-
Notifications
You must be signed in to change notification settings - Fork 20
/
Copy pathVagrantfile
74 lines (68 loc) · 2.3 KB
/
Vagrantfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
CPUS = (ENV['LOCKC_VAGRANT_CPUS'] || 4).to_i
MEMORY = (ENV['LOCKC_VAGRANT_MEMORY'] || 8192).to_i
Vagrant.configure("2") do |config|
config.vm.box = "generic/ubuntu2204"
config.vm.synced_folder ".", "/vagrant", type: "rsync",
rsync__exclude: "target/"
config.vm.provider "virtualbox" do |v|
v.cpus = CPUS
v.memory = MEMORY
v.customize ["modifyvm", :id, "--audio", "none"]
end
config.vm.provider "libvirt" do |libvirt|
libvirt.cpus = CPUS
libvirt.memory = MEMORY
end
config.vm.provision "shell", inline: <<-SHELL
#!/usr/bin/env bash
set -eux
wget -O - https://apt.llvm.org/llvm-snapshot.gpg.key | apt-key add -
add-apt-repository 'deb http://apt.llvm.org/jammy/ llvm-toolchain-jammy main'
apt-get update
apt-get upgrade -y
apt-get dist-upgrade -y
apt-get install -y \
build-essential \
docker.io \
clang-15 \
linux-tools-generic \
lld-15
usermod -aG docker vagrant
sed -i 's/GRUB_CMDLINE_LINUX=\"\"/GRUB_CMDLINE_LINUX=\"lsm=lockdown,yama,bpf\"/' /etc/default/grub
update-grub
SHELL
config.vm.provision :reload
config.vm.provision "shell", privileged: false, inline: <<-SHELL
#!/usr/bin/env bash
set -eux
curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh -s -- -y
source $HOME/.cargo/env
rustup toolchain install nightly --component rust-src
cargo install bpf-linker
cargo install bindgen-cli
cargo install --git https://github.com/aya-rs/aya -- aya-tool
pushd /vagrant
cargo xtask build-ebpf
cargo build
cargo xtask install
popd
SHELL
config.vm.provision "shell", inline: <<-SHELL
systemctl enable --now lockc
SHELL
if ENV['LOCKC_VAGRANT_K8S'] == 'true'
config.vm.define "server" do |server|
server.vm.network "private_network", ip: "192.168.33.10"
server.vm.provision "shell", inline: <<-SHELL
curl -sfL https://get.k3s.io | K3S_TOKEN=mynodetoken sh -
SHELL
end
end
# TODO(vadorovsky): Enble agent when we deploy lockc with helm.
# config.vm.define "agent" do |agent|
# agent.vm.network "private_network", ip: "192.168.33.11"
# agent.vm.provision "shell", inline: <<-SHELL
# curl -sfL https://get.k3s.io | K3S_URL=https://192.168.33.10:6443 K3S_TOKEN=mynodetoken sh -
# SHELL
# end
end