evidenceprime/lxc

Linux Containers via Chef

LXC

Manage linux containers with Chef.

Note

Test this cookbook before applying to existing nodes. Lots of updates have been applied, and some tooling has been replaced. Also, rhel is working in a pretty hacky way, so use at your own risk. YOLO!

Recipes

default

Installs the packages and configuration files needed for lxc on the server. If the node uses apt-cacher-ng as a client, the server will be reused when building containers.

install_dependencies

Installs the packages needed to support lxc's containers.

containers

This recipe creates all of the containers defined in the ['lxc']['containers'] hash. Here is an example of an example container:

node['lxc']['containers']['example'] = {
  'template' => 'ubuntu',
  'initialize_commands' => ['apt-get update']
}

knife

Install and manage containers via the knife-remotelxc plugin.

package

Installs lxc packages

service

Configures lxc services

LWRPs

lxc

Allows for creation, deletion, and cloning of containers

lxc_config

Allows configuration of the LXC configuration file

lxc_fstab

Allows defining mounts to be used within the container

lxc_interface

Allows configurations of network interfaces within a container

lxc_ephemeral

Run a command within an ephemeral container

lxc_container

Creates a container using the lxc LWRP and configures the container as requested. This resource also allows nesting lxc_fstab and lxc_interface within the container resource.

Example

include_recipe 'lxc'

lxc_container 'my_container' do
  action :create
  validation_client 'my-validator'
  server_uri 'https://api.opscode.com/organizations/myorg'
  validator_pem content_from_encrypted_dbag
  run_list ['role[base]']
  chef_enabled true
  fstab_mount "Persist" do
    file_system '/opt/file_store'
    mount_point '/opt/file_store'
    type 'none'
    options 'bind,rw'
  end
end

lxc_container 'my_container_clone' do
  action :create
  clone 'my_container'
  chef_enabled true
end

lxc_service 'my_container_clone' do
  action :start
end

Containers do not have to be Chef enabled but it does make them extremely easy to configure. If you want the Omnibus installer cached, you can set the attribute

node['omnibus_updater']['cache_omnibus_installer'] = true

in a role or environment (default is false). The lxc_container resource also provides initialize_commands which an array of commands can be provided that will be run after the container is created.

Repository:

• https://github.com/hw-cookbooks/lxc

Contributors

• Sean Porter (https://github.com/portertech)
• Matt Ray (https://github.com/mattray)