linux-lxc 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: c35fca8caf7359999dc398d555d1ec956694e350
+  data.tar.gz: f6f67f5613ed298430178054a4fb722ef53d9346
+SHA512:
+  metadata.gz: 507e65ce27c9717e6edd413c693b876cddbfacff2f3cc0e77fd1482570586606d44238edda1d51156641aa872a105abb08ef267a3d7a43ddc904bb37888e1ae0
+  data.tar.gz: 1723646ae1902658ef60650c5b559803ed2007c1e90d3d31e4fd4ce6930a0f417b87a77648c5482fc581a1a2fdf56d190ffcd438572499c5dbb287ed02fa34d0

data/lib/linux/lxc/version.rb

@@ -0,0 +1,5 @@
+module Linux
+  class Lxc
+      VERSION = "0.0.1"
+  end
+end

data/lib/linux/lxc.rb

@@ -0,0 +1,119 @@
+require "linux/lxc/version"
+
+module Linux
+    class Lxc
+
+      class Line
+        attr_reader :lxc, :line, :key
+        attr_accessor :value
+        def initialize(lxc, key, value)
+          @lxc = lxc
+          @line = lxc.lines.add(self).length
+          @key = key
+          @value = value
+        end
+        def file
+          @lxc.file
+        end
+        def to_s
+          if value
+            "#{key} = #{value}"
+          else
+            key
+          end
+        end
+      end
+
+      attr_reader :index, :lines
+      attr_accessor :file
+
+      class Lines
+        def initialize
+          @lines = []
+        end
+        def add(line)
+          @lines << line
+          @lines
+        end
+        def each(&block)
+          @lines.each { |line| block.call(line) }
+        end
+        def values
+          @lines.map{|i| i.value}
+        end
+
+        def [](idx)
+          @lines[idx]
+        end
+
+        def length
+          @lines.length
+        end
+
+        def first
+          @lines.first
+        end
+      end
+
+      def initialize(file, index = {})
+        @file = file
+        @lines = Lines.new
+        @index = index
+      end
+
+      def get(key)
+        @index[key]
+      end
+
+      def add(key, value = nil)
+        key = key.strip
+        if value and value.instance_of?(String)
+          value = value.strip
+        end
+        line = Line.new(self, key, value)
+        path = ""
+        dot = ""
+        key.split('.').each do |element|
+          path += dot + element
+          dot = "."
+          @index[path] ||= Lines.new
+          @index[path].add(line)
+        end
+      end
+
+      def write
+        File.open(file, 'w') do |f|
+          @lines.each do |line|
+            if line.key == "lxc.include"
+              line.value.write
+            end
+            f.write(line.to_s + "\n")
+          end
+        end
+      end
+
+      def to_s
+        @file
+      end
+
+      def self.parse(file, index = {})
+        lxc = Lxc.new(file, index)
+        IO.read(file).lines.each do |line|
+          line = line.chop
+          if line.match(/^\s*$/) or line.match(/^\s*#.*$/)
+              lxc.add(line, nil)
+          else
+            match = line.match(/^\s*([a-z\.]+)\s*=\s*(.*)\s*$/)
+            throw "illegal line in #{@file}:#{@lines.length}" unless match
+            if match[1] == 'lxc.include'
+              lxc.add(match[1], parse(match[2], index))
+            else
+              lxc.add(match[1], match[2])
+            end
+          end
+        end
+        lxc
+      end
+
+    end
+end

data/test/linux_lxc_test.rb

@@ -0,0 +1,192 @@
+
+require 'rubygems'
+
+begin
+  require 'pry'
+rescue
+  # it would be cool but-:)
+end
+
+require 'fileutils'
+
+require 'rubygems'
+require 'test/unit'
+
+require 'tempfile'
+
+$LOAD_PATH.unshift(File.dirname(__FILE__))
+$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '..', 'lib'))
+require 'linux/lxc'
+
+class LinuxLxcTest < Test::Unit::TestCase
+  def setup
+    @temp_dir =  Dir.mktmpdir
+    @lxc_config = File.join(@temp_dir, "lxc.config")
+    File.write(@lxc_config, <<SAMPLE)
+# Template used to create this container: /usr/share/lxc/templates/lxc-ubuntu
+# Parameters passed to the template:
+# For additional config options, please look at lxc.container.conf(5)
+
+# Common configuration
+lxc.include = #{@temp_dir}/ubuntu.common.conf
+
+# Container specific configuration
+lxc.rootfs = /var/lib/lxc/border-eth0/rootfs
+lxc.mount = /var/lib/lxc/border-eth0/fstab
+lxc.utsname = border-eth0
+lxc.arch = amd64
+
+# Network configuration
+lxc.network.type = veth
+lxc.network.flags = up
+lxc.network.link = lxcbr0
+lxc.network.hwaddr = 00:16:3e:67:03:4a
+SAMPLE
+    @lxc_ubuntu_common_conf = File.join(@temp_dir, "ubuntu.common.conf")
+    File.write(@lxc_ubuntu_common_conf, <<SAMPLE)
+# Default pivot location
+lxc.pivotdir = lxc_putold
+
+# Default mount entries
+lxc.mount.entry = proc proc proc nodev,noexec,nosuid 0 0
+lxc.mount.entry = sysfs sys sysfs defaults 0 0
+lxc.mount.entry = /sys/fs/fuse/connections sys/fs/fuse/connections none bind,optional 0 0
+lxc.mount.entry = /sys/kernel/debug sys/kernel/debug none bind,optional 0 0
+lxc.mount.entry = /sys/kernel/security sys/kernel/security none bind,optional 0 0
+lxc.mount.entry = /sys/fs/pstore sys/fs/pstore none bind,optional 0 0
+
+# Default console settings
+lxc.devttydir = lxc
+lxc.tty = 4
+lxc.pts = 1024
+
+# Default capabilities
+lxc.cap.drop = sys_module mac_admin mac_override sys_time
+
+# When using LXC with apparmor, the container will be confined by default.
+# If you wish for it to instead run unconfined, copy the following line
+# (uncommented) to the container's configuration file.
+#lxc.aa_profile = unconfined
+
+# To support container nesting on an Ubuntu host while retaining most of
+# apparmor's added security, use the following two lines instead.
+#lxc.aa_profile = lxc-container-default-with-nesting
+#lxc.mount.auto = cgroup:mixed
+
+# Uncomment the following line to autodetect squid-deb-proxy configuration on the
+# host and forward it to the guest at start time.
+#lxc.hook.pre-start = /usr/share/lxc/hooks/squid-deb-proxy-client
+
+# If you wish to allow mounting block filesystems, then use the following
+# line instead, and make sure to grant access to the block device and/or loop
+# devices below in lxc.cgroup.devices.allow.
+#lxc.aa_profile = lxc-container-default-with-mounting
+
+# Default cgroup limits
+lxc.cgroup.devices.deny = a
+## Allow any mknod (but not using the node)
+lxc.cgroup.devices.allow = c *:* m
+lxc.cgroup.devices.allow = b *:* m
+## /dev/null and zero
+lxc.cgroup.devices.allow = c 1:3 rwm
+lxc.cgroup.devices.allow = c 1:5 rwm
+## consoles
+lxc.cgroup.devices.allow = c 5:0 rwm
+lxc.cgroup.devices.allow = c 5:1 rwm
+## /dev/{,u}random
+lxc.cgroup.devices.allow = c 1:8 rwm
+lxc.cgroup.devices.allow = c 1:9 rwm
+## /dev/pts/*
+lxc.cgroup.devices.allow = c 5:2 rwm
+lxc.cgroup.devices.allow = c 136:* rwm
+## rtc
+lxc.cgroup.devices.allow = c 254:0 rm
+## fuse
+lxc.cgroup.devices.allow = c 10:229 rwm
+## tun
+lxc.cgroup.devices.allow = c 10:200 rwm
+## full
+lxc.cgroup.devices.allow = c 1:7 rwm
+## hpet
+lxc.cgroup.devices.allow = c 10:228 rwm
+## kvm
+lxc.cgroup.devices.allow = c 10:232 rwm
