(ros config get upgrade.image)"
|
||||
fi
|
||||
|
||||
if [ -n "$(grep RancherOS /etc/lsb-release)" ]; then
|
||||
INSTALLER_VERSION=$(grep DISTRIB_RELEASE /etc/lsb-release|cut -d'=' -f2)
|
||||
fi
|
||||
|
||||
EXTRA_ARGS=
|
||||
|
||||
while getopts "c:d:ft:v:h" OPTION
|
||||
do
|
||||
case $OPTION in
|
||||
c) CLOUD_CONFIG="$OPTARG" ;;
|
||||
d) DEVICE="$OPTARG" ;;
|
||||
f) FORCE_INSTALL="true" ;;
|
||||
t) INSTALL_TYPE="${OPTARG}" ;;
|
||||
v) INSTALLER_VERSION="$OPTARG" ;;
|
||||
h) usage; exit ;;
|
||||
*) exit 1 ;;
|
||||
esac
|
||||
done
|
||||
|
||||
if [[ -z "${INSTALL_TYPE}" ]]; then
|
||||
echo "No install type specified...defaulting to generic"
|
||||
INSTALL_TYPE="generic"
|
||||
fi
|
||||
|
||||
if [ -z "${CLOUD_CONFIG}" ] && [ "${INSTALL_TYPE}" != "amazon-ebs" ]; then
|
||||
echo "$0: called without cloud config. Can not proceed without -c" 1>&2
|
||||
exit 1
|
||||
fi
|
||||
|
||||
if [[ -z "${DEVICE}" ]]; then
|
||||
echo "$0: No device defined. Can not proceed without -d <dev> specified" 1>&2
|
||||
exit 1
|
||||
fi
|
||||
|
||||
if [ "${INSTALL_TYPE}" == "generic" ]; then
|
||||
PARTITION_FLAG="true"
|
||||
fi
|
||||
|
||||
if [[ ! -z "${CLOUD_CONFIG}" ]]; then
|
||||
cp ${CLOUD_CONFIG} /opt/user_config.yml
|
||||
EXTRA_ARGS='-c /opt/user_config.yml'
|
||||
fi
|
||||
|
||||
if [ "${FORCE_INSTALL}" != "true" ] && [ "${INSTALL_TYPE}" != "rancher-upgrade" ]; then
|
||||
echo "All data will be wiped from this device"
|
||||
printf "Partition: ${PARTITION_FLAG}\nDEVICE: ${DEVICE}\n"
|
||||
read -p "Are you sure you want to continue? [yN]" -n 1 -r confirmation
|
||||
if [ "$confirmation" != "y" ]; then
|
||||
echo "Exiting..."
|
||||
exit 1
|
||||
fi
|
||||
fi
|
||||
|
||||
if [ "$PARTITION_FLAG" == "true" ]; then
|
||||
system-docker run --net=host -it --privileged --entrypoint=/scripts/set-disk-partitions --volumes-from=all-volumes ${INSTALL_CONTAINER_IMAGE}:${INSTALLER_VERSION} ${DEVICE}
|
||||
system-docker start udev
|
||||
fi
|
||||
|
||||
system-docker run --volumes-from=user-volumes --net=host -it --privileged ${INSTALL_CONTAINER_IMAGE}:${INSTALLER_VERSION} -d ${DEVICE} -t ${INSTALL_TYPE} ${EXTRA_ARGS}
|
||||
|
||||
echo "RancherOS has been installed. Please reboot..."
|
||||
@@ -1,5 +0,0 @@
|
||||
#!bin/bash
|
||||
|
||||
set -x -e
|
||||
|
||||
exec rsyslogd -n
|
||||
@@ -1,9 +0,0 @@
|
||||
#!/bin/bash
|
||||
|
||||
if [ "$DAEMON" = true ]; then
|
||||
exec udevd
|
||||
fi
|
||||
|
||||
udevd --daemon
|
||||
udevadm trigger --action=add
|
||||
udevadm settle
|
||||
@@ -1,20 +0,0 @@
|
||||
#!/bin/bash
|
||||
|
||||
USERNAME=$1
|
||||
HOME_DIR=$(grep ^$USERNAME /etc/passwd | cut -f6 -d:)
|
||||
|
||||
if [ ! -d $HOME_DIR/.ssh ]; then
|
||||
mkdir -p $HOME_DIR/.ssh
|
||||
chmod 0700 $HOME_DIR/.ssh
|
||||
fi
|
||||
|
||||
if [ ! -e $HOME_DIR/.ssh/authorized_keys ]; then
|
||||
touch $HOME_DIR/.ssh/authorized_keys
|
||||
chmod 0600 $HOME_DIR/.ssh/authorized_keys
|
||||
fi
|
||||
|
||||
if ! grep -q "$2" $HOME_DIR/.ssh/authorized_keys; then
|
||||
echo "$2" >> $HOME_DIR/.ssh/authorized_keys
|
||||
fi
|
||||
|
||||
chown -R $USERNAME $HOME_DIR/.ssh
|
||||
@@ -4,5 +4,4 @@ cd $(dirname $0)/..
|
||||
|
||||
source scripts/build-common
|
||||
|
||||
download 49d339d888df757e37433d613bdcdd5acb78ca15 https://github.com/rancherio/os-base/releases/download/v0.3.1/os-base.tar.xz
|
||||
download a6344119513201ea48a8e584b9cf83bd5f3905a1 https://github.com/rancherio/docker/releases/download/v1.6.2-ros-1/docker-1.6.2
|
||||
download 1d325a529b17c5e8fd9baee29df24c222a9f2e25 https://github.com/rancherio/docker/releases/download/v1.7.0-ros-1/docker-1.7.0
|
||||
|
||||
@@ -1,21 +0,0 @@
|
||||
FROM ubuntu:14.04.2
|
||||
RUN apt-get update && \
|
||||
apt-get upgrade --no-install-recommends -y && \
|
||||
apt-get install -y --no-install-recommends openssh-server rsync vim
|
||||
RUN rm -rf /etc/ssh/*key*
|
||||
COPY scripts/dockerimages/scripts/entry.sh /usr/sbin/
|
||||
COPY scripts/dockerimages/scripts/console.sh /usr/sbin/
|
||||
COPY scripts/dockerimages/scripts/update-ssh-keys /usr/bin/
|
||||
COPY scripts/dockerimages/scripts/rancheros-install /usr/sbin/
|
||||
RUN echo 'RancherOS \\n \l' > /etc/issue
|
||||
RUN locale-gen en_US.UTF-8
|
||||
RUN addgroup --gid 1100 rancher && \
|
||||
addgroup --gid 1101 docker && \
|
||||
useradd -u 1100 -g rancher -G docker,sudo -m -s /bin/bash rancher && \
|
||||
useradd -u 1101 -g docker -G docker,sudo -m -s /bin/bash docker && \
|
||||
echo ClientAliveInterval 180 >> /etc/ssh/sshd_config && \
|
||||
echo '## allow password less for rancher user' >> /etc/sudoers && \
|
||||
echo 'rancher ALL=(ALL) NOPASSWD: ALL' >> /etc/sudoers && \
|
||||
echo 'docker ALL=(ALL) NOPASSWD: ALL' >> /etc/sudoers
|
||||
ENTRYPOINT ["/usr/sbin/entry.sh"]
|
||||
CMD ["/usr/sbin/console.sh"]
|
||||
@@ -1,21 +0,0 @@
|
||||
FROM debian:jessie
|
||||
RUN apt-get update && \
|
||||
apt-get upgrade --no-install-recommends -y && \
|
||||
apt-get install -y --no-install-recommends openssh-server rsync locales sudo vim less
|
||||
RUN rm -rf /etc/ssh/*key*
|
||||
COPY scripts/dockerimages/scripts/entry.sh /usr/sbin/
|
||||
COPY scripts/dockerimages/scripts/console.sh /usr/sbin/
|
||||
COPY scripts/dockerimages/scripts/update-ssh-keys /usr/bin/
|
||||
COPY scripts/dockerimages/scripts/rancheros-install /usr/sbin/
|
||||
RUN echo 'RancherOS \\n \l' > /etc/issue
|
||||
RUN locale-gen en_US.UTF-8
|
||||
RUN addgroup --gid 1100 rancher && \
|
||||
addgroup --gid 1101 docker && \
|
||||
useradd -u 1100 -g rancher -G docker,sudo -m -s /bin/bash rancher && \
|
||||
useradd -u 1101 -g docker -G docker,sudo -m -s /bin/bash docker && \
|
||||
echo ClientAliveInterval 180 >> /etc/ssh/sshd_config && \
|
||||
echo '## allow password less for rancher user' >> /etc/sudoers && \
|
||||
echo 'rancher ALL=(ALL) NOPASSWD: ALL' >> /etc/sudoers && \
|
||||
echo 'docker ALL=(ALL) NOPASSWD: ALL' >> /etc/sudoers
|
||||
ENTRYPOINT ["/usr/sbin/entry.sh"]
|
||||
CMD ["/usr/sbin/console.sh"]
|
||||
@@ -1,11 +0,0 @@
|
||||
#!/bin/bash
|
||||
set -x
|
||||
|
||||
cd $(dirname $0)/..
