WIP

matifali · matifali · commit c0690f0f58e6 · 2024-05-02T18:01:34.000+03:00
diff --git a/windows-in-docker/files/CoderAgent.ps1 b/windows-in-docker/files/CoderAgent.ps1
@@ -0,0 +1,48 @@
+# Sleep for a while in case the underlying provider deletes the resource on error.
+trap {
+        Write-Error "=== Agent script exited with non-zero code. Sleeping 24h to preserve logs..."
+        Start-Sleep -Seconds 86400
+}
+
+# Attempt to download the coder agent.
+# This could fail for a number of reasons, many of which are likely transient.
+# So just keep trying!
+while ($true) {
+        try {
+                $ProgressPreference = "SilentlyContinue"
+
+                # executing shell to be named "sshd", otherwise it fails. See:
+                # https://github.com/microsoft/vscode-remote-release/issues/5699
+                $BINARY_URL="${ACCESS_URL}/bin/coder-windows-${ARCH}.exe"
+                Write-Output "$(Get-Date) Fetching coder agent from ${BINARY_URL}"
+                Invoke-WebRequest -Uri "${BINARY_URL}" -OutFile $env:TEMP\sshd.exe
+                break
+        } catch {
+                Write-Output "$(Get-Date) error: unhandled exception fetching coder agent:"
+                Write-Output $_
+                Write-Output "$(Get-Date) trying again in 30 seconds..."
+                Start-Sleep -Seconds 30
+        }
+}
+
+# Check if running in a Windows container
+if (-not (Get-Command 'Set-MpPreference' -ErrorAction SilentlyContinue)) {
+    Write-Output "$(Get-Date) Set-MpPreference not available, skipping..."
+} else {
+    Set-MpPreference -DisableRealtimeMonitoring $true -ExclusionPath $env:TEMP\sshd.exe
+}
+
+$en
+$env:CODER_AGENT_URL = "${ACCESS_URL}"
+
+# Check if we're running inside a Windows container!
+$inContainer = $false
+if ((Get-ItemProperty 'HKLM:\SYSTEM\CurrentControlSet\Control' -Name 'ContainerType' -ErrorAction SilentlyContinue) -ne $null) {
+    $inContainer = $true
+}
+if ($inContainer) {
+    # If we're in a container, run in a the foreground!
+    Start-Process -FilePath $env:TEMP\sshd.exe -ArgumentList "agent" -Wait -NoNewWindow
+} else {
+    Start-Process -FilePath $env:TEMP\sshd.exe -ArgumentList "agent" -PassThru
+}
diff --git a/windows-in-docker/files/create_task.ps1 b/windows-in-docker/files/create_task.ps1
@@ -0,0 +1,8 @@
+$task = @{
+        TaskName = 'CoderAgent'
+        Action = (New-ScheduledTaskAction -Execute 'powershell.exe' -Argument '-sta -ExecutionPolicy Unrestricted -Command "$env:CODER_AGENT_TOKEN_FILE=\'C:\OEM\token.txt\'; & C:\OEM\CoderAgent.ps1 *>>  C:\OEM\CoderAgent.log"')
+        Trigger = (New-ScheduledTaskTrigger -AtStartup), (New-ScheduledTaskTrigger -Once -At (Get-Date).AddSeconds(15))
+        Settings = (New-ScheduledTaskSettingsSet -DontStopOnIdleEnd -ExecutionTimeLimit ([TimeSpan]::FromDays(3650)) -Compatibility Win8)
+        Principal = (New-ScheduledTaskPrincipal -UserId 'vm\coder' -RunLevel Highest -LogonType S4U)
+}
+Register-ScheduledTask @task -Force
diff --git a/windows-in-docker/files/install.bat b/windows-in-docker/files/install.bat
@@ -0,0 +1,2 @@
+@echo off
+PowerShell -NoProfile -ExecutionPolicy Bypass -Command "C:\OEM\create_task.ps1"
diff --git a/windows-in-docker/main.tf b/windows-in-docker/main.tf
@@ -0,0 +1,75 @@
+terraform {
+  required_providers {
+    coder = {
+      source = "coder/coder"
+    }
+    docker = {
+      source  = "kreuzwerker/docker"
+      version = "~> 3.0.0"
+    }
+  }
+}
+
+provider "docker" {}
+
+provider "coder" {}
+
+data "coder_workspace" "me" {}
+
+resource "coder_agent" "dev" {
+  arch               = "amd64"
+  os                 = "windows"
+  connection_timeout = 600
+}
+
+resource "local_file" "coder_agent_token" {
+  content  = coder_agent.dev.token
+  filename = "${path.module}/files/token"
+}
+
+data "docker_registry_image" "dockurr" {
+  name = "dockurr/windows"
+}
+
+resource "docker_image" "dockurr" {
+  name = "${data.docker_registry_image.dockurr.name}@${data.docker_registry_image.dockurr.sha256_digest}"
+  pull_triggers = [
+    data.docker_registry_image.dockurr.sha256_digest,
+  ]
+  keep_locally = true
+}
+
+resource "docker_container" "dockurr" {
+  count      = data.coder_workspace.me.start_count
+  image      = docker_image.dockurr.name
+  name       = "coder-${lower(data.coder_workspace.me.owner)}-${lower(data.coder_workspace.me.name)}"
+  hostname   = data.coder_workspace.me.name
+  env = [
+    "RAM_SIZE=16G",
+    "CPU_CORES=4",
+  ]
+  destroy_grace_seconds = 120
+  stop_timeout          = 120
+  stop_signal           = "SIGINT"
+  host {
+    host = "host.docker.internal"
+    ip   = "host-gateway"
+  }
+  volumes {
+    container_path = "/storage"
+    host_path      = "/home/ubuntu/dockurr"
+    read_only      = false
+  }
+  volumes {
+    container_path = "/storage/oem"
+    host_path      = "${abspath(path.module)}/files"
+    read_only      = true
+  }
+
+  devices {
+    host_path  = "/dev/kvm"
+  }
+  capabilities {
+    add = ["NET_ADMIN"]
+  }
+}

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+@echo off`
	`2`	`+PowerShell -NoProfile -ExecutionPolicy Bypass -Command "C:\OEM\create_task.ps1"`