Page MenuHomePhabricator
Create Task
Maniphest T147181

Docker installation for production kubernetes
Closed, ResolvedPublic
Actions

Description

Docker should be installable in production so that our kubernetes cluster can work.

We already have a docker::engine class that is used in toollabs, but it has several issues for production use:

  • It uses directly the dockerproject.org apt repository
  • It uses a labs-specific script to configure docker to use a non-loopback devicemapper
  • In production, partitioning is done differently and probably we will have to take that into account when partitioning a system on startup.

We will need to address all of these issues before we can use the same puppet code in production.

Details

SubjectRepoBranchLines +/-
nrpe: use main_ipaddress, not the ipaddress factoperations/puppetproduction+2 -2
docker::engine: add dependency of the service on the storageoperations/puppetproduction+2 -0
docker: refactor the storage setup, allow thick poolsoperations/puppetproduction+173 -78
profile::docker::engine: fixups to lvm configurationoperations/puppetproduction+15 -4
kubernetes: introduce 1st-stage worker roleoperations/puppetproduction+198 -0
Customize query in gerrit

Related Objects
Search...

Event Timeline

Joe created this task.Oct 3 2016, 10:47 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptOct 3 2016, 10:47 AM
yuvipanda added a comment.Oct 3 2016, 11:02 AM

Yeah, I think it should be refactored into multiple classes based on their functionality. Also if we use devicemapper graphdriver in prod, the script *could* be adapted to work on it - I'm not entirely sure if partman allows direct configuration of lvs.

yuvipanda added a comment.Oct 3 2016, 11:11 AM

Another option would be to use overlayfs2 driver available in Docker 1.12, with a recent (4.5+) kernel.

Joe added projects: Prod-Kubernetes, Kubernetes-production-experiment.Oct 5 2016, 7:51 AM
Joe claimed this task.Oct 5 2016, 8:51 AM
Joe triaged this task as High priority.
Joe moved this task from Backlog to Doing on the User-Joe board.
Joe created subtask T147402: Investigate ways to deploy docker to production.Oct 5 2016, 9:02 AM
Joe moved this task from Doing to Backlog on the User-Joe board.
Joe moved this task from Backlog to Doing on the User-Joe board.Oct 5 2016, 10:16 AM
Joe moved this task from Doing to Blocked on others on the User-Joe board.Oct 7 2016, 6:33 AM
Joe changed the status of subtask T147402: Investigate ways to deploy docker to production from Open to Stalled.Oct 11 2016, 5:18 PM
Joe moved this task from Blocked on others to Doing on the User-Joe board.
gerritbot subscribed.Oct 13 2016, 6:21 PM

Change 315717 had a related patch set uploaded (by Giuseppe Lavagetto):
kubernetes: introduce 1st-stage worker role

https://gerrit.wikimedia.org/r/315717

gerritbot added a project: Patch-For-Review.Oct 13 2016, 6:21 PM
gerritbot added a comment.Oct 20 2016, 7:48 AM

Change 315717 merged by Giuseppe Lavagetto:
kubernetes: introduce 1st-stage worker role

https://gerrit.wikimedia.org/r/315717

gerritbot added a comment.Oct 21 2016, 10:03 AM

Change 317130 had a related patch set uploaded (by Giuseppe Lavagetto):
nrpe: use main_ipaddress, not the ipaddress fact

https://gerrit.wikimedia.org/r/317130

gerritbot added a comment.Oct 21 2016, 10:32 AM

Change 317131 had a related patch set uploaded (by Giuseppe Lavagetto):
profile::docker::engine: fixups to lvm configuration

https://gerrit.wikimedia.org/r/317131

gerritbot added a comment.Oct 21 2016, 10:46 AM

Change 317131 merged by Giuseppe Lavagetto:
profile::docker::engine: fixups to lvm configuration

https://gerrit.wikimedia.org/r/317131

Joe added a comment.Oct 21 2016, 3:02 PM

The production installation of docker seemed to work well, until I rebooted the servers for a final test and stumbled upon this problem:

https://github.com/docker/docker/issues/15629

so at least for jessie, thick pools it is!

gerritbot added a comment.Oct 24 2016, 9:25 AM

Change 317475 had a related patch set uploaded (by Giuseppe Lavagetto):
docker: refactor the storage setup, allow thick pools

https://gerrit.wikimedia.org/r/317475

gerritbot added a comment.Oct 24 2016, 9:28 AM

Change 317475 merged by Giuseppe Lavagetto:
docker: refactor the storage setup, allow thick pools

https://gerrit.wikimedia.org/r/317475

gerritbot added a comment.Oct 24 2016, 10:08 AM

Change 317478 had a related patch set uploaded (by Giuseppe Lavagetto):
docker::engine: add dependency of the service on the storage

https://gerrit.wikimedia.org/r/317478

gerritbot added a comment.Oct 24 2016, 10:16 AM

Change 317478 merged by Giuseppe Lavagetto:
docker::engine: add dependency of the service on the storage

https://gerrit.wikimedia.org/r/317478

gerritbot added a comment.Oct 24 2016, 11:58 AM

Change 317130 merged by Giuseppe Lavagetto:
nrpe: use main_ipaddress, not the ipaddress fact

https://gerrit.wikimedia.org/r/317130

Joe closed this task as Resolved.Oct 24 2016, 1:13 PM
Joe closed subtask T147402: Investigate ways to deploy docker to production as Resolved.Jan 24 2017, 8:35 AM
Phabricator_maintenance removed a subscriber: yuvipanda.Jun 7 2017, 6:40 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL