leoh0 · February 7, 2024 02:20
diff --git a/README.md b/README.md
diff --git a/docker.yaml b/docker.yaml
 # Example to use Docker instead of containerd & nerdctl
 # $ limactl start ./docker.yaml
 # $ limactl shell docker docker run -it -v $HOME:$HOME --rm alpine

 # To run `docker` on the host (assumes docker-cli is installed):
 # $ export DOCKER_HOST=$(limactl list docker --format 'unix://{{.Dir}}/sock/docker.sock')
 # $ docker ...

 # Hint: To allow `docker` CLI on the host to connect to the Docker daemon running inside the guest,
 # add `NoHostAuthenticationForLocalhost yes` in ~/.ssh/config , and then run the following commands:
 # $ export DOCKER_HOST=ssh://localhost:60006
 # $ docker ...

 # If ssh:// ... does not work, try the following commands:
 # $ ssh -f -N -p 60006 -i ~/.lima/_config/user -o NoHostAuthenticationForLocalhost=yes -L $HOME/docker.sock:/run/user/$(id -u)/docker.sock 127.0.0.1
 # $ export DOCKER_HOST=unix://$HOME/docker.sock
 # $ docker ...

 images:
  # Hint: run `limactl prune` to invalidate the "current" cache
  - location: "https://cloud-images.ubuntu.com/impish/current/impish-server-cloudimg-amd64.img"
    arch: "x86_64"
  - location: "https://cloud-images.ubuntu.com/impish/current/impish-server-cloudimg-arm64.img"
    arch: "aarch64"
 mounts:
  # Export files from container
  - location: "~"
    writable: true
  - location: "/tmp/lima"
    writable: true
  - location: "/var/folders"
    writable: true

 ssh:
  localPort: 60006
  # Load ~/.ssh/*.pub in addition to $LIMA_HOME/_config/user.pub , for allowing DOCKER_HOST=ssh:// .
  # This option is enabled by default.
  # If you have an insecure key under ~/.ssh, do not use this option.
  loadDotSSHPubKeys: true
 # containerd is managed by Docker, not by Lima, so the values are set to false here.
 containerd:
  system: false
  user: false
 provision:
  - mode: system
    script: |
      #!/bin/bash
      set -eux -o pipefail
      command -v docker >/dev/null 2>&1 && exit 0
      export DEBIAN_FRONTEND=noninteractive
      curl -fsSL https://get.docker.com | sh
      # NOTE: you may remove the lines below, if you prefer to use rootful docker, not rootless
      systemctl disable --now docker
      apt-get install -y uidmap dbus-user-session
      VER=$(curl -s https://api.github.com/repos/docker/compose/releases/latest | awk -F'"' '/"name": "v/{print $4}')
      curl -L "https://github.com/docker/compose/releases/download/${VER}/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-compose
      chmod +x /usr/local/bin/docker-compose
  - mode: user
    script: |
      #!/bin/bash
      set -eux -o pipefail
      systemctl --user start dbus
      dockerd-rootless-setuptool.sh install
      docker context use rootless
 probes:
  - script: |
      #!/bin/bash
      set -eux -o pipefail
      if ! timeout 30s bash -c "until command -v docker >/dev/null 2>&1; do sleep 3; done"; then
        echo >&2 "docker is not installed yet"
        exit 1
      fi
      if ! timeout 30s bash -c "until pgrep rootlesskit; do sleep 3; done"; then
        echo >&2 "rootlesskit (used by rootless docker) is not running"
        exit 1
      fi
    hint: See "/var/log/cloud-init-output.log". in the guest
 portForwards:
  - guestSocket: "/run/user/{{.UID}}/docker.sock"
    hostSocket: "{{.Dir}}/sock/docker.sock"
 message: |
  To run `docker` on the host (assumes docker-cli is installed):
  $ export DOCKER_HOST=unix://{{.Dir}}/sock/docker.sock
  $ docker ...
diff --git a/lima-docker.sh b/lima-docker.sh
 #!/usr/bin/env bash

