Nikita "lxd" package
The "lxd" package provides Nikita actions for various LXD operations.
Running the test
The tests require a local LXD client. On a Linux hosts, you can follow the installation instructions. On non Linux hosts, you can setup the client to communicate with a remote LXD server hosted on a virtual machine. You will however have to mount the project directory into the "/nikita" folder of the virtual machine. The provided Vagrantfile definition inside "@nikitajs/core/env/cluster/assets" will set you up.
# For windows and MacOS users
./bin/cluster start
npm testNotes
Networks
The LXD tests create two bridge networks:
- Nikita LXD public:
nktlxdpub,192.0.2.1/30(reserved IP subnet ssigned as TEST-NET-1) - Nikita LXD private:
nktlxdprv,192.0.2.5/30(reserved IP subnet ssigned as TEST-NET-1)
To avoid collision, other tests must create and use their own bridge.
Windows and MacOS users
LXD is only available on Linux. To work around this limitation, we run LXD in a virtual machine which is managed by Vagrant and VirtualBox.
The Nikita project folder is mounted in /nikita inside the VM. The LXD tests don't need to know about it because they only interact with the local lxc command. For the tests who need to know this path, the location of the Nikita folder inside the VM can be defined with export NIKITA_HOME=/nikita. For example, the FreeIPA tests in 'packages/ipa/env/ipa' use it.
The procedure is abstracted inside the ./bin/cluster start command. Below are the manual commands to make it work if you wish to do it yourself.
Install:
# Initialize the VM with multipass
# (compatible with macos silicon)
cd assets && ./multipass.sh && cd ..
# Initialize the VM with Vagrant
# cd assets && vagrant up && cd ..
# Set up LXD client
lxc remote add nikita 127.0.0.1:8443
lxc remote switch nikita
# Initialize the container
npx coffee start.coffeeUpdate the VM:
lxc remote switch local
lxc remote remove nikita
lxc remote add nikita --accept-certificate --password secret 127.0.0.1:8443
lxc remote switch nikitaWhen using a host VM, the test test/goodies/prlimit.coffee will fail because
it is expected to run on the LXC host machine and the not machine where Nikita
is executed. The property tags.lxd_prlimit must be false in test.coffee.
Permission denied on tmp
[1/29]: configuring certificate server instance
[error] IOError: [Errno 13] Permission denied: '/tmp/tmp_Tm1l_'Host must have fs.protected_regular set to 0, eg echo '0' > /proc/sys/fs/protected_regular && sysctl -p && sysctl -a. In our Physical -> VM -> LXD setup, the parameters shall be set in the VM, no restart is required to install the FreeIPA server, just uninstall it first with ipa-server-install --uninstall before re-executing the install command.
Actions
- lxc.cluster.stop
- lxc.cluster.delete
- lxc.config.device.delete
- lxc.config.device.exists
- lxc.config.device.show
- lxc.config.set
- lxc.init
- lxc.delete
- lxc.start
- lxc.state
- lxc.stop
- lxc.exec
- lxc.file.exists
- lxc.file.pull
- lxc.file.push
- lxc.file.read
- lxc.goodies.prlimit
- lxc.network.attach
- lxc.network.detach
- lxc.network.delete
- lxc.network.list
- lxc.query
- lxc.list
- lxc.running
- lxc.storage.delete
- lxc.storage.volume.delete
- lxc.storage.volume.list
- lxc.storage.volume.get
- lxc.storage.volume.attach
- lxc.wait.ready
- lxc.resources
- lxc.cluster
- lxc.config.device
- lxc.network
- lxc.network.create
- lxc.storage
- lxc.storage.volume