viatcheslavmogilevsky · March 29, 2024 07:14
diff --git a/Running_SI_local_stack_using_lima-vm.md b/Running_SI_local_stack_using_lima-vm.md
diff --git a/si-dev-profile.yaml b/si-dev-profile.yaml
 # A template to use Docker instead of containerd & nerdctl
 # $ limactl start ./docker.yaml
 # $ limactl shell docker docker run -it -v $HOME:$HOME --rm alpine

 # To run `docker` on the host (assumes docker-cli is installed):
 # $ export DOCKER_HOST=$(limactl list docker --format 'unix://{{.Dir}}/sock/docker.sock')
 # $ docker ...

 # This template requires Lima v0.8.0 or later
 images:
  # Try to use release-yyyyMMdd image if available. Note that release-yyyyMMdd will be removed after several months.
  - location: "https://cloud-images.ubuntu.com/releases/22.04/release-20230729/ubuntu-22.04-server-cloudimg-amd64.img"
    arch: "x86_64"
    digest: "sha256:d5b419272e01cd69bfc15cbbbc5700d2196242478a54b9f19746da3a1269b7c8"
  - location: "https://cloud-images.ubuntu.com/releases/22.04/release-20230729/ubuntu-22.04-server-cloudimg-arm64.img"
    arch: "aarch64"
    digest: "sha256:5ecab49ff44f8e44954752bc9ef4157584b7bdc9e24f06031e777f60860a9d17"
  # Fallback to the latest release image.
  # Hint: run `limactl prune` to invalidate the cache
  - location: "https://cloud-images.ubuntu.com/releases/22.04/release/ubuntu-22.04-server-cloudimg-amd64.img"
    arch: "x86_64"
  - location: "https://cloud-images.ubuntu.com/releases/22.04/release/ubuntu-22.04-server-cloudimg-arm64.img"
    arch: "aarch64"
 mounts:
  - location: "~"
  - location: "/tmp/lima"
    writable: true
 # containerd is managed by Docker, not by Lima, so the values are set to false here.
 containerd:
  system: false
  user: false
 # SPECIFIC: by default disk is set to 100GiB, let's see is 64GiB is sufficient
 disk: 64GiB
 # SPECIFIC: this is need to keep running all services in the stack
 memory: 8GiB

 provision:
  - mode: system
    # This script defines the host.docker.internal hostname when hostResolver is disabled.
    # It is also needed for lima 0.8.2 and earlier, which does not support hostResolver.hosts.
    # Names defined in /etc/hosts inside the VM are not resolved inside containers when
    # using the hostResolver; use hostResolver.hosts instead (requires lima 0.8.3 or later).
    script: |
      #!/bin/sh
      sed -i 's/host.lima.internal.*/host.lima.internal host.docker.internal/' /etc/hosts
  - mode: system
    script: |
      #!/bin/bash
      set -eux -o pipefail
      command -v docker >/dev/null 2>&1 && exit 0
      export DEBIAN_FRONTEND=noninteractive
      curl -fsSL https://get.docker.com | sh
      # NOTE: you may remove the lines below, if you prefer to use rootful docker, not rootless
      systemctl disable --now docker
      apt-get install -y uidmap dbus-user-session
  - mode: user
    script: |
      #!/bin/bash
      set -eux -o pipefail
      systemctl --user start dbus
      dockerd-rootless-setuptool.sh install
      docker context use rootless
  # SPECIFIC: install nix+direnv
  - mode: user
    script: |
      #!/bin/bash
      curl --proto '=https' --tlsv1.2 -sSf -L https://install.determinate.systems/nix | sh -s -- install linux --no-confirm
      . /nix/var/nix/profiles/default/etc/profile.d/nix-daemon.sh
      nix profile install nixpkgs#direnv
      if ! grep -q -F "eval \"\$(direnv hook bash)\"" ~/.bashrc; then
        echo "eval \"\$(direnv hook bash)\"" >> ~/.bashrc
      fi
 probes:
  - script: |
      #!/bin/bash
      set -eux -o pipefail
      if ! timeout 30s bash -c "until command -v docker >/dev/null 2>&1; do sleep 3; done"; then
        echo >&2 "docker is not installed yet"
        exit 1
      fi
      if ! timeout 30s bash -c "until pgrep rootlesskit; do sleep 3; done"; then
        echo >&2 "rootlesskit (used by rootless docker) is not running"
        exit 1
      fi
    hint: See "/var/log/cloud-init-output.log". in the guest
 hostResolver:
  # hostResolver.hosts requires lima 0.8.3 or later. Names defined here will also
  # resolve inside containers, and not just inside the VM itself.
  hosts:
    host.docker.internal: host.lima.internal
 portForwards:
  - guestSocket: "/run/user/{{.UID}}/docker.sock"
    hostSocket: "{{.Dir}}/sock/docker.sock"
  # SPECIFIC expose ports from services
  - guestPort: 10350
  - guestPort: 4222
  - guestPort: 8222
  - guestPort: 16686
  - guestPort: 55679
  - guestPort: 8080
 message: |-
  To run `docker` on the host (assumes docker-cli is installed), run the following commands:
  ------
  docker context create lima-{{.Name}} --docker "host=unix://{{.Dir}}/sock/docker.sock"
  docker context use lima-{{.Name}}
  docker run hello-world
  ------
	# A template to use Docker instead of containerd & nerdctl
	# $ limactl start ./docker.yaml
	# $ limactl shell docker docker run -it -v $HOME:$HOME --rm alpine

	# To run `docker` on the host (assumes docker-cli is installed):
	# $ export DOCKER_HOST=$(limactl list docker --format 'unix://{{.Dir}}/sock/docker.sock')
	# $ docker ...

