Gitiles
Code Review Sign In
gerrit-dev.monogon.dev / monogon / 156248b949f3da7c8d0f4f46cb97ac7606464952 / . / metropolis / node / BUILD.bazel
blob: 1638083a8dbdffa92d6305b9fdd0c2ceb082c3f0 [file] [log] [blame]
Serge Bazanski1f789542024-05-22 14:01:50 +0200[diff] [blame]1load("@io_bazel_rules_go//go:def.bzl", "go_library", "go_test")
Tim Windelschmidt8e19fa42024-11-12 13:39:43 +0000[diff] [blame]2load("@rules_pkg//:pkg.bzl", "pkg_zip")
Tim Windelschmidtc2290c22024-08-15 19:56:00 +0200[diff] [blame]3load("//osbase/build:def.bzl", "erofs_image", "verity_image")
4load("//osbase/build:efi.bzl", "efi_unified_kernel_image")
Tim Windelschmidt8e19fa42024-11-12 13:39:43 +0000[diff] [blame]5load("//osbase/build/genosrelease:defs.bzl", "os_release")
Tim Windelschmidtc2290c22024-08-15 19:56:00 +0200[diff] [blame]6load("//osbase/build/mkimage:def.bzl", "node_image")
Serge Bazanski77cb6c52020-12-19 00:09:22 +0100[diff] [blame]7
8go_library(
Lorenz Brund13c1c62022-03-30 19:58:58 +0200[diff] [blame]9 name = "node",
Lorenz Brune306d782021-09-01 13:01:06 +0200[diff] [blame]10 srcs = [
11 "ids.go",
Serge Bazanski1f789542024-05-22 14:01:50 +0200[diff] [blame]12 "labels.go",
Lorenz Brun0e291a12023-06-01 12:22:45 +0200[diff] [blame]13 "net_ips.go",
Serge Bazanski93d593b2023-03-28 16:43:47 +0200[diff] [blame]14 "net_protocols.go",
Lorenz Brune306d782021-09-01 13:01:06 +0200[diff] [blame]15 "ports.go",
Jan Schär39f4f5c2024-10-29 09:41:50 +0100[diff] [blame]16 "validation.go",
Lorenz Brune306d782021-09-01 13:01:06 +0200[diff] [blame]17 ],
Serge Bazanski31370b02021-01-07 16:31:14 +0100[diff] [blame]18 importpath = "source.monogon.dev/metropolis/node",
Tim Windelschmidt03000772023-07-03 02:19:28 +0200[diff] [blame]19 visibility = [
20 "//metropolis:__subpackages__",
21 "@io_k8s_kubernetes//pkg/registry:__subpackages__",
22 ],
Timon Stampfli91bcf462024-12-15 16:57:05 +0100[diff] [blame]23 deps = ["//metropolis/proto/common"],
Serge Bazanski77cb6c52020-12-19 00:09:22 +0100[diff] [blame]24)
Serge Bazanski140bddc2020-06-05 21:01:19 +0200[diff] [blame]25
Lorenz Brun313816f2020-12-22 16:52:26 +0100[diff] [blame]26# debug_build checks if we're building in debug mode and enables various debug features for the image.
Lorenz Brun70f65b22020-07-08 17:02:47 +0200[diff] [blame]27config_setting(
28 name = "debug_build",
29 values = {
30 "compilation_mode": "dbg",
31 },
32)
33
Lorenz Brun2ecccae2024-11-27 22:03:35 +0100[diff] [blame]34exports_files([
35 "passwd",
36])
37
Lorenz Brun3a99c592021-01-26 19:57:21 +0100[diff] [blame]38erofs_image(
39 name = "rootfs",
Serge Bazanski140bddc2020-06-05 21:01:19 +0200[diff] [blame]40 files = {
Serge Bazanskieac8f732021-10-05 23:30:37 +0200[diff] [blame]41 "//metropolis/node/core": "/core",
Serge Bazanski140bddc2020-06-05 21:01:19 +0200[diff] [blame]42
Jan Schär91bf1c82024-07-29 17:31:33 +0200[diff] [blame]43 # CA Certificate bundle & os-release & resolv.conf & hosts
Lorenz Brun3a99c592021-01-26 19:57:21 +0100[diff] [blame]44 # These should not be explicitly used by Metropolis code and are only here for compatibility with
45 # paths hardcoded by standard libraries (like Go's).
Serge Bazanski140bddc2020-06-05 21:01:19 +0200[diff] [blame]46 "@cacerts//file": "/etc/ssl/cert.pem",
Lorenz Brun2ecccae2024-11-27 22:03:35 +0100[diff] [blame]47 "//metropolis/node:passwd": "/etc/passwd",
Jan Schär91bf1c82024-07-29 17:31:33 +0200[diff] [blame]48 "//osbase/net/dns:resolv.conf": "/etc/resolv.conf",
49 "//osbase/net/dns:hosts": "/etc/hosts",
Serge Bazanski140bddc2020-06-05 21:01:19 +0200[diff] [blame]50 ":os-release-info": "/etc/os-release",
51
Serge Bazanski6d563ca2023-06-14 13:44:20 +0200[diff] [blame]52 # Metrics exporters
53 "@com_github_prometheus_node_exporter//:node_exporter": "/metrics/bin/node_exporter",
54
Serge Bazanski140bddc2020-06-05 21:01:19 +0200[diff] [blame]55 # Hyperkube
Serge Bazanski77cb6c52020-12-19 00:09:22 +0100[diff] [blame]56 "//metropolis/node/kubernetes/hyperkube": "/kubernetes/bin/kube",
Serge Bazanski140bddc2020-06-05 21:01:19 +0200[diff] [blame]57
58 # runsc/gVisor
Lorenz Brund13c1c62022-03-30 19:58:58 +0200[diff] [blame]59 "@dev_gvisor_gvisor//runsc": "/containerd/bin/runsc",
60 "@dev_gvisor_gvisor//shim": "/containerd/bin/containerd-shim-runsc-v1",
Serge Bazanski140bddc2020-06-05 21:01:19 +0200[diff] [blame]61
Lorenz Brun5e4fc2d2020-09-22 18:35:15 +0200[diff] [blame]62 # runc (runtime in files_cc because of cgo)
Lorenz Brun0ec0c532024-08-29 12:39:47 +0000[diff] [blame]63 "@com_github_containerd_containerd_v2//cmd/containerd-shim-runc-v2": "/containerd/bin/containerd-shim-runc-v2",
Lorenz Brun5e4fc2d2020-09-22 18:35:15 +0200[diff] [blame]64
Serge Bazanski140bddc2020-06-05 21:01:19 +0200[diff] [blame]65 # Containerd
Lorenz Brun0ec0c532024-08-29 12:39:47 +0000[diff] [blame]66 "@com_github_containerd_containerd_v2//cmd/containerd": "/containerd/bin/containerd",
Serge Bazanski140bddc2020-06-05 21:01:19 +0200[diff] [blame]67
68 # Containerd config files
Serge Bazanski77cb6c52020-12-19 00:09:22 +0100[diff] [blame]69 "//metropolis/node/kubernetes/containerd:runsc.toml": "/containerd/conf/runsc.toml",
70 "//metropolis/node/kubernetes/containerd:config.toml": "/containerd/conf/config.toml",
71 "//metropolis/node/kubernetes/containerd:cnispec.gojson": "/containerd/conf/cnispec.gojson",
Serge Bazanski140bddc2020-06-05 21:01:19 +0200[diff] [blame]72
Lorenz Brun8b0431a2020-07-13 16:56:36 +0200[diff] [blame]73 # Containerd preseed bundles
Tim Windelschmidt0974b222024-01-16 14:04:15 +0100[diff] [blame]74 "//metropolis/test/e2e/preseedtest:preseedtest_tarball": "/containerd/preseed/k8s.io/preseedtest.tar",
Tim Windelschmidt93020d72024-02-13 18:13:07 +0100[diff] [blame]75 "//metropolis/node/kubernetes/pause:pause_tarball": "/containerd/preseed/k8s.io/pause.tar",
Lorenz Brun8b0431a2020-07-13 16:56:36 +0200[diff] [blame]76
Serge Bazanski140bddc2020-06-05 21:01:19 +0200[diff] [blame]77 # CNI Plugins
78 "@com_github_containernetworking_plugins//plugins/main/loopback": "/containerd/bin/cni/loopback",
79 "@com_github_containernetworking_plugins//plugins/main/ptp": "/containerd/bin/cni/ptp",
80 "@com_github_containernetworking_plugins//plugins/ipam/host-local": "/containerd/bin/cni/host-local",
Serge Bazanskic3ae7582020-06-08 17:15:26 +0200[diff] [blame]81
Lorenz Brun70f65b22020-07-08 17:02:47 +0200[diff] [blame]82 # Delve
83 "@com_github_go_delve_delve//cmd/dlv:dlv": "/dlv",
Serge Bazanski140bddc2020-06-05 21:01:19 +0200[diff] [blame]84 },
Lorenz Brun5e4fc2d2020-09-22 18:35:15 +0200[diff] [blame]85 files_cc = {
Serge Bazanskieac8f732021-10-05 23:30:37 +0200[diff] [blame]86 "//metropolis/node/core/minit": "/init",
Lorenz Brun5e4fc2d2020-09-22 18:35:15 +0200[diff] [blame]87 # runc runtime, with cgo
88 "@com_github_opencontainers_runc//:runc": "/containerd/bin/runc",
Lorenz Brunddd6caf2021-03-04 17:16:04 +0100[diff] [blame]89 "@xfsprogs//:mkfs": "/bin/mkfs.xfs",
Lorenz Brune306d782021-09-01 13:01:06 +0200[diff] [blame]90 "@chrony//:chrony": "/time/chrony",
Lorenz Brun5e4fc2d2020-09-22 18:35:15 +0200[diff] [blame]91 },
Serge Bazanskia3938142022-04-04 17:04:47 +0200[diff] [blame]92 fsspecs = [
93 ":erofs-layout.fsspec",
Tim Windelschmidtc2290c22024-08-15 19:56:00 +0200[diff] [blame]94 "//osbase/build:earlydev.fsspec",
Tim Windelschmidt65bf3112024-04-08 21:32:14 +0200[diff] [blame]95 "//third_party:firmware",
Serge Bazanskia3938142022-04-04 17:04:47 +0200[diff] [blame]96 ],
Lorenz Brun3a99c592021-01-26 19:57:21 +0100[diff] [blame]97 symlinks = {
98 "/ephemeral/machine-id": "/etc/machine-id",
Lorenz Brun3a99c592021-01-26 19:57:21 +0100[diff] [blame]99 },
Serge Bazanski731d00a2020-02-03 19:08:07 +0100[diff] [blame]100)
101
Mateusz Zalega8c2c7712022-01-25 19:42:21 +0100[diff] [blame]102verity_image(
103 name = "verity_rootfs",
104 source = ":rootfs",
105)
106
Lorenz Brun2f9f3872021-09-29 19:48:08 +0200[diff] [blame]107efi_unified_kernel_image(
108 name = "kernel_efi",
Lorenz Brun6cb00ed2024-02-08 17:49:19 +0100[diff] [blame]109 cmdline = "console=ttyS0,115200 console=ttyS1,115200 console=tty0 quiet rootfstype=erofs init=/init loadpin.exclude=kexec-image,kexec-initramfs kernel.unknown_nmi_panic=1",
Tim Windelschmidt65bf3112024-04-08 21:32:14 +0200[diff] [blame]110 initrd = ["//third_party:ucode"],
Lorenz Brun2f9f3872021-09-29 19:48:08 +0200[diff] [blame]111 kernel = "//third_party/linux",
112 os_release = ":os-release-info",
Mateusz Zalega8c2c7712022-01-25 19:42:21 +0100[diff] [blame]113 verity = ":verity_rootfs",
Lorenz Brun2f9f3872021-09-29 19:48:08 +0200[diff] [blame]114)
115
Lorenz Brunf758ce42021-11-09 03:40:43 +0100[diff] [blame]116# An intermediary "bundle" format until we finalize the actual bundle format. This is NOT stable until migrated
117# to the actual bundle format.
118# TODO(lorenz): Replace this
119pkg_zip(
Lorenz Brund13c1c62022-03-30 19:58:58 +0200[diff] [blame]120 name = "bundle",
Lorenz Brunf758ce42021-11-09 03:40:43 +0100[diff] [blame]121 srcs = [
122 ":kernel_efi",
Mateusz Zalega8c2c7712022-01-25 19:42:21 +0100[diff] [blame]123 ":verity_rootfs",
Lorenz Brunf758ce42021-11-09 03:40:43 +0100[diff] [blame]124 ],
Lorenz Brunf8ede092021-11-08 20:50:57 +0100[diff] [blame]125 visibility = ["//visibility:public"],
Lorenz Brunf758ce42021-11-09 03:40:43 +0100[diff] [blame]126)
127
Lorenz Brun1dc60af2023-10-03 15:40:09 +0200[diff] [blame]128node_image(
Hendrik Hofstadt0d7c91e2019-10-23 21:44:47 +0200[diff] [blame]129 name = "image",
Tim Windelschmidt272c8302024-11-05 05:17:44 +0100[diff] [blame]130 abloader = "//metropolis/node/core/abloader",
Tim Windelschmidt8e19fa42024-11-12 13:39:43 +0000[diff] [blame]131 bios_bootcode = "//metropolis/node/core/bios_bootcode",
Lorenz Brun1dc60af2023-10-03 15:40:09 +0200[diff] [blame]132 kernel = ":kernel_efi",
133 system = ":verity_rootfs",
Serge Bazanski0be9be82021-01-07 15:23:44 +0100[diff] [blame]134 visibility = [
Mateusz Zalegafed8fe52022-07-14 16:19:35 +0200[diff] [blame]135 "//metropolis/cli/metroctl/test:__subpackages__",
Serge Bazanski0be9be82021-01-07 15:23:44 +0100[diff] [blame]136 "//metropolis/test/e2e:__subpackages__",
Serge Bazanskif12bedf2021-01-15 16:58:50 +0100[diff] [blame]137 "//metropolis/test/launch:__subpackages__",
Serge Bazanski0be9be82021-01-07 15:23:44 +0100[diff] [blame]138 ],
Hendrik Hofstadt0d7c91e2019-10-23 21:44:47 +0200[diff] [blame]139)
140
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]141os_release(
142 name = "os-release-info",
Serge Bazanski662b5b32020-12-21 13:49:00 +0100[diff] [blame]143 os_id = "metropolis-node",
144 os_name = "Metropolis Node",
Serge Bazanski30494c12023-11-28 16:27:24 +0100[diff] [blame]145 stamp_var = "STABLE_MONOGON_metropolis_version",
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]146)
Serge Bazanski1f789542024-05-22 14:01:50 +0200[diff] [blame]147
148go_test(
149 name = "node_test",
Jan Schär39f4f5c2024-10-29 09:41:50 +0100[diff] [blame]150 srcs = [
151 "labels_test.go",
152 "validation_test.go",
153 ],
Serge Bazanski1f789542024-05-22 14:01:50 +0200[diff] [blame]154 embed = [":node"],
Serge Bazanskidd2b80f2024-09-24 13:06:27 +0000[diff] [blame]155 deps = ["@io_k8s_apimachinery//pkg/util/validation"],
Serge Bazanski1f789542024-05-22 14:01:50 +0200[diff] [blame]156)