[lxc-devel] problem with user namespace as root

[Stephan Sachse]

> > where is the fault?
>
> I suspect lxc.autodev is the problem, as far as I know (and the above
> seems to prove it), it doesn't work with unprivileged containers as it
> currently requires the ability to mknod.

why? cap_mknod is not dropped and die cgroup.devices allows to create
the null device.

/stephan

-- 
Software is like sex, it's better when it's free!