diff options
| author | esendjer <esendjer@gmail.com> | 2022-02-11 02:58:53 +0500 |
|---|---|---|
| committer | Matthew Heon <matthew.heon@pm.me> | 2022-02-16 14:02:42 -0500 |
| commit | 2128236da5f61f705c69b62fcac3eb7315e00a01 (patch) | |
| tree | 33a4e7fd076b149d9e7787034149eb1a7eb205a7 /docs/source/markdown/podman-save.1.md | |
| parent | 809da6b0ba8619bd8565a87388cf2cafad33cf99 (diff) | |
| download | podman-2128236da5f61f705c69b62fcac3eb7315e00a01.tar.gz podman-2128236da5f61f705c69b62fcac3eb7315e00a01.tar.bz2 podman-2128236da5f61f705c69b62fcac3eb7315e00a01.zip | |
ignition: propagate proxy settings from a host into a vm
Set proxy settings (such as `HTTP_PROXY`, and others)
for the whole guest OS with setting up `DefaultEnvironment`
with a `systemd` configuration file `default-env.conf`,
a `profile.d` scenario file - `default-env.sh` and
a `environment.d` configuration file `default-env.conf`
The **actual** environment variables are read by podman
at a start, then they are encrypted with base64 into
a single string and after are provided into a VM through
QEMU Firmware Configuration (fw_cfg) Device
Inside a VM a systemd service `envset-fwcfg.service`
reads the providead encrypted string from fw_cfg, decrypts
and then adds to the files
- `/etc/systemd/system.conf.d/default-env.conf`
- `/etc/profile.d/default-env.sh`
- `/etc/environment.d/default-env.conf`
At the end this service execute `systemctl daemon-reload`
to propagate new variables for systemd manager
[NO NEW TESTS NEEDED]
Closes #13168
Signed-off-by: esendjer <esendjer@gmail.com>
Diffstat (limited to 'docs/source/markdown/podman-save.1.md')
0 files changed, 0 insertions, 0 deletions