Mic92/lxc-config
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

get overlay based container working

Browse Source
This commit is contained in:
Jörg Thalheim 2015-09-16 21:34:04 +00:00
parent 8a1f0e87c3
commit da8aa5b77e
6 changed files with 62 additions and 28 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
hooks/lib/lxc/container.rb
View File

@ -15,6 +15,8 @@ module Lxc
@ipv6_subnet = NetAddr::CIDR.create(zone["v6_subnet"] || "fd7d:aed0:18aa::/48") @ipv6_subnet = NetAddr::CIDR.create(zone["v6_subnet"] || "fd7d:aed0:18aa::/48")
@ula_subnet = NetAddr::CIDR.create(zone["ula_subnet"] || "fdc5:bdb8:b81::/48") @ula_subnet = NetAddr::CIDR.create(zone["ula_subnet"] || "fdc5:bdb8:b81::/48")
@container_root = Pathname.new(zone["lxc_root"]).join(name)
network = data["network"] network = data["network"]
@name = name @name = name
@ipv4 = ipv4 || find_address(@ipv4_subnet, collect_subnets(network, "ipv4")) @ipv4 = ipv4 || find_address(@ipv4_subnet, collect_subnets(network, "ipv4"))
@ -43,6 +45,10 @@ module Lxc
end end
opts[:local_conf] = local_conf opts[:local_conf] = local_conf
fstab = @container_root.join("fstab")
opts[:fstab] = fstab if File.exists?(fstab)
opts[:rootfs] = @data["zone"]["shared_rootfs"] || opts[:rootfs] || @container_root.join("rootfs")
templ = Template.new(CONFIG_ROOT.join("hooks", "templates", "config.erb")) templ = Template.new(CONFIG_ROOT.join("hooks", "templates", "config.erb"))
templ.write(config_path, opts) templ.write(config_path, opts)
end end

5
hooks/mount-base-rootfs
View File

@ -1,5 +0,0 @@
#!/bin/bash
set -e
mount -o bind /lxc/base/rootfs /lxc/${LXC_NAME}/rootfs
mount -o remount,ro,bind /lxc/base/rootfs /lxc/${LXC_NAME}/rootfs

5
hooks/templates/config.erb
View File

@ -1,7 +1,10 @@
lxc.include = /etc/lxc/default.conf lxc.include = /etc/lxc/overlay.conf
lxc.include = <%= local_conf %> lxc.include = <%= local_conf %>
lxc.utsname = <%= name %> lxc.utsname = <%= name %>
lxc.rootfs = <%= rootfs %> lxc.rootfs = <%= rootfs %>
<%- if fstab -%>
lxc.mount = <%= fstab %>
<%- end -%>
lxc.network.ipv4 = <%= ipv4 %> lxc.network.ipv4 = <%= ipv4 %>
lxc.network.ipv6 = <%= ipv6 %> lxc.network.ipv6 = <%= ipv6 %>
lxc.network.ipv6 = <%= ula %> lxc.network.ipv6 = <%= ula %>

6
hooks/update-lxc-configs
View File

@ -2,19 +2,19 @@
require "pathname" require "pathname"
require_relative "lib/lxc" require_relative "lib/lxc"
LXC_CONTAINER_ROOT = Pathname.new("/data/containers")
registry = Lxc::Registry.new registry = Lxc::Registry.new
container_root = Pathname.new(registry.data["zone"]["lxc_root"])
network = registry.data["network"] || {} network = registry.data["network"] || {}
network.each do |name, container| network.each do |name, container|
next if container["lxc"] == false next if container["lxc"] == false
shared_rootfs = registry.data["zone"]["shared_rootfs"]
container = Lxc::Container.new(registry.data, container = Lxc::Container.new(registry.data,
name: name, name: name,
ipv4: container["ipv4"], ipv4: container["ipv4"],
ipv6: container["ipv6"], ipv6: container["ipv6"],
ula: container["ula"], ula: container["ula"],
rootfs: LXC_CONTAINER_ROOT.join(name, "rootfs"),
group: container["group"], group: container["group"],
vars: container["vars"]) vars: container["vars"])
container.write_config(LXC_CONTAINER_ROOT.join(name, "config")) container.write_config(container_root.join(name, "config"))
end end

3
default-eva.conf → overlay.conf
View File

@ -1,5 +1,6 @@
lxc.include = /etc/lxc/base.conf lxc.include = /etc/lxc/base.conf
lxc.hook.pre-mount = /etc/lxc/hooks/mount-base-rootfs lxc.rootfs = /lxc/base/rootfs
lxc.rootfs.options = ro
## this line is used by: /usr/share/lxc/templates/lxc-overlay ## this line is used by: /usr/share/lxc/templates/lxc-overlay
# CREATE_HOOKS="setup-machine-id remove-journal cleanup-lxc-config create-lxc-config update-zone update-digitalocean-rnds" # CREATE_HOOKS="setup-machine-id remove-journal cleanup-lxc-config create-lxc-config update-zone update-digitalocean-rnds"

