<div dir="ltr"><div>Any answer on this?</div><div>I'm running lxc from snap, on Ubuntu 16.04. We have a couple of big applications at work that I'd like to run in lxc, but only if there is a way to make elevated privileges work.<br></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Wed, Mar 20, 2019 at 2:00 PM Mark Paterson <<a href="mailto:markpaters@gmail.com">markpaters@gmail.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div dir="ltr"><div>Hi all!</div><div>I am trying to run as a non-root user an application in a privileged container that requires setting elevated thread priority. From within the container, elevating priority works if I use sudo, so I can tell that the container is not dropping capabilities. The non-root user is set up in /etc/security/limits.d for rtprio, and is mapped via raw.idmap to a host user with equivalent privileges that work on the host side.</div><div><br></div><div>However, if I try in the container to chrt a process to a higher priority, I get "Operation not permitted." What am I missing?</div><div><br></div><div>Thanks!</div><div><br></div><div>Mark<br></div></div>
</blockquote></div></div>