From 967498f400a335b4f333835025199a8b7191370c Mon Sep 17 00:00:00 2001 From: Daniel J Walsh Date: Wed, 5 Dec 2018 12:19:31 -0500 Subject: [PATCH] Attempting to make kind a little less Docker Centric I believe that kind should be able to run with Podman as well as Docker. Signed-off-by: Daniel J Walsh --- README.md | 4 +-- docs/design/base-image.md | 6 ++-- docs/design/design.md | 16 ++++----- docs/design/node-image.md | 6 ++-- docs/design/overview.md | 6 ++-- docs/devel/README.md | 15 +++++++-- docs/todo.md | 2 +- hack/build/push-base.sh | 3 +- hack/build/push-node.sh | 7 ++-- pkg/build/base/base.go | 13 ++++---- pkg/build/node/node.go | 40 +++++++++++------------ pkg/cluster/context.go | 22 ++++++------- pkg/cluster/doc.go | 2 +- pkg/cluster/logs/logs.go | 9 ++--- pkg/cluster/nodes/create.go | 12 +++---- pkg/cluster/nodes/node.go | 37 +++++++++++---------- pkg/cluster/nodes/nodes.go | 7 ++-- pkg/{docker => container}/archive.go | 8 ++--- pkg/{docker => container}/cp.go | 6 ++-- pkg/{docker => container}/doc.go | 4 +-- pkg/{docker => container}/exec.go | 14 ++++---- pkg/container/init.go | 37 +++++++++++++++++++++ pkg/{docker => container}/kill.go | 4 +-- pkg/{docker => container}/pull.go | 8 ++--- pkg/{docker => container}/run.go | 12 +++---- pkg/{docker => container}/save.go | 6 ++-- pkg/{docker => container}/userns_remap.go | 4 +-- 27 files changed, 182 insertions(+), 128 deletions(-) rename pkg/{docker => container}/archive.go (89%) rename pkg/{docker => container}/cp.go (95%) rename pkg/{docker => container}/doc.go (87%) rename pkg/{docker => container}/exec.go (86%) create mode 100644 pkg/container/init.go rename pkg/{docker => container}/kill.go (95%) rename pkg/{docker => container}/pull.go (90%) rename pkg/{docker => container}/run.go (81%) rename pkg/{docker => container}/save.go (83%) rename pkg/{docker => container}/userns_remap.go (90%) diff --git a/README.md b/README.md index c20d5d3cd0..8c30120166 100644 --- a/README.md +++ b/README.md @@ -7,7 +7,7 @@ Go Report Card -`kind` is a tool for running local Kubernetes clusters using Docker container "nodes". +`kind` is a tool for running local Kubernetes clusters using container "nodes". `kind` is primarily designed for testing Kubernetes 1.11+, initially targeting the [conformance tests]. If you have [go] and [docker] installed `go get sigs.k8s.io/kind && kind create cluster` is all you need! @@ -17,7 +17,7 @@ If you have [go] and [docker] installed `go get sigs.k8s.io/kind && kind create `kind` consists of: - Go [packages][packages] implementing [cluster creation][cluster package], [image build][build package], etc. - A command line interface ([`kind`][kind cli]) built on these packages. - - Docker [image(s)][images] written to run systemd, Kubernetes, etc. + - Container [image(s)][images] written to run systemd, Kubernetes, etc. - [`kubetest`][kubetest] integration also built on these packages (WIP) `kind` bootstraps each "node" with [kubeadm][kubeadm]. For more details see [the design documentation][design doc]. diff --git a/docs/design/base-image.md b/docs/design/base-image.md index 825cc3ec23..c3f527e40a 100644 --- a/docs/design/base-image.md +++ b/docs/design/base-image.md @@ -1,6 +1,6 @@ # The Base Image -The ["base" image][base image] is a small-ish Docker image for running +The ["base" image][base image] is a small-ish container image for running nested containers, systemd, and kubernetes components. To do this we need to set up an environment that will meet the CRI @@ -8,7 +8,7 @@ To do this we need to set up an environment that will meet the CRI step we take is inline to the image's [Dockerfile][dockerfile]), but essentially: -- we preinstall tools / packages expected by systemd / Docker / Kubernetes other +- we preinstall tools / packages expected by systemd / Docker | Podman / Kubernetes other than Kubernetes itself - we install a custom entrypoint that allows us to perform some actions before @@ -17,7 +17,7 @@ the container truly boots - we set up a systemd service to forward journal logs to the container tty - we do a few tricks to minimize unnecessary services and inform systemd that it -is in docker (see the [Dockerfile][dockerfile]) +is in a container (see the [Dockerfile][dockerfile]) This image is based on a minimal debian image (currently `k8s.gcr.io/debian-base`) due to high availability of tooling. diff --git a/docs/design/design.md b/docs/design/design.md index 3d522ba666..d8a43b290b 100644 --- a/docs/design/design.md +++ b/docs/design/design.md @@ -6,7 +6,7 @@ This is the root design documentation for `kind`. See also the project ## Overview `kind` or **k**ubernetes **in** **d**ocker is a suite of tooling for local -Kubernetes "clusters" where each "node" is a Docker container. +Kubernetes "clusters" where each "node" is a container. `kind` is targeted at testing Kubernetes. `kind` is divided into go packages implementing most of the functionality, a @@ -35,10 +35,10 @@ In practice kind looks something like this: Clusters are managed by logic in [`pkg/cluster`][pkg/cluster], which the `kind` cli wraps. -Each "cluster" is identified by an internal but well-known [docker object label](https://docs.docker.com/config/labels-custom-metadata/) key, with the cluster +Each "cluster" is identified by an internal but well-known [container object label](https://docs.docker.com/config/labels-custom-metadata/) key, with the cluster name / ID as the value on each "node" container. -We initially offload this type of state into the containers and Docker. +We initially offload this type of state into the containers. Similarly the container names are automatically managed by `kind`, though we will select over labels instead of names because these are less brittle and are properly namespaced. Doing this also avoids us needing to manage anything @@ -63,17 +63,17 @@ For more see [node-image.md][node-image.md]. ### Cluster Creation -Each "node" runs as a docker container. Each container initially boots to a +Each "node" runs as a container. Each container initially boots to a pseudo "paused" state, with [the entrypoint][entrypoint] waiting for `SIGUSR1`. -This allows us to manipulate and inspect the container with `docker exec ...` +This allows us to manipulate and inspect the container with `containerEngine exec ...` and other tools prior to starting systemd and all of the components. -This setup includes fixing mounts and pre-loading saved docker images. +This setup includes fixing mounts and pre-loading saved container images. Once the nodes are sufficiently prepared, we signal the entrypoint to actually "boot" the node. -We then wait for the Docker service to be ready on the node before running +We then wait for the Docker service to be ready if we are using Docker on the node before running `kubeadm` to initialize the node. Once kubeadm has booted, we export the [KUBECONFIG][kubeconfig], then apply @@ -84,7 +84,7 @@ At this point users can test Kubernetes by using the exported kubeconfig. ### Cluster Deletion -All "node" containers in the cluster are tagged with docker labels identifying +All "node" containers in the cluster are tagged with container labels identifying the cluster by the chosen cluster name (default is "1"), to delete a cluster we can simply list and delete containers with this label. diff --git a/docs/design/node-image.md b/docs/design/node-image.md index 3a1372f632..1bde832a35 100644 --- a/docs/design/node-image.md +++ b/docs/design/node-image.md @@ -1,6 +1,6 @@ # The Node Image -The ["node" image][node image] is a Docker image for running +The ["node" image][node image] is a container image for running nested containers, systemd, and Kubernetes components. This image is built on top of the ["base" image][base image]. @@ -15,7 +15,7 @@ provides most of the tools statically needed for a kubernetes deployment (eg `systemd`), variants of this image have the following properties: - `/kind/images/` contains various `*.tar` files which are -[Docker image archives][docker image archives], +[Container image archives][container image archives], these images will be loaded by the cluster tooling prior to running `kubeadm` - `kubeadm`, `kubectl`, `kubelet` are in the path @@ -35,6 +35,6 @@ each "node" container with [kubeadm][kubeadm]. [base image]: ./base-image.md [build package]: ./../../pkg/build [cluster package]: ./../../pkg/cluster -[docker image archives]: https://docs.docker.com/engine/reference/commandline/save/ +[container image archives]: https://docs.docker.com/engine/reference/commandline/save/ [systemd service]: https://www.freedesktop.org/software/systemd/man/systemd.service.html [kubeadm]: https://kubernetes.io/docs/reference/setup-tools/kubeadm/kubeadm/ diff --git a/docs/design/overview.md b/docs/design/overview.md index 4954872835..4b5d267704 100644 --- a/docs/design/overview.md +++ b/docs/design/overview.md @@ -1,6 +1,6 @@ # Overview `kind` is a command-line application for building Kubernetes clusters using -Docker containers as "nodes." + containers as "nodes." ## CLI @@ -27,7 +27,7 @@ and setup logging. ├── pkg │   ├── build # Build and manage images │   ├── cluster # Build and manage clusters -│   ├── docker # Interact with Docker +│   ├── container # Interact with container engines │   ├── exec # Execute commands │   ├── fs # Interact with the host file system │   ├── kustomize # Work with embedded kustomize commands @@ -36,7 +36,7 @@ and setup logging. ``` `kind` commands rely on the functionality of the [packages directory][pkg]. Here, you will find everything needed to build container images for `kind`; -create clusters from these images; interact with the Docker engine and file system; customize configuration files; and logging. +create clusters from these images; interact with the container engine and file system; customize configuration files; and logging. diff --git a/docs/devel/README.md b/docs/devel/README.md index 23891e6df0..9b977efe7c 100644 --- a/docs/devel/README.md +++ b/docs/devel/README.md @@ -6,7 +6,7 @@ Before you being you must have: * [GitHub account][github] * `git` * `go` -* `Docker` +* `Docker` | `Podman` ## Task 1. Read the Kubernetes community guidelines Make sure to read you read the [Kubernetes community guidelines][community]. @@ -32,11 +32,13 @@ $ go version ``` This documentation is written using Go version 1.11+. -## Task 4. Install or upgrade Docker +## Task 4. Install or upgrade Docker or Podman If you haven't already, install the [Docker software using the instructions for your operating system][docker]. +or +[Podman software using the instructions for your operating system][podman]. If you have an existing installation, check your version and make sure you have -the latest Docker. +the latest Docker or Podman To check if `docker` is has been installed: ``` @@ -44,6 +46,12 @@ $ docker --version ``` This documentation is written using Docker version 18.09.0. +To check if `podman` is has been installed: +``` +$ podman --version +``` +This documentation is written using Podman version 0.12.1. + [github]: https://github.com/ @@ -51,3 +59,4 @@ This documentation is written using Docker version 18.09.0. [contributor]: