Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

Ansible role to install containerd

NotificationsYou must be signed in to change notification settings

githubixx/ansible-role-containerd

Repository files navigation

Ansible role to installcontainerd.containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision, low-level storage and network attachments, etc.

Changelog

Change history:

See fullCHANGELOG

Recent changes:

0.15.0+2.1.3

  • UPDATE

    • updatecontainerd tov2.1.3

  • MOLECULE

    • Usegeneric/arch Vagrant box instead ofarchlinux/archlinux (no longer available)
    • Installopenssl package for Archlinux
    • Removed Ubuntu 20.04 because reached end of life

0.14.0+2.0.2

Note: This a major release update tocontainerd version2.0.2! Please read thechangelog of containerd v2.0.2 accordingly! In general if you haven't used any "exotic" features so far this version of the Ansible role should cover everything already and upgrading should be smooth. Nevertheless you should test the changes before!

  • POTENTIALLY BREAKING

    • containerd_config variable value was adjusted to to meetcontainerd configuration requirements of version3. Please seeFull configuration for all possible values. If you haven't adjusted this variable then there should be no need to change anything and upgrading should be smooth.
    • update list of containerd binaries incontainerd_binaries variable.containerd-shim-runc-v1 andcontainerd-shim were removed as no longer provided by upstream.

  • UPDATE

    • updatecontainerd tov2.0.2
    • templates/etc/systemd/system/containerd.service.j2: adddbus.service toAfter=

  • MOLECULE

    • adjust expected output ofctr pull command

Installation

  • Directly download from Github (change into Ansible role directory before cloning):git clone https://github.com/githubixx/ansible-role-containerd.git githubixx.containerd

  • Viaansible-galaxy command and download directly from Ansible Galaxy:ansible-galaxy install role githubixx.containerd

  • Create arequirements.yml file with the following content (this will download the role from Github) and install withansible-galaxy role install -r requirements.yml:

---roles:  -name:githubixx.containerdsrc:https://github.com/githubixx/ansible-role-containerd.gitversion:0.15.0+2.1.3

Role Variables

# Only value "base" is currently supportedcontainerd_flavor:"base"# containerd version to installcontainerd_version:"2.1.3"# Directory where to store "containerd" binariescontainerd_binary_directory:"/usr/local/bin"# Location of containerd configuration filecontainerd_config_directory:"/etc/containerd"# Directory to store the archivecontainerd_tmp_directory:"{{ lookup('env', 'TMPDIR') | default('/tmp', true) }}"# Owner/group of "containerd" binaries. If the variables are not set# the resulting binary will be owned by the current user.containerd_owner:"root"containerd_group:"root"# Specifies the permissions of the "containerd" binariescontainerd_binary_mode:"0755"# Operating system# Possible options: "linux", "windows"containerd_os:"linux"# Processor architecture "containerd" should run on.# Other possible values: "arm64","arm"containerd_arch:"amd64"# Name of the archive file namecontainerd_archive_base:"containerd-{{ containerd_version }}-{{ containerd_os }}-{{ containerd_arch }}.tar.gz"# The containerd download URL (normally no need to change it)containerd_url:"https://github.com/containerd/containerd/releases/download/v{{ containerd_version }}/{{ containerd_archive_base }}"# containerd systemd service settingscontainerd_service_settings:"ExecStartPre":"{{ modprobe_location }} overlay""ExecStart":"{{ containerd_binary_directory }}/containerd""Restart":"always""RestartSec":"5""Type":"notify""Delegate":"yes""KillMode":"process""OOMScoreAdjust":"-999""LimitNOFILE":"1048576""LimitNPROC":"infinity""LimitCORE":"infinity"# Content of configuration file of "containerd". The settings below are the# settings that are either different to the default "containerd" settings or# stated explicitly to make important settings more visible even if they're# default. So these settings will override the default settings.## The default "containerd" configuration can be generated with this command:## containerd config default## A full configuration example with all possible options is also available here:# https://github.com/containerd/containerd/blob/main/docs/cri/config.md#full-configuration## Also if you want to adjust settings please consult the CRI Plugin Config Guide:# https://github.com/containerd/containerd/blob/main/docs/cri/config.md## Difference to default configuration:## - In 'plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runc.options' the#   setting "SystemdCgroup" is set to "true" instead of "false". This is relevant for#   Kubernetes e.g. Also see:#   https://kubernetes.io/docs/setup/production-environment/container-runtimes/#containerd-systemd)#containerd_config:|  version = 3  [plugins]    [plugins.'io.containerd.cri.v1.runtime']      [plugins.'io.containerd.cri.v1.runtime'.containerd]        default_runtime_name = 'runc'        [plugins.'io.containerd.cri.v1.runtime'.containerd.runtimes]          [plugins.'io.containerd.cri.v1.runtime'.containerd.runtimes.runc]            runtime_type = 'io.containerd.runc.v2'            [plugins.'io.containerd.cri.v1.runtime'.containerd.runtimes.runc.options]              BinaryName = '/usr/local/sbin/runc'              SystemdCgroup =true      [plugins.'io.containerd.cri.v1.runtime'.cni]        bin_dir = '/opt/cni/bin'        conf_dir = '/etc/cni/net.d'

Dependencies

Optional dependencies (e.g. needed for Kubernetes):

You can use every otherrunc andCNI role of course.

Example Playbook

-hosts:your-hostroles:    -githubixx.containerd

More examples are available in theMolecule tests.

Testing

This role has a small test setup that is created usingMolecule, libvirt (vagrant-libvirt) and QEMU/KVM. Please see my blog postTesting Ansible roles with Molecule, libvirt (vagrant-libvirt) and QEMU/KVM how to setup. The test configuration ishere.

Afterwards molecule can be executed:

molecule converge

This will setup a few virtual machines (VM) with different supported Linux operating systems and installscontainerd,runc and theCNI plugins (which are needed by Kubernetes e.g.).

A small verification step is also included. It pulls a nginx container and runs it to make sure thatcontainerd is setup correctly and is able to run container images:

molecule verify

To clean up run

molecule destroy

License

GNU GENERAL PUBLIC LICENSE Version 3

Author Information

http://www.tauceti.blog

About

Ansible role to install containerd

Topics

Resources

Stars

Watchers

Forks

Packages

No packages published

Contributors3

  •  
  •  
  •  

Languages

[8]ページ先頭
©2009-2025 Movatter.jp