[pve-container.git] / src / lxc-pve-prestart-hook

#!/usr/bin/perl

package lxc_pve_prestart_hook;

use strict;
use warnings;

exit 0 if $ENV{LXC_NAME} && $ENV{LXC_NAME} !~ /^\d+$/;

use POSIX;
use File::Path;
use Fcntl ':mode';

use PVE::SafeSyslog;
use PVE::Tools;
use PVE::Cluster;
use PVE::INotify;
use PVE::RPCEnvironment;
use PVE::JSONSchema qw(get_standard_option);
use PVE::CLIHandler;
use PVE::Storage;
use PVE::LXC;
use PVE::LXC::Setup;
use Data::Dumper;

use base qw(PVE::CLIHandler);

__PACKAGE__->register_method ({
    name => 'lxc-pve-prestart-hook',
    path => 'lxc-pve-prestart-hook',
    method => 'GET',
    description => "Create a new container root directory.",
    parameters => {
    	additionalProperties => 0,
	properties => {
	    name => {
		description => "The container name. This hook is only active for containers using numeric IDs, where configuration is stored on /etc/pve/lxc/<name>.conf (else it is just a NOP).",
		type => 'string',
		pattern => '\S+',
		maxLength => 64,
	    },
	    path => {
		description => "The path to the container configuration directory (LXC internal argument - do not pass manually!).",
		type => 'string',
	    },
	    rootfs => {
		description => "The path to the container's rootfs (LXC internal argument - do not pass manually!)",
		type => 'string',
	    },
	},
    },
    returns => { type => 'null' },

    code => sub {
	my ($param) = @_;

	return undef if $param->{name} !~ m/^\d+$/;

	my $vmid = $param->{name};

	PVE::Cluster::check_cfs_quorum(); # only start if we have quorum

	return undef if ! -f PVE::LXC::config_file($vmid);

	my $conf = PVE::LXC::load_config($vmid);
	PVE::LXC::check_lock($conf) if !$ENV{PVE_SKIPLOCK};

	my $storage_cfg = PVE::Storage::config();

	my $vollist = PVE::LXC::get_vm_volumes($conf);
	my $loopdevlist = PVE::LXC::get_vm_volumes($conf, 'rootfs');

	PVE::Storage::activate_volumes($storage_cfg, $vollist);

	my $rootdir = $param->{rootfs};

	my $setup_mountpoint = sub {
	    my ($ms, $mountpoint) = @_;

	    #return if $ms eq 'rootfs';
	    PVE::LXC::mountpoint_mount($mountpoint, $rootdir, $storage_cfg);
	};

	my $setup_cgroup_device = sub {
	    my ($ms, $mountpoint) = @_;

	    my $volid = $mountpoint->{volume};
	    return if !$volid || $volid !~ m|^/dev/.+|;

	    my $path = PVE::LXC::mountpoint_mount_path($mountpoint, $storage_cfg);

	    my (undef, undef, $mode, undef, undef, undef, $rdev) = stat($path);
	    if ($mode && S_ISBLK($mode) && $rdev) {
		my $major = int($rdev / 0x100);
		my $minor = $rdev % 0x100;
		if ($major != 7) { # must not be a loop device
		    PVE::Tools::run_command(['mknod', '-m', '666', "$rootdir$path", 'b', $major, $minor]);
		    PVE::LXC::write_cgroup_value("devices", $vmid, "devices.allow", "b ${major}:${minor} rwm");
		}
	    }
	};

	PVE::LXC::foreach_mountpoint($conf, $setup_mountpoint);

	PVE::LXC::foreach_mountpoint($conf, $setup_cgroup_device);

	my $lxc_setup = PVE::LXC::Setup->new($conf, $rootdir);
	$lxc_setup->pre_start_hook();
	return undef;
    }});


push @ARGV, 'help' if !scalar(@ARGV);

my $param = {};

if ((scalar(@ARGV) == 3) && ($ARGV[1] eq 'lxc') && ($ARGV[2] eq 'pre-start')) {
    $param->{name} = $ENV{'LXC_NAME'};
    die "got wrong name" if $param->{name} ne $ARGV[0];

    $param->{path} = $ENV{'LXC_CONFIG_FILE'};
    $param->{rootfs} = $ENV{'LXC_ROOTFS_PATH'};
    @ARGV = ();
} else {
    @ARGV = ('help');
}

our $cmddef = [ __PACKAGE__, 'lxc-pve-prestart-hook', [], $param];

