This document provides the steps to install containerd
and its dependencies with the release tarball, and bring up a Kubernetes cluster using kubeadm.
These steps have been verified on Ubuntu 16.04. For other OS distributions, the steps may differ. Please feel free to file issues or PRs if you encounter any problems on other OS distributions.
Note: You need to run the following steps on each node you are planning to use in your Kubernetes cluster.
For each containerd
release, we'll publish a release tarball specifically for Kubernetes named cri-containerd-cni-${VERSION}-${OS}-${ARCH}.tar.gz
. This release tarball contains all required binaries and files for using containerd
with Kubernetes. For example, the 1.4.3 version is available at https://github.com/containerd/containerd/releases/download/v1.4.3/cri-containerd-cni-1.4.3-linux-amd64.tar.gz.
As shown below, the release tarball contains:
containerd
,containerd-shim
,containerd-shim-runc-v1
,containerd-shim-runc-v2
,ctr
: binaries for containerd.runc
: runc binary./opt/cni/bin
: binaries for Container Network Interfacecrictl
,crictl.yaml
: command line tools for CRI container runtime and its config file.critest
: binary to run CRI validation test.containerd.service
: Systemd unit for containerd./opt/containerd/cluster/
: scripts forkube-up.sh
.
$ tar -tf cri-containerd-cni-1.4.3-linux-amd64.tar.gz
etc/
etc/cni/
etc/cni/net.d/
etc/cni/net.d/10-containerd-net.conflist
etc/crictl.yaml
etc/systemd/
etc/systemd/system/
etc/systemd/system/containerd.service
usr/
usr/local/
usr/local/bin/
usr/local/bin/containerd-shim-runc-v2
usr/local/bin/ctr
usr/local/bin/containerd-shim
usr/local/bin/containerd-shim-runc-v1
usr/local/bin/crictl
usr/local/bin/critest
usr/local/bin/containerd
usr/local/sbin/
usr/local/sbin/runc
opt/
opt/cni/
opt/cni/bin/
opt/cni/bin/vlan
opt/cni/bin/host-local
opt/cni/bin/flannel
opt/cni/bin/bridge
opt/cni/bin/host-device
opt/cni/bin/tuning
opt/cni/bin/firewall
opt/cni/bin/bandwidth
opt/cni/bin/ipvlan
opt/cni/bin/sbr
opt/cni/bin/dhcp
opt/cni/bin/portmap
opt/cni/bin/ptp
opt/cni/bin/static
opt/cni/bin/macvlan
opt/cni/bin/loopback
opt/containerd/
opt/containerd/cluster/
opt/containerd/cluster/version
opt/containerd/cluster/gce/
opt/containerd/cluster/gce/cni.template
opt/containerd/cluster/gce/configure.sh
opt/containerd/cluster/gce/cloud-init/
opt/containerd/cluster/gce/cloud-init/master.yaml
opt/containerd/cluster/gce/cloud-init/node.yaml
opt/containerd/cluster/gce/env
Information about the binaries in the release tarball:
Binary Name | Support | OS | Architecture |
---|---|---|---|
containerd | seccomp, apparmor, selinux overlay, btrfs |
linux | amd64 |
containerd-shim | overlay, btrfs | linux | amd64 |
runc | seccomp, apparmor, selinux | linux | amd64 |
If you have other requirements for the binaries, e.g. another architecture support etc., you need to build the binaries yourself following the instructions.
The release tarball could be downloaded from the release page https://github.com/containerd/containerd/releases.
Install required library for seccomp.
sudo apt-get update
sudo apt-get install libseccomp2
Note that:
- If you are using Ubuntu <=Trusty or Debian <=jessie, a backported version of
libseccomp2
is needed. (See the trusty-backports and jessie-backports).
Download release tarball for the containerd
version you want to install from the GCS bucket.
wget https://github.com/containerd/containerd/releases/download/v${VERSION}/cri-containerd-cni-${VERSION}-linux-amd64.tar.gz
Validate checksum of the release tarball:
wget https://github.com/containerd/containerd/releases/download/v${VERSION}/cri-containerd-cni-${VERSION}-linux-amd64.tar.gz.sha256sum
sha256sum --check cri-containerd-cni-${VERSION}-linux-amd64.tar.gz.sha256sum
If you are using systemd, just simply unpack the tarball to the root directory:
sudo tar --no-overwrite-dir -C / -xzf cri-containerd-cni-${VERSION}-linux-amd64.tar.gz
sudo systemctl daemon-reload
sudo systemctl start containerd
If you are not using systemd, please unpack all binaries into a directory in your PATH
, and start containerd
as monitored long running services with the service manager you are using e.g. supervisord
, upstart
etc.
Follow the instructions to install kubeadm, kubelet and kubectl.
Create the systemd drop-in file /etc/systemd/system/kubelet.service.d/0-containerd.conf
:
[Service]
Environment="KUBELET_EXTRA_ARGS=--container-runtime=remote --runtime-request-timeout=15m --container-runtime-endpoint=unix:///run/containerd/containerd.sock"
And reload systemd configuration:
systemctl daemon-reload
Now you should have properly installed all required binaries and dependencies on each of your node.
The next step is to use kubeadm to bring up the Kubernetes cluster. It is the same with the ansible installer. Please follow the steps 2-4 here.