[Lxc-users] lxc-busybox template [features, fixes, future]

Daniel Lezcano daniel.lezcano at free.fr
Mon Aug 1 11:40:58 UTC 2011


On 07/28/2011 04:16 PM, Charles Hewson wrote:
> I have been expirmenting with template for a while. Have hacked a 
> little. And, need the group's input.
>
> Feature I have added - When busybox is not accessable or dynamicly 
> linked on host get current stable binary from busybox.net. Debian (lenny 
> & squeeze) Grml and others default to dynamic libraries. Some fail with 
> current static busybox. With this feature in template it is not 
> necessary to adjust $PATH on host to create a container.
>
> Fixed -
> 	only setup links for /lib64 & /usr/lib64 if they exist on host;
> 	update functions to include all in busybox stable v1.18.4;
> 	restrict devices container can impact in $NAME/config;
> 	add /sys & sysfs to rootfs tree;
> 	add tty's for lxc-console;
> 	others, this is a work in progress.
>
> Future - Should root have a default passwd of toor which is expired 
> forcing change at first lxc-start? Should commands that affect host be 
> removed from linkages (brctl, tunctl, etc.)? NOTE: this would not 
> prevent container user from directly exec "$ /bin/busybox brctl". Will 
> any of this impact the present usage of the template?
>
> I am currently testing on squeeze i686. Plan to post template/diff 
> after testing on second hardware platform and more distros

Charles,

all these enhancements sound good to me. I will be glad to take your
patches.

Next week there is a lxc developer summit. I am planning to write an
email to this list in order to collect the different features we want to
add to lxc.  I will add the different items you are proposing for
busybox if you are ok with that.

Thanks
  -- Daniel





More information about the lxc-users mailing list