-
Notifications
You must be signed in to change notification settings - Fork 8
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Suggestion and offer to help #617
Comments
Hello! Thank you for the offer to help. That sounds interesting, but I wasn't aware that it was possible to build and setup other docker containers from within a different docker container. While we know our deployments can be fragile at times and challenging to debug, we'd like to know more of how we could approach dockerizing the build process before trying it out. Do we know how difficult it would be to adjust our build scripts to run from within another Docker container? |
Since docker relies on the socket connection to be active in order to run in the first place, it's as simple as adding mounting the socket as a volume: This would also remove a strict dependency on docker to build, meaning podman can be used by just passing the podman socket in place of the docker one. It's all compatible, and would give no issues. This would also eliminate the need to have a full dev toolchain on the main host. If you are interested, I'd be happy to pull together a proof of concept for a PR. |
We'd still need Docker on the host then, but assuming this still works on everyone's machines this sounds promising. I'm definitely interested. |
I've put together a proof of concept Dockerfile, although I haven't been able to test it in all scenarios yet. The way it works is to build the container using the Dockerfile, and then run the built container passing in the container socket (podman or docker) and the environment file as volumes. podman run -it -v /var/run/podman/podman.sock:/var/run/docker.sock:rw,z -v $PWD/environment:/candig/.env:ro builder:latest It builds and starts the candig stack as expected, no more muddying up the host. More testing will be required of course, but I'm hoping this will harden the build process so it's not so fragile anymore. |
No matter if I run it with/without sudo or using postman/docker, I'm running into an issue with that where the Docker daemon is unreachable:
Unsure if there was more to building it other than the build steps outlined in that repo |
I realized after the fact, sorry. Been a few days since I did it myself, so I forgot, you do need the I have a bit more work to do until it's stable, and I'm doing that now. Will keep you posted about things. |
Hello @stobbsm ! We're still interested in incorporating your repo -- has there been any work on this in the meantime? |
There has been some, but unfortunately health and higher priority projects have taken precedence. # systemctl disable docker.socket && systemctl stop docker.socket && systemctl enable --now docker.service and then you can bind mount as a volume into the container. |
I'm working the UCalgary on the Candig stack (just back from sick leave), and would like to offer some help in containerizing the entire deployment and build process.
Right now, CanDIG relies on locally installed tools and packages, like conda, in order to build containers, manage the deployment, etc.
I'm proposing that everything be done inside containers, discarding the use of conda and local dependencies all together. Nothing being done currently by the build process has to be done outside of a container, and the current process can be quite fragile, and requiring a lot of time to investigate and repair when something breaks.
Please, if you are open to this, it would make things much easier and drop multiple dependencies that currently exist.
The text was updated successfully, but these errors were encountered: