burble/nomad-driver-containerd
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
146 Commits 2 Branches 10 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Shishir 83af9c1e4a
Merge pull request #32 from Roblox/logging 
Add support for $(nomad alloc logs) command.
2020-08-20 20:01:59 -07:00
.circleci
Integration tests + CI.
2020-05-26 19:58:10 -07:00
.github/workflows
Update .github/workflows/clabot.yml
2020-07-28 14:19:40 -07:00
containerd
Add support for {nomad alloc logs} command.
2020-08-20 17:42:58 -07:00
example
Fix formatting.
2020-07-10 14:16:26 -07:00
images
Add README.md.
2020-07-09 10:38:26 -07:00
tests
Fix typo in systemd unit file.
2020-07-08 17:26:41 -07:00
vagrant
Setup script updates.
2020-07-15 14:46:10 -07:00
.gitignore
Vagrant initial setup
2020-07-15 12:27:39 -07:00
go.mod
Pass mount info to containerd.
2020-06-29 11:54:19 -07:00
go.sum
TaskStats API.
2020-06-11 14:53:43 -07:00
LICENSE
Update license.
2020-05-18 11:26:18 -07:00
main.go
Add license file and headers.
2020-07-10 16:53:50 -07:00
Makefile
Makefile to detect golang path dynamically.
2020-07-09 18:33:35 -07:00
README.md
Update README.md
2020-08-20 17:44:00 -07:00
Vagrantfile
Fix whitespace.
2020-07-15 15:14:11 -07:00

README.md

nomad-driver-containerd

CircleCI License Release

Nomad task driver for launching containers using containerd.

Containerd (containerd.io) is a lightweight container daemon for running and managing container lifecycle.
Docker daemon also uses containerd.

dockerd (docker daemon) --> containerd --> containerd-shim --> runc

nomad-driver-containerd enables nomad client to launch containers directly using containerd, without docker!
Docker daemon is not required on the host system.

nomad-driver-containerd architecture

Requirements

Building nomad-driver-containerd

Make sure your $GOPATH is setup correctly.

$ mkdir -p $GOPATH/src/github.com/Roblox
$ cd $GOPATH/src/github.com/Roblox
$ git clone git@github.com:Roblox/nomad-driver-containerd.git
$ cd nomad-driver-containerd
$ make build (This will build your containerd-driver binary)

Screencast

asciicast

Wanna try it out!?

$ vagrant up

or vagrant provision if the vagrant VM is already running.

Once setup (vagrant up OR vagrant provision) is complete and the nomad server is up and running, you can check the registered task drivers (which will also show containerd-driver) using:

$ nomad node status (Note down the <node_id>)
$ nomad node status <node_id> | grep containerd-driver

NOTE: setup.sh is part of the vagrant setup and should not be executed directly.

Run Example jobs.

There are few example jobs in the example directory.

$ nomad job run <job_name.nomad>

will launch the job.

More detailed instructions are in the example README.md

Supported options

Driver Config

Option Type Required Default Description
enabled bool no true Enable/Disable task driver.
containerd_runtime string yes N/A Runtime for containerd e.g. io.containerd.runc.v1 or io.containerd.runc.v2.
stats_interval string no 1s Interval for collecting TaskStats

Task Config

Option Type Required Description
image string yes OCI image (docker is also OCI compatible) for your container.
command string no Command to override command defined in the image.
args []string no Arguments to the command.
privileged bool no Run container in privileged mode. Your container will have all linux capabilities when running in privileged mode.
readonly_rootfs bool no Container root filesystem will be read-only.
cap_add []string no Add individual capabilities.
cap_drop []string no Drop invidual capabilities.
devices []string no A list of devices to be exposed to the container.
mounts []block no A list of mounts to be mounted in the container. Volume, bind and tmpfs type mounts are supported. fstab style mount options are supported.

Mount block
{
- type (string) (Optional): Supported values are volume, bind or tmpfs. Default: volume.
- target (string) (Required): Target path in the container.
- source (string) (Optional): Source path on the host.
- options ([]string) (Optional): fstab style mount options. NOTE: For bind mounts, atleast rbind and ro are required.
}

Bind mount example

mounts = [
           {
                type    = "bind"
                target  = "/target/t1"
                source  = "/src/s1"
                options = ["rbind", "ro"]
           }
        ]

Tests

$ make test

NOTE: These are destructive tests and can leave the system in a changed state.
It is highly recommended to run these tests either as part of a CI/CD system or on a immutable infrastructure e.g VMs.

Cleanup

make clean

This will delete your binary: containerd-driver

vagrant destroy

This will destroy your vagrant VM.

Currently supported environments

Ubuntu (>= 16.04)

Limitations

nomad-driver-containerd v0.1 is not production ready. There are some open items which are currently being worked on.

  1. Networking: Networking is not in scope of containerd as described here. However an external CNI plugin can be used to add networking to the container. We are researching on how to enable networking for our internal use-cases, and would publish (open-source) that work at some point.

  2. Port forwarding: The ability to map a host port to a container port. This is currently not supported, but could be supported in future.

  3. Consul connect: When a user launches a job in nomad, s/he can add a service stanza which will instruct nomad to register the service with consul for service discovery. This is currently not supported.

License

Copyright 2020 Roblox Corporation

Licensed under the Apache License, Version 2.0 (the "License"). For more information read the License.

Description
Fork of https://github.com/Roblox/nomad-driver-containerd to add a few fixes
containerdcontainerscontributions-welcomedockerlessgolanghashicorp-nomadhelp-wantednomad
Readme 4.1 MiB
Languages
Go 58.1%
Shell 34.8%
HCL 6.8%
Makefile 0.3%