1.
【系列】CentOS 7.3 离线安装(无网络环境)CI CD环境之docker+docker compose
2.
【系列】CentOS 7.3 离线安装(无网络环境)CI CD环境之gitlab + gitlab runner(docker in docker)
(本篇在此)
3.
【系列】CentOS 7.3 离线安装(无网络环境)CI CD环境之harbor
4.
【系列】CentOS 7.3 离线安装(无网络环境)CI CD环境之gitlab runner 关于私有docker仓库配置
5.
【系列】CentOS 7.3 离线安装(无网络环境)CI CD环境之sonarqube配置
这一篇记录离线(无网络环境)使用docker 安装 gitlab + gitlab runner(docker in docker)
首先准备gitlab gitlab runner 的docker 镜像
因为是无网络环境,现在开发机器上使用 docker save 对镜像进行打包 然后再上传到服务器上
1.打包镜像
开发机器执行:
docker save -o E:\gitlab-ce-latest.tar gitlab/gitlab-ce:latest
docker save -o E:\gitlab-runner-latest.tar gitlab/gitlab-runner:latest
docker save -o E:microsoft-dotnet-core-sdk-3-1.tar mcr.microsoft.com/dotnet/core/sdk:3.1
2.服务器上执行docker load 加载镜像
docker load -i gitlab-ce-latest.tar
docker load -i gitlab-runner-latest.tar
docker load -i microsoft-dotnet-core-sdk-3-1.tar
3.上传gitlab + gitlab runner 的yaml脚本
上传至:/opt/gitlab文件夹下,脚本内容如下
version: '3.7'
services:
gitlab:
image: gitlab/gitlab-ce:latest
container_name: gitlab
restart: always
hostname: gitlab
privileged: true
environment:
GITLAB_OMNIBUS_CONFIG: |
gitlab_rails['gitlab_shell_ssh_port'] = 2222
registry_external_url 'http://' # ip or hostname
registry['enable'] = true
gitlab_rails['smtp_enable'] = true
gitlab_rails['smtp_address'] = "****"
gitlab_rails['smtp_port'] = 25
gitlab_rails['smtp_user_name'] = "****"
gitlab_rails['smtp_password'] = "123456"
gitlab_rails['smtp_authentication'] = "login"
gitlab_rails['smtp_enable_starttls_auto'] = true
ports:
- '2222:22'
- '80:80'
- '4443:443'
networks:
- gitlab-network-overlay
volumes:
- /opt/gitlab/config:/etc/gitlab
- /opt/gitlab/data:/var/opt/gitlab
- /opt/gitlab/logs:/var/log/gitlab
gitlab-runner1:
image: gitlab/gitlab-runner:latest
container_name: gitlab-runner1
hostname: gitlab-runner1
restart: always
privileged: true
# network_mode: "host"
volumes:
- '/opt/gitlab-runner1-config/config:/etc/gitlab-runner:Z'
- '/var/run/docker.sock:/var/run/docker.sock' #这里一定要映射到宿主机的docker.sock文件上 否则会出现无法访问的情况
networks:
- gitlab-network-overlay
networks:
gitlab-network-overlay:
#name: gitlab-network
external: true
4.创建overlay网络,使runner可以连接到外部网络,否则会导致runner 运行时连接不到gitlab harbor nexus等私库
#初始化swarm
docker swarm init
docker network create --driver=overlay --attachable gitlab-network-overlay
docker network ls
5.创建映射文件夹
mkdir {config,data,logs}
mkdir -vp /opt/gitlab-runner1-config/cofig
6.使用docker stack启动gitlab 和gitlab runner
docker stack deploy -c docker-compose.yaml gitlab-swarm
这是可能会因为selinux问题出现错误:
Creating gitlab ...
Creating gitlab-runner1 ... error
Creating gitlab ... error
c/self/attr/keycreate: permission denied\"": unknown
ERROR: for gitlab Cannot start service gitlab:
OCI runtime create failed: container_linux.go:349
: starting container process caused "process_linux.go:449:
container init caused \"write /proc/self/attr/keycreate: permission denied\"": unknown
ERROR: for gitlab-runner1 Cannot start service gitlab-runner1:
OCI runtime create failed: container_linux.go:349
: starting container process caused "process_linux.go:449:
container init caused \"write /proc/self/attr/keycreate: permission denied\"": unknown
ERROR: for gitlab Cannot start service gitlab:
OCI runtime create failed: container_linux.go:349
: starting container process caused "process_linux.go:449:
container init caused \"write /proc/self/attr/keycreate: permission denied\"": unknown
ERROR: Encountered errors while bringing up the project.
## GitLab URL
##! URL on which GitLab will be reachable.
##! For more details on configuring external_url see:
##! https://docs.gitlab.com/omnibus/settings/configuration.html#configuring-the-external-url-for-gitlab
##!
##! Note: During installation/upgrades, the value of the environment variable
##! EXTERNAL_URL will be used to populate/replace this value.
##! On AWS EC2 instances, we also attempt to fetch the public hostname/IP
##! address from AWS. For more details, see:
##! https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instancedata-data-retrieval.html
external_url 'http://188.6.7.131'
gitlab-runner register
Please enter the gitlab-ci coordinator URL (e.g. https://gitlab.com/):
http://188.6.7.131/
Please enter the gitlab-ci token for this runner:
QncXTQE42GLjeLfvcfJD
Please enter the gitlab-ci description for this runner:
[gitlab-runner1]: group-runner1
Please enter the gitlab-ci tags for this runner (comma separated):
Registering runner... succeeded runner=QncXTQE4
Please enter the executor: virtualbox, docker-ssh+machine, docker-ssh, shell, ssh, docker+machine, kubernetes, custom, docker, parallels:
docker
Please enter the default Docker image (e.g. ruby:2.6):
Docker:19.03.11
Runner registered successfully. Feel free to start it, but if it's running already the config should be automatically reloaded!
这里使用docker运行runner 所以executor 选择docker
配置完成后先不急进行流水线测试,由于我们是在无网络环境下,还没有搭建私有docker仓库,所以需要修改runner的相关配置:
修改/gitlab-runner1/config/config.toml:
concurrent = 1
check_interval = 0
[session_server]
session_timeout = 1800
[[runners]]
name = "gis-group-runner1"
url = "http://188.6.7.131/"
token = "qQZ1p2hETvf94F7hNFJt"
executor = "docker"
[runners.custom_build_dir]
[runners.cache]
[runners.cache.s3]
[runners.cache.gcs]
[runners.docker]
tls_verify = false
image = "Docker:19.03.11"
privileged = true
disable_entrypoint_overwrite = false
oom_kill_disable = false
disable_cache = false
volumes = ["/cache"]
shm_size = 0
pull_policy = "if-not-present"
常见问题:重启服务后 gitlab一直处于restart状态 通过docker logs gitlab 看到如下错误:
/opt/gitlab/embedded/bin/runsvdir-start: No such file or directory
解决办法:删除容器重启创建,相关数据已经持久化到服务器,并不会影响数据
docker stack deploy -c docker-compose.yaml gitlab-swarm
https://blog.51cto.com/xiaozhagn/2488779
