From a5e77d5c949bab81ccca70b2f1eb0d28a051a305 Mon Sep 17 00:00:00 2001 From: Justin Alvarez Date: Wed, 13 Nov 2024 16:15:09 -0500 Subject: [PATCH 1/2] feat: add finch-daemon Signed-off-by: Justin Alvarez --- .gitmodules | 2 +- Makefile | 8 +++++++- Makefile.darwin | 22 +++++++++++++++++++++- deps/finch-core | 2 +- finch.yaml.d/common.yaml | 7 ++++++- finch.yaml.d/finch-daemon-mount.yaml | 3 +++ finch.yaml.d/mac.yaml | 16 ++++++++++++++-- finch@.service | 17 +++++++++++++++++ 8 files changed, 70 insertions(+), 7 deletions(-) create mode 100644 finch.yaml.d/finch-daemon-mount.yaml create mode 100644 finch@.service diff --git a/.gitmodules b/.gitmodules index f2ba058af..9c0d77b81 100644 --- a/.gitmodules +++ b/.gitmodules @@ -1,3 +1,3 @@ [submodule "finch-core"] path = deps/finch-core - url = https://github.com/runfinch/finch-core.git + url = https://github.com/pendo324/finch-core.git diff --git a/Makefile b/Makefile index 06e53cfc0..723c5d5f8 100644 --- a/Makefile +++ b/Makefile @@ -30,6 +30,9 @@ GITCOMMIT ?= $(shell git rev-parse HEAD)$(shell test -z "$(git status --porcelai LDFLAGS = "-w -X $(PACKAGE)/pkg/version.Version=$(VERSION) -X $(PACKAGE)/pkg/version.GitCommit=$(GITCOMMIT)" MIN_MACOS_VERSION ?= 11.0 +FINCH_DAEMON_LOCATION_ROOT ?= $(FINCH_OS_IMAGE_LOCATION_ROOT)/finch-daemon +FINCH_DAEMON_LOCATION ?= $(FINCH_DAEMON_LOCATION_ROOT)/finch-daemon + GOOS ?= $(shell $(GO) env GOOS) ifeq ($(GOOS),windows) BINARYNAME := $(addsuffix .exe, $(BINARYNAME)) @@ -61,7 +64,7 @@ endif FINCH_CORE_DIR := $(CURDIR)/deps/finch-core -remote-all: arch-test finch install.finch-core-dependencies finch.yaml networks.yaml config.yaml +remote-all: arch-test finch install.finch-core-dependencies finch.yaml networks.yaml config.yaml $(OUTDIR)/finch-daemon/finch@.service ifeq ($(BUILD_OS), Windows_NT) include Makefile.windows @@ -146,6 +149,9 @@ finch-all: .PHONY: release release: check-licenses all download-licenses +$(OUTDIR)/finch-daemon/finch@.service: + cp finch@.service $(OUTDIR)/finch-daemon/finch@.service + .PHONY: coverage coverage: go test $(shell go list ./... | grep -v e2e | grep -v benchmark | grep -v mocks) -coverprofile=test-coverage.out diff --git a/Makefile.darwin b/Makefile.darwin index cd74275f6..1b548f1a0 100644 --- a/Makefile.darwin +++ b/Makefile.darwin @@ -18,20 +18,40 @@ FINCH_OS_IMAGE_LOCATION_ROOT ?= $(DEST) FINCH_IMAGE_LOCATION := $(FINCH_OS_IMAGE_LOCATION_ROOT)/os/$(FINCH_OS_BASENAME) FINCH_IMAGE_DIGEST := "sha512:$(FINCH_OS_DIGEST)" +# check if finch-daemon socket is in a default path +SHOULD_ADD_DAEMON_MOUNT = $(shell if [[ $(FINCH_DAEMON_LOCATION_ROOT) = ^\/Users\/.* ]]; then echo "0"; else echo "1"; fi) + .PHONY: finch.yaml finch.yaml: $(OS_OUTDIR)/finch.yaml +# only add the finch-daemon mount when its not in a default path +# this scenario is common in dev, where the typical path is /Users/... +ifeq ($(SHOULD_ADD_DAEMON_MOUNT),0) +finch.yaml: add-daemon-mount +endif + $(OS_OUTDIR)/finch.yaml: $(OS_OUTDIR) finch.yaml.d/common.yaml finch.yaml.d/mac.yaml # merge the appropriate YAMLs into a temporary finch.yaml file on the current working directory - cd finch.yaml.d && yq eval-all '. as $$item ireduce ({}; . *+ $$item)' mac.yaml common.yaml > ../finch.yaml.temp + cd finch.yaml.d && yq eval-all '. as $$item ireduce ({}; . *+ $$item)' common.yaml mac.yaml > ./../finch.yaml.temp # using -i.bak is very intentional, it allows the following commands to succeed for both GNU / BSD sed # this sed command uses the alternative separator of "|" because the image location uses "/" sed -i.bak -e "s||$(FINCH_IMAGE_LOCATION)|g" finch.yaml.temp sed -i.bak -e "s//$(LIMA_ARCH)/g" finch.yaml.temp sed -i.bak -e "s//$(FINCH_IMAGE_DIGEST)/g" finch.yaml.temp + sed -i.bak -e "s||$(FINCH_DAEMON_LOCATION_ROOT)|g" finch.yaml.temp + sed -i.bak -e "s||$(FINCH_DAEMON_LOCATION)|g" finch.yaml.temp # Replacement was successful, so cleanup .bak @rm finch.yaml.temp.bak mv finch.yaml.temp $@ + +.PHONY: add-daemon-mount +add-daemon-mount: + cd finch.yaml.d && yq eval-all '. as $$item ireduce ({}; . *+ $$item)' $(OS_OUTDIR)/finch.yaml finch-daemon-mount.yaml > ./../finch.yaml.temp + sed -i.bak -e "s||$(FINCH_DAEMON_LOCATION_ROOT)|g" finch.yaml.temp + # Replacement was successful, so cleanup .bak + @rm finch.yaml.temp.bak + + mv finch.yaml.temp $(OS_OUTDIR)/finch.yaml \ No newline at end of file diff --git a/deps/finch-core b/deps/finch-core index 86c302f8d..d126bee32 160000 --- a/deps/finch-core +++ b/deps/finch-core @@ -1 +1 @@ -Subproject commit 86c302f8d8d34088b45946f654f6568a4b81143a +Subproject commit d126bee32378412460e37dbc91c20f6ca1baba92 diff --git a/finch.yaml.d/common.yaml b/finch.yaml.d/common.yaml index 52335af41..ab9157681 100644 --- a/finch.yaml.d/common.yaml +++ b/finch.yaml.d/common.yaml @@ -85,8 +85,13 @@ provision: printf '[Unit]\nDescription=Delete hanging data on boot\nDefaultDependencies=no\nBefore=basic.target\n\n[Service]\nType=oneshot\nExecStart=/bin/bash -c "sudo rm -rf /var/lib/cni/networks/bridge/**; sudo rm -rf /var/lib/cni/results/bridge-finch-*"\n\n[Install]\nWantedBy=basic.target\n' | sudo tee /usr/local/lib/systemd/system/finch-cleanup-on-boot.service sudo systemctl enable --now finch-cleanup-on-boot.service - sudo systemctl restart containerd.service + # Set a default ulimit for number of files in containerd + sudo mkdir -p /usr/local/lib/systemd/system/containerd.service.d/ + printf '[Service]\nLimitNOFILE=1048576\n' | sudo tee /usr/local/lib/systemd/system/containerd.service.d/finch.conf + + sudo systemctl daemon-reload + sudo systemctl restart containerd.service env: # Containerd namespace is used by the lima cidata script # 40-install-containerd.sh. Specifically this variable is defining the diff --git a/finch.yaml.d/finch-daemon-mount.yaml b/finch.yaml.d/finch-daemon-mount.yaml new file mode 100644 index 000000000..5a6725bf9 --- /dev/null +++ b/finch.yaml.d/finch-daemon-mount.yaml @@ -0,0 +1,3 @@ +mounts: + - location: "" + writable: true diff --git a/finch.yaml.d/mac.yaml b/finch.yaml.d/mac.yaml index 56f80ad35..b173016bd 100644 --- a/finch.yaml.d/mac.yaml +++ b/finch.yaml.d/mac.yaml @@ -7,6 +7,14 @@ provision: - mode: boot script: | modprobe virtiofs + # port this to common.yaml after windows socket forwarding is added + - mode: user + script: | + sudo cp /usr/local/bin/finch-daemon + sudo cp /finch@.service /usr/local/lib/systemd/system/finch@.service + + sudo systemctl daemon-reload + sudo systemctl enable --now finch@${UID} mounts: - location: "~" mountPoint: null @@ -22,9 +30,9 @@ mounts: cache: "fscache" - location: "/tmp/lima" writable: true - - location: "/var/folders" + - location: "/private" writable: true - - location: "/private/var/folders" + - location: "/var/folders" writable: true ssh: @@ -44,3 +52,7 @@ hostResolver: hosts: host.finch.internal: host.lima.internal host.docker.internal: host.lima.internal + +portForwards: +- guestSocket: "/run/finch.sock" + hostSocket: "{{.Dir}}/sock/finch.sock" diff --git a/finch@.service b/finch@.service new file mode 100644 index 000000000..53bcd4467 --- /dev/null +++ b/finch@.service @@ -0,0 +1,17 @@ +[Unit] +Description=Finch daemon %I +Documentation=https://runfinch.com https://github.com/runfinch/finch-daemon +After=network.target local-fs.target containerd.service + +[Service] +ExecStart=/usr/local/bin/finch-daemon --socket-owner %i +ExecStartPost=-rm -rf /var/run/docker.sock +ExecStartPost=ln -s /run/finch.sock /var/run/docker.sock + +Type=notify +Delegate=yes +Restart=always +RestartSec=5 + +[Install] +WantedBy=multi-user.target From 1da9e94c16df9ee8ce95d9883e72bd61ef4cd082 Mon Sep 17 00:00:00 2001 From: Subhransu <47723536+Shubhranshu153@users.noreply.github.com> Date: Thu, 5 Dec 2024 23:40:45 +0530 Subject: [PATCH 2/2] Update .gitmodules path --- .gitmodules | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.gitmodules b/.gitmodules index 9c0d77b81..f2ba058af 100644 --- a/.gitmodules +++ b/.gitmodules @@ -1,3 +1,3 @@ [submodule "finch-core"] path = deps/finch-core - url = https://github.com/pendo324/finch-core.git + url = https://github.com/runfinch/finch-core.git