 # 시작하기전 가급적 docker를 삭제(아래 /usr/local/bin/docker 가 겹침)
 # brew uninstall docker
 # brew uninstall docker-compose

 # !!주의!! m1 에서는 필수 (intel mac은 10.10 이전이여서 hvf가 안될시에도 tcg(emulation)으로도 이용가능)
 # 만약 기존 qemu가 있으면 삭제 후 hvf 가 패치된 qemu 설치 
 # brew uninstall --ignore-dependencies qemu
 # brew install simnalamburt/x/qemu-hvf

 # lima 설치
 brew install lima

 # lima 에서 docker host로 사용할 머신 yaml 생성
 # 만약 container 내에서 빌드한 데이터를 export 하려면 ~를 writable로 마운트 하는게 좋음 하지만 위험이 있음
 # 이 스크립트에서는 docker-compose 도 추가로 설치함
 curl -o ./docker.yaml https://gist.githubusercontent.com/leoh0/3b3c908f0e931d7c620d273c77ea3757/raw/80b16e4f93c7712b0ec596f55985ac51e0f3a083/docker.yaml
 # 이것이 싫으면 기본 lima에서 제공하는 yaml 사용
 # curl -o ./docker.yaml https://raw.githubusercontent.com/lima-vm/lima/62159c9be1d8f00b3d7d7879ac87dec0d4ed65a7/examples/docker.yaml

 # docker host를 위한 docker machine 생성
 limactl start --tty=false ./docker.yaml

 # docker 커맨드 생성
 cat << "EOF" > /usr/local/bin/docker
 #!/usr/bin/env bash

 exec limactl shell docker docker "$@"
 EOF
 chmod +x /usr/local/bin/docker

 # docker 커맨드 생성
 cat << "EOF" > /usr/local/bin/docker-compose
 #!/usr/bin/env bash

 exec limactl shell docker docker-compose "$@"
 EOF
 chmod +x /usr/local/bin/docker-compose

 # test
 docker ps
	# Example to use Docker instead of containerd & nerdctl
	# $ limactl start ./docker.yaml
	# $ limactl shell docker docker run -it -v $HOME:$HOME --rm alpine

	# To run `docker` on the host (assumes docker-cli is installed):
	# $ export DOCKER_HOST=$(limactl list docker --format 'unix://{{.Dir}}/sock/docker.sock')
	# $ docker ...

	# Hint: To allow `docker` CLI on the host to connect to the Docker daemon running inside the guest,
	# add `NoHostAuthenticationForLocalhost yes` in ~/.ssh/config , and then run the following commands:
	# $ export DOCKER_HOST=ssh://localhost:60006
	# $ docker ...

	# If ssh:// ... does not work, try the following commands:
	# $ ssh -f -N -p 60006 -i ~/.lima/_config/user -o NoHostAuthenticationForLocalhost=yes -L $HOME/docker.sock:/run/user/$(id -u)/docker.sock 127.0.0.1
	# $ export DOCKER_HOST=unix://$HOME/docker.sock
	# $ docker ...

	images:
	# Hint: run `limactl prune` to invalidate the "current" cache
	- location: "https://cloud-images.ubuntu.com/impish/current/impish-server-cloudimg-amd64.img"
	arch: "x86_64"
	- location: "https://cloud-images.ubuntu.com/impish/current/impish-server-cloudimg-arm64.img"
	arch: "aarch64"
	mounts:
	# Export files from container
	- location: "~"
	writable: true
	- location: "/tmp/lima"
	writable: true
	- location: "/var/folders"
	writable: true

	ssh:
	localPort: 60006
	# Load ~/.ssh/*.pub in addition to $LIMA_HOME/_config/user.pub , for allowing DOCKER_HOST=ssh:// .
	# This option is enabled by default.
	# If you have an insecure key under ~/.ssh, do not use this option.
	loadDotSSHPubKeys: true
	# containerd is managed by Docker, not by Lima, so the values are set to false here.
	containerd:
	system: false
	user: false
	provision:
	- mode: system
	script: \|
	#!/bin/bash
	set -eux -o pipefail
	command -v docker >/dev/null 2>&1 && exit 0
	export DEBIAN_FRONTEND=noninteractive
	curl -fsSL https://get.docker.com \| sh
	# NOTE: you may remove the lines below, if you prefer to use rootful docker, not rootless
	systemctl disable --now docker
	apt-get install -y uidmap dbus-user-session
	VER=$(curl -s https://api.github.com/repos/docker/compose/releases/latest \| awk -F'"' '/"name": "v/{print $4}')
	curl -L "https://github.com/docker/compose/releases/download/${VER}/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-compose
	chmod +x /usr/local/bin/docker-compose
	- mode: user
	script: \|
	#!/bin/bash
	set -eux -o pipefail
	systemctl --user start dbus
	dockerd-rootless-setuptool.sh install
	docker context use rootless
	probes:
	- script: \|
	#!/bin/bash
	set -eux -o pipefail
	if ! timeout 30s bash -c "until command -v docker >/dev/null 2>&1; do sleep 3; done"; then
	echo >&2 "docker is not installed yet"
	exit 1
	fi
	if ! timeout 30s bash -c "until pgrep rootlesskit; do sleep 3; done"; then
	echo >&2 "rootlesskit (used by rootless docker) is not running"
	exit 1
	fi
	hint: See "/var/log/cloud-init-output.log". in the guest
	portForwards:
	- guestSocket: "/run/user/{{.UID}}/docker.sock"
	hostSocket: "{{.Dir}}/sock/docker.sock"
	message: \|
	To run `docker` on the host (assumes docker-cli is installed):
	$ export DOCKER_HOST=unix://{{.Dir}}/sock/docker.sock
	$ docker ...
	#!/usr/bin/env bash

	# 시작하기전 가급적 docker를 삭제(아래 /usr/local/bin/docker 가 겹침)
	# brew uninstall docker
	# brew uninstall docker-compose

	# !!주의!! m1 에서는 필수 (intel mac은 10.10 이전이여서 hvf가 안될시에도 tcg(emulation)으로도 이용가능)
	# 만약 기존 qemu가 있으면 삭제 후 hvf 가 패치된 qemu 설치
	# brew uninstall --ignore-dependencies qemu
	# brew install simnalamburt/x/qemu-hvf

	# lima 설치
	brew install lima

	# lima 에서 docker host로 사용할 머신 yaml 생성
	# 만약 container 내에서 빌드한 데이터를 export 하려면 ~를 writable로 마운트 하는게 좋음 하지만 위험이 있음
	# 이 스크립트에서는 docker-compose 도 추가로 설치함
	curl -o ./docker.yaml https://gist.githubusercontent.com/leoh0/3b3c908f0e931d7c620d273c77ea3757/raw/80b16e4f93c7712b0ec596f55985ac51e0f3a083/docker.yaml
	# 이것이 싫으면 기본 lima에서 제공하는 yaml 사용
	# curl -o ./docker.yaml https://raw.githubusercontent.com/lima-vm/lima/62159c9be1d8f00b3d7d7879ac87dec0d4ed65a7/examples/docker.yaml

	# docker host를 위한 docker machine 생성
	limactl start --tty=false ./docker.yaml

	# docker 커맨드 생성
	cat << "EOF" > /usr/local/bin/docker
	#!/usr/bin/env bash

	exec limactl shell docker docker "$@"
	EOF
	chmod +x /usr/local/bin/docker

	# docker 커맨드 생성
	cat << "EOF" > /usr/local/bin/docker-compose
	#!/usr/bin/env bash

	exec limactl shell docker docker-compose "$@"
	EOF
	chmod +x /usr/local/bin/docker-compose

	# test
	docker ps