Lots of fixes:

  - removed heat from devstack installation (not used so want to save space)
  - setup docker to use zfs for backing store
  - setup docker to bind to port 192.168.27.100:2375 (now you can use your local docker install to execute commands on stackinabox)
  - setup docker to allow ipv4 port forwarding
  - setup docker to use 192.168.27.100 as default for all port bindings
  - setup docker to use lxd's lxdbr0 network bridge by default
  - comment out custimizations to dhclient.conf (not sure if they were even being used)
  - updated vagrant/build.sh file to expect execution from the vagrant folder (previously it expected to be called from the root folder which I found to be confusing so I changed it)
  - add a new disk to hold the /var/lib/docker zfs backing store (dynamic disk that will grow as needed up to 500GB)

Author: Tim Pouyer

lxc-cloud-images/import-images.sh

@@ -12,28 +12,28 @@ glance image-create --name 'ubuntu-1404-server-cloudimg-amd64' \
 	--property os_version=14.04 \
 	--property vm_mode=exe < trusty-server-cloudimg-amd64-root.tar.xz
 
-echo "downloading xenial-server-cloudimg-amd64-root.tar.xz image archive for import"
-wget -Nv https://cloud-images.ubuntu.com/xenial/current/xenial-server-cloudimg-amd64-root.tar.xz
-glance image-create --name 'ubuntu-1604-server-cloudimg-amd64' \
-	--container-format bare \
-	--disk-format raw \
-	--visibility public \
-	--min-disk 1 \
-	--property architecture=x86_64 \
-	--property hypervisor_type=lxc \
-	--property os_distro=ubuntu \
-	--property os_version=16.04 \
-	--property vm_mode=exe < xenial-server-cloudimg-amd64-root.tar.xz
+# echo "downloading xenial-server-cloudimg-amd64-root.tar.xz image archive for import"
+# wget -Nv https://cloud-images.ubuntu.com/xenial/current/xenial-server-cloudimg-amd64-root.tar.xz
+# glance image-create --name 'ubuntu-1604-server-cloudimg-amd64' \
+# 	--container-format bare \
+# 	--disk-format raw \
+# 	--visibility public \
+# 	--min-disk 1 \
+# 	--property architecture=x86_64 \
+# 	--property hypervisor_type=lxc \
+# 	--property os_distro=ubuntu \
+# 	--property os_version=16.04 \
+# 	--property vm_mode=exe < xenial-server-cloudimg-amd64-root.tar.xz
 
-echo "downloading xenial-server-cloudimg-amd64-heat-cfntools-root.tar.xz image archive for import"
+# echo "downloading xenial-server-cloudimg-amd64-heat-cfntools-root.tar.xz image archive for import"
 #wget -Nv https://cloud-images.ubuntu.com/xenial/current/xenial-server-cloudimg-amd64-root.tar.xz
-glance image-create --name 'ubuntu-1604-server-cloudimg-amd64-heat-cfntools' \
-	--container-format bare \
-	--disk-format raw \
-	--visibility public \
-	--min-disk 1 \
-	--property architecture=x86_64 \
-	--property hypervisor_type=lxc \
-	--property os_distro=ubuntu \
-	--property os_version=16.04 \
-	--property vm_mode=exe < ubuntu-1604-amd64-heat-cfntools.tar.xz
+# glance image-create --name 'ubuntu-1604-server-cloudimg-amd64-heat-cfntools' \
+# 	--container-format bare \
+# 	--disk-format raw \
+# 	--visibility public \
+# 	--min-disk 1 \
+# 	--property architecture=x86_64 \
+# 	--property hypervisor_type=lxc \
+# 	--property os_distro=ubuntu \
+# 	--property os_version=16.04 \
+# 	--property vm_mode=exe < ubuntu-1604-amd64-heat-cfntools.tar.xz

scripts/docker/heat.sh

@@ -3,16 +3,16 @@
 # set release branch to retrieve from git
 RELEASE_BRANCH=${1:-master}
 
-cd /tmp
-git clone -b $RELEASE_BRANCH https://github.com/openstack/heat.git
-cd heat/contrib/heat_docker/
-sudo pip install -r requirements.txt
-sudo mkdir -p /var/lib/heat
-sudo cp -r heat_docker/ /var/lib/heat
-sudo chown -R vagrant:vagrant /var/lib/heat
-sudo sed -i 's|rpc_backend = rabbit|rpc_backend = rabbit \
-plugin_dirs = /var/lib/heat|g' /etc/heat/heat.conf
-sudo chown -R vagrant:vagrant /var/lib/heat
+# cd /tmp
+# git clone -b $RELEASE_BRANCH https://github.com/openstack/heat.git
+# cd heat/contrib/heat_docker/
+# sudo pip install -r requirements.txt
+# sudo mkdir -p /var/lib/heat
+# sudo cp -r heat_docker/ /var/lib/heat
+# sudo chown -R vagrant:vagrant /var/lib/heat
+# sudo sed -i 's|rpc_backend = rabbit|rpc_backend = rabbit \
+# plugin_dirs = /var/lib/heat|g' /etc/heat/heat.conf
+# sudo chown -R vagrant:vagrant /var/lib/heat
 