https://github.com/kubernetes/community/blob/master/contributors/guide/README.md [golang]: https://golang.org/doc/install [docker]: https://docs.docker.com/install/#supported-platforms +[podman]: https://github.com/containers/libpod/install diff --git a/docs/todo.md b/docs/todo.md index 44c6214e89..b45ae585c5 100644 --- a/docs/todo.md +++ b/docs/todo.md @@ -29,7 +29,7 @@ A non-exhaustive list of tasks (in no-particular order) includes: - [x] node lifecycle hooks - [ ] more advanced network configuration (not docker0) - [ ] support for other CRI within the "node" containers (containerd, cri-o) -- [ ] move all docker functionality into a common package (`pkg/docker`) [WIP] +- [ ] move all container engine functionality into a common package (`pkg/container`) [WIP] - [ ] potentially move this to using the docker client library - [x] log dumping functionality / cli commands - [ ] support audit logging diff --git a/hack/build/push-base.sh b/hack/build/push-base.sh index 98dcfd2975..500023d414 100755 --- a/hack/build/push-base.sh +++ b/hack/build/push-base.sh @@ -43,5 +43,6 @@ IMAGE="kindest/base:${TAG}" (set -x; "${KIND}" build base-image --image="${IMAGE}") # push -docker push "${IMAGE}" +ENGINE=$(command -v podman 2> /dev/null || echo docker) +${ENGINE} push "${IMAGE}" diff --git a/hack/build/push-node.sh b/hack/build/push-node.sh index 0f4ea9c052..92da579bb0 100755 --- a/hack/build/push-node.sh +++ b/hack/build/push-node.sh @@ -44,10 +44,11 @@ set -x # re-tag with kubernetes version IMG="kindest/node:${TAG}" -KUBE_VERSION="$(docker run --rm --entrypoint=cat "${IMG}" /kind/version)" -docker tag "${IMG}" "kindest/node:${KUBE_VERSION}" +ENGINE=$(command -v podman 2> /dev/null || echo docker) +KUBE_VERSION="$(${ENGINE} run --rm --entrypoint=cat "${IMG}" /kind/version)" +${ENGINE} tag "${IMG}" "kindest/node:${KUBE_VERSION}" # push -docker push kindest/node:"${KUBE_VERSION}" +${ENGINE} push kindest/node:"${KUBE_VERSION}" diff --git a/pkg/build/base/base.go b/pkg/build/base/base.go index f7287a17db..c4151de0f3 100644 --- a/pkg/build/base/base.go +++ b/pkg/build/base/base.go @@ -24,6 +24,7 @@ import ( log "github.com/sirupsen/logrus" "sigs.k8s.io/kind/pkg/build/base/sources" + "sigs.k8s.io/kind/pkg/container" "sigs.k8s.io/kind/pkg/exec" "sigs.k8s.io/kind/pkg/fs" ) @@ -109,7 +110,7 @@ func (c *BuildContext) Build() (err error) { return err } - // then the actual docker image + // then the actual container image return c.buildImage(buildDir) } @@ -120,7 +121,7 @@ func (c *BuildContext) buildEntrypoint(dir string) error { entrypointDest := filepath.Join(dir, "entrypoint", "entrypoint") cmd := exec.Command(c.goCmd, "build", "-o", entrypointDest, entrypointSrc) - // TODO(bentheelder): we may need to map between docker image arch and GOARCH + // TODO(bentheelder): we may need to map between container image arch and GOARCH cmd.SetEnv("GOOS=linux", "GOARCH="+c.arch) // actually build @@ -136,14 +137,14 @@ func (c *BuildContext) buildEntrypoint(dir string) error { func (c *BuildContext) buildImage(dir string) error { // build the image, tagged as tagImageAs, using the our tempdir as the context - cmd := exec.Command("docker", "build", "-t", c.image, dir) - log.Info("Starting Docker build ...") + cmd := exec.Command(container.Engine, "build", "-t", c.image, dir) + log.Info("Starting container image build ...") exec.InheritOutput(cmd) err := cmd.Run() if err != nil { - log.Errorf("Docker build Failed! %v", err) + log.Errorf("Container image build Failed! %v", err) return err } - log.Info("Docker build completed.") + log.Info("Container image build completed.") return nil } diff --git a/pkg/build/node/node.go b/pkg/build/node/node.go index e788f2b325..d10f92dc2c 100644 --- a/pkg/build/node/node.go +++ b/pkg/build/node/node.go @@ -33,7 +33,7 @@ import ( log "github.com/sirupsen/logrus" "sigs.k8s.io/kind/pkg/build/kube" - "sigs.k8s.io/kind/pkg/docker" + "sigs.k8s.io/kind/pkg/container" "sigs.k8s.io/kind/pkg/exec" "sigs.k8s.io/kind/pkg/fs" ) @@ -143,7 +143,7 @@ func (c *BuildContext) Build() (err error) { return err } - // then the perform the actual docker image build + // then the perform the actual container image build return c.buildImage(buildDir) } @@ -175,7 +175,7 @@ func (c *BuildContext) getBuiltImages() (sets.String, error) { images := sets.NewString() for src, dest := range bitPaths { if imageRegex.MatchString(dest) { - tags, err := docker.GetArchiveTags(src) + tags, err := container.GetArchiveTags(src) if err != nil { return nil, err } @@ -188,9 +188,9 @@ func (c *BuildContext) getBuiltImages() (sets.String, error) { // BuildContainerLabelKey is applied to each build container const BuildContainerLabelKey = "io.k8s.sigs.kind.build" -// DockerImageArchives is the path within the node image where image archives +// ContainerImageArchives is the path within the node image where image archives // will be stored. -const DockerImageArchives = "/kind/images" +const ContainerImageArchives = "/kind/images" // private kube.InstallContext implementation, local to the image build type installContext struct { @@ -206,7 +206,7 @@ func (ic *installContext) BasePath() string { func (ic *installContext) Run(command string, args ...string) error { cmd := exec.Command( - "docker", + container.Engine, append( []string{"exec", ic.containerID, command}, args..., @@ -218,7 +218,7 @@ func (ic *installContext) Run(command string, args ...string) error { func (ic *installContext) CombinedOutputLines(command string, args ...string) ([]string, error) { cmd := exec.Command( - "docker", + container.Engine, append( []string{"exec", ic.containerID, command}, args..., @@ -231,7 +231,7 @@ func (c *BuildContext) buildImage(dir string) error { // build the image, tagged as tagImageAs, using the our tempdir as the context log.Info("Starting image build ...") // create build container - // NOTE: we are using docker run + docker commit so we can install + // NOTE: we are using ContainerEngine run + ContainerEngine commit so we can install // debians without permanently copying them into the image. // if docker gets proper squash support, we can rm them instead // This also allows the KubeBit implementations to perform programmatic @@ -240,7 +240,7 @@ func (c *BuildContext) buildImage(dir string) error { // ensure we will delete it if containerID != "" { defer func() { - exec.Command("docker", "rm", "-f", "-v", containerID).Run() + exec.Command(container.Engine, "rm", "-f", "-v", containerID).Run() }() } if err != nil { @@ -250,7 +250,7 @@ func (c *BuildContext) buildImage(dir string) error { // helper we will use to run "build steps" execInBuild := func(command ...string) error { - cmd := exec.Command("docker", + cmd := exec.Command(container.Engine, append( []string{"exec", containerID}, command..., @@ -297,7 +297,7 @@ func (c *BuildContext) buildImage(dir string) error { } // Save the image changes to a new image - cmd := exec.Command("docker", "commit", containerID, c.image) + cmd := exec.Command(container.Engine, "commit", containerID, c.image) exec.InheritOutput(cmd) if err = cmd.Run(); err != nil { log.Errorf("Image build Failed! %v", err) @@ -319,7 +319,7 @@ func (c *BuildContext) prePullImages(dir, containerID string) error { // helpers to run things in the build container execInBuild := func(command ...string) error { - cmd := exec.Command("docker", + cmd := exec.Command(container.Engine, append( []string{"exec", containerID}, command..., @@ -329,7 +329,7 @@ func (c *BuildContext) prePullImages(dir, containerID string) error { return cmd.Run() } combinedOutputLinesInBuild := func(command ...string) ([]string, error) { - cmd := exec.Command("docker", + cmd := exec.Command(container.Engine, append( []string{"exec", containerID}, command..., @@ -385,14 +385,14 @@ func (c *BuildContext) prePullImages(dir, containerID string) error { for i, image := range requiredImages { if !builtImages.Has(image) { fmt.Printf("Pulling: %s\n", image) - err := docker.Pull(image, 2) + err := container.Pull(image, 2) if err != nil { return err } // TODO(bentheelder): generate a friendlier name pullName := fmt.Sprintf("%d.tar", i) pullTo := path.Join(imagesDir, pullName) - err = docker.Save(image, pullTo) + err = container.Save(image, pullTo) if err != nil { return err } @@ -401,17 +401,17 @@ func (c *BuildContext) prePullImages(dir, containerID string) error { } // Create the /kind/images directory inside the container. - if err = execInBuild("mkdir", "-p", DockerImageArchives); err != nil { + if err = execInBuild("mkdir", "-p", ContainerImageArchives); err != nil { log.Errorf("Image build Failed! %v", err) return err } - movePulled = append(movePulled, DockerImageArchives) + movePulled = append(movePulled, ContainerImageArchives) if err := execInBuild(movePulled...); err != nil { return err } // make sure we own the tarballs // TODO(bentheelder): someday we might need a different user ... - if err = execInBuild("chown", "-R", "root", DockerImageArchives); err != nil { + if err = execInBuild("chown", "-R", "root", ContainerImageArchives); err != nil { log.Errorf("Image build Failed! %v", err) return err } @@ -421,8 +421,8 @@ func (c *BuildContext) prePullImages(dir, containerID string) error { func (c *BuildContext) createBuildContainer(buildDir string) (id string, err error) { // attempt to explicitly pull the image if it doesn't exist locally // we don't care if this errors, we'll still try to run which also pulls - _, _ = docker.PullIfNotPresent(c.baseImage, 4) - id, err = docker.Run( + _, _ = container.PullIfNotPresent(c.baseImage, 4) + id, err = container.Run( c.baseImage, []string{ "-d", // make the client exit while the container continues to run diff --git a/pkg/cluster/context.go b/pkg/cluster/context.go index 221c793f87..1d6b6d689b 100644 --- a/pkg/cluster/context.go +++ b/pkg/cluster/context.go @@ -35,12 +35,12 @@ import ( "sigs.k8s.io/kind/pkg/cluster/config" "sigs.k8s.io/kind/pkg/cluster/kubeadm" "sigs.k8s.io/kind/pkg/cluster/nodes" - "sigs.k8s.io/kind/pkg/docker" + "sigs.k8s.io/kind/pkg/container" "sigs.k8s.io/kind/pkg/kustomize" logutil "sigs.k8s.io/kind/pkg/log" ) -// Context is used to create / manipulate kubernetes-in-docker clusters +// Context is used to create / manipulate kind clusters type Context struct { name string } @@ -53,7 +53,7 @@ type createContext struct { retain bool // if we should retain nodes after failing to create } -// similar to valid docker container names, but since we will prefix +// similar to valid container names, but since we will prefix // and suffix this name, we can relax it a little // see NewContext() for usage // https://godoc.org/github.com/docker/docker/daemon/names#pkg-constants @@ -91,7 +91,7 @@ func (c *Context) Validate() error { return nil } -// ClusterLabel returns the docker object label that will be applied +// ClusterLabel returns the container object label that will be applied // to cluster "node" containers func (c *Context) ClusterLabel() string { return fmt.Sprintf("%s=%s", consts.ClusterLabelKey, c.name) @@ -120,7 +120,7 @@ func (c *Context) KubeConfigPath() string { return filepath.Join(configDir, fileName) } -// Create provisions and starts a kubernetes-in-docker cluster +// Create