Skip to content

README.md

Latest commit

 

History

History
102 lines (63 loc) · 6.28 KB

README.md

File metadata and controls

102 lines (63 loc) · 6.28 KB

Docker Static containers

A verbose description of our static docker container system can be found in the repository's FAQ

The purpose of this role

The DockerStatic ansible role provides allows us to automate the setup of our dockerhost machines using the dockerhost.yml playbook.

Our current Dockerhost machines

Setting up a new DockerStatic container with ansible (recommended method)

The dockerhost.yml playbook is used to deploy docker containers onto our dockerhost machines.

Example usage:

ansible-playbook -u root -i <host-file> AdoptOpenJDK_Unix_Playbook
/dockernode.yml -t "deploy" -e "docker_images=u2204,alp319,deb12"

The docker_images variable is where the user can specify which docker containers to deploy, using the dockerfiles avaiable here (which do get updated regularly).

The dockerhost.yml playbook can deploy single, multiple and duplicate containers, for example

-e "docker_images=u2204,alp319,u1804,u1804,u1804"

will deploy 1 Ubuntu 22.04 container, 1 Alpine 3.19 container and 3 Ubuntu 18.04 containers.

If you would like to build an arm32 container on an arm64 dockerhost, pass the build_arm32 variable:

ansible-playbook -u root -i <host-file> AdoptOpenJDK_Unix_Playbook
/dockernode.yml -t "deploy" -e "docker_images=u2204 build_arm32=yes"

Setting up a new DockerStatic container (manually)

If you would like to setup an individual container on one of these machines, follow these instructions:

docker build --cpu-period=100000 --cpu-quota=800000 -t {{ tag }} --memory=8G -f {{ Dockerfile }} .

docker run --restart unless-stopped -p {{ PORT }}:22 --cpus=2.0 --memory=6G --detach --name {{ name }} {{ tag }}

NOTE If you are creating a new container with the intention of replacing a container with an older OS, follow the above steps to create the new container. Then:

  • Stop the old container, docker stop {{ old container }}

  • Instead of creating a new node in Jenkins, simply modify the name and PORT number of the replaced node's entry in Jenkins accordingly

Retiring a DockerStatic container (automated)

The remove_container.yml role facilitates the removal of DockerStatic containers. Usage:

ansible-playbook -u root -i hosts AdoptOpenJDK_Unix_Playbook/dockernode.yml -t "remove" -e "delete_nodes=$NODE_1,$NODE_2,$NODE_3,..."

The hosts file should include the dockerhost machine which hosts the docker static nodes. Both the Jenkins nodes and the docker containers will be deleted (as long as the Jenkins nodes are idle).

Use the DockerInventory.json to lookup the docker static node names and the dockerhost machine to which they belong.

After the playbook deletes the nodes, please update the DockerInventory.json file by following the instructions here.

Patching

  • The static containers are patched daily using this script which runs on a daily cron job on each of the dockerhost machines.
  • The script goes into each container and updates every installed package using the container's package manager, yum, apk, apt etc.

Inventory

The current static docker inventory is listed in DockerInventory.json.

At the moment we update this file manually; we run the updateDockerStaticInventory.py script from the ansible/playbooks directory to find changes in our static docker inventory in jenkins:

python3 AdoptOpenJDK_Unix_Playbook/roles/DockerStatic/scripts/updateDockerStaticInventory.py $jenkins-username $jenkins-api-token

This script uses jenkinsapi which can be installed with pip install jenkinsapi.

If any changes are found, open a new branch and commit these changes in a pull request.