Start playing with metadata
This commit is contained in:
parent
6caf8c53b9
commit
8717fc24fd
6 changed files with 101 additions and 55 deletions
|
|
@ -22,6 +22,16 @@ onboot:
|
|||
binds:
|
||||
- /etc/sysctl.d/01-fic.conf:/etc/sysctl.d/01-fic.conf:ro
|
||||
|
||||
# Metadata
|
||||
- name: metadata-mount
|
||||
image: linuxkit/mount:f671cb94a8999a65e33b3fe79f3def58e3d58b07
|
||||
command: ["/usr/bin/mountie", "-device", "/dev/sda1", "/boot" ]
|
||||
- name: metadata
|
||||
image: linuxkit/metadata:501144d47215671e77b9cac44748a04f21236195
|
||||
command: ["/usr/bin/metadata", "-v", "file=/fickit-metadata"]
|
||||
binds:
|
||||
- /boot/fickit-metadata:/fickit-metadata:ro
|
||||
|
||||
# Filesystem
|
||||
- name: swap
|
||||
image: linuxkit/swap:d17a7f1c26ff768c26b3c206ccf3aa72349568df
|
||||
|
|
@ -29,6 +39,8 @@ onboot:
|
|||
- name: dm-crypt
|
||||
image: linuxkit/dm-crypt:526d32351c8246431be8e1a168cb514ff3c365af
|
||||
command: ["/usr/bin/crypto", "-l", "crypt_fic", "/dev/sda3"]
|
||||
binds:
|
||||
- /run/config/dm-crypt:/etc/dm-crypt
|
||||
- name: mount
|
||||
image: linuxkit/mount:f671cb94a8999a65e33b3fe79f3def58e3d58b07
|
||||
command: ["/usr/bin/mountie", "-device", "/dev/mapper/crypt_fic", "/var/lib/fic" ]
|
||||
|
|
@ -282,7 +294,7 @@ services:
|
|||
binds:
|
||||
- /etc/hosts:/etc/hosts:ro
|
||||
- /var/lib/fic/ssh:/etc/ssh:ro
|
||||
- /root/.ssh/id_ed25519:/root/.ssh/id_ed25519:ro
|
||||
- /run/config/synchro/id_ed25519:/root/.ssh/id_ed25519:ro
|
||||
- /root/synchro.sh:/root/synchro.sh:ro
|
||||
- /var/lib/fic/files:/srv/FILES:ro
|
||||
#- /var/lib/fic/pki/ca.key:/srv/PKI/ca.key:ro
|
||||
|
|
@ -305,7 +317,7 @@ services:
|
|||
image: nemunaire/rsync:a3d76b2dd0a9ad73be44dc77ad765b20d96a3285
|
||||
binds:
|
||||
- /etc/hosts:/etc/hosts:ro
|
||||
- /root/.ssh/:/root/.ssh/:ro
|
||||
- /run/config/ssh/authorized_keys:/root/.ssh/authorized_keys:ro
|
||||
- /usr/bin/iptables:/usr/bin/iptables:ro
|
||||
- /usr/bin/mysql:/usr/bin/mysql:ro
|
||||
- /usr/bin/pnsenter:/usr/bin/pnsenter:ro
|
||||
|
|
@ -361,12 +373,6 @@ files:
|
|||
- path: etc/hosts
|
||||
source: configs/hosts
|
||||
mode: "0644"
|
||||
- path: root/.ssh/authorized_keys
|
||||
source: configs/authorized_keys
|
||||
mode: "0400"
|
||||
- path: root/.ssh/id_ed25519
|
||||
source: configs/id_ed25519
|
||||
mode: "0400"
|
||||
|
||||
- path: usr/bin/iptables
|
||||
source: configs/nsenter_iptables.sh
|
||||
|
|
@ -447,10 +453,6 @@ files:
|
|||
COMMIT
|
||||
mode: "0440"
|
||||
|
||||
- path: etc/dm-crypt/key
|
||||
source: configs/dm-crypt.key
|
||||
mode: "0440"
|
||||
|
||||
trust:
|
||||
org:
|
||||
- linuxkit
|
||||
|
|
|
|||
Reference in a new issue