provisions and starts a kind cluster func (c *Context) Create(cfg *config.Config, retain bool) error { // validate config first if err := cfg.Validate(); err != nil { @@ -146,7 +146,7 @@ func (c *Context) Create(cfg *config.Config, retain bool) error { // attempt to explicitly pull the image if it doesn't exist locally // we don't care if this errors, we'll still try to run which also pulls - _, _ = docker.PullIfNotPresent(cfg.Image, 4) + _, _ = container.PullIfNotPresent(cfg.Image, 4) // TODO(bentheelder): multiple nodes ... kubeadmConfig, err := cc.provisionControlPlane( @@ -170,7 +170,7 @@ func (c *Context) Create(cfg *config.Config, retain bool) error { return nil } -// Delete tears down a kubernetes-in-docker cluster +// Delete tears down a kind cluster func (c *Context) Delete() error { n, err := c.ListNodes() if err != nil { @@ -185,7 +185,7 @@ func (cc *createContext) provisionControlPlane( nodeName string, ) (kubeadmConfigPath string, err error) { cc.status.Start(fmt.Sprintf("[%s] Creating node container 📦", nodeName)) - // create the "node" container (docker run, but it is paused, see createNode) + // create the "node" container (containerEngine run, but it is paused, see createNode) node, port, err := nodes.CreateControlPlaneNode(nodeName, cc.config.Image, cc.ClusterLabel()) if err != nil { return "", err @@ -222,8 +222,8 @@ func (cc *createContext) provisionControlPlane( return "", err } - cc.status.Start(fmt.Sprintf("[%s] Waiting for docker to be ready 🐋", nodeName)) - // wait for docker to be ready + cc.status.Start(fmt.Sprintf("[%s] Waiting for container engine to be ready 🐋", nodeName)) + // wait for container engine to be ready if !node.WaitForDocker(time.Now().Add(time.Second * 30)) { // TODO(bentheelder): logging here if !cc.retain { @@ -232,7 +232,7 @@ func (cc *createContext) provisionControlPlane( return "", fmt.Errorf("timed out waiting for docker to be ready on node") } - // load the docker image artifacts into the docker daemon + // load the container image artifacts into the container storage node.LoadImages() // get installed kubernetes version from the node image diff --git a/pkg/cluster/doc.go b/pkg/cluster/doc.go index af19392fde..9ef9420339 100644 --- a/pkg/cluster/doc.go +++ b/pkg/cluster/doc.go @@ -14,5 +14,5 @@ See the License for the specific language governing permissions and limitations under the License. */ -// Package cluster implements kind kubernetes-in-docker cluster management +// Package cluster implements kind cluster management package cluster diff --git a/pkg/cluster/logs/logs.go b/pkg/cluster/logs/logs.go index 7e36e30490..c64a943024 100644 --- a/pkg/cluster/logs/logs.go +++ b/pkg/cluster/logs/logs.go @@ -23,6 +23,7 @@ import ( "sync" "sigs.k8s.io/kind/pkg/cluster/nodes" + "sigs.k8s.io/kind/pkg/container" "sigs.k8s.io/kind/pkg/exec" "sigs.k8s.io/kind/pkg/util" ) @@ -56,10 +57,10 @@ func Collect(nodes []nodes.Node, dir string) error { // construct a slice of methods to collect logs fns := []errFn{ // TODO(bentheelder): record the kind version here as well - // record info about the host docker + // record info about the host container engine execToPathFn( - exec.Command("docker", "info"), - "docker-info.txt", + exec.Command(container.Engine, "info"), + "container-info.txt", ), } // add a log collection method for each node @@ -70,7 +71,7 @@ func Collect(nodes []nodes.Node, dir string) error { return coalesce( // record info about the node container execToPathFn( - exec.Command("docker", "inspect", name), + exec.Command(container.Engine, "inspect", name), filepath.Join(name, "inspect.json"), ), // grab all of the node logs diff --git a/pkg/cluster/nodes/create.go b/pkg/cluster/nodes/create.go index a04da7a941..6cd480b00a 100644 --- a/pkg/cluster/nodes/create.go +++ b/pkg/cluster/nodes/create.go @@ -21,7 +21,7 @@ import ( "net" "github.com/pkg/errors" - "sigs.k8s.io/kind/pkg/docker" + "sigs.k8s.io/kind/pkg/container" ) // FromID creates a node handle from the node (container's) ID @@ -42,7 +42,7 @@ func getPort() (int, error) { return port, nil } -// CreateControlPlaneNode `docker run`s the node image, note that due to +// CreateControlPlaneNode `ContainerEngine run`s the node image, note that due to // images/node/entrypoint being the entrypoint, this container will // effectively be paused until we call actuallyStartNode(...) func CreateControlPlaneNode(name, image, clusterLabel string) (handle *Node, port int, err error) { @@ -55,7 +55,7 @@ func CreateControlPlaneNode(name, image, clusterLabel string) (handle *Node, por // running containers in a container requires privileged // NOTE: we could try to replicate this with --cap-add, and use less // privileges, but this flag also changes some mounts that are necessary - // including some ones docker would otherwise do by default. + // including some ones the container engine would otherwise do by default. // for now this is what we want. in the future we may revisit this. "--privileged", "--security-opt", "seccomp=unconfined", // also ignore seccomp @@ -74,13 +74,13 @@ func CreateControlPlaneNode(name, image, clusterLabel string) (handle *Node, por "--entrypoint=/usr/local/bin/entrypoint", } - if docker.UsernsRemap() { + if container.UsernsRemap() { // We need this argument in order to make this command work // in systems that have userns-remap enabled on the docker daemon runArgs = append(runArgs, "--userns=host") } - id, err := docker.Run( + id, err := container.Run( image, runArgs, []string{ @@ -97,7 +97,7 @@ func CreateControlPlaneNode(name, image, clusterLabel string) (handle *Node, por } } if err != nil { - return handle, 0, errors.Wrap(err, "docker run error") + return handle, 0, errors.Wrap(err, "container run error") } return handle, port, nil } diff --git a/pkg/cluster/nodes/node.go b/pkg/cluster/nodes/node.go index ad94a7edf6..5c28c310a6 100644 --- a/pkg/cluster/nodes/node.go +++ b/pkg/cluster/nodes/node.go @@ -30,7 +30,7 @@ import ( "k8s.io/apimachinery/pkg/util/version" - "sigs.k8s.io/kind/pkg/docker" + "sigs.k8s.io/kind/pkg/container" "sigs.k8s.io/kind/pkg/exec" ) @@ -39,7 +39,7 @@ import ( // It should not be manually instantiated // Node impleemnts exec.Cmder type Node struct { - // must be one of docker container ID or name + // must be one of container ID or name nameOrID string // cached node info etc. nodeCache @@ -48,10 +48,10 @@ type Node struct { // assert Node implements Cmder var _ exec.Cmder = &Node{} -// Cmder returns an exec.Cmder that runs on the node via docker exec +// Cmder returns an exec.Cmder that runs on the node via ContainerEngine exec func (n *Node) Cmder() exec.Cmder { if n.nodeCache.containerCmder == nil { - n.nodeCache.containerCmder = docker.ContainerCmder(n.nameOrID) + n.nodeCache.containerCmder = container.Cmder(n.nameOrID) } return n.nodeCache.containerCmder } @@ -76,17 +76,20 @@ func (n *Node) String() string { // SignalStart sends SIGUSR1 to the node, which signals our entrypoint to boot // see images/node/entrypoint func (n *Node) SignalStart() error { - return docker.Kill("SIGUSR1", n.nameOrID) + return container.Kill("SIGUSR1", n.nameOrID) } // CopyTo copies the source file on the host to dest on the node func (n *Node) CopyTo(source, dest string) error { - return docker.CopyTo(source, n.nameOrID, dest) + return container.CopyTo(source, n.nameOrID, dest) } -// WaitForDocker waits for Docker to be ready on the node -// it returns true on success, and false on a timeout +// WaitForDocker waits for Docker Daemon to be ready on the node +// it returns true on success or if you are not using Docker, and false on a timeout func (n *Node) WaitForDocker(until time.Time) bool { + if container.Engine != "docker" { + return true + } return tryUntil(until, func() bool { cmd := n.Command("systemctl", "is-active", "docker") out, err := exec.CombinedOutputLines(cmd) @@ -108,16 +111,16 @@ func tryUntil(until time.Time, try func() bool) bool { return false } -// LoadImages loads image tarballs stored on the node into docker on the node +// LoadImages loads image tarballs stored on the node into container storage on the node func (n *Node) LoadImages() { - // load images cached on the node into docker + // load images cached on the node into Container Storage if err := n.Command( "find", "/kind/images", "-name", "*.tar", - "-exec", "docker", "load", "-i", "{}", ";", + "-exec", container.Engine, "load", "-i", "{}", ";", ).Run(); err != nil { - log.Warningf("Failed to preload docker images: %v", err) + log.Warningf("Failed to preload container images: %v", err) return } @@ -141,17 +144,17 @@ func (n *Node) LoadImages() { // TODO(bentheelder): this is a bit gross, move this logic out of bash if err := n.Command( "/bin/bash", "-c", - `docker images --format='{{.Repository}}:{{.Tag}}' | grep -v amd64 | xargs -L 1 -I '{}' /bin/bash -c 'docker tag "{}" "$(echo "{}" | sed s/:/-amd64:/)"'`, + fmt.Sprintf(`%s images --format='{{.Repository}}:{{.Tag}}' | grep -v amd64 | xargs -L 1 -I '{}' /bin/bash -c '%s tag "{}" "$(echo "{}" | sed s/:/-amd64:/)"'`, container.Engine, container.Engine), ).Run(); err != nil { - log.Warningf("Failed to re-tag docker images: %v", err) + log.Warningf("Failed to re-tag container images: %v", err) } } // FixMounts will correct mounts in the node container to meet the right -// sharing and permissions for systemd and Docker / Kubernetes +// sharing and permissions for systemd and Containers / Kubernetes func (n *Node) FixMounts() error { // Check if userns-remap is enabled - if docker.UsernsRemap() { + if container.UsernsRemap() { // The binary /bin/mount should be owned by root:root in order to execute // the following mount commands if err := n.Command("chown", "root:root", "/bin/mount").Run(); err != nil { @@ -165,7 +168,7 @@ func (n *Node) FixMounts() error { // systemd-in-a-container should have read only /sys // https://www.freedesktop.org/wiki/Software/systemd/ContainerInterface/ - // however, we need other things from `docker run --privileged` ... + // however, we need other things from `container run --privileged` ... // and this flag also happens to make /sys rw, amongst other things if err := n.Command("mount", "-o", "remount,ro", "/sys").Run(); err != nil { return err diff --git a/pkg/cluster/nodes/nodes.go b/pkg/cluster/nodes/nodes.go index b4a81b6dd8..ca3de6b5e6 100644 --- a/pkg/cluster/nodes/nodes.go +++ b/pkg/cluster/nodes/nodes.go @@ -22,6 +22,7 @@ import ( "github.com/pkg/errors" "sigs.k8s.io/kind/pkg/cluster/consts" + "sigs.k8s.io/kind/pkg/container" "sigs.k8s.io/kind/pkg/exec" ) @@ -36,7 +37,7 @@ func Delete(nodes ...Node) error { ids = append(ids, node.nameOrID) } cmd := exec.Command( - "docker", + container.Engine, append( []string{ "rm", @@ -50,7 +51,7 @@ func Delete(nodes ...Node) error { } // List returns the list of container IDs for the kind "nodes", optionally -// filtered by docker ps filters +// filtered by container engine ps filters // https://docs.docker.com/engine/reference/commandline/ps/#filtering func List(filters ...string) ([]Node, error) { res := []Node{} @@ -83,7 +84,7 @@ func list(visit func(string, *Node), filters ...string) error { for _, filter := range filters { args = append(args, "--filter", filter) } - cmd := exec.Command("docker", args...) + cmd := exec.Command(container.Engine, args...) lines, err := exec.CombinedOutputLines(cmd) if err != nil { return errors.Wrap(err, "failed to list nodes") diff --git a/pkg/docker/archive.go b/pkg/container/archive.go similarity index 89% rename from pkg/docker/archive.go rename to pkg/container/archive.go index 4fe370b6f6..1ca9378e50 100644 --- a/pkg/docker/archive.go +++ b/pkg/container/archive.go @@ -14,9 +14,9 @@ See the License for the specific language governing permissions and limitations under the License. */ -// Package docker contains helpers for working with docker +// Package container contains helpers for working with container engines // This package has no stability guarantees whatsoever! -package docker +package container import ( "archive/tar" @@ -27,8 +27,8 @@ import ( "os" ) -// GetArchiveTags obtains a list of "repo:tag" docker image tags from a -// given docker image archive (tarball) path +// GetArchiveTags obtains a list of "repo:tag" container image tags from a +// given container image archive (tarball) path // compatible with all known specs: // https://github.com/moby/moby/blob/master/image/spec/v1.0.md // https://github.com/moby/moby/blob/master/image/spec/v1.1.md diff --git a/pkg/docker/cp.go b/pkg/container/cp.go similarity index 95% rename from pkg/docker/cp.go rename to pkg/container/cp.go index 3496425002..eb0b0944c1 100644 --- a/pkg/docker/cp.go +++ b/pkg/container/cp.go @@ -14,7 +14,7 @@ See the License for the specific language governing permissions and limitations under the License. */ -package docker +package container import ( "sigs.k8s.io/kind/pkg/exec" @@ -23,7 +23,7 @@ import ( // CopyTo copies the file at hostPath to the container at destPath func CopyTo(hostPath, containerNameOrID, destPath string) error { cmd := exec.Command( - "docker", "cp", + Engine, "cp", hostPath, // from the source file containerNameOrID+":"+destPath, // to the node, at dest ) @@ -33,7 +33,7 @@ func CopyTo(hostPath, containerNameOrID, destPath string) error { // CopyFrom copies the file or dir in the container at srcPath to the host at hostPath func CopyFrom(containerNameOrID, srcPath, hostPath string) error { cmd := exec.Command( - "docker", "cp", + Engine, "cp", containerNameOrID+":"+srcPath, // from the node, at src hostPath, // to the host ) diff --git a/pkg/docker/doc.go b/pkg/container/doc.go similarity index 87% rename from pkg/docker/doc.go rename to pkg/container/doc.go index a4a2b89325..8cc4540267 100644 --- a/pkg/docker/doc.go +++ b/pkg/container/doc.go @@ -14,6 +14,6 @@ See the License for the specific language governing permissions and limitations under the License. */ -// Package docker contains helpers for working with docker +// Package container contains helpers for working with container engines // This package has no stability guarantees whatsoever! -package docker +package container diff --git a/pkg/docker/exec.go b/pkg/container/exec.go similarity index 86% rename from pkg/docker/exec.go rename to pkg/container/exec.go index 5d12450274..c5eebc3d1a 100644 --- a/pkg/docker/exec.go +++ b/pkg/container/exec.go @@ -14,7 +14,7 @@ See the License for the specific language governing permissions and limitations under the License. */ -package docker +package container import ( "io" @@ -22,13 +22,13 @@ import ( "sigs.k8s.io/kind/pkg/exec" ) -// containerCmder implements exec.Cmder for docker containers +// containerCmder implements exec.Cmder for containers type containerCmder struct { nameOrID string } -// ContainerCmder creates a new exec.Cmder against a docker container -func ContainerCmder(containerNameOrID string) exec.Cmder { +// Cmder creates a new exec.Cmder against a container +func Cmder(containerNameOrID string) exec.Cmder { return &containerCmder{ nameOrID: containerNameOrID, } @@ -42,7 +42,7 @@ func (c *containerCmder) Command(command string, args ...string) exec.Cmd { } } -// containerCmd implements exec.Cmd for docker containers +// containerCmd implements exec.Cmd for containers type containerCmd struct { nameOrID string // the container name or ID command string @@ -76,7 +76,7 @@ func (c *containerCmd) Run() error { args = append(args, "-e", env) } // specify the container and command, after this everything will be - // args the the command in the container rather than to docker + // args the the command in the container rather than to container engine args = append( args, c.nameOrID, // ... against the container @@ -87,7 +87,7 @@ func (c *containerCmd) Run() error { // finally, with the caller args c.args..., ) - cmd := exec.Command("docker", args...) + cmd := exec.Command(Engine, args...) if c.stdin != nil { cmd.SetStdin(c.stdin) } diff --git a/pkg/container/init.go b/pkg/container/init.go new file mode 100644 index 0000000000..18c0e90aca --- /dev/null +++ b/pkg/container/init.go @@ -0,0 +1,37 @@ +/* +Copyright 2018 The Kubernetes Authors. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +// Package container contains helpers for working with container engines +// This package has no stability guarantees whatsoever! +package container + +import ( + "sigs.k8s.io/kind/pkg/exec" +) + +//Engine is the container engine to use to launch containers +var Engine = "" + +const engines = []string{"podman", "docker"} + +func init() { + for _, engine := range engines { + if Engine, err := exec.LookPath(engine); err == nil { + return + } + } + Engine = "docker" +} diff --git a/pkg/docker/kill.go b/pkg/container/kill.go similarity index 95% rename from pkg/docker/kill.go rename to pkg/container/kill.go index c3ce2a4675..8f634b2fe3 100644 --- a/pkg/docker/kill.go +++ b/pkg/container/kill.go @@ -14,7 +14,7 @@ See the License for the specific language governing permissions and limitations under the License. */ -package docker +package container import ( "sigs.k8s.io/kind/pkg/exec" @@ -23,7 +23,7 @@ import ( // Kill sends the named signal to the container func Kill(signal, containerNameOrID string) error { cmd := exec.Command( - "docker", "kill", + Engine, "kill", "-s", signal, containerNameOrID, ) diff --git a/pkg/docker/pull.go b/pkg/container/pull.go similarity index 90% rename from pkg/docker/pull.go rename to pkg/container/pull.go index cc48945f88..280592836b 100644 --- a/pkg/docker/pull.go +++ b/pkg/container/pull.go @@ -14,7 +14,7 @@ See the License for the specific language governing permissions and limitations under the License. */ -package docker +package container import ( "time" @@ -31,7 +31,7 @@ func PullIfNotPresent(image string, retries int) (pulled bool, err error) { // TODO(bentheelder): switch most (all) of the logging here to debug level // once we have configurable log levels // if this did not return an error, then the image exists locally - cmd := exec.Command("docker", "inspect", "--type=image", image) + cmd := exec.Command(Engine, "inspect", "--type=image", image) if err := cmd.Run(); err == nil { log.Infof("Image: %s present locally", image) return false, nil @@ -43,14 +43,14 @@ func PullIfNotPresent(image string, retries int) (pulled bool, err error) { // Pull pulls an image, retrying up to retries times func Pull(image string, retries int) error { log.Infof("Pulling image: %s ...", image) - err := exec.Command("docker", "pull", image).Run() + err := exec.Command(Engine, "pull", image).Run() // retry pulling up to retries times if necessary if err != nil { for i := 0; i < retries; i++ { time.Sleep(time.Second * time.Duration(i+1)) log.WithError(err).Infof("Trying again to pull image: %s ...", image) // TODO(bentheelder): add some backoff / sleep? - err = exec.Command("docker", "pull", image).Run() + err = exec.Command(Engine, "pull", image).Run() if err == nil { break } diff --git a/pkg/docker/run.go b/pkg/container/run.go similarity index 81% rename from pkg/docker/run.go rename to pkg/container/run.go index b54abc87ae..986272dae1 100644 --- a/pkg/docker/run.go +++ b/pkg/container/run.go @@ -14,7 +14,7 @@ See the License for the specific language governing permissions and limitations under the License. */ -package docker +package container import ( "fmt" @@ -25,17 +25,17 @@ import ( "sigs.k8s.io/kind/pkg/exec" ) -// Docker container IDs are hex, more than one character, and on their own line +// Container IDs are hex, more than one character, and on their own line var containerIDRegex = regexp.MustCompile("^[a-f0-9]+$") -// Run creates a container with "docker run", with some error handling +// Run creates a container with "ContainreEngine run", with some error handling // it will return the ID of the created container if any, even on error func Run(image string, runArgs []string, containerArgs []string) (id string, err error) { args := []string{"run"} args = append(args, runArgs...) args = append(args, image) args = append(args, containerArgs...) - cmd := exec.Command("docker", args...) + cmd := exec.Command(Engine, args...) output, err := exec.CombinedOutputLines(cmd) if err != nil { // log error output if there was any @@ -44,10 +44,10 @@ func Run(image string, runArgs []string, containerArgs []string) (id string, err } return "", err } - // if docker created a container the id will be the first line and match + // if the container engine created a container the id will be the first line and match // validate the output and get the id if len(output) < 1 { - return "", fmt.Errorf("failed to get container id, received no output from docker run") + return "", fmt.Errorf("failed to get container id, received no output from %s run", Engine) } if !containerIDRegex.MatchString(output[0]) { return "", fmt.Errorf("failed to get container id, output did not match: %v", output) diff --git a/pkg/docker/save.go b/pkg/container/save.go similarity index 83% rename from pkg/docker/save.go rename to pkg/container/save.go index ded4737756..d275f6bb74 100644 --- a/pkg/docker/save.go +++ b/pkg/container/save.go @@ -14,13 +14,13 @@ See the License for the specific language governing permissions and limitations under the License. */ -package docker +package container import ( "sigs.k8s.io/kind/pkg/exec" ) -// Save saves image to dest, as in `docker save` +// Save saves image to dest, as in `Engine save` func Save(image, dest string) error { - return exec.Command("docker", "save", "-o", dest, image).Run() + return exec.Command(Engine, "save", "-o", dest, image).Run() } diff --git a/pkg/docker/userns_remap.go b/pkg/container/userns_remap.go similarity index 90% rename from pkg/docker/userns_remap.go rename to pkg/container/userns_remap.go index d0c42bb33a..eb00e7a69d 100644 --- a/pkg/docker/userns_remap.go +++ b/pkg/container/userns_remap.go @@ -14,7 +14,7 @@ See the License for the specific language governing permissions and limitations under the License. */ -package docker +package container import ( "strings" @@ -24,7 +24,7 @@ import ( // UsernsRemap checks if userns-remap is enabled in dockerd func UsernsRemap() bool { - cmd := exec.Command("docker", "info", "--format", "'{{json .SecurityOptions}}'") + cmd := exec.Command(Engine, "info", "--format", "'{{json .SecurityOptions}}'") lines, err := exec.CombinedOutputLines(cmd) if err != nil { return false