From: Stéphane Graber Date: Mon, 18 Feb 2013 23:59:42 +0000 (-0500) Subject: lxc-ubuntu{-cloud}: Config layout tweaking X-Git-Tag: lxc-0.9.0.rc1~2^2~49 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=daaf41b36790bdaae855048e56ed090b17a77c97;p=thirdparty%2Flxc.git lxc-ubuntu{-cloud}: Config layout tweaking This commit tweaks the layout of the config file for the Ubuntu templates. With this, we now get a clear network config group, then a path related group, then a bunch of random config options and the end of the config is apparmor, capabilities and cgroups. Signed-off-by: Stéphane Graber Acked-by: Serge Hallyn --- diff --git a/templates/lxc-ubuntu-cloud.in b/templates/lxc-ubuntu-cloud.in index de9f3c31d..9ee8fb127 100644 --- a/templates/lxc-ubuntu-cloud.in +++ b/templates/lxc-ubuntu-cloud.in @@ -41,21 +41,21 @@ copy_configuration() # associated hwaddr. nics=`grep -e '^lxc\.network\.type[ \t]*=[ \t]*veth' $path/config | wc -l` if [ $nics -eq 1 ]; then - grep -q "^lxc.network.hwaddr" $path/config || cat <> $path/config -lxc.network.hwaddr = 00:16:3e:$(openssl rand -hex 3| sed 's/\(..\)/\1:/g; s/.$//') -EOF + grep -q "^lxc.network.hwaddr" $path/config || sed -i -e "/^lxc\.network\.type[ \t]*=[ \t]*veth/a lxc.network.hwaddr = 00:16:3e:$(openssl rand -hex 3| sed 's/\(..\)/\1:/g; s/.$//')" $path/config fi grep -q "^lxc.rootfs" $path/config 2>/dev/null || echo "lxc.rootfs = $rootfs" >> $path/config cat <> $path/config -lxc.utsname = $name +lxc.mount = $path/fstab +lxc.pivotdir = lxc_putold +lxc.devttydir =$ttydir lxc.tty = 4 lxc.pts = 1024 -lxc.mount = $path/fstab + +lxc.utsname = $name lxc.arch = $arch -lxc.cap.drop = sys_module mac_admin -lxc.pivotdir = lxc_putold +lxc.cap.drop = sys_module mac_admin mac_override # When using LXC with apparmor, uncomment the next line to run unconfined: #lxc.aa_profile = unconfined diff --git a/templates/lxc-ubuntu.in b/templates/lxc-ubuntu.in index a2fc95201..39c5a1c42 100644 --- a/templates/lxc-ubuntu.in +++ b/templates/lxc-ubuntu.in @@ -319,22 +319,21 @@ copy_configuration() # associated hwaddr. nics=`grep -e '^lxc\.network\.type[ \t]*=[ \t]*veth' $path/config | wc -l` if [ $nics -eq 1 ]; then - grep -q "^lxc.network.hwaddr" $path/config || cat <> $path/config -lxc.network.hwaddr = 00:16:3e:$(openssl rand -hex 3| sed 's/\(..\)/\1:/g; s/.$//') -EOF + grep -q "^lxc.network.hwaddr" $path/config || sed -i -e "/^lxc\.network\.type[ \t]*=[ \t]*veth/a lxc.network.hwaddr = 00:16:3e:$(openssl rand -hex 3| sed 's/\(..\)/\1:/g; s/.$//')" $path/config fi grep -q "^lxc.rootfs" $path/config 2>/dev/null || echo "lxc.rootfs = $rootfs" >> $path/config cat <> $path/config -lxc.utsname = $name +lxc.mount = $path/fstab +lxc.pivotdir = lxc_putold lxc.devttydir =$ttydir lxc.tty = 4 lxc.pts = 1024 -lxc.mount = $path/fstab + +lxc.utsname = $name lxc.arch = $arch lxc.cap.drop = sys_module mac_admin mac_override -lxc.pivotdir = lxc_putold # When using LXC with apparmor, uncomment the next line to run unconfined: #lxc.aa_profile = unconfined