Page MenuHomePhabricator
Create Task
Maniphest T316879

Make gVisor packages available via apt.wikimedia.org
Closed, ResolvedPublic
Actions

Description

I'd like to start by setting up gVisor on the Beta Cluster for the function-{evaluator,orchestrator} services that are running under Docker.

The gVisor packages are available here: https://gvisor.dev/docs/user_guide/install/#install-from-an-apt-repository

Details

SubjectRepoBranchLines +/-
aptrepo: add gvisor repositoryoperations/puppetproduction+41 -0
Customize query in gerrit

Related Objects
Search...

Event Timeline

ori created this task.Sep 1 2022, 3:50 PM
ori updated the task description. (Show Details)
Dzahn added a project: Infrastructure-Foundations.Sep 1 2022, 7:23 PM
Jdforrester-WMF subscribed.Sep 26 2022, 12:59 PM
jijiki moved this task from Incoming 🐫 to 🙈🙉🙊Backlog on the serviceops board.Sep 28 2022, 2:17 PM
Joe triaged this task as High priority.Oct 3 2022, 10:26 AM
Joe moved this task from 🙈🙉🙊Backlog to API Gateway 🥌 on the serviceops board.
Joe changed the task status from Open to In Progress.Oct 6 2022, 2:10 PM
Joe claimed this task.
Joe moved this task from API Gateway 🥌 to Doing 😎 on the serviceops board.
gerritbot added a comment.Oct 6 2022, 2:36 PM

Change 839597 had a related patch set uploaded (by Giuseppe Lavagetto; author: Giuseppe Lavagetto):

[operations/puppet@production] aptrepo: add gvisor repository

https://gerrit.wikimedia.org/r/839597

gerritbot added a project: Patch-For-Review.Oct 6 2022, 2:36 PM
gerritbot added a comment.Oct 6 2022, 2:43 PM

Change 839597 merged by Giuseppe Lavagetto:

[operations/puppet@production] aptrepo: add gvisor repository

https://gerrit.wikimedia.org/r/839597

Joe closed this task as Resolved.Oct 6 2022, 2:52 PM
$ docker run --rm -ti --entrypoint /bin/bash --user root docker-registry.wikimedia.org/buster
root@aaf61aa41436:/# echo 'deb http://apt.wikimedia.org/wikimedia buster-wikimedia thirdparty/gvisor' > /etc/apt/sources.list.d/gvisor.list
root@aaf61aa41436:/# apt-get update
[...]

root@aaf61aa41436:/# apt-get install runsc
Reading package lists... Done
Building dependency tree       
Reading state information... Done
The following NEW packages will be installed:
  runsc
Maintenance_bot removed a project: Patch-For-Review.Oct 6 2022, 3:29 PM
gerritbot added a comment.Oct 6 2022, 3:56 PM

Change 839632 had a related patch set uploaded (by Jforrester; author: Jforrester):

[mediawiki/services/function-evaluator@master] [WIP] Install gVisor on our test and run images

https://gerrit.wikimedia.org/r/839632

gerritbot added a project: Patch-For-Review.Oct 6 2022, 3:56 PM
Jdforrester-WMF added a comment.Oct 6 2022, 4:05 PM
In T316879#8292022, @gerritbot wrote:

Change 839632 had a related patch set uploaded (by Jforrester; author: Jforrester):

[mediawiki/services/function-evaluator@master] [WIP] Install gVisor on our test and run images

https://gerrit.wikimedia.org/r/839632

Wrong task, sorry!

ori added a comment.Oct 11 2022, 3:04 PM

@Joe the Wikifunctions Beta Cluster instance is running Bullseye -- could you also pull it in there?

ori added a comment.Oct 11 2022, 3:12 PM

Never mind, I see that it is available for Bullseye -- sorry.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL