[lxc-devel] [PATCH 1/1] templates/lxc-fedora Network startup w/o Network Manager
Serge Hallyn
serge.hallyn at ubuntu.com
Fri Oct 4 19:52:20 UTC 2013
Quoting Michael H. Warfield (mhw at WittsEnd.com):
> This patches the Fedora template to insure that the legacy network
> startup scripts are enabled when NetworkManager has not been installed
> in the container (default).
>
> It also fixes a login problem with pam_loginuid.so in a container.
> https://bugzilla.redhat.com/show_bug.cgi?id=966807
>
> Signed-off-by: Michael H. Warfield <mhw at WittsEnd.com>
Acked-by: Serge E. Hallyn <serge.hallyn at ubuntu.com>
>
> --
> diff --git a/templates/lxc-fedora.in b/templates/lxc-fedora.in
> index 484170c..c5bddf1 100644
> --- a/templates/lxc-fedora.in
> +++ b/templates/lxc-fedora.in
> @@ -98,7 +98,13 @@ configure_fedora()
> mkdir -p $rootfs_path/selinux
> echo 0 > $rootfs_path/selinux/enforce
>
> - # configure the network using the dhcp
> + # This may be related to disabling selinux above but this is
> + # a known problem and documented in RedHat bugzilla as relating
> + # to a problem with auditing enabled. This prevents an error in
> + # the container "Cannot make/remove an entry for the specified session"
> + sed -i '/^session.*pam_loginuid.so/s/^session/# session/' ${rootfs_path}/etc/pam.d/login
> +
> + # configure the network using the dhcp
> cat <<EOF > ${rootfs_path}/etc/sysconfig/network-scripts/ifcfg-eth0
> DEVICE=eth0
> BOOTPROTO=dhcp
> @@ -160,7 +166,15 @@ EOF
> rm -f ${rootfs_path}/var/lib/rpm/__db*
> chroot ${rootfs_path} rpm --rebuilddb
> chroot ${rootfs_path} yum -y install fedora-release
> - # This just makes sure the rpm db is synced to that version...
> +
> + if [[ ! -e ${rootfs_path}/sbin/NetworkManager ]]
> + then
> + # NetworkManager has not been installed. Use the
> + # legacy chkconfig command to enable the network startup
> + # scripts in the container.
> + chroot ${rootfs_path} chkconfig network on
> + fi
> +
> umount ${rootfs_path}/proc
> umount ${rootfs_path}/dev
>
>
> --
>
> Regards,
> Mike
> --
> Michael H. Warfield (AI4NB) | (770) 985-6132 | mhw at WittsEnd.com
> /\/\|=mhw=|\/\/ | (678) 463-0932 | http://www.wittsend.com/mhw/
> NIC whois: MHW9 | An optimist believes we live in the best of all
> PGP Key: 0x674627FF | possible worlds. A pessimist is sure of it!
> ------------------------------------------------------------------------------
> October Webinars: Code for Performance
> Free Intel webinars can help you accelerate application performance.
> Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most from
> the latest Intel processors and coprocessors. See abstracts and register >
> http://pubads.g.doubleclick.net/gampad/clk?id=60134791&iu=/4140/ostg.clktrk
> _______________________________________________
> Lxc-devel mailing list
> Lxc-devel at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/lxc-devel
More information about the lxc-devel
mailing list