__PACKAGE__->run_cli_handler();
Commit	Line	Data
deaf7667 AD	1	#!/usr/bin/perl
deaf7667 AD	2
b056d074 DM	3	package lxc_pve_prestart_hook;
b056d074 DM	4
deaf7667 AD	5	use strict;
deaf7667 AD	6	use warnings;
4ed2b825	7
d6811d3f	8	exit 0 if $ENV{LXC_NAME} && $ENV{LXC_NAME} !~ /^\d+$/;
4ed2b825	9
deaf7667 AD	10	use POSIX;
deaf7667 AD	11	use File::Path;
c9a5774b	12	use Fcntl ':mode';
deaf7667 AD	13
	14	use PVE::SafeSyslog;
	15	use PVE::Tools;
	16	use PVE::Cluster;
	17	use PVE::INotify;
	18	use PVE::RPCEnvironment;
	19	use PVE::JSONSchema qw(get_standard_option);
	20	use PVE::CLIHandler;
	21	use PVE::Storage;
	22	use PVE::LXC;
c9a5774b	23	use PVE::LXC::Setup;
deaf7667 AD	24	use Data::Dumper;
	25
	26	use base qw(PVE::CLIHandler);
	27
deaf7667 AD	28	__PACKAGE__->register_method ({
	29	name => 'lxc-pve-prestart-hook',
	30	path => 'lxc-pve-prestart-hook',
	31	method => 'GET',
	32	description => "Create a new container root directory.",
	33	parameters => {
	34	additionalProperties => 0,
	35	properties => {
	36	name => {
c0c77476	37	description => "The container name. This hook is only active for containers using numeric IDs, where configuration is stored on /etc/pve/lxc/<name>.conf (else it is just a NOP).",
deaf7667 AD	38	type => 'string',
	39	pattern => '\S+',
	40	maxLength => 64,
	41	},
	42	path => {
	43	description => "The path to the container configuration directory (LXC internal argument - do not pass manually!).",
	44	type => 'string',
	45	},
	46	rootfs => {
	47	description => "The path to the container's rootfs (LXC internal argument - do not pass manually!)",
	48	type => 'string',
	49	},
	50	},
	51	},
	52	returns => { type => 'null' },
	53
	54	code => sub {
	55	my ($param) = @_;
	56
	57	return undef if $param->{name} !~ m/^\d+$/;
	58
9459f07d	59	my $vmid = $param->{name};
d886a5f9 DM	60
	61	PVE::Cluster::check_cfs_quorum(); # only start if we have quorum
	62
9459f07d	63	return undef if ! -f PVE::LXC::config_file($vmid);
d886a5f9	64
9459f07d	65	my $conf = PVE::LXC::load_config($vmid);
2de0b3d4	66	PVE::LXC::check_lock($conf) if !$ENV{PVE_SKIPLOCK};
deaf7667	67
9459f07d	68	my $storage_cfg = PVE::Storage::config();
deaf7667	69
09aa32fd AD	70	my $vollist = PVE::LXC::get_vm_volumes($conf);
09aa32fd AD	71	my $loopdevlist = PVE::LXC::get_vm_volumes($conf, 'rootfs');
deaf7667	72
571b33da	73	PVE::Storage::activate_volumes($storage_cfg, $vollist);
c9a5774b WB	74
	75	my $rootdir = $param->{rootfs};
	76
	77	my $setup_mountpoint = sub {
	78	my ($ms, $mountpoint) = @_;
	79
	80	#return if $ms eq 'rootfs';
	81	PVE::LXC::mountpoint_mount($mountpoint, $rootdir, $storage_cfg);
	82	};
	83
	84	my $setup_cgroup_device = sub {
	85	my ($ms, $mountpoint) = @_;
	86
	87	my $volid = $mountpoint->{volume};
	88	return if !$volid \|\| $volid !~ m\|^/dev/.+\|;
	89
	90	my $path = PVE::LXC::mountpoint_mount_path($mountpoint, $storage_cfg);
	91
	92	my (undef, undef, $mode, undef, undef, undef, $rdev) = stat($path);
	93	if ($mode && S_ISBLK($mode) && $rdev) {
	94	my $major = int($rdev / 0x100);
	95	my $minor = $rdev % 0x100;
	96	if ($major != 7) { # must not be a loop device
	97	PVE::Tools::run_command(['mknod', '-m', '666', "$rootdir$path", 'b', $major, $minor]);
	98	PVE::LXC::write_cgroup_value("devices", $vmid, "devices.allow", "b ${major}:${minor} rwm");
	99	}
	100	}
	101	};
	102
	103	PVE::LXC::foreach_mountpoint($conf, $setup_mountpoint);
	104
	105	PVE::LXC::foreach_mountpoint($conf, $setup_cgroup_device);
	106
	107	my $lxc_setup = PVE::LXC::Setup->new($conf, $rootdir);
	108	$lxc_setup->pre_start_hook();
deaf7667 AD	109	return undef;
	110	}});
	111
	112
	113	push @ARGV, 'help' if !scalar(@ARGV);
	114
	115	my $param = {};
	116
b056d074	117	if ((scalar(@ARGV) == 3) && ($ARGV[1] eq 'lxc') && ($ARGV[2] eq 'pre-start')) {
deaf7667 AD	118	$param->{name} = $ENV{'LXC_NAME'};
	119	die "got wrong name" if $param->{name} ne $ARGV[0];
	120
	121	$param->{path} = $ENV{'LXC_CONFIG_FILE'};
	122	$param->{rootfs} = $ENV{'LXC_ROOTFS_PATH'};
	123	@ARGV = ();
	124	} else {
	125	@ARGV = ('help');
	126	}
	127
b056d074	128	our $cmddef = [ __PACKAGE__, 'lxc-pve-prestart-hook', [], $param];
deaf7667	129
b056d074	130	__PACKAGE__->run_cli_handler();