Gitiles
Code Review Sign In
gerrit.opencord.org / xos / bafbdf8a041583a9ba870b9801968426abc28ccf^! / .
commitbafbdf8a041583a9ba870b9801968426abc28ccf[log] [tgz]
authorAndy Bavier <acb@cs.princeton.edu>Thu Mar 10 09:46:53 2016 -0800
committerAndy Bavier <acb@cs.princeton.edu>Thu Mar 10 09:46:53 2016 -0800
tree686f39d5db71932571a0962d739577cdf57b6253
parent623b145e5b5aed18566de6223507b0ba7bc2e00d [diff]
Use /mount directory for single files (and symlinks in container)

diff --git a/xos/synchronizers/vcpe/steps/sync_vcpetenant_vtn.yaml b/xos/synchronizers/vcpe/steps/sync_vcpetenant_vtn.yaml
index 8143131..c11f2af 100644
--- a/xos/synchronizers/vcpe/steps/sync_vcpetenant_vtn.yaml
+++ b/xos/synchronizers/vcpe/steps/sync_vcpetenant_vtn.yaml

@@ -233,19 +233,17 @@
     notify:
     - restart dnsmasq
 
-  - name: create /var/container_volumes/{{ container_name }}/etc/ufw/
-    file: path=/var/container_volumes/{{ container_name }}/etc/ufw state=directory owner=root group=root
+  - name: create /var/container_volumes/{{ container_name }}/mount/
+    file: path=/var/container_volumes/{{ container_name }}/mount state=directory owner=root group=root
 
   - name: redirection rules for safe DNS
-    template: src=/opt/xos/synchronizers/vcpe/templates/before.rules.j2 dest=/var/container_volumes/{{ container_name }}/etc/ufw/before.rules owner=root group=root mode=0644
+    template: src=/opt/xos/synchronizers/vcpe/templates/before.rules.j2 dest=/var/container_volumes/{{ container_name }}/mount/before.rules owner=root group=root mode=0644
     notify:
-    - copy in before.rules
     - reload ufw
 
   - name: base ufw setup uses /etc/rc.local
-    template: src=/opt/xos/synchronizers/vcpe/templates/rc.local.j2 dest=/var/container_volumes/{{ container_name }}/etc/rc.local owner=root group=root mode=0755
+    template: src=/opt/xos/synchronizers/vcpe/templates/rc.local.j2 dest=/var/container_volumes/{{ container_name }}/mount/rc.local owner=root group=root mode=0755
     notify:
-    - copy in rc.local
     - rerun /etc/rc.local
 
   - name: create directory for local programs
@@ -278,16 +276,6 @@
     service: name={{ container_name }} state=started
 
   handlers:
-  # Use docker cp even though we have a single-file volume
-  # The reason is that changes to external file volume don't show up inside the container
-  # Probably Ansible deletes and then recreates the external file, and container has old version
-  # Do this handler first, e.g., before restarting the container
-  - name: copy in rc.local
-    shell: docker cp /var/container_volumes/{{ container_name }}/etc/rc.local {{ container_name }}:/etc/
-
-  - name: copy in before.rules
-    shell: docker cp /var/container_volumes/{{ container_name }}/etc/ufw/before.rules {{ container_name }}:/etc/ufw/
-
   # Dnsmasq is automatically restarted in the container
   - name: restart dnsmasq
     shell: docker exec {{ container_name }} killall dnsmasq

diff --git a/xos/synchronizers/vcpe/templates/start-vcpe-vtn.sh.j2 b/xos/synchronizers/vcpe/templates/start-vcpe-vtn.sh.j2
index 1723174..1a52141 100644
--- a/xos/synchronizers/vcpe/templates/start-vcpe-vtn.sh.j2
+++ b/xos/synchronizers/vcpe/templates/start-vcpe-vtn.sh.j2

@@ -17,8 +17,7 @@
 then
     docker pull andybavier/docker-vcpe
     docker run -d --name=$VCPE --privileged=true --net=none \
-    -v /var/container_volumes/$VCPE/etc/ufw/before.rules:/etc/ufw/before.rules:ro \
-    -v /var/container_volumes/$VCPE/etc/rc.local:/etc/rc.local:ro \
+    -v /var/container_volumes/$VCPE/mount:/mount:ro \
     -v /var/container_volumes/$VCPE/etc/dnsmasq.d:/etc/dnsmasq.d:ro \
     -v /var/container_volumes/$VCPE/etc/service:/etc/service \
     -v /var/container_volumes/$VCPE/usr/local/sbin:/usr/local/sbin:ro \