</para>
</refsect2>
+
+ <refsect2>
+ <title>Container Environment</title>
+ <para>
+ If you want to pass environment variables into the container (that
+ is, environment variables which will be available to init and all of
+ its descendents), you can use <command>lxc.environment</command>
+ parameters to do so. Be careful that you do not pass in anything
+ sensitive; any process in the container which doesn't have its
+ environment scrubbed will have these variables available to it, and
+ environment variables are always available via
+ <command>/proc/PID/environ</command>.
+ </para>
+
+ <para>
+ This configuration parameter can be specified multiple times; once
+ for each environment variable you wish to configure.
+ </para>
+
+ <variablelist>
+ <varlistentry>
+ <term>
+ <option>lxc.environment</option>
+ </term>
+ <listitem>
+ <para>
+ Specify an environment variable to pass into the container.
+ Example:
+ </para>
+ <programlisting>
+ lxc.environment = APP_ENV=production
+ lxc.environment = SYSLOG_SERVER=192.0.2.42
+ </programlisting>
+ </listitem>
+ </varlistentry>
+ </variablelist>
+ </refsect2>
+
</refsect1>
<refsect1>
lxc_list_init(&new->id_map);
lxc_list_init(&new->includes);
lxc_list_init(&new->aliens);
+ lxc_list_init(&new->environment);
for (i=0; i<NUM_LXC_HOOKS; i++)
lxc_list_init(&new->hooks[i]);
lxc_list_init(&new->groups);
struct lxc_list includes;
/* config entries which are not "lxc.*" are aliens */
struct lxc_list aliens;
+
+ /* list of environment variables we'll add to the container when
+ * started */
+ struct lxc_list environment;
};
int run_lxc_hooks(const char *name, char *hook, struct lxc_conf *conf,
static int config_stopsignal(const char *, const char *, struct lxc_conf *);
static int config_start(const char *, const char *, struct lxc_conf *);
static int config_group(const char *, const char *, struct lxc_conf *);
+static int config_environment(const char *, const char *, struct lxc_conf *);
static struct lxc_config_t config[] = {
{ "lxc.start.delay", config_start },
{ "lxc.start.order", config_start },
{ "lxc.group", config_group },
+ { "lxc.environment", config_environment },
};
struct signame {
return ret;
}
+static int config_environment(const char *key, const char *value,
+ struct lxc_conf *lxc_conf)
+{
+ struct lxc_list *list_item = NULL;
+
+ list_item = malloc(sizeof(*list_item));
+ if (!list_item)
+ goto freak_out;
+
+ list_item->elem = strdup(value);
+
+ if (!list_item->elem)
+ goto freak_out;
+
+ lxc_list_add_tail(&lxc_conf->environment, list_item);
+
+ return 0;
+
+freak_out:
+ if (list_item) free(list_item);
+
+ return -1;
+}
+
static int config_tty(const char *key, const char *value,
struct lxc_conf *lxc_conf)
{
static int do_start(void *data)
{
+ struct lxc_list *iterator;
struct lxc_handler *handler = data;
const char *lsm_label = NULL;
/* don't error out though */
}
+ lxc_list_for_each(iterator, &handler->conf->environment) {
+ if (putenv((char *)iterator->elem)) {
+ SYSERROR("failed to set environment variable '%s'", (char *)iterator->elem);
+ goto out_warn_father;
+ }
+ }
+
if (putenv("container=lxc")) {
- SYSERROR("failed to set environment variable");
+ SYSERROR("failed to set environment variable 'container=lxc'");
goto out_warn_father;
}
projects / thirdparty / lxc.git / commitdiff