65
templates/lxc-overlay
View File

@ -3,8 +3,10 @@
set -ex set -ex
add_overlayfs(){ add_overlayfs(){
local root_path="$1" local base_rootfs="$1"
local rootfs="$root_path/rootfs" local path="$2" local root_path="$2"
local rootfs="$root_path/rootfs"
local path="$3"
local lower="$base_rootfs/${path}" local lower="$base_rootfs/${path}"
local upper="$root_path/.${path}-delta" local upper="$root_path/.${path}-delta"
local work="$root_path/.${path}-work" local work="$root_path/.${path}-work"
@ -12,11 +14,14 @@ add_overlayfs(){
[[ -d "$rootfs" ]] || mkdir -p "$rootfs" [[ -d "$rootfs" ]] || mkdir -p "$rootfs"
[[ -d "$work" ]] || mkdir -p "$work" [[ -d "$work" ]] || mkdir -p "$work"
[[ -d "$upper" ]] || mkdir -p "$upper" [[ -d "$upper" ]] || mkdir -p "$upper"
[[ -d "$lower" ]] || mkdir -p "$lower"
echo "none $path overlay lowerdir=$lower,upperdir=$upper,workdir=$work 0 0" >> "$root_path/fstab" echo "overlay $path overlay lowerdir=$lower,upperdir=$upper,workdir=$work 0 0" >> "$root_path/fstab"
} }
options=$(getopt -o n:4:6: -l name:,ipv4:,ipv6:,path:,rootfs:,mapped-uid:,mapped-gid: -- "$@") echo args $@
options=$(getopt -o n:4:6: -l name:,path:,rootfs:,mapped-uid:,mapped-gid: -- "$@")
if [ $? -ne 0 ]; then if [ $? -ne 0 ]; then
usage $(basename $0) usage $(basename $0)
exit 1 exit 1
@ -27,10 +32,10 @@ while true
do do
case "$1" in case "$1" in
-n|--name) name=$2; shift 2;; -n|--name) name=$2; shift 2;;
-4|--ipv4) ipv4=$2; shift 2;;
-6|--ipv6) ipv6=$2; shift 2;;
--path) path=$2; shift 2;; --path) path=$2; shift 2;;
--rootfs) base_rootfs=$2; shift 2;; --rootfs) rootfs=$2; shift 2;;
--mapped-uid) uid=$2; shift 2;;
--mapped-gid) gid=$2; shift 2;;
--) shift 1; break ;; --) shift 1; break ;;
*) break ;; *) break ;;
esac esac
@ -46,25 +51,33 @@ if [ -z "${path}" ]; then
exit 1 exit 1
fi fi
if [ -z "${base_rootfs}" ]; then if [ -z "${rootfs}" ]; then
echo "missing required 'rootfs' parameter" echo "missing required 'rootfs' parameter"
exit 1 exit 1
fi fi
overlay_conf="/etc/lxc/overlay.conf"
if [ ! -e "$overlay_conf" ]; then
echo "Configuration at /etc/lxc/overlay.conf does not exists"
exit 1
fi
base_rootfs=$(perl -ne 'print $1 if /lxc.rootfs\s*=\s*(.*)/' "$overlay_conf")
config="${path}/config" config="${path}/config"
touch "$path/fstab" touch "$path/fstab"
add_overlayfs "$path" "var" add_overlayfs "$base_rootfs" "$path" "var"
add_overlayfs "$path" "etc" add_overlayfs "$base_rootfs" "$path" "etc"
add_overlayfs "$path" "home" add_overlayfs "$base_rootfs" "$path" "home"
add_overlayfs "$path" "srv" add_overlayfs "$base_rootfs" "$path" "srv"
add_overlayfs "$path" "mnt" add_overlayfs "$base_rootfs" "$path" "mnt"
add_overlayfs "$path" "root" add_overlayfs "$base_rootfs" "$path" "root"
cat > "$config" <<EOF cat > "$config" <<EOF
lxc.include = /etc/lxc/default.conf lxc.include = $overlay_conf
lxc.include = ${path}/local.conf lxc.include = ${path}/local.conf
lxc.rootfs = ${path}/rootfs lxc.mount = ${path}/fstab
lxc.utsname = $name lxc.utsname = $name
EOF EOF
touch "$path/local.conf" touch "$path/local.conf"
@ -72,5 +85,21 @@ touch "$path/local.conf"
export LXC_ROOTFS_PATH="$path/rootfs" export LXC_ROOTFS_PATH="$path/rootfs"
export LXC_NAME=$name export LXC_NAME=$name
export LXC_CONFIG_FILE="$config" export LXC_CONFIG_FILE="$config"
perl -n -e'/CREATE_HOOKS="([^"]+)"/ && map { system("/etc/lxc/hooks/$_") == 0 or print("executing $_ failed\n") } split(/\s+/, $1)' \
/etc/lxc/default.conf cat > "/tmp/${LXC_NAME}-hooks" <<EOF
#!/usr/bin/env bash
mount --bind "$path/fstab" /etc/fstab
mount --bind "$base_rootfs" "$LXC_ROOTFS_PATH" -o ro
cd "$LXC_ROOTFS_PATH"
mount -a
perl -n \
-e'/CREATE_HOOKS="([^"]+)"/ && map { system("/etc/lxc/hooks/\$_") == 0 or print("executing \$_ failed\n") } split(/\s+/, \$1)' \
"$overlay_conf"
EOF
chmod +x "/tmp/${LXC_NAME}-hooks"
unshare -m "/tmp/${LXC_NAME}-hooks"
rm "/tmp/${LXC_NAME}-hooks"
chown -R "$uid:$gid" "${path}"/* "${path}"/.*
chown -R "0:0" "${path}/config" "${path}/local.conf"
chmod +x "${path}"