|
||||
|
||||
. scripts/build-common
|
||||
|
||||
mkdir -p target
|
||||
rm -rf target/artifacts
|
||||
|
||||
cp -rf ${DIST}/artifacts target
|
||||
@@ -1,10 +1,11 @@
|
||||
#!/bin/bash
|
||||
set -e
|
||||
set -ex
|
||||
|
||||
cd $(dirname $0)/..
|
||||
|
||||
source scripts/build-common
|
||||
|
||||
cp bin/rancheros ${DIST}/artifacts/
|
||||
|
||||
cp bin/rancheros ${BUILD}/initrd/init
|
||||
cp ./os-config.yml ${BUILD}/initrd/
|
||||
|
||||
17
scripts/run
17
scripts/run
@@ -48,24 +48,17 @@ if [ ! -d ${INITRD_TMP} ]; then
|
||||
mkdir -p ${INITRD_TMP}
|
||||
pushd ${INITRD_TMP}
|
||||
if [ -e ${NO_COMPRESS_INITRD} ]; then
|
||||
cat ${NO_COMPRESS_INITRD} | sudo cpio -idmv
|
||||
cat ${NO_COMPRESS_INITRD} | cpio -idmv
|
||||
else
|
||||
xz -dc ${INITRD} | sudo cpio -idmv
|
||||
xz -dc ${INITRD} | cpio -idmv
|
||||
fi
|
||||
rm -f init
|
||||
popd
|
||||
fi
|
||||
|
||||
if [ -e $INITRD_CURRENT ]; then
|
||||
rm -f ${INITRD_CURRENT}
|
||||
fi
|
||||
ln -s ${INITRD_TMP} ${INITRD_CURRENT}
|
||||
ln -sf ${INITRD_TMP} ${INITRD_CURRENT}
|
||||
|
||||
if [ ! -e bin/rancheros ]; then
|
||||
./scripts/build
|
||||
fi
|
||||
|
||||
cp bin/rancheros ${INITRD_TMP}/init
|
||||
cp dist/artifacts/rancheros ${INITRD_TMP}/init
|
||||
cp -f os-config.yml ${INITRD_TMP}/
|
||||
cd ${INITRD_TMP}
|
||||
|
||||
@@ -73,7 +66,7 @@ find | cpio -H newc -o > ${INITRD_TEST}
|
||||
|
||||
if [ ! -e ${HD} ]; then
|
||||
mkdir -p $(dirname ${HD})
|
||||
zcat ${HD_GZ} > ${HD}
|
||||
gzcat ${HD_GZ} > ${HD}
|
||||
fi
|
||||
|
||||
mkdir -p $(dirname $USER_DATA)
|
||||
|
||||
@@ -1 +1 @@
|
||||
VERSION=v0.3.1
|
||||
VERSION=v0.3.2
|
||||
|
||||
Reference in New Issue
Block a user