	# This template requires Lima v0.8.0 or later
	images:
	# Try to use release-yyyyMMdd image if available. Note that release-yyyyMMdd will be removed after several months.
	- location: "https://cloud-images.ubuntu.com/releases/22.04/release-20230729/ubuntu-22.04-server-cloudimg-amd64.img"
	arch: "x86_64"
	digest: "sha256:d5b419272e01cd69bfc15cbbbc5700d2196242478a54b9f19746da3a1269b7c8"
	- location: "https://cloud-images.ubuntu.com/releases/22.04/release-20230729/ubuntu-22.04-server-cloudimg-arm64.img"
	arch: "aarch64"
	digest: "sha256:5ecab49ff44f8e44954752bc9ef4157584b7bdc9e24f06031e777f60860a9d17"
	# Fallback to the latest release image.
	# Hint: run `limactl prune` to invalidate the cache
	- location: "https://cloud-images.ubuntu.com/releases/22.04/release/ubuntu-22.04-server-cloudimg-amd64.img"
	arch: "x86_64"
	- location: "https://cloud-images.ubuntu.com/releases/22.04/release/ubuntu-22.04-server-cloudimg-arm64.img"
	arch: "aarch64"
	mounts:
	- location: "~"
	- location: "/tmp/lima"
	writable: true
	# containerd is managed by Docker, not by Lima, so the values are set to false here.
	containerd:
	system: false
	user: false
	# SPECIFIC: by default disk is set to 100GiB, let's see is 64GiB is sufficient
	disk: 64GiB
	# SPECIFIC: this is need to keep running all services in the stack
	memory: 8GiB

	provision:
	- mode: system
	# This script defines the host.docker.internal hostname when hostResolver is disabled.
	# It is also needed for lima 0.8.2 and earlier, which does not support hostResolver.hosts.
	# Names defined in /etc/hosts inside the VM are not resolved inside containers when
	# using the hostResolver; use hostResolver.hosts instead (requires lima 0.8.3 or later).
	script: \|
	#!/bin/sh
	sed -i 's/host.lima.internal.*/host.lima.internal host.docker.internal/' /etc/hosts
	- mode: system
	script: \|
	#!/bin/bash
	set -eux -o pipefail
	command -v docker >/dev/null 2>&1 && exit 0
	export DEBIAN_FRONTEND=noninteractive
	curl -fsSL https://get.docker.com \| sh
	# NOTE: you may remove the lines below, if you prefer to use rootful docker, not rootless
	systemctl disable --now docker
	apt-get install -y uidmap dbus-user-session
	- mode: user
	script: \|
	#!/bin/bash
	set -eux -o pipefail
	systemctl --user start dbus
	dockerd-rootless-setuptool.sh install
	docker context use rootless
	# SPECIFIC: install nix+direnv
	- mode: user
	script: \|
	#!/bin/bash
	curl --proto '=https' --tlsv1.2 -sSf -L https://install.determinate.systems/nix \| sh -s -- install linux --no-confirm
	. /nix/var/nix/profiles/default/etc/profile.d/nix-daemon.sh
	nix profile install nixpkgs#direnv
	if ! grep -q -F "eval \"\$(direnv hook bash)\"" ~/.bashrc; then
	echo "eval \"\$(direnv hook bash)\"" >> ~/.bashrc
	fi
	probes:
	- script: \|
	#!/bin/bash
	set -eux -o pipefail
	if ! timeout 30s bash -c "until command -v docker >/dev/null 2>&1; do sleep 3; done"; then
	echo >&2 "docker is not installed yet"
	exit 1
	fi
	if ! timeout 30s bash -c "until pgrep rootlesskit; do sleep 3; done"; then
	echo >&2 "rootlesskit (used by rootless docker) is not running"
	exit 1
	fi
	hint: See "/var/log/cloud-init-output.log". in the guest
	hostResolver:
	# hostResolver.hosts requires lima 0.8.3 or later. Names defined here will also
	# resolve inside containers, and not just inside the VM itself.
	hosts:
	host.docker.internal: host.lima.internal
	portForwards:
	- guestSocket: "/run/user/{{.UID}}/docker.sock"
	hostSocket: "{{.Dir}}/sock/docker.sock"
	# SPECIFIC expose ports from services
	- guestPort: 10350
	- guestPort: 4222
	- guestPort: 8222
	- guestPort: 16686
	- guestPort: 55679
	- guestPort: 8080
	message: \|-
	To run `docker` on the host (assumes docker-cli is installed), run the following commands:
	------
	docker context create lima-{{.Name}} --docker "host=unix://{{.Dir}}/sock/docker.sock"
	docker context use lima-{{.Name}}
	docker run hello-world
	------