+## To use loop devices, copy the following line to the container's
+## configuration file (uncommented).
+#lxc.cgroup.devices.allow = b 7:* rwm
+
+# Blacklist some syscalls which are not safe in privileged
+# containers
+lxc.seccomp = /usr/share/lxc/config/common.seccomp
+SAMPLE
+  end
+
+  def teardown
+    FileUtils.remove_entry_secure @temp_dir
+  end
+
+  def test_reader
+    lxc = Linux::Lxc.parse(@lxc_config)
+
+    assert_equal lxc.get('lxc').length, 38
+    assert_equal lxc.get('lxc.network').length, 4
+    assert_equal lxc.get('lxc.network.hwaddr').length, 1
+    assert_equal lxc.get('lxc.network.murks'), nil
+
+    assert_equal lxc.get('lxc.cgroup.devices.allow').values[4], 'c 5:0 rwm'
+    assert_equal lxc.get('lxc.cgroup.devices.allow')[4].file, @lxc_ubuntu_common_conf
+    assert_equal lxc.get('lxc.cgroup.devices.allow')[4].line, 48
+
+    assert_equal lxc.get('lxc.network.hwaddr').values, ['00:16:3e:67:03:4a']
+    assert_equal lxc.get('lxc.network.hwaddr').first.file, @lxc_config
+    assert_equal lxc.get('lxc.network.hwaddr').first.line, 18
+  end
+
+
+  def test_from_scratch
+    lxc = Linux::Lxc.new(File.join(@temp_dir, "base"))
+    lxc.add("# base meno")
+    lxc.add("lxc.cgroup.devices.allow", "meno")
+    incl = Linux::Lxc.new(File.join(@temp_dir, "incl"))
+    lxc.add("lxc.include", incl)
+    incl.add("# include meno")
+    incl.add("lxc.network.hwaddr", '00:16:3e:67:03:4a')
+    lxc.write
+
+    lxc_read = Linux::Lxc.parse(lxc.file)
+    assert_equal lxc_read.get('lxc.cgroup.devices.allow').values, ['meno']
+    assert_equal lxc_read.get('lxc.cgroup.devices.allow').first.file, lxc.file
+    assert_equal lxc_read.get('lxc.cgroup.devices.allow').first.line, 2
+
+    assert_equal lxc_read.get('lxc.network.hwaddr').values, ['00:16:3e:67:03:4a']
+    assert_equal lxc_read.get('lxc.network.hwaddr').first.file, incl.file
+    assert_equal lxc_read.get('lxc.network.hwaddr').first.line, 2
+  end
+
+  def test_write
+    lxc = Linux::Lxc.parse(@lxc_config)
+    lxc.file = "#{@lxc_config}.new"
+    inc_file = "#{lxc.get('lxc.cgroup.devices.allow').first.lxc.file}.new"
+    lxc.get('lxc.cgroup.devices.allow').first.lxc.file = inc_file
+    lxc.get('lxc.cgroup.devices.allow')[5].value='meno'
+    assert_equal lxc.get('lxc.cgroup.devices.allow').values[5], 'meno'
+
+    lxc.get('lxc.network.hwaddr').first.value='construqt'
+    assert_equal lxc.get('lxc.network.hwaddr').values, ['construqt']
+
+    lxc.write
+
+    lxc_read = Linux::Lxc.parse(lxc.file)
+    assert_equal lxc_read.get('lxc.cgroup.devices.allow').values[5], 'meno'
+    assert_equal lxc_read.get('lxc.cgroup.devices.allow')[5].file, inc_file
+    assert_equal lxc_read.get('lxc.cgroup.devices.allow')[5].line, 49
+
+    assert_equal lxc_read.get('lxc.network.hwaddr').values, ['construqt']
+    assert_equal lxc_read.get('lxc.network.hwaddr').first.file, lxc.file
+    assert_equal lxc_read.get('lxc.network.hwaddr').first.line, 18
+
+  end
+
+
+end
+

metadata

@@ -0,0 +1,49 @@
+--- !ruby/object:Gem::Specification
+name: linux-lxc
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- Meno Abels
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2015-09-19 00:00:00.000000000 Z
+dependencies: []
+description: Parse the output of ip addr on a linux system
+email:
+- meno.abels@adviser.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/linux/lxc.rb
+- lib/linux/lxc/version.rb
+- test/linux_lxc_test.rb
+homepage: https://github.com/mabels/gem-linux-lxc
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.0.14
+signing_key: 
+specification_version: 4
+summary: Parse the output of ip addr on a linux system
+test_files:
+- test/linux_lxc_test.rb
+has_rdoc: