*Empty MediaWiki Message*
This commit is contained in:
parent
d58d8c814f
commit
329cc8402b
142
LXC.mw
142
LXC.mw
|
@ -392,4 +392,146 @@ ln -s /dev/null /etc/systemd/system/systemd-udevd-kernel.socket
|
|||
ln -s /dev/null /etc/systemd/system/proc-sys-fs-binfmt_misc.automount
|
||||
</source>
|
||||
|
||||
== upgrade auf systemd lxc container)
|
||||
|
||||
Container auf Jessie upgrade
|
||||
|
||||
<source lang="bash">
|
||||
cat /etc/apt/sources.list
|
||||
|
||||
### ### ### C3D2 ### ### ###
|
||||
deb http://ftp.de.debian.org/debian/ jessie main contrib non-free
|
||||
deb-src http://ftp.de.debian.org/debian/ jessie main contrib non-free
|
||||
|
||||
deb http://ftp.de.debian.org/debian/ jessie-updates main contrib non-free
|
||||
deb-src http://ftp.de.debian.org/debian/ jessie-updates main contrib non-free
|
||||
|
||||
deb http://ftp.de.debian.org/debian-security/ jessie/updates main contrib non-free
|
||||
deb-src http://ftp.de.debian.org/debian-security/ jessie/updates main contrib non-free
|
||||
### ### ### C3D2 ### ### ###
|
||||
# EOF
|
||||
|
||||
apt-get clean
|
||||
apt-get update
|
||||
apt-get upgrade
|
||||
apt-get dist-upgrade
|
||||
</source>
|
||||
|
||||
sobald "Systemdfehler" bei der Installation von dem systemd Package auftaucht, Container stoppen und mit neuer ContainerConfig starten, dann dist-upgrade fortführen
|
||||
|
||||
Beispiel: systemd kompatible LXC-Config
|
||||
|
||||
<source lang="bash">
|
||||
cat /var/lib/lxc/CONTAINER/config
|
||||
|
||||
|
||||
lxc.utsname=CONTAINER
|
||||
lxc.arch=x86_64
|
||||
#/ lxc.console=/var/log/lxc/mail.console
|
||||
|
||||
lxc.network.type=veth
|
||||
lxc.network.link=br0
|
||||
lxc.network.name=eth0
|
||||
lxc.network.hwaddr=00:00:00:00:01:01
|
||||
lxc.network.veth.pair=br0_CONTAINER
|
||||
lxc.network.flags=up
|
||||
|
||||
lxc.network.type=veth
|
||||
lxc.network.link=br1
|
||||
lxc.network.name=eth1
|
||||
lxc.network.hwaddr=00:00:00:00:02:01
|
||||
lxc.network.veth.pair=br1_CONTAINER
|
||||
lxc.network.flags=up
|
||||
|
||||
lxc.network.type=veth
|
||||
lxc.network.link=br2
|
||||
lxc.network.name=eth2
|
||||
lxc.network.hwaddr=00:00:00:00:03:01
|
||||
lxc.network.veth.pair=br2_CONTAINER
|
||||
lxc.network.flags=up
|
||||
|
||||
lxc.rootfs=/var/lib/lxc/CONTAINER/root
|
||||
lxc.mount.entry=proc /var/lib/lxc/db/root/proc proc nodev,noexec,nosuid 0 0
|
||||
lxc.mount.entry=devpts /var/lib/lxc/db/root/dev/pts devpts newinstance 0 0
|
||||
lxc.mount.entry=sysfs /var/lib/lxc/db/root/sys sysfs defaults 0 0
|
||||
|
||||
### Limits
|
||||
#/ lxc.cgroup.cpu.shares = 1024
|
||||
#/ lxc.cgroup.cpuset.cpus = 0
|
||||
#/ lxc.cgroup.memory.limit_in_bytes = 256M
|
||||
#/ lxc.cgroup.memory.memsw.limit_in_bytes = 1G
|
||||
###
|
||||
|
||||
lxc.cgroup.memory.limit_in_bytes=536870912
|
||||
|
||||
### LXC - jessie/systemd hacks // ###
|
||||
lxc.autodev = 1
|
||||
lxc.kmsg = 0
|
||||
#
|
||||
#!# lxc.cap.drop = sys_admin
|
||||
#!# lxc.cap.drop = mknod
|
||||
#!# lxc.cap.drop = audit_control
|
||||
#!# lxc.cap.drop = audit_write
|
||||
#!# lxc.cap.drop = setfcap
|
||||
#!# lxc.cap.drop = setpcap
|
||||
#!# lxc.cap.drop = sys_resource
|
||||
#
|
||||
lxc.cap.drop = sys_module
|
||||
lxc.cap.drop = mac_admin
|
||||
lxc.cap.drop = mac_override
|
||||
lxc.cap.drop = sys_time
|
||||
lxc.cap.drop = sys_boot
|
||||
lxc.cap.drop = sys_pacct
|
||||
lxc.cap.drop = sys_rawio
|
||||
lxc.cap.drop = sys_tty_config
|
||||
#
|
||||
lxc.tty=2
|
||||
lxc.pts = 1024
|
||||
##/ lxc.mount.entry = /run/systemd/journal mnt/journal none bind,ro,create=dir 0 0
|
||||
#### // LXC - jessie/systemd hacks ###
|
||||
|
||||
lxc.cgroup.devices.deny = a
|
||||
# tty0
|
||||
lxc.cgroup.devices.allow = c 4:0 rwm
|
||||
# tty1
|
||||
lxc.cgroup.devices.allow = c 4:1 rwm
|
||||
# tty
|
||||
lxc.cgroup.devices.allow = c 5:0 rwm
|
||||
# console
|
||||
lxc.cgroup.devices.allow = c 5:1 rwm
|
||||
# ptmx
|
||||
lxc.cgroup.devices.allow = c 5:2 rwm
|
||||
# pts/*
|
||||
lxc.cgroup.devices.allow = c 136:* rwm
|
||||
# null
|
||||
lxc.cgroup.devices.allow = c 1:3 rwm
|
||||
# zero
|
||||
lxc.cgroup.devices.allow = c 1:5 rwm
|
||||
# full
|
||||
lxc.cgroup.devices.allow = c 1:7 rwm
|
||||
# random
|
||||
lxc.cgroup.devices.allow = c 1:8 rwm
|
||||
# urandom
|
||||
lxc.cgroup.devices.allow = c 1:9 rwm
|
||||
|
||||
# EOF
|
||||
</source>
|
||||
|
||||
systemd reinstall
|
||||
|
||||
<source lang="bash">
|
||||
apt-get install -f
|
||||
apt-get dist-upgrade
|
||||
apt-get install --reinstall systemd-sysv
|
||||
</source>
|
||||
|
||||
udev disable
|
||||
|
||||
<source lang="bash">
|
||||
ln -s /dev/null /etc/systemd/system/systemd-udevd.service
|
||||
ln -s /dev/null /etc/systemd/system/systemd-udevd-control.socket
|
||||
ln -s /dev/null /etc/systemd/system/systemd-udevd-kernel.socket
|
||||
ln -s /dev/null /etc/systemd/system/proc-sys-fs-binfmt_misc.automount
|
||||
</source>
|
||||
|
||||
That's it
|
||||
|
|
Loading…
Reference in New Issue
Block a user