 source /home/vagrant/admin-openrc.sh labstack
 nova flavor-key m1.tiny set lxd_docker_allowed=true

scripts/minimize/clean.sh

@@ -1,30 +1,34 @@
 #!/bin/bash -ux
 
 # delete all linux headers
-#dpkg --list | awk '{ print $2 }' | grep linux-headers | xargs apt-get -y purge
+#dpkg --list | awk '{ print $2 }' | grep linux-headers-4*- | grep -v `uname -r` | xargs apt-get -y purge
+sudo dpkg --list | awk '{ print $2 }' | grep linux-headers-4-* | grep -v 4.4.0-36 | sudo xargs apt-get purge
 
 # this removes specific linux kernels, such as
 # linux-image-3.11.0-15-generic but 
 # * keeps the current kernel
 # * does not touch the virtual packages, e.g.'linux-image-generic', etc.
 #
-#dpkg --list | awk '{ print $2 }' | grep 'linux-image-3.*-generic' | grep -v `uname -r` | xargs apt-get -y purge
+dpkg --list | awk '{ print $2 }' | grep 'linux-image-4.*-generic' | grep -v `uname -r` | sudo xargs apt-get -y purge
 
 # delete linux source
-#dpkg --list | awk '{ print $2 }' | grep linux-source | xargs apt-get -y purge
+dpkg --list | awk '{ print $2 }' | grep linux-source | sudo xargs apt-get -y purge
 
 # delete development packages
-sudo dpkg --list | awk '{ print $2 }' | grep -- '-dev$' | xargs sudo apt-get -qqy purge
+sudo dpkg --list | awk '{ print $2 }' | grep -- '-dev$' | sudo xargs apt-get -qqy purge
 
-# delete compilers and other development tools
-#apt-get -y purge cpp gcc g++
+# delete compilers and other development tools (can't do this otherwise dkms* dynamic kernel modules will be removed')
+#sudo apt-get -y purge cpp gcc g++
 
 # delete X11 libraries
-sudo apt-get -qqy purge libx11-data libxmuu1 libx11-6 libxext6
+sudo apt-get -qqy purge libx11-data x11-common
 
 # delete obsolete networking
 sudo apt-get -qqy purge ppp pppconfig pppoeconf
 
+# clean up other stuff
+sudo apt-get -qqy man xkb-data libx11-data eject locales radvd 
+
 # delete oddities
 sudo apt-get -qqy purge popularity-contest
 

scripts/stackinabox/init.sh

@@ -16,12 +16,25 @@ echo ""
 # Disable interactive options when installing with apt-get
 export DEBIAN_FRONTEND=noninteractive
 
-echo export LC_ALL=en_US.UTF-8 >> ~/.bash_profile
-echo export LANG=en_US.UTF-8 >> ~/.bash_profile
+echo export LC_ALL=C.UTF-8 >> ~/.bash_profile
+echo export LANG=C.UTF-8 >> ~/.bash_profile
+
+sudo bash -c 'cat > /etc/apt/apt.conf.d/01lean' <<'EOF'
+APT::Install-Suggests "0";
+APT::Install-Recommends "0";
+APT::AutoRemove::SuggestsImportant "false";
+APT::AutoRemove::RecommendsImportant "false";
+EOF
 
 echo Updating...
+sudo apt-get -qqy update
+sudo apt-get install -qqy linux-headers-$(uname -r) \
+  linux-headers-generic \
+  linux-image-extra-$(uname -r) \
+  linux-image-extra-virtual
+
 sudo apt-get -y update
-sudo apt-get install -y zfsutils-linux git
+sudo apt-get -qqy install zfsutils-linux git
 
 echo "Creating ZFS for lxd"
 sudo zpool create -m /var/lib/lxd -f lxd sdb
@@ -31,8 +44,14 @@ sudo touch /etc/init/zpool-import.conf
 sudo sed -i 's/modprobe zfs zfs_autoimport_disable=1/modprobe zfs zfs_autoimport_disable=0/g' /etc/init/zpool-import.conf
 sudo sed -i 's/# By default this script does nothing./zfs mount -a/g' /etc/rc.local
 
+echo "Creating ZFS for docker"
+sudo zpool create -m /var/lib/docker -f docker sdc
+sudo zpool set feature@lz4_compress=enabled docker
+sudo zfs set compression=lz4 docker
+sudo touch /etc/init/zpool-import.conf
+
 echo "Install LXD and initialize with ZFS storage-pool 'lxd' for backend"
-sudo apt-get install -y lxd
+sudo apt-get install -y lxd lxd-client
 sudo lxd init --auto --storage-backend zfs --storage-pool lxd
 
 # flip the module parameters to enable user namespace mounts for fuse and/or ext4 within lxd containers
@@ -84,28 +103,28 @@ EOF
 
 sudo hostname openstack
 
-# speed up DNS resolution
-sudo bash -c 'cat > /etc/dhcp/dhclient.conf' <<EOF
-timeout 30;
-retry 10;
-reboot 0;
-select-timeout 0;
-initial-interval 1;
-backoff-cutoff 2;
-interface "enp0s3"
-{
-  prepend domain-name-servers 8.8.8.8, 8.8.4.4;
-  request subnet-mask,
-          broadcast-address,
-          time-offset,
-          routers,
-          domain-name,
-          domain-name-servers,
-          host-name,
-          netbios-name-servers,
-          netbios-scope;
-}
-EOF
+# # speed up DNS resolution
+# sudo bash -c 'cat > /etc/dhcp/dhclient.conf' <<EOF
+# timeout 30;
+# retry 10;
+# reboot 0;
+# select-timeout 0;
+# initial-interval 1;
+# backoff-cutoff 2;
+# interface "enp0s3"
+# {
+#   prepend domain-name-servers 8.8.8.8, 8.8.4.4;
+#   request subnet-mask,
+#           broadcast-address,
+#           time-offset,
+#           routers,
+#           domain-name,
+#           domain-name-servers,
+#           host-name,
+#           netbios-name-servers,
+#           netbios-scope;
+# }
+# EOF
 
 echo enable cgroup memory limits
 sudo sed -i 's/GRUB_CMDLINE_LINUX_DEFAULT="/GRUB_CMDLINE_LINUX_DEFAULT="cgroup_enable=memory swapaccount=1 /g' /etc/default/grub
@@ -180,11 +199,19 @@ sudo update-rc.d devstack start 98 2 3 4 5 . stop 02 0 1 6 .
 # Script only works if sudo caches the password for a few minutes
 sudo true
 
-# Install kernel extra's to enable docker aufs support
-sudo apt-get -y install linux-image-extra-$(uname -r)
-
 # install docker
-wget -qO- https://get.docker.com/ | sh
+sudo apt-get update
+sudo apt-get install -qqy apt-transport-https ca-certificates
+sudo apt-key adv --keyserver hkp://p80.pool.sks-keyservers.net:80 --recv-keys 58118E89F3A912897C070ADBF76221572C52609D
+
+sudo touch /etc/apt/sources.list.d/docker.list
+sudo bash -c 'echo "deb https://apt.dockerproject.org/repo ubuntu-xenial main" > /etc/apt/sources.list.d/docker.list'
+
+sudo apt-get update
+sudo apt-get purge lxc-docker
+
+sudo apt-get update
+sudo apt-get install -qqy docker-engine
 
 # Install docker-compose
 COMPOSE_VERSION=`git ls-remote https://github.com/docker/compose | grep refs/tags | grep -oP "[0-9]+\.[0-9]+\.[0-9]+$" | tail -n 1`
@@ -198,6 +225,51 @@ sudo chmod +x /usr/local/bin/docker-cleanup
 
 # add vagrant user to docker group
 sudo usermod -aG docker vagrant
+newgrp docker
+
+# have docker listen on a port instead of a unix socket for remote administration
+sudo bash -c 'cat > /etc/systemd/system/docker.socket' <<'EOF'
+[Socket]
+ListenStream=0.0.0.0:2375
+EOF
+
+sudo mkdir -p /etc/systemd/system/docker.service.d
+
+# have docker utilze lxc to launch containers
+sudo bash -c 'cat > /etc/systemd/system/docker.service.d/lxc.conf' <<'EOF'
+[Service]
+ExecStart=
+ExecStart=/usr/bin/dockerd -H fd:// --ip 192.168.27.100 -b lxdbr0
+EOF
+
+# Docker enables IP forwarding by itself, but by default systemd overrides 
+# the respective sysctl setting. The following disables this override (for all interfaces): 
+sudo bash -c 'cat > /etc/systemd/network/ipforward.network' <<'EOF'
+[Network]
+IPForward=ipv4
+EOF
+
+sudo bash -c 'cat > /etc/sysctl.d/99-docker.conf' <<'EOF'
+net.ipv4.ip_forward = 1
+EOF
+
+sudo sysctl -w net.ipv4.ip_forward=1
+
+# adjust the number of processes allowed by systemd
+sudo bash -c 'cat > /etc/systemd/system/docker.service.d/tasks.conf' <<'EOF'
+[Service]
+TasksMax=infinity
+EOF
+
+sudo bash -c 'cat >> /home/vagrant/.bash_profile' <<'EOF'
+export DOCKER_HOST=192.168.27.100
+EOF
+
+sudo systemctl daemon-reload
+sudo systemctl restart systemd-networkd
+sudo systemctl restart docker.service
+
+# sysctl -w net.ipv4.ip_forward=1
 
 # install kuryr
 # sudo git clone https://git.openstack.org/openstack/kuryr.git /opt/stack/kuryr

scripts/stackinabox/local.conf

@@ -100,11 +100,11 @@ enable_service n-cpu
 enable_service n-cond
 enable_service n-sch
 enable_service n-cauth
-enable_service n-spice
+disable_service n-spice
 disable_service n-novnc
 disable_service n-xvnc
 #disable_service n-api-meta
-enable_service n-sproxy
+disable_service n-sproxy
 
 
 
@@ -159,11 +159,11 @@ enable_service g-reg
 #
 # Enable Heat (orchestration) Service
 #
-enable_service heat
-enable_service h-eng
-enable_service h-api
-enable_service h-api-cfn
-enable_service h-api-cw
+#enable_service heat
+#enable_service h-eng
+#enable_service h-api
+#enable_service h-api-cfn
+#enable_service h-api-cw
 
 #
 # Enable Horizon - OpenStack Dashboard Service

scripts/stackinabox/stack-noscreenrc

@@ -40,13 +40,13 @@
 
 /usr/local/bin/cinder-volume --config-file /etc/cinder/cinder.conf >> /opt/stack/logs/c-vol.log 2>&1 &
 
-/usr/local/bin/heat-engine --config-file=/etc/heat/heat.conf >> /opt/stack/logs/h-eng.log 2>&1 &
+# /usr/local/bin/heat-engine --config-file=/etc/heat/heat.conf >> /opt/stack/logs/h-eng.log 2>&1 &
 
-/usr/local/bin/heat-api --config-file=/etc/heat/heat.conf >> /opt/stack/logs/h-api.log 2>&1 &
+# /usr/local/bin/heat-api --config-file=/etc/heat/heat.conf >> /opt/stack/logs/h-api.log 2>&1 &
 
-/usr/local/bin/heat-api-cfn --config-file=/etc/heat/heat.conf >> /opt/stack/logs/h-api-cfn.log 2>&1 &
+# /usr/local/bin/heat-api-cfn --config-file=/etc/heat/heat.conf >> /opt/stack/logs/h-api-cfn.log 2>&1 &
 
-/usr/local/bin/heat-api-cloudwatch --config-file=/etc/heat/heat.conf >> /opt/stack/logs/h-api-cw.log 2>&1 &
+# /usr/local/bin/heat-api-cloudwatch --config-file=/etc/heat/heat.conf >> /opt/stack/logs/h-api-cw.log 2>&1 &
 
 # /usr/local/bin/designate-central --config-file=/etc/designate/designate.conf >> /opt/stack/logs/designate-central.log 2>&1 &
 

vagrant/Personalization.dist

@@ -1,27 +1,3 @@
-# Use NFS? (won't work on windows)
-$use_nfs = false
-
-# Configure MTU on VM interfaces. Also requires manually configuring the same MTU on
-# the equivalent 'vboxnet' interfaces on the host. i.e. sudo ip link set dev vboxnet0 mtu $MTU
-$mtu = 1500
-
-# Box name
-$box = "bento/ubuntu-16.04"
-
-# Box url
-$box_url = "https://atlas.hashicorp.com/bento/boxes/ubuntu-16.04"
-
-# Number of CPU's (min 2, recommend 4) adjust to your machine
-$cpus = 4
-
-# Amount of RAM (min 4096, recommed 8192) adjust to your machine
-$memory = 8192
-
-# Which release branch should we build? ( stable/juno | stable/kilo | stable/liberty | master )
-$release_branch = "stable/mitaka"
-#Set to where second disk should be created
-$disk = "/home/freddy/VirtualBox VMs/stackinabox/box-disk2.vmdk"
-
 
 # Use NFS? (won't work on windows)
 $use_nfs = false
@@ -47,3 +23,6 @@ $release_branch = "stable/mitaka"
 
 # Second Disk (used for lxd backing store)
 $disk = '$HOME/VirtualBox VMs/stackinabox/ubuntu-16.04-amd64-disk2.vmdk'
+
+# Third Disk (used for local docker image storage)
+$disk_docker = '$HOME/VirtualBox VMs/stackinabox/ubuntu-16.04-amd64-disk